Difference between audit around the computer and audit through the computer
Answers
Answered by
33
Hey Dude,
Auditing through the computer__
Auditing through the computer describes the various steps taken by auditors to evaluate client’s software and hardware to determine the reliability of operations that is hard for human eyes to view and also test the operating effectiveness of related computer controls, e.g., access control.
Auditing through the computer is common in practice today as many companies/ businesses make use of computerized information systems and these in turn have significant controls embedded in them. Ignoring these computer controls will make auditors not to have the required insight into the effectiveness and reasonableness of the client’s internal control. And will not be reporting in compliance with the relevant laws and regulations that govern auditing as a profession.
Though, external auditors most times uses this technique to test the controls in simple applications, but, internal auditors more frequently uses auditing through the computer technique to ensure that errors that may not be easily detected from the output are discovered and corrected.
Auditing around the computer_
Auditing around the computer is one of the several methods that auditors can use to evaluate a client’s computer controls. It involves picking source documents at random and verifying the corresponding outputs with the inputs. The client’s computerized information system processes the ‘test transaction’. For example, multiplying unit price with the number of products sold to ensure that the total revenue figure is correct.
No attempt is made to establish and evaluate the existence of controls. Auditing around the computer is appropriate in situations where significant computer controls are not required. For example, auditing around the computer can be used when computers are only used for calculation purposes.
Conclusion__
Though, nothing is technically wrong with auditing around the computer if the auditor is satisfied with the control system in place and is able to gather sufficient evidence in this regard, but, in order to meet with the requirement of gaining sufficient understanding of a system (internal control), auditing through the computer will be the best bet for auditors to follow. Again, AS 5 (Auditing Standard) did not permit auditors to issue opinions on the operating effectiveness of internal control of a business if auditing around the computer approach is used.
Hope, it helps you :P
Auditing through the computer__
Auditing through the computer describes the various steps taken by auditors to evaluate client’s software and hardware to determine the reliability of operations that is hard for human eyes to view and also test the operating effectiveness of related computer controls, e.g., access control.
Auditing through the computer is common in practice today as many companies/ businesses make use of computerized information systems and these in turn have significant controls embedded in them. Ignoring these computer controls will make auditors not to have the required insight into the effectiveness and reasonableness of the client’s internal control. And will not be reporting in compliance with the relevant laws and regulations that govern auditing as a profession.
Though, external auditors most times uses this technique to test the controls in simple applications, but, internal auditors more frequently uses auditing through the computer technique to ensure that errors that may not be easily detected from the output are discovered and corrected.
Auditing around the computer_
Auditing around the computer is one of the several methods that auditors can use to evaluate a client’s computer controls. It involves picking source documents at random and verifying the corresponding outputs with the inputs. The client’s computerized information system processes the ‘test transaction’. For example, multiplying unit price with the number of products sold to ensure that the total revenue figure is correct.
No attempt is made to establish and evaluate the existence of controls. Auditing around the computer is appropriate in situations where significant computer controls are not required. For example, auditing around the computer can be used when computers are only used for calculation purposes.
Conclusion__
Though, nothing is technically wrong with auditing around the computer if the auditor is satisfied with the control system in place and is able to gather sufficient evidence in this regard, but, in order to meet with the requirement of gaining sufficient understanding of a system (internal control), auditing through the computer will be the best bet for auditors to follow. Again, AS 5 (Auditing Standard) did not permit auditors to issue opinions on the operating effectiveness of internal control of a business if auditing around the computer approach is used.
Hope, it helps you :P
Similar questions