Related Posts
Additional Posts in Risk Assurance
New to Fishbowl?
Download the Fishbowl app to
unlock all discussions on Fishbowl.
unlock all discussions on Fishbowl.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Download the Fishbowl app to unlock all discussions on Fishbowl.
Copy and paste embed code on your site

Scan your QR code to download
Fishbowl app on your mobile

Management and then audit team reperforms.
Clients hate it because there isn’t any value add for them it is an audit attribute for testing
It is 100% a value add. Couldn’t tell you the amount of issues found when the export doesn’t match the actual system
There is also additional testing around the code that it is pulling the intended data that management typically points to ITGCs.
The ET can perform additional procedures in addition to that since management is relying on the testing process of the manage change it process and the IT teams do not test to that level of sufficiency. This does not need to be done by management.
Also if you do this report testing as part of substantive procedures you can dual purpose that work.
Note: this is a mixture of my firm guidance as well as my understanding of interpreting the guidance. I have found different firms are different and each person has their own preference