l7 : controls & recommendations Flashcards
1
Q
what are controls?
A
management put these in place to prevent, detect or correct errors
2
Q
why are controls tested?
A
reduce the control risk which reduces overall audit risk. reduces need for substantive testing. ensures that controls are effective.
3
Q
what are the 5 types of control?
A
Physical
Authorisation
Reconciliation
Information Processing
Segregration of duties
4
Q
what is the process of controls testing?
A
- control in place, someone does something (be precise) (PARIS)
- what error does this control prevent, detect or correct? use assertions (CAVECOP)
- carry out control test (EIOU)
5
Q
give 3 examples of physical as a type of control.
A
- cash in a safe
- physical locks
- passwords on systems
6
Q
give 2 examples of authorisation as a type of control.
A
- authorising buying things
- needing signatures
7
Q
give 2 examples of reconciliation as a type of control.
A
- matching bank & cash
- matching invoices & bank statements with each expense
8
Q
give an example of information processing as a type of control.
A
- passwords
9
Q
give an example of segregration of duties as a type of control.
A
- use diff people to verify & check transactions as more likelihood for mistakes or fraud to be made if only one person involved in process
10
Q
what is the process of control recommendations?
A
- deficiency. what is not happening?
- implication. so what? persuade client to implement the controls
- recommendation. who? what? when? how often? in the ideal world.
