INTERNAL CONTROL COMPONENT Pertemuan_6 Mata Kuliah: CSP402, IT Governance Tahun Akademik : 2012/2013 SAS 78 / COSO Describes the relationship between the.

Slides:



Advertisements
Similar presentations
An Internal Control Overview
Advertisements

Bodnar/Hopwood AIS 7th Ed1 Chapter 5 u TRANSACTION PROCESSING AND INTERNAL CONTROL PROCESS.
Chapter 3 Ethics, Fraud, and Internal Control
The Internal Control Structure. The Relationship between Risks, Opportunities, and Controls Risks –A risk is any exposure to the chance of injury or loss.
Internal Control.
Chapter 3 Ethics, Fraud, and Internal Control Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part.
Hall, Accounting Information Systems, 7e ©2011 Cengage Learning. All Rights Reserved. May not be scanned, copied or duplicated, or posted to a publicly.
©2013 Cengage Learning. All Rights Reserved. May not be scanned, copied or duplicated, or posted to a publicly accessible website, in whole or in part.
1 Chapter 3 Ethics, Fraud, and Internal Control COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star logo, and.
The Islamic University of Gaza
INTERNAL CONTROL. INTERNAL CONTROL DEFINED  INTERNAL CONTROL IS A PROCESS - EFFECTED BY AN ENTITY'S BOARD OF DIRECTORS, MANAGEMENT, AND OTHER PERSONNEL.
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESS
COSO Framework A company should include IT in all five COSO components: –Control Environment –Risk Assessment –Control activities –Information and communication.
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Internal Control in a Financial Statement Audit
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Office of the Controller and Internal Controls Jim Corkill Controller Office of the Controller September 2014.
Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.
INTERNAL CONTROL OVER FINANCIAL REPORTING
Ethics, Fraud, and Internal Control
Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.
Internal Control and Control Self-Assessment
Control and Accounting Information Systems
Presented to President’s Cabinet. INTERNAL CONTROLS are the integration of the activities, plans, attitudes, policies and efforts of the people of an.
Chapter 07 Internal Control McGraw-Hill/IrwinCopyright © 2014 by The McGraw-Hill Companies, Inc. All rights reserved.
Introduction to Internal Control Systems
INTERNAL CONTROL OVER FINANCIAL REPORTING
Chapter 5 Internal Control over Financial Reporting
Considering Internal Control
Chapter 2 Conflict of interest. SEC guiding principles not in book Independence in fact Independence in appearance Auditors are not independent if relationships.
Internal Control in a Financial Statement Audit
BusinessAllstars.com 1 BusinessAllstars.com Presents Copyright © 2004 by Gainbridge Associates All right reserved This material may not be used or reproduced.
 2004 Prentice Hall Business Publishing, Accounting Information Systems, 9/e, by Bodnar/Hopwood 4 – 1 Transaction Processing and the Internal Control.
NO FRAUD LEFT BEHIND The Effect of New Risk Assessment Auditing Standards on Schools Runyon Kersteen Ouellette.
Internal Control in a Financial Statement Audit
9 - 1 ©2003 Prentice Hall Business Publishing, Essentials of Auditing 1/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 9.
©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 10.
Chapter 3 Ethics, Fraud, and Internal Control
Learning Objectives LO5 Illustrate how business risk analysis is used to assess the risk of material misstatement at the financial statement level and.
Chapter 7 Control and AIS. Threats to AIS Natural disasters –DSM flood (p. 249) Political disasters –Terrorism Cyber crime (as opposed to general terrorism)
Internal Controls and Fraud Convery Describe an Internal Controls System and its elements Identify specific Internal Control issues in a NPO Consider.
Ensuring the Integrity of Financial Information Ensuring the Integrity of Financial Information C H A P T E R 5.
Evaluation of Internal Control System. Learning Objective 1 Contrast management’s need for internal control with the auditor’s need to consider internal.
[Hayes, Dassen, Schilder and Wallage, Principles of Auditing An Introduction to ISAs, edition 2.1] © Pearson Education Limited 2007 Slide 7.1 Internal.
CHAPTER 5 INTERNAL CONTROL OVER FINANCIAL REPORTING.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin 6-1 Chapter Six Internal Control in a Financial Statement Audit.
Chapter 9: Introduction to Internal Control Systems
A Guide for Management. Overview Benefits of entity-level controls Nature of entity-level controls Types of entity-level controls, control objectives,
Hall, Accounting Information Systems, 8e ©2013 Cengage Learning. All Rights Reserved. May not be scanned, copied or duplicated, or posted to a publicly.
Pertemuan 15 Business and Information Process Rules, Risks, and Controls Matakuliah: M0034 /Informasi dan Proses Bisnis Tahun: 2005 Versi: 01/05.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
©2012 Prentice Hall Business Publishing, Auditing 14/e, Arens/Elder/Beasley Section 404 Audits of Internal Control and Control Risk Chapter.
Copyright © 2007 Pearson Education Canada 9-1 Chapter 9: Internal Controls and Control Risk.
1 CHAPTER 5 - b INTERNAL CONTROL OVER FINANCIAL REPORTING.
©©2012 Pearson Education, Auditing 14/e, Arens/Elder/Beasley Considering Internal Control Chapter 10.
Chapter 3 Ethics, Fraud, and Internal Control. Objectives for Chapter 3 Broad issues pertaining to business ethics Ethical issues related to the use of.
Chapter 3 Ethics, Fraud, and Internal Control Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part.
McGraw-Hill/Irwin © The McGraw-Hill Companies 2010 Internal Control in a Financial Statement Audit Chapter Six.
Internal Control. McGraw-Hill/Irwin © 2004 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition A process...designed.
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2008 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
Modern Auditing: Assurance Services and the Integrity of Financial Reporting, 8th Edition William C. Boynton California Polytechnic State University at.
Part I: Purchases and Cash Disbursements Procedures
Defining Internal Control
Purchases and Cash Disbursements Procedures
Chapter 3 Ethics, Fraud, and Internal Control
Internal Control Internal control is the process designed and affected by owners, management, and other personnel. It is implemented to address business.
Presentation transcript:

INTERNAL CONTROL COMPONENT Pertemuan_6 Mata Kuliah: CSP402, IT Governance Tahun Akademik : 2012/2013 SAS 78 / COSO Describes the relationship between the firm’s… internal control structure, auditor’s assessment of risk, and the planning of audit procedures How do these three interrelate? The weaker the internal control structure, the higher the assessed level of risk; the higher the risk, the more auditor procedures applied in the audit. 6-1

Five Internal Control Components: SAS 78 / COSO 1. Control environment 2. Risk assessment 3. Information and communication 4. Monitoring 5. Control activities 6-2

1: The Control Environment Integrity and ethics of management Organizational structure Role of the board of directors and the audit committee Management’s policies and philosophy Delegation of responsibility and authority Performance evaluation measures External influences—regulatory agencies Policies and practices managing human resources 6-3

2: Risk Assessment Identify, analyze and manage risks relevant to financial reporting: – changes in external environment – risky foreign markets – significant and rapid growth that strain internal controls – new product lines – restructuring, downsizing – changes in accounting policies 6-4

3: Information and Communication The AIS should produce high quality information which: – identifies and records all valid transactions – provides timely information in appropriate detail to permit proper classification and financial reporting – accurately measures the financial value of transactions – accurately records transactions in the time period in which they occurred 6-5

4: Monitoring The process for assessing the quality of internal control design and operation [This is feedback in the general AIS model.] Separate procedures—test of controls by internal auditors Ongoing monitoring: – computer modules integrated into routine operations – management reports which highlight trends and exceptions from normal performance 6-6

5: Control Activities Policies and procedures to ensure that the appropriate actions are taken in response to identified risks Fall into two distinct categories: – IT controls—relate specifically to the computer environment – Physical controls—primarily pertain to human activities 6-7

Two Types of IT Controls General controls—pertain to the entitywide computer environment – Examples: controls over the data center, organization databases, systems development, and program maintenance Application controls—ensure the integrity of specific systems – Examples: controls over sales order processing, accounts payable, and payroll applications 6-8

Six Types of Physical Controls Transaction Authorization Segregation of Duties Supervision Accounting Records Access Control Independent Verification 6-9

Physical Controls Transaction Authorization used to ensure that employees are carrying out only authorized transactions general (everyday procedures) or specific (non-routine transactions) authorizations Supervision a compensation for lack of segregation; some may be built into computer systems A ccounting Records provide an audit trail 6-10

Segregation of Duties In manual systems, separation between: – authorizing and processing a transaction – custody and recordkeeping of the asset – subtasks In computerized systems, separation between: – program coding – program processing – program maintenance 6-11

Access Controls help to safeguard assets by restricting physical access to them Independent Verification reviewing batch totals or reconciling subsidiary accounts with control accounts 6-12

Authorization Custody Recording Task 1Task 2 Task 1 Nested Control Objectives for Transactions Control Objective 1 Control Objective 2 Control Objective 3 Custody Recording 6-13 Custody Recording Processing

Physical Controls in IT Contexts Transaction Authorization The rules are often embedded within computer programs. – EDI/JIT: automated re-ordering of inventory without human intervention Segregation of Duties A computer program may perform many tasks that are deemed incompatible. Thus the crucial need to separate program development, program operations, and program maintenance. 6-14

Supervision The ability to assess competent employees becomes more challenging due to the greater technical knowledge required. Accounting Records ledger accounts and sometimes source documents are kept magnetically – no audit trail is readily apparent Access Control Data consolidation exposes the organization to computer fraud and excessive losses from disaster. 6-15

Independent Verification When tasks are performed by the computer rather than manually, the need for an independent check is not necessary. However, the programs themselves are checked. =============== thank for your attention =============== 6-16

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.