Professional Documents
Culture Documents
Standard Check List For Internal Auditors
Standard Check List For Internal Auditors
Standard Check List For Internal Auditors
TOPIC
A GENERAL
B CASH & BANK RECEIPTS
C CASH AND BANK PAYMENTS
D PETTY CASH
E BANK ANALYSIS
F PURCHASE & CREDITORS
G SALES
H Debtors
I FIXED ASSETS
J INVESTMENTS
K LOANS AND ADVANCES
L SHARE CAPITAL
M BORROWINGS
N STOCKS
O PRODUCTION
P PERSONNEL DEPARTMENT
Q SALARIES AND WAGES
R SECURITY DEPARTMENT
S BRANCHES / FACTORIES
T COMPUTERISATION
S. No Particulars Yes/
No
A GENERAL
1 Is an organization chart (Which gives give a clear definition and
allocation of duties and responsibilities of officials and employees)
readily available?
2 If not, have you prepared an organization chart on the basis
of discussions with senior officials?
9 Does the chart of accounts and accounting manual clearly define the
items to be recorded in the various accounts?
20 Are the cashier’s duties taken over for a few days, by some one else
occasionally?
D PETTY CASH
1 Is petty cash maintained on
a) Imprest basis?
b) Limited to reasonable amount?
2 Is it handled by only one person whose duties are divorced from other
cash receipts and disbursements?
26 Does the system ensure that all invoices and credit notes
received are duly processed?
6 Check the time lag between the dispatch of goods and date
of billing to see whether these has been any lapse and if so on what
account.
15 Check whether the sales tax has been correctly charged and
that the relevant records have been maintained as per the sales tax law.
16 Check whether the sales tax has been deposited timely and
relevant sales tax returns submitted accordingly.
20 Check the stage at which the customer’s orders are cancelled and
ascertain the reasons for their cancellation.
H 1 Debtors
2 Are invoices mailed direct to the customers promptly?
3 Are credits to customers for remittances posted only from
the entries in the Cash Book (or equivalent record)?
I FIXED ASSETS
Purchase and disposal
1 Are budgets for capital expenditure approved by the board?
Are approved budgets communicated in writing to -:
Purchase Department? Accounts Department?
Department originating the request?
2
Records
12 Are fixed assets under construction :-
Subject to separate control account in general ledger? Controlled by job
number?
Accumulated depreciation.
Estimated salvage value.
Insurance
a) Are the following risks covered in respect of building
and machinery:
i) Fire
ii) Strike, riot and civil commotion.
iii) Flood
iv) Earthquake
v) Nuclear risks
vi) Malicious damage
36 vii) War risks?
b) If the answer to any of the above is negative, is it due to a specific
decision taken by a senior official?
38 Is there an official who decides on the value for which policies are
taken?
J INVESTMENTS
Is an investments register kept, showing:
a) The nature and description of the investments?
b) In the case of investments in companies, the name of company in
which the investment has been made?
c) Certificates number?
d) Distinctive numbers?
e) Cost, amounts paid up and face value?
f) The names in which the investments have been made?
1 g) Due dates for receipt of interest?
h) Date on which dividends are ordinarily received?
i) Maturity dates?
Prepaid Expenses
13 Are the balances in prepaid expense accounts reviewed to
ensure that they are properly chargeable to future accounting
period?
Deposits
d) Does the company maintain proper records of deposits
made showing:
e) Name of the authority with whom the money is deposited?
f) Amount?
g) The period for which the deposit is to be held?
h) The mode of repayment, e.g. whether by refund order or by
adjustment against bills?
17 i) The dates on which interest, if any, is receivable on the deposits?
L SHARE CAPITAL
1 Does the company have its own share department?
2 Are all share certificates signed manually by all the persons
authorised to sign them?
If any signature on a share certificate is affixed by
mechanical means, are the plates or other devices kept under the control
3 of a person other than one who signed the certificates manually?
Is the share ledger balanced and tallied with the financial ledger:
d) As on the Balance Sheet date?
e) When preparing dividend lists?
f) On any other occasion?
13 (Example: when issuing rights or bonus shares)
Power of Attorney:
c) Are they entered in a separate Register?
d) Are copies kept?
23 e) Are specimen signatures of the power of attorney holders
obtained and kept in file?
If the Company uses the services of a Share Transfer Agent
or Registrar, does the company obtain a certificate from such Agent or
24 Registrar to the effect that all the controls mentioned above are in
operation?
M BORROWINGS
General
Does the Board resolution under Section 292 (1) (c) authorizing the
borrowings specify:
c) The total amount upto which monies may be borrowed?
d) The persons authorised to borrow?
e) The security that can be offered against the borrowings?
f) The period of the borrowings?
1 g) The rate of interest?
authorised official?
5 Is there a review by a responsible official periodically to
ensure that all covenants under the loan agreements are complied with?
Transfers
6 Are Transfer Deeds received in respect of debentures:
d) Numbered on receipt?
e) Entered in a Transfer Register?
N STOCKS
1 Are stocks stored in assigned areas:
2 If so, is access to these areas limited?
Are stocks insured against the following risks:
a) Fire?
b) Strike, riot and civil commotion?
c) Flood?
d) Hail damage, where applicable?
3 e) Burglary?
f) Riot?
c) Overheads?
Does the cost system provide for detailed units or job order
costs in terms of :
a) Raw material costs?
b) Direct Labour?
c) Overheads?
31 d) Physical quantities?
e) Unit rates?
37 Whether norms for the stock levels have been fixed, and if
so whether they are reviewed periodically depending upon the
consumption and procurement cycles.
O PRODUCTION
1 To carry out Input-output analysis
- to match consumption of Raw-Material with Production
- Comparison of Standard Vs. Actual output
2 Analysis of Wastage
- Normal Vs. Abnormal and treatment in books
3 Scrap Reconciliation
- Opening Stock + Generation-Sales = Closing Stock
4 Sales Forecast Vs. Production Plan.
- To compare with actual production
P PERSONNEL DEPARTMENT
General
1 Examine the organizational manual.
Examine the policy followed for :
a) Recruitment,
b) Grant of annual increments,
2 c) Promotion &
d) Terminations
R SECURITY DEPARTMENT
a) Ascertain if security guards are posted at the receipt
and dispatch point to check the quantity of goods transacted?
b) Do they initial any document that they co-relate with the physical
1 movement of goods?
2 Does any security guard accompany while that are routed through weigh
bridge? Is the weighment slip intialled by the guard?
Evaluate control over issue and usage of keys - e.g. check on the
following points.
a) Is there a proper key board with peg numbers to ensure
that missing keys are conveniently noticed in the security office?
b) Is there a master list of all keys given to security for custody and
issue?
c) Is there a list of persons, authorised to draw keys from the security
and is this being followed for issuing keys?
d) Is there a key issue register which records details viz. date and time
of issuing keys, signatures of person obtaining the keys and the time of
return of keys after every issue?
e) Are all duplicate keys in safe custody with persons at responsible level
7 and other than those who are authorised to use original keys in normal
routine?
Is such custody formally documented?
S BRANCHES / FACTORIES
1 Are the branches / factories self accounting?
2 If so, has the; internal control system at the branches been
evaluated?
11 Are there frequent spot check and audits by the Head Office
over the branches / factories?
T COMPUTERISATION
SAFEGUARDS TO ENSURE UNAUTHORIZED ENTRY
a) Whether all visitors are checked on arrival or not? (The visitors should
not carry any kind of removable disk with them.)
b) Whether visitors card is issued or not?
c) What is the procedure for permission to work in the computer
environment for employees after office hours?
d) Whether the person using the computer is trained and familiar with all
the software which the firm is using?
e) What are the positions that EDP team? Whether it comprises of
1 system annalisyst, programmer, data entry operator etc.?
SOFTWARE RESOURCES
a) Whether the software presently in use is original? (The
Software should not be pirated).
b) Are the suppliers of software reliable?
c) Whether the software in use are of latest version and whether they
configured according to the configuration of the computer’s hardware?
d) Whether the company is having the original copy of software being
used by the company in case of any emergency?
e) What is the system in place to attend to end user
problems faced in different departments regarding software by EDP
personnel?
f) What are the checks installed in the software to ensure that data
2 generation is checked at each stage?
NETWORKING
Whether there is adequate security of hardware in respect
of the following-:
1) For computers other than on LAN
a) Location of computers
2) Computers on LAN-:
a) Is hardware locks available in the computer itself?
b) Whether the computer’s LAN cards are checked on a regular basis?
c) Whether transmission to LAN or to a remote terminal possible by the
users?
d) Whether any command is in built in the program give a warning
regarding any unauthorized access from an unauthorized terminal?
e) Whether any errors report regarding access to computers by
individual users generated on periodical basis?
f) What are actions taken against the number of errors
regarding access exceeding the normal?
3 g) Whether software procurement is centralized or decentralized?
h) Whether the message is sent via network in encrypted form?
i) What are the procedures regarding ensuring receipt of message by
the person to whom it is sent?
j) What are the procedures to ensure that message has
been sent by person authorized to send it?
DATA ACCESS
a) Whether the use of individual systems have been restricted
through passwords?
b) Whether passwords are changed regularly?
4 c) Whether separate directories have been created for main
programs?
DATA PROTECTION AND DATA RECOVERY
1) ANTI-VIRUS
a) Whether the computers are provided with up-to-date antivirus
packages with virus detection and repair facility?
2) DATA RECOVERY
(a) Whether the system is having software to recover any lost or
misplaced file?
(b) Whether there exist any disaster recovery plan or not and who are
the people to be informed in case of disaster, evaluation procedures
etc.?
(c) In case of disaster how much time is taken to solve the problem
5 (software or hardware problem)?
(d) Whether disaster recovery plan implementation is tested
periodically by simulating disaster procedures?
DATA DISTRIBUTION
a) Whether proper backups are provided on a regular basis?
b) Whether the data stored at more than one place as well as on any
kind of removable disk (e.g. Floppy Disk). And is updated on a regular
basis?
c) Whether the backups adequately controlled by proper labeling to
ensure identification?
6
POWER SUPPLY OPTION
a) Whether all the systems are provided with CONSTANT
POWER SUPPLY with the help of a UPS, Inverter or a Generator?
b) Whether the capacity of UPS is appropriate with respect to the
7 quantum of the activity?
ACCESSORIES
a) Whether the individual systems are attached with
printers, keyboards, mouse, monitors and any other required accessory?
8
MAINTENANCE OF HARDWARE AND SOFTWARE
a) Whether the Company has taken AMC for the computers?
b) Whether the contract in respect of the AMC have been renewed?
c) Whether the system is adequate to meet present and
future requirements?
9
CONVERSION OF EXISTING SYSTEM
a) What is the method of conversion of existing system into alternative
system whether it is:-
1. Direct Conversion
2. Distributed Conversion
3. Parallel Conversion
4. Gradual Conversion
5. Prototype Conversion
(e) Whether from manual to computer or from existing to alternative
one?
(f) What problems being faced in the aforesaid point?
10 (g) Whether any report generated regarding the problems and they
necessitate adopting an alternative method of conversion?
WEB-EXPOSSURE AND SECURITY
1. INTERNET
(a) Whether the company has the internet facility?
(b) Whether any authorized person is exposed to internet and only to the
authorized Websites as internet is the main source of viruses?
2. WEBSITE
a) Whether the company has its own website?
b) Is the cost benefit analysis done for the same?
c) Whether the company’s official Web-Site is being properly
11 modified by the authorized person or not?
d) Whether the FTP password is kept in safe hands or not?
e) Whether FTP software used is safe or not.