Documente Academic
Documente Profesional
Documente Cultură
Process
www.getlec.com
CISA : Chapter #1
Definitions :
Control :
CISA : Chapter #1
Definitions :
IT Control Objective
CISA : Chapter #1
Definitions :
IT Governance
CISA : Chapter #1
Definitions :
IT Framework
Definitions :
Audit Mission
Risk Assessment
Familiarity with Business Regulatory
Environment
CISA : Chapter #1
Risk Analysis :
Risk
Threat
Impact
Frequency
CISA : Chapter #1
Risk Analysis :
Business Risk
Financial
Regulatory
Operational
Or may arise as a result of the interaction of the business with its
environment
Or may arise in result of the strategies, systems and particular
technology, process, procedure and information system used by
the business
CISA : Chapter #1
Internal Control
Control Classification
1.
2.
3.
Preventive
Detective
Corrective
CISA : Chapter #1
CISA : Chapter #1
10
1.
2.
3.
4.
5.
6.
7.
8.
include :
11
4.
5.
6.
7.
12
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
13
Classification of Audits :
1.
2.
3.
4.
5.
6.
Financial Audit
Operational Audit
Integrated Audit
Administrative Audits
Information System Audits
Special Audit (3rd Party & Forensic Frauds and crimes)
CISA : Chapter #1
14
Audit Procedures :
1.
2.
3.
4.
5.
6.
7.
8.
9.
CISA : Chapter #1
15
Audit Risk :
Risk that the information/financial report may contain
material error that may go undetected during the course
of Audit
4.
Inherent Risk
Control Risk
Detection Risk
Overall Audit Risk
CISA : Chapter #1
16
CISA : Chapter #1
17
Compliance Testing :
A compliance test determines if control are being
applied in a manner that comply with
management policies and procedures.
Substantive Testing:
A Substantive test substances the integrity of
actual processing.
CISA : Chapter #1
18
Evidence :
CISA : Chapter #1
19
CISA : Chapter #1
20
21
CAATs Advantages :
Reduced
22
Matrix (ranking)
Compensating/Overlapping
Controls
Totality
of Controls
Supporting evidences
CISA : Chapter #1
23
CISA : Chapter #1
24
CISA : Chapter #1
25