ACCT 427 - Chapter 11-13 IT Controls

0.0(0)
studied byStudied by 0 people
0.0(0)
full-widthCall Kai
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/8

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

9 Terms

1
New cards

Who created the COBIT framework?

Information Systems Audit and Control Association (ISACA)

2
New cards

Explain the COBIT framework.

  • Focuses on IT controls

  • IT general controls that electronic information is complete and accurate

  • Accounting and IT work together

3
New cards

Why do we need the COBIT framework in addition to the ERM and IC frameworks?

Because the COSO frameworks do not specifically address IT controls.

4
New cards

What is the difference between Financial and Operational IT controls?

the control actions are the same but the involved systems are different.

5
New cards

Explain the difference between IT Controls and Business Process Controls.

IT Controls - intended to protect ALL cycles

BP Controls - Intended to address the risks of a specific business process cycle. 

6
New cards

Explain the common user access structure in AIS.

  1. Tasks - the individual functions a user can do in an AIS

  2. Roles - a grouping of tasks to save time in granting access… assign a role to a user instead of 100s of tasks

  3. User ID - used to grant access to tasks via its assigned roles

7
New cards

What are the 3 types of authentication methods?

  1. something the user knows (passwords)

  2. something the user has (random PIN like DUO)

  3. something apart of the user (biometrics)

8
New cards

What is multifactor authentication?

when more than one user authentication type is used.

9
New cards

Explain Encryption.

“Keys” that are required to open digital files so that they are readable.