SlideShare una empresa de Scribd logo

Continuous Auditing, Monitoring & Data Analytics

C
CISA1567

ASUG presentation on data analytics, continuous auditing and continuous monitoring

Tecnología
1 de 68
Descargar para leer sin conexión
CONTINUOUS AUDITING, CONTINUOUS MONITORING, AND ] DATA ANALYTICS FOR AUDITING SAP R/3 MICHAEL BERARDI, MS-CIS, CISA ASUG INSTALLATION MEMBER MEMBER SINCE 2001 [ ANUP MAHESHWARI ASUG ASSOCIATE MEMBER MEMBER SINCE: 2008 [ SHERRYANNE MEYER ASUG INSTALLATION MEMBER [ AJAY VONKAREY MEMBER SINCE: 2000 ASUG ASSOCIATE MEMBER MEMBER SINCE: 1996
[ Michael Berardi Real Experience. Real Advantage. 2
[ SAP R/3 ENVIRONMENT AT ENERGIZER HOLDINGS INC.  Eveready Battery Company  Energizer and Eveready Batteries  SWS Schick  Playtex Products  SAP R/3 v. 4.7  Five instances of SAP R/3  USA – two instances  Sales (HP & PC)  Manufacturing (HP)  Europe  Sales (HP & PC)  Manufacturing (PC)  Human Resources/Payroll Real Experience. Real Advantage. 3
[ FRAUD OPPORTUNITY TRIANGLE PRESSURE RATIONALIZATION Real Experience. Real Advantage. 4
[ The only limits on what can be accomplished are the limits of your imagination, creativity and access to the data LIMITS OF DATA ANALYSIS, CONTINUOUS AUDITING AND MONITORING Real Experience. Real Advantage. 5
[ TERMS DEFINED DATA Continuous Continuous CAATS ANALYSIS Auditing Monitoring Real Experience. Real Advantage.
[ TOOLS SAP R/3 (SE16, SE17, SAP Queries) IDEA • Benford‟s Law toolkit ACL - http://www.acl.com • Desktop • Network version has evolved to Audit Exchange • Webinars – www.acl.com/findmoney Microsoft Access and Excel Real Experience. Real Advantage.
[ Data Analysis Tools Outside SAP R/3  ACL  Direct Link for SAP R/3  ACL for the desktop  Audit Exchange  User Forums  http://www.acl.com  Idea (http://www.audimation.com)  Pre-built analysis for fraud - http://www.audimation.com/datas.cfm  Manufacturing applications http://www.audimation.com/applications/Manufacturing_Applications .pdf  Microsoft (Ms) Access  Ms Office  Approva Real Experience. Real Advantage.
[ Approva BizRights Collaboration Across Business Users, IT and Audit Finance Business IT Managers Internal & External Managers Managers Auditors Pressure & Audit Costs Increasing Regulatory Process Controls: Process Configuration, Transactions, Master Data, … Multiple Controls Procure-to-Pay Order-to-Cash Financial Close Payroll Security Controls: Segregation of Duties, Sensitive Access… System Controls: Password Policies, Transport Policies… People Legacy Other SAP Oracle Soft Hyperion Apps Apps Multiple Applications Real Experience. Real Advantage.
[ LEARNING POINTS Why apply data analysis with SAP R/3? Understanding the benefits of data analysis, monitoring and continuous auditing A cookbook approach to data analytics Energizer Holdings success with continuous monitoring Pre-written continuous monitoring and auditing tools Real Experience. Real Advantage. 10
WHY APPLY DATA ANALYSIS [ Real Experience. Real Advantage.
[ BENEFITS OF DATA ANALYSIS R/3 is data rich, report opportunistic Testing the entire populations versus samples Data analysis increases effectiveness and efficiency Effective for working remotely or on-site Easier to share information electronically than via hardcopy reports Real Experience. Real Advantage.
[ BENEFITS OF DATA ANALYSIS  Benford‟s law – who can tell me what this is? Real Experience. Real Advantage.
[ RETURN ON INVESTMENT • Payroll • SSN tests (invalid, duplicate, dead people) • Setting criteria for percent change from run to run Continuous • Accounts Payable Monitoring • Duplicate Payments • Unclaimed credits • Systems such as Approva or those you build yourself can identify unusual transactions that might avoid a fraudulent payment • Look for a series of split transactions, avoiding the Continuous dollar cutoff for either no receipt or no approval Auditing required Real Experience. Real Advantage. 14
[ PAYROLL Ghost Expense Reported reimbursement Employees overtime • AP vendor bill during slow • Invalid SSN and employee • No benefits reimbursemnt period Segregation or unusual through • Authorized of Duties items payroll check overtime? (SOD) • Dup Dir for expense • Rounding up Deposit Info hours? Real Experience. Real Advantage. 15
[ ACCOUNTS PAYABLE Duplicate payments & vendor pre-payments Procurement Invoice to Site draft to Duplicate card to invoice off-invoice vendor invoice Real Experience. Real Advantage.
[ ACCOUNTS PAYABLE (CONT.) LOOSE INVOICES (NO PO) Fictitious vendors Employee vendor accounts Duplicate freight charges Missed earned vendor discounts Real Experience. Real Advantage. 17
[ Revenue Leakage • Unlimited No. copies per Co. • No Expiration Evaluation Software • Outstanding copies not disabled upon purchase • Trends –always same vendor(s)? Short Paid invoices • Excessive rebates? Unauthorized discounts or credit notes? Price overrides Real Experience. Real Advantage. 18
[ BEST PRACTICES Follow the SDLC process in the selection and Include I.T. in the implementation process of a data analytics tool Follow the SDLC Allocate enough process in the storage space on creation of new the SAP server queries, so as not for what the to impact the selected tool production produces system(s) Real Experience. Real Advantage. 19
[ LEARNING POINTS Real Experience. Real Advantage.
[ A DATA ANALYSIS APPROACH – DATA COOKBOOK Don‟t re-create the wheel every time you develop a new report Maintain a list of the tables and procedures followed Cookbook a catalogue of Recipes Recipes may reference existing R/3 reports or table sources and procedures to produce reports Sources of information on tables and the location of data exists both within R/3 and through internet resources Real Experience. Real Advantage.
[ Using SharePoint to organize and store data analysis, continuous auditing and continuous monitoring „recipes‟ or procedures SHAREPOINT TOOL Real Experience. Real Advantage. 22
[ AUDIT SITE WITH LINK TO COOKBOOK Real Experience. Real Advantage. 23
[ SHAREPOINT SITE USED FOR RECIPES Real Experience. Real Advantage. 24
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ LEARNING POINTS Real Experience. Real Advantage.
[ SAP R/3 Tables for testing  According to ACL there are over 20,000 tables in SAP R/3  The following are the top 20 Tables:  BKPF - Financial Documents Header  BSEG - Financial Document Items  EKKO - Purchasing Document Header  EKPO - Purchasing Document Item  BSAD - Cleared Customer Invoices (paid)  BSAK - Cleared Vendor Invoices (paid) Real Experience. Real Advantage.
[ SAP R/3 Tables for testing  BSIS - General Ledger Accounts  KNA1 - Customer Master (General Data)  KNKK - Customer Master (Credit Data)  KNVV - Customer Master (Sales Data)  LFA1, LFB1, LFM1 - Vendor Master  MARC - Material Master  VBAK - Customer Orders - Header  VBAP - Customer Orders - Items  VBRK - Customer Invoices - Header  VBRP - Customer Invoices - Items Real Experience. Real Advantage.
[ SAP R/3 Tables for testing  DD02T - Table Titles  TSTCT - Transaction Titles  Create your own list of tables, transactions and reports you find useful  Join ASUG Internal Controls SIG discussion groups to grow your knowledge Real Experience. Real Advantage.
[ Good Information Sources  Google – http://www.google.com  SAPGenie - http://www.sapgenie.com  SAPGenie Table Diagrams  http://www.sapgenie.com/abap/tables.htm#Finance%20Tables  SAP Help on the Web - http://help.sap.com/  SAP R/3 Application Help  http://help.sap.com/saphelp_470/helpdata/EN/e1/8e51341a06084 de10000009b38f83b/frameset.htm Real Experience. Real Advantage.
[ Good Information Sources  ISACA  http://www.isaca.org and select downloads for SAP ICQ & Audit Programs  ISACA Bookstore for guides such as “Security, Audit and Control Features SAP R/3 A Technical and Risk Management Reference Guide” Real Experience. Real Advantage.
[ LEARNING POINTS Real Experience. Real Advantage.
[ SAP R/3 transactions to facilitate data analysis  Transactional access required  Display only access  Data Dictionary (SE11)  Ability to view tables (SE16, SE17) Demonstration of Transaction Code SE16  Using R/3 transactions to locate table data Demonstration of using Help - Technical Settings Real Experience. Real Advantage.
[ SE11 – DATA DICTIONARY Real Experience. Real Advantage. 45
[ Transaction SE11 to display data dictionary information Real Experience. Real Advantage.
[ Real Experience. Real Advantage.
[ SE16 – EXTRACTING FROM TABLE FIELDS Real Experience. Real Advantage. 48
[ Transaction Code SE16 TCODE: SE16 Real Experience. Real Advantage.
[ Transaction Code SE16 Real Experience. Real Advantage.
[ Transaction Code SE16 Real Experience. Real Advantage.
[ Transaction Code SE16 Real Experience. Real Advantage.
[ Transaction Code SE16 Real Experience. Real Advantage.
[ HOW DO I FIND THE TABLE AND FIELD IN WHICH DATA RESIDES? Real Experience. Real Advantage. 54
[ When working with the users.... Click on the paper in the bottom left corner gives critical information such as Tcode Real Experience. Real Advantage.
[ So how do I find the source of information? Real Experience. Real Advantage.
[ So how do I find the source of information? Real Experience. Real Advantage.
[ So how do I find the source of information? Real Experience. Real Advantage.
To save to a file on [ your local hard drive follow this menu tree Real Experience. Real Advantage.
[ LEARNING POINTS Real Experience. Real Advantage.
[ SAP Queries – Tcode SQ01 Real Experience. Real Advantage. 61
[ Key Learning Points!  Grow your knowledge of SAP R/3  Discussion groups  ASUG chapter meetings  Locate training  Find good sources of SAP R/3 information related to internal controls  Start a cheat sheet of transactions, tables, programs and reports  Start your own library of data extraction and analysis methods and reference them in the applicable internal controls test plans Real Experience. Real Advantage.
[ Questions or Comments? THANKS, MICHAEL BERARDI MICHAELA.BERARDI@ENERGIZER.COM Real Experience. Real Advantage. 63
[  Thank you for participating. Please remember to complete and return your evaluation form following this session. For ongoing education on this area of focus, visit the Year-Round Community page at www.asug.com/yrc ] [ SESSION CODE: 4506 – Data Analysis, Continuous Auditing and Monitoring Real Experience. Real Advantage. 64
[ IDEA by AUDIMATION Real Experience. Real Advantage. 65
[ Real Experience. Real Advantage. 66
[ Real Experience. Real Advantage. 67
[ http://www.slideshare.net/acc_shan/sap-hr- presentation-08052002-presentation Real Experience. Real Advantage. 68

Recomendados

The Future of Internal Audit through data analytics
The Future of Internal Audit through data analyticsThe Future of Internal Audit through data analytics
The Future of Internal Audit through data analyticsGrant Thornton LLP
 
Integrating Data Analytics into a Risk-Based Audit Plan
Integrating Data Analytics into a Risk-Based Audit PlanIntegrating Data Analytics into a Risk-Based Audit Plan
Integrating Data Analytics into a Risk-Based Audit PlanCaseWare IDEA
 
Internal Audit with Data Analytics
Internal Audit with Data AnalyticsInternal Audit with Data Analytics
Internal Audit with Data AnalyticsMitesh Katira
 
Data analytics 2 analytics in the audit slides
Data analytics 2 analytics in the audit slides Data analytics 2 analytics in the audit slides
Data analytics 2 analytics in the audit slides Jim Kaplan CIA CFE
 
Continuous Auditing
Continuous AuditingContinuous Auditing
Continuous Auditingmcoello
 
Effective Framework for Continuous Auditing
Effective Framework for Continuous AuditingEffective Framework for Continuous Auditing
Effective Framework for Continuous AuditingCaseWare IDEA
 
Analytics for Audit
Analytics for AuditAnalytics for Audit
Analytics for Auditmcoello
 
Audit Report Model and Sample
Audit Report Model and SampleAudit Report Model and Sample
Audit Report Model and SampleFlevy.com Best Practices
 

Recomendados

The Future of Internal Audit through data analytics
The Future of Internal Audit through data analyticsThe Future of Internal Audit through data analytics
The Future of Internal Audit through data analyticsGrant Thornton LLP
 
Integrating Data Analytics into a Risk-Based Audit Plan
Integrating Data Analytics into a Risk-Based Audit PlanIntegrating Data Analytics into a Risk-Based Audit Plan
Integrating Data Analytics into a Risk-Based Audit PlanCaseWare IDEA
 
Internal Audit with Data Analytics
Internal Audit with Data AnalyticsInternal Audit with Data Analytics
Internal Audit with Data AnalyticsMitesh Katira
 
Data analytics 2 analytics in the audit slides
Data analytics 2 analytics in the audit slides Data analytics 2 analytics in the audit slides
Data analytics 2 analytics in the audit slides Jim Kaplan CIA CFE
 
Continuous Auditing
Continuous AuditingContinuous Auditing
Continuous Auditingmcoello
 
Effective Framework for Continuous Auditing
Effective Framework for Continuous AuditingEffective Framework for Continuous Auditing
Effective Framework for Continuous AuditingCaseWare IDEA
 
Analytics for Audit
Analytics for AuditAnalytics for Audit
Analytics for Auditmcoello
 
Audit Report Model and Sample
Audit Report Model and SampleAudit Report Model and Sample
Audit Report Model and SampleFlevy.com Best Practices
 
Internal Audit COSO Framework
Internal Audit COSO FrameworkInternal Audit COSO Framework
Internal Audit COSO FrameworkJesús Gándara
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditorsminkhollow
 
Computer Assisted Audit Techniques (CAATS) - IS AUDIT
Computer Assisted Audit Techniques (CAATS) - IS AUDITComputer Assisted Audit Techniques (CAATS) - IS AUDIT
Computer Assisted Audit Techniques (CAATS) - IS AUDITShahzeb Pirzada
 
Fraud Management Solutions
Fraud Management SolutionsFraud Management Solutions
Fraud Management SolutionsSAS Institute India Pvt. Ltd
 
Building continuous auditing capabilities
Building continuous auditing capabilitiesBuilding continuous auditing capabilities
Building continuous auditing capabilitiesWafaa N. AbuSadah
 
Practical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditPractical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditManoj Agarwal
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & complianceHR Globe Consulting
 
ACFE Presentation on Analytics for Fraud Detection and Mitigation
ACFE Presentation on Analytics for Fraud Detection and MitigationACFE Presentation on Analytics for Fraud Detection and Mitigation
ACFE Presentation on Analytics for Fraud Detection and MitigationScott Mongeau
 
IT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubIT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubKaushal Trivedi
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit MethodologyManoj Agarwal
 
Auditing application controls
Auditing application controlsAuditing application controls
Auditing application controlsCenapSerdarolu
 
Chapter 3
Chapter 3Chapter 3
Chapter 3EasyStudy3
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesManoj Agarwal
 
6 benefits of internal auditing
6 benefits of internal auditing6 benefits of internal auditing
6 benefits of internal auditingSALIH AHMED ISLAM
 
IT General Controls
IT General ControlsIT General Controls
IT General ControlsCicero Ray Rufino
 
Chapter 11, Tests of Controls
Chapter 11, Tests of ControlsChapter 11, Tests of Controls
Chapter 11, Tests of ControlsSazzad Hossain, ITP, MBA, CSCA™
 
Audit ratings guide
Audit ratings guideAudit ratings guide
Audit ratings guideCenapSerdarolu
 
Internal audit report writing.pdf
Internal audit report writing.pdfInternal audit report writing.pdf
Internal audit report writing.pdfkavyashree k
 
Information System Audit and Control
Information System Audit and ControlInformation System Audit and Control
Information System Audit and ControlAsad Raza
 
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...Genpact Ltd
 
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARSTECSI FEA USP
 
Financial Audit Leadership and Management
Financial Audit Leadership and ManagementFinancial Audit Leadership and Management
Financial Audit Leadership and ManagementRoss Hilton
 

Más contenido relacionado

La actualidad más candente

Internal Audit COSO Framework
Internal Audit COSO FrameworkInternal Audit COSO Framework
Internal Audit COSO FrameworkJesús Gándara
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditorsminkhollow
 
Computer Assisted Audit Techniques (CAATS) - IS AUDIT
Computer Assisted Audit Techniques (CAATS) - IS AUDITComputer Assisted Audit Techniques (CAATS) - IS AUDIT
Computer Assisted Audit Techniques (CAATS) - IS AUDITShahzeb Pirzada
 
Building continuous auditing capabilities
Building continuous auditing capabilitiesBuilding continuous auditing capabilities
Building continuous auditing capabilitiesWafaa N. AbuSadah
 
Practical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditPractical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditManoj Agarwal
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & complianceHR Globe Consulting
 
ACFE Presentation on Analytics for Fraud Detection and Mitigation
ACFE Presentation on Analytics for Fraud Detection and MitigationACFE Presentation on Analytics for Fraud Detection and Mitigation
ACFE Presentation on Analytics for Fraud Detection and MitigationScott Mongeau
 
IT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubIT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubKaushal Trivedi
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit MethodologyManoj Agarwal
 
Auditing application controls
Auditing application controlsAuditing application controls
Auditing application controlsCenapSerdarolu
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesManoj Agarwal
 
6 benefits of internal auditing
6 benefits of internal auditing6 benefits of internal auditing
6 benefits of internal auditingSALIH AHMED ISLAM
 
Internal audit report writing.pdf
Internal audit report writing.pdfInternal audit report writing.pdf
Internal audit report writing.pdfkavyashree k
 
Information System Audit and Control
Information System Audit and ControlInformation System Audit and Control
Information System Audit and ControlAsad Raza
 
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...Genpact Ltd
 

La actualidad más candente (20)

Internal Audit COSO Framework
Internal Audit COSO FrameworkInternal Audit COSO Framework
Internal Audit COSO Framework
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditors
 
Computer Assisted Audit Techniques (CAATS) - IS AUDIT
Computer Assisted Audit Techniques (CAATS) - IS AUDITComputer Assisted Audit Techniques (CAATS) - IS AUDIT
Computer Assisted Audit Techniques (CAATS) - IS AUDIT
 
Fraud Management Solutions
Fraud Management SolutionsFraud Management Solutions
Fraud Management Solutions
 
Building continuous auditing capabilities
Building continuous auditing capabilitiesBuilding continuous auditing capabilities
Building continuous auditing capabilities
 
Practical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal AuditPractical approach to Risk Based Internal Audit
Practical approach to Risk Based Internal Audit
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & compliance
 
ACFE Presentation on Analytics for Fraud Detection and Mitigation
ACFE Presentation on Analytics for Fraud Detection and MitigationACFE Presentation on Analytics for Fraud Detection and Mitigation
ACFE Presentation on Analytics for Fraud Detection and Mitigation
 
IT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubIT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit Club
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit Methodology
 
Auditing application controls
Auditing application controlsAuditing application controls
Auditing application controls
 
Chapter 3
Chapter 3Chapter 3
Chapter 3
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling Techniques
 
6 benefits of internal auditing
6 benefits of internal auditing6 benefits of internal auditing
6 benefits of internal auditing
 
IT General Controls
IT General ControlsIT General Controls
IT General Controls
 
Chapter 11, Tests of Controls
Chapter 11, Tests of ControlsChapter 11, Tests of Controls
Chapter 11, Tests of Controls
 
Audit ratings guide
Audit ratings guideAudit ratings guide
Audit ratings guide
 
Internal audit report writing.pdf
Internal audit report writing.pdfInternal audit report writing.pdf
Internal audit report writing.pdf
 
Information System Audit and Control
Information System Audit and ControlInformation System Audit and Control
Information System Audit and Control
 
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
Continuous Transaction Monitoring Detect and analyze anomalous transactions t...
 

Destacado

Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARSTECSI FEA USP
 
Financial Audit Leadership and Management
Financial Audit Leadership and ManagementFinancial Audit Leadership and Management
Financial Audit Leadership and ManagementRoss Hilton
 
Erp formanufacturingindustry
Erp formanufacturingindustryErp formanufacturingindustry
Erp formanufacturingindustryNeeraj Thakur
 
The Coming Age of Continuous Auditing
The Coming Age of Continuous AuditingThe Coming Age of Continuous Auditing
The Coming Age of Continuous Auditingcarlabrut
 
Audit: Breaking Down Barriers to Increase the Use of Data Analytics
Audit: Breaking Down Barriers to Increase the Use of Data AnalyticsAudit: Breaking Down Barriers to Increase the Use of Data Analytics
Audit: Breaking Down Barriers to Increase the Use of Data AnalyticsCaseWare IDEA
 
Hospital Analytics Solutions in the Cloud
Hospital Analytics Solutions in the CloudHospital Analytics Solutions in the Cloud
Hospital Analytics Solutions in the CloudNitai Partners Inc
 
ERP & NetSuite for B Corps
ERP & NetSuite for B CorpsERP & NetSuite for B Corps
ERP & NetSuite for B Corpsnetsuiteorg
 
How Big Data and Predictive Analytics are Transforming the World of Accountin...
How Big Data and Predictive Analytics are Transforming the World of Accountin...How Big Data and Predictive Analytics are Transforming the World of Accountin...
How Big Data and Predictive Analytics are Transforming the World of Accountin...Swenson Advisors, LLP
 
Data mining and Forensic Audit
Data mining and Forensic AuditData mining and Forensic Audit
Data mining and Forensic AuditDhruv Seth
 

Destacado (11)

Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
Federal Audit in Relation to Continuous Audit - 12th CONTECSI 34th WCARS
 
Financial Audit Leadership and Management
Financial Audit Leadership and ManagementFinancial Audit Leadership and Management
Financial Audit Leadership and Management
 
Erp formanufacturingindustry
Erp formanufacturingindustryErp formanufacturingindustry
Erp formanufacturingindustry
 
The Coming Age of Continuous Auditing
The Coming Age of Continuous AuditingThe Coming Age of Continuous Auditing
The Coming Age of Continuous Auditing
 
Audit: Breaking Down Barriers to Increase the Use of Data Analytics
Audit: Breaking Down Barriers to Increase the Use of Data AnalyticsAudit: Breaking Down Barriers to Increase the Use of Data Analytics
Audit: Breaking Down Barriers to Increase the Use of Data Analytics
 
Hospital Analytics Solutions in the Cloud
Hospital Analytics Solutions in the CloudHospital Analytics Solutions in the Cloud
Hospital Analytics Solutions in the Cloud
 
ERP & NetSuite for B Corps
ERP & NetSuite for B CorpsERP & NetSuite for B Corps
ERP & NetSuite for B Corps
 
NetSuite for the Software Industry
NetSuite for the Software IndustryNetSuite for the Software Industry
NetSuite for the Software Industry
 
How Big Data and Predictive Analytics are Transforming the World of Accountin...
How Big Data and Predictive Analytics are Transforming the World of Accountin...How Big Data and Predictive Analytics are Transforming the World of Accountin...
How Big Data and Predictive Analytics are Transforming the World of Accountin...
 
Auditing
AuditingAuditing
Auditing
 
Data mining and Forensic Audit
Data mining and Forensic AuditData mining and Forensic Audit
Data mining and Forensic Audit
 

Similar a Continuous Auditing, Monitoring & Data Analytics

Sap Solution Manager Business Process Monitoring Of A Sap Crm Solution
Sap Solution Manager Business Process Monitoring Of A Sap Crm SolutionSap Solution Manager Business Process Monitoring Of A Sap Crm Solution
Sap Solution Manager Business Process Monitoring Of A Sap Crm SolutionRobert Max
 
Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...
Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...
Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...Joe Oringel
 
Effective Product Development Using Agile Methods
Effective Product Development Using Agile MethodsEffective Product Development Using Agile Methods
Effective Product Development Using Agile MethodsNaresh Jain
 
Gregs BI Presentation
Gregs BI PresentationGregs BI Presentation
Gregs BI Presentationflyjock1
 
Big Data Needs Big Analytics
Big Data Needs Big AnalyticsBig Data Needs Big Analytics
Big Data Needs Big AnalyticsDeepak Ramanathan
 
Automating user provisioning with SAP NW BPM
Automating user provisioning with SAP NW BPMAutomating user provisioning with SAP NW BPM
Automating user provisioning with SAP NW BPMBalakrishnan Bala B
 
Golden Rules [Best Practices] to tame the MDM/CDI Beast
Golden Rules [Best Practices] to tame the MDM/CDI BeastGolden Rules [Best Practices] to tame the MDM/CDI Beast
Golden Rules [Best Practices] to tame the MDM/CDI BeastRhapsody Technologies, Inc.
 
Real User Experience Insight
Real User Experience InsightReal User Experience Insight
Real User Experience Insightruiruitang
 
Real User Experience Insight
Real User Experience InsightReal User Experience Insight
Real User Experience Insightruiruitang
 
Real User Experience Insight
Real User Experience InsightReal User Experience Insight
Real User Experience Insightruiruitang
 
Startup Metrics for Pirates (Startonomics Beijing, June 2009)
Startup Metrics for Pirates (Startonomics Beijing, June 2009)Startup Metrics for Pirates (Startonomics Beijing, June 2009)
Startup Metrics for Pirates (Startonomics Beijing, June 2009)Geeks On A Plane
 
XsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAPXsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAPGourav Ladha
 
Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...
Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...
Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...CA Technologies
 
Rutgers Research Center
Rutgers Research CenterRutgers Research Center
Rutgers Research Centercarlabrut
 
Role Discovery and RBAC Design: A Case Study with IBM Role and Policy Modeler
Role Discovery and RBAC Design: A Case Study with IBM Role and Policy ModelerRole Discovery and RBAC Design: A Case Study with IBM Role and Policy Modeler
Role Discovery and RBAC Design: A Case Study with IBM Role and Policy ModelerProlifics
 
Application Acceleration: Faster Performance for End Users
Application Acceleration: Faster Performance for End Users Application Acceleration: Faster Performance for End Users
Application Acceleration: Faster Performance for End Users Eric Kavanagh
 

Similar a Continuous Auditing, Monitoring & Data Analytics (20)

Sap Solution Manager Business Process Monitoring Of A Sap Crm Solution
Sap Solution Manager Business Process Monitoring Of A Sap Crm SolutionSap Solution Manager Business Process Monitoring Of A Sap Crm Solution
Sap Solution Manager Business Process Monitoring Of A Sap Crm Solution
 
Presentacion Cognos Controller
Presentacion Cognos ControllerPresentacion Cognos Controller
Presentacion Cognos Controller
 
SAP... Simple!
SAP... Simple!SAP... Simple!
SAP... Simple!
 
Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...
Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...
Rhd + Visual Risk Iq Presentation On Continuous Auditing District Conferenc...
 
Slideshare
SlideshareSlideshare
Slideshare
 
Effective Product Development Using Agile Methods
Effective Product Development Using Agile MethodsEffective Product Development Using Agile Methods
Effective Product Development Using Agile Methods
 
Gregs BI Presentation
Gregs BI PresentationGregs BI Presentation
Gregs BI Presentation
 
Big Data Needs Big Analytics
Big Data Needs Big AnalyticsBig Data Needs Big Analytics
Big Data Needs Big Analytics
 
Automating user provisioning with SAP NW BPM
Automating user provisioning with SAP NW BPMAutomating user provisioning with SAP NW BPM
Automating user provisioning with SAP NW BPM
 
Golden Rules [Best Practices] to tame the MDM/CDI Beast
Golden Rules [Best Practices] to tame the MDM/CDI BeastGolden Rules [Best Practices] to tame the MDM/CDI Beast
Golden Rules [Best Practices] to tame the MDM/CDI Beast
 
Real User Experience Insight
Real User Experience InsightReal User Experience Insight
Real User Experience Insight
 
Real User Experience Insight
Real User Experience InsightReal User Experience Insight
Real User Experience Insight
 
Real User Experience Insight
Real User Experience InsightReal User Experience Insight
Real User Experience Insight
 
Startup Metrics for Pirates (Startonomics Beijing, June 2009)
Startup Metrics for Pirates (Startonomics Beijing, June 2009)Startup Metrics for Pirates (Startonomics Beijing, June 2009)
Startup Metrics for Pirates (Startonomics Beijing, June 2009)
 
Quickviewer Hr2007
Quickviewer Hr2007Quickviewer Hr2007
Quickviewer Hr2007
 
XsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAPXsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAP
 
Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...
Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...
Redefine Triage by Learning the Golden Nuggets of APM From Noted "APM Best Pr...
 
Rutgers Research Center
Rutgers Research CenterRutgers Research Center
Rutgers Research Center
 
Role Discovery and RBAC Design: A Case Study with IBM Role and Policy Modeler
Role Discovery and RBAC Design: A Case Study with IBM Role and Policy ModelerRole Discovery and RBAC Design: A Case Study with IBM Role and Policy Modeler
Role Discovery and RBAC Design: A Case Study with IBM Role and Policy Modeler
 
Application Acceleration: Faster Performance for End Users
Application Acceleration: Faster Performance for End Users Application Acceleration: Faster Performance for End Users
Application Acceleration: Faster Performance for End Users
 

Último

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAndrey Devyatkin
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodJuan lago vázquez
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsNanddeep Nachan
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...apidays
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfOverkill Security
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...apidays
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdflior mazor
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024The Digital Insurer
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 

Último (20)

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 

Continuous Auditing, Monitoring & Data Analytics

  • 1. CONTINUOUS AUDITING, CONTINUOUS MONITORING, AND ] DATA ANALYTICS FOR AUDITING SAP R/3 MICHAEL BERARDI, MS-CIS, CISA ASUG INSTALLATION MEMBER MEMBER SINCE 2001 [ ANUP MAHESHWARI ASUG ASSOCIATE MEMBER MEMBER SINCE: 2008 [ SHERRYANNE MEYER ASUG INSTALLATION MEMBER [ AJAY VONKAREY MEMBER SINCE: 2000 ASUG ASSOCIATE MEMBER MEMBER SINCE: 1996
  • 2. [ Michael Berardi Real Experience. Real Advantage. 2
  • 3. [ SAP R/3 ENVIRONMENT AT ENERGIZER HOLDINGS INC.  Eveready Battery Company  Energizer and Eveready Batteries  SWS Schick  Playtex Products  SAP R/3 v. 4.7  Five instances of SAP R/3  USA – two instances  Sales (HP & PC)  Manufacturing (HP)  Europe  Sales (HP & PC)  Manufacturing (PC)  Human Resources/Payroll Real Experience. Real Advantage. 3
  • 4. [ FRAUD OPPORTUNITY TRIANGLE PRESSURE RATIONALIZATION Real Experience. Real Advantage. 4
  • 5. [ The only limits on what can be accomplished are the limits of your imagination, creativity and access to the data LIMITS OF DATA ANALYSIS, CONTINUOUS AUDITING AND MONITORING Real Experience. Real Advantage. 5
  • 6. [ TERMS DEFINED DATA Continuous Continuous CAATS ANALYSIS Auditing Monitoring Real Experience. Real Advantage.
  • 7. [ TOOLS SAP R/3 (SE16, SE17, SAP Queries) IDEA • Benford‟s Law toolkit ACL - http://www.acl.com • Desktop • Network version has evolved to Audit Exchange • Webinars – www.acl.com/findmoney Microsoft Access and Excel Real Experience. Real Advantage.
  • 8. [ Data Analysis Tools Outside SAP R/3  ACL  Direct Link for SAP R/3  ACL for the desktop  Audit Exchange  User Forums  http://www.acl.com  Idea (http://www.audimation.com)  Pre-built analysis for fraud - http://www.audimation.com/datas.cfm  Manufacturing applications http://www.audimation.com/applications/Manufacturing_Applications .pdf  Microsoft (Ms) Access  Ms Office  Approva Real Experience. Real Advantage.
  • 9. [ Approva BizRights Collaboration Across Business Users, IT and Audit Finance Business IT Managers Internal & External Managers Managers Auditors Pressure & Audit Costs Increasing Regulatory Process Controls: Process Configuration, Transactions, Master Data, … Multiple Controls Procure-to-Pay Order-to-Cash Financial Close Payroll Security Controls: Segregation of Duties, Sensitive Access… System Controls: Password Policies, Transport Policies… People Legacy Other SAP Oracle Soft Hyperion Apps Apps Multiple Applications Real Experience. Real Advantage.
  • 10. [ LEARNING POINTS Why apply data analysis with SAP R/3? Understanding the benefits of data analysis, monitoring and continuous auditing A cookbook approach to data analytics Energizer Holdings success with continuous monitoring Pre-written continuous monitoring and auditing tools Real Experience. Real Advantage. 10
  • 11. WHY APPLY DATA ANALYSIS [ Real Experience. Real Advantage.
  • 12. [ BENEFITS OF DATA ANALYSIS R/3 is data rich, report opportunistic Testing the entire populations versus samples Data analysis increases effectiveness and efficiency Effective for working remotely or on-site Easier to share information electronically than via hardcopy reports Real Experience. Real Advantage.
  • 13. [ BENEFITS OF DATA ANALYSIS  Benford‟s law – who can tell me what this is? Real Experience. Real Advantage.
  • 14. [ RETURN ON INVESTMENT • Payroll • SSN tests (invalid, duplicate, dead people) • Setting criteria for percent change from run to run Continuous • Accounts Payable Monitoring • Duplicate Payments • Unclaimed credits • Systems such as Approva or those you build yourself can identify unusual transactions that might avoid a fraudulent payment • Look for a series of split transactions, avoiding the Continuous dollar cutoff for either no receipt or no approval Auditing required Real Experience. Real Advantage. 14
  • 15. [ PAYROLL Ghost Expense Reported reimbursement Employees overtime • AP vendor bill during slow • Invalid SSN and employee • No benefits reimbursemnt period Segregation or unusual through • Authorized of Duties items payroll check overtime? (SOD) • Dup Dir for expense • Rounding up Deposit Info hours? Real Experience. Real Advantage. 15
  • 16. [ ACCOUNTS PAYABLE Duplicate payments & vendor pre-payments Procurement Invoice to Site draft to Duplicate card to invoice off-invoice vendor invoice Real Experience. Real Advantage.
  • 17. [ ACCOUNTS PAYABLE (CONT.) LOOSE INVOICES (NO PO) Fictitious vendors Employee vendor accounts Duplicate freight charges Missed earned vendor discounts Real Experience. Real Advantage. 17
  • 18. [ Revenue Leakage • Unlimited No. copies per Co. • No Expiration Evaluation Software • Outstanding copies not disabled upon purchase • Trends –always same vendor(s)? Short Paid invoices • Excessive rebates? Unauthorized discounts or credit notes? Price overrides Real Experience. Real Advantage. 18
  • 19. [ BEST PRACTICES Follow the SDLC process in the selection and Include I.T. in the implementation process of a data analytics tool Follow the SDLC Allocate enough process in the storage space on creation of new the SAP server queries, so as not for what the to impact the selected tool production produces system(s) Real Experience. Real Advantage. 19
  • 20. [ LEARNING POINTS Real Experience. Real Advantage.
  • 21. [ A DATA ANALYSIS APPROACH – DATA COOKBOOK Don‟t re-create the wheel every time you develop a new report Maintain a list of the tables and procedures followed Cookbook a catalogue of Recipes Recipes may reference existing R/3 reports or table sources and procedures to produce reports Sources of information on tables and the location of data exists both within R/3 and through internet resources Real Experience. Real Advantage.
  • 22. [ Using SharePoint to organize and store data analysis, continuous auditing and continuous monitoring „recipes‟ or procedures SHAREPOINT TOOL Real Experience. Real Advantage. 22
  • 23. [ AUDIT SITE WITH LINK TO COOKBOOK Real Experience. Real Advantage. 23
  • 24. [ SHAREPOINT SITE USED FOR RECIPES Real Experience. Real Advantage. 24
  • 25. [ Real Experience. Real Advantage.
  • 26. [ Real Experience. Real Advantage.
  • 27. [ Real Experience. Real Advantage.
  • 28. [ Real Experience. Real Advantage.
  • 29. [ Real Experience. Real Advantage.
  • 30. [ Real Experience. Real Advantage.
  • 31. [ Real Experience. Real Advantage.
  • 32. [ Real Experience. Real Advantage.
  • 33. [ Real Experience. Real Advantage.
  • 34. [ Real Experience. Real Advantage.
  • 35. [ Real Experience. Real Advantage.
  • 36. [ Real Experience. Real Advantage.
  • 37. [ LEARNING POINTS Real Experience. Real Advantage.
  • 38. [ SAP R/3 Tables for testing  According to ACL there are over 20,000 tables in SAP R/3  The following are the top 20 Tables:  BKPF - Financial Documents Header  BSEG - Financial Document Items  EKKO - Purchasing Document Header  EKPO - Purchasing Document Item  BSAD - Cleared Customer Invoices (paid)  BSAK - Cleared Vendor Invoices (paid) Real Experience. Real Advantage.
  • 39. [ SAP R/3 Tables for testing  BSIS - General Ledger Accounts  KNA1 - Customer Master (General Data)  KNKK - Customer Master (Credit Data)  KNVV - Customer Master (Sales Data)  LFA1, LFB1, LFM1 - Vendor Master  MARC - Material Master  VBAK - Customer Orders - Header  VBAP - Customer Orders - Items  VBRK - Customer Invoices - Header  VBRP - Customer Invoices - Items Real Experience. Real Advantage.
  • 40. [ SAP R/3 Tables for testing  DD02T - Table Titles  TSTCT - Transaction Titles  Create your own list of tables, transactions and reports you find useful  Join ASUG Internal Controls SIG discussion groups to grow your knowledge Real Experience. Real Advantage.
  • 41. [ Good Information Sources  Google – http://www.google.com  SAPGenie - http://www.sapgenie.com  SAPGenie Table Diagrams  http://www.sapgenie.com/abap/tables.htm#Finance%20Tables  SAP Help on the Web - http://help.sap.com/  SAP R/3 Application Help  http://help.sap.com/saphelp_470/helpdata/EN/e1/8e51341a06084 de10000009b38f83b/frameset.htm Real Experience. Real Advantage.
  • 42. [ Good Information Sources  ISACA  http://www.isaca.org and select downloads for SAP ICQ & Audit Programs  ISACA Bookstore for guides such as “Security, Audit and Control Features SAP R/3 A Technical and Risk Management Reference Guide” Real Experience. Real Advantage.
  • 43. [ LEARNING POINTS Real Experience. Real Advantage.
  • 44. [ SAP R/3 transactions to facilitate data analysis  Transactional access required  Display only access  Data Dictionary (SE11)  Ability to view tables (SE16, SE17) Demonstration of Transaction Code SE16  Using R/3 transactions to locate table data Demonstration of using Help - Technical Settings Real Experience. Real Advantage.
  • 45. [ SE11 – DATA DICTIONARY Real Experience. Real Advantage. 45
  • 46. [ Transaction SE11 to display data dictionary information Real Experience. Real Advantage.
  • 47. [ Real Experience. Real Advantage.
  • 48. [ SE16 – EXTRACTING FROM TABLE FIELDS Real Experience. Real Advantage. 48
  • 49. [ Transaction Code SE16 TCODE: SE16 Real Experience. Real Advantage.
  • 50. [ Transaction Code SE16 Real Experience. Real Advantage.
  • 51. [ Transaction Code SE16 Real Experience. Real Advantage.
  • 52. [ Transaction Code SE16 Real Experience. Real Advantage.
  • 53. [ Transaction Code SE16 Real Experience. Real Advantage.
  • 54. [ HOW DO I FIND THE TABLE AND FIELD IN WHICH DATA RESIDES? Real Experience. Real Advantage. 54
  • 55. [ When working with the users.... Click on the paper in the bottom left corner gives critical information such as Tcode Real Experience. Real Advantage.
  • 56. [ So how do I find the source of information? Real Experience. Real Advantage.
  • 57. [ So how do I find the source of information? Real Experience. Real Advantage.
  • 58. [ So how do I find the source of information? Real Experience. Real Advantage.
  • 59. To save to a file on [ your local hard drive follow this menu tree Real Experience. Real Advantage.
  • 60. [ LEARNING POINTS Real Experience. Real Advantage.
  • 61. [ SAP Queries – Tcode SQ01 Real Experience. Real Advantage. 61
  • 62. [ Key Learning Points!  Grow your knowledge of SAP R/3  Discussion groups  ASUG chapter meetings  Locate training  Find good sources of SAP R/3 information related to internal controls  Start a cheat sheet of transactions, tables, programs and reports  Start your own library of data extraction and analysis methods and reference them in the applicable internal controls test plans Real Experience. Real Advantage.
  • 63. [ Questions or Comments? THANKS, MICHAEL BERARDI MICHAELA.BERARDI@ENERGIZER.COM Real Experience. Real Advantage. 63
  • 64. [  Thank you for participating. Please remember to complete and return your evaluation form following this session. For ongoing education on this area of focus, visit the Year-Round Community page at www.asug.com/yrc ] [ SESSION CODE: 4506 – Data Analysis, Continuous Auditing and Monitoring Real Experience. Real Advantage. 64
  • 65. [ IDEA by AUDIMATION Real Experience. Real Advantage. 65
  • 66. [ Real Experience. Real Advantage. 66
  • 67. [ Real Experience. Real Advantage. 67