Professional Documents
Culture Documents
•Advantages:
• as real data are used, the auditor can verify transactions by
tracing them to source documents and approvals
• the size of the sample can be greatly expanded at relatively
little additional cost
• the auditor can independently run tests.
• Must ensure data tested is representative of actual entity
transactions and include errors intended to be detected.
Continuous monitoring of online
real-time systems
• An audit routine is added to the processing programs
• Transactions sampled at random intervals
• Output is used in testing controls
• Audit hook capabilities must be built into the client’s
computer system at the time they are created e.g.
• tagging transactions to enable tracing through the system
• systems control audit review file aka audit log is a record of
certain processing activities.
Assessing and testing IT controls