Implications of computers in financial statement audits.As information technology evolves at an increasing pace, auditors face the challenge of staying abreast of technological developments and identifying and addressing their implications for financial statement audits. William C. Fleenor, CPA (Computer Press Association, Landing, NJ) An earlier membership organization founded in 1983 that promoted excellence in computer journalism. Its annual awards honored outstanding examples in print, broadcast and electronic media. The CPA disbanded in 2000. , Loranger, Louisiana, a member of the auditing standards board In the United States, the Auditing Standards Board (ASB) is the senior technical committee designated by the American Institute of Certified Public Accountants (AICPA) to issue auditing, attestation, and quality control statements, standards and guidance to certified public computer auditing subcommittee, describes the guidance in existing auditing standards on electronic data processing See EDP. (application) Electronic Data Processing - (EDP) data processing by electronic machines, i.e. computers. . In the last few years there have been significant changes in how auditors use computers. Clients also are using more elaborate technology in their accounting information systems. Some of the technologies clients use include electronic data interchange See EDI. (application, communications) electronic data interchange - (EDI) The exchange of standardised document forms between computer systems for business use. EDI is part of electronic commerce. (EDI (Electronic Data Interchange) The electronic communication of business transactions, such as orders, confirmations and invoices, between organizations. Third parties provide EDI services that enable organizations with different equipment to connect. )--in which traditional documents such as purchase orders and invoices no longer exist-electronic imaging systems and distributed data processing See distributed processing. such as client server Computing. Because computers play an integral role in how businesses are run, they must play a similar role in how CPAs conduct audits. AUTHORITATIVE LITERATURE Much of the authoritative literature on computers and auditing appears in Statement on Auditing Standards no. 55, Consideration the Internal Control Structure in a Financial Statement Audit, which describes the elements of an entity's internal control structure and explains how auditors should consider that structure in a financial statement audit. The statement is relevant in considering the audit impact of computers because the objectives of control procedures are the same whether the controls are manual or computerized. The American Institute of CPAs audit guide, Consideration of the Internal Control Structure in a Financial Statement Audit, is especially helpful because it provides specific examples of client information systems for small, medium and large entities and explains how those systems might affect the audit. Because computer guidance has been integrated into the statement and the guide, specific references to computers may be hard to locate. NONAUTHORITATIVE LITERATURE The AICPA AICPA See American Institute of Certified Public Accountants (AICPA). also publishes nonauthoritative literature on computers and auditing, some of which describes a particular technology's implications for financial statement audits. The auditing procedures study (APS), Auditing in Common Computer Environments, describes microcomputers, local area networks, end-user computing End User Computing (EUC) is a group of approaches to computing that aim at better integrating end users into the computing environment or that attempt to realize the potential for high-end computing to perform in a trustworthy manner in problem solving of the highest order. , database management systems and telecommunications and their possible audit implications. The AICPA auditing standards division's Audit Risk Alert-1994 describes the audit implications of EDI, client-server computing and conducting business on the Internet. Three helpful items that will be published shortly are * An APS, Auditing in a Client/Server Environment. * EDI for Managers and Auditors. * An APS, Reports on the Processing of Transactions by Service Organizations. An existing APS, Auditing with Computers, describes how auditors can use computers as audit tools to increase efficiency. The AICPA information technology division also develops publications to help auditors keep abreast of evolving technologies such as client-server computing and image processing and to provide guidance on technology issues such as disaster recovery, microcomputer security and CPA firm technology planning. OTHER RESOURCES Auditors who find they need a more in-depth knowledge of computers may have to go beyond the AICPA for information. The Information Systems Audit and Control Association Information Systems Audit and Control Association (ISACA) is an international professional association for information system audit. ISACA is an affiliates member of IFAC[1] and IT Governance Institute. (formerly the EDP (Electronic Data Processing) The first name used for the computer field. EDP - Electronic Data Processing Auditor's Association) and the Institute of Internal Auditors “IIA” redirects here. For IIA in decision theory, see Independence of irrelevant alternatives. Established in 1941, The Institute of Internal Auditors (IIA) is an international professional association of more than 128,000 members with global headquarters in (see exhibit 1, this page) have publications that may help auditors develop the knowledge and understanding of computer systems needed for certain clients. Exhibit 2, page 93, lists publications from the AICPA and others that may be helpful to CPAs as sources of information on audit-related computer topics. A CHANGING WORLD It's important for financial statement auditors to stay current with the ever-changing world of auditing and computers. The resources listed here should provide CPAs with the help they need. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion