Professional Documents
Culture Documents
MONITORING:
throughout
CONTROL
ACTIVITIES:
processes, procedures,
safeguards, access security,
authorization
RISK ASSESSMENT:
identify, prioritize, mitigate risks;
ongoing;
wide participation
CONTROL ENVIRONMENT:
tone at the top, infrastructure, compliance;
culture: integrity and competence of people
Internal Control Structure
Monitoring:
Monthly reviews of performance
reports
Internal audit function Information &
Communication:
MONITORING
Vision and values survey
Control Activities: Issue resolution calls
Purchasing limits INFORMATION AND
Reporting
Approvals COMMUNICATION Corporate communications (e-
Security mail, meetings)
Reconciliations CONTROL ACTIVITIES
Specific policies
Risk Assessment:
RISK ASSESSMENT
Monthly Risk Control
meetings
CONTROL ENVIRONMENT
Internal audit risk
assessment
Control Environment:
Tone from the top
Corporate Policies
Organizational authority
Accepting
Avoiding
Diversifing
Ada salah saji dimasa lalu atau masa lalu tidak jelas.
Completeness
Obligation
Valuation or allocation
O= Operational
F= Financial
C= Compliance