SlideShare a Scribd company logo

Tugas mandiri audit novita dewi 11353202277

Download as PPTX, PDF
N
novita dewi

Tugas Mandiri control dan audit sistem informasi

Education
1 of 21
NAMA : Novita Dewi Nim : 11353202277 Tugas Mandiri Control & Audit Sistem Informasi Dosen Pembimbing : Muhammad jazzman, S. Kom., M. InfoSys SISTEM INFORMASI VII G FAKULTAS SAINS DAN TEKNOLOGI UNIVERSITAS ISLAM NEGERI SULTHAN SYARIF KASIM RIAU 2016
Definitions Audit According to Mulyadi: "A systematic process for obtaining and objectively evaluate the evidence on the allegations about the activities and economic events, with the aim to establish the level of concordance between these statements with the established criteria, as well as the delivery of the results to the user concerned".
Definitions Audit Audit information technology or IT (information technology) is also known as the audit or audit information system (information system audit) is the testing of the control activities of the infrastructure unit groups of a system / information technology
Factors to be considered in conducting an audit In performing the audit the following factors must be considered:  It takes information that can be measured and the number of criteria (standard) that can be used as a guide to evaluate the information,  Determination of the economic entity and the time period being audited must be clear to determine the scope of responsibilities of the auditor,  Material evidence should be obtained in sufficient quantity and quality to meet the objectives of the audit,  The ability of auditors to understand the criteria used and independent attitude in collecting the evidence necessary to support a conclusion that will be taken.
Types of Audit in general  Audit of financial statements (financial statement audit). Audit of financial statements are audited by an external auditor or internal to the auditee's financial statements to give an opinion whether the financial statements are presented in accordance with the criteria that have been set. The audit results and shared with outside parties such as creditors, shareholders, and the tax office.  Audit compliance (compliance audit). This audit aims to determine whether that is checked in accordance with the conditions, the norm of, and certain laws. The criteria set out in the compliance audit comes from different sources. For example, it may come from the management in the form of internal control procedures. Compliance audit can be performed by internal and external auditors.
CONT…  Operational audit (operational audit). Operational audit is the systematic review of the operating activities of the organization in relation to a particular destination. Operational audits, auditors are expected to observe an objective and comprehensive analysis of the operation-specific operations.
Type Audit (IT)  system Audit The audit of a documented system to ensure it meets national or international standards  Compliance Audit To test the effectiveness of the implementation of policies, procedures, controls and other legal elements  Product / Service Audit To test a product or service is in compliance such as predetermined specifications and suitable
Operational audit objective is to: o Assessing the performance, the performance compared with policies, standards, and goals set by management Identifying opportunities and o Provide recommendations for improvement or further action. The parties may request an audit is operational management and third parties. The results of operational audits submitted to the party requesting the execution of the audit.
IT Audit? The process of collecting and evaluating the facts / evidence to determine whether the system (computerized):  keeping assets  Maintaining data integrity  Enabling communication and access to information  Achieve operational goals effectively  Consuming resources efficiently
advantage Audit  Assessing the effectiveness of the activity of documentation activities in organizations  Monitoring compliance with policies, systems, procedures and company law.  Measuring the effectiveness of the system  Identify weaknesses in the system that may result in a mismatch in the future.  Provides information for process improvement  Enhance mutual understanding between departments and between individuals  Reported the results of the review and actions based on the risk to Management
audit SI Audit an information technology system for now is a must. Audit needs to be done so that the system is able to qualify sebuat IT Governance. Audit information system is a way of testing of the system information in the organization to determine whether the system information held in accordance with the vision, mission and goals of the organization, tested the system performance information and to detect risks and potential effects that may arise.
IT Audit Methodology  In its implementation, IT auditors gather sufficient evidence through a variety of techniques including surveys, interviews, observation and documentation review.  One thing that is unique, audit evidence taken by the auditor usually also covers electronic evidence. Typically, IT auditors apply computer-assisted audit techniques, also known as CAAT (Computer Aided Auditing Technique). This technique is used to analyze the data, such as transaction data sales, purchasing, inventory transaction activity, customer activity, and others.
Audit basic steps SI Audit in the context of information technology is to check whether the computer system running properly. Seven step audit process:  Implement a strategy based audit risk management and control practices that can be agreed by all parties.  Set steps detailed audit.  Use facts / material evidence sufficient, reliable, relevant, and useful.  Make a report with conclusions based on the facts collected.  Examine whether the audit objectives achieved.  Convey reports to interested parties.  Ensure that the organization implements risk management and control practices.
Stages of Information System Audit Audit Information System can be done in various stages. Stages of audit consists of 5 stages as follows:  The stage of preliminary examination  Detailed examination phase.  Conformance testing phase.  Stages of testing the truth of the evidence.  Stage of the overall assessment of the results of testing.
Who Audited ?  Management  IT Manager  IT Specialist (network, database, system analyst, programmer, etc.) user
Conducting Audit Depending Audit Objectives  Internal Audit (first party audits) Made by or on behalf of the company itself Usually for management review or internal company purposes  Independent institutions outside the enterprise Second party audit Conducted by special interest groups thd company Third party audit Conducted by independent parties outside the company. For example, for certification (ISO 9001, BS7799, etc.).
Tasks IT Auditor  Make sure the sides of the application of IT has the necessary controls.  Ensure the controls are applied properly as expected Which is conducted  Preparation.  Document Review.  Preparatory activities on-site audit.  Conducting on-site audit.  Preparation, approval and distribution of audit reports.  Follow-up audit.
Output activity Audit The final result is in the form of a report that contains:  Scope of the audit.  Methodology.  Findings.  Non-compliance (the nature of nonconformities, bukti2 supporters, met the requirements dud, location, degree of mismatch).  Conclusion (level of conformance to the audit criteria, the effectiveness of the implementation, maintenance and management system development, recommendation).
IT auditor needs  Internal Audit -> every company needs.  Company audit service providers.  Company certification providers.
Principles of Auditing  Ethical conduct Based on professionalism, honesty, integrity, confidentiality and discretion  Fair Presentation The obligation to report honestly and accurately  Due professional care Implementation of seriousness and consideration given  Independence  Evidence-base approach
FINISH

Recommended

008.itsecurity bcp v1
008.itsecurity bcp v1008.itsecurity bcp v1
008.itsecurity bcp v1Mohammad Ashfaqur Rahman
 
Steps in it audit
Steps in it auditSteps in it audit
Steps in it auditkinjalmkothari92
 
1auditconcepts
1auditconcepts1auditconcepts
1auditconceptsShubham Raj
 
Auditing tools and Techniques
Auditing tools and TechniquesAuditing tools and Techniques
Auditing tools and TechniquesAjilal
 
Auditing by CIS . Chapter 6
Auditing by CIS . Chapter 6Auditing by CIS . Chapter 6
Auditing by CIS . Chapter 6Sharah Ayumi
 
Presentation 5, System based audit approach - what is it about?, Workshop on ...
Presentation 5, System based audit approach - what is it about?, Workshop on ...Presentation 5, System based audit approach - what is it about?, Workshop on ...
Presentation 5, System based audit approach - what is it about?, Workshop on ...Support for Improvement in Governance and Management SIGMA
 
Language of business
Language of businessLanguage of business
Language of businessAziz Fataliyev, Internal Audit Practitioner
 
Database auditing models
Database auditing models Database auditing models
Database auditing models ERSHUBHAM TIWARI
 

Recommended

008.itsecurity bcp v1
008.itsecurity bcp v1008.itsecurity bcp v1
008.itsecurity bcp v1Mohammad Ashfaqur Rahman
 
Steps in it audit
Steps in it auditSteps in it audit
Steps in it auditkinjalmkothari92
 
1auditconcepts
1auditconcepts1auditconcepts
1auditconceptsShubham Raj
 
Auditing tools and Techniques
Auditing tools and TechniquesAuditing tools and Techniques
Auditing tools and TechniquesAjilal
 
Auditing by CIS . Chapter 6
Auditing by CIS . Chapter 6Auditing by CIS . Chapter 6
Auditing by CIS . Chapter 6Sharah Ayumi
 
Presentation 5, System based audit approach - what is it about?, Workshop on ...
Presentation 5, System based audit approach - what is it about?, Workshop on ...Presentation 5, System based audit approach - what is it about?, Workshop on ...
Presentation 5, System based audit approach - what is it about?, Workshop on ...Support for Improvement in Governance and Management SIGMA
 
Language of business
Language of businessLanguage of business
Language of businessAziz Fataliyev, Internal Audit Practitioner
 
Database auditing models
Database auditing models Database auditing models
Database auditing models ERSHUBHAM TIWARI
 
Audit bab1 sem 6- Audit Approach
Audit bab1 sem 6- Audit ApproachAudit bab1 sem 6- Audit Approach
Audit bab1 sem 6- Audit ApproachNur Dalila Zamri
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controlsMulyadi Yusuf
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsSharing Slides Training
 
Use Of Techniques And Technology In Internal Audit
Use Of Techniques And Technology In Internal AuditUse Of Techniques And Technology In Internal Audit
Use Of Techniques And Technology In Internal AuditManoj Agarwal
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal auditSalih Islam
 
Computerized Environment
Computerized EnvironmentComputerized Environment
Computerized EnvironmentVadivelM9
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISOSadafhazel
 
Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Support for Improvement in Governance and Management SIGMA
 
Internal Control
Internal ControlInternal Control
Internal ControlSalih Islam
 
Audit Process: How to Successfully Plan Audit
Audit Process: How to Successfully Plan Audit Audit Process: How to Successfully Plan Audit
Audit Process: How to Successfully Plan Audit complianceonline123
 
Chapter 4
Chapter 4Chapter 4
Chapter 4bugbuster123
 
Audit & compliance
Audit & complianceAudit & compliance
Audit & complianceGDE Coaching - Jean Noel Macaque
 
Test of control
Test of controlTest of control
Test of controlVadivelM9
 
Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002SARVJEET KAUSHAL
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseDesmond Devendran
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniquesmack19921
 
Ch2 2009 cisa
Ch2 2009 cisaCh2 2009 cisa
Ch2 2009 cisaasrulsani09
 
Internal audit test type guide
Internal audit test type guideInternal audit test type guide
Internal audit test type guideCenapSerdarolu
 
CONTROL AND AUDIT
CONTROL AND AUDITCONTROL AND AUDIT
CONTROL AND AUDITRos Dina
 
Model i best practice evaluation worksheet for ia
Model i best practice evaluation worksheet for iaModel i best practice evaluation worksheet for ia
Model i best practice evaluation worksheet for iaRajeswaran Muthu Venkatachalam
 
Lailatul izzati
Lailatul izzatiLailatul izzati
Lailatul izzatiLailatul Izzati
 
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financialAudit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financialSoftware Developer
 

More Related Content

What's hot

Audit bab1 sem 6- Audit Approach
Audit bab1 sem 6- Audit ApproachAudit bab1 sem 6- Audit Approach
Audit bab1 sem 6- Audit ApproachNur Dalila Zamri
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controlsMulyadi Yusuf
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsSharing Slides Training
 
Use Of Techniques And Technology In Internal Audit
Use Of Techniques And Technology In Internal AuditUse Of Techniques And Technology In Internal Audit
Use Of Techniques And Technology In Internal AuditManoj Agarwal
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal auditSalih Islam
 
Computerized Environment
Computerized EnvironmentComputerized Environment
Computerized EnvironmentVadivelM9
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISOSadafhazel
 
Internal Control
Internal ControlInternal Control
Internal ControlSalih Islam
 
Audit Process: How to Successfully Plan Audit
Audit Process: How to Successfully Plan Audit Audit Process: How to Successfully Plan Audit
Audit Process: How to Successfully Plan Audit complianceonline123
 
Test of control
Test of controlTest of control
Test of controlVadivelM9
 
Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002SARVJEET KAUSHAL
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseDesmond Devendran
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniquesmack19921
 
Internal audit test type guide
Internal audit test type guideInternal audit test type guide
Internal audit test type guideCenapSerdarolu
 
CONTROL AND AUDIT
CONTROL AND AUDITCONTROL AND AUDIT
CONTROL AND AUDITRos Dina
 

What's hot (20)

Audit bab1 sem 6- Audit Approach
Audit bab1 sem 6- Audit ApproachAudit bab1 sem 6- Audit Approach
Audit bab1 sem 6- Audit Approach
 
05.2 auditing procedure application controls
05.2 auditing procedure application controls05.2 auditing procedure application controls
05.2 auditing procedure application controls
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Is
 
Use Of Techniques And Technology In Internal Audit
Use Of Techniques And Technology In Internal AuditUse Of Techniques And Technology In Internal Audit
Use Of Techniques And Technology In Internal Audit
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal audit
 
Computerized Environment
Computerized EnvironmentComputerized Environment
Computerized Environment
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISO
 
Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...
 
Internal Control
Internal ControlInternal Control
Internal Control
 
Audit Process: How to Successfully Plan Audit
Audit Process: How to Successfully Plan Audit Audit Process: How to Successfully Plan Audit
Audit Process: How to Successfully Plan Audit
 
Chapter 4
Chapter 4Chapter 4
Chapter 4
 
Audit & compliance
Audit & complianceAudit & compliance
Audit & compliance
 
Test of control
Test of controlTest of control
Test of control
 
Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review Course
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniques
 
Ch2 2009 cisa
Ch2 2009 cisaCh2 2009 cisa
Ch2 2009 cisa
 
Internal audit test type guide
Internal audit test type guideInternal audit test type guide
Internal audit test type guide
 
CONTROL AND AUDIT
CONTROL AND AUDITCONTROL AND AUDIT
CONTROL AND AUDIT
 
Model i best practice evaluation worksheet for ia
Model i best practice evaluation worksheet for iaModel i best practice evaluation worksheet for ia
Model i best practice evaluation worksheet for ia
 

Viewers also liked

Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financialAudit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financialSoftware Developer
 
Kontrol audit sistem informasi
Kontrol audit sistem informasiKontrol audit sistem informasi
Kontrol audit sistem informasiDinda Afani
 
Cobit 5 ( Kontrol dan Auditing Sistem Informasi )
Cobit 5 ( Kontrol dan Auditing Sistem Informasi )Cobit 5 ( Kontrol dan Auditing Sistem Informasi )
Cobit 5 ( Kontrol dan Auditing Sistem Informasi )Pajar Bahari
 
Kontrol & Audit Sistem Informasi
Kontrol & Audit Sistem InformasiKontrol & Audit Sistem Informasi
Kontrol & Audit Sistem Informasidwiki apsyarin
 
Kontrol dan Audit Sistem Informasi
Kontrol dan Audit Sistem InformasiKontrol dan Audit Sistem Informasi
Kontrol dan Audit Sistem InformasiHerman efendi
 
PENGENALAN AUDIT DAN KONTROL SISTEM INFORMASI
PENGENALAN AUDIT DAN KONTROL SISTEM INFORMASIPENGENALAN AUDIT DAN KONTROL SISTEM INFORMASI
PENGENALAN AUDIT DAN KONTROL SISTEM INFORMASIDhina Pohan
 
Kontrol dan audit sistem informasi
Kontrol dan audit sistem informasiKontrol dan audit sistem informasi
Kontrol dan audit sistem informasisyul amri
 
Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Hendri Eka Saputra
 

Viewers also liked (10)

Lailatul izzati
Lailatul izzatiLailatul izzati
Lailatul izzati
 
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financialAudit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
Audit Sistem Informasi Akuntansi Keuangan dg software e-solution financial
 
Kontrol audit sistem informasi
Kontrol audit sistem informasiKontrol audit sistem informasi
Kontrol audit sistem informasi
 
Cobit 5 ( Kontrol dan Auditing Sistem Informasi )
Cobit 5 ( Kontrol dan Auditing Sistem Informasi )Cobit 5 ( Kontrol dan Auditing Sistem Informasi )
Cobit 5 ( Kontrol dan Auditing Sistem Informasi )
 
Kontrol & Audit Sistem Informasi
Kontrol & Audit Sistem InformasiKontrol & Audit Sistem Informasi
Kontrol & Audit Sistem Informasi
 
Kontrol dan Audit Sistem Informasi
Kontrol dan Audit Sistem InformasiKontrol dan Audit Sistem Informasi
Kontrol dan Audit Sistem Informasi
 
PENGENALAN AUDIT DAN KONTROL SISTEM INFORMASI
PENGENALAN AUDIT DAN KONTROL SISTEM INFORMASIPENGENALAN AUDIT DAN KONTROL SISTEM INFORMASI
PENGENALAN AUDIT DAN KONTROL SISTEM INFORMASI
 
Kontrol dan audit sistem informasi
Kontrol dan audit sistem informasiKontrol dan audit sistem informasi
Kontrol dan audit sistem informasi
 
Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)
 
Donna Febriani
Donna FebrianiDonna Febriani
Donna Febriani
 

Similar to Tugas mandiri audit novita dewi 11353202277

auditpresentation-121006061658-phpapp02.pdf
auditpresentation-121006061658-phpapp02.pdfauditpresentation-121006061658-phpapp02.pdf
auditpresentation-121006061658-phpapp02.pdfowaissayyed0041
 
Internal control.. control env
Internal control.. control envInternal control.. control env
Internal control.. control envPhillys Sebastiane
 
Audits and Regulatory Compliance
Audits and Regulatory ComplianceAudits and Regulatory Compliance
Audits and Regulatory Compliancesomeshwar mankar
 
2020 Updated Cisa Real Exam Questions
2020 Updated Cisa Real Exam Questions2020 Updated Cisa Real Exam Questions
2020 Updated Cisa Real Exam Questionsdouglascarnicelli
 
2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College Sector2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College SectorNikhat Rasheed
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Issharing notes123
 
Overview-of-an-IT-Audit-Lesson-1.pptx
Overview-of-an-IT-Audit-Lesson-1.pptxOverview-of-an-IT-Audit-Lesson-1.pptx
Overview-of-an-IT-Audit-Lesson-1.pptxJoshJaro
 
It management audits it management templates
It management audits it management templatesIt management audits it management templates
It management audits it management templatesIT-Toolkits.org
 
IT-Audit-Manual-2017-1st-Edition.pdf
IT-Audit-Manual-2017-1st-Edition.pdfIT-Audit-Manual-2017-1st-Edition.pdf
IT-Audit-Manual-2017-1st-Edition.pdfJacobYeboa1
 
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)Muhammad Azmy
 
Types of audit
Types of auditTypes of audit
Types of auditVadivelM9
 
Value-added it auditing
Value-added it auditingValue-added it auditing
Value-added it auditingMarc Vael
 
Eeoqms internal auditing
Eeoqms internal auditingEeoqms internal auditing
Eeoqms internal auditinghardeep singh
 
Auditing Systems Development
Auditing Systems DevelopmentAuditing Systems Development
Auditing Systems Developmentessbaih
 

Similar to Tugas mandiri audit novita dewi 11353202277 (20)

Audit presentation
Audit presentationAudit presentation
Audit presentation
 
auditpresentation-121006061658-phpapp02.pdf
auditpresentation-121006061658-phpapp02.pdfauditpresentation-121006061658-phpapp02.pdf
auditpresentation-121006061658-phpapp02.pdf
 
Auditing concept
Auditing conceptAuditing concept
Auditing concept
 
Internal control.. control env
Internal control.. control envInternal control.. control env
Internal control.. control env
 
Audits and Regulatory Compliance
Audits and Regulatory ComplianceAudits and Regulatory Compliance
Audits and Regulatory Compliance
 
2020 Updated Cisa Real Exam Questions
2020 Updated Cisa Real Exam Questions2020 Updated Cisa Real Exam Questions
2020 Updated Cisa Real Exam Questions
 
2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College Sector2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College Sector
 
IT System & Security Audit
IT System & Security AuditIT System & Security Audit
IT System & Security Audit
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Is
 
Auditing
AuditingAuditing
Auditing
 
Security audit
Security auditSecurity audit
Security audit
 
Overview-of-an-IT-Audit-Lesson-1.pptx
Overview-of-an-IT-Audit-Lesson-1.pptxOverview-of-an-IT-Audit-Lesson-1.pptx
Overview-of-an-IT-Audit-Lesson-1.pptx
 
It management audits it management templates
It management audits it management templatesIt management audits it management templates
It management audits it management templates
 
IT-Audit-Manual-2017-1st-Edition.pdf
IT-Audit-Manual-2017-1st-Edition.pdfIT-Audit-Manual-2017-1st-Edition.pdf
IT-Audit-Manual-2017-1st-Edition.pdf
 
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
 
Types of audit
Types of auditTypes of audit
Types of audit
 
Value-added it auditing
Value-added it auditingValue-added it auditing
Value-added it auditing
 
Eeoqms internal auditing
Eeoqms internal auditingEeoqms internal auditing
Eeoqms internal auditing
 
Auditing Systems Development
Auditing Systems DevelopmentAuditing Systems Development
Auditing Systems Development
 
Internal control
Internal controlInternal control
Internal control
 

Recently uploaded

social pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajansocial pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajanpragatimahajan3
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Sapana Sha
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfagholdier
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingTechSoup
 
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...Sapna Thakur
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfAyushMahapatra5
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdfQucHHunhnh
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfSoniaTolstoy
 
A Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy ReformA Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy ReformChameera Dedduwage
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfJayanti Pande
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactdawncurless
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...EduSkills OECD
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Krashi Coaching
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpinRaunakKeshri1
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDThiyagu K
 
Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Disha Kariya
 

Recently uploaded (20)

social pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajansocial pharmacy d-pharm 1st year by Pragati K. Mahajan
social pharmacy d-pharm 1st year by Pragati K. Mahajan
 
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdf
 
1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf1029 - Danh muc Sach Giao Khoa 10 . pdf
1029 - Danh muc Sach Giao Khoa 10 . pdf
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
 
A Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy ReformA Critique of the Proposed National Education Policy Reform
A Critique of the Proposed National Education Policy Reform
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdf
 
Advance Mobile Application Development class 07
Advance Mobile Application Development class 07Advance Mobile Application Development class 07
Advance Mobile Application Development class 07
 
Accessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impactAccessible design: Minimum effort, maximum impact
Accessible design: Minimum effort, maximum impact
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpin
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SD
 
Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..Sports & Fitness Value Added Course FY..
Sports & Fitness Value Added Course FY..
 

Tugas mandiri audit novita dewi 11353202277

  • 1. NAMA : Novita Dewi Nim : 11353202277 Tugas Mandiri Control & Audit Sistem Informasi Dosen Pembimbing : Muhammad jazzman, S. Kom., M. InfoSys SISTEM INFORMASI VII G FAKULTAS SAINS DAN TEKNOLOGI UNIVERSITAS ISLAM NEGERI SULTHAN SYARIF KASIM RIAU 2016
  • 2. Definitions Audit According to Mulyadi: "A systematic process for obtaining and objectively evaluate the evidence on the allegations about the activities and economic events, with the aim to establish the level of concordance between these statements with the established criteria, as well as the delivery of the results to the user concerned".
  • 3. Definitions Audit Audit information technology or IT (information technology) is also known as the audit or audit information system (information system audit) is the testing of the control activities of the infrastructure unit groups of a system / information technology
  • 4. Factors to be considered in conducting an audit In performing the audit the following factors must be considered:  It takes information that can be measured and the number of criteria (standard) that can be used as a guide to evaluate the information,  Determination of the economic entity and the time period being audited must be clear to determine the scope of responsibilities of the auditor,  Material evidence should be obtained in sufficient quantity and quality to meet the objectives of the audit,  The ability of auditors to understand the criteria used and independent attitude in collecting the evidence necessary to support a conclusion that will be taken.
  • 5. Types of Audit in general  Audit of financial statements (financial statement audit). Audit of financial statements are audited by an external auditor or internal to the auditee's financial statements to give an opinion whether the financial statements are presented in accordance with the criteria that have been set. The audit results and shared with outside parties such as creditors, shareholders, and the tax office.  Audit compliance (compliance audit). This audit aims to determine whether that is checked in accordance with the conditions, the norm of, and certain laws. The criteria set out in the compliance audit comes from different sources. For example, it may come from the management in the form of internal control procedures. Compliance audit can be performed by internal and external auditors.
  • 6. CONT…  Operational audit (operational audit). Operational audit is the systematic review of the operating activities of the organization in relation to a particular destination. Operational audits, auditors are expected to observe an objective and comprehensive analysis of the operation-specific operations.
  • 7. Type Audit (IT)  system Audit The audit of a documented system to ensure it meets national or international standards  Compliance Audit To test the effectiveness of the implementation of policies, procedures, controls and other legal elements  Product / Service Audit To test a product or service is in compliance such as predetermined specifications and suitable
  • 8. Operational audit objective is to: o Assessing the performance, the performance compared with policies, standards, and goals set by management Identifying opportunities and o Provide recommendations for improvement or further action. The parties may request an audit is operational management and third parties. The results of operational audits submitted to the party requesting the execution of the audit.
  • 9. IT Audit? The process of collecting and evaluating the facts / evidence to determine whether the system (computerized):  keeping assets  Maintaining data integrity  Enabling communication and access to information  Achieve operational goals effectively  Consuming resources efficiently
  • 10. advantage Audit  Assessing the effectiveness of the activity of documentation activities in organizations  Monitoring compliance with policies, systems, procedures and company law.  Measuring the effectiveness of the system  Identify weaknesses in the system that may result in a mismatch in the future.  Provides information for process improvement  Enhance mutual understanding between departments and between individuals  Reported the results of the review and actions based on the risk to Management
  • 11. audit SI Audit an information technology system for now is a must. Audit needs to be done so that the system is able to qualify sebuat IT Governance. Audit information system is a way of testing of the system information in the organization to determine whether the system information held in accordance with the vision, mission and goals of the organization, tested the system performance information and to detect risks and potential effects that may arise.
  • 12. IT Audit Methodology  In its implementation, IT auditors gather sufficient evidence through a variety of techniques including surveys, interviews, observation and documentation review.  One thing that is unique, audit evidence taken by the auditor usually also covers electronic evidence. Typically, IT auditors apply computer-assisted audit techniques, also known as CAAT (Computer Aided Auditing Technique). This technique is used to analyze the data, such as transaction data sales, purchasing, inventory transaction activity, customer activity, and others.
  • 13. Audit basic steps SI Audit in the context of information technology is to check whether the computer system running properly. Seven step audit process:  Implement a strategy based audit risk management and control practices that can be agreed by all parties.  Set steps detailed audit.  Use facts / material evidence sufficient, reliable, relevant, and useful.  Make a report with conclusions based on the facts collected.  Examine whether the audit objectives achieved.  Convey reports to interested parties.  Ensure that the organization implements risk management and control practices.
  • 14. Stages of Information System Audit Audit Information System can be done in various stages. Stages of audit consists of 5 stages as follows:  The stage of preliminary examination  Detailed examination phase.  Conformance testing phase.  Stages of testing the truth of the evidence.  Stage of the overall assessment of the results of testing.
  • 15. Who Audited ?  Management  IT Manager  IT Specialist (network, database, system analyst, programmer, etc.) user
  • 16. Conducting Audit Depending Audit Objectives  Internal Audit (first party audits) Made by or on behalf of the company itself Usually for management review or internal company purposes  Independent institutions outside the enterprise Second party audit Conducted by special interest groups thd company Third party audit Conducted by independent parties outside the company. For example, for certification (ISO 9001, BS7799, etc.).
  • 17. Tasks IT Auditor  Make sure the sides of the application of IT has the necessary controls.  Ensure the controls are applied properly as expected Which is conducted  Preparation.  Document Review.  Preparatory activities on-site audit.  Conducting on-site audit.  Preparation, approval and distribution of audit reports.  Follow-up audit.
  • 18. Output activity Audit The final result is in the form of a report that contains:  Scope of the audit.  Methodology.  Findings.  Non-compliance (the nature of nonconformities, bukti2 supporters, met the requirements dud, location, degree of mismatch).  Conclusion (level of conformance to the audit criteria, the effectiveness of the implementation, maintenance and management system development, recommendation).
  • 19. IT auditor needs  Internal Audit -> every company needs.  Company audit service providers.  Company certification providers.
  • 20. Principles of Auditing  Ethical conduct Based on professionalism, honesty, integrity, confidentiality and discretion  Fair Presentation The obligation to report honestly and accurately  Due professional care Implementation of seriousness and consideration given  Independence  Evidence-base approach