IS Control Objectives
This topic is related to information systems auditing. Every organization has controls in place. Controls are normally composed of policies, procedures, practices and organizational structures that are implemented to reduce risks to the organization. The board of directors and seniors management are responsible for establishing the appropriate culture to facilitate effective and efficient internal control system. There are two aspects of controls: What should be achieved and what should be avoided. Internal controls address business and operational objectives. Control objectives are statements of the desired result or purpose to be achieved by implementing the control activities which are in the form of processes and procedures. Control objectives apply to all controls whether they are manual, automated or combination. Control objectives need to be addressed relevant to specific IS-related processes. A control measure is defined as an activity contributing to the fulfilment of a contr