B4- Information Systems and Communications

Question 1

Sequence of AIS events

Answer 1

1) transaction data from source docs is entered into the AIS by an end user
2) the original paper source docs are filed
3) the transactions are recorded to the appropriate journal
4) transactions are posted to general and sub ledgers
5) trial balances are prepared
6) financial reports are generated

Question 2

Business Info System (BIS)

Answer 2

Hardware, software, network, people, and data

Question 3

XBRL -

eXtensible Business Reporting Language

Answer 3

• Derived from XML (eXtensible markup language)

- open, royalty-free, internet-based info system for reporting needs of all kinds

Question 4

Transaction Cycles - def.

Answer 4

Transaction cycles generally capture commonly-occuring transactions (EG customer transactions,) and process them repeatedly / in a nearly identical fashion

Also ref. as “Transaction Processing”

Question 5

Block Code
Sequential Code
Object Code
Group Code

Answer 5

Block Code
(EG - cash to 1000’s, liabilities to 2000’s in the GL)

Sequential Code
(Numbers docs, transactions, or other items in order. EG customer orders?)

Object Code
(created by instructor, represents Intermediate instruction that takes program code --> machine language)

Group Code
(Imbeds intelligence into dif. numbers associated with an item; eg coding insurance policies)

Question 6

Hierarchy of Data in a System

Answer 6

Character (symbol, e.g. letter or number)
Field (collection of letters/numbers, EG name or Address)
Record (group of fields – EG name and address in the A/R Record)
File (group of records - EG A/R Subledger)

Question 7

Systems Programmer and Application programmer as same person…

Answer 7

NO!

Huge internal control risk.

Question 8

Database Admin (DBA) responsibilities:

Answer 8

• design/control firm database; incl. app. independence, back-up, and recovery procedures
• assignment of user codes and maintenance of other security measures
• control of all changes in data structure and programs that use the database

Who needs to be UNINVOLVED:
Application programmers!!!

Question 9

The COBIT (Control Objectives for Information and Related Technology) Framework Includes –

ICE RACE

Answer 9

Integrity
Confidentiality
Efficiency

Reliability
Availability
Compliance
Effectiveness

Question 10

COBIT -

The 5 areas of IT governance

Answer 10

Value Delivery
Strategic Alignment
Resource Management
Risk Management
Performance Management

Question 11

Enterprise Architecture for IT

Answer 11

Combination of IT resources - EG applications, information, infrastructure, and people)

Along with Defined Processes

Question 12

The COBIT 4 Domains (PO AIDS ME)

Answer 12

Process & Organize
(direct the IT process)

Acquire and Implement
(Deliver the IT SOLUTION)

Deliver and Support
(Deliver the IT SERVICE)

Monitor and Evaluate
(Ensure directions are followed)

Question 13

Management Information Systems

Answer 13

Provides managerial and other end users with reports

transaction processing systems and biz. info. systems are not types of MIS

Question 14

Systems Analyst

Answer 14

Design an internally developed application system… and possibly also, modify network specifically to this purpose
Prepare Specs for Programmers
INTERMEDIARY Between end-users and programmers

SOMETIMES combined with programmers to create programmers/systems analysts

Question 15

Decision Support Systems

Answer 15

interactive support for managers during decision-making

but NOT for as high-level as executives, that would be the Executive Information System

Question 16

Network Administrator

Answer 16

Network admin. support computer networks. A network admin. sets up and configures a computer network so that multiple computers can share the same data and info.

After a network is established, the work is mostly monitoring and troubleshooting

Sometimes, network admin are called telecom. analysts or network operators. (SEE ALSO: security admin)

Question 17

Program-Level Policy

Answer 17

Describes Info. Security of a co., and assigns responsibility for achievement of security objectives to the IT department

Question 18

Program-framework policy

Answer 18

Adds details to the IT program by describing the elements and org. of the program, and the dept. that will carry out the security mission.

Question 19

Encryption by hardware > Encryption by software?

Answer 19

True

Question 20

Technical Security Controls
Admin. Security Controls
Logical controls

Answer 20

Technical Security Controls
(user log-in and logical access controls, as well as antivirus software firewalls)

Admin. Security Controls
(separation of empl. duties, biz continuity planning, and proper hiring practices)

Logical controls
(software safeguards for an entitys computer systems ID and software access)

Question 21

Electronic Data Interchange (EDI)

Answer 21

EDI is comp-2-comp exchange of biz transaction documents (EG purchase orders, confirms, invoices)

• Structured in a format that allows direct processing of this DATA by the receiving system
• TRANSLATION SOFTWARE required
• security should come thru a hardware device and not software
• Often uses VAN (BATCHD) though can use Internet (non-batched)
• SEE ALSO: Value added network (VAN)

Question 22

Value Added Network (VAN)

Answer 22

VANs are PRIVATELY owned and managed communication networks that provide addit’l services beyond the standard data transmission.

VANS often used for EDI.

Question 23

What does EFT Electronic funds transfer do?

Answer 23

Reduce data entry errors

Question 24

CRM systems

Answer 24

Provide sales force automation and customer service

Question 25

E-cash

Answer 25

Paypal

Question 26

Cloud computing

Answer 26

Virtual servers that allow users (including Orgs) to have access to applications and services over the Internet on a real-time basis.

These services are offered from data centers all over the world, which is consistent with the term “the cloud”

Question 27

Firewall

Answer 27

a system of user identification and authentication that prevents unauth’d users from gaining access to network resources.

Primary purpose is to block unauth. access to the network

Question 28

Can a virus run independently?

Answer 28

No

Question 29

Circuit-level gateways

Answer 29

Only allow data into a network that results from requests from computers INSIDE the network

Question 30

Packet Filtering

Answer 30

Examines packets of data as they pass thru a firewall. Packet filtering is the SIMPLEST type of firewall configuration

Question 31

client/server applications - 3-tiered architecture?

Answer 31

Desktop Client
Application
Database

Question 32

Relational Database

Answer 32

Data stored in 2D tables that are related to each other by keys