KTech provides targeted audit remediation and sustainment testing, audit support, transaction analysis and processing, and supports legacy and ERP operating environments.
Targeted Audit Remediation and Sustainment Testing
- Identify target areas for evaluation and testing: high risk business processes
- Perform sustainment testing on low risk areas to confirm continued audit-ready state
- Apply the “auditor lens” to testing efforts
- Determine if adequate and appropriate supporting documentation exists to support key financial events and transactions
- Document test results and clearly identify any deficiencies
- Develop actionable recommendations that can be incorporated to corrective action plans (CAPs)
- Support CAP completion by partnering with process owners
- Leverage test results to support the annual Statement of Assurance
Audit Support
- Utilize audit procedures during internal control testing to familiarize process and system owners with PBC response procedures
- Evaluate organizational ability to produce evidential matter in a timely manner
- Provide expertise with supporting audits
- Evaluate PBC requests upon receipt and provide guidance to system and process owners
- Evaluate PBC responses prior to response to auditor for appropriateness and completeness Evaluate auditor-issued NFRs and provide recommendations for corrective actions
- Monitor and update agency CAP reporting in the NFR Database
- Write detailed step-by-step desk guides to assist agency personnel with obtaining evidential matter for internal control and substantive testing
Transaction Analysis and Processing
- Analyze and document universe of transactions
- Identify the location of populations and transactions to be sampled for testing, audit or examination – including those outside of the General Ledger system
- Identify reconciliations and interface controls supporting existence and completeness over the universe of transactions, including feeder systems to the accounting system of record
- Determine if adequate supporting documentation exists to support universe of transactions
- Reconcile the General Ledger to transaction detail
- Tie specific financial statement line items to the corresponding transactions
Legacy and ERP Operating Environments
- Identify service providers and evaluate results of SSAE No. 18 reports and impact to the agency
- Develop and execute Complementary User Entity Control (CUEC) testing for access, general, and business process controls
- Develop complete inventory of all systems and micro-applications that impact the control environment
- Understand technical architecture and transactional data flows
- Integrate Common Government-wide Accounting Code (CGAC) Structure and Standard Financial Information Structure (SFIS) standards where applicable
- Evaluate service provider relationships and related MOU/MOA
- Perform Federal Information Systems Control Audit Manual (FISCAM) testing
- Test Information Technology (IT) General and Application controls