My WebLink
|
Help
|
About
|
Sign Out
Home
2010-01-AU Limited Scope Performance Audit of Department of Water Supply's Internal Controls for Cash Handling and Financial IT Systems
PublicDocuments
>
Legislative Auditor
>
Audit Reports
>
County Auditor Reports
>
2010-01-AU Limited Scope Performance Audit of Department of Water Supply's Internal Controls for Cash Handling and Financial IT Systems
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
7/19/2011 3:41:19 PM
Creation date
7/19/2011 1:34:39 PM
Metadata
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
70
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Sarbanes -Oxley <br />(SOX) <br />Segregation of Duties <br />Matrix <br />CHAPTER 2: INTERNAL CONTROL CRITERIA <br />"Recommendation... Depositing of Funds for Services: <br />Remote cash and cheque collection points should be <br />established where appropriate customer service benefits are <br />evident. Documented internal controls need to be established <br />with such collection points. The ultimate remittance or deposit <br />of such collection receipts should be documented and <br />systematically performed by the applicable officials..." <br />"A fundamental element of internal control is the segregation of <br />certain key duties. The basic idea underlying segregation of duties <br />is that no employee or group should be in a position both to <br />perpetrate and to conceal errors or fraud in the normal course of <br />their duties. In general, the principal incompatible duties to be <br />segregated include: <br />• Custody of assets. <br />• Authorization or approval of related transactions affecting <br />those assets. <br />• Recording or reporting of related transactions. <br />• Execution of the transaction or transaction activity." <br />"Separation of Duties for Access Control Enforcement in Workflow <br />Environments ", R.A. Botha and J.H.P. Eloff, IBM Systems Journal, <br />Volume 40, Issue 3, March 2001 <br />"Separation of duty, as a security principle, has as its primary <br />objective the prevention of fraud and errors. This objective is <br />achieved by disseminating the tasks and associated privileges for <br />a specific business process among multiple users. This principle is <br />demonstrated in the traditional example of separation of duty <br />found in the requirement of two signatures on a check." <br />9 <br />
The URL can be used to link to this page
Your browser does not support the video tag.