Presentation is loading. Please wait.

Presentation is loading. Please wait.

Module 6: Business Application Software Audit Chapter 1: Business Application Software Audit 1.

Published byDulcie Robertson Modified over 7 years ago

Similar presentations

Presentation on theme: "Module 6: Business Application Software Audit Chapter 1: Business Application Software Audit 1."— Presentation transcript:

1 Module 6: Business Application Software Audit Chapter 1: Business Application Software Audit 1

2 Basic 2

3 Learning Objectives 3

4 4

5 5

6 6

7 Part 1: Enterprise Business Models 7

8 Introduction 8

9 Business Models and Controls 9

10 10

11 Business Model, Business Process and Business Applications 11

12 Business Process 12

13 Business Processes and Control Structure 13

14 Business Applications “Business Application”, may be defined as applications used by entity to run its business. The consideration is whether the said application covers / incorporates the key business processes of the entity. Another important consideration is whether the control structure as available in the Business Application is appropriate to help entity achieve its goals. 14

15 Business Applications 15

16 Business Model and Risk Assessment 16

17 Auditing Standards 17

18 Auditing Standards 18

19 Auditing Standards 19

20 Auditing Standards 20

21 Steps To Audit 21

22 Internal Audit Standards 22

23 Risk Assessment for a Business Application used by entity 23

24 Risk Assessment for a Business Application used by entity 24

25 Risk Assessment for a Business Application used by entity 25

26 Case Study 26

27 Case Study 27

28 Case Study 28

29 Conclusion: The part addressed the following. 29

30 Case for participants 30

31 Part 2: Business Application Software as per Enterprises Business Model 31

32 Introduction 32

33 Business Application Software: Parameters of selection 33

34 Business Application Software: Parameters of selection 34

35 Business Application Software: Parameters of selection 35

36 Types Business applications can be classified based on processing type or source or based on function covered. The most critical way for management is based in function it performs. 36

37 Types 37

38 Types Other Business Applications: 38

39 Types Other Business Applications: 39

40 Key Features and Controls for Business Applications 40

41 Conclusion: This part dealt with 41

42 Questions 42

43 1. Initial adoption of Business Model adopted by an organisation is dependent upon: 43 A. Business Applications B. Business Objective C. Controls in business applications D. Business Laws Answer: B Business Objectives shall be the prime reason for adoption of business models. Other answers may be valid reasons but are never the first reason for adoption of a specific business model. “A business model describes the rationale of how an organization creates, delivers, and captures value (economic, social, cultural, or other forms of value). The process of business model construction is part of business strategy.”rationaleorganizationbusiness strategy

44 2. The first activity to be assessed by IS Auditor is: _____________. 44 A. Business Application B. Business Controls C. Business Model D. Business Laws Answer: C Business Model, needs to be assessed first by IS Auditor. The, b and d, are assessment to be made later on. As an IS Auditor it becomes important to understand the business model adopted by an organisation for a better understanding of risk associated with business model adopted by an organisation.

45 3. Arrange the following in chronological order 45 A. Establishing the expected degree of reliance to be placed on internal control B. Determining and programming the nature, timing, and extent of the audit procedures to be performed C. Coordinating the work to be performed D. Acquiring knowledge of the client’s accounting system, policies and internal control procedures The correct serial order: A, B, C, D D, A, B, C D, C, B, A B, C, D, A Answer: B As per SA 00 SA 00 on “OVERALL OBJECTIVES OF THE INDEPENDENT AUDITOR AND THE CONDUCT OF AN AUDIT IN ACCORDANCE WITH STANDARDS ON AUDITING, the steps to audit as mentioned at point b.

46 4. ISACA ITAF 1202, states IS auditor needs the following for an enterprise: 46 A. Inherent Risk and Audit Risk. B. Detection Risk and Control Risk. C. Subject matter risk and Audit risk. D. None of above Answer: B ISACA ITAF 1202, states IS auditor needs to consider subject matter risk and audit risk. Subject matter risk, relates to business risk, country risk, contract risks. Audit risk, is define as auditor reaching incorrect conclusion after an audit. The components of audit risk being control risk, inherent risk and detection risk.

47 5. The best definition which fits ‘COBIT 5’ is that it is a: 47 A. Business framework for the governance and management of enterprise IT. B. System Audit Tool C. Management tool for corporate governance D. IT management tool Answer: A COBIT 5 can be best described as “Business framework for the governance and management of enterprise IT by ‘a’. Other answers are part of COBIT framework but not full Framework.

48 Thank you! Questions? Email: cit@icai.incit@icai.in 48

Download ppt "Module 6: Business Application Software Audit Chapter 1: Business Application Software Audit 1."

Similar presentations

Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit
COBIT® 5 for Assurance Introduction

COBIT® 5 for Assurance Introduction
Presentation Subject Header Connected for Success Appendix C- Audit Requirements Economic Benchmarking Backcast Data Template.

Presentation Subject Header Connected for Success Appendix C- Audit Requirements Economic Benchmarking Backcast Data Template.
Information System Assurance Practices in China Key players doing IS Assurance In China Regulatory Regime and Professional Organizations -Regulatory AuthoritiesRegulatory.

Information System Assurance Practices in China Key players doing IS Assurance In China Regulatory Regime and Professional Organizations -Regulatory AuthoritiesRegulatory.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.

McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.
18- 1 © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. Chapter 18 Integrated Audits of Internal Control (For Public Companies Under Sarbanes-Oxley.

18- 1 © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. Chapter 18 Integrated Audits of Internal Control (For Public Companies Under Sarbanes-Oxley.
Quality evaluation and improvement for Internal Audit

Quality evaluation and improvement for Internal Audit
Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit
The Information Systems Audit Process

The Information Systems Audit Process
SAFA- IFAC Regional SMP Forum

SAFA- IFAC Regional SMP Forum
Mª ANGELA JIMENEZ 1 UNIT 4. EXTERNAL AUDIT BASIS CONCEPTS.

Mª ANGELA JIMENEZ 1 UNIT 4. EXTERNAL AUDIT BASIS CONCEPTS.
1 Performance Auditing  In IT Environment  Evidence Gathering & Analysis Techniques  Computer Assisted Techniques  Use of IDEA.

1 Performance Auditing  In IT Environment  Evidence Gathering & Analysis Techniques  Computer Assisted Techniques  Use of IDEA.
COBIT®. COBIT - Control Objectives for Information and related Technology C OBI T was initially created by the Information Systems Audit & Control Foundation.

COBIT®. COBIT - Control Objectives for Information and related Technology C OBI T was initially created by the Information Systems Audit & Control Foundation.
1 Homologues Group Meeting Slovenia, October 2009 Republika SlovenijaEuropean Union Ljubljana, 12-13 October 2009 Introduction to IT audits PART II IT.

1 Homologues Group Meeting Slovenia, October 2009 Republika SlovenijaEuropean Union Ljubljana, October 2009 Introduction to IT audits PART II IT.
Audit objectives, Planning The Audit

Audit objectives, Planning The Audit
This Lecture Covers Review of Internal Control Definitions.

This Lecture Covers Review of Internal Control Definitions.
Chapter Three IT Risks and Controls.

Chapter Three IT Risks and Controls.
Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit
Audit Planning & Audit Evidence

Audit Planning & Audit Evidence
Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit

Similar presentations

Ads by Google