Frame work access controls
identified
authenticated
authorized
iaa-
Segregation of duties
VALIDITY
The same person should not be responsible for multiple
functions within a function
(Students must state exactly who should perform each
function in order to achieve this)
Custody of assets
VALIDITY/ CUSTODY OF ASSETS
-Assets should be kept behind locked doors.
- Only authorised personnel should be given keys.
- Security guards should monitor access to the premises
- Visitors should be required to show identification before
entering the premises and visitors should sign a log book
to document their visit - CCTV cameras should be in place to monitor assets
(Students should state which assets the above controls
should be over – inventory, cash, etc.)
Reconciliations
Validity/accuracy/
completeness
- Subsidiary ledgers to be reconciled to control accounts
(e.g. debtors ledger to accounts receivable control
account) - Between documents from subsequent stages (e.g.
reconcile amounts on invoices to amounts on delivery
notes and orders)
(Students clearly state what is being reconciled i.e. a
reconciliation of XXX to YYY).
See ‘Management Controls’ below for the review of the
reconciliation
Controls over unused documents
Validity
Unused documents should be:
- Difficult to copy
- Crossed/stamped when no longer in use/paid
- Kept in a safe with only management having keys
Documents should be issued to staff only when necessary
- This should be logged
- Both the staff member and management to sign as
evidence of issuance
Management controls
Validity
Management should set policies and communicate these with
staff. Policies might include those over:
- limits (overtime hours, credit limits, wage rates etc.)
- authorised suppliers
- hiring and firing of staff
Management should give specific authorisation for any
override of policy (evidence by signature)
Management should review the following
Validity/accuracy/
completeness
Logs of documents issued
- Reconciliations carried out by employees
- Customer/employee complaints
-
Management should train staff on the operation of controls
Management should monitor the operation of controls by
performing spot checks
-
Cheat Sheet15
-
Factors affecting ROM28
-
GOOD FOR SELF AND GOOD FOR OTHERS2
-
Good S76 CO.ACT linkage3
-
King iv Principle 1 eg applications and scenarios2
-
Elements of an assurance engagement16
-
Auditing in SA tragic state22
-
S94 Audit committee2
-
Materiality8
-
Audit Sampling ISA 5307
-
Evaluation of uncorrected mistatements3
-
Accounts payable1
-
Engagement profile and quality monitoring8
-
pre-engagement activities12
-
Audit Strategy6
-
Audit Plan8
-
Hint on formulation of T.D7
-
VAC8
-
Network Transmission3
-
Computer controls19
-
Cycles16
-
Tests of controls3
-
General controls2
-
CPC- FRAME-WORK( ETHICAL THREATS) JAN ITC11
-
SP on opening balance existence16
-
Test of controls on something like a takealot app16
-
Companies ACt s757
-
most recent Board meeting – (i) the aspects that should be considered by the audit team with regard to the decisions taken in terms of the Auditing Professions Act, Act 26 of 20058
-
CPC- S250 Hospitality7
-
Control deficiencies in the financial year reporting process14
-
substantive procedures you would perform to audit the accuracy, valuation and presentation assertions for trade receivables11
-
audit procedures that you would perform regarding the reasonableness13
-
CPC- Ethical concerns3
-
Course of action when faced with dilemma at work3
-
TOC4
-
PUBLIC INTEREST ENTITY2
-
deficiencies in TOC response1
-
RI AND S2502
-
Ethical implication1
-
Cash incentive scheme2
-
Noclar3
