• Management & Information Systems Review
• /
• v.7
• /
• pp.141-168
• /
• 2001

The causes that the transparency of Korean accounting information was rated low, a short supply of faithful and transparent accounting information from the limitation of external audit environment must be pointed out. Purpose of the external audit is a expression of the auditors about that financial statements an enterprise made public were appropriately drew up in accordance with the corporate accounting principles from important point of view. Analysis of the audit opinion and so fourth according to 6,541 individual audit reports and introduced to the bill securities forward committee as a subject of external audit according to the raw of corporation external audit show that considerable change to the contents of audit report. This show as it is that uncertainty of future that is now being faced by our enterprise, because corporation which present audit reports since 1997 because of enterprise dishonor and contents of existence probability as a continued enterprise following to general economic crisis after 1998 occupy important position in special matters of audit report. Also, increase in special matters is due to application of the corporate accounting principles revised on December 11, 1998. In 1999, audit opinion under limitation(limitation, incongruity and rejecting opinion) increased greatly according to existence doubt as a continued enterprise, and this is the consequence of strengthening audit to the continues enterprise because of limited enterprise dishonor according to the stagnancy of business activities after 1997. Now financial supervisory service put in effect electromagnetic public announcement system about a project report of listed corporation (including an audit report) keeping pace with a documentary public announcement system as first phase since 1999 and expand to the unlisted corporation from 2000. As electromagnetic public announcement of public announcement documents including audit documents of external audit subject get a duty, approach of external user to the accounting information will be easier. Fixation of this system will make deep and wide analysis to the audit opinion, and this will draw up a plan to reconsider confidence of accounting information.

• Journal of Service Research and Studies
• /
• v.10 no.3
• /
• pp.67-80
• /
• 2020

The information system audit service has been recognized for its effectiveness in improving the management efficiency of informatization projects in the public sector and improving the quality of information systems. However, according to several recent studies, it is not very helpful in securing quality by indicating formal audit performance and incorrect functions or errors in a short audit period. So, if the effectiveness of audit is proved to ensure the quality of the information system from the perspective of the software life cycle and to successfully operate and maintain it, the use of audit for the successful construction of the information system will be an essential factor. Therefore, this study investigated whether the current audit service users are satisfied with the current information system audit and what they expect. If it is different from what was expected, the difference between expectations and performance was analyzed to improve user satisfaction, and a survey was conducted through interviews with experts in the information system field. Based on the empirical results through the questionnaire, in order to reduce the difference in expectations from the user's point of view in the information system audit service, a plan to improve the audit system suitable for the new audit environment was proposed.

• Journal of the Korea Society of Computer and Information
• /
• v.17 no.10
• /
• pp.203-216
• /
• 2012

For the successful operation of the current organization, the importance of the information system is further increasing, and audit for the information system construction is also spreading according to the mandatory of information system audit. However our country's information system audit still does not deal with various risks and the improvement plan of it is desperately needed since bad practices are often happened while performing audit for the various information system projects. Therefore, this paper proposed improved review items for the quality improvement of information system construction by analysing data of information system audit projects and risk occurrence projects that are performed by the domestic large SI company during four years. In addition, this paper verified the effectiveness of the improved review items proposed in this paper by applying them to actual information system project examples.

• Journal of Digital Convergence
• /
• v.10 no.6
• /
• pp.71-82
• /
• 2012

The interest in SLA in accordance with the development of IT outsourcing has increased due to the rapid development of information systems. Moreover, an awareness and necessity for the Information System Operating Audit has increased while an effective IT service management operations for information systems is needed desperately. However, information system operations and maintenance instructions of the National Information Society Agency operates due to the current information system operation, but the experience and the interpretation of the auditor determine the decision in the field. This paper introduces an operating audit model for the efficient management. This model is derived from the Korea Information Society Agency's operating instructions of the Information Systems Audit and their inspection services. The audit checklists were derived from the areas of service planning, service delivery, service support, and service management. Consequently, the operating audit model was proposed, and the suitability of this model was verified by experts' opinions on the survey.

• Journal of the military operations research society of Korea
• /
• v.27 no.1
• /
• pp.89-100
• /
• 2001

Information technology has been made remarkable progress and most of computer systems are connected with internet over the world. We have not only advantages to access them easy, but also disadvantages to misuse information, abuse, crack, and damage privacy. We should have safeguards to preserve confidentiality, integrity and availability for our information system. Even tough the security is very important for the defense information system, we should not over limit users availability. BS7799, a British standard, is an evaluation criteria for information security management. In this paper we propose an audit model to manage and audit information security using control items of BS7799, which could be useful to mange the defence information system security. We standardize audit items, and classify them by levels, and degrees by using appropriate audit techniques / methods / processes.

• Journal of Digital Convergence
• /
• v.10 no.11
• /
• pp.185-196
• /
• 2012

Information system operation principles were recently established in order to provide high quality service and efficient operation audit of IT outsourcing. Operation managements are done based on these principles. Therefore, information operating management process, which refers to itself, is established. Information system operation audit requires a constant audit regularly, which is different from construction/development audit that is done only once. As operating management process changes, operation audit guidelines should be updated and improved. Therefore, this paper proposes IT outsourcing operation audit model with IT outsourcing achievement management as a focus. IT service domain was referred in order to propose information system operation audit model and check lists, which are based on IT outsourcing operation managements such as planning, making strategies, contract, service, and management. The deduced audit model and check lists verified suitability of the proposed model by experts' survey.

• KIPS Transactions on Software and Data Engineering
• /
• v.8 no.5
• /
• pp.179-186
• /
• 2019

Information system audit, which provides effective diagnosis and inspection of IT governance, is applied to all aspects from planning to development and operation. However, there is a difficulty in carrying out the audit because the system for the specialized university IT project is not developed. Therefore, it is necessary to set the internal system as the audit-based application framework in order to apply it to university IT governance. In this paper, we propose a audit-based application framework of university information system developed for university. The framework has a difference from the existing audit system. By using this framework, it is possible to present a standard for the university IT project and easily approach and use it in the field. And it can be used for direct audit through this framework in the level of the auditor as well as the HQ admin. The framework categorizes the audit into three major dimensions and suggests a method that can be applied to the university information system audit through the UAFP(University Audit Framework Process) and quality assurance.

• KIPS Transactions on Software and Data Engineering
• /
• v.5 no.9
• /
• pp.425-432
• /
• 2016

As the importance of information audit is getting bigger, the public corporations invest many expenses at information system audit to build a high quality system. For this purpose, there are much research to proceed an audit effectively. In database audit works, it could audit utilizing a variety of monitoring tools. However, when auditing SQLs which might be affected to database performance, there are several limits related to SQL audit functionality. For this reason, most existing monitoring tools process based on meta information, it is difficult to proceed SQL audit works if there is no meta data or inaccuracy. Also, it can't detect problems by analysis of SQL's syntax structure. In this paper, we design and implement the SQL Inspector using ANTLR which is applied by syntax analysis technique. The overall conclusion is that the implemented SQL Inspector can work effectively much more than eye-checked way. Finally, The SQL inspector which we proposed can apply much more audit rules by compared with other monitoring tools. We expect the higher stability of information system to apply SQL Inspector from development phase to the operation phase.

• KIPS Transactions on Software and Data Engineering
• /
• v.5 no.5
• /
• pp.203-208
• /
• 2016

Information system audit is the requirement to configure the information system successfully. However, there is a problem with reduction of efficiency in the audit work when the system capacity is growing up. In the subsidiary field of information system audit, there is the same problem. In this paper, we will focus on the database audit, and implement an SQL audit tool in order to improve the performance of a database. During the designing phase of the SQL audit tool which aim to improve the performance of a database, we have analyzed the requirements of SQL audit work. Based on the aforementioned them, the process of the SQL audit tool has been designed with SQL audit features in accordance with information audit process. During the implementation phase, we have implemented 3 main function modules according to the output of the design phase. The main modules we implemented are the audit job definition module, audit job executing module and result reporting module. With the implemented tool, it applied to an Electric Power Corporation project in China and compared with other tools that are able to use SQL audit. In this paper, the implemented SQL audit tool is able to perform the general SQL audit work and to reduce the cost of the audit work for database performance and to raise the accuracy of result and to apply the extended inspection rule which need to use SQL parsing.

• The KIPS Transactions:PartD
• /
• v.11D no.7 s.96
• /
• pp.1467-1476
• /
• 2004

The importance and demand about IS(information system) audit we increasing to raise quality of IS and prevention of the IS risk and dysfunction. Technology and system research for the substantiality and raising reliability of IS audit are continuously performed. But, there are misunderstanding of audit clients about IS audit, insufficiency of auditor's ability and misunderstanding of new technology and target business area. Therefore, is not getting trust from client or system integrator because service quality of IS audit is weak relatively. This study aims at survey correlation between audit service quality factor and audit quality, between audit quality and customer satisfaction. The results of this study are as follow. Auditor's ability, correspondence has a significant effect on audit quality, also audit quality on audit satisfaction, and Auditor`s ability, reliability has a significant effect on audit satisfaction.