Auditing an ERP system is essential for gaining control over access and information integrity. Security audits protect the system from intrusions and criminal behavior that can be destructive. The system owner has the obligation to his users to control access and verify system integrity. Audits are a critical tool for the system owner to establish a level of documentation for the enterprise-level piece of software.

Step 1.

Review the ERP systems for operating integrity and accurate information. There is no need to audit a non-functioning system.

Step 2.

Review the business needs for the system. Analyze the system's access. Utilize questions from your audit information to assess controls and access.

Step 3.

Review the business needs for the system. Analyze the system's monetary performance. Does it perform to generally accepted practices? Utilize your questions to assess these points.

Tip

Computer systems access must take into account employees who have quit.

Warning

The business must be assured of access controls to systems. Access controls should be physical and electronic.