Presentation is loading. Please wait.

Presentation is loading. Please wait.

Concurrent Auditing Techniques

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Concurrent Auditing Techniques"— Presentation transcript:

1 Concurrent Auditing Techniques
Chapter 18 Concurrent Auditing Techniques

2 Concurrent Auditing Techniques to collect audit evidence at the same time as an application system undertakes processing of its production

3 Basic Nature of Concurrent Auditing Techniques
2 bases for collecting audit evidence Special audit modules are embedded in application systems to collect, process, and print audit evidenced Audit records used to store the audit evidence collected so auditors can examine this evidence at a later stage

4 Concurrent Auditing

5 Need for Concurrent Auditing Techniques
Disappearing Paper-Based Audit Trail Continuous Monitoring Required by Advance Systems (see next Figure) Increasing Difficulty of Performing Transaction Walkthroughs Presence of Entropy in Systems tendency of systems toward internal disorder and eventual collapse over time Problems Posed by Outsourced IT Systems (difficult for auditors to be there at the outsource) EDI and Inter- organizational Info systems

6

7 Concurrent Audit Techniques
Integrated test facility (dummy company test data then analysis of authenticity, accuracy, and completeness) Snapshot/extended record System control audit review file (SCARF) Continuous and intermittent simulation (CIS)

8 Integrated Test Facility (ITF)
Verifies authenticity, accuracy, and completeness Involves 2 major design decisions: What method will be used to enter test data? What method will be used to remove the effects of ITF transactions?

9 Methods of Entering Test Data Using ITF
(1) Involves tagging transactions submitted as production input to the application system to be tested (2) Involves designing new test transactions and entering them with the production input into the application system

10 Entering test data

11 Methods of Removing the Effects of ITF Transactions
(1) Modify the application system programs to recognize ITF transactions and to ignore them in terms of any processing that might affect users (2) Submit additional input that reverses the effects of the ITF transactions (3) Submit trivial entries so the effects of the ITF transaction on output are minimal

12 Snapshot/Extended Record
Involves software taking “pictures” of a transaction as it flows through an application system. Major Implementation Decisions Where to locate the snapshot points? When to capture snapshots of transactions? Items needed for reporting of the snapshot data that is captured (timestamp, ID, time of each process)

13

14

15 System Control Audit Review File
The most complex technique Involves embedding audit software modules within a host application system to provide continuous monitoring of the system’s transactions 2 major design decisions: What info. will be collected by SCARF? What reporting system will be used?

16

17 Information Collected by SCARF
Application system errors Policy and procedural variances System exceptions (certain errors are allowed) Statistical samples Snapshots and extended records Profiling data (data to build profile of users) Performance measurement data

18 Structure of SCARF Reporting
Design Decisions Determining how the SCARF file will be updated (e.g., small applications send data to the file once a day) Choosing sort codes and report formats to be used Choosing the timing of report preparation

19

20 Continuous & Intermittent Simulation
Primary advantages of CIS SCARF defines exceptions of interest but CIS traps exceptions for auditors using DBMS. It does not not require modifications to the application system Provides an online auditing capability Requires less programming instructions Less input/output overheads

21

Download ppt "Concurrent Auditing Techniques"

Similar presentations

Module 3: Business Information Systems

Module 3: Business Information Systems
©2008 Prentice Hall Business Publishing, Auditing 12/e, Arens/Beasley/Elder 12 - 1 The Impact of Information Technology on the Audit Process Chapter 12.

©2008 Prentice Hall Business Publishing, Auditing 12/e, Arens/Beasley/Elder The Impact of Information Technology on the Audit Process Chapter 12.
Presented to the Tallahassee ISACA Chapter

Presented to the Tallahassee ISACA Chapter
ITAuditing Using GAS & CAATs

ITAuditing Using GAS & CAATs
Overview of Transaction Processing and Enterprise Resource Planning Systems Chapter 2.

Overview of Transaction Processing and Enterprise Resource Planning Systems Chapter 2.
AUDITING COMPUTER-BASED INFORMATION SYSTEMS

AUDITING COMPUTER-BASED INFORMATION SYSTEMS
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
Chapter 3 with added info

Chapter 3 with added info
Auditing Computer Systems

Auditing Computer Systems
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
The Islamic University of Gaza

The Islamic University of Gaza
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.

McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.
CAATTs for Data Extraction and Analysis

CAATTs for Data Extraction and Analysis
Consideration of Internal Control in an IT Environment.

Consideration of Internal Control in an IT Environment.
12 - 1 ©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder The Impact of Information Technology on the Audit Process Chapter 12.

©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder The Impact of Information Technology on the Audit Process Chapter 12.
Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star.

Accounting Information Systems, 5 th edition James A. Hall COPYRIGHT © 2007 Thomson South-Western, a part of The Thomson Corporation. Thomson, the Star.
1 Output Controls Ensure that system output is not lost, misdirected, or corrupted and that privacy is not violated. Exposures of this sort can cause serious.

1 Output Controls Ensure that system output is not lost, misdirected, or corrupted and that privacy is not violated. Exposures of this sort can cause serious.
Computer Assisted Audit Techniques

Computer Assisted Audit Techniques
©2003 Prentice Hall Business Publishing, Accounting Information Systems, 9/e, Romney/Steinbart 18-1 Accounting Information Systems 9 th Edition Marshall.

©2003 Prentice Hall Business Publishing, Accounting Information Systems, 9/e, Romney/Steinbart 18-1 Accounting Information Systems 9 th Edition Marshall.
©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley 11 - 1 The Impact of Information Technology on the Audit.

©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley The Impact of Information Technology on the Audit.

Similar presentations

Ads by Google