Domain VI - Control Theory and Application (20 - 25%)
A. Corporate governance, control theory, and models (P)
1. Accountability and responsibility for control
2. Defining control
3. Relationship between risk, control, and objectives
B. Methods for judging and communicating the overall effectiveness of the system
of internal control (P)
1. Using CSA to support management's assertion on controls
C. Relationship between informal and formal controls (P)
D. Techniques for evaluating formal controls (manual or automated) (P)
E. Techniques for evaluating informal controls/control environment (P)
F. Control documentation techniques (P)
1. Flowcharting
2. Business process mapping
3. Control charts
4. Control questionnaires
5. Internal Control over financial reporting
G. Control design and application (P)
1. Defining control objectives
2. Control design (e.g., preventive, detective, corrective; informal, formal)
3. Cost/benefits
H. Techniques for determining control track record for the organization (e.g., reviews,
audits, other assessments) (A)
P = Candidates must exhibit proficiency (thorough understanding; ability to apply concepts) in these topic areas.
A = Candidates must exhibit awareness (knowledge of terminology and fundamentals) in these topic areas.
