Assessment Task Two - Marking Criteria
Marks will be awarded for:
1. Understanding and discussion of the topic (30 marks).
You are expected to answer each of the questions contained in the assignment. You’re answer should fully address the requirements of each question and be in your own words.
Simply restating the contents of the text book, study guide or PowerPoint slides does not show individual understanding of the topic.
Your answers should contain enough discussion on the question so as to clearly demonstrate your understanding of the topic area and provide sufficient detail which answers the questions to a satisfactory level.
There are no minimum word limits placed on assignment questions, however it is expected that most questions will require approximately 300 words of readable, logical and verifiable information.
2. The extent and depth of research undertaken (-2 marks)
Your answers should show wide reading related to the question being answered. This would extend beyond the textbook to other texts, newspaper and magazines. Specific resources from the Internet could also be used. The Harvard Referencing style is the required referencing style for this assessment. (refer http://scu.edu.au/library/index.php/14). Your assignment should also include a Reference List / Bibliography identifying the extent of the research undertaken. Failure to demonstrate extended research or provide a Reference list can result in the loss of up to 2 marks.
3. Presentation: overall look, format (including page breaks between questions), written content and the inclusion of title page stating your name, student ID, Assessment identification, and due date. (-3 marks)
Your assignment should have a professional presentation with appropriate use of headings and sections and appropriate use of spelling, grammar and referencing. Marks may be deducted for excessive incorrect grammar, spelling and failing to have a page break between questions. Failing to include a Cover Sheet will result in lost marks.
While out at a consulting engagement, one of your graduate staff members comes to you with the following question, ‘I’m confused. Since I first studied AIS at uni, I have never really understood this concept of control . . . I mean what is the relationship among the control environment, organisational objectives and the internal control system?’
Prepare a one-page answer in response to the graduate’s concerns.
You should include a description of what an internal control is, the relationship between internal control components, organisational objectives and the different divisions of the organisation, and a description of the control environment, general controls and application controls and how they relate to one another.
Classify the following control activities as general or application and explain your reasoning,
(a) Employees have a password to gain access to the system.
(b) When sales are entered the system retrieves customer details based on the customer number.
(c) A check is performed to identify if all cheques can be accounted for.
(d) Systems development is subject to signoff by the CIO before it can take place.
(e) Virus definitions are updated daily.
Option Classification Explanation
Below is a description of a business process.
The computer system requires all users to log on with a user identification (their first initial and the first six letters of their surname), and a password that is assigned to users when they join the firm (that is unable to be changed).
The users have access to the internet and several have installed Windows Live Messenger and other chat programs on their machines.
The main task of John, one of the staff members, is to perform data entry. Each day he receives a bundle of orders from the customer assistant, with John’s job being to enter the details into the system.
John first enters the customer name, address and contact number then clicks on the ‘Next’ button to enter the items and quantities ordered by the customer.
If the customer name is not provided the computer will prompt John to go back and fill in the details before proceeding to the next screen. In addition, the computer will only accept numeric values for the quantities ordered.
Once all orders are entered John clicks the ‘Done’ button and the computer displays the number of orders entered on the screen.
John usually ignores this, because by the time orders have been entered it is usually lunch time.
(a) Identify four risks in the process.
(b) Suggest an internal control for each risk (the control may be mentioned in the case or missing and you think it should be applied).
(c) Indicate whether the control is present or missing in the case.
(d) Classify the control as general or application.
(e) Classify the control as manual or computerised.
(refer next page for template)
Use the following template matrix shown below to document your answer.