PEMERIKSAAN AKUTANSI
DAMPAK TI TERHADAP AUDIT
YULAZRI M.AK., CA., CPA
FAK EKONOMI & BISNIS
VISI DAN MISI UNIVERSITAS ESA UNGGUL
Materi Sebelum UTS
PENGANTAR AUDIT
AUDIT PROSES
TANGGUNG JAWAB DAN TUJUAN AUDIT
BUKTI AUDIT
KERTAS KERJA PEMERIKSAAN
STANDAR AUDIT
LAPORAN AUDIT
Materi Setelah UTS
MATERIALITAS DAN AUDIT RISK
INTERNAL CONTROL
PENILAIAN IC DAN TEST IC
PERENCANAAN DAN AUDIT PROGRAM
KODE ETIK PROFESI
KEWAJIBAN HUKUM
previous
Field Reporting
Planning
work
new
Risk Reporting
Risk respond
Perencanaan
audit
Audit should be plan
Basic Computer Architecture
Central Processing Unit (CPU)
Main Memory
(RAM) (volatile memory)
Turn-off the computer and it forgets
Disk Drive
non-volatile (persistent) memory
Maintains data across shutdowns
Data Files
Temporary Files
Registry Entries
Unallocated Space
Swap Space
Log Files
Email
Computer Forensic
Requirements
l Hardware
• Familiarity with all internal and
external devices/components of a
computer
• Power connections
• Memory
TI DAN AKUNTANSI
• Teknologi informasi (TI) berfungsi untuk
meningkatkan efektifitas dan efisiensi serta
kualitas proses bisnis, termasuk di dalamnya
proses akuntansi.
Higher-quality
information is
available
TI DAN SISTEM PENGENDALIAN
Halaman
Assessing Risks of
Information Technologies
Risks to hardware and data
Reliance on Unauthorized
hardware and access
software
Systematic
vs.
Data loss random errors
RISIKO PENGGUNAAN TI
• Kerusakan sistematis vs random, pada saat proses
manual digantikan dengan TI, kerusakan random
karena human errors dapat diturunkan, tetapi
kerusakan sistematis justru bisa meningkat.
• Unauthorized access. Akses online terhadap data
elektronik berpotensi meningkatkan risiko akses tanpa
otorisasi.
• Loss of data. Data elektronik yang rata-rata disimpan
terpusat dalam data base, meningkatkan risiko
kerusakan atau hilangnya keseluruhan data.
• Need for IT experience. Penggunaan TI memerlukan
staf yang memahami dan mampu memanfaatkan
Halaman
keunggulan TI
PENGENDALIAN TI
• General controls (pengendalian umum).
Adalah sistem pengendalian untuk seluruh
aspek fungsi TI, mencakup: administrasi
TI, pemisahan fungsi TI, pengembangan
TI, pengamanan akses fisik dan online
terhadap hardware/software/data, backup
data, dan perencanaan kontinjensi untuk
situasi emerjensi.
Auditor harus mengevaluasi
pengendalian umum untuk keseluruhan
TI dalam organisasi.
Halaman
PENGENDALIAN TI
• Aplication controls (pengendalian aplikasi). Adalah
sistem pengendalian untuk program aplikasi yang
digunakan untuk memproses transaksi, seperti
pengendalian untuk sistem penjualan dan penerimaan
kas.
Halaman
Reduced Audit Trail
Visibility of
audit trail
Lack of
traditional Detection risk
authorization
Reduced
human
involvement
Need for IT Experience and
Separation of Duties
Reduced separation of duties
Application General
controls controls
Relationship Between General
and Application Controls
Control activities
Online Controls:
User ID control
Password control
Separate add-on
security software
Physical Controls:
Keypad entrances
Badge-entry systems
Security cameras
Security personnel
Backup and Contingency
Planning
Offsite storage of critical files is a key
element to a backup and contingency plan
Hardware Controls
Input Output
controls controls
Processing
controls
Aplication control
– Pengendalian Input
– Pengendalian Proses
– Pengendalian Output
Aplication control
• Input Control
– Otorisasi
– Konversi Data Input
• Verification Control
• Computer Editing: missing data check,
valid character check, limit
(reasonable) check, valid sign check,
valid code check, check digit)
– Koreksi Kesalahan
• Processing Control
– Control totals
– File identification labels
– Limit and reasonableness checks
– Before-and-after report
– Sequence test
– Process tracing data
• Output control: hasil benar dan
hanya orang yang berhak yang
memperoleh hasilnya
– Reconciliation of totals
– Comparioson to source document
– Visual scanning
Input Controls
Total of codes
Hash total from all batch
records
Total of records
Record count
in a batch
Processing Controls
Correct file,
Validation test database, or program?
Correct
Sequence test processing order?
Arithmetic Accuracy of
accuracy test processed data?
Data reasonableness Data exceeds
test preset amounts?
Completeness
Completeness test of record fields?
Output Controls
Audit though
MORE the computer
Parallel
Test data
simulation
Auditing Around and Through
the Computer
Test Data Approach
Control test
Contaminated results
master files
Test Data Approach
Control test
results
Auditor-predicted results
Auditor makes of key control procedures
comparisons based on an understanding
of internal control
Differences between
actual outcome and
predicted result
Parallel Simulation
Auditor Client
results results
Outsourced e-Commerce
IT systems
KEUNGGULAN TI
Pengendalian
Aplikasi
Penerimaan Kas
Pengendalian Pengendalian
Aplikasi Aplikasi
Penjualan Penggajian
Pengendalian
Aplikasi
Siklus Lainnya
Risiko Pengubahan
Master File Tanpa
Otorisasi Risiko Proses
PENGENDALIAN UMUM Tanpa Otorisasi
Halaman