DATA MANAGEMENT FOR TOP-DOWN RISK BASED AUDIT APPROACH
First Claim
Patent Images
1. A method comprising:
- linking a first risk to an account group assertion in a data structure;
linking a second risk to a control objective in the data structure;
granting, by a computing device, access to the first risk through the account group assertion;
granting, by the computing device, access to the second risk through the control objective; and
performing, by the computing device, risk management using the accessed first risk and the second risk.
2 Assignments
0 Petitions
Accused Products
Abstract
Particular embodiments generally relate to providing risk management. In one embodiment, a first risk is linked to an account group assertion in a data structure. A second risk is linked to a control objective in the data structure. Access to the first risk is granted through the account group'"'"'s assertion. Access to the second risk is granted through the control objective. Risk management is then performed using the accessed first risk and second risk.
31 Citations
20 Claims
-
1. A method comprising:
-
linking a first risk to an account group assertion in a data structure; linking a second risk to a control objective in the data structure; granting, by a computing device, access to the first risk through the account group assertion; granting, by the computing device, access to the second risk through the control objective; and performing, by the computing device, risk management using the accessed first risk and the second risk. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
uploading balance sheet information for a plurality of account groups; determining significant account groups from the plurality of account groups using uploaded balance sheet information, the significant account groups determined based on a threshold; determining significant sub-processes from the significant account groups; accessing, by a computing device, a risk for a significant sub-process from a data structure, the risk accessed through a link to the significant sub-process; determining a control linked to the risk in the data structure; and evaluating the control for the risk. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A computer-readable storage medium containing instructions for controlling a computer system to perform a method, the method comprising:
-
linking a first risk to an account group assertion in a data structure; linking a second risk to a control objective in the data structure; granting access to the first risk through the account group assertion; granting access to the second risk through the control objective; and performing risk management using the accessed first risk and the second risk.
-
Specification