Essay on "Auditing the Role of Databases"
Essay 16 pages (5292 words) Sources: 1
[EXCERPT] . . . .
AuditingThe role of databases in the auditing function is to analyze a much larger volume of information more quickly and accurately than what has been done in the past (Cascarino, 2012). That role is important because manual systems were far less reliable than systems that utilize computers, and those old systems could cause auditors to easily make mistakes that they would not otherwise have made. Now, there are fewer mistakes because of the databases. Companies can get their auditing needs addressed more quickly, as well, and auditors are able to do more work in a shorter period of time (Cascarino, 2012). Both privacy and security are parts of the database role, as well (Cascarino, 2012). Manual systems were more prone to being examined by those who did not have business looking at them, and it was harder for the auditors and the company to protect privileged information. Databases can lock information down much tighter, reducing the chance that the information on the database will be seen by someone who should not be viewing it.
Declarative Definition Language is also used, and its role in the ability to describe security specifications is significant (Cascarino, 2012). Specifications are made more clear by using DDL, and that ensures that the environment is audited more easily (Cascarino, 2012). The controls that are part of the original application can be migrated over to the environment through DDL, thus not changing anything while still protecting all of it (Cascarino, 2012). In short, DDL and databases make things much safer and faster for the company or department that is being audited, and for the company or department doing the auditing. They reduce the chance tha
Continue scrolling to
t something will be misinterpreted or mishandled, and they also lower the chance that there will be any illegal or inappropriate activity on either end of the auditing equation (Cascarino, 2012). That protects all interested parties.download full paper ⤓
There are qualities and roles of an auditor that go beyond the skill set of normal corporate managers, including an understanding that control does not necessarily come from top management (Cascarino, 2012). Instead, auditors see that control in the business environment of today should focus the control ability on the people who are "owning" the process in which they are engaged (Cascarino, 2012). Management of the project at hand and the auditing environment are part of the roles and qualities of the auditor. It is not that other managers do not have control of their environments, but only that other managers are focused on the top-down approach that does not work well with auditing. Internal controls are vital to the success of an auditor and his or her department, so auditors must be able to control their environments more thoroughly than they would be able to if they were placed under stringent restrictions by upper management (Cascarino, 2012).
Designing and implementing controls are one of the things that auditors do best, because it is part of their jobs (Cascarino, 2012). Since they are so capable of the creation of controls and they understand how those controls should be implemented, their mindsets are different than what would be seen from a standard manager (Cascarino, 2012). Auditors, despite their relatively rigid jobs, are generally more flexible when it comes to management skill, because they know that their field is always changing and they must be able to adapt. Control, for the auditor, is something that comes from within and not something that has to be imposed upon him or her by a manager (Cascarino, 2012). The auditors also understand how to implement and monitor their controls, unlike upper management that often sets controls or rules and then simply allows them to continue being enforced without any regard as to whether they should be changed, amended, updated, or removed altogether (Cascarino, 2012). Auditors look at the world differently, which is part of what keeps them successful.
There are many risks involved in examining evidence in order to arrive at an audit conclusion, and it is important to incorporate the concepts of independence and objectivity (Cascarino, 2012). Auditors that are not objective end up doing a large disservice to their clients. They interject their personal opinion and thoughts into the auditing process, which can create too many concerns regarding what the company has already done, what it should be doing, and why there are differences of opinion on so many issues (Cascarino, 2012). Because auditors are focused on internal controls, it is easy for them to steer the evidence creation and collection a particular way. However, objectivity and independence are the most important traits they can possess. As long as auditing rules are properly followed and no rules of conduct are broken, the way that a particular company handles its business should not be affected by the opinions of the auditors (Cascarino, 2012).
The independence of any auditor is such a significant issue for a company. Auditors can take a long time to arrive at a decision, and if they get that decision wrong they can do serious damage to a company or its stakeholders, as well as tarnishing their own reputations (Cascarino, 2012). Because that is such an issue, auditors have to take care of their clients but also be mindful that they do not get too close to the clients on a personal or professional level. Getting too close to clients can cause a lack of independence and objectivity in an auditor (Cascarino, 2012). While many people who work in companies get close to one another and make friends both inside and outside of the office, auditors must be careful to maintain distance from those they actually audit. Not doing so can mean an auditor who is not objective and who does not maintain enough independence to audit a company properly. Overall, auditors are a different breed and they must remember that so they can do their jobs correctly and keep their work separate.
If auditors do not follow proper rules of conduct, they can have legal action taken against them. This has happened to auditors in the past that do not follow Sarbanes-Oxley and other rules of corporate governance (Cascarino, 2012). Each auditor has rules that he or she follows because they are required for the profession. Additionally, auditors may have opinions that they consider valid and from which they will not deviate. Some of these are their own "rules," and they live by them professionally. Others are rules and opinions that belong to others and which they have taken as their own. Regardless of those, however, the main rules of conduct that are followed by auditors are those which are required by law and that cannot be changed based on the opinion of the auditor (Cascarino, 2012). Auditors who are not willing to follow the rules of conduct end up in trouble, because breaking rules where company audits are concerned can be grounds for prosecution and criminal charges (Cascarino, 2012).
Financial issues are among some of the most significant problems that auditors face, since they have their own reputations on the line along with the reputations of the clients they audit (Cascarino, 2012). Accounting and auditing firms can cause national and international scandals, like the Enron debacle. When a company attempts to hide what it is doing and its misdeeds are discovered in an audit, that company can attempt to put the blame onto the auditor and make it appear that the auditor did not do his job correctly. Auditors who have been found not to follow the rules at any point in their careers will have a great deal of trouble being trusted when they do legitimately discover a problem in the financials of a company. The rules can occasionally change for auditors, however, just like the tax code and other financial requirements. Auditors need to make sure they keep up with the rules and requirements of their professions, in order to be as successful as possible and do the best job for their clients who are trusting in them (Cascarino, 2012).
There are several goals that have to be attended to within the control process. One of these is preventive controls, and they relate to the overall auditing process through an assurance that everything is working as expected from the beginning (Cascarino, 2012). When preventive controls are employed, there is less of a chance of needing other types of controls that would occur later, after a problem has already taken place and has to be corrected or accounted for in some way (Cascarino, 2012). Preventive controls cannot catch everything, of course, because they are not completely infallible. They can fall victim to misuse and abuse just like any other controls in the auditing profession. There are no infallible controls. However, preventive controls are better at catching more serious issues and stopping them from ever getting started (Cascarino, 2012). That can give auditors and their clients peace of mind, and also reduce the number of errors seen during the auditing process.
Preventive measures provide clients… READ MORE
Quoted Instructions for "Auditing the Role of Databases" Assignment:
“I*****'m ordering 2 pages per question - Please let me know if you need any other information
Textbook Name: Auditor*****'s Guide to IT Auditing; 2nd edition; ISBN: 978-1-118-14761-0
Please Follow Instructions:
All questions reference the above mentioned textbook; however other sources can be used to support your answers. All response MUST be SPECIFIC to the questions asked, showing a detailed understanding and in depth knowledge of the material.
Two (2) pages minimum are required for each question providing an in depth knowledge and understanding.
Chapter 1
What is the role of databases in the auditing function and why is this role important?
Describe the use of the Declarative Data Definition Language and its role in the ability to describe security specifications?
Chapter 2
Chapter two discusses some the characteristics of an auditor or an audit team. There is a relationship between the company and the audit team regardless if the team is external or internal. The skill set of auditor is different than other company personnel, and in that regard has many qualities that might not be part of the corporate structure or the overall goal. Part of the process is determining a companies performance needs and categorizing performance threats. A charter can perhaps be a way to enforce standards when structure or desire is not evident.
The role of an auditor is not purely technical, scientific or managerial. After reading chapter two, answer the following question:
What are the qualities or roles of an auditor that are perhaps beyond the skill set of the normal corporate manager?
Chapter 3
Discuss the risks involved in examining evidence in order to arrive at an audit conclusion, be sure to incorporate the concept of independence and objectivity.
Chapter 4
This chapter discusses standards and guidelines, starting with a given set of rules of conduct. Investigate any legal actions that have been taken against auditors because they did not follow these rules of conduct
Chapter 5
This chapter discusses controls, of the following three goals; examine one of the following in regards to the overall auditing process, keeping in mind topics that were discussed in the previous chapters.
 Preventive Controls
 Detective Controls
 Corrective Controls
Chapter 6
This chapter discusses risk and the interaction between the corporation, the auditing team and the component of risk.
Discuss risk and its relationship to the auditing process.
Chapter 7
What are the advantages and disadvantages to audit planning and why are audit plans difficult or nearly impossible to accurately follow?
Chapter 8
Discuss the relationship between audit management and audit quality assurance?
Chapter 9
In the auditing evidence process there is certainty of risk, elaborate on how you can reduce the risk of other evidence process?
The use of simulations allows for the determination or classification of risk, explain how the Monte Carlo, game theory and queuing theory can assist in the determination of risk analysis.
Chapter 10
Audit reporting is necessary in order to provide management of the various results from the objectives of the audit. This feedback to management is sometimes the more difficult task of an audit process. Choose one of the areas in chapter 10 and elaborate with details on the importance of your chosen area.
Chapter 11
Audit management covers a wide area such as Projects, Quality Control, Operations and Production, Performance and Technical services. If you were at the management level, how would you qualify these areas and what would you do to prioritize your efforts?
Chapter 16
This chapter defines a basis for a formal structure that should exist prior to an audit, without a structure of some kind, it would be difficult to determine responsibilities and the outcome it to determine responsibility or where overlaps or excessive authorization exists and is not needed. In the end of the chapter, two types of system analysis are used, object-***** and process-***** analysis.
How could you use these one of these systems to address the other areas of the chapter, such as Management, customers, operations, staff, and technical support?
Chapter 17
How can SAP or Oracle be used to manage areas such as configuration and change management, capacity management and business continuity management?
Chapter 18
On page 230 and 231, there are a list of bulleted items that are the possible cause of problematic events. These items, some or all of them, exist in almost all companies. They also have a direct bearing on the success of an audit. In your opinion discuss at least three that you feel would have the largest impact if you were to do an audit?
Chapter 19
How would you balance continuous monitoring with the growth and potential of business process outsourcing and e-business?
Chapter 24
Elaborate on the differences between continuous monitoring and continuous auditing, please provide examples.
How to Reference "Auditing the Role of Databases" Essay in a Bibliography
“Auditing the Role of Databases.” A1-TermPaper.com, 2012, https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842. Accessed 6 Jul 2024.
Auditing the Role of Databases (2012). Retrieved from https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842
A1-TermPaper.com. (2012). Auditing the Role of Databases. [online] Available at: https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842 [Accessed 6 Jul, 2024].
”Auditing the Role of Databases” 2012. A1-TermPaper.com. https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842.
”Auditing the Role of Databases” A1-TermPaper.com, Last modified 2024. https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842.
[1] ”Auditing the Role of Databases”, A1-TermPaper.com, 2012. [Online]. Available: https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842. [Accessed: 6-Jul-2024].
1. Auditing the Role of Databases [Internet]. A1-TermPaper.com. 2012 [cited 6 July 2024]. Available from: https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842
1. Auditing the Role of Databases. A1-TermPaper.com. https://www.a1-termpaper.com/topics/essay/auditing-role-databases/3250842. Published 2012. Accessed July 6, 2024.
Related Essays:
Database Administration Thesis
Database Administration Today
In evaluating the current field of database administration, the areas of Database Management Systems (DBMS), Database Administrator (DBA) roles and responsibilities, the concepts of database designs, performance… read more
Thesis 11 pages (3489 words) Sources: 15 Style: APA Topic: Computers / IT / Internet
Database Design Term Paper
Database
What is a database? Is a database the same as a database management system (DBMS)? Why or why not?
A database by definition is a collection of data records… read more
Term Paper 5 pages (1421 words) Sources: 5 Topic: Computers / IT / Internet
Database and Data Mining Security Strategy Essay
Database and Data Mining Security Strategy
Providing analysis and recommendations for securing the network connections, databases, and data mining applications of the Making Money Corporation (MMC) is the goal of… read more
Essay 4 pages (1199 words) Sources: 2 Topic: Computers / IT / Internet
Audit and Accountability Case Case Study
Web browsers: there is evidence for the need to use current web browsers. However, majority of enterprises are unable to shift from Microsoft Internet Explorer (IE) because they still use… read more
Case Study 6 pages (1901 words) Sources: 6 Topic: Computers / IT / Internet
Sarbanes-Oxley Impact on Auditing Thesis
Sarbanes-Oxley Impact on Auditing
The Impact of the Sarbanes-Oxley Act on the Auditing Profession
The accumulated effects of government-defined compliance legislation on the auditing profession has created significantly greater opportunities… read more
Thesis 5 pages (2046 words) Sources: 4 Style: MLA Topic: Accounting / Auditing
Sat, Jul 6, 2024
If you don't see the paper you need, we will write it for you!
Established in 1995
900,000 Orders Finished
100% Guaranteed Work
300 Words Per Page
Simple Ordering
100% Private & Secure
We can write a new, 100% unique paper!