Professional Documents
Culture Documents
Computer-Aided Audit Tools
Computer-Aided Audit Tools
and Techniques
Introduction to Input Controls 2
Designed to ensure that the transactions that bring data into the
system are valid, accurate, and complete
ASI CAATT
FBE UBAYA
Classes of Input Controls 3
ASI CAATT
FBE UBAYA
#1-Source Document Controls 4
ASI CAATT
FBE UBAYA
#2-Data Coding Controls 5
ASI CAATT
FBE UBAYA
#3-Batch Controls 6
ASI CAATT
FBE UBAYA
#3-Batch Controls 7
ASI CAATT
FBE UBAYA
#4-Validation Controls 8
ASI CAATT
FBE UBAYA
#4-Validation Controls 9
Field Interrogation
Missing data checks
Numeric-alphabetic data checks
Zero-value checks
Limit checks
Range checks
Validity checks
Check digit
Record Interrogation
Reasonableness checks
Sign checks
Sequence checks
File Interrogation
Internal label checks (tape)
Version checks
Expiration date check
ASI CAATT
FBE UBAYA
#5-Input Error Connection 10
1) Immediate Correction
2) Create an Error File
Reverse the effects of partially processed, resubmit corrected
records
Reinsert corrected records in processing stage where error
was detected
3) Reject the Entire Batch
ASI CAATT
FBE UBAYA
#6-Generalized Data Input Systems (GDIS) 11
Advantages:
Improves control by having one common system perform all
data validation
Ensures each AIS application applies a consistent standard of
data validation
Improves systems development efficiency
ASI CAATT
FBE UBAYA
#6-Generalized Data Input Systems (GDIS) 12
Major components:
3) Error File
4) Error Reports
5) Transaction Log
ASI CAATT
FBE UBAYA
Classes of Processing Controls 13
1) Run-to-Run Controls
ASI CAATT
FBE UBAYA
#1-Run-to-Run (Batch) 14
ASI CAATT
FBE UBAYA
#2-Operator Intervention 15
ASI CAATT
FBE UBAYA
#3-Audit Trail Controls 16
ASI CAATT
FBE UBAYA
Output Controls 17
ASI CAATT
FBE UBAYA
Output Controls 18
ASI CAATT
FBE UBAYA
Output Controls 19
Print Programs
Operator Intervention:
1) Pausing the print program to load output paper
2) Entering parameters needed by the print run
3) Restarting the print run at a prescribed checkpoint after a
printer malfunction
4) Removing printer output from the printer for review and
distribution
Print Program Controls
Production of unauthorized copies
Employ output document controls similar to source document controls
Unauthorized browsing of sensitive data by employees
Special multi-part paper that blocks certain fields
ASI CAATT
FBE UBAYA
Output Controls 20
Bursting
Supervision
Waste
Proper disposal of aborted copies and carbon
copies
Data control
Data control group – verify and log
Report distribution
Supervision
ASI CAATT
FBE UBAYA
Output Controls 21
Report retention:
Statutory requirements (gov’t)
Number of copies in existence
Existence of softcopies (backups)
Destroyed in a manner consistent with the sensitivity
of its contents
ASI CAATT
FBE UBAYA
Output Controls 22
ASI CAATT
FBE UBAYA
Black Box 23
ASI CAATT
FBE UBAYA
White Box 24
ASI CAATT
FBE UBAYA
White Box Test Methods 25
1) Authenticity tests:
Individuals / users
Programmed procedure
Messages to access system (e.g., logons)
All-American University, student lab: logon, reboot, logon *
2) Accuracy tests:
System only processes data values that conform to
specified tolerances
3) Completeness tests:
Identify missing data (field, records, files)
ASI CAATT
FBE UBAYA
White Box Test Methods 26
4) Redundancy tests:
Process each record exactly once
5) Audit trail tests:
Ensure application and/or system creates an adequate audit trail
Transactions listing
Error files or reports for all exceptions
6) Rounding error tests:
“Salami slicing”
Monitor activities – excessive ones are serious exceptions; e.g,
rounding and thousands of entries into a single account for $1 or
1¢
ASI CAATT
FBE UBAYA
Computer Aided Audit Tools and Controls(CAATTs) 27
ASI CAATT
FBE UBAYA
#1 –Test Data 28
ASI CAATT
FBE UBAYA
#2 – Base Case System Evaluation (BCSE) 29
ASI CAATT
FBE UBAYA
#3 – Tracing 30
ASI CAATT
FBE UBAYA
Test Data: Advantages and Disadvantages 31
ASI CAATT
FBE UBAYA
#4 – Integrated Test Facility 32
ASI CAATT
FBE UBAYA
#5 – Parallel Simulation 33
ASI CAATT
FBE UBAYA
Thank You