Controls for Information Technology and Reporting Evaluation

1621 words 7 pages
Controls for Information Technology and Reporting Evaluation
Week 6

Controls for Information Technology
Risk is a necessary undertaking for any business. Success in business is determined by effectively managing the risk. Effective risk management helps to protect the company from losses because of poor accounting practices and fraud. Good controls also protect company management from the liability when they certify the financial statements issued in the annual report because they are also certifying the internal controls. The internal control process begins with management and the attitude that management portrays through the company. From this attitude, management gives direction, and the direction becomes policies and
…show more content…
Options for Internal Controls Three different internal control schemes have been developed by various international bodies to assist organizations in developing and maintaining adequate internal controls for their automated information systems and information technology infrastructure. The Control Objectives for Information Related Technology (COBIT) have been produced by the IT governance institute, and are considered the standard for Information technology security and controls. The International Standards Organization has released ISO 17799, which extends British standard BS 7799 for the protection of information assets. The final widely recognized organization that has produced a standard for automated information systems controls is the Committee of Sponsoring Organizations (COSO) (Raval & Fichadia, 2007). COBIT approaches IT controls from a process perspective. This control structure identifies 34 high-level control objectives that have been divided among five different key frameworks. The control objectives cover acquiring infrastructure applications and software systems, the installation of software and infrastructure, and the management of both users’ access, and changes to the system (Raval & Fichadia, 2007). ISO 17799 is an extension of the British standard, BS 7799. Both standards divide the control aspects into two different categories, the management of data and the management of operations (Raval &

Related

  • Managerial Applications of Information Technology
    2659 words | 11 pages
  • Careers in Information Technology
    2305 words | 10 pages
  • The Self-Control Theory of Crime Evaluation
    1424 words | 6 pages
  • Strategic Planning for Information Technology
    3463 words | 14 pages
  • INformation Technology
    1033 words | 5 pages
  • Section 5 Internal Control over Financial Reporting
    23611 words | 95 pages
  • Organizational Technology Integration Evaluation Model
    3380 words | 14 pages
  • Information Technology Project Management Appendix Answers
    19468 words | 78 pages
  • Study Guide: Information Technology
    918 words | 4 pages
  • Information Technology
    2060 words | 9 pages