Standards of Internal Controls - Arizona State University

More documents

Recommendations

Info

6.0 Computer Systems Controls 6.1 System Owners and Custodians of Equipment 6.2 Physical Security and Environmental Controls 6.3 Computer Access Security 6.4 Network Security 6.5 Systems Development Methodology 6.6 Configuration Management 6.7 Computer Operations and Back-up 6.8 Disaster Recovery Planning 6.9 Input Controls 6.10 Processing Controls 6.11 Output Controls 6.12 Paperless Transaction Processing 7.0 Environment, Health and Safety 8.0 Miscellaneous Cycles 8.1 Capital Assets 8.2 Subsequent Additions/Future Use 9.0 Loss Prevention Cycle 9.1 Physical Security 9.2 Access Controls 9.3 Personnel Security 9.4 Physical Asset Protection 9.5 Protection of Trademarks/Logos 10.0 Intellectual Property Acknowledgement: The model used within this document is based off that of Motorola, Inc and is being used with their permission.
I. PREFACE Our university has long had a formal statement of policy regarding the maintenance of an adequate system of operating and financial controls. The Standards of Internal Control (SIC) were developed to serve as a resource to help document our continued commitment to compliance with applicable university and Arizona Board of Regents’ (ABOR) policies/procedures, local, state and federal laws and regulations, reliable operational and financial reporting, and integrity of our activities and records. An overview of our “System of Internal Control” and the external environment it relates to is provided below. GASB STUDENTS MONITORING AND EVALUATING AUDITOR GENERAL OFFICE ABOR AUDIT COMMITTEE CODE OF FINANCIAL CONDUCT CONTROLS UAAS COMPLIANCE HOTLINE ABOR Good Business Practices OPERATING MANAGEMENT STANDARDS OF INTERNAL CONTROL FINANCIAL FUNCTIONS/ MANAGEMENT SELF AUDIT REVIEWS (ICQ’S) IMPLEMENTATION AND REVIEW LAWS AND REGULATIONS ABOR/ASU POLICIES AND PROCEDURES AZ TAXPAYERS ENVIRONMENT This represents the first edition of the SIC, which was published to help ensure we meet the control requirements necessitated by the ever-changing environments in which we operate. It is based on the Internal Control Standards published by Motorola, Inc., and is used with their permission.
Page 1: STANDARDS OF INTERNAL CONTROL Issue
Page 5 and 6: The internal control process should
Page 7 and 8: STANDARDS OF INTERNAL CONTROL Intro
Page 9 and 10: STANDARDS OF INTERNAL CONTROL QUICK
Page 11 and 12: 2.0 REVENUE CYCLE The Revenue Cycle
Page 13 and 14: 2.3.2 A tuition bill should be prep
Page 15 and 16: 2.4.7 Management should develop an
Page 17 and 18: 3.0 PROCUREMENT CYCLE The Procureme
Page 19 and 20: 3.2 PURCHASING Standard of Internal
Page 21 and 22: 3.3 RECEIVING Standard of Internal
Page 23 and 24: 3.4 ACCOUNTS PAYABLE Standard of In
Page 25 and 26: 3.5 DISBURSEMENTS Standard of Inter
Page 27 and 28: 4.0 PAYROLL CYCLE The Payroll Cycle
Page 29 and 30: 4.1.8 HR responsibilities, includin
Page 31 and 32: 4.2.10 Departmental procedures shou
Page 33 and 34: 4.4 DISTRIBUTION OF PAYROLL Standar
Page 35 and 36: 5.1.5 Policies should be establishe
Page 37 and 38: 5.2.11 All departments should compl
Page 39 and 40: 6.1.2 Department managers, in coord
Page 41 and 42: GENERAL DATA PROCESSING CONTROLS Ge
Page 43 and 44: 6.2.8 Computer hardware sites shoul
Page 45 and 46: 6.3.4 Security administrators, in c
Page 47 and 48: 6.3.10 Custodians of computer equip
Page 49 and 50: 6.5 SYSTEMS DEVELOPMENT METHODOLOGY
Page 51 and 52: 6.6 CONFIGURATION MANAGEMENT Change
Page 53 and 54:
G-6 In the event of a disaster, cri
Page 55 and 56:
6.8.2 Application system owners sho
Page 57 and 58:
6.10 PROCESSING CONTROLS Standard O
Page 59 and 60:
6.12 PAPERLESS TRANSACTION PROCESSI
Page 61 and 62:
7.0 ENVIRONMENT, HEALTH and SAFETY
Page 63 and 64:
8.1.7 Formal ABOR approval is requi
Page 65 and 66:
9.2 ACCESS CONTROLS A-6 Unauthorize
Page 67 and 68:
9.4 PHYSICAL ASSET PROTECTION Stand
Page 69 and 70:
10.0 INTELLECTUAL PROPERTY (IP) The
show all

Standards of Internal Controls - Arizona State University

Create successful ePaper yourself

Delete template?

Save as template?