UNCW HomeBreaking News! Click here for details.

Internal Audit Office

Audit Manual


ELECTRONIC DATA PROCESSING
Focus  /  Chart of Accounts/ Policies and Procedures  /  Home Page
Home Page (UNCW)  /  ACUA Control Assessment Tool System Security Reports  /  Flowchart
1. Focus Reports
Focus is a report writer language which enables you to extract data from files and output in easy-to-read reports. Your FRS, SIS, HRS, and/or ADS System account must have Focus reporting capability to run Focus routines against that System. A Focus routine is the set of commands which tell the program which file to read, fields to select, which fields to print, the sort criteria, format to print in, and calculations, if any, that should be performed. Focus will be on your Main Menu if you have the capability; highlight and enter to get to the Focus Menu.
Focus routines may be created from scratch or existing routines modified using copy and edit. Focus routines can be saved for repeated use. Each routine is assigned a number, and you should update your Focus menu with the description of each routine by the respective number.
If creating from scratch, the field-names (i.e, ACCT_DGT1_SLO) and field descriptions (i.e., FS010) can be obtained from a printed version of the Focus Master File Descriptions, for the particular system, or by calling up applicable screens, cursoring to the field, and requesting Help. The best source is Focus Master File Descriptions, because these are organized by File, and generally, most of your requests will be built around fields in a single file. Using a combination of tools may get you the best results. Examples of files in FRS:
FSFILE - Subsidiary Ledger File
FVHIFL - Vendor/Voucher History File
POFILE - PO File
In the Internal Audit filing cabinet, under computer resources, there is a handbook for writing Focus routines that explains the most commonly used commands and the report writing rules. Classes are also offered in the Office of Information Technology.
To run or execute a Focus routine, you highlight Submit and enter on the Focus Menu. You will be presented with options. It is suggested if you are running a large file, that you select Tonight, so as not to slow down the system or force long wait times for persons needing short reports. There's a selection for where to print, and again, if it is a large file you should select the SYSPRINT queue for the high speed printer in the Office of Information Technology. As an option, you can send to a nonprint file, which you can then download into a database or spreadsheet to analyze or manipulate the data further.
If you do not have Focus capability on your account, you should make your request to the appropriate office that approves accounts for that System. If you want to copy a routine someone else is using, the owner of that report must give permission to the Office of Information Technology to have that routine copied to your Focus menu.

 Top of Page
2. Chart of Accounts/Administrative Policies and Procedures
Either of these can be accessed through the Internet.  To view the Chart of Accounts, go to https://busaff.uncw.edu/coa/chrtmenu.htm.   To view the university's administrative policies & procedures, go to http://www.uncw.edu/sp/admproc/.

 Top of Page
3. Home Page
The Internal Audit home page will link to internet sites that are useful for researching best practices, audit programs, internal control questionnaires, and audit techniques. We also maintain the questionnaires for the self assessment of the university, whcih is a review completed annually for the Office of the State Controller.

 Top of Page
4. Home Page (UNCW)
UNCW has a home page which links to the home pages of various university departments. These resources connect you to areas of the university, are in continual development, and highlight operations or people of interest to a broad constituency.

 Top of Page
5. ACUA Control Assessment Tool (CAT)
The ACUA Controls Assessment Tool is a software package designed to facilitate assessments of internal controls by department or function. This software is PC-based, as well as web-based on the ACUA website. The Transaction Cycles of the assessment are Organization and Management; Budgeting, Accounting, and Reporting; Purchasing, Contracting and Leasing; Expenditures (Other than Payroll); Personnel and Payroll; Inventory; Moveable Equipment; Revenues and Transfers of Expenses; Cash Receipts; Petty Cash; Unit Accounts Receivable Systems; Administration of Gifts, Contracts, and Grants; and Electronic Data Processing. Each cycle has a group of questions and suggested policies. You can complete the answers of the departments as you conduct audits or reviews in these areas.
The software is designed so you can manage the data (compile it) and update the data every time you re-visit an area without having to gather or input the information again. Questions can be added or changed to meet the institution's specific needs. It also prints out summaries and reports. Because much of this is duplicative of the State Auditors' Self Assessment questionnaires, no real data has been loaded into this program. Future uses may be contemplated.

 Top of Page
6. System Security Reports
The System Security Report is a batch routine. As indicated by its name, it is an SCT "System" report. On Security Report ZBA115, the select is By Screen. You can designate the System you are running the report for-FRS, SIS, HRS or ADS. The report outputs all operator ID's with access to the screen(s) you list (that fit that particular system). This is useful when you are auditing a department or activity that you know has routine access to FERPA data. The screens containing student grades, for example, could be listed under the header. When the report runs, all access-write or inquiry-is presented in the report so you can review in relation to known job function.
The report ZBA110 is for reviewing all operators and their access rights. This report lists, for every operator, the screens to which this operator has write access or inquiry access. Explicit denials would also show on this report. This report is currently run by the Office of Information Technology.  Sorts may be changed.
I = inquiry          A = write access          D = denied access

System reads in sequence.  It reads line one, two, three, and so on.  A3**=write access to all 300 screens.  If lines D381 & D382 precede the A3** line, then the person has write access to all 300 except, 381, 382.  However, if these D lines are placed after A3**, system has already given access to all and therefore D lines are not being read.

 Top of Page
7. Flowchart
The allCLEAR software program designs and generates flowcharts. An explanation of a basic flowchart follows:
What it is: A drawing of the steps of a work process to show their sequence.
What can it be used for:
  • Understanding and improving the work process.
  • Creating a common understanding of how work should be done.
How to do it: The main elements of simple flowchart are:
Statement Start Stop Direction of Flow If Choices Case
  • Step 1. Gather a group of people who represent the various parts of the process.
  • Step 2: Decide where the process begins and ends.
  • Step 3: Brainstorm the main activities and decision points in the process.
  • Step 4: Arrange these activities and decision points in their proper order, using arrows to show direction of flow.
  • Step 5: As needed, break down the activities to show their complexity.
Keep in Mind:
  • Flowcharts only make sense when there is a standard flow to the work process.
  • When the process is complex, draw a simple sequence of events first; then make up an additional flowchart to show the details within complex portions of the work.
  • Flowcharts can be done from top to bottom or from side to side.
                                                                                                                                                                  Top of Page

Back to Audit Manual - Table of Contents