When planning an audit engagement, what should an internal auditor first consider when assessing the risk of fraud in the area to be audited?
A. Impact of and exposure to fraud.
B. Existence of evidence of fraud.
C. Organizational structure.
D. Management’s risk appetite.