Académique Documents
Professionnel Documents
Culture Documents
• Application controls refer to the transactions and data relating to each computer based
application system, therefore, they are specific to each application.
• The objectives of application controls are to ensure completeness and accuracy of the records
and the validity of the entries made in.
• Application controls are controls over input, processing and output functions. They include
methods to ensure that:
– Only complete, accurate and valid data are entered and updated in a computer system.
– Processing accomplishes the correct task.
– Processing results meet the expectations.
– Data are maintained.
Application Controls (Contd.)
• IS Auditor Tasks:
– Identifying the significant application components and the flow of transactions through
the system and gaining a detailed understanding of the application by reviewing the
available documentation and interviewing appropriate personal.
– Identifying the application control strengths and evaluating the impact of the control
weaknesses.
– Developing a testing strategy.
– Testing the controls to ensure their functionality and effectiveness by applying appropriate
audit procedures.
– Evaluating the control environment by analyzing the test results and other audit evidence
to determine that control objectives were achieved.
– Considering the operational aspects of the application to ensure its efficiency and
effectiveness by comparing the system with efficient system design standards, analyzing
procedures used and comparing them to management’s objectives for the system.
Application Controls