Information Technology & Auditing

Question 1

What are risks of using an IT system?

Answer 1

Inaccurate data processing
Unauthorized data access
Excessive access privileges
Unauthorized data modification
Failure to update systems
Inappropriate manual intervention
Data loss or inaccessibility

Question 2

What are benefits of using an IT system?

Answer 2

Consistent application of business rules
Enhanced information timeliness and accuracy
Advanced data analysis
Enhanced performance monitoring
Reduced risk of control circumvention
Effective segregation of duties

Question 3

What is auditing through the computer?

Answer 3

Auditing through the computer is where auditors utilize various methods to test the integrity and functionality of a client’s application programs directly.

Question 4

What are two types of auditing through the computer?

Answer 4

Auditing with actual client program
Auditing with test data

Question 5

What are the types of auditing with actual client program?

Answer 5

Transaction tagging
Embedded audit modules
Controlled re-processing

Question 6

What is transaction tagging?

Answer 6

It is auditing with actual client program. Client data in client software.
Auditors electronically mark specific transactions and follow them through the client’s system.

Question 7

What is embedded audit modules?

Answer 7

It is auditing with actual client program. Client data in client software.
Auditors participate in the system design and embed sections in the application program code that collect transaction data for audit procedures.

Question 8

What is controlled re-processing?

Answer 8

It is auditing with actual client program. Client data in client software.
Auditors use a verified version of the client’s program to re-process transactions and compare the results with the original outputs.

Question 9

What are the types of auditing with test data?

Answer 9

Test data approach
Integrated test facility

Question 10

What is the test data approach?

Answer 10

It is auditing with test data. Auditor’s data in client software.
Auditors introduce a dataset where they already know the expected output, allowing them to assess whether the system is processing data accurately.

Question 11

What is an integrated test facility?

Answer 11

It is auditing with test data. Auditor’s data in client software.
Similar to the test data approach, but in ITF, hypothetical data is processed alongside live data within the client’s system.

Question 12

What is auditing around the computer?

Answer 12

Auditors do not directly interact with the client’s application programs. Instead, they focus on verifying the input and output data without considered the internal workings of the application programs.

Question 13

What is parallel simulation?

Answer 13

(Client’s data in auditor software)
Auditor re-processes the client’s live data using software owned or purchased by the auditor, and then compares the results with the client’s output.

Question 14

What is computer assisted audit techniques (CAATs)?

Answer 14

CAATs refers to the use of computerized tools and methods by auditors to perform audit tests of both controls and substantive data.

Question 15

What are advantages of using CAATs?

Answer 15

Large data analysis
Audit trail navigation
Extended audit procedures

Question 16

What are examples of CAATs?

Answer 16

Generalized audit software
Sample size calculator
Microsoft excel
Analytics ribbon in excel