7
- Главная
- Разное
- Дизайн
- Бизнес и предпринимательство
- Аналитика
- Образование
- Развлечения
- Красота и здоровье
- Финансы
- Государство
- Путешествия
- Спорт
- Недвижимость
- Армия
- Графика
- Культурология
- Еда и кулинария
- Лингвистика
- Английский язык
- Астрономия
- Алгебра
- Биология
- География
- Детские презентации
- Информатика
- История
- Литература
- Маркетинг
- Математика
- Медицина
- Менеджмент
- Музыка
- МХК
- Немецкий язык
- ОБЖ
- Обществознание
- Окружающий мир
- Педагогика
- Русский язык
- Технология
- Физика
- Философия
- Химия
- Шаблоны, картинки для презентаций
- Экология
- Экономика
- Юриспруденция
Internal control and deontology - Chapter 7 IT auditing презентация
Содержание
1. Risks and opportunities Risks: (-) less oral communication and personal contacts ? errors, misunderstandings, … could arise and exist longer (-) fewer formal registrations (-) small programming errors
Слайд 21. Risks and opportunities
Risks:
(-) less oral communication and personal contacts ?
errors, misunderstandings, … could arise and exist longer
(-) fewer formal registrations
(-) small programming errors are repeated frequently thus resulting in large errors
Opportunities
(+) time savings and more efficiency
(+) basic controls and checks can be programmed
(+) LOG files
(+) faster, better (more efficient) management reporting is possible (dashboards, mgt cockpits, etc)
Attention!:
Don’t forget: reliability of output depends on input (“garbage in = garbage out”)
Seggregation of duties is crucial
(-) fewer formal registrations
(-) small programming errors are repeated frequently thus resulting in large errors
Opportunities
(+) time savings and more efficiency
(+) basic controls and checks can be programmed
(+) LOG files
(+) faster, better (more efficient) management reporting is possible (dashboards, mgt cockpits, etc)
Attention!:
Don’t forget: reliability of output depends on input (“garbage in = garbage out”)
Seggregation of duties is crucial
Internal control and deontology Chapter 7
Слайд 32. I/C in an IT environment
Specific internal control aspects:
Responsabilities:
Who is responsible
for the design, development, (testing), implementation and maintenance of the IT systems? ? the IT department
Seggregation of duties is important:
Implementation, testing, apporval of new systems
Creation of user ID’s and passwords
Otherwise: same principles as in a non-automized environment
IT department should never make changes/alter the system without permission (unilateral)
Seggregation of duties is important:
Implementation, testing, apporval of new systems
Creation of user ID’s and passwords
Otherwise: same principles as in a non-automized environment
IT department should never make changes/alter the system without permission (unilateral)
Internal control and deontology Chapter 7
Слайд 4Security:
Physical security: fire, floods, inappropriate access, ….
Technical security: use
of passwords, pincodes, etc.
What is a good password?:
passwords are personal
Frequently changed
complex (special signs)
Kept in a safe place
Automatic logging of (attempted) access to personal data
Security is not a one time effort!
logging and keeping track of access attempts
Privacy policy
Only using legal software versions
Contingency planning– continuïty – reputational damage
What is a good password?:
passwords are personal
Frequently changed
complex (special signs)
Kept in a safe place
Automatic logging of (attempted) access to personal data
Security is not a one time effort!
logging and keeping track of access attempts
Privacy policy
Only using legal software versions
Contingency planning– continuïty – reputational damage
Internal control and deontology Chapter 7
Слайд 53. CAAT’s
Computer Assisted Audit Techniques:
Specific audit software (ACL, Idea, …): more
powerfull than Excel
Usefull for:
retrieving double payments
Retrieving ‘gaps’ in data
Linking databases
sampling
Usefull for:
retrieving double payments
Retrieving ‘gaps’ in data
Linking databases
sampling
Internal control and deontology Chapter 7
