Federal Information System Controls Audit Manual (FISCAM)

PDF Version Also Available for Download.

Description

Guidance issued by the Government Accountability Office with an abstract that begins "FISCAM presents a methodology for performing information system (IS) control audits of federal and other governmental entities in accordance with professional standards. This version supersedes the prior version, Federal Information System Controls Audit Manual: Volume I Financial Statement Audits, AIMD-12.19.6, January 1, 2001. The FISCAM is designed to be used primarily on financial and performance audits and attestation engagements performed in accordance with GAGAS, as presented in Government Auditing Standards (also know as the "Yellow Book"). The FISCAM is consistent with the GAO/PCIE Financial Audit Manual (FAM). Also, ... continued below

Creation Information

United States. Government Accountability Office. February 2, 2009.

Context

This text is part of the collection entitled: Government Accountability Office Reports and was provided by UNT Libraries Government Documents Department to Digital Library, a digital repository hosted by the UNT Libraries. It has been viewed 143 times , with 4 in the last month . More information about this text can be viewed below.

Who

People and organizations associated with either the creation of this text or its content.

Provided By

UNT Libraries Government Documents Department

Serving as both a federal and a state depository library, the UNT Libraries Government Documents Department maintains millions of items in a variety of formats. The department is a member of the FDLP Content Partnerships Program and an Affiliated Archive of the National Archives.

Contact Us

What

Descriptive information to help identify this text. Follow the links below to find similar items on the Digital Library.

Description

Guidance issued by the Government Accountability Office with an abstract that begins "FISCAM presents a methodology for performing information system (IS) control audits of federal and other governmental entities in accordance with professional standards. This version supersedes the prior version, Federal Information System Controls Audit Manual: Volume I Financial Statement Audits, AIMD-12.19.6, January 1, 2001. The FISCAM is designed to be used primarily on financial and performance audits and attestation engagements performed in accordance with GAGAS, as presented in Government Auditing Standards (also know as the "Yellow Book"). The FISCAM is consistent with the GAO/PCIE Financial Audit Manual (FAM). Also, FISCAM control activities are consistent with NIST Special Publication 800-53 and all SP800-53 controls have been mapped to the FISCAM. The FISCAM, which is consistent with NIST and other criteria, is organized to facilitate effective and efficient IS control audits. Specifically, the methodology in the FISCAM incorporates the following: (1) A top-down, risk-based approach that considers materiality and significance in determining effective and efficient audit procedures; (2) Evaluation of entitywide controls and their effect on audit risk; (3) Evaluation of general controls and their pervasive impact on business process application controls; (4) Evaluation of security management at all levels (entitywide, system, and business process application levels); (5) A control hierarchy (control categories, critical elements, and control activities) to assist in evaluating the significance of identified IS control weaknesses; (6) Groupings of control categories consistent with the nature of the risk; and (7) Experience gained in GAO's performance and review of IS control audits, including field testing the concepts in this revised FISCAM."

Subjects

Language

Item Type

Identifier

Unique identifying numbers for this text in the Digital Library or other systems.

Collections

This text is part of the following collection of related materials.

Government Accountability Office Reports

The U.S. Government Accountability Office (GAO) is an independent, nonpartisan agency that works for the U.S. Congress investigating how the federal government spends taxpayers' money. Its goal is to increase accountability and improve the performance of the federal government. The Government Accountability Office Reports Collection consists of over 13,000 documents on a variety of topics ranging from fiscal issues to international affairs.

What responsibilities do I have when using this text?

When

Dates and time periods associated with this text.

Creation Date

  • February 2, 2009

Added to The UNT Digital Library

  • June 12, 2014, 7:50 p.m.

Usage Statistics

When was this text last used?

Yesterday: 0
Past 30 days: 4
Total Uses: 143

Where

Geographical information about where this text originated or about its content.

Place Name

Publication Place

Map Information

  • map marker Automatically generated Place Name coordinates.
  • map marker Automatically generated Publication Place coordinates.
  • Repositioning map may be required for optimal printing.

Mapped Locations

Interact With This Text

Here are some suggestions for what to do next.

Start Reading

PDF Version Also Available for Download.

Citations, Rights, Re-Use

United States. Government Accountability Office. Federal Information System Controls Audit Manual (FISCAM), text, February 2, 2009; Washington D.C.. (digital.library.unt.edu/ark:/67531/metadc297877/: accessed August 16, 2017), University of North Texas Libraries, Digital Library, digital.library.unt.edu; crediting UNT Libraries Government Documents Department.