掃碼下載APP
及時接收考試資訊及
備考信息
ACCA P3考試:INFORMATION TECHNOLOGY
CONTROLS IN IT SYSTEMS
IT poses particular risks to organisations’ internal control and information systems. This can lead to their operations being severely disrupted and subsequently to lost sales, increased costs, incorrect decisions and reputational damage.
Risks include:
• Reliance on systems or programs that are inaccurately processing data, processing inaccurate data, reporting inaccurate, misleading results - or all three.
• Unauthorised access to data leading to destruction of data, improper changes to data, or inaccurate recording of transactions.
• Particular risks may arise where multiple users access a common database on which everyone in the organisation relies.
• The possibility of IT personnel gaining access privileges beyond those necessary to perform their assigned duties.
• Unauthorised changes to data in master files. For example, changing a selling price or credit limit.
• Unauthorised changes to systems or programs so that they no longer operate correctly and reliably.
• Failure to make necessary changes to systems or programs to keep them up-to-date and in line with legal and business requirements.
• Potential loss of data or inability to access data as required. This could prevent, for example, the processing of internet sales.
Controls in computer systems can be categorised as general controls and application controls.
GENERAL CONTROLS
These are policies and procedures that relate to the computer environment and which are therefore relevant to all applications. They support the effective functioning of application controls by helping to ensure the continued proper operation of information systems. General IT controls that maintain the integrity of information and security of data commonly include controls over the following:
• Data centre and network operations. A data centre is a central repository of data and it is important that controls there include back-up procedures, anti-virus software and firewalls to prevent hackers gaining access. Organisations should also have disaster recovery plans in place to minimise damage caused by events such as floods, fire and terrorist activities. Where IT is critical to an operation’s business these plans might include having a parallel system operating at a remote location that can be switched to immediately.
• System software acquisition, change and maintenance. System software refers to operating systems, such as Windows or Apple’s OS. These systems often undergo updates as problems and vulnerabilities are identified and it is important for updates to be implemented promptly.
• Access security. Physical access to file servers should be carefully controlled. This is where the company keeps it data and it is essential that this is safeguarded: data will usually endow companies with competitive advantage. Access to processing should also be restricted, typically through the use of log-on procedures and passwords.
• Application system acquisition, development, and maintenance. Applications systems are programs that carry out specific operations needed by the company – such as calculating wages and invoices and forecasting inventory usage. Just as much damage can be done by the incorrect operation of software as by inputting incorrect data. For example, think of the damage that could be done if sales analyses were incorrectly calculated and presented. Management could be led to withdraw products that are in fact very popular. All software amendments must be carefully specified and tested before implementation.
Copyright © 2000 - www.electedteal.com All Rights Reserved. 北京正保會計科技有限公司 版權所有
京B2-20200959 京ICP備20012371號-7 出版物經營許可證 京公網安備 11010802044457號
套餐D大額券
¥
去使用 主站蜘蛛池模板: 中文字幕第九页 | 精品国产1区 | 在线不卡一区二区 | 99精品视频免费在线观看 | 日产精品久久久一区二区 | 97精品欧美一区二区三区 | 精品美女一区二区 | 精品国产31久久久久久 | 精品国产日韩欧美 | 在线日本中文字幕 | 国产99久久久久久免费看农村 | 97国产在线观看 | 国产成人久久精品 | 99re8在线精品视频免费播放 | 粉嫩精品一区二区三区在线观看 | 久久久国产精品 | 一区二区三区四区视频在线 | 亚洲乱码一区二区三区三上悠亚 | 国产精品xxx在线观看www | 一区二区三区四区不卡 | www.av在| 俺去俺来也www色官网cms | 黄色大片网站视频 | 久久夜靖品 | 亚洲欧美日韩天堂 | 91网站免费 | 亚洲精品aⅴ中文字幕乱码 97视频免费在线 | 高清欧美精品xxxxx在线看 | 在线观看国产黄色 | 日韩不卡av| 一区二区久久久 | 国产a免费 | 三级av在线播放 | 日韩在线免费观看视频 | 久久久久夜夜夜精品国产 | 波多野结衣在线播放一区 | 国产精品第100页 | 欧洲精品一区 | 在线视频国产一区 | 青青久久久 | 欧美一级精品片在线看 |