b.conduct specific engagements (25 - 35 percent) (proficiency level)
實施具體審計業務 (25 - 35 %)(要求熟練掌握)
1. conduct assurance engagements.
實施保證業務:
a. fraud investigation.
舞弊調查。
1)determine appropriate parties to be involved with investiagion
確定調查的適當對象;
2)establish facts and extent of fraud (e.g., interviews, interrogations, and data analysis)
證實舞弊事實和程度(如,面談、訊問和數據分析);
3)report outcomes to apprpriate parties
向適當方面報告結果;
4)complete a process review to improve controls to prevent fraud and recommend changes
對過程進行檢查以改善預防舞弊的控制,並提出改進建議。
b. risk and control self-assessment
風險和控制自我評價。
1)facilitated approach
促進方法
(a)client-facilitated
審計業務客戶自我促進
(b) audit-facilitated
審計促進
2)questionnaire approach
調查問卷方法
3)self-certification approach
自我認證方法
c. audits of third parties.
第三方的審計。
d. quality audit engagements.
質量審計業務。
e. due diligence audit engagements.
盡職調查審計業務。
f.security audit engagements.
安全審計業務。
g. privacy audit engagements.
保密審計業務。
h. performance (key performance indicators) audit engagements
績效(主要績效指標)審計業務
i. operational (efficiency and effectiveness) audit engagements
經營(效率和效果)審計業務
j. financial audit engagements.
財務審計業務。
k. information technology (it) audit engagements.
信息技術 (it) 審計業務。
1)operating systems
作業系統
(a)mainframe
大型機
(b) workstations
工作站
(c) server
伺服器
2)application development
套用軟體開發
(a)application authentication
套用軟體認證
(b) systems development methodology
系統開發方法學
(c) change control
變動控制
(d) end user computing
終端用戶計算
3)data and network communications
數據和網路通訊
4)voice communications
語音通訊
5)system security (e.g., firewalls, access control)
系統安全(如,防火牆、訪問控制)
6)contingency planning
應急計畫
7)databases
資料庫
8)data center operations
數據中心運行
9)web infrastructure
web基礎設施
10) software licensing
軟體許可
11) electronic funds transfer (eft) and electronic data interchange (edi)
電子資金轉帳
12) e-commerce
電子商務
13) information protection (e.g., viruses, privacy)