Big4Guy

Confessions, Thoughts, Observations and Musings of a Big4Guy

Big4Guy

Welcome to Big4Guy.com. Big4Guy is an online resource where I will share with you the latest news, insights, knowledge and some experiences as a Big 4 consultant. We will discuss some of the important issues which organisations are facing today in the areas of information security, security and controls in SAP R/3, Oracle Applications, J.D.Edwards, Peoplesoft and various other ERP's. You will also find information on latest complaince regulations like Sarbanes Oxley, Basel II and so on. Big4guy will also attempt to provide valuable resources for individuals interested in examinations the CISA, CISM, CISSP, PMP and various other security certifications considered essential for entry in any Big 4 accounting, auditing and consulting firms. You are invited to post your comments and viewpoints to posts here. I sincerely hope this online journal will be useful to everyone from a budding student to a professional in the accounting, auditing, management and consultancy professions.

Post details: Pervasive Information Technology General Controls ITGC Sarbanes Oxley

10/30/06

Permalink 06:20:36 am, Categories: Sarbanes Oxley, 229 words   English (US)

Pervasive Information Technology General Controls ITGC Sarbanes Oxley

Information technology general controls are very important in the overall control universe. This is beacuse, these controls are pervasive in nature. Infact, information technology general controls ITGC have a direct impact on the operating effectiveness of the automated application controls. But Sarbanes Oxley teams should note that automated application controls testing is not the same as ITGC testing. Just because automated controls are being tested, ITGCs cannot be ignored.

The initial scoping for the information technology general controls, should stress on key ITGCs rather than every general computer control. Examples of key ITGC would include controls over program development, controls over network, domain, management etc. Walkthroughs can be used in gaining an understanding of the ITGCs important to the control environment. Though ITGC and application controls testing are different, ITGC and automated controls go hand in hand. If automated controls are tested and are operating effectively over the entire period of SOX audit, then these need not been tested again every year, if they are supported by strong ITGC general computer controls. This apporach is nothing but the "benchmarking approach" mentioned by PCAOB in its standard. MAny companies are reaping the benefits of the benchmarking approach by concentrating on trying to achieve a strong ITGC environment.

Related Posts

Total Cost of Internal Controls
Evaluating Disclosure Controls & Procedures
Cost Benefit Analysis Before Implementing Controls
IT Governance for Sarbanes Oxley

Permalink Leave a comment

Comments:

No Comments for this post yet...

Official Websites

Categories


Archives

  • SAP MM Requirements for Setting up Plant
  • Lessons Learned Log for ASAP Implementation
  • SAP Solution Configuration Realization Phase
  • SAP MDM Master Data Import Manager Loading Data into SAP MDM
  • Compliance Calibrator SOD Conflicts Remediation Strategy
  • SAP Workload Analysis Monitor Tools ST03N
  • SAP BW Data Staging Basics Tutorial
  • How to Implement BW Infoobject Level Security
  • SAP BW Admnistrator Authorizations S_RS_ADMWB
  • BIW Reporting Auth Objects S_RS_COMP
  • SAP BW Security Authorization Objects for SAP BW
  • How to Create SAP Report Variants and Variables
  • more...

    • Search

    Google

    Web Big4Guy.com

    June 2008
    Mon Tue Wed Thu Fri Sat Sun
    <<  <   >  >>
                1
    2 3 4 5 6 7 8
    9 10 11 12 13 14 15
    16 17 18 19 20 21 22
    23 24 25 26 27 28 29
    30

    Misc

    Syndicate this blog XML

    What is RSS?