...Accounting Information Systems (AIS). The objective of modeling AIS is multifaceted and can be to: visualize, understand, summarize, detail, analyze, design, develop, implement, operate, secure, control, or audit the AIS. UML is a powerful modeling language and technique for all of these modeling tasks and is more robust and semantically superior to the commonly used Structured Analysis (SA) modeling tools of flowcharts (FC), data flow diagrams (DFD), and entity-relationship diagrams (ERD). Dr. White suggests that using UML diagrams as a tool to document AIS is a viable alternative to the Structured Analysis’s diagrams of FC, DFD, and ERD. What follows in Section II is a brief comparison of the two alternative approaches to systems documentation: Structured Analysis (SA) and Object Orientation (OO). Section III presents the definition and description of the major structural and behavioral elements used in UML including classifiers, instances, relationships, collaborations, activities, interactions, and states. Section IV discusses the organization and presentation of UML documentation of AIS as a collection of diagrams and packages. Section V contains various UML diagrams of the business revenue cycle (system) as examples of how to use UML to document a business system. Section VI contains examples of UML models of two special systems of great importance to accountants: the General Ledger system with an AJE component, and the AIS Internal Control system. Appendix 1 contains...
Words: 9812 - Pages: 40
...Internal Control and Risk Evaluation Lola Knaff ACC 542 April 22, 2013 Anita Rodriguez Internal Control and Risk Evaluation The internal control and risk evaluation aspect of accounting is crucial to protect the business’ assets and resources. In addition, for publically traded companies it is mandatory for there to be internal control procedures. “Internal control describes the policies, plans, and procedures implemented by a firm to protect its assets” (Bagranoff, 2008, p. 240). The necessary procedures are in place to ensure the validity and efficiency of the data that the users input into the Accounting Information Software (AIS). The flowcharts reveal the pattern for the accounts receivable, accounts payable, inventory process, and payroll processes. Each process will generate many levels of risk factors that can be reduced by several internal control procedures. According to Hunton, Bryant, and Bagranoff (2004), the assessment of IT risks are by the managers and auditors to determine how to apply resources (p. 51). The cost-benefit analysis is crucial to ensure that the cost of the internal control to reduce the risk does not increase the monetary value of the control. The purpose of the internal control application is to create a smooth operating procedure that does not deter effectiveness and efficiency of the data. Along with the AIS internal controls, there are other controls that will assist in creating a trustworthy working environment...
Words: 1131 - Pages: 5
...several weeks implementing a new accounting information system (AIS) that will assist with the process of payroll, inventory, accounts receivable and payables along with the daily sales. The current AIS that have been implemented will address the systems integrity and the new system will help KFF to ensure that the data is accurate and reliable for the preparation of the financial statements for the organization. Now that the new accounting information system has been set up it is now time to perform an audit of KFF internal controls. In order to do this we will take a look at the different types of audits that maybe used for each process. Then recommend the audit that will most fit the needs of KFF as well as give an explanation of how the audit will be conducted. KFF will also be informed of events that might prevent the reliance on auditing through the computer. An audit for IT involves evaluating the computer’s role for achieving audits and control objectives. These audits look at the components for the AIS for the users, procedures, hardware, software, data communications and the database. According to Bagranoff, Simkin, and Norman (2008) there are four main types of IT audits and they are attestation, findings and recommendations, SAS # 70 and last but not least SAS # 94. The purpose of this audit is for Kudler Fine Foods to gain an understanding of the business functions as well as to evaluate the AIS system. The audit will be linked to the accounts, the size of...
Words: 1053 - Pages: 5
...Kudler Fine Foods relies on Accounting Information System (AIS) for its daily business operations. Due to the complexity of the business today, Kudler needs to understand the potential risks and how to mitigate them by applying internal controls to the AIS. This paper will discuss the risks and internal controls of Kudler’s AIS. The Risks to Kudler’s AIS Risk represents the possibility of a loss or harm to an organization (Raval & Fichadia, 2007, p.29). In developing effective AIS, risks should be analyzed and identified to protect the company’s assets and to promote operational efficiency. Kudler’s AIS uses four systems. They are Accounts Payable (AP), Accounts Receivable (AR), Inventory, and Payroll systems. These four systems have potential risks that may arise due to separation of duties conflict, unauthorized access, and human errors. At Kudler, the AP system is designed as an automated system. The potential risks to the system are the accuracy of the invoices’ approval and the segregation of duties conflict in adding or changing and approving vendors’ details. The sales process at Kudler involves payment by cash and credit. Even though the AR system is designed as an automated system, potential risk occurs when separation of duty conflicts exist in receiving and depositing the cash. The Inventory system at Kudler is also designed as an automated system. The potential risks are unauthorized modification of inventory level, separation...
Words: 1138 - Pages: 5
...the payroll process will be more efficient and effective. This paper will explain how the payroll processing cycle for ‘Mom and Pop’s Grocery Store’ integrates onto an enterprise-wide accounting information system. An enterprise-wide accounting information system “focuses on the business process of the organization as a whole” (Bagranoff, Simkin, & Stand, 2008, p. 7). Business process reengineering (BPR) is a total re-design of processes used by an organization that are no longer effective or efficient (Braganoff et al, 2008, p. 163). The ‘Mom and Pop’s Grocery Store’ will use BPR to update the old payroll process to the new enterprise-wide AIS system. The Accounting Information System (ASI) is a system that is put in place for a company to maintain its accounting system. The input devices commonly associated with AIS systems include: “standard personal computers or workstations running applications; scanning devices for standardized data entry; electronic communication devices for electronic data interchange (EDI) and e-commerce” (Business Glossary, p. 1, 2005, 2000, 1995, 1987). In addition, many financial systems come with Internet settings to allow computers to connect to the “World Wide Web.” Simple preparation is accomplished through computer systems from smallest to largest individual computers to smallest and largest company computers. However, conceptually, the underlying processing model is still the "double-entry" accounting system. The output...
Words: 1489 - Pages: 6
...CHAPTER 1 INTRODUCTION Accounting Information Systems is concerned with the way computerized information systems impact how accounting data is captured, processed, and communicated. This course book introduces you to the people, technology, procedures, and controls that are necessary to conduct internal and external e-business, with an emphasis on the internal controls over such systems. It also highlights the relationship between accounting and management information systems. Finally, accountants, information system professionals, lectures, students and the general public are recommended to get copies. CHAPTER 2 LITERATURE REVIEW Accounting Information Systems (AISs) combine the study and practice of accounting with the design, implementation, and monitoring of information systems. Such systems use modern information technology resources together with traditional accounting controls and methods to provide users the financial information necessary to manage their organizations. AIS TECHNOLOGY Input The input devices commonly associated with AIS include: standard personal computers or workstations running applications; scanning devices for standardized data entry; electronic communication devices for electronic data interchange (EDI) and e-commerce. In addition, many financial systems come "Web-enabled" to allow devices to connect to the World Wide Web. Process Basic processing is achieved through computer systems ranging from individual personal computers...
Words: 2206 - Pages: 9
...e-business, and internal control. ANS: F 2. In an assurance service the accountant will provide the original information used for decision making. ANS: F 3. Financial care for the elderly has been identified by the AICPA as a potential assurance service. ANS: T 4. Wireless technologies was identified as one of the ten most important 2006 technological challenges and opportunities facing CPAs. ANS: T 5. Knowledge of Microsoft Access was identified as one of the ten most important 2006 technological challenges and opportunities facing CPAs. ANS: F 6. Enterprise systems provide complete integration of an organization’s business events and information processing systems. ANS: T 7. An information system consists of an integrated set of computer-based and manual components established to provide information to users. ANS: T 8. Internal control is a process that provides complete assurance that the organization is meeting its objectives, such as efficiency and effectiveness of operations and reliable reporting. ANS: F 9. The Sarbanes-Oxley Act of 2002 has dramatically changed the daily work of financial accountants and auditors. ANS: T 10. According to the Sarbanes-Oxley Act of 2002, management must identify, document, and evaluate significant internal controls. ANS: T 11. According to the Sarbanes-Oxley Act of 2002, management must audit and report on auditors’ assertions about the organizations’ systems of internal controls...
Words: 3539 - Pages: 15
...resource planning (ERP). Before, with separate applications to manage different business functions, organizations had to develop complex interfaces for the systems to communicate with each other. In ERP, a system such as accounting information system is built as a module integrated into a suite of applications that can include manufacturing, supply chain, human resources. These modules are integrated together and are able to access the same data and execute complex business processes. With the ubiquity of ERP for businesses, the term “accounting information system” has become much less about pure accounting (financial or managerial) and more about tracking processes across all domains of business. [edit]Software architecture of a modern AIS A modern AIS typically follows a multitier architecture separating the presentation to the user, application processing and data management in distinct layers. The presentation layer manages how the information is displayed to and viewed by functional users of the system (through mobile devices, web browsers or client application). The entire system is backed by a centralized database that stores all of the data. This can include transactional data generated from the core business processes (purchasing, inventory, accounting) or...
Words: 2186 - Pages: 9
...sharing but also social partnership. This study attempts to analyze the nature of modern banking activities and performance of Mercantile Bank Limited. All through the internship program, close observation was made on different banking activities of Mercantile Bank Limited. Its performance was reviewed and analyzed through the annual reports, and internal records of the bank. I have tried my best to use this opportunity to enrich my knowledge on banking system. After observing thoroughly, I have prepared this report on the basis of my findings and observation relating to the topic. In this situation I was assigned to prepare report on “A study on the Accounting Information System at Mercantile Bank Limited in Bangladesh”. 1.2 Objective of study General objective: * The prime objective of this report is to analyze the “A study on the Accounting Information System At Mercantile Bank Limited in Bangladesh” Specific objectives: To evaluate the financial performance of Mercantile Bank Limited 1. To conceptualized AIS at Private Banking Sectors. 2. To know about the system mainly Private Banking Sectors follow in the operation of AIS. 3. To identify the computer based transactions in Private Banking Sectors 4. To classify the software at Private Bank use in their...
Words: 12349 - Pages: 50
...ASSIGHNMENT #2: AIS ATTACKS AND FAILURES: WHO TO BLAME Introduction In this paper, I am going to present about an accounting information system attacks and failures: who to blame. I am also going to discuss the following related topics in the following order: Firstly, I will take a position on whether a firm and its management team should or should not be held liable for losses sustained in a successful attack made on their AIS by outside source. Secondly, I will suggest who should pay for the losses, to whom, and state why. Thirdly, I will give my opinion regarding the role, if any; the federal government should have deciding and enforcing remedies and punishment. Finally, I will evaluate how AIS can contribute or not to contribute to the losses. A Firm and its Management Team Should Be Held Liable for the Losses According to the Control Objectives for Information and Related Technology (COBIT) framework and the Trust Services framework, achieving organization’s business and governance objective require adequate control over IT resources. IT processes must be properly managed and controlled in order to produce information that satisfies the seven criteria: effectiveness, efficiency, confidentiality, integrity, availability, compliance and reliability. These IT processes are grouped into the following four management activities or domains (Romney & Steinbart, 2012). 1. Plan and Organize (PO), 2. Acquire and Implement (AI), 3. Deliver and Support (DS)...
Words: 1552 - Pages: 7
...Distinguish data from information, discuss the characteristics of useful information, and explain how to determine the value of information. 1) Which of the following statements below shows the contrast between data and information? A) Data is the output of an AIS. B) Information is the primary output of an AIS. C) Data is more useful in decision making than information. D) Data and information are the same. Answer: B Objective: Learning Objective 1 Difficulty: Easy AACSB: Analytic 2) Information is best described as A) raw facts about transactions. B) data that has been organized and processed so that it is meaningful to the user. C) facts that are useful when processed in a timely manner. D) the same thing as data. Answer: B Objective: Learning Objective 1 Difficulty: Easy AACSB: Analytic 3) The value of information can best be determined by A) its usefulness to decision makers. B) its relevance to decision makers. C) the benefits associated with obtaining the information minus the cost of producing it. D) the extent to which it optimizes the value chain. Answer: C Objective: Learning Objective 1 Difficulty: Moderate AACSB: Analytic 4) An accounting information system (AIS) processes ________ to provide users with ________. A) data; information B) data; transactions C) information; data D) data; benefits Answer: A Objective: Learning Objective 1 Difficulty: Easy AACSB: Analytic 5) ________ information reduces uncertainty...
Words: 6955 - Pages: 28
...Chapter 1 - Accounting Information Systems: An Overview A system is a set of two or more interrelated components that interact to achieve a goal. Most systems are composed of smaller subsystems that support the larger system. For example, a college of business is a system composed of various departments, each of which is a subsystem. Moreover, the college itself is a subsystem of the university. Each subsystem is designed to achieve one or more organizational goals. Changes in subsystems cannot be made without considering the effect on other subsystems and on the system as a whole. Goal conflict occurs when a subsystem is inconsistent with the goals of another subsystem or with the system as a whole. Goal congruence occurs when a subsystem achieves its goals while contributing to the organization’s overall goal. Data are facts that are collected, recorded, stored, and processed by an information system. For example, the business needs to collect data about a sale (date, total amount), the resource sold (good or service, quantity sold, unit price), and the people who participated (customer, salesperson). Information is data that have been organized and processed to provide meaning and improve the decision-making process. However, there are limits to the amount of information the human mind can absorb and process. Information overload occurs when those limits are passed, resulting in a decline in decision-making quality and an increase in the cost of providing that information...
Words: 2080 - Pages: 9
...accounting information system (AIS). The processes that will be targeted are accounts receivable, payroll, inventory, and accounts payable. The accounting firm recommended the use of AIS. The type of software recommended would be industry specific software that can be purchased of the rack. This was decided because of the reduction in cost to acquire the program compared to a customized system. Also the training on and maintenance of the program will be included in the purchase price. The next step would be to determine what type of audit that would best fit the processes that are targeted. There are four types of audits. There is the attestation audit, which according to "KHSA Karren, Hendrix, Stagg, Allen" (2012), "are assurance engagements that require procedures to be applied to financial reporting processes and controls, but do not necessarily require an audit. Then there are findings and recommendations that are used when implementing a system. The next type of audit is the SAS 70 audit. According to "NBD Accountants Consultants" (2008), “It is an auditing standard put forth by the AICPA that is utilized by auditors for examining internal controls in service organizations. Service organizations are the host of companies that provide critical, third-party outsourcing services to other companies.” The final type of audit is the Statement on Auditing Standards (SAS) 94: The effect of information technology on the Auditor’s consideration of internal control in a Financial Statement...
Words: 1107 - Pages: 5
...different auditing functions internal auditing and external auditing. Internal auditors are a company’s own accounting employees that perform the audit. On the other hand, external auditors are from outside of the company and work for an independent CPA firm that performs an external audit. Internal auditors report to top management positions such as the Audit Committee of the Board of Directors. The internal auditing function involves five main evaluations. 1) Employee compliance with organizational policies and procedures, meaning that employees are not breaking or violating the company’s rules. 2) Effectiveness of operations, meaning that the company’s controls and production are operating as efficiently as possible. 3) Compliance with external laws and regulations, meaning that the company’s procedures and operations do not violate any governmental or business laws. 4) Reliability of financial reports, meaning that the financial reports are not biased or construed in a way that would cause misrepresentation. 5) Internal controls, this means that the company is protected (as well as possible) against fraud, theft, and corruption. Overall, the internal audit function checks the efficiency and integrity of almost the entire company. The internal audit benefits the company’s management and employees to check and ensure that company procedures are efficient and legal. The company would rather have a mistake or fraudulent information be caught by the internal auditor rather than by an...
Words: 1958 - Pages: 8
...major differences between preventive, detective and corrective control procedures. b)Why should timely reports be an essential element within a company’s Internal control system and what kind of control is it? a)Preventive control procedures are designed and implemented before an activity is performed to prevent some potential problem (e.g., the inaccurate handling of cash receipts) from occurring that relates to the activity. Detective control procedures are designed and implemented to provide feedback to management regarding whether or not operational efficiency and adherence to prescribed managerial policies have been achieved. In other words, preventive controls should be developed prior to operating activities taking place and detective controls should be developed to evaluate if operating efficiency and adherence to policies of management have occurred after operating activities have taken place. Corrective control procedures come into play based on the findings from the detective control procedures. That is, through detective controls, corrective control procedures should be developed to identify the cause of an organization’s problem, correct any difficulties or errors resulting from the problem, and modify the organization’s processing system so that future occurrences of the problem will hopefully be eliminated or at least minimized. b)From the standpoint of evaluating a company’s internal control system, a performance report is a type of report that provides...
Words: 981 - Pages: 4
