Presentation is loading. Please wait.

Presentation is loading. Please wait.

Types of CAATs Session 3.

Published byAbraham Burke Modified over 6 years ago

Similar presentations

Presentation on theme: "Types of CAATs Session 3."— Presentation transcript:

1 Types of CAATs Session 3

2 CAATs for program validation CAATs for data analysis
Categories of CAATs CAATs for program validation Verification of different processes in programs CAATs for data analysis Ignore programs used to generate data; focus exclusively on data

3 Program vs. Data Analysis CAATs
Program validation tools generally only for compliance and financial audits Data analysis tools for performance and investigative audits also Use of program-oriented CAATs requires higher level of technical expertise (Level 3 expert IT auditors) May not be feasible for many SAIs

4 CAATs for Program Analysis
Tools for examining data flows Tools for verifying data and file integrity Embedded Audit Modules Other Tools

5 Examining Data Flows Snapshot Tracing
Freeze a program at a given point, and check on processing and transaction values E.g. debug facility Tracing Complete audit trail tracing transactions through processing of program code Useful for highlighting errors Requires knowledge of programming

6 Examining Data Flows (Contd.)
Mapping Monitoring program execution for statistical information Used for highlighting redundant / fraudulent code

7 Verifying data and file integrity
Parallel simulation Test Data Generators and Integrated Test Facilities

8 Parallel simulation Independently create routines to simulate/ re-perform parts of application program Useful for checking accuracy of calculations Programming and system knowledge required

9 Test data generators and Integrated Test Facilities
Generation of fictitious test data for testing application controls Test data generators are independent software programs; while Integrated Test Facility is a part of the application program Test results to be removed from system / reports Difficult to create all possible combinations of test data

10 Embedded Audit Modules
Used to extract data meeting auditor-specified criteria into a separate file Volatile data can also be captured Needs to be integrated into the auditee IT system SCARF System Control Audit Review File Extracting transactions falling outside auditor-determined reasonable limits SARF (Sample Audit Review File)

11 Program library analysis Code comparison
Other Tools Source code review Review of sections of source code Program library analysis Review changes to program software Code comparison Compare production version of code with master copy User log analysis Identify unauthorised entry attempts and password violation

12 CAATs for Data Analysis
Predominant approach followed by auditors Totalling Stratification Data mining Sampling Exception Reporting Duplicate Record Checks Ageing Gap Detection Re-performance of calculations

13 Potential risks from reliance on data analysis Issues
Exclusive reliance on data analysis Prior IT Controls Review Verification of integrity of downloaded data Understanding of IT System and Data Knowledge of CAAT Tool Quality Assurance Methodology

Download ppt "Types of CAATs Session 3."

Similar presentations

Presented to the Tallahassee ISACA Chapter

Presented to the Tallahassee ISACA Chapter
ITAuditing Using GAS & CAATs

ITAuditing Using GAS & CAATs
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
Chapter 3 with added info

Chapter 3 with added info
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.

McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.
Purchases & Cash Disbursements Transactions By David N. Ricchiute

Purchases & Cash Disbursements Transactions By David N. Ricchiute
12 - 1 ©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder The Impact of Information Technology on the Audit Process Chapter 12.

©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder The Impact of Information Technology on the Audit Process Chapter 12.
Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star.

Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star.
Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star.

Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star.
1 Output Controls Ensure that system output is not lost, misdirected, or corrupted and that privacy is not violated. Exposures of this sort can cause serious.

1 Output Controls Ensure that system output is not lost, misdirected, or corrupted and that privacy is not violated. Exposures of this sort can cause serious.
Computer Assisted Audit Techniques

Computer Assisted Audit Techniques
Pertemuan 7-8 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.

Pertemuan 7-8 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Concurrent Auditing Techniques

Concurrent Auditing Techniques
AUDITING INFORMATION TECHNOLOGY USING COMPUTER ASSISTED AUDIT TOOLS AND TECHNIQUES.

AUDITING INFORMATION TECHNOLOGY USING COMPUTER ASSISTED AUDIT TOOLS AND TECHNIQUES.
Advanced Accounting Information Systems

Advanced Accounting Information Systems
Accounting Information Systems, 1st Edition

Accounting Information Systems, 1st Edition
Auditing 81.3550 Auditing & Automated Systems Chapter 22 Auditing & Automated Systems Chapter 22.

Auditing Auditing & Automated Systems Chapter 22 Auditing & Automated Systems Chapter 22.
©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley 11 - 1 The Impact of Information Technology on the Audit.

©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley The Impact of Information Technology on the Audit.
Chapter 13 Auditing Information Technology

Chapter 13 Auditing Information Technology

Similar presentations

Ads by Google