-
controls that apply to the processing of specific computer applications and are part of the computer programs used in the accounting system
Application controls
-
computer programs that allow auditors to test computer files and databases
Computer-assisted audit techniques (CAATS)
-
the policies and procedures that help ensure that management's directives are carried out
control activities
-
a deficiency in internal control exists when the design or operation of a control does not allow management or employees, in the normal course of performing their assigned functions, to prevent, or detect and correct misstatements on a timely basis
control deficiency
-
the tone of an organization, which reflects the overall attitude, awareness, and actions of the board of directors, management, and ownders influencing the control consciousness of its people
control environment
-
the risk that material misstatements that could occur will not be prevented, or detected and corrected, by internal controls
control risk
-
business transactions between individuals and organizations that occur without paper documents, using computers and telecommunication networks
electronic (internet) commerce
-
the transmission of business transactions over telecommunications networds
electronic data interchange
-
controls that relate to the overall information processing environment and have a pervasive effect on the entity's computer operations
general controls
-
the method by which an entity's board of directors, management, and other personnnel provide reasonable assurance about the achievement of objectives in the following categories 1. reliability of financial reporting 2. effectiveness and efficiency of operations 3.compliance with applicable laws and regulations
Internal control
-
a deficiency, or combination of deficiencies, in internal control, such that there is a reasonable possibility that a material misstatement of the entity's financial statements will not be prevented, or detected and corrected, on a timely basis
material weakness
-
a process that assesses the quality of internal control performance over time
monitoring of controls
-
th eauditor's decision to rely on the entity's controls, test those controls, and reduce the direct tests of the financial statement accounts
reliance strategy
-
a deficiency, or a combination of deficiences, in internal control that is less severe than a material weakness, yet important enough to merit attention by those charged with governance
significant deficiency
-
the auditor's decision not to rely on the entity's controls and to audit the related financial statement accounts by relying more on substantive procedures
substantive strategy
-
a weakness in the design or operation of a control such that management or employees, in the normal course of performing their assigned functions, fail to prevent or detect misstatements on a timely basis
control deficiency
-
an objective for ICFR generally relates to a relevant financial statement assertion and states a criterion for evaluating whether the company's control procedures in a specific area provide reasonable assurance that a misstatement or omission in that relevant assertion is prevented or detected by controls on a timely basis
control objective
-
a process designed by, or under the supervision of, the company's principal executive and principal financial officers, or persons performing similar functions, and effected by the compay's board of directors, management, and other personnel, to provide reasonable assurance regarding the reliability of financial reporting and the preparation of financial statements for external purposes in accordance with GAAP
internal control over financial reporting
-
a deficiency, or a combination of deficiences, in ICFR, such that there is a reasonable possibility that a material misstatemetn of the company's annual or interim financial statements will not be prevented or detected on a timely basis
material weakness
-
a financial statement assertion that has a reasonable possibility of containing a misstatement or misstatements that would cause the financial statements to be materially misstated
relevant assertion
-
the process of correcting a material weakness as part of management's assessment of the effectiveness of ICFR
remediation
-
those policies and procedures that provide reasonable assurance regarding prevention or timely detection of unauthorized acquisition, use, or disposition of the company's assets that could have a material effect on the financial statements
safeguarding of assets
-
an account or disclosure is significiant if there is a reasonable possibility that the account or disclosure could contain a misstatement that, individually or when aggregated with others, has a material effect on the financial statements, considering the risks of both overstatement and understatement
significant account or disclosure
-
a deficiency, or a combination of deficiencies, in ICFR that is less severe than a material weakness, yet important enough to merit attention by those responsible for oversight of the company's financial reporting
significant deficiency
-
a transaction being traced by an auditor from origination through the entity's infomation system until it is reflected in the entity's financial reports. It encompasses the entire process of initiation, authorizing, recording, processing, and reporting individual transactions and controls for each of the significant processes identified
Walkthrough
|
|
