AISs change the way internal controls are implemented and the type of audit trails that exist within a modern organization. The lack of traditional forensic evidence, such as paper, necessitates the involvement of accounting professionals in the design of such systems. Periodic involvement of public auditing firms can be used to make sure the AIS is in compliance with current internal control and financial reporting standards.
After implementation, the focus of attestation is the review and verification of system operation. This requires adherence to standards such as ISO 9000-3 for software design and development as well as standards for control of information technology.
Periodic functional business reviews should be conducted to be sure the AIS remains in compliance with the intended business functions. Quality standards dictate that this review should be done according to a periodic schedule.
domenica 14 agosto 2011
Iscriviti a:
Commenti sul post (Atom)
Nessun commento:
Posta un commento