Escolar Documentos
Profissional Documentos
Cultura Documentos
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
3
Cru!bley$ ;. /111>). .orensic Accounting( Strategies for 5etecting A Controlling .raud. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.bus.lsu.edu4accounting4faculty4lcru!bley4)alaysiaBSpring2001B0202001.ppt
Zubaidah Abdul Rehman, 20020!0 Page 4 of 12
Information Technolog !ontrol"
auto dealers$ baggage clai!s reported by passengers at airports$ and reports of coupons or
rebates redee!ed by rede!ption processors.
6
.
!orrecti+e control"( #hese controls correct errors$ o!issions$ or incidents after
detection. #hey "ary fro! si!ple correction of data'entry errors$ to identifying and re!o"ing
unauthori,ed users fro! syste!s or net&or%s. Correcti"e controls are the actions ta%en to
!ini!i,e further losses.
7
.
Section /) Information Technolog !ontrol Acti+itie" and !ontrol !oncern"
8
.
8-a!ples of Infor!ation #echnology /I#) control acti"ities include(
business continuity
disaster reco"ery
bac%up of data
general and application controls o"er infor!ation syste!s$
including !ainfra!e$ net&or%$ and end'user en"iron!ents.
>
Cru!bley$ ;. /111>). .orensic Accounting( Strategies for 5etecting A Controlling .raud. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.bus.lsu.edu4accounting4faculty4lcru!bley4)alaysiaBSpring2001B0202001.ppt
6
Cru!bley$ ;. /111>). .orensic Accounting( Strategies for 5etecting A Controlling .raud. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.bus.lsu.edu4accounting4faculty4lcru!bley4)alaysiaBSpring2001B0202001.ppt
@
=radford$ ). /111>). Core Concepts of AIS. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.ua!ont.edu4.aculty7eb4:a!!ett4ppt4AIS4ch12.ppt
Zubaidah Abdul Rehman, 20020!0 Page 5 of 12
Information Technolog !ontrol"
9
.
Section 4) Internal !ontrol"
Internal Controls Specific to Infor!ation #echnology
Relationship =et&een General
and Application Controls
10
.
Categories of General and Application Controls
1
#e-as State Agency Internal Audit .oru!. /2001). Internal Control Re2uire!ents for the A!erican Reco"ery and Rein"est!ent Act
/ARRA). Retrie"ed 23 +ctober 2001 fro!
http(44&&&2.dir.state.t-.us4SiteCollection5ocu!ents4SponsoredSites4StateAgencyCoordinatingCo!!ittee4StateAgencyInternalAudit.oru!
/SAIA.)4+"er"ie&'InternalControls06'26'01.ppt
10
=easley$ 8lder$ A Arens. /2012). #he I!pact of Infor!ation #echnology on the Audit Process. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.c&u.edu4?ruble!4acctB>0Po&erpointBfiles4PPC20>0C20Ch12.ppt
Zubaidah Abdul Rehman, 20020!0 Page 6 of 12
Information Technolog !ontrol"
11
.
Section 0) T'e" of !ontrol"
0.#) In'ut !ontrol"
In'ut control" attem't to en"ure the
+alidit
accurac
com'letene"" of the data entered into an AIS
The categorie" of in'ut control" include
ob"er+ation( recording( and tran"cri'tion
of data
edit te"t"
additional in'ut control"
12
.
0.2) A''lication !ontrol" for Tran"action &roce""ing
A''lication control" are de"igned to
're+ent(
detect( and
correct error" and irregularitie"
11
=easley$ 8lder$ A Arens. /2012). #he I!pact of Infor!ation #echnology on the Audit Process. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.c&u.edu4?ruble!4acctB>0Po&erpointBfiles4PPC20>0C20Ch12.ppt
12
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
Zubaidah Abdul Rehman, 20020!0 Page 7 of 12
Information Technolog !ontrol"
in tran"action" in
the in'ut
'roce""ing
the out'ut "tage" of data 'roce""ing
13
.
0./) &roce""ing !ontrol"
"rocessing controls focu" on the mani'ulation of accounting data after the are
in'ut to the com'uter ""tem.
1e ob*ecti+e i" a clear audit trail
&roce""ing control" are of t.o %ind"2
Data3acce"" control"
Data mani'ulation control"
14
.
0.4) Data3Acce"" !ontrol Total"
Some common 'roce""ing control 'rocedure" are
batch control total
financial control total
nonfinancial control total
ha"h total
record count
15
.
0.0) Data ,ani'ulation !ontrol
13
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
1
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
13
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
Zubaidah Abdul Rehman, 20020!0 Page 8 of 12
Information Technolog !ontrol"
Data ,ani'ulation !ontrol"
)nce data ha" been +alidated b earlier
'ortion" of data 'roce""ing( the u"uall mu"t
be mani'ulated in "ome .a to 'roduce u"eful
out'ut.
Data mani'ulation control" include2
Soft.are documentation( i.e.
flo. chart" and diagram"
!om'iler
Te"t Data
16
.
0.4) )ut'ut !ontrol
#he ob*ecti"es of output controls is to
ensure
"alidity
accuracy
co!pleteness
#&o !a*or types of output application
controls are
"alidating processing results by
Activity (or proof) listings
regulating the distribution and
use of printed output through
Forms
Prenumbered forms
authorized distribution list
Shredding sensiti"e docu!ents
17
.
1>
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
16
=radford$ ). /111>). Chapter 1( Co!puter Controls for Accounting Infor!ation Syste!s. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.cba.ua.edu4?*o!ason4ac3@143@1'Ch01.ppt
Zubaidah Abdul Rehman, 20020!0 Page 9 of 12
Information Technolog !ontrol"
0.5) !ontrol" for 6et.or%"
Control Proble!s
8lectronic ea"esdropping
:ard&are or soft&are !alfunctions
8rrors in data trans!ission
Control Procedures
Chec%point control procedure
Routing "erification procedures
)essage ac%no&ledg!ent procedures
0.8) !ontrol" for &er"onal !om'uter"
#a%e an in"entory of personal co!puters
Applications utili,ed by each personal co!puter
Classify co!puters according to ris%s and e-posures
Physical security
18
.
Section 4) !onclu"ion
Policies and procedures that help ensure that the ris% responses$ as &ell as other entity
directi"es$ are carried out.
+ccur throughout the organi,ation$ at all le"els and in all functions.
Include application and general infor!ation technology controls.
1@
=radford$ ). /111>). Core Concepts of AIS. Retrie"ed 23 +ctober 2001 fro!
http(44&&&.ua!ont.edu4.aculty7eb4:a!!ett4ppt4AIS4ch12.ppt
Zubaidah Abdul Rehman, 20020!0 Page 10 of 12
Information Technolog !ontrol"
IT a''lication control"2
Apply to the processing of indi"idual applications
:elp ensure that transactions occurred$ are authori,ed$ and are
co!pletely and accurately recorded and processed
IT general control"2
Policies and procedures that relate to !any applications and support
the effecti"e functioning of application controls and !anual controls &ith an
I# co!ponent
Zubaidah Abdul Rehman, 20020!0 Page 11 of 12
Information Technolog !ontrol"
Reference"
Zubaidah Abdul Rehman, 20020!0 Page 12 of 12