This preview shows page 1. Sign up to view the full content.
Unformatted text preview: would certainly be weakened. However, the company need not be unauditable, for two reasons: First, there may be controls outside the IT function which constitute effective control. For example, users may reconcile all input and output data on a regular basis. Second, the auditor of a non-public entity is not required to rely on internal control. He or she may take a substantive approach to the audit assuming adequate evidence is available in support of transactions and balances....
View Full Document
This note was uploaded on 04/11/2010 for the course ACCT 422 taught by Professor Blake during the Spring '10 term at MD University College.
- Spring '10