AUD 2.9 - The Effect Of Information Technology On The Audit Flashcards
The automated means of originating, processing, storing, and communicating information:
Information technology
The use of this effects the manner in which transactions are initiated, recorded, processed, and reported. It also effects the evaluation of internal control and the procedures used to gather evidence.
Information technology
Are audit objectives the same in a computerized environment as they are in a manual environment?
YES
What is different in a computerized IT environment than a manual environment?
Segregation of duties
Disappearing audit trail
Uniform transaction processing
Computer-initiated transactions
A potential for increased errors and irregularities
A potential for increased supervision and review
Dependence on IT general controls over computer processing
Manual audit procedures are called:
Computer-assisted audit techniques (CAATS) are called:
Auditing around the computer
Auditing through the computer
When doing this, the auditor does not directly test the application program but instead tests the input data, processes the data independently, and then compares the independently detained results to the program results.
Auditing around the computer (manual audit procedures)
This has an emphasis n the input and output stages of transaction processing:
Auditing around the computer (manual audit procedures)
Auditing around the computer (manual audit procedures) is appropriate for what type of systems?
Simple batch systems with a good audit trail
Risks of auditing around the computer include: insufficient, paper-based evidence and insufficient audit procedures
This has an emphasis on the input and processing stages of transaction processing:
CAATS (auditing thru the computer)
CAATS (auditing thru the computer) includes what techniques?
Transaction tagging
Embedded audit modules
Test data
Integrated test facility
Parallel simulation
This technique allows the auditor to electronically mark specific transactions and follow them thru the clients system. This allowed to auditor to test both the computerized processing and the manual handling of transactions.
Transaction tagging
Sections of the application program code that collect transaction data for the auditor. (For example the auditor might examine all transactions under an account greater than $500). It is built into the application program with the program is developed.
Embedded audit modules
A technique that uses the application program to process a set data that results of which are already know. The clients system is used t process the auditors data offline while under the auditors control. Contains the types of invalid conditions the auditor is interested in (not all combinations of invalid conditions)
Test data
Similar to the test data approach, except that the data is commingled with live data. The client system is used to process the auditors data while online. This is usually accomplished by processing the test data to dummy accounts. Client personnel are not informed that the test is being run.
Integrated test facility
A technique in which the auditor reprocesses some or all of the clients live data (using the auditors software) and then compares the results with the clients files.
Parallel simulation
