Lesson 4 - Internal controls Flashcards

1
Q

What are the six key characteristics of internal control? (AUE2602)

A
  • Internal control is a process
  • Internal control is effected by people
  • Internal control is not the sole responsibility of management
  • Internal control is not static
  • Internal control is not fool proof
  • Internal control is not a case of a single control addressing a single risk.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Define internal controls in terms of ISA 315.

A

ISA 315.4(c) defines internal control as the process designed, implemented and maintained by those charged with governance, management and other personnel to provide reasonable assurance about the achievement of an entity’s objectives with regards to:
- the reliability of the entity’s financial reporting;
- the effectiveness and efficiency of its operations; and
- its compliance with applicable laws and regulations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

List the five components of internal control.

A
  1. Control environment
  2. Risk assessment
  3. Information systems
  4. Control activities
  5. Monitoring of controls
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

List six type of control activities.

A
  • Approval, authorisation
  • Segregation of duties
  • Isolation of responsibility
  • Access/custody
  • Comparison and reconciliation
  • Performance reviews
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are general controls?

A

General controls are defined as those controls which establish an overall framework of control for computer activities, and they span across all applications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

List three examples of general physical access controls.

A
  • Control over visitors from outside the company to the IT building.
  • Controlled access to company personnel other than IT personnel
  • Access control over remote workstations/terminals
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

List three examples of logical access controls.

A
  • identification of users and computer resources
  • authentication of users and computer resources
  • authorisation of the levels of access to be granted
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Define application controls.

A

Application controls as any control within an application which contributes to the accurate and complete recording and processing of transactions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

List 6 control techniques and application controls applicable to the input stage which a transaction flows through the system.

A

Access control
Authorisation
Batching
Screen aids and related features
Program controls relating to input
Existence/validity checks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly