Information Technology Audit Team Creation The creation of a team to perform the effective auditing of an Information Technology (IT) organization is a daunting task. Some of the key elements that should be considered while creating an IT audit team are highlighted in this critical thinking report, such as what should be the primary focus of the team, what are the key positions, the skill-sets needed for each member of the team, outside assistance or co-sourcing should be considered or not, and determining the value of the audit pertaining to the entire organization. Moreover, the expected outcome of this report is to provide all crucial aspects of successfully creating an IT audit team, so that the team is fully efficient to figure out each and every pros and cons of the internal controls of an IT department.
Focus for the Team
The focus of an IT audit team is evolving from a traditional to
…show more content…
The elements recommended in this report provide an impeccable base for the management of an organization to effectively plan and constitute an exquisite audit team. References
Davis, C., Schiller, M., & Wheeler, K. (2011). IT auditing using controls to protect information assets (2nd ed.). New York, NY: McGraw Hill.
Hermanson, D. R., & Rittenberg, L. E. (2003). Internal audit and organizational governance. Research opportunities in internal auditing, 1, 25-71.
Lindow, P. E., & Race, J. D. (2002). Beyond traditional audit techniques. Journal of Accountancy-New York, 194(1), 28-33.
Stoel, D., Havelka, D., & Merhout, J. W. (2012). An analysis of attributes that impact information technology audit quality: A study of IT and financial audit practitioners. International Journal of Accounting Information Systems, 13(1),
[1] Noreen, Eric W., Brewer Peter C., et al., Managerial Accounting for Managers, Second Edition, McGraw-Hill/Irwin, New York, NY, 2011.
Donal E. Kieso, Wegandt J. Jerry, Warfield D. Terry. (2012). Intermediate Accounting. Hoboken, NJ: Wiley.
Rittenberg, Larry, Bradley Schwieger, and Karla Johnstone. Auditing. 6th ed. Mason: Thomas South-Western, 2005. 10-40.
The oversight responsibilities of the board, the CAE lacking of expertise or broad understanding of financial controls and responsibilities, and the understaffed internal audit functions lacking of independence and direct access to the board of directors contributed to the absence of internal controls. To begin with, the board should be retrained to achieve financial literacy to review financial reporting. Other than attending formal meetings, the board of directors should be more involved with the management. For the Audit Committee, the two members who were recruited as acquaintances to Brennahan need be replaced with experts who are more sufficiently knowledgeable about accounting rules beyond merely “financially literate”. Furthermore, the internal audit functions need to expand with different expertise commensurate with the expanded activities of the organization, testing financial reporting rather than internal controls from an operational perspective. The CAE should be more independent and proactive to execute audit plans, instead of following orders from the CFO, and initiate a direct and efficient communication between internal audit and audit
The seven best practices in the roles and responsibilities of an internal audit function include:
Solomon, J (2013). Corporate Governance and Accountability. 4th ed. Sussex: John Wiley & Sons Ltd. p.7, p9, p10, p15, p58, p60, p253.
Marshall, D. H., McManus, W. W, & Viele, D. (2002). Accounting: What the Numbers Mean. 5th ed. San Francisco: Irwin/McGraw-Hill.
Introduction Within the current crisis of confidence in the public accounting profession after the Enron debacle and series of high profile failures of financial services firms, the issue of ‘audit expectation gap’ has never been more important. Though it would take an enormous amount of effort to address these issues, I will argue that tremendous amounts could be done in order to close the gap. In this essay, I will discuss some of these issues and in particular the strategies to reduce the gap. Definitions Various definitions have been proposed for the audit expectation gap.
Albrecht, W. S., Stice, J. D., Stice, E. K., & Skousen, k. F. (2002). Accounting Concepts and Applications. Cincinnati: South-Western.
As audit firms look to invest in big data, it will be even more critical to understand the implications of using big data and analytics on the audit profession. There are multiple ways in which data analytics would enhance the effectiveness and efficiency of external audits. From looking at the complete population, to finding trends, to allowing employees to do less routine tasks, there are multiple ways big data benefits audits. Big data would also enhance critical procedures performed for the sales and collection cycle. These benefits are not without some drawbacks that would need to be addressed by the profession.
ABSTRACT: The quantity of accounting fraud cases keeps on rising. Fraud is a consistent thing that will reliably be around, and in a bigger number of routes than just a single. An extensive apportionment of organizations out there fighting fraud, either from within the organization, or from outside the organization. Knowing how to manage this is essential for an organization to be productive over an extended period of time. The investigation regarding the matter of accounting fraud will utilize sources from the web and the DeVry School Library.
I am interested in conducting research and teaching in managerial accounting, auditing and assurance services and accounting information systems. In particular, I am interested in exploring the role of accounting information systems in decision making, internal control, and auditing. In order to gain an appreciation of these and related issues, it is essential for me to have a strong grounding accounting, accounting information systems, information technology, managerial accounting, as well as gain a general economic and management perspective.
The first thing that we must consider about Information Security is that there is not a final destination at which we can arrive. IT Security is an ongoing set of processes and activities that requires attention and expertise on a daily basis. It is important to understand that systems are not secured by themselves and it is our responsibility to maintain and improve them periodically as required. It is of vital importance to establish the appropriate mechanisms and requirements in order to support the company’s CIA triad. The following report will provide you guidance about auditing and hardening techniques applied though the 7 Domains by utilizing IT Security Best Practices.
The audit risk is consists of three elements which are inherent risk, control risk and detection risk. The audit model is important to the audit process. The audit risk model provides the basic for the current emphasis on the risk-based audit approach and it assists the auditor in determining the scope of auditing procedures for a particular account balance or class of transactions. Based on the assessed risk, the auditor may determine whether the use of more tests of control or substantive procedures is appropriate to address the
Auditing has been the backbone of the complicated business world and has always changed with the times. As the business world grew strong, auditors’ roles grew more important. The auditors’ job became more difficult as the accounting principles changed. It also became easier with the use of internal controls, which introduced the need for testing, not a complete audit. Scandals and stock market crashes made auditors aware of deficiencies in auditing, and the auditing community was always quick to fix those deficiencies. Computers played an important role of changing the way audits were performed and also brought along some difficulties.