Course Name: AUDCIS

Course Title: Auditing in Computerized Information Systems Environment

Teachers: Salcedo

Required Text: Information Systems Auditing and Assurance

Course Description: This course complements the course in auditing. It discusses

information technology (IT)-related risks, security and control
mechanisms and techniques that may be employed to address the
risks, and the impact of computer use on the audit. It also
introduces computer assisted audit techniques and tools. In this
course, students gain an appreciation of the particular features
and understanding of the risks involved in auditing in a CIS
environment, the CIS controls they would expect to find in this
particular area, how auditors use CAATS (Computer Assisted Audit
Techniques) in this area. The students gain hands-on experience
in the use of computers in performing audits.

Topic Outline: Estimated No of Hours

1. Auditing and Internal Control 6.00

 Overview of Auditing
 The role of Audit Committee
 Financial Audit Components
 Audit Risk
 The IT Audit
 Internal Control Objectives, Principles and Models

2. Auditing IT Governance Controls 4.00

 Information Technology Governance
 Structure of Information Technology Function
 The Computer Center
 Disaster Recovery Planning
  Outsourcing the IT Function

3. Auditing Operating Systems and Networks 4.00

 Auditing Operating Systems
 Auditing Networks
 Auditing Electronic Data Interchange (EDI)
 Auditing PC Based Accounting Systems

4. Auditing Database Systems 4.00

 Data Management Approaches
 Key Elements Database Environment
 Databases in a Distributed Environment
 Controlling & Auditing Data Management System

5. Systems Development & Program Change Activities 3.00

 Participants in Systems Development
 Information Systems Acquisition
 The Systems Development Life Cycle
 Controlling & Auditing the SDLC

6. Transaction Processing and Financial Reporting Systems Overview 3.00

 An Overview of Transaction Processing
 Accounting Records
 Documentation Techniques
 Computer-based Accounting Systems
 Data Coding Schemes
 The General Ledger System
 The Financial Reporting System
 XBRL – Reengineering Financial Reporting System
7. Computer Assisted Audit Tools and Techniques 4.00
 Application Controls
 Testing Computer Application Controls
 Computer-Assisted Audit Tools & Techniques for Testing Controls

8. Data Structures and CAATTs for Data Extraction 4.00

 Data Structures
 Designing Relational Databases
 Embedded Audit Module
 Generalized Audit Software
 ACL Software
o Learning the Basics
o Introduce Metaphor Corporation
o Examining Employee Data
o Setting Up Projects
o Beginning Analysis
o Examine Expense Patterns
o Analyze Transactions
Validate, correct and extract data

9. Auditing the Revenue Cycle 3.00

 Revenue Cycle Activities and Technologies
 Revenue Cycle Audit Objectives, Controls, and Test of Controls
 Substantive Tests of Revenue Cycle Accounts

10. Auditing the Expenditure Cycle 3.00

 Expenditure Cycle Activities and Technologies
 Expenditure Cycle Audit Objectives, Controls, and Test of Controls
 Substantive Tests of Expenditure Cycle Accounts

11. Enterprise Resource Planning System 3.00

 What is ERP?
  ERP System Configurations
 Data Warehousing
 Risks Associated with ERP Implementation
 Implications for Internal Control and Auditing

12. Business Ethics, Fraud and Fraud Detection 4.00

 Ethical Issues in Business
 Fraud and Accountants
 Auditor’s Responsibility for Detecting Fraud
 Fraud Detection Technique

Total Sessions Express As Contact Hours 45

Recap

Identification of CPC Topics Covered in this Course Estimated

Contact Hours
Accounting 38
Marketing 1
Finance 1
Management 8
Organizational Behavior 1
Human Resource Management 2
Operations Management 1
Legal Environment of Business 3
Economics 1
Ethics 3
Information System 12
Quantitative Methods/ Statistics 1
International/ Global Dimensions of Business 1
Integrative Experience 5
Total Estimated Contact Hours 78