DM1: Conducting Audits Flashcards
specific goals that must be accomplished by the audit
audit objective
testing used to provide reasonable assurance that control functions; determine where controls comply with organizational policy and procedures; test the existence and effectiveness of defined processes
compliance testing
testing used to substantiate the integrity of actual processing
substantive testing
sampling model that helps prevent excessive sampling of an attribute by allowing an audit test to be stopped at the earliest possible moment; used when auditors expect relatively few errors in a population
stop-or-go sampling
sampling model mostly used when seeking out fraud or irregularities; single error makes entire sample fraud/irregular
discovery sampling
statistical model where population is divided in groups and samples are taken from each group
stratified mean per unit
statistical model used to estimate the total difference between audited and unaudited values
difference estimation
statistical model where sample mean is calculated and considered estimated total
unstratified mean per unit
sampling model used to estimate the rate of occurrence of a specific quality or attribute in a population
fixed sample-size sampling
software tools that an IS auditor uses for data analysis during an IS audit or review
Computer-assisted audit techniques (CAATs)
perform tests and assessments in a real-time or near real-time enviroment
continuous auditing
used to observe the performance of one or many processes, systems, or types of data. Ex. real-time antivirus or IDS
continous monitoring
continuous auditing technique performed by setting up dummy entities and including them in auditee’s production files
Integrated test facility (ITF)
continuous auditing technique performed by embedding hooks in application system to function as red flags
audit hooks
continuous auditing technique performed by taking pictures of the processing path that a transaction follows
snapshot
