Escolar Documentos
Profissional Documentos
Cultura Documentos
Richard Byrom
Oracle Applications Consultant
Objectives
Why an ERP audit?
Some common mistakes
Audit considerations
Conclusion
Questions & Answers
Objectives
Increased risk
Higher Levels of Regulation
Sarbanes Oxley 2002
Increased adoption of IAS
Required Action Internal Control
Level 1: Unreliable
Level 2: Informal
Controls are designed an in place but are not adequately documented
Controls mostly dependent on people
No formal training or communications of controls.
Required Action Assess Controls
Level 4: Monitored
Standardised controls with periodic testing for effective design and operation with reporting to
management
Automation and tools may be used in a limited way to support controls
Required Action Assess Controls
Level 5: Optimised
An integrated internal control framework with real-time monitoring by management
with continuous improvement (Enterprise-Wide Risk Management).
Automation and tools are used to support controls and allow the organisation to
make rapid changes to the controls if needed.
Some Common Mistakes
Poor Planning
Lack of Focus
Competency of Auditors
Independence
Reliance on Technology for the Solution
Silo approach
Reports and Reviews not taken seriously.
Audit Considerations
Internal Audit
External Audit
Implementation Consultants/Partners
Departmental/Functional Level Management
Senior Management
Third Party Review
What should be reviewed
Hardware
DBM System
Operating Systems
Processes
People
Implementation approach or strategy
How to effectively manage your software
Oracle 9i R2
Single Instance
Pages Reports
Rendering Technology
(Oracle Portal, Performance Management
Viewer, Performance Management Framework)
Metadata
Request Set
(Common Dimensions,
Generator
KPI's, Pages, Portlets, Reports)
Materialised Views
Initial and
Incremental Base Summary Tables
Request Sets
Modular integration
Reporting Capability
Scripts
Network Test
Audit Trail
Modular Integration
GENERAL LEDGER
T- accounts
Reporting - on line
Activity Summaries
Reporting
Web reports
Standard Reports
Transactional Data
Master Data
Roles and Responsibilities
Setup parameters at modular and system level
Sequentially numbered documents
Security Rules and Cross Validation
Scripts
Report History
Audit Trail
Record History
Audit Trail
Table Audit
Sign on Audit
Monitor Users
Audit Trail