Internal Control Systems

Question 1

Inherent Limitations of Internal Control

Answer 1

Cost outweighing benefits
Collusion
Unforeseen circumstances
Poor judgement
Bypassing/overriding
Data processing controls
Human error or fraud
Non-routine transactions
Updates not applied

Question 2

Categories of Control

Answer 2

Corporate
Management
Business process
Transaction

Question 3

Corporate Controls

Answer 3

General policy statements
Establishment of core culture & values
Overall monitoring procedure (audit committee)

Question 4

Management Controls

Answer 4

Planning & performance management
System of accountabilities to superiors
Risk evaluation

Question 5

Bus. Process Controls

Answer 5

Authorisation limits, validation of input & reconciliation of different sources of info

Question 6

Transaction Controls

Answer 6

Complying with prescribed procedures
Accuracy & completeness checks

Question 7

Prevent Controls

Answer 7

Designed to prevent errors occurring in the first place

Question 8

Detect Controls

Answer 8

Designed to detect errors once they have occurred

Question 9

Correct Controls

Answer 9

Designed to minimise/negate the effect of errors

Question 10

Direct Controls

Answer 10

Direct activities or staff towards a desired outcome

Question 11

Discretionary Controls

Answer 11

Subject to human discretion

Question 12

Non-discretionary Controls

Answer 12

Provided automatically by the system & cannot by bypassed or overridden

Question 13

Voluntary Controls

Answer 13

Chosen by the organisation to support the business management

Question 14

Mandated Controls

Answer 14

Required by law & imposed by external authorities

Question 15

Levels of Information

Answer 15

Stategic
Tactical
Operational

Question 16

Qualities of Good Monitoring Info

Answer 16

Accurate
Complete
Cost-beneficial
User-targeted
Relevant
Authoritative
Timely
Easy to use

Question 17

Quality of IA

Answer 17

Scope of work (far-reaching?)
Independence
Authority (recommended actions taken?)
Resources

Question 18

Application Controls

Answer 18

Specific pieces of software & often cover controls over transaction processing
Prevent, detect & correct errors & irregularities as transactions flow through business systems

Question 19

General Controls

Answer 19

Wider computer environment – org. policies on use/procurement of hardware
The environment in which the application system is operated

Question 20

Financial Controls

Answer 20

Focus on key transaction areas with emphasis on safeguarding of assets, maintenance of proper accounting records & reliable financial info

Question 21

Non-financial Controls

Answer 21

Concentrate on wide performance issues
Qualitative
Quantitative

Question 22

Monitoring of Controls

Answer 22

External information
Financial information
Non-financial information

Question 23

Strategic Information

Answer 23

Used to plan organisational objectives & to assess whether the objectives are being met in practice

Question 24

Tactical Information

Answer 24

Used to decide how resources of the organisation should be employed & to monitor how they are being employed

Question 25

Operational Information

Answer 25

Used to ensure specific operational tasks are planned & carried out as intended