Tag Archives: workpaper

by ITauditSecurity | February 17, 2020 · 6:45 am

Mack-the-Auditor Gets Audited! Part 3

This is the third of 3 posts; this post describes how I audited the auditors and my perspective on the whole thing.

Read the first post (background) and the second post (audit results).

Filed under ACL, Audit, Case Files, Data Analytics, Scripting (ACL)

Tagged as acl, apology, audit the auditors, confidence, consulting firm, documentation, fun, impact, independence, integrity, log, reliance, reputation, request, results, scripts, test environment, test files, time, validation, workpaper

by ITauditSecurity | February 10, 2020 · 6:45 am

Mack-the-Auditor Gets Audited! Part 2

This is the second of 3 posts; this post describes the audit, some speed bumps, and the audit results.

Read the first post here, which provides the background on the audit and the audit’s scope.

Continue reading →

1 Comment

Filed under ACL, Audit, Case Files, Data Analytics, Scripting (ACL)

Tagged as alteryx, Audit, batman, CAE, catwoman, changes, data, disappear, documentation, error, false positive, feels like, Power BI, request, SAS, scripts, Security, source files, speed bump, tableau, test environment, trifecta, validate, visual studio, workpaper, youtube

by skyyleracl | March 12, 2011 · 10:06 am

How to Kill an Auditor

You can kill an auditor in 10 easy steps. If you’re a manager, it’s even easier. Here’s how:

1. Insist that all periods are followed by 2 spaces. Those days are long gone and so are typewriters. But some managers who review workpapers still insist on this. No kidding!

A little help for non-auditors: a workpaper describes 1) the control being tested, 2) the steps used to select samples and perform the test, 3) the evidence gathered and how it was analyzed, 4) the conclusion, and if the test failed, usually 5) a broad recommendation of what might be done to resolve it.

2. When reviewing workpapers electronically, question an obvious mistake instead of correcting it. For example, I numbered my test steps 1, 2, 3, 5. Just fix it and move on. Don’t waste your time and mine writing things like “is this number correct?” and then sending it back to me to fix it, especially when it’s the only correction in the workpaper. Just fix it! If multiple errors exist, say something to me or send it back and ask me to review all numbers and references. By pointing out a single error, you are wasting shareholder dollars. I sure hope you feel better now!

Continue reading →

10 Comments

Filed under Audit, How to..., Written by Skyyler

Tagged as audit report, auditor, kill, manager, skyyler, workpaper

by ITauditSecurity | July 18, 2010 · 1:22 pm

IIA Basics for Auditors

The Institute of Internal Auditors (IIA) has back-to-basics articles for new auditors (and like Dummies books, the topics can be a reference for the rest of us). Even security pros might want to read a few of these to better understand their auditors, or how those auditors should be doing their jobs.

The topics are as follows (no special order):

Continue reading →

4 Comments

Filed under Audit, How to...

Tagged as Audit, business, control, external, follow-up, iia, internal, interview, kickoff, meeting, procurement, recommendation, report, risk, sampling, success, surprise, workpaper

Tag Archives: workpaper

Mack-the-Auditor Gets Audited! Part 3

Mack-the-Auditor Gets Audited! Part 2

How to Kill an Auditor

IIA Basics for Auditors

Subscribe via email

Quick Links

Recent Posts

Top 7 Posts

Categories

Links

Blogroll

Tag Archives: workpaper

Mack-the-Auditor Gets Audited! Part 3

Share this:

Like this:

Mack-the-Auditor Gets Audited! Part 2

Share this:

Like this:

How to Kill an Auditor

Share this:

Like this:

IIA Basics for Auditors

Share this:

Like this:

Subscribe via email

Quick Links

Recent Posts

Top 7 Posts

Categories

Links

Blogroll