Presentación ELC
Presentación ELC
Presentación ELC
AUDIT
Contenido
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 4
SÓLO PARA USO INTERNO
Diferencias entre un ELC para grandes y
pequeñas compañias
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 5
SÓLO PARA USO INTERNO
¿Donde estamos parados?
o
nt
es
ie
on
s
n c es
im
ro
U
ci
n a rm
ie
pl
ra
m
Fi nfo
pe
N
Cu
I
I
D
Ambiente de Control F Áreas que cubre una
U auditoría de estados
N N
Evaluación de E financieros
C
Riesgos I G
O O
Actividades de Control C
N
E I
Información y S O
Comunicaciones
Monitore
o
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed].
SÓLO PARA USO INTERNO
Relación de los controles especificos y
generales de una compañia
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 7
SÓLO PARA USO INTERNO
Controles Directos y Controles Indirectos
♦ Ambiente de Control
♦ Evaluación de Riesgos
♦ Sistemas de Información relevantes para la emisión de
información financiera
♦ Monitoreo
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 9
SÓLO PARA USO INTERNO
Componentes de ELC / Ambiente de Control
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 10
SÓLO PARA USO INTERNO
Componentes de ELC / Administración del
Riesgo
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 11
SÓLO PARA USO INTERNO
Componentes de ELC / Sistemas de Información
relevantes para la emisión de información financiera y comunicación
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 12
SÓLO PARA USO INTERNO
Componentes de ELC / Monitoreo
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 13
SÓLO PARA USO INTERNO
Como probamos lo adecuado del diseño e
implementación de ELC
♦ Cuestionando si el control cumple la función para la
cual fue creado (Hay guías en KAM 4221)
♦ Verificando que el control este implementado
adecuadamente
♦ Mediante indagación y corroboración (ambos)
− Ejemplo 1: La existencia del código de conducta por si
solo no indica que el control sea bueno, tampoco si
existe evidencia de un documento firmado que diga
que el trabajador lo leyó y entendió el día que comenzó
a trabajar, sin embargo si hay inducción o prueba para
verificar su entendimiento, esto si aplicaría como buen
diseño e implementación
− Ejemplo 2: el organigrama no indica nada por si solo
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 14
SÓLO PARA USO INTERNO
Principales deficiencias frente al testeo de
ELC
♦ Entendimiento superficial de las características de cada
cliente al momento de establecer cuales son los ELC
existentes (Clientes pequeños, medianos o grandes)
♦ Testeo de ELC se basa en muy pocos elementos y se utiliza
en forma reiterativa (ej. “Existencia de actas de directorio,
son por cumplir o hay decisiones relevantes, ¿de que sirve
un organigrama?”)
♦ Testeo de ELC no se sustenta sobre la implementación
adecuada del control, sólo se efectúan indagaciones.
♦ Desconocimiento del impacto de ELC en la auditoría.
♦ ¿Los ELC relacionados con TI no son de responsabilidad de
los auditores financieros?
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 15
SÓLO PARA USO INTERNO
Consideraciones prácticas al testeo de ELC
♦ Estructura organizacional
− El directorio autoriza las decisiones estratégicas
significativas (todo tamaño de compañía)
− Hay jerarquías de aprobación de gastos por un monto
superior a M$XXX (todo tamaño de compañía)
− Existen descripciones de cargos que definen la
autoridad y responsabilidad, y son medidos
adecuadamente (Formal y periódicamente)
− Los cambios en las áreas claves de autoridad y
responsabilidad son comunicadas a la organización
− Feedback anual se obtiene de empleados para calificar
la satisfacción del personal a través de encuestas
confidenciales
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 17
SÓLO PARA USO INTERNO
Ejemplos de ELC testeables
♦ Estructura organizacional
− La administración revisa la adecuada dotación y
asegura el personal adecuado (ej: ¿el contador sabe?)
− La estructura organizacional facilita los flujos de
información en todas las direcciones.
♦ Asignación de autoridad y responsabilidad
− La asignación de autoridad y responsabilidad es
asignada a los empleados a través de un proceso
establecido y formal
− Se utiliza apropiada información para la determinación
de los niveles de autoridad y alcance de la
responsabilidad de los individuos.
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 18
SÓLO PARA USO INTERNO
Ejemplos de ELC testeables
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 19
SÓLO PARA USO INTERNO
Ejemplos de ELC testeables
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 20
SÓLO PARA USO INTERNO
Ejemplos de ELC testeables
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 21
SÓLO PARA USO INTERNO
Ejemplos de ELC testeables
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 22
SÓLO PARA USO INTERNO
Ejemplos de ELC testeables
Determinar el enfoque
de auditoría planeado
Tips:
Determinar
los objetivos • Lo que limita el uso de un enfoque bajo
controles, siempre será ELC e ITGC
de auditoría
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 24
SÓLO PARA USO INTERNO
Puntos de aprendizaje
© [year] [legal member firm name], a [jurisdiction] [legal structure] and a member firm of the KPMG network of independent member firms affiliated with KPMG
International, a Swiss cooperative. All rights reserved. Printed in [country in which the publication will be printed]. 25
SÓLO PARA USO INTERNO