Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
11 Cards in this Set
- Front
- Back
|
Internal control definition
|
The process implemented by the board of directors, management, and those under their direction to provide reasonable assurance that the following control objectives are achieved.
|
|
|
Preventive Controls
|
Controls that deter problems before they arise. Effective preventive controls include hiring qualified accounting personnel; appropriately segregating employee duties; and effectively controlling physical access to assets, facilities, and information.
|
|
|
Detective Controls
|
Controls designed to discover control problems when they arise.
|
|
|
Corrective Controls
|
Procedures that remedy problems that occur.
|
|
|
SOX
|
Prevent financial statement fraud. Make financial reports more transparent. Protect investors. Strengthen internal controls in publicly-held companies. Punish executive who perpetrate fraud.
|
|
|
COBIT
|
The framework addresses the issue of control from three dimensions: business objectives, IT resources, IT processes.
|
|
|
COSO ERM Objectives
|
Strategic, operations, reporting, and compliance.
|
|
|
Inherent Risk
|
The susceptibility of a set of accounts or transactions to significant control problems in the absence of internal control.
|
|
|
Residual Risk
|
The risk that remains after management implements internal controls or some other form of response to risk.
|
|
|
There are four ways to response to risks
|
Reduce it, Accept it, Share it, or Avoid it.
|
|
|
Ways to control activities
|
Segregation of duties, proper authorization of transactions and activities.
|
