Professional Documents
Culture Documents
• Lecture slides
• Text Book: Auditing Fundamentals in a South Africa Context – Chapter
5
• Question Bank: Auditing Fundamentals in a South African Context:
Graded Questions
STUDY
MATERIAL
• This module will be divided into 3 parts namely:
• Part A- Introduction
• Part B- General Controls
• Part C- Application Controls
Introduction
• Information and technology has become an integral part of modern
business
• Most business enterprises in the modern world use at least some elements
of information technology
• Irrespective of the nature of the system, the general risks, related internal
controls and principles outlined in this chapter must be implemented by all
companies that use IT.
Introduction……continued
• Homework: Google terms and technologies in this chapter that are
unknown to you. E.g.:
• Networks (LAN vs. WAN)
• Hardware
• Software (system software vs. application software)
• Master files
• Transaction files
• Real-time systems vs. batch processing systems
• Data / Field / Record / File
• Database
Introduction……continued
MANUAL COMPUTERISED
• In today’s advanced technology environment, IT is at the centre of any business activity and
has an impact at both operational and strategic levels in business.
• Advantages / benefits of good IT governance:
• A company’s reputation is improved, and the trust of internal and external parties is
enhanced.
• Strategically aligning IT with business goals and processes makes business operations
more efficient and creates a competitive advantage.
• Non-IT executives gain a better understanding of IT and better decision- making
processes are possible due to timely and quality information being available.
• A greater level of compliance with laws and regulations.
• Risk management procedures are maximised by implementing good IT controls.
Why and how do companies govern the computer information system?.....continued
Control Environment
Initiate
execute Record Process
Report
Manual Controls Computer Controls
Application General
Controls Controls
Impact of upgrading a manual system to an electronic system
Benefits Risks
– Computers apply predefined business – Unwarranted reliance
rules and perform complex calculations – Unauthorised data access
– Consistency of processing: – Unauthorised data changes
Improves the availability and – Unintentional amendments
accuracy of information
– Failure to make changes
– Facilitate extensive analysis of large data
– Input, processing errors
volumes
– Manual override
– Monitoring of activities
– Data loss: process, transmit
– Less control circumvention
– Duplicate, incomplete data
– Segregation of duties
– Overreliance
– Potential loss of data during
processing
Advantages of a
computerised accounting
system…..continued
General characteristics of a computer system
Improves
management
monitoring and
supervision
General characteristics of a computer system…….CONTINUED
Accounting
records: Journals,
Process
general ledger,
Process transaction
trial balance etc.
Master file
amendment
and storage
Report Output
Financial
statements
Flow of transactions in a computerised system
Output Stored
Input
in master files
Input controls (checks, Processing (standing data /
comparisons, calculations totals)
etc.)
Processing controls: and transaction
ensure integrity of data: files (underlying
manual/computerised. computerised.
transactions).
Storage devices.
Print: manual
output
CONTROLS IN AN INFORMATION TECHNOLOGY ENVIRONMENT
Classification of computer controls
Objective of GC
Encompass the framework of overall controls over IT activities