Professional Documents
Culture Documents
Categories of IT Controls
1. General Controls – it is a control that applies to all aspects of the IT function before
It is the tone of the top regarding IT Function and is the equivalent of Control
Environment. The tone of the top is related to the attitude of the Board of Directors and
Senior Management towards IT. And we can know the attitude of them towards this on
the resources allocated to the IT. In this category, we can also look out on the
Steering Committee is created to help the Board of Directors and Senior Management to
manage their IT. But for a smaller company/organization, they have Chief Information
Officer (CIO) in the absence of a steering committee. Lastly, we can also know the
employees.
b. Separation of IT Duties
Chief Information Officer (CIO)/IT Manager - they are responsible for the
Security Administrator - they are in charge of security, such as, help monitor
administrators for them to protect their assets that are in the physical or online
database.
software that is needed by the company and the ones who test (pilot or
company.
System Programmers - They are the ones who put the design created by
program.
Librarian - they are the one who controls the use of the computer
Network Administration - they are the one who maintains the network
Computer Operators - they are the people who input data and
Database Administrator - they are the one who holds the keys to the
kingdom, meaning they have all the login information for the company.
Data Input/Output Control - they are the one who verifies the quality of
System Development
Operations
Data Control
emergencies, such as fire, power failures, excessive heat or humidity or etc. that
2. Application Controls – it is a control that operates at the process level and applies to
and complete.
Management authorization
Competent Personnel
Selda, Lennier Arvin A.
BAC 317-1M 1900-2000
The controls that are specific to IT are Input Screens, External Parties, Check
Financial Total - it is a summary total of field amounts for all records in a batch
Hash Total - it is a summary total of codes from all records in a batch that does
b. Processing Controls - it is the control who prevent and detect errors while
Sequence Test - this determines that the data submitted for processing are in
prespecified amounts.
Selda, Lennier Arvin A.
BAC 317-1M 1900-2000
Completeness Test - this determines that every field in a record has been
completed.
processing.
processing.
General Controls is the one who protects the outside of the system. If the general control is no