Professional Documents
Culture Documents
CMA P1 Section E FC
CMA P1 Section E FC
1) Control environment
2) Risk assessment
3) Control activities
4) Information and communication
5) Monitoring activities
1) Authorization
2) Completeness
3) Accuracy
4) Validity
5) Physical safeguards and security
6) Error handling
7) Segregation of duties
1) Authorizing a transaction.
2) Recordkeeping (recording the transaction, preparing
source documents, and maintaining journals).
3) Keeping physical custody of the related asset. For
example, receiving checks in the mail.
4) The periodic reconciliation of the physical assets to
the recorded amounts for those assets.
1) Anti-bribery provision
2) Internal control provision
1) Unqualified
2) Qualified
3) Adverse
4) Disclaimer
1) General controls
2) Application controls
1) Input controls
2) Processing controls
3) Output controls
1) Statement of objectives
2) Investigation and feasibility study
3) Systems analysis
4) Conceptual design
5) Physical design
6) Development and testing
7) Systems implementation and conversion
8) Operations and maintenance
© 2020 HOCK international
What are three classifications of
controls based on their timing?
1) Preventive controls
2) Detective controls
3) Corrective controls
1) Test data
2) Integrated test facility
3) Parallel simulation
• Firewalls
• Proxy servers
• Antisniffers
• Switched networks
1) Secret key
2) Public key/private key