Professional Documents
Culture Documents
Relationship Between IT Controls and Financial Reporting
Relationship Between IT Controls and Financial Reporting
IT
Relationship between IT Controls and Financial Reporting COSO identifies two broad groupings of information system controls : application controls and general controls
IT Governance Controls
Three governance issues :
1. 2. 3.
Organizational structure of the IT function Computer operation, and Disaster recovery planning .
computer security .
Review relevant
Verify that the security policy is communicated to responsible employees and supervisors .
Through observation, determine that the segregation policy is being followed in practic.
Review operations room access logs to determine whether programmers enter the facility for reasons other than system failures.
documentation, including the current organizational chart, mission statement, and job descriptions for key functions, to determine if individuals or groups are perfoming incompatible functions.
Review
systems documentation and maintenance records for a sample of applications. Verify that maintenance programmers
assigned to specific projects are not also the original design programmers
Review user rights and privileges to verify that programmers have access privileges consistent with their job descriptions.
of Physical Construction , Test of the Fire Detection System, Test of Access Control, Test of fault Tolerance Controls, Power supplies backup Audit Procedures for Verifying Insurance Coverage Audit Procedures for Verifying Adequacy of Operator Documentation