Preview

AUDITING IN A COMPUTER INFORMATION SYSTEMS (CIS) ENVIRONMENT

Powerful Essays
Open Document
Open Document
5074 Words
Grammar
Grammar
Plagiarism
Plagiarism
Writing
Writing
Score
Score
AUDITING IN A COMPUTER INFORMATION SYSTEMS (CIS) ENVIRONMENT
Stages of Study and Evaluation of Internal Control
The stages/activities involve in studying and evaluating internal control are:
A. Obtaining an understanding of the entity’s internal control structure.
B. Assessing the preliminary level of control risk.
C. Obtaining evidential matter to support the assessed level of control risk.
D. Evaluating the results of evidential matter.
E. Determining the necessary level of detection risk.
STAGE A. Obtaining an understanding of the entity’s internal control structure.
In planning the audit examination, each of the five components of internal control must be studied and understood by the auditor to enable him to (1) identify types of potential misstatements; (2) consider factors that affect the risk of misstatement; and (3) begin to design appropriate testing procedure.
Understanding the Control Environment
The auditor should obtain sufficient knowledge of the control environment to understand management’s and the board of director’s attitude, awareness, and actions concerning the control environment. The auditor should concentrate on the substance of management’s policies, procedures, and related actions rather than their form because management may establish appropriate policies and procedures but not act on them.

Understanding Control Procedures
Because some control procedures are integrated in specific components of the control environment and accounting system, as the auditor obtains an understanding of the control environment and accounting system, he is also likely to obtain knowledge about some control procedures. The auditor should consider the knowledge about the presence or absence of the control procedures obtained from the understanding of the control environment and accounting system in determining whether it is necessary to devote additional attention to obtain an understanding of control procedures to plan the audit.
Understanding the Accounting and Internal Control Systems
To understand
Continue Reading
View Writing Issues

You May Also Find These Documents Helpful

  • Good Essays

    Apollo Shoes Case Study
    • 656 Words
    • 3 Pages

    Apollo Shoes Case Study

    The auditor must attain enough evidence to determine the general cash account is comparable to the balance sheet of the end of year for the balance related objective. Areas that may need to be controls should be transaction cycles affecting the recording of cash receipts and disbursements and independent bank reconciliations. It is essential that adequate segregation of duties with the proper authorization for signing off on checks and wire transfer of funds can provide a reduction of control risk for upper management as an audit is being…

    • 656 Words
    • 3 Pages
    Good Essays
    Read More
  • Good Essays

    Reedy and Abel Certified Public Accountants
    • 492 Words
    • 2 Pages

    Reedy and Abel Certified Public Accountants

    Our resopniabilty as audits is to obtain an understanding of internal control to planning audit and the performance. An audit does not provide assurance on internal control or operation of internal control.…

    • 492 Words
    • 2 Pages
    Good Essays
    Read More
  • Satisfactory Essays

    Apollo Shoes Engagement Letter
    • 483 Words
    • 2 Pages

    Apollo Shoes Engagement Letter

    Understanding internal controls is necessary to plan and complete the audit. The audit is not designed to obtain any type of reasonable assurance about these controls. If any significant deficiencies within the internal control system are discovered during the audit we will express concern to management, and the audit team will be made aware our findings.…

    • 483 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Good Essays

    Wk 5 Chapter 11 & 13 Learning Check
    • 627 Words
    • 3 Pages

    Wk 5 Chapter 11 & 13 Learning Check

    The three strategies for testing internal controls would first be to assess a control risk based on user controls. This can be done by comparing computer-generated output with the source documents that can support the transactions. The second strategy would be by planning for a low control risk assessment based on application controls. This means that the auditor should test the computer application controls, test the computer general controls, and test the manual follow up of the exceptions noted by the application controls. The last strategy would be planning for a high control risk assessment based on general controls and manual follow up. When an auditor test the general controls they can usually learn about the effectiveness of the design and testing application controls.…

    • 627 Words
    • 3 Pages
    Good Essays
    Read More
  • Powerful Essays

    Acc 290 Week 5 Analysis
    • 470 Words
    • 2 Pages

    Acc 290 Week 5 Analysis

    Statement that outlines the management’s responsibilities on generating and reinforcing acceptable internal controls, arrangements, and…

    • 470 Words
    • 2 Pages
    Powerful Essays
    Read More
  • Satisfactory Essays

    Nt1310 Unit 9 Final Project
    • 948 Words
    • 4 Pages

    Nt1310 Unit 9 Final Project

    The purpose of this audit work program is to assess, at a high level, and validate key controls in place for Information and Communication. Inadequate or ineffective controls in this area may give rise to financial and operational risks.…

    • 948 Words
    • 4 Pages
    Satisfactory Essays
    Read More
  • Powerful Essays

    Rsm/260 Final Exam Paper
    • 1195 Words
    • 5 Pages

    Rsm/260 Final Exam Paper

    Most people assume that a police officer should behave in a lawful manner, and not show any favoritism to any particular group, and do their best to uphold the law. What term is used for this kind of belief?…

    • 1195 Words
    • 5 Pages
    Powerful Essays
    Read More
  • Good Essays

    The Sarbanes-Oxley Act
    • 642 Words
    • 3 Pages

    The Sarbanes-Oxley Act

    The maintenance of internal control by management ensures that material information is not being provided for reports. This is essential when being assessed by our side auditors in compliance with Section 404 of Sox. It requires top management or audit committee and outside auditors to review on internal controls and whether or not they are adequate enough. This can be costly for entities to implement because samples of documentation, testing of internal controls, review of manual, and automated systems implemented by entity which enormous maintenance and time. Assessing internal control is design efficiency, outside auditors relate to specific accounts and relevant information in context of material mistake can prevent fraudulent financials being provided to the…

    • 642 Words
    • 3 Pages
    Good Essays
    Read More
  • Better Essays

    Acc 544 Checklist For Evaluating Internal Control
    • 1165 Words
    • 5 Pages

    Acc 544 Checklist For Evaluating Internal Control

    The control environment is the overall attitude, awareness, and actions of management regarding the internal control system and its importance to the business. Risk assessment and analysis promote awareness of issues by identifying internal and external risk factors and increase the achievement of company objectives. Control activities include both preventative controls used to avoid potential problems and detective controls, used to detect errors, fraud, and irregularities. Communicating the information from internal and external sources in a reliable, relevant, and timely manner is vital to the operation and control of a company. Monitoring is the last component and entails reviewing and assessing the internal control procedures to evaluate the design, execution, and effectiveness (UCOP,…

    • 1165 Words
    • 5 Pages
    Better Essays
    Read More
  • Satisfactory Essays

    Biltrite Module 1
    • 2495 Words
    • 10 Pages

    Biltrite Module 1

    Having once been employed by the auditing firm, the corporate controller is familiar with the firm’s auditing strategies and procedures. This knowledge could assist in concealing fraud from the audit team.…

    • 2495 Words
    • 10 Pages
    Satisfactory Essays
    Read More
  • Powerful Essays

    Auditing Chapter 2 and 3
    • 1151 Words
    • 5 Pages

    Auditing Chapter 2 and 3

    2.30) The primary purpose for obtaining an understanding of the entry’s environment (including its internal control) in a financial statement audit is…

    • 1151 Words
    • 5 Pages
    Powerful Essays
    Read More
  • Powerful Essays

    Acc 624 Information Technology Auditing
    • 746 Words
    • 3 Pages

    Acc 624 Information Technology Auditing

    Note: You can buy any edition of the aforementioned text. 2008,2009, 2010, and 2011 editions are all good, and are much cheaper from various sources…

    • 746 Words
    • 3 Pages
    Powerful Essays
    Read More
  • Satisfactory Essays

    It Audit
    • 356 Words
    • 2 Pages

    It Audit

    When you tested that total gross less total taxes less total deductions equals net pay, were there differences between the Computed_Net and Net_Pay fields? If so, obtain a report of all records where differences exist and explain what is probably causing the differences.…

    • 356 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Powerful Essays

    E-Auditing
    • 1502 Words
    • 7 Pages

    E-Auditing

    complete all or part of the audit. If you use a computer to record your business activity and…

    • 1502 Words
    • 7 Pages
    Powerful Essays
    Read More
  • Powerful Essays

    Auditing in a Cis
    • 8552 Words
    • 35 Pages

    Auditing in a Cis

    Related PSAs/PAPSs: PSA 401; PAPS 1001, 1002, 1003, 1008 and 1009 PSA 401 – Auditing in a Computer Information Systems (CIS) Environment 1. Which statement is incorrect when auditing in a CIS environment? a. A CIS environment exists when a computer of any type or size is involved in the processing by the entity of financial information of significance to the audit, whether that computer is operated by the entity or by a third party. b. The auditor should consider how a CIS environment affects the audit. c. The use of a computer changes the processing, storage and communication of financial information and may affect the accounting and internal control systems employed by the entity. d. A CIS environment changes the overall objective and scope of an audit. 2. Which of the following standards or group of standards is mostly affected by a computerized information system environment? a. General standards c. Reporting standards b. Second standard of field work d. Standards of fieldwork 3. Which of the following is least considered if the auditor has to determine whether specialized CIS skills are needed in an audit? a. The auditor needs to obtain a sufficient understanding of the accounting and internal control system affected by the CIS environment. b. The auditor needs to determine the effect of the CIS environment on the assessment of overall risk and of risk at the account balance and class of transactions level. c. Design and perform appropriate tests of controls and substantive procedures. d. The need of the auditor to make analytical procedures during the completion stage of audit.…

    • 8552 Words
    • 35 Pages
    Powerful Essays
    Read More

Related Topics