Course Title: Auditing in Computerized Information Systems Environment
Teachers: Salcedo
Required Text: Information Systems Auditing and Assurance
Course Description: This course complements the course in auditing. It discusses
information technology (IT)-related risks, security and control mechanisms and techniques that may be employed to address the risks, and the impact of computer use on the audit. It also introduces computer assisted audit techniques and tools. In this course, students gain an appreciation of the particular features and understanding of the risks involved in auditing in a CIS environment, the CIS controls they would expect to find in this particular area, how auditors use CAATS (Computer Assisted Audit Techniques) in this area. The students gain hands-on experience in the use of computers in performing audits.
Topic Outline: Estimated No of Hours
1. Auditing and Internal Control 6.00
Overview of Auditing The role of Audit Committee Financial Audit Components Audit Risk The IT Audit Internal Control Objectives, Principles and Models
2. Auditing IT Governance Controls 4.00
Information Technology Governance Structure of Information Technology Function The Computer Center Disaster Recovery Planning Outsourcing the IT Function
3. Auditing Operating Systems and Networks 4.00
Auditing Operating Systems Auditing Networks Auditing Electronic Data Interchange (EDI) Auditing PC Based Accounting Systems
4. Auditing Database Systems 4.00
Data Management Approaches Key Elements Database Environment Databases in a Distributed Environment Controlling & Auditing Data Management System
5. Systems Development & Program Change Activities 3.00
Participants in Systems Development Information Systems Acquisition The Systems Development Life Cycle Controlling & Auditing the SDLC
6. Transaction Processing and Financial Reporting Systems Overview 3.00
An Overview of Transaction Processing Accounting Records Documentation Techniques Computer-based Accounting Systems Data Coding Schemes The General Ledger System The Financial Reporting System XBRL – Reengineering Financial Reporting System 7. Computer Assisted Audit Tools and Techniques 4.00 Application Controls Testing Computer Application Controls Computer-Assisted Audit Tools & Techniques for Testing Controls
8. Data Structures and CAATTs for Data Extraction 4.00
Data Structures Designing Relational Databases Embedded Audit Module Generalized Audit Software ACL Software o Learning the Basics o Introduce Metaphor Corporation o Examining Employee Data o Setting Up Projects o Beginning Analysis o Examine Expense Patterns o Analyze Transactions Validate, correct and extract data
9. Auditing the Revenue Cycle 3.00
Revenue Cycle Activities and Technologies Revenue Cycle Audit Objectives, Controls, and Test of Controls Substantive Tests of Revenue Cycle Accounts
10. Auditing the Expenditure Cycle 3.00
Expenditure Cycle Activities and Technologies Expenditure Cycle Audit Objectives, Controls, and Test of Controls Substantive Tests of Expenditure Cycle Accounts
11. Enterprise Resource Planning System 3.00
What is ERP? ERP System Configurations Data Warehousing Risks Associated with ERP Implementation Implications for Internal Control and Auditing
12. Business Ethics, Fraud and Fraud Detection 4.00
Ethical Issues in Business Fraud and Accountants Auditor’s Responsibility for Detecting Fraud Fraud Detection Technique
Total Sessions Express As Contact Hours 45
Recap
Identification of CPC Topics Covered in this Course Estimated
Contact Hours Accounting 38 Marketing 1 Finance 1 Management 8 Organizational Behavior 1 Human Resource Management 2 Operations Management 1 Legal Environment of Business 3 Economics 1 Ethics 3 Information System 12 Quantitative Methods/ Statistics 1 International/ Global Dimensions of Business 1 Integrative Experience 5 Total Estimated Contact Hours 78