Professional Documents
Culture Documents
Agenda
Audit Information System overview
Administration of AIS
Non-SAP Environment
Audit planning Work program - System audit - Business audit
Line items
Reporting software
Balances
Export interface
Data export
Account balances Line items
Report
Availability of AIS
First available with SAP R/3 Release 3.x Largely enhanced for use on top of SAP R/3 4.6C and R/3 Enterprise Enhancements available as part of mySAP solutions and as part of SarbanesOxley Act (SOA) package
Corporate Governance
SarbanesOxley Act
Software Certificate
DART
Audit Information System Data Retention Tool
Activity
Identify scope of the companys disclosure controls and procedures. Document business processes and process controls over all major activities within an entity (beyond solely processes impacting financial reporting). Assess internal control effectiveness. Identify and track resulting issues and remediation plans. Cascade the accountability for control evaluation and roll up the results (e.g., resulting in a dashboard confirming ability to sign certification).
SAP AG 2003 / Audit Information System, 7
Activity
Identify areas of scope relevant for evaluating the effectiveness of internal control over financial reporting. Document the design of significant controls. Perform evaluation of control design and effectiveness. Identify resulting control issues and monitor remediation. Document changes in processes and controls; surface any associated issues. Prepare internal control report. Attestation by external auditors
SAP AG 2003 / Audit Information System, 8
SAP principles
Inherent controls Configurable controls Reporting controls
implements checks
SAP applications
Management of Internal Controls Whistle Blower Audit Information System Business Consolidation Risk Management Management Cockpit Balanced Scorecard Business Planning and Simulation
SAP AG 2003 / Audit Information System, 9
Audit Environment
Audit
Documentation / Maintenance Step n Step 1 ... SAP standard roles
G/L accnts Customers Vendors Financial Instruments Data export Inventory Vendors Receivables Cash Personal expense Payables Inventory Customers ... Revenue Receivables Data export Revenue
SAP AG 2003 / Audit Information System, 10
Step 2
...
Step 3
Step 4
Step 5
...
Step 6
...
System audit
Business audit
Tax audit
Internal auditors External auditors Data security officers Tax auditors Audit-specific documentation and training
SAP AG 2003 / Audit Information System, 11
AIS Documentation
Information on audit steps
SAP Library
Selected chapters
IMG Documentation
Selected table areas
Internet Links
Selected Web addresses
Agenda
Audit Information System overview
Administration of AIS
Tables/repository
Table authorization Table recordings Access statistics Change documents ...
System Audit
Agenda
Audit Information System overview
Administration of AIS
Income statement
Sales revenue (*) Raw material consumed (*) Personnel expenses
Segment reporting (*) Internal activity allocation (*) Consolidated financial statement (*)
* = new as of Q4 / 2003
SAP AG 2003 / Audit Information System, 24
* = new as of Q4 / 2003
SAP AG 2003 / Audit Information System, 25
KNA1
KNB1
KNC1
Customer master data Top 10 reports Reconciliation Customers balances Customers documents Risks on receivables Cut-off check A/R Information System
Customer master data Top 10 reports Reconciliation Customers balances Customers documents Risks on receivables Cut-off check A/R Information System
Agenda
Audit Information System overview
Administration of AIS
Query
ABAP
DrillDrill-down reporting
Information systems
SAP AG 2003 / Audit Information System, 43
DART
List
SAP - DB
Dialog
ABAP
Drilldown
Advanced Business Application Programming
ABAP is the programming language used in R/3. Call SAP standard or customer-specific programs.
Extract
(flat file)
Program:
RFSSLD00
G/L Account balances Chart of Accts. INT G/L Account 1-999 Company code 0001 Fiscal year 2002
T-BUK T-GJAHR
T-BUK
Table of variables
List
SAP - DB
Dialog
Query
Drilldown
SAP Query The application SAP Query is used to create lists not already contained in the SAP standard. It has been designed for users with little or no knowledge of the SAP programming language ABAP.
SAP AG 2003 / Audit Information System, 47
Extract
(flat file)
List
SAP - DB
Dialog
DrillDrill-down Reporting
SAP drill-down reporting With drill-down reporting, SAP provides you with an interactive information system to let you evaluate the data collected in your application.
Drilldown
Extract
(flat file)
List
SAP - DB
Dialog
Information systems
Component-specific information tools: General ledger Accounts receivable Accounts payable Logistics Repository ...
SAP AG 2003 / Audit Information System, 49
Drilldown
Information System Information System Information System Information System Information System
Extract
(flat file)
List
SAP - DB
Dialog
DART
Drilldown
Data Retention Tool ( D A R T ): Data retention and evaluation of tax-relevant data. Data extraction and storage View query Export function (SAP-Audit-Format)
SAP AG 2003 / Audit Information System, 50
Extract
(flat file)
SAP DB
Download
Single audit
Data Export
Agenda
Audit Information System overview
Administration of AIS
7 Key Points about SAP Audit Information System 1. SAP Audit Information System (AIS) is the auditors toolbox in the SAP environment. 2. It provides a structured, easy-to-learn access to audit-relevant data in the SAP system. 3. AIS is being used by external auditors, internal auditors, tax auditors and data security officers. 4. There are comprehensive online controls for system audit, business audit, and tax audit. 5. AIS supports data export of master data, account balances, and documents to 3rd party audit and analysis tools. 6. AIS does only require few system resources.
AIS Benefits
AIS is the auditors toolbox within SAP. Online Controls and Data Export Easy to use functionality Comprehensive offering for System audit Business audit Tax audit