Академический Документы
Профессиональный Документы
Культура Документы
CIS
GROUP 2
Auditors Responsibilities
Obtain understanding of the entities internal
control system
To assess control risk
Factors Affecting the Study of
Internal Control in CIS
Lack of visible transaction trails
Consistency of performance
Concentration of duties
Ease of access to data and computer programs
Vulnerability of data and program storage media
Systems generated transactions
Classification of Internal Control
Procedures
1. GENERAL CONTROL
. Control policies and procedures that relate to the
overall CIS
1. Organizational controls
2. Systems development and documentation controls
3. Hardware and systems software controls
4. Access controls
5. Data and procedural controls
2. APPLICATION CONTROLS
. Policies and procedures that relate to specific use
of the systems
1. Controls over input
2. Controls over processing
3. Controls over output
A. Organizational and Operation
Controls
Controls
g. Control group
Acts as liaison between users and the processing center;
Records input data in a control log, follows the progress of
processing, distributes output, and ensures compliance with
control totals
h. Data security responsible for maintaining the
integrity of the on-line access control security software