Professional Documents
Culture Documents
Auditing Under Computerized Environment Checkpoints Procedures
Auditing Under Computerized Environment Checkpoints Procedures
Auditing Under Computerized Environment Checkpoints Procedures
Many of us are in Bank Audit since many years. Some of us may be new entrants in this filed.
Concurrent Audits are also now a settled form of Audit in the Banks. The audit is conducted as
per the guidelines of RBI as well as there is a specific format/ checklist of every bank specific to
its own requirements.
Since the concurrent Auditor has to conduct the Audit on day to day basis & that to of the
voluminous transactions. Almost all the Banks are now Computerised & most of them are on
CBS platform. There are still few Banks/ Branches which are under TBM platform i.e. standalone
platform where each branch has its own server & maintains own database.
Whatever the form of computerization, Computerised Environment can make the work of
Auditors easy.
The Auditors need not have any technical knowledge for the same. There are various menus of
any application which are useful in generating useful information, which can in turn be used to
analyse or there are some reports which itself will provide the reporting material.
Auditor has to make himself accustomed with the Application the Bank is using for its
operations. Initially he has to spend some time with the Bank officials to understand different
menus, how to surf the information, how to generate & from where to generate various
information & reports from the Application. Different Banks use different applications.
Some information may not be easily available but we can request EDP Dept. to get the
information by putting SQL query.
Sample testing of few transactions is sufficient because that which is correct for some
transactions is correct for all transactions due to use of Software applications, it will give same
results unless basic information fed to the system is wrong e.g Interest application, levy of
different charges.
In the computerized systems what is most important is that the Parameters fed to the system
should be correct. Most of the processing is done on the basis of these parameters.
Get an access to the system from the system administrator. Note that the access given to the
Auditor should have browse option only. It should not have edit/ modify or entry option.
Different Applications have different types of MENUS. The auditor has to understand the
application software used by the Bank.
Spare some time & take a round of all the MENUS available in the system on your own. That will
appraise the Auditor various kinds of reports available on the system which can be used by him
for the purpose of Audit.
The reports generated are only guiding factor. We have to understand how to use the same for
analysis purpose & effectively use for our Audit.
Concurrent Audit in computerized environment is not a IS Audit. Considering this factor, we will
discuss the reports normally available on most of the applications & understand how the same
can be used to address various checkpoints under concurrent Audit. However the nomenclature
& view of the report may differ from system to system.