A. conduct compliance audits at major system milestones. Compliance audits at major system milestones provide a structured, systematic, and independent evaluation of the project’s adherence to the project plan.

I came to the conclusion that the answer was B, not A. By conducting regular design reviews, we could check the consistency with the plan at each stage of the project and make corrections early if necessary.

While design reviews are an important element, rather than focusing on evaluation at the design stage, compliance audits at key system milestones are more comprehensive and effective in terms of verifying overall project progress and adherence to plan.

Option A, which suggests conducting compliance audits at major system milestones, is indeed important. However, it is not the most effective method for ongoing assurance that a project is adhering to the project plan. Compliance audits are typically conducted at specific points in time and may not capture issues that arise between these milestones. On the other hand, having an IS auditor participate on the quality assurance (QA) team (Option C) allows for continuous oversight and real-time monitoring of the project’s adherence to the project plan. This proactive approach can identify and correct deviations more promptly and ensure that the project stays aligned with its intended trajectory throughout its lifecycle.