29 paragraphs found
… The control framework applied in designing the controls is relevant when identifying the components of … of Sponsoring Organizations of the Treadway Commission’s Internal Control Integrated Framework 2013 (COSO Framework) …
… Manual elements in internal control may be less reliable than automated …
… practitioner gains an understanding of the strength of the controls as a whole and in doing so may identify … the control environment may undermine the effectiveness of controls and this is taken into account in determining the … activities, which may include the activities conducted by internal audit. If the control environment or other …
… If the assurance practitioner’s evaluation of the internal audit function confirms that the work of the internal audit function can be used for purposes of the … nature and scope of work performed, or to be performed, on controls within the system by the internal audit function; …
… Assurance engagements on controls are structured to suit the particular circumstances … engagement and the needs of users, for example: Reports for internal use to assess whether the controls designed will … controls as designed can be clearly identified. Reports for internal use to determine whether the implementation of new …
… entities that are likely to be relevant to user entities’ internal control as it relates to relevant external …
… See ASAE 3402 Assurance Reports on Controls at a Service Organisation , which applies to an … report for use by user entities and their auditors, on the controls at a service organisation that provides a service … entities that is likely to be relevant to user entities’ internal control as it relates to financial reporting. …
… Although, this ASAE does not apply to engagements on controls required to be conducted under ASAE 3402, an … with user entities to provide an assurance report on controls for the purposes of both providing evidence for … that are likely to be relevant to user entities’ internal control as it relates to financial reporting and a …
… the results of any tests of the operating effectiveness of controls conducted by the internal audit function when evaluating operating … more persuasive than information obtained indirectly, from internal audit or from management or other entity personnel. …
… Generally, IT benefits an entity’s internal control by enabling an entity to: consistently … and its policies and procedures; reduce the opportunity for controls to be circumvented; and enhance the ability to … effective segregation of duties by implementing security controls in software applications, databases, and operating …