4 - IS Audit and Input Controls

The use of information technology is no longer

Info iconThis preview shows page 1. Sign up to view the full content.

View Full Document Right Arrow Icon
This is the end of the preview. Sign up to access the rest of the document.

Unformatted text preview: using information technology in auditing. The use of information technology is no longer optional. BUSI 335 Copyright © 2009-10 Y.M. Cheung, W. Tan, C. Woo and P. Bera 17 BUSI 335 Role of IS Auditor of IS Auditor Copyright © 2009-10 Y.M. Cheung, W. Tan, C. Woo and P. Bera 18 How to perform an IS Audit? to perform an IS Audit? • Audit Planning • An IS Auditor is responsible for: IS Auditor is responsible for: – Understand client’s business – Review of internal controls – assessing the strength and effectiveness of controls controls that are designed to protect are designed to protect information systems; and – Identify significant IS and the associated IT controls • Tests of Controls – ensuring that audit engagements are planned, that audit engagements are planned designed, and reviewed based on the assessed level of risk that irregular and illegal acts might occur. – Perform tests through manual techniques and specialized auditing software diti • Substantive Testing – Detailed investigation of specific account balances and investigation of specific account balances and transactions – Example: select sample account receivable balance and trace the sou...
View Full Document

Ask a homework question - tutors are online