10) Internal Control Flashcards

1
Q

what must the auditor do if they discover deficiencies in internal controls?

A

if significant, address them and report to mgmt

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

how can mgmt respond to inefficient controls?

A

developing and implementing new controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

what are the two internal control objectives?

A
  • integrity of information
  • operational objectives
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

what are the integrity of info objectives?

A
  • validity
  • accuracy
  • completeness
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

which controls will the auditors usually look at?

A

controls regarding misstatement of info in the FS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

what are the operational objectives?

A
  • safeguarding of assets
  • confidentiality
  • compliance with laws
  • economy, efficiency and effectiveness
  • continuity of operations
  • preventing fraud
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

when is info valid?

A

when the underlying transaction is valid and ito mgmt policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

when is info accurate?

A

when it has been calculated correctly and is in the correct account

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

when is info complete?

A

when all info is recorded / none is omitted and in the a timely manner

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

what is a business risk?

A

risks resulting from significant conditions/events that could adversely impact the business’s ability to achieve its objectives and achieve strategy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

what are two components of business risk?

A
  • risk factor (from scenario)
  • impact on objectives
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

what are the two components of controls in a computerized environment?

A
  • ITGC
  • application controls
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

what are all the ITGC?

A
  • control environment
  • systems development and implementation controls
  • access controls
  • continuity of operations
  • systems software and operations
  • documentation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

what are the three categories of application controls?

A
  • manual independent
  • manual dependent
  • automated
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

when do activity application controls occur?

A
  • input
  • processing
  • output
  • for masterfiles
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

what is the purpose of internal control?

A

to provide reasonable assurance about the org’s ability to achieve its objectives

17
Q

what are the components of internal control?

A
  • control environment
  • risk assessment process
  • information systems
  • control activities
  • monitoring of controls
18
Q

what are some of the risks for controls?

A
  • mgmt override
  • cost > benefit
  • human error
  • lose effectiveness over time