• KIPS Transactions on Software and Data Engineering
• /
• v.5 no.5
• /
• pp.203-208
• /
• 2016

Information system audit is the requirement to configure the information system successfully. However, there is a problem with reduction of efficiency in the audit work when the system capacity is growing up. In the subsidiary field of information system audit, there is the same problem. In this paper, we will focus on the database audit, and implement an SQL audit tool in order to improve the performance of a database. During the designing phase of the SQL audit tool which aim to improve the performance of a database, we have analyzed the requirements of SQL audit work. Based on the aforementioned them, the process of the SQL audit tool has been designed with SQL audit features in accordance with information audit process. During the implementation phase, we have implemented 3 main function modules according to the output of the design phase. The main modules we implemented are the audit job definition module, audit job executing module and result reporting module. With the implemented tool, it applied to an Electric Power Corporation project in China and compared with other tools that are able to use SQL audit. In this paper, the implemented SQL audit tool is able to perform the general SQL audit work and to reduce the cost of the audit work for database performance and to raise the accuracy of result and to apply the extended inspection rule which need to use SQL parsing.

• Journal of Korean Society for Quality Management
• /
• v.40 no.3
• /
• pp.406-414
• /
• 2012

Purpose: In this study, we developed a service quality audit system through analyzing service processes of airlines' cabin service. Methods: Applying the qualitative approach to service processes analysis; 'service blueprint' methodology was developed, providing airlines a blueprint for cabin service and applying the quantitative service quality audit approach called 'walk-through audit', an audit methodology tailored to airline cabin service called PCPA (Passenger Cabin Patrol Audit) was developed. Results: This study tried to apply both the qualitative and the quantitative methodologies to develop service quality audit checklist and tried to develop details to systemize them into a new methodology. Conclusion: This study will be helpful for Airline services improvement by providing 'service quality audit model', so as to find out the problems and share those with the stakeholders.

• Proceedings of the Korean Information Science Society Conference
• /
• 2001.10a
• /
• pp.637-639
• /
• 2001

침입탐지 시스템은 Audit 시스템, 침입탐지 엔진, 침입대응 시스템으로 나눌 수 있다. Audit 시스템을 통하여 감사자료를 수집하고, 침입탐지 엔진을 이용하여 침입을 탐지하며 대응 시스템을 통하며 침입에 대한 대응 및 대책을 세우게 된다. 지금까지 Audit 시스템은 침입탐지 엔진의 일부로 설계, 구현되어왔다. 이는 침입탐지 엔진에 따라 Audit 시스템도 함께 변경되어야 하는 비효율성을 가져왔다. 본 논문에서는 침입탐지 엔진과 독립적으로 Audit data 수집하고 관리하며 침입탐지 엔진과 효율적으로 연동될 수 있는 Audit 시스템을 설계 및 구현하였다. 탐지엔지을 알고리즘 개발 및 엔진의 변경시에 본 시스템과 연동하면 별다른 Audit 시스템 구현없이 효율적이고 빠르게 테스트 및 검증할 수 있다.

• Journal of Industrial Convergence
• /
• v.3 no.2
• /
• pp.29-50
• /
• 2005

Audit review is the system to review the audit procedures performed and the audit opinion expressed by the independent auditors. The public audit review performed by Financial Supervisory Service (FSS) is regarded as one of the most important means to maintain the reliability of accounting information in Korea. We examinate the effect of audit review on earnings quality by using ERC (earnings response coefficient). We find that ERC of the sample group which issued the audit error reports after they were reviewed by SSB is more effective and higher than one of the non-reviewed group, matching group. We infer that the audit review system has the effectiveness in Korea.

• Asia pacific journal of information systems
• /
• v.5 no.1
• /
• pp.112-128
• /
• 1995

The information system control includes organizational structure, control mechanism, and management tools which contribute to accomplish the goals of information system: asset safeguarding, data integrity, effectiveness, and efficiency. Information system audit is the process to evaluate whether the information system accomplishs the goals. Information system auditor examine the reliability of information system control and suggest recommendations to improve the information system control. Both information system control and information system audit activities contribute to prevent and detect the computer crime for the organization. This paper proposes a causal model of information system control/audit and the perceived risk of computer crime, and tests the model using a survey on 38 financial institutions in Korea. Statistical results show that information system control and audit significantly reduce the computer crime risk perceived by the user group. The general control has a stronger impact than the application control. In addition, it turns out that the greater the deviation between the importance and the actual level of information system control is, the higher the perceived risk of computer crime is.

• Journal of Digital Convergence
• /
• v.10 no.11
• /
• pp.185-196
• /
• 2012

Information system operation principles were recently established in order to provide high quality service and efficient operation audit of IT outsourcing. Operation managements are done based on these principles. Therefore, information operating management process, which refers to itself, is established. Information system operation audit requires a constant audit regularly, which is different from construction/development audit that is done only once. As operating management process changes, operation audit guidelines should be updated and improved. Therefore, this paper proposes IT outsourcing operation audit model with IT outsourcing achievement management as a focus. IT service domain was referred in order to propose information system operation audit model and check lists, which are based on IT outsourcing operation managements such as planning, making strategies, contract, service, and management. The deduced audit model and check lists verified suitability of the proposed model by experts' survey.

• The Journal of Asian Finance, Economics and Business
• /
• v.9 no.5
• /
• pp.135-145
• /
• 2022

To improve audit quality, certain Chinese auditing firms have added a third-level review by an additional signing auditor to the general evaluation by a signing auditor team consisting of an engagement auditor and a partner. Nonetheless, our research-based on 36,033 firm-year observations from 2004 to 2019 reveals that compared to the general review system, auditor teams under the three-level review system are less likely to issue modified audit opinions when abnormal financial conditions arise. This finding suggests that, while larger auditor teams' knowledge, experience, and information advantages can theoretically sharpen their judgment, their performance is more susceptible to interference from divergent opinions, the diffusion of responsibility, and lower energy invested by individual auditors, ultimately impairing their judgment regarding the audited enterprises' abnormal financial conditions. That is, the three-level review system, which aims to improve audit quality, actually worsens audit quality. This conclusion remains valid after the problems of heteroscedasticity and endogeneity are addressed by using firm-level cluster robust standard errors and two-stage regression. We hope that our research will draw the attention of auditing firms, prompting them to reconsider the rationality of the three-level review system.

• Journal of Service Research and Studies
• /
• v.10 no.3
• /
• pp.67-80
• /
• 2020

The information system audit service has been recognized for its effectiveness in improving the management efficiency of informatization projects in the public sector and improving the quality of information systems. However, according to several recent studies, it is not very helpful in securing quality by indicating formal audit performance and incorrect functions or errors in a short audit period. So, if the effectiveness of audit is proved to ensure the quality of the information system from the perspective of the software life cycle and to successfully operate and maintain it, the use of audit for the successful construction of the information system will be an essential factor. Therefore, this study investigated whether the current audit service users are satisfied with the current information system audit and what they expect. If it is different from what was expected, the difference between expectations and performance was analyzed to improve user satisfaction, and a survey was conducted through interviews with experts in the information system field. Based on the empirical results through the questionnaire, in order to reduce the difference in expectations from the user's point of view in the information system audit service, a plan to improve the audit system suitable for the new audit environment was proposed.

• Journal of Digital Convergence
• /
• v.9 no.5
• /
• pp.141-156
• /
• 2011

Auditors' subjective opinions m audit activities weaken reliability in audit judgments. This paper suggests fixed quantity models through requirement priority for improving objective evaluation and priorities of requirements in information system audit. The value of requirements was evaluated based on customers' requirements with a premise that they are not in the same level. Furthermore, the audit objective judgments were enhanced to enable fixed quantity of subjective audit by subdividing detailed evaluation index of requirement priority standards into importance of service and function on orderers' perspective, and sectioning cost and schedule on contractors' perspective.

• The Journal of Asian Finance, Economics and Business
• /
• v.8 no.2
• /
• pp.223-230
• /
• 2021

The concept of Shariah-based internal audit has received increasing attention from researchers in recent times especially since Islamic financial institutions have been developing in several Asian countries like Bangladesh. To avoid financial irregularities and to maintain Shariah-based financial transactions, an effective Shariah-based internal audit system is extremely important for Islamic financial institutions such as Islamic banks. Hence, the objective of this study is to determine the factors that influence the effectiveness of the Shariah-based audit system. Study data has been gathered from Shariah auditors, members of the Shariah board and audit committee of six private Islamic banks in Dhaka, Bangladesh. A total of 210 survey questionnaires were sent and finally 136 responses were retained, indicating a final sample size of n=136, with a survey feedback rate of 65%. The study adopted a quantitative measure and collected only primary data, followed by convenience sampling. SPSS has been used to run necessary statistical interpretation. Results reveal that auditor's work autonomy, level of competency, and work performance significantly impact the Shariah-based internal audit effectiveness. The study findings can be adopted as guidelines to improve the overall effectiveness of the Shariah-based internal audit system in Islamic financial institutions.