Beruflich Dokumente
Kultur Dokumente
IT Auditing, Hall, 4e
Angelica Venesia
Shania Mignon
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Learning Objectives
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Input Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Validation in Batch Sequential File
System
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Input Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Processing Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Run-to-Run Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Processing Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Transaction Log to Preserve the
Audit Trail
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Stages in the Output Process
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Output Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Output Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Output Controls
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Black-Box Approach
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Testing Computer Application
Controls
o Pendekatan white-box (audit melalui komputer) membutuhkan
pemahaman mendalam tentang logika internal. Tes kontrol:
o Tes akses mencakup verifikasi ID dan kata sandi.
o Uji validitas meliputi rentang, bidang, batas, dan kewajaran.
o Tes akurasi mencakup perhitungan ulang dan rekonsiliasi.
o Tes kelengkapan meliputi bidang, catatan urutan dan hash dan
perhitungan kembali total kontrol keuangan.
o Tes redundansi meliputi peninjauan catatan jumlah dan perhitungan
kembali total hash dan tes kontrol keuangan.
o Tes jejak audit mencakup perolehan bukti bahwa jejak audit yang
memadai dibuat.
o Tes kesalahan pembulatan memverifikasi prosedur pembulatan.
o Rentan terhadap salami penipuan.
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Rounding Error Algorithm
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Computer Aided Audit Tools &
Techniques for Testing Controls
Metode data uji yang digunakan untuk menetapkan
integritas pemrosesan aplikasi.
Hasil dari uji coba dibandingkan dengan harapan yang
telah ditentukan untuk mengevaluasi logika aplikasi dan
kontrol.
Data uji mencakup transaksi yang valid dan tidak valid.
Evaluasi sistem kasus dasar (BCSE) adalah varian metode
data uji di mana data uji komprehensif melewati pengujian
berulang hingga diperoleh kasus dasar yang valid.
Ketika aplikasi diubah, hasil tes selanjutnya (baru) dapat
dibandingkan dengan hasil sebelumnya (basis).
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Test Data Technique
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Computer Aided Audit Tools &
Techniques for Testing
Controls
Tracing mengambil langkah demi langkah logika internal aplikasi.
Keuntungan teknik data uji:
Berikan bukti eksplisit tentang fungsi aplikasi.
Dapat digunakan dengan gangguan minimal.
Hanya membutuhkan keahlian komputer auditor minimal.
Kerugian dari teknik data uji:
Auditor harus mengandalkan personel layanan komputer untuk
mendapatkan salinan aplikasi untuk pengujian.
Memberikan gambaran statis tentang integritas aplikasi dan bukan cara
yang mudah untuk mengumpulkan bukti tentang fungsionalitas aplikasi
yang sedang berlangsung.
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
Biaya yang relatif tinggi untuk implementasi, audit inefisiensi.
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
The Integrated Test Facility
(ITF)
o Teknik otomatis memungkinkan auditor untuk menguji logika dan kontrol
selama operasi normal dengan mengatur entitas dummy dalam sistem
aplikasi.
o Sistem membedakan antara ITF dan transaksi rutin.
o Auditor menganalisis hasil ITF terhadap hasil yang diharapkan.
o Keuntungan ITF:
o Mendukung pemantauan kontrol yang sedang berlangsung sebagaimana
ditentukan oleh kerangka kerja kontrol COSO.
o Aplikasi dapat diuji secara ekonomis tanpa mengganggu operasi
pengguna dan tanpa intervensi personel layanan komputer,
meningkatkan efisiensi dan keandalan.
o Kerugian utama ITF berpotensi merusak file data.
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
ITF Technique
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Parallel Simulation
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.
Parallel Simulation Technique
© 2016 Cengage Learning®. May not be scanned, copied or duplicated or posted to a publicly accessible website, in whole or in part, except for use as permitted in a license
distributed with a certain product or service or otherwise on a password-protected website or school-approved learning management system for classroom use.