Communications with relevant persons (7) Division 7 Cross-border communication (8) Division 8 Companies shall test and assess the BCP (Training, Exercising and Auditing) (9) Division 9 Examples of emergency
) Division 7 Cross-border communication (8) Division 8 Companies shall test and assess the BCP (Training, Exercising and Auditing) (9) Division 9 Examples of emergency incidents which may cause major
relevant technology element Identify and assess risks arising from IT Understand, identify, and test relevant ITGC Conclude on risks arising from IT and determine audit response Evaluate deficiencies in ITGC
important that the auditors carefully assess the audit risks and plan their audits accordingly. This becomes particularly important as the effective date of the new auditor’s report is fast approaching, where
, how does the firm inform its personnel or what kind of process that the firm use to ensure that its staff evaluate clients risk? 5 Regarding integrity checks does the firm’s conduct, for example
evaluate clients risk? 5 Regarding integrity checks, does the firm conduct, for example: • communications with existing or previous professional accountants; • inquiry of personnel/third parties such as
); (5) review procedures and processes in the management of information security incidents, after the testing under (4) is carried out, at least once a year; (6) evaluate the results of the testing under
) establish conditions and controls relating to information security in an agreement signed by both parties; (2) monitor, evaluate, review and audit service delivery of the outsourcee regularly; (3) re-assess
) establish conditions and controls relating to information security in an agreement signed by both parties; (2) monitor, evaluate, review and audit service delivery of the outsourcee regularly; (3) re-assess
investment products within the same asset class. • Use appropriate metrics to compare similar investments. • Evaluate the real rate of return on investment products. • Confident to undertake research on