December 2004
 Central Maryland ISACA Chapter 
Monthly Meeting

Internal Controls in an Electronic Environment. This session will explore the tremendous changes and trends affecting internal controls in the environments that auditors and accountants must deal with on a daily basis.  Mr. Hoshall will examine changes, trends and associated risks that dramatically affect the traditional relationships among individuals, groups, and organizations.  He will discuss the AICPA top technology issues, along with the radical changes that are taking place in the "e" section of the dictionary. He will outline what he considers to be the top three internal control concerns, plus the top 10 worst security mistakes, as identified by the SANS Institute.  He will conclude by examining the impact of all of these issues on the auditor and accountant, including their mission, organization, methodology and individual challenges.  Discussion topics include:

* The Universal Definition of Internal Control
* Historic Assumptions
* Changes, Trends and Risks
* The AICPA Top Technology Issues
* The "e" Section of the Dictionary
* Top Three Internal Control Concerns
* The 10 Worst Security Mistakes
* Impact on Auditors and Accountants
 

Fraud Detection Using Data and Digital Analysis.  This session will demonstrate how you can use data and digital analysis techniques to identify and quantify fraud involving computerized data.  Mr. Hoshall will discuss and, in some cases, demonstrate techniques to detect fraud by analyzing relationships and correlating multiple risk factors with areas of vulnerability in order to identify anomalies. Discussion topics include:

* Basic fraud concepts
* Why auditors don't detect fraud
* The five-step approach to fraud detection
* Identifying exceptional items
* Performing analytical reviews
* Checking calculations
* Cross matching data between systems
* Testing for completeness - gaps and duplicates
* Performing digital analysis (Benford's Law)

Speaker Profile:

Mr. Hoshall is the Principal of Hoshall Associates, an Information Technology (IT) Audit Training and Consulting firm, located in Fairfax, Virginia.  Mr. Hoshall has over 35 years of extensive audit experience, with over 24 years directing IT reviews, audits and technical support.  Prior to founding Hoshall Associates in September 2001, he was senior manager and director of the IT Division at Brown & Company CPAs, PLLC.  He previously served as director of the IT Audit and Technical Support Divisions in the Offices of Inspector General of the Departments of Veterans Affairs and Transportation.

Mr. Hoshall teaches multiple IT audit-related courses for United States Department of Agriculture Graduate School, Government Audit Training Institute (GATI), and the AICPA.  He is a lead instructor in the Mid-Atlantic area for Interactive Data Extraction and Analysis (IDEA) software and instructs portions of Washington, D.C.-based preparation courses for the Certified Internal Auditor and Certified Information Systems Auditor examinations and is a frequent presenter at professional symposia and conferences.

Mr. Hoshall served on and chaired two international boards (Education and Research) of the Information Systems Audit and Control Association.  He is a Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information Technology Professional (CITP), Certified Computing Professional (CCP) - Systems Development, and a Certified Government Financial Manager (CGFM).

DIRECTIONS: From South: Take Rt. I95 North to 695 East towards Glen Burnie. Follow 695 to Exit 8, N. Hammonds Ferry Road. Bear right and Snyder’s just off of exit From North: Take I95 South to 695 East towards Glen Burnie. Follow 695 to Exit 8, N. Hammonds Ferry Road. Bear right and Snyder’s just off of exit. If you come from the Parkway North or South, take 695 West to Towson, Take Exit 8, Nursery Rd, (one exit from Parkway), Bear right at end of exit, go under 695, turn right onto N. Hammonds Ferry Rd. Snyder’s 2 blocks on right.