MODULE 3

Question 1

What’s the purpose of Internal Controls?

Answer 1

To provide assurance to directors over:
Reliability of financial Reporting
Effectiveness and efficiency of operating
Compliance with Applicable laws

Question 2

What are the 5 components of Internal Controls?

Answer 2

Control Environment
Risk Assessment Process
Information Systems
Control Activities
Monitoring of Control

Question 3

Describe Control Environment and give an example

Answer 3

Control Environment-Overall Attitude, awareness and actions of directors and management
E.g Management providing a staff manual that’s updated regularly and contains key info on processes

Question 4

Describe Risk Assessment Process and give an example

Answer 4

The process by which Business risks are identified and managed
E,g Management may organise a quarterly meeting with senior management to discuss key risks

Question 5

Describe Information Systems and give an example

Answer 5

Companies Use Information Systems to record financial transactions and non financial data to maintain accountability
E.g A payroll system helps staff compute and organise monthly payroll runs

Question 6

Describe Control; Activities and give an example

Answer 6

Policies and procedures put in place to ensure that their directives are carried out and to mitigate risks
E.g Requiring Significant payments to be authorised by a responsible person

Question 7

Describe Monitoring of Controls and give an example

Answer 7

Ongoing assessment by management of the performance of the internal control systems
E.g Production of monthly exception reports ( to identify any control deficiencies)

Question 8

What’s a Business process?

Answer 8

A series of Activities that enable a company to meet.one or more of its objectives

Question 9

What’s are Accounting Information Systems?

Answer 9

Structures used by organisations to collect, store and process financial and accounting data

Question 10

What’s the purpose of Control Activities?

Answer 10

They help ensure Managements directives are carried out, I.e Policies and procedures

Question 11

What are the two types of Control Activities?

Answer 11

Presentative Controls - Stop errors happening in the first place
Detective Controls- These pick errors up after they have happened and allow them to be corrected timorously

Question 12

What are the 5 categories of control Activities?

Answer 12

Authorisation controls
Performance Reviews
Information Processing Controls
Physical Controls
Segregation of Duties

Question 13

What are Authorisation Controls?

Answer 13

That Transactions are authorised by someone in the same scope
E.g Financing Director reviews and signs off the payroll before payment is made to employees

Question 14

What are Performance Reviews?

Answer 14

Allow Management to review Information to highlights any exception

Question 15

Information Processing Controls

Answer 15

Information processing controls a can be broken down into IT General Controls amend application Controls. Application controls then broken into IT Application Controls and Manual Controls

Question 16

What are Physical Controls?

Answer 16

They limit access to assets and important records

E.g A safe

Question 17

What are IT General Controls?

Answer 17

Policies and procedures that relate to many applications, they act as a bubble around the IT Systems and controls
The controls cover 4 key areas

E.g Restricting Computer Access via the.use of unique usernames and passwords
Ensuring that any sensitive data held in electronic format can only be accessed by properly authorised personnel

Question 18

What are Segregation of Duties

Answer 18

An important control in reducing the opportunity fir staff to conduct fraudulent transactions
Staff are normally given a USER ID with specific access rights