Masters Degrees (School of Accountancy)

Permanent URI for this collection

https://scholar.sun.ac.za/handle/10019.1/704

Browse

Browsing Masters Degrees (School of Accountancy) by browse.metadata.advisor "Goosen, Riana"

Now showing 1 - 2 of 2
  • Thumbnail Image
    Item
    Blockchain technology : addressing the risk of digital assets exchange
    (Stellenbosch : Stellenbosch University, 2018-03) Thomas, Mari; Goosen, Riana; Stellenbosch University. Faculty of Economic and Management Sciences. School of Accountancy.
    ENGLISH SUMMARY : Blockchain technology is a complicated and emerging technology affecting the way business is performed. Blockchain is a decentralised transaction and data management technology which was first introduced through the Bitcoin cryptocurrency. Ever since the introduction of Bitcoin in 2008, interest in the blockchain technology has grown significantly. This is mainly due to the fact that this technology has the ability to eliminate the role of trusted third parties with regards to security, anonymity and data integrity aspects. The purpose of this study was to provide a matrix which can be used as a quick reference to indicate the various blockchain characteristics and how they address identified risks with the exchange of digital assets and subsequently assist in achieving the control objectives of a business. Furthermore, additional risks were identified which potential users need to take into consideration before implementing the blockchain technology. The matrix was developed by first identifying the significant inherent risks of digital asset exchange, namely trust, repudiation, double-spending and theft, including fraud. An understanding of how the blockchain technology works was obtained through performing a detailed literature review, from which the key characteristics of the blockchain technology was identified. This was utilised to provide a matrix for potential users on how a specific blockchain characteristic has the ability to address the identified significant risks of digital asset exchange and to achieve the control objectives of a business. Additional risks were derived from the matrix and further literature work carried out to identify the additional risks which needs to be considered before the implementation of the blockchain technology. By utilising the matrix provided, various industries will be able to evaluate whether the blockchain technology will assist them in addressing their specific risks and achieving their control objectives.
  • Thumbnail Image
    Item
    Developing an audit planning framework at a strategic and operational level for implementing continuous auditing and the corresponding continuous auditing procedures for Oracle database management systems
    (Stellenbosch : Stellenbosch University, 2017-03) van Dyk, Hendrike Olet; Goosen, Riana; Stellenbosch University. Faculty of Economic and Management Sciences. School of Accountancy.
    ENGLISH SUMMARY : Information technology (IT) has become imperative to most modern organisations’ strategic and operational activities. It is for this reason that King III clarified the respective responsibilities of risk committees, audit committees and internal audit functions with respect to IT assurance. King III recommends the use of technology to improve audit coverage and audit efficiency, but does not elaborate on this recommendation. In this research study, a modern audit methodology, namely continuous auditing, was explored as a potential solution to address this recommendation made by King III. Continuous auditing is the ongoing assessment of risks and controls which is enabled by technology. Compared to traditional audit methodologies, continuous auditing is considered a cost-effective method to increase audit efficiency and audit coverage. Despite the stated benefits of this audit methodology, internal auditors are yet to optimise the implementation of continuous auditing in practice. The primary objective of this research was to develop an audit planning framework for internal auditors to implement continuous auditing to ensure ongoing assurance for automated IT controls. The framework consists of strategic planning steps to develop an annual audit plan and to identify areas where continuous auditing could be implemented. The operational elements of this framework focus only on developing continuous auditing for automated IT controls. The secondary objective was to apply this planning framework to compile continuous audit procedures for database management systems, using Oracle Database as an example. The degradation of IT controls is often an early-warning indicator of fraud and error. The implementation of this modern audit methodology for database management systems enables internal auditors to report on control deficiencies within a shorter timeframe to provide real-time assurance. Considering that the most valuable information assets are retained in databases and in view of the increase in data breach incidents involving high-profile organisations, the implementation of continuous controls auditing should be a high priority for internal audit functions.