Professional Documents
Culture Documents
AIS Final Chapters
AIS Final Chapters
Chapter 10
Control and Accounting
Information Systems
• Detective controls
– Discover problems that are not prevented
• Corrective controls
– Identify and correct problems; correct and recover from
the problems
• Detective controls
– Discover
E.g.problems
hiring qualified
that arepersonnel,
not prevented
segregating employee duties,
and controlling physical access to assets
and information.
• Corrective controls
– Identify and correct problems; correct and recover from
the problems
• Detective controls
–E.g.
Discover problems
Transaction that are not
Monitoring: prevented
Regularly monitoring
financial transactions for unusual patterns or anomalies
that may indicate errors, fraud, or other irregularities.
•Internal Audits:
• Corrective controlsConducting periodic internal audits to
review financial records, processes, and controls to
–identify
Identify
anyand correct problems;
discrepancies correct and recover from
or non-compliance.
the problems Procedures: Reconciling bank
•Reconciliation
statements, accounts receivable, and accounts payable
regularly to identify discrepancies and errors.
• Copyright © 2021 Pearson Education Ltd.
Functions of Internal Controls
• Preventive controls
– Deter problems from occurring
• Detective controls
– Discover problems that are not prevented
• Corrective controls
– Identify and correct problems; correct and recover from
the problems
E.g. maintaining backup copies of files,
correcting data entry errors, and resubmitting
transactions for subsequent processing.
• Copyright © 2021 Pearson Education Ltd.
Internal controls are typically categorized
into two main types:
1.General Controls: General controls are essential for
ensuring the overall stability and effective management of
an organization's control environment. E.g. security
measures, IT infrastructure oversight, and controls related
to the acquisition, development, and maintenance of
software.
2.Application Controls: preventing, detecting, and correcting
transaction errors and fraudulent activities within application
programs. These controls specifically focus on ensuring the
accuracy, completeness, validity, and authorization of data
throughout its lifecycle, covering processes such as
capture, entry, processing, storage, and reporting.
• Copyright © 2021 Pearson Education Ltd.
Creativity vs controls.
Robert Simons, a Harvard Business School professor, has
introduced four levers of control to assist management in
reconciling the conflict between creativity and controls:
1. A belief system articulates how a company generates
value, aids employees in comprehending management’s
vision, communicates core values, and motivates employees
to embody those values.
2. A boundary system guides employees to act ethically by
establishing limits on behavior. Instead of providing explicit
instructions, employees are encouraged to creatively solve
problems, meet customer needs, and avoid actions that may
harm the company's reputation.
• Copyright © 2021 Pearson Education Ltd.
Creativity vs controls.
• A diagnostic control system assesses, monitors, and
compares the actual progress of the company to budgets
and performance goals. Feedback from this system
allows management to make adjustments and refine
inputs and processes to align future outputs more closely
with goals.
• An interactive control system assists managers in
directing subordinates’ attention to key strategic issues
and participating more actively in their decisions. Data
from the interactive system are interpreted and discussed
in face-to-face meetings involving superiors,
subordinates, and peers.
cont..
• Share
– Buy insurance, outsource, etc.
• Avoid
– Do not engage in the activity • Copyright © 2021 Pearson Education Ltd.
Control Activities
Control procedures fall into the following categories:
Chapter 11
Controls for Information Security
P > D + C where
• Encryption
Chapter 14
The Revenue Cycle: Sales to Cash
Collections
Controls
Controls
Backup and disaster recovery procedures
Controls
Controls
3. Uncollectible accounts
Controls
Controls
Controls
Controls
Controls
Controls
Controls
1. Proper segregation of duties: The following pairs of duties
should be separated:
2. Cashflow problems
Controls
Chapter 15
The Expenditure Cycle: Purchasing
to Cash Disbursements
Controls
Controls
Controls
Controls
5. Unreliable suppliers
Controls
Controls
6. a. Purchase from approved suppliers (ERP systems
should be configured to prevent issuing purchase orders to
suppliers not in the approved master file).
Controls
7. b. Prohibit gifts
c. Job rotation & mandatory vacations
d. Required disclosure of financial and personal
interests in suppliers
– Accounting entry?
Controls
Controls
- Receiving employees sign receiving report (Such
procedures indicate an assumption of responsibility, which
usually results in more diligent work).
Controls
Accounting entry?
• Copyright © 2021 Pearson Education Ltd.
3. Approve Supplier Invoice
Threats
1. Errors in supplier invoice
Controls
Controls
2. a. Reconcile detailed accounts payable records to
the general ledger accounts payable account
Chapter 16
The Production Cycle
Threats Controls
1. Poor product design 1. a. Analysis of costs arising
resulting in excess costs from product design choices
b. Analysis of warranty and
repair costs
4. Suboptimal investments in
fixed assets 4. a. Solicit competitive bids
Chapter 17
The Human Resources
Management and Payroll Cycle
3. Prepare payroll
4. Disburse payroll
Threats Controls
Threats Controls
Chapter 18
General Ledger and
Reporting System
Controls
Controls
1. a. Data entry processing integrity controls
Controls
2. a. Access controls
b. Reconciliations and control reports
c. Audit trail creation and review
Threats
1. Inaccurate financial statements
Controls
1 a. Processing integrity controls
b. Use of packaged software
c. Training and experience in applying I F R S
d. Audits
Threats
2. Fraudulent financial reporting
Controls
2. Audits
Threats
1. Poorly designed reports
Controls
3 a. Responsibility accounting
b. Balanced scorecard
• Flexible budget
– Budget formula based upon level of activity (e.g., production levels)
Increase in
sales and
profits
Increase in
customer
satisfaction
Improvement
in level of
after-sales
Investment in service
staff
development