Ganesh Sharma, profile picture
Uploaded byGanesh Sharma
PPT, PDF1,010 views

Auditing concept

Auditing is the process of independently examining and evaluating records and activities. It helps management by providing suggestions to help an organization achieve its goals. There are two main types of auditing - internal auditing, which depends on management, and external auditing, which is done by individuals outside the company. Information system auditing evaluates whether a system safeguards assets and maintains data integrity. It is a serious process requiring experienced auditors to conduct reviews of areas like finances, operations, administration and information systems. Proper planning, work performance, reporting, and follow up are important parts of the auditing process.

Embed presentation

Downloaded 43 times
Auditing Concept -Ganesh Sharma
 Auditing evolved and grew rapidly after the industrial revolution in 18th century and in India the companies Act 1913 made audit of company compulsory.  Auditing is the process of analysing the log records so as to describe the information about the system in a clear and understandable manner.  Auditing is an independent Review and Examination of records and activities  Audit is done with the help of Vouchers Documents,Information and Explanations received from the authorities  Audit helps the management providing Suggestions to attain goal of an organization.
Defination and Meaning:  Auditing is the process of collecting and Evaluating Evidence to determine whether a Computer System Safeguards, Assets, Maintains Data Integrity, allows organizationl goals to be achieved effectively.  Auditing is a serious discipline. Auditors must be the most experienced, knowledgeable, professionally qualified individuals in a discipline.  It is conducted for proprietors only.  Audit is legally compulsory for companies
Exampe of Audits are as : 1.Financial Audits 2.Operational Audits 3.Administrative Audits 4.Information System Audits 5.Specialized Audits 6.Integrated Audits 7.Forensic Audits
Auditing Types 1.Internal Auditing  It Depands on management and its function`s objective that vary according to management requirement.  It is an independent approach that is designed to improve the organization operations and accomplish its bringing up a systematic disciplined approach to evaluate and improve the effectiveness of risk management. 2.External Auditing  It is carried out by an individual independent of the company being audited.  It focusus on the interests of third party stakeholder, while internal auditors serve as an independent apprisal function within the organization.
Information Security Audit(ISA) Need for an information systems audit function comes from two reasons  Auditors realized that computers had affected their ability to perform the attest function  Both corporate and information systems management recognized that computers were valuble resources that needed controling like any other key resources within an organization. Other reasons  Increasing level of computerization of manual functions  Rapid technology development  Lack of users knowledge resulting in insecure practices  Viruses,worms Hackers and security threats  Changing regulatory environment
Skills required in an IS Auditor  Knowledge of auditing ,Information Systems And Network security.  Investigation and process flow analysis skills  Interpersonal relation skills.  Verbal and written communication skills  Ability to make maintain confidentaility  Ability to use It desktop office tools vulnerability analysis and other IT tools.
Standard and Performance The IS Auditing standard include 1.Audit charter: It must state roles and responsibilities, authority and accountability of the ISA function 2.Maintain Professional Independence and Organizational relationship:- The IS auditmust be independent in all matters related to auditing in attitude and in apperance. 3.Ethics and Standard: Appropriate professional auditing standard must be used in all aspects of IS auditor`s work. 4.Planning: The IS auditor needs to plan the IS audit works to achieve the audit objectives complying with the audit standard.
 Performance of audit work:The IS audit team must be supervised so as to achieve the audit objective applicable to professional auditing standard.  Reporting:The IS auditormust present the audit report to the intended recipets.  Follow up activities: The IS auditor must request and evaluate the previous relevant findings,conclusion and recommendations so as to check appropriate action have been implemented in timely manner or Not  IT Governance: It is process of controling an organization IT resources information ,communication systems and technology in order to achieve organization obejctives and to manage and control IT related Risks.
Audit Steps  Step 1: Notification and request for preliminary information  Step 2: Planning  Step 3: Open Meeting  Step 4: FieldWork  Step 5: Communication  Step 6: Draft report  Step 7: Management responses  Step 8: Closing meeting  Step 9: Report Distribution  Step 10:Follow Up:IS auditor have follow up programs to determine if agreed correctives actions have been implemented.
IS Audit Phases  Audit the Subject: Identify the area to be audited  Audit the Objective: identify the specific systems and function of the organization  Plan the Pre Audit: identify the technical skills,required resources and sources of information for test and review and Identify locations and facilities to be audited.  Process for data Gathering: Identify the appropriate audit approach,Identify the list of individual to interview,identify and review the department policies,standard and guidelines and develop audit tools and methodology
 Evaluate the test and review the result  Procedures for Cummunication: IS auditors should communicate theresults to the senior management and to the audit committee of the board of directors.  Audit the report preparation: Identify follow up review, identify procedure to test operational efficiency and effectiveness and controls review and evaluate the soundness of documents,polocies and procedures
Audit Risk  Audit Risk is a material error in the IS report that may remain undetected during the audit.  IT risks is a case where IS will not achieve the business Objective and responding to threat to the provision of IT services.  A RISK based audit approach is used to assist an IS auditor decision to perform either compliance or substantive testing.
The variou components of risk include 1.Inherent risk: It is associaoted with the unique characteristics of the business of the client. 2.Control risk: It is the risk that is not prevented or detected on a timely basis by the system of internal controls 3.Detection risk: The risk arises when IS auditors uses as inadequate test procedure and concludes that errors do not exist but they do exist. 4.Overall audit risk: It is the combination of inherent,control and detection risk.Its Objective is to limit the audit risk at low level and is to access and control the risk to achieve the desired level of assurance.
Disadvantages  Reviewing operational processes can be very time consuming and costly.  When employees and managers are working with the auditor, they can't do other activities that might benefit the business, so projects or production might slow temporarily. Sometimes, the changes that a business makes are hard for workers to get used to, which can increase conflicts or confusion. Advantages  In addition to making the business more efficient and profitable in the long run, an operational audit almost always provides a company with some new, fresh perspectives.  It makes executives aware of problems that might not have been found otherwise and lets them evaluate risks for the future. Managers also can use results to motivate employees, as the company always has something to work toward at the end of the process.
Thank You

More Related Content

PPT
Financial Statements Audit
bySalih Islam
 
PPT
Audit procedures
byBilal Ahmed Bhatti
 
PPTX
Basic concepts in auditing
byCARAVI2016
 
PPTX
Internal Control
byravalhimani
 
PPTX
Financial Reporting
byQasim Raza
 
PPTX
Management accounting
bySruthi Tangirala
 
PPT
Objectives of auditing
byVadivelM9
 
PPTX
Objectives of auditing
bykulbirsingh100
 
Financial Statements Audit
bySalih Islam
 
Audit procedures
byBilal Ahmed Bhatti
 
Basic concepts in auditing
byCARAVI2016
 
Internal Control
byravalhimani
 
Financial Reporting
byQasim Raza
 
Management accounting
bySruthi Tangirala
 
Objectives of auditing
byVadivelM9
 
Objectives of auditing
bykulbirsingh100
 

What's hot

PPTX
Unit 3 Internal Audit
byAjay Nazarene
 
PDF
Internal Control
bySalih Islam
 
PPTX
AUDIT WORKING PAPERS-CUSTODY OF OWNERSHIP.pptx
byHeldaMaryA
 
PDF
The “internal audit” versus “external audit” in details
byMohammad Wahid Abdullah Khan
 
PPTX
Audit Documentation Presentation
byKarim70
 
PPTX
Management accounting
byYamini Kahaliya
 
PPTX
Planning of audit
byFoluwa Amisu
 
PPTX
Audit programme
byKumandan
 
PPTX
Unit 5 vouching
byRadhika Gohel
 
PPTX
Introduction to Management Accounting
byJathurika Mathyinparasan
 
PPTX
Audit report
byMinali Jain
 
PPTX
Ifrs
byRupa R
 
PDF
Advantage of audit
byWINNERbd.it
 
PPTX
Verification and valuation of assets and liabilities
byAtta Hussain Syed
 
PPTX
Auditing-definition & objective of auditing
byRavi kumar
 
PPT
Financial statement analysis types & techniques
byDr. Abzal Basha
 
PPTX
Verification and valuation of assets and liabilities
bysuganyababu14
 
PPTX
Varificationa & valuation of assets and liabilities
byAshwitha shetty
 
PDF
Audit report
byWINNERbd.it
 
PPTX
Overheads and classifcation of overheads
bygeetarajan73
 
Unit 3 Internal Audit
byAjay Nazarene
 
Internal Control
bySalih Islam
 
AUDIT WORKING PAPERS-CUSTODY OF OWNERSHIP.pptx
byHeldaMaryA
 
The “internal audit” versus “external audit” in details
byMohammad Wahid Abdullah Khan
 
Audit Documentation Presentation
byKarim70
 
Management accounting
byYamini Kahaliya
 
Planning of audit
byFoluwa Amisu
 
Audit programme
byKumandan
 
Unit 5 vouching
byRadhika Gohel
 
Introduction to Management Accounting
byJathurika Mathyinparasan
 
Audit report
byMinali Jain
 
Ifrs
byRupa R
 
Advantage of audit
byWINNERbd.it
 
Verification and valuation of assets and liabilities
byAtta Hussain Syed
 
Auditing-definition & objective of auditing
byRavi kumar
 
Financial statement analysis types & techniques
byDr. Abzal Basha
 
Verification and valuation of assets and liabilities
bysuganyababu14
 
Varificationa & valuation of assets and liabilities
byAshwitha shetty
 
Audit report
byWINNERbd.it
 
Overheads and classifcation of overheads
bygeetarajan73
 

Similar to Auditing concept

PPTX
Audit presentation
byMetafrique group
 
PPT
Ais Romney 2006 Slides 09 Auditing Computer Based Is
bysharing notes123
 
PPTX
Conducting an Information Systems Audit
bySreekanth Narendran
 
PPT
Technology Auditing, Assurance, Internal Control
byZefren Edior
 
PPTX
CISA Training - Chapter 1 - 2016
byHafiz Sheikh Adnan Ahmed
 
PPTX
Orientation in IT Audit
bySuman Thapaliya
 
PPT
Security audit
byRosaria Dee
 
PPTX
it grc
by9535814851
 
PPT
IT System & Security Audit
byMufaddal Nullwala
 
PPTX
module_1.pptx
byssuser432862
 
PPTX
Cyber Security Audit and Information Security.pptx
byalamba570
 
PPT
PPT-UEU-Audit-Kendali-Sistem-Informasi-Pertemuan-4.ppt
bytp409365
 
PPTX
Audit-and-Assurance-II.pptxedfefefsferfw
bymdmustofaa9
 
PPT
PPT-UEU-Audit-Kendali-Sistem-Informasi-Pertemuan-4.ppt
byKumarNatarajan24
 
PDF
auditpresentation-121006061658-phpapp02.pdf
byowaissayyed0041
 
DOCX
· Processed on 09-Dec-2014 901 PM CST · ID 488406360 · Word .docx
byLynellBull52
 
PPTX
Tugas mandiri audit novita dewi 11353202277
bynovita dewi
 
PDF
chapter2-190516054412.pdf
bychetanvchaudhari
 
PPT
008.itsecurity bcp v1
byMohammad Ashfaqur Rahman
 
PPT
Project_Paper_Presentation_ISSC471_Intindolo
byJohn Intindolo
 
Audit presentation
byMetafrique group
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
bysharing notes123
 
Conducting an Information Systems Audit
bySreekanth Narendran
 
Technology Auditing, Assurance, Internal Control
byZefren Edior
 
CISA Training - Chapter 1 - 2016
byHafiz Sheikh Adnan Ahmed
 
Orientation in IT Audit
bySuman Thapaliya
 
Security audit
byRosaria Dee
 
it grc
by9535814851
 
IT System & Security Audit
byMufaddal Nullwala
 
module_1.pptx
byssuser432862
 
Cyber Security Audit and Information Security.pptx
byalamba570
 
PPT-UEU-Audit-Kendali-Sistem-Informasi-Pertemuan-4.ppt
bytp409365
 
Audit-and-Assurance-II.pptxedfefefsferfw
bymdmustofaa9
 
PPT-UEU-Audit-Kendali-Sistem-Informasi-Pertemuan-4.ppt
byKumarNatarajan24
 
auditpresentation-121006061658-phpapp02.pdf
byowaissayyed0041
 
· Processed on 09-Dec-2014 901 PM CST · ID 488406360 · Word .docx
byLynellBull52
 
Tugas mandiri audit novita dewi 11353202277
bynovita dewi
 
chapter2-190516054412.pdf
bychetanvchaudhari
 
008.itsecurity bcp v1
byMohammad Ashfaqur Rahman
 
Project_Paper_Presentation_ISSC471_Intindolo
byJohn Intindolo
 

Recently uploaded

PPTX
Cloud Computing Odedara Manav B. 23bit289d
byManavOdedara
 
PDF
STW_1_2_Audience_Types .pdf
bybajurajera
 
PPTX
Cybersecurity Threats and Prevention Odedara Manav
byManavOdedara
 
DOCX
11 Top Sites To Buy Verified Chime Bank Accounts (Aged.docx
bymarketing
 
PDF
_Scale Your U.S. Audience on Twitter — Strategy + Execution.pdf
bymarketing
 
PPTX
RESEARCH ABOUT PHILIPPINE LITERARY PERIODS
byDJFlores1
 
PPTX
MATHEMATICS QUARTER 1 WEEK 1 DAY 1-4.pptx
byJoanneLahipIgnacio
 
PPTX
Chemeical +Environmental Awarness Trg.pptx
byserdagzy
 
PPTX
My slide on how adaptability has helped me throughout my life.
byClementineFlahault
 
PPTX
Bob Stewart James 2 11-09-2025.pptx
byFamilyWorshipCenterD
 
PPTX
Paul McManis - My India Our India.pptx india
bymcmanispaul3
 
PPTX
2025-11-09 Moses 06 (shared slides).pptx
byDale Wells
 
Cloud Computing Odedara Manav B. 23bit289d
byManavOdedara
 
STW_1_2_Audience_Types .pdf
bybajurajera
 
Cybersecurity Threats and Prevention Odedara Manav
byManavOdedara
 
11 Top Sites To Buy Verified Chime Bank Accounts (Aged.docx
bymarketing
 
_Scale Your U.S. Audience on Twitter — Strategy + Execution.pdf
bymarketing
 
RESEARCH ABOUT PHILIPPINE LITERARY PERIODS
byDJFlores1
 
MATHEMATICS QUARTER 1 WEEK 1 DAY 1-4.pptx
byJoanneLahipIgnacio
 
Chemeical +Environmental Awarness Trg.pptx
byserdagzy
 
My slide on how adaptability has helped me throughout my life.
byClementineFlahault
 
Bob Stewart James 2 11-09-2025.pptx
byFamilyWorshipCenterD
 
Paul McManis - My India Our India.pptx india
bymcmanispaul3
 
2025-11-09 Moses 06 (shared slides).pptx
byDale Wells
 
In this document
Powered by AI

Ganesh Sharma introduces auditing concepts, providing a foundation for the presentation.

Auditing is a process of evaluating records to aid management. It is compulsory for companies and ensures data integrity.

Covers various audit types including financial, operational, internal, and external audits, focusing on their differing objectives.

Discussing the necessity for ISA, reasons include increasing technology use and security threats, highlighting skills required for IS auditors.

Standards and performance in IS auditing, including independence, ethics, planning, reporting, and IT governance.

Details the step-by-step audit process, from initial notification to follow-up actions ensuring thorough evaluations.

Defines audit risks, their types including inherent, control, and detection risks, and strategies to limit overall audit risk.

Explores the time-consuming nature and potential confusion of audits but emphasizes their long-term efficiency and perspective benefits.

The presentation concludes with a thank-you note from Ganesh Sharma.

Auditing concept

  • 1.
  • 2.
     Auditing evolvedand grew rapidly after the industrial revolution in 18th century and in India the companies Act 1913 made audit of company compulsory.  Auditing is the process of analysing the log records so as to describe the information about the system in a clear and understandable manner.  Auditing is an independent Review and Examination of records and activities  Audit is done with the help of Vouchers Documents,Information and Explanations received from the authorities  Audit helps the management providing Suggestions to attain goal of an organization.
  • 3.
    Defination and Meaning: Auditing is the process of collecting and Evaluating Evidence to determine whether a Computer System Safeguards, Assets, Maintains Data Integrity, allows organizationl goals to be achieved effectively.  Auditing is a serious discipline. Auditors must be the most experienced, knowledgeable, professionally qualified individuals in a discipline.  It is conducted for proprietors only.  Audit is legally compulsory for companies
  • 4.
    Exampe of Auditsare as : 1.Financial Audits 2.Operational Audits 3.Administrative Audits 4.Information System Audits 5.Specialized Audits 6.Integrated Audits 7.Forensic Audits
  • 5.
    Auditing Types 1.Internal Auditing It Depands on management and its function`s objective that vary according to management requirement.  It is an independent approach that is designed to improve the organization operations and accomplish its bringing up a systematic disciplined approach to evaluate and improve the effectiveness of risk management. 2.External Auditing  It is carried out by an individual independent of the company being audited.  It focusus on the interests of third party stakeholder, while internal auditors serve as an independent apprisal function within the organization.
  • 6.
    Information Security Audit(ISA) Needfor an information systems audit function comes from two reasons  Auditors realized that computers had affected their ability to perform the attest function  Both corporate and information systems management recognized that computers were valuble resources that needed controling like any other key resources within an organization. Other reasons  Increasing level of computerization of manual functions  Rapid technology development  Lack of users knowledge resulting in insecure practices  Viruses,worms Hackers and security threats  Changing regulatory environment
  • 7.
    Skills required inan IS Auditor  Knowledge of auditing ,Information Systems And Network security.  Investigation and process flow analysis skills  Interpersonal relation skills.  Verbal and written communication skills  Ability to make maintain confidentaility  Ability to use It desktop office tools vulnerability analysis and other IT tools.
  • 8.
    Standard and Performance TheIS Auditing standard include 1.Audit charter: It must state roles and responsibilities, authority and accountability of the ISA function 2.Maintain Professional Independence and Organizational relationship:- The IS auditmust be independent in all matters related to auditing in attitude and in apperance. 3.Ethics and Standard: Appropriate professional auditing standard must be used in all aspects of IS auditor`s work. 4.Planning: The IS auditor needs to plan the IS audit works to achieve the audit objectives complying with the audit standard.
  • 9.
     Performance ofaudit work:The IS audit team must be supervised so as to achieve the audit objective applicable to professional auditing standard.  Reporting:The IS auditormust present the audit report to the intended recipets.  Follow up activities: The IS auditor must request and evaluate the previous relevant findings,conclusion and recommendations so as to check appropriate action have been implemented in timely manner or Not  IT Governance: It is process of controling an organization IT resources information ,communication systems and technology in order to achieve organization obejctives and to manage and control IT related Risks.
  • 10.
    Audit Steps  Step1: Notification and request for preliminary information  Step 2: Planning  Step 3: Open Meeting  Step 4: FieldWork  Step 5: Communication  Step 6: Draft report  Step 7: Management responses  Step 8: Closing meeting  Step 9: Report Distribution  Step 10:Follow Up:IS auditor have follow up programs to determine if agreed correctives actions have been implemented.
  • 11.
    IS Audit Phases Audit the Subject: Identify the area to be audited  Audit the Objective: identify the specific systems and function of the organization  Plan the Pre Audit: identify the technical skills,required resources and sources of information for test and review and Identify locations and facilities to be audited.  Process for data Gathering: Identify the appropriate audit approach,Identify the list of individual to interview,identify and review the department policies,standard and guidelines and develop audit tools and methodology
  • 12.
     Evaluate thetest and review the result  Procedures for Cummunication: IS auditors should communicate theresults to the senior management and to the audit committee of the board of directors.  Audit the report preparation: Identify follow up review, identify procedure to test operational efficiency and effectiveness and controls review and evaluate the soundness of documents,polocies and procedures
  • 13.
    Audit Risk  AuditRisk is a material error in the IS report that may remain undetected during the audit.  IT risks is a case where IS will not achieve the business Objective and responding to threat to the provision of IT services.  A RISK based audit approach is used to assist an IS auditor decision to perform either compliance or substantive testing.
  • 14.
    The variou componentsof risk include 1.Inherent risk: It is associaoted with the unique characteristics of the business of the client. 2.Control risk: It is the risk that is not prevented or detected on a timely basis by the system of internal controls 3.Detection risk: The risk arises when IS auditors uses as inadequate test procedure and concludes that errors do not exist but they do exist. 4.Overall audit risk: It is the combination of inherent,control and detection risk.Its Objective is to limit the audit risk at low level and is to access and control the risk to achieve the desired level of assurance.
  • 15.
    Disadvantages  Reviewing operationalprocesses can be very time consuming and costly.  When employees and managers are working with the auditor, they can't do other activities that might benefit the business, so projects or production might slow temporarily. Sometimes, the changes that a business makes are hard for workers to get used to, which can increase conflicts or confusion. Advantages  In addition to making the business more efficient and profitable in the long run, an operational audit almost always provides a company with some new, fresh perspectives.  It makes executives aware of problems that might not have been found otherwise and lets them evaluate risks for the future. Managers also can use results to motivate employees, as the company always has something to work toward at the end of the process.
  • 16.