- Gebundenes Buch
- Merkliste
- Auf die Merkliste
- Bewerten Bewerten
- Teilen
- Produkt teilen
- Produkterinnerung
- Produkterinnerung
Computer Aided Audit Tools and Techniques (CAATTs) is a discipline that continues to evolve with the complexity and functionality of enterprise software solutions adopted by the business marketplace. This book is the only of its kind, providing strategic and implementation guidance on CAATTs.
Internal Audit: Efficiency Through Automation teaches state of the art computer aided audit techniques, with practical guidelines on how to get much needed data, overcome organizational roadblocks, build data analysis skills, as well as address Continuous Auditing issues. Chapter 1 CAATTs History,…mehr
Andere Kunden interessierten sich auch für
- Sally-Anne PittInternal Audit Quality106,99 €
- Michael P. CangemiManaging the Audit Function114,99 €
- Robert R. MoellerCOSO Enterprise Risk Management65,99 €
- Spencer PickettThe Essential Guide to Internal Auditing71,99 €
- Martin TunleyThe Accredited Counter Fraud Specialist Handbook78,99 €
- Leonard W. VonaFraud Risk Assessment94,99 €
- Katharine BagshawCore Auditing Standards for Practitioners73,99 €
-
-
-
Computer Aided Audit Tools and Techniques (CAATTs) is a discipline that continues to evolve with the complexity and functionality of enterprise software solutions adopted by the business marketplace. This book is the only of its kind, providing strategic and implementation guidance on CAATTs.
Internal Audit: Efficiency Through Automation teaches state of the art computer aided audit techniques, with practical guidelines on how to get much needed data, overcome organizational roadblocks, build data analysis skills, as well as address Continuous Auditing issues. Chapter 1 CAATTs History, Chapter 2 Audit Technology, Chapter 3 Continuous Auditing, Chapter 4 CAATTs Benefits and Opportunities, Chapter 5 CAATTs for Broader Scoped Audits, Chapter 6 Data Access and Testing, Chapter 7 Developing CAATT Capabilities, Chapter 8 Challenges for Audit,
Internal Audit: Efficiency Through Automation teaches state of the art computer aided audit techniques, with practical guidelines on how to get much needed data, overcome organizational roadblocks, build data analysis skills, as well as address Continuous Auditing issues. Chapter 1 CAATTs History, Chapter 2 Audit Technology, Chapter 3 Continuous Auditing, Chapter 4 CAATTs Benefits and Opportunities, Chapter 5 CAATTs for Broader Scoped Audits, Chapter 6 Data Access and Testing, Chapter 7 Developing CAATT Capabilities, Chapter 8 Challenges for Audit,
Produktdetails
- Produktdetails
- Verlag: Wiley & Sons
- 1. Auflage
- Seitenzahl: 272
- Erscheinungstermin: 1. Dezember 2008
- Englisch
- Abmessung: 235mm x 157mm x 19mm
- Gewicht: 456g
- ISBN-13: 9780470392423
- ISBN-10: 0470392428
- Artikelnr.: 25050225
- Verlag: Wiley & Sons
- 1. Auflage
- Seitenzahl: 272
- Erscheinungstermin: 1. Dezember 2008
- Englisch
- Abmessung: 235mm x 157mm x 19mm
- Gewicht: 456g
- ISBN-13: 9780470392423
- ISBN-10: 0470392428
- Artikelnr.: 25050225
David Coderre has over twenty years of experience in internal audit, management consulting, policy development, management information systems, system development, and application implementation areas. He is currently President of CAATS (Computer-Assisted Analysis Techniques and Solutions). He is the author of three highly regarded books on using data analysis for audit and fraud detection.
Case Studies. Preface. Acknowledgments. Chapter 1. CAATTs History. The New
Audit Environment. The Age of Information Technology. Decentralization of
Technology. Absence of the Paper Trail. Do More with Less. Definition of
CAATTs. Evolution of CAATTs. Audit Software Developments. Historical
CAATTs. Test Decks. Integrated Test Facility (ITF). System Control Audit
Review File (SCARF). Sample Audit Review File (SARF). Sampling. Parallel
Simulation. Reasonableness Tests and Exception Reporting. Traditional
Approaches to Computer-Based Auditing. Systems-Based Approach. Data-Based
Approach. Audit Management and Administrative Support. Roadblocks to CAATT
Implementation. Summary and Conclusions. Chapter 2. Audit Technology. Audit
Technology Continuum. Introductory Use of Technology. Moderate Use of
Technology. Integral Use of Technology. Advanced Use of Technology. Getting
There. General Software Useful for Auditors. Word Processing. Text Search
and Retrieval. Reference Libraries. Spreadsheets. Presentation Software.
Flowcharting. Antivirus and Firewall Software. Software Licensing Checkers.
Specialized Audit Software Applications. Data Access, Analysis, Testing,
and Reporting. Standardized Extractions and Reports. Information Downloaded
from Mainframe Applications and/or Client Systems. Electronic
Questionnaires and Audit Programs. Control Self-Assessment. Parallel
Simulation. Electronic Working Papers. Data Warehouse. Data Mining.
Software for Audit Management and Administration. Audit Universe. Audit
Department Management Software. E-mail. File Transfer Protocol (FTP).
Intranet. Databases. Groupware. Electronic Document Management. Electronic
Audit Reports and Methodologies. Audit Scheduling, Time Reporting, and
Billing. Project Management. Extensible Business Reporting Language (XBRL).
Expert Systems. Audit Early-Warning Systems. Continuous Auditing.
Continuous Auditing versus Continuous Monitoring. Example of Continuous
Auditing: Application to an Accounts Payable Department. Stages of
Continuous Auditing. Continuous Auditing Template. Sarbanes-Oxley.
Important SOX Sections. The Role and Responsibility of Internal Audit. Risk
Factors. Detecting Fraud. Determining the Exposure to Fraud. SOX Software.
Assessment of IT Controls and Risks. Defining the Scope. GAIT Principles.
Governance, Risk Management, and Compliance (GRC). Internal Audit's Role in
the GRC Process. Identifying and Assessing Managementâ?(tm)s Risk
Management Process. Assessment of Internal Control Processes. GRC Software.
Summary and Conclusions. Chapter 3. CAATTs Benefits and Opportunities. The
Inevitability of Using CAATTs. The New IM Environment. The New Audit
Paradigm. Expected Benefits. Planning Phaseâ?"Benefits. Conduct
Phaseâ?"Benefits. Data Analysis. Increased Coverage. Better Use of Auditor
Resources. Improved Results. Reporting Phaseâ?"Benefits. Administration of
the Audit Functionâ?"Benefits. Reduced Costs. Increased Performance.
Increased Time for Critical Thinking. Recognizing Opportunities. Transfer
of Audit Technology. Summary and Conclusions. Chapter 4. CAATTs for
Broader-Scoped Audits. Integrated Use of CAATTs. Value-for-Money Auditing.
Value-Added Auditing of Inventory Systems. Data Analysis in Support of
Value-Added Inventory Auditing. Inventory Management Practices and
Approaches. Possible Areas for Audit-Suggested Improvements. Audit and
Reengineering. Audit and Benchmarking. Summary and Conclusions. Chapter 5.
Data Access and Testing. Data Access Conditions. Mainframe versus
Minicomputer versus Microcomputer. Portability of Programs and Data.
Limitations to Using the Microcomputer. Processing Speeds. Single Tasking.
Inability to Deal with Complex Data and File Structures. Client Facilities.
Auditor's Microcomputer-Based Facilities. Data Extraction and Analysis
Issues. Accessing the Data. Data Storage Requirements. Analysis of Data.
Risks of Relying on Dataâ?"Reliability Risk. Reliance on the Data.
Knowledge of the System. Assessment of the Internal Controls. New Topology
of Data Tests. Reducing Auditor-Induced Data Corruption. Potential Problems
with the Use of CAATTs. Incorrect Identification of Audit Population.
Improper Description of Data Requirements. Invalid Analyses. Failure to
Recognize CAATT Opportunities. Summary and Conclusions. Chapter 6.
Developing CAATT Capabilities. Professional Proficiency: Knowledge, Skills,
and Disciplines. Computer Literacy: Minimal Auditor Skills. Ability to Use
CAATTs. Understanding of the Data. Analytical Support and Advice.
Communication of Results. Steps in Developing CAATT Capabilities.
Understand the Organizational Environment/Assess the Organizational
Culture. Obtain Management Commitment. Establish Deliverables. Set Up a
Trial. Plan for Success. Track Costs and Benefits. Lessons Learned.
Organize Working Groups. Computer Literacy Working Group. CAATT Working
Groups. Information Systems Support to Audit. Assure Quality. Quality
Assurance Methodology. Preventive Controls for CAATTs. Detective Controls
for CAATTs. Corrective Controls for CAATTs. Quality Assurance Reviews and
Reports. Summary and Conclusions. Chapter 7. Challenges for Audit. Survival
of Audit. Audit as a Learning Organization. Knowledge Acquisition.
Information Dissemination. Information Interpretation. Organizational
Memory. New Paradigm for Audit. Computer-Assisted Audit Techniques.
Computer-Aided Audit Thought Support. Auditor Empowerment. Access to
Microcomputers and Computer Networks. Access to Audit
Softwareâ?"Meta-Languages. Universal Access to Data. Access to Education,
Training, and Research. Skills Inventory. Needed versus Actual Skills.
Required versus Actual Performance. Auditor Skills for Using CAATTs. IS
Auditor Skills. Training Programs and Requirements. Conceptual Training.
Technical Training. Training Options. In-house. Professional Associations.
Educational Institutions. Computer-Based, Video-Based, and Web-Based
Training. Summary and Conclusions. Appendices. Appendix A. The
Internetâ?"An Audit Tool. The Internet. Connecting to the Internet. General
Internet Uses. Useful Sites for Auditors. Examples of Audit-Related
Internet Usage. Appendix B. Information Support Analysis and Monitoring
(ISAM) Section. Appendix C. Information Management Concepts. Appendix D.
Audit Software Evaluation Criteria. General Capabilities. Reporting
Capabilities. Graphics Capabilities. Mathematical Functions. File
Manipulation Capabilities. Record Definition Capabilities. File Type
Capabilities. Programming Capabilities. Support. Other Capabilities.
References. Index.
Audit Environment. The Age of Information Technology. Decentralization of
Technology. Absence of the Paper Trail. Do More with Less. Definition of
CAATTs. Evolution of CAATTs. Audit Software Developments. Historical
CAATTs. Test Decks. Integrated Test Facility (ITF). System Control Audit
Review File (SCARF). Sample Audit Review File (SARF). Sampling. Parallel
Simulation. Reasonableness Tests and Exception Reporting. Traditional
Approaches to Computer-Based Auditing. Systems-Based Approach. Data-Based
Approach. Audit Management and Administrative Support. Roadblocks to CAATT
Implementation. Summary and Conclusions. Chapter 2. Audit Technology. Audit
Technology Continuum. Introductory Use of Technology. Moderate Use of
Technology. Integral Use of Technology. Advanced Use of Technology. Getting
There. General Software Useful for Auditors. Word Processing. Text Search
and Retrieval. Reference Libraries. Spreadsheets. Presentation Software.
Flowcharting. Antivirus and Firewall Software. Software Licensing Checkers.
Specialized Audit Software Applications. Data Access, Analysis, Testing,
and Reporting. Standardized Extractions and Reports. Information Downloaded
from Mainframe Applications and/or Client Systems. Electronic
Questionnaires and Audit Programs. Control Self-Assessment. Parallel
Simulation. Electronic Working Papers. Data Warehouse. Data Mining.
Software for Audit Management and Administration. Audit Universe. Audit
Department Management Software. E-mail. File Transfer Protocol (FTP).
Intranet. Databases. Groupware. Electronic Document Management. Electronic
Audit Reports and Methodologies. Audit Scheduling, Time Reporting, and
Billing. Project Management. Extensible Business Reporting Language (XBRL).
Expert Systems. Audit Early-Warning Systems. Continuous Auditing.
Continuous Auditing versus Continuous Monitoring. Example of Continuous
Auditing: Application to an Accounts Payable Department. Stages of
Continuous Auditing. Continuous Auditing Template. Sarbanes-Oxley.
Important SOX Sections. The Role and Responsibility of Internal Audit. Risk
Factors. Detecting Fraud. Determining the Exposure to Fraud. SOX Software.
Assessment of IT Controls and Risks. Defining the Scope. GAIT Principles.
Governance, Risk Management, and Compliance (GRC). Internal Audit's Role in
the GRC Process. Identifying and Assessing Managementâ?(tm)s Risk
Management Process. Assessment of Internal Control Processes. GRC Software.
Summary and Conclusions. Chapter 3. CAATTs Benefits and Opportunities. The
Inevitability of Using CAATTs. The New IM Environment. The New Audit
Paradigm. Expected Benefits. Planning Phaseâ?"Benefits. Conduct
Phaseâ?"Benefits. Data Analysis. Increased Coverage. Better Use of Auditor
Resources. Improved Results. Reporting Phaseâ?"Benefits. Administration of
the Audit Functionâ?"Benefits. Reduced Costs. Increased Performance.
Increased Time for Critical Thinking. Recognizing Opportunities. Transfer
of Audit Technology. Summary and Conclusions. Chapter 4. CAATTs for
Broader-Scoped Audits. Integrated Use of CAATTs. Value-for-Money Auditing.
Value-Added Auditing of Inventory Systems. Data Analysis in Support of
Value-Added Inventory Auditing. Inventory Management Practices and
Approaches. Possible Areas for Audit-Suggested Improvements. Audit and
Reengineering. Audit and Benchmarking. Summary and Conclusions. Chapter 5.
Data Access and Testing. Data Access Conditions. Mainframe versus
Minicomputer versus Microcomputer. Portability of Programs and Data.
Limitations to Using the Microcomputer. Processing Speeds. Single Tasking.
Inability to Deal with Complex Data and File Structures. Client Facilities.
Auditor's Microcomputer-Based Facilities. Data Extraction and Analysis
Issues. Accessing the Data. Data Storage Requirements. Analysis of Data.
Risks of Relying on Dataâ?"Reliability Risk. Reliance on the Data.
Knowledge of the System. Assessment of the Internal Controls. New Topology
of Data Tests. Reducing Auditor-Induced Data Corruption. Potential Problems
with the Use of CAATTs. Incorrect Identification of Audit Population.
Improper Description of Data Requirements. Invalid Analyses. Failure to
Recognize CAATT Opportunities. Summary and Conclusions. Chapter 6.
Developing CAATT Capabilities. Professional Proficiency: Knowledge, Skills,
and Disciplines. Computer Literacy: Minimal Auditor Skills. Ability to Use
CAATTs. Understanding of the Data. Analytical Support and Advice.
Communication of Results. Steps in Developing CAATT Capabilities.
Understand the Organizational Environment/Assess the Organizational
Culture. Obtain Management Commitment. Establish Deliverables. Set Up a
Trial. Plan for Success. Track Costs and Benefits. Lessons Learned.
Organize Working Groups. Computer Literacy Working Group. CAATT Working
Groups. Information Systems Support to Audit. Assure Quality. Quality
Assurance Methodology. Preventive Controls for CAATTs. Detective Controls
for CAATTs. Corrective Controls for CAATTs. Quality Assurance Reviews and
Reports. Summary and Conclusions. Chapter 7. Challenges for Audit. Survival
of Audit. Audit as a Learning Organization. Knowledge Acquisition.
Information Dissemination. Information Interpretation. Organizational
Memory. New Paradigm for Audit. Computer-Assisted Audit Techniques.
Computer-Aided Audit Thought Support. Auditor Empowerment. Access to
Microcomputers and Computer Networks. Access to Audit
Softwareâ?"Meta-Languages. Universal Access to Data. Access to Education,
Training, and Research. Skills Inventory. Needed versus Actual Skills.
Required versus Actual Performance. Auditor Skills for Using CAATTs. IS
Auditor Skills. Training Programs and Requirements. Conceptual Training.
Technical Training. Training Options. In-house. Professional Associations.
Educational Institutions. Computer-Based, Video-Based, and Web-Based
Training. Summary and Conclusions. Appendices. Appendix A. The
Internetâ?"An Audit Tool. The Internet. Connecting to the Internet. General
Internet Uses. Useful Sites for Auditors. Examples of Audit-Related
Internet Usage. Appendix B. Information Support Analysis and Monitoring
(ISAM) Section. Appendix C. Information Management Concepts. Appendix D.
Audit Software Evaluation Criteria. General Capabilities. Reporting
Capabilities. Graphics Capabilities. Mathematical Functions. File
Manipulation Capabilities. Record Definition Capabilities. File Type
Capabilities. Programming Capabilities. Support. Other Capabilities.
References. Index.
Case Studies. Preface. Acknowledgments. Chapter 1. CAATTs History. The New
Audit Environment. The Age of Information Technology. Decentralization of
Technology. Absence of the Paper Trail. Do More with Less. Definition of
CAATTs. Evolution of CAATTs. Audit Software Developments. Historical
CAATTs. Test Decks. Integrated Test Facility (ITF). System Control Audit
Review File (SCARF). Sample Audit Review File (SARF). Sampling. Parallel
Simulation. Reasonableness Tests and Exception Reporting. Traditional
Approaches to Computer-Based Auditing. Systems-Based Approach. Data-Based
Approach. Audit Management and Administrative Support. Roadblocks to CAATT
Implementation. Summary and Conclusions. Chapter 2. Audit Technology. Audit
Technology Continuum. Introductory Use of Technology. Moderate Use of
Technology. Integral Use of Technology. Advanced Use of Technology. Getting
There. General Software Useful for Auditors. Word Processing. Text Search
and Retrieval. Reference Libraries. Spreadsheets. Presentation Software.
Flowcharting. Antivirus and Firewall Software. Software Licensing Checkers.
Specialized Audit Software Applications. Data Access, Analysis, Testing,
and Reporting. Standardized Extractions and Reports. Information Downloaded
from Mainframe Applications and/or Client Systems. Electronic
Questionnaires and Audit Programs. Control Self-Assessment. Parallel
Simulation. Electronic Working Papers. Data Warehouse. Data Mining.
Software for Audit Management and Administration. Audit Universe. Audit
Department Management Software. E-mail. File Transfer Protocol (FTP).
Intranet. Databases. Groupware. Electronic Document Management. Electronic
Audit Reports and Methodologies. Audit Scheduling, Time Reporting, and
Billing. Project Management. Extensible Business Reporting Language (XBRL).
Expert Systems. Audit Early-Warning Systems. Continuous Auditing.
Continuous Auditing versus Continuous Monitoring. Example of Continuous
Auditing: Application to an Accounts Payable Department. Stages of
Continuous Auditing. Continuous Auditing Template. Sarbanes-Oxley.
Important SOX Sections. The Role and Responsibility of Internal Audit. Risk
Factors. Detecting Fraud. Determining the Exposure to Fraud. SOX Software.
Assessment of IT Controls and Risks. Defining the Scope. GAIT Principles.
Governance, Risk Management, and Compliance (GRC). Internal Audit's Role in
the GRC Process. Identifying and Assessing Managementâ?(tm)s Risk
Management Process. Assessment of Internal Control Processes. GRC Software.
Summary and Conclusions. Chapter 3. CAATTs Benefits and Opportunities. The
Inevitability of Using CAATTs. The New IM Environment. The New Audit
Paradigm. Expected Benefits. Planning Phaseâ?"Benefits. Conduct
Phaseâ?"Benefits. Data Analysis. Increased Coverage. Better Use of Auditor
Resources. Improved Results. Reporting Phaseâ?"Benefits. Administration of
the Audit Functionâ?"Benefits. Reduced Costs. Increased Performance.
Increased Time for Critical Thinking. Recognizing Opportunities. Transfer
of Audit Technology. Summary and Conclusions. Chapter 4. CAATTs for
Broader-Scoped Audits. Integrated Use of CAATTs. Value-for-Money Auditing.
Value-Added Auditing of Inventory Systems. Data Analysis in Support of
Value-Added Inventory Auditing. Inventory Management Practices and
Approaches. Possible Areas for Audit-Suggested Improvements. Audit and
Reengineering. Audit and Benchmarking. Summary and Conclusions. Chapter 5.
Data Access and Testing. Data Access Conditions. Mainframe versus
Minicomputer versus Microcomputer. Portability of Programs and Data.
Limitations to Using the Microcomputer. Processing Speeds. Single Tasking.
Inability to Deal with Complex Data and File Structures. Client Facilities.
Auditor's Microcomputer-Based Facilities. Data Extraction and Analysis
Issues. Accessing the Data. Data Storage Requirements. Analysis of Data.
Risks of Relying on Dataâ?"Reliability Risk. Reliance on the Data.
Knowledge of the System. Assessment of the Internal Controls. New Topology
of Data Tests. Reducing Auditor-Induced Data Corruption. Potential Problems
with the Use of CAATTs. Incorrect Identification of Audit Population.
Improper Description of Data Requirements. Invalid Analyses. Failure to
Recognize CAATT Opportunities. Summary and Conclusions. Chapter 6.
Developing CAATT Capabilities. Professional Proficiency: Knowledge, Skills,
and Disciplines. Computer Literacy: Minimal Auditor Skills. Ability to Use
CAATTs. Understanding of the Data. Analytical Support and Advice.
Communication of Results. Steps in Developing CAATT Capabilities.
Understand the Organizational Environment/Assess the Organizational
Culture. Obtain Management Commitment. Establish Deliverables. Set Up a
Trial. Plan for Success. Track Costs and Benefits. Lessons Learned.
Organize Working Groups. Computer Literacy Working Group. CAATT Working
Groups. Information Systems Support to Audit. Assure Quality. Quality
Assurance Methodology. Preventive Controls for CAATTs. Detective Controls
for CAATTs. Corrective Controls for CAATTs. Quality Assurance Reviews and
Reports. Summary and Conclusions. Chapter 7. Challenges for Audit. Survival
of Audit. Audit as a Learning Organization. Knowledge Acquisition.
Information Dissemination. Information Interpretation. Organizational
Memory. New Paradigm for Audit. Computer-Assisted Audit Techniques.
Computer-Aided Audit Thought Support. Auditor Empowerment. Access to
Microcomputers and Computer Networks. Access to Audit
Softwareâ?"Meta-Languages. Universal Access to Data. Access to Education,
Training, and Research. Skills Inventory. Needed versus Actual Skills.
Required versus Actual Performance. Auditor Skills for Using CAATTs. IS
Auditor Skills. Training Programs and Requirements. Conceptual Training.
Technical Training. Training Options. In-house. Professional Associations.
Educational Institutions. Computer-Based, Video-Based, and Web-Based
Training. Summary and Conclusions. Appendices. Appendix A. The
Internetâ?"An Audit Tool. The Internet. Connecting to the Internet. General
Internet Uses. Useful Sites for Auditors. Examples of Audit-Related
Internet Usage. Appendix B. Information Support Analysis and Monitoring
(ISAM) Section. Appendix C. Information Management Concepts. Appendix D.
Audit Software Evaluation Criteria. General Capabilities. Reporting
Capabilities. Graphics Capabilities. Mathematical Functions. File
Manipulation Capabilities. Record Definition Capabilities. File Type
Capabilities. Programming Capabilities. Support. Other Capabilities.
References. Index.
Audit Environment. The Age of Information Technology. Decentralization of
Technology. Absence of the Paper Trail. Do More with Less. Definition of
CAATTs. Evolution of CAATTs. Audit Software Developments. Historical
CAATTs. Test Decks. Integrated Test Facility (ITF). System Control Audit
Review File (SCARF). Sample Audit Review File (SARF). Sampling. Parallel
Simulation. Reasonableness Tests and Exception Reporting. Traditional
Approaches to Computer-Based Auditing. Systems-Based Approach. Data-Based
Approach. Audit Management and Administrative Support. Roadblocks to CAATT
Implementation. Summary and Conclusions. Chapter 2. Audit Technology. Audit
Technology Continuum. Introductory Use of Technology. Moderate Use of
Technology. Integral Use of Technology. Advanced Use of Technology. Getting
There. General Software Useful for Auditors. Word Processing. Text Search
and Retrieval. Reference Libraries. Spreadsheets. Presentation Software.
Flowcharting. Antivirus and Firewall Software. Software Licensing Checkers.
Specialized Audit Software Applications. Data Access, Analysis, Testing,
and Reporting. Standardized Extractions and Reports. Information Downloaded
from Mainframe Applications and/or Client Systems. Electronic
Questionnaires and Audit Programs. Control Self-Assessment. Parallel
Simulation. Electronic Working Papers. Data Warehouse. Data Mining.
Software for Audit Management and Administration. Audit Universe. Audit
Department Management Software. E-mail. File Transfer Protocol (FTP).
Intranet. Databases. Groupware. Electronic Document Management. Electronic
Audit Reports and Methodologies. Audit Scheduling, Time Reporting, and
Billing. Project Management. Extensible Business Reporting Language (XBRL).
Expert Systems. Audit Early-Warning Systems. Continuous Auditing.
Continuous Auditing versus Continuous Monitoring. Example of Continuous
Auditing: Application to an Accounts Payable Department. Stages of
Continuous Auditing. Continuous Auditing Template. Sarbanes-Oxley.
Important SOX Sections. The Role and Responsibility of Internal Audit. Risk
Factors. Detecting Fraud. Determining the Exposure to Fraud. SOX Software.
Assessment of IT Controls and Risks. Defining the Scope. GAIT Principles.
Governance, Risk Management, and Compliance (GRC). Internal Audit's Role in
the GRC Process. Identifying and Assessing Managementâ?(tm)s Risk
Management Process. Assessment of Internal Control Processes. GRC Software.
Summary and Conclusions. Chapter 3. CAATTs Benefits and Opportunities. The
Inevitability of Using CAATTs. The New IM Environment. The New Audit
Paradigm. Expected Benefits. Planning Phaseâ?"Benefits. Conduct
Phaseâ?"Benefits. Data Analysis. Increased Coverage. Better Use of Auditor
Resources. Improved Results. Reporting Phaseâ?"Benefits. Administration of
the Audit Functionâ?"Benefits. Reduced Costs. Increased Performance.
Increased Time for Critical Thinking. Recognizing Opportunities. Transfer
of Audit Technology. Summary and Conclusions. Chapter 4. CAATTs for
Broader-Scoped Audits. Integrated Use of CAATTs. Value-for-Money Auditing.
Value-Added Auditing of Inventory Systems. Data Analysis in Support of
Value-Added Inventory Auditing. Inventory Management Practices and
Approaches. Possible Areas for Audit-Suggested Improvements. Audit and
Reengineering. Audit and Benchmarking. Summary and Conclusions. Chapter 5.
Data Access and Testing. Data Access Conditions. Mainframe versus
Minicomputer versus Microcomputer. Portability of Programs and Data.
Limitations to Using the Microcomputer. Processing Speeds. Single Tasking.
Inability to Deal with Complex Data and File Structures. Client Facilities.
Auditor's Microcomputer-Based Facilities. Data Extraction and Analysis
Issues. Accessing the Data. Data Storage Requirements. Analysis of Data.
Risks of Relying on Dataâ?"Reliability Risk. Reliance on the Data.
Knowledge of the System. Assessment of the Internal Controls. New Topology
of Data Tests. Reducing Auditor-Induced Data Corruption. Potential Problems
with the Use of CAATTs. Incorrect Identification of Audit Population.
Improper Description of Data Requirements. Invalid Analyses. Failure to
Recognize CAATT Opportunities. Summary and Conclusions. Chapter 6.
Developing CAATT Capabilities. Professional Proficiency: Knowledge, Skills,
and Disciplines. Computer Literacy: Minimal Auditor Skills. Ability to Use
CAATTs. Understanding of the Data. Analytical Support and Advice.
Communication of Results. Steps in Developing CAATT Capabilities.
Understand the Organizational Environment/Assess the Organizational
Culture. Obtain Management Commitment. Establish Deliverables. Set Up a
Trial. Plan for Success. Track Costs and Benefits. Lessons Learned.
Organize Working Groups. Computer Literacy Working Group. CAATT Working
Groups. Information Systems Support to Audit. Assure Quality. Quality
Assurance Methodology. Preventive Controls for CAATTs. Detective Controls
for CAATTs. Corrective Controls for CAATTs. Quality Assurance Reviews and
Reports. Summary and Conclusions. Chapter 7. Challenges for Audit. Survival
of Audit. Audit as a Learning Organization. Knowledge Acquisition.
Information Dissemination. Information Interpretation. Organizational
Memory. New Paradigm for Audit. Computer-Assisted Audit Techniques.
Computer-Aided Audit Thought Support. Auditor Empowerment. Access to
Microcomputers and Computer Networks. Access to Audit
Softwareâ?"Meta-Languages. Universal Access to Data. Access to Education,
Training, and Research. Skills Inventory. Needed versus Actual Skills.
Required versus Actual Performance. Auditor Skills for Using CAATTs. IS
Auditor Skills. Training Programs and Requirements. Conceptual Training.
Technical Training. Training Options. In-house. Professional Associations.
Educational Institutions. Computer-Based, Video-Based, and Web-Based
Training. Summary and Conclusions. Appendices. Appendix A. The
Internetâ?"An Audit Tool. The Internet. Connecting to the Internet. General
Internet Uses. Useful Sites for Auditors. Examples of Audit-Related
Internet Usage. Appendix B. Information Support Analysis and Monitoring
(ISAM) Section. Appendix C. Information Management Concepts. Appendix D.
Audit Software Evaluation Criteria. General Capabilities. Reporting
Capabilities. Graphics Capabilities. Mathematical Functions. File
Manipulation Capabilities. Record Definition Capabilities. File Type
Capabilities. Programming Capabilities. Support. Other Capabilities.
References. Index.