2004年CIA考试大纲
<P align=left> Part I - The Internal Audit Activity‘s Role in Governance, Risk, and Control</P><P> 第一部分:内部审计在治理、风险和控制中的作用</P>
<P> A.COMPLY WITH THE IIA‘S ATTRIBUTE STANDARDS (15 - 25 percent)(Proficiency Level)</P>
<P> 遵守国际内部审计师协会的属性标准(15-25%)(要求熟练掌握)</P>
<P> 1.Define purpose, authority, and responsibility of the internal audit activity.</P>
<P> 明确内部审计的宗旨、权限和职责</P>
<P> a. Determine if purpose, authority, and responsibility of internal audit activity are clearly documented/approved.</P>
<P> 确定内部审计的宗旨、权限和职责是否清楚地以书面形式记录/获得批准</P>
<P> b. Determine if purpose, authority, and responsibility of internal audit activity are communicated to engagement clients.</P>
<P> 确定内部审计的宗旨、权限和职责是否通报审计业务客户</P>
<P> c. Demonstrate an understanding of the purpose, authority, and responsibility of the internal audit activity.</P>
<P> 阐明内部审计的宗旨、权限和职责</P>
<P> 2.Maintain independence and objectivity.</P>
<P> 保持独立性和客观性</P>
<P> a. Foster independence</P>
<P> 加强独立性</P>
<P> 1) Understand organizational independence</P>
<P> 理解机构的独立性</P>
<P> 2) Recognize the importance of organizational independence</P>
<P> 认识机构独立性的重要性</P>
<P> 3) Determine if the internal audit activity is properly aligned to achieve organizational independence.</P>
<P> 确定内部审计部门是否正确设置以获得其独立性</P>
<P> b. Foster objectivity</P>
<P> 加强客观性</P>
<P> 1) Establish policies to promote objectivity</P>
<P> 制定政策以增进客观性</P>
<P> 2) Assess individual objectivity</P>
<P> 评估个人的客观性</P>
<P> 3) Maintain individual objectivity</P>
<P> 保持个人的客观性</P>
<P> 4) Recognize and mitigate impairments to independence and objectivity</P>
<P> 识别和减轻对独立性和客观性的损害</P>
<P> 3.Determine if the required knowledge, skills, and competencies are available.</P>
<P> 确定是否具备必要的知识、技能和胜任能力</P>
<P> a. Understand the knowledge, skills, and competencies that an internal auditor needs to possess.</P>
<P> 理解内部审计师需要具备的知识、技能和胜任能力</P>
<P> b. Identify the knowledge, skills, and competencies required to fulfill the responsibilities of the internal audit activity</P>
<P> 确定内部审计部门履行内部审计职责所必要的知识、技能和胜任能力</P>
<P> 4.Develop and/or procure necessary knowledge, skills and competencies collectively required by internal audit activity.</P>
<P> 开发和/或取得内部审计部门整体所需要的知识、技能和胜任能力</P>
<P> 5.Exercise due professional care.</P>
<P> 运用应有的职业审慎</P>
<P> 6.Promote continuing professional development.</P>
<P> 促进持续专业发展</P>
<P> a. Develop and implement a plan for continuing professional development for internal audit staff.</P>
<P> 为内部审计人员制定并实施持续专业发展计划</P>
<P> b. Enhance individual competency through continuing professional development.</P>
<P> 通过持续专业发展提高个人能力</P>
<P> 7.Promote quality assurance and improvement of the internal audit activity.</P>
<P> 促进内部审计的质量保证与改进</P>
<P> a. Establish and maintain a quality assurance and improvement program.</P>
<P> 建立和保持质量保证与改进项目</P>
<P> b. Monitor the effectiveness of the quality assurance and improvement program.</P>
<P> 监督质量保证与改进项目的效果</P>
<P> c. Report the results of the quality assurance and improvement program to the board or other governing body.</P>
<P> 将质量保证与改进项目的结果报告董事会或其他治理机构</P>
<P> d. Conduct quality assurance procedures and recommend improvements to the performance of the internal audit activity.</P>
<P> 实施质量保证程序并建议改善内部审计业绩</P>
<P> 8. Abide by and promote compliance with the IIA Code of Ethics</P>
<P> 遵守和促进对IIA《职业道德规范》的遵守</P>
<P> B.Establish a Risk-based Plan to Determine the Priorities of the Internal Audit Activity (15 - 25 percent)(Proficiency Level)</P>
<P> 以风险为基础制定计划确定内部审计重点(15-25%)(要求熟练掌握)</P>
<P> 1.Establish a framework for assessing risk.</P>
<P> 建立评估风险的框架</P>
<P> 2.Use the framework to:</P>
<P> 应用该框架:</P>
<P> a. Identify sources of potential engagements (e.g., audit universe, management request, regulatory mandate)</P>
<P> 确认潜在审计业务的来源(如:审计域,管理层的要求,法规要求)</P>
<P> b. Assess organization-wide risk</P>
<P> 评估组织范围内的风险</P>
<P> c. Solicit potential engagement topics from various sources</P>
<P> 从不同来源寻求潜在审计业务</P>
<P> d. Collect and analyze data on proposed engagements</P>
<P> 收集和分析拟审计业务的资料</P>
<P> e. Rank and validate risk priorities</P>
<P> 对风险高低进行排序和确认</P>
<P> 3.Identify internal audit resource requirements</P>
<P> 确认内部审计资源需求</P>
<P> 4.Coordinate the internal audit activity‘s efforts with:</P>
<P> 与以下方面协调内部审计工作:</P>
<P> a. External auditor</P>
<P> 外部审计师</P>
<P> b. Regulatory oversight bodies</P>
<P> 法规监督机构</P>
<P> c. Other internal assurance functions (e.g., health and safety department)</P>
<P> 其他内部保证部门(如,卫生健康和安全部门)</P>
<P> 5.Select engagements.</P>
<P> 选择审计业务</P>
<P> a. Participate in the engagement selection process</P>
<P> 参与审计业务选择过程</P>
<P> b. Select engagements.</P>
<P> 选择审计业务</P>
<P> c. Communicate and obtain approval of the engagement plan from board</P>
<P> 与董事会沟通以获得其对审计业务计划的批准</P>
<P> 6.Identify scope of engagements.</P>
<P> 确定审计业务范围</P>
<P> C.Understand the Internal Audit Activity‘s Role in Organizational Governance (10 - 20 percent)(Proficiency Level)</P>
<P> 理解内部审计在公司治理中的作用(要求熟练掌握)</P>
<P> 1.Obtain board‘s approval of audit charter</P>
<P> 获得董事会对审计章程的批准</P>
<P> 2.Communicate plan of engagements</P>
<P> 沟通审计业务计划</P>
<P> 3.Report significant audit issues</P>
<P> 报告重大审计事项</P>
<P> 4.Communicate key performance indicators to board on a regular basis</P>
<P> 定期向董事会报告主要的审计工作业绩指标</P>
<P> 5.Discuss areas of significant risk</P>
<P> 讨论重大风险领域</P>
<P> 6.Support board in enterprise-wide risk assessment</P>
<P> 支持董事会开展全公司的风险评估</P>
<P> 7.Review positioning of the internal audit function within the risk management framework within the organization.</P>
<P> 检查内部审计机构在组织内风险管理框架中的定位</P>
<P> 8.Monitor compliance with the corporate code of conduct/business practices</P>
<P> 监督遵守公司行为规范和商业惯例情况</P>
<P> 9.Report on the effectiveness of the control framework</P>
<P> 报告控制框架的效果</P>
<P> 10.Assist board in assessing the independence of the external auditor</P>
<P> 协助董事会评估外部审计师的独立性</P>
<P> 11.Assess ethical climate of the board</P>
<P> 评估董事会的道德环境</P>
<P> 12.Assess ethical climate of the organization</P>
<P> 评估组织的道德环境</P>
<P> 13.Assess compliance with policies in specific areas (e.g., derivatives)</P>
<P> 评估在特定领域遵守政策的情况(如,衍生产品)</P>
<P> 14.Assess organization‘s reporting mechanism to the board</P>
<P> 评估组织向董事会报告的机制</P>
<P> 15.Conduct follow-up and report on might response to regulatory body reviews</P>
<P> 对法规监督机构检查结果的落实情况进行跟踪并报告</P>
<P> 16.Conduct follow-up and report on might response to external audit</P>
<P> 对外部审计的结果进行跟踪并报告</P>
<P> 17.Assess the adequacy of the performance measurement system, achievement of corporate objective</P>
<P> 评估业绩测评系统的充分性和整体目标的实现情况</P>
<P> 18.Support a culture of fraud awareness and encourage the reporting of improprieties</P>
<P> 树立舞弊防范意识,鼓励报告不正当的行为</P>
<P> D.Perform Other Internal Audit Roles and Responsibilities (0 - 10 percent)(Proficiency Level)</P>
<P> 执行其他内部审计任务和职责(0-10%)(要求熟练掌握)</P>
<P> 1.Ethics/compliance</P>
<P> 道德规范/合规情况</P>
<P> a. Investigate and recommend resolution for ethics/compliance complaints</P>
<P> 对道德规范/合规情况的投诉进行调查并提出解决办法</P>
<P> b. Determine disposition of ethics violations</P>
<P> 确定违反道德规范的处理</P>
<P> c. Foster healthy ethical climate</P>
<P> 培养健康的道德氛围</P>
<P> d. Maintain and administer business conduct policy (e.g., conflict of interest)</P>
<P> 维护和管理业务行为政策(如,利益冲突)</P>
<P> e. Report on compliance</P>
<P> 报告合规情况</P>
<P> 2.Risk management</P>
<P> 风险管理</P>
<P> a. Develop and implement an organization-wide risk and control framework</P>
<P> 建立和实施一个全组织的风险和控制框架</P>
<P> b. Coordinate enterprise-wide risk assessment</P>
<P> 协调全公司的风险评估</P>
<P> c. Report corporate risk assessment to broad</P>
<P> 向董事会报告公司的风险评估</P>
<P> d. Review business continuity planning process</P>
<P> 检查经营持续性计划过程</P>
<P> 3.Privacy</P>
<P> 保密</P>
<P> a. Determine privacy vulnerabilities</P>
<P> 确定保密的薄弱环节</P>
<P> b. Report on compliance</P>
<P> 报告合规情况</P>
<P> 4.Information or physical security</P>
<P> 信息或物理安全</P>
<P> a. Determine security vulnerabilities</P>
<P> 确定安全的薄弱环节</P>
<P> b. Determine disposition of security violations</P>
<P> 确定对违反安全行为的处理</P>
<P> c. Report on compliance</P>
<P> 报告合规情况</P>
<P> E.Governance, Risk, and Control Knowledge Elements (15 - 25 percent)</P>
<P> 治理,风险,和控制知识要点(15-25%)</P>
<P> 1.Alternative models for corporate governance(Awareness Level)</P>
<P> 可选择的公司治理模型(要求了解)</P>
<P> 2.Alternative control frameworks(Awareness Level)</P>
<P> 可选择的控制框架(要求了解)</P>
<P> 3.Risk vocabulary and concepts(Proficiency Level)</P>
<P> 风险的词汇和概念(要求熟练掌握)</P>
<P> 4.Risk management techniques(Proficiency Level)</P>
<P> 风险管理技术(要求熟练掌握)</P>
<P> 5.Risk/control implications of different organizational structures(Proficiency Level)</P>
<P> 不同组织结构中的风险/控制内容(要求熟练掌握)</P>
<P> 6.Risk/control implications of different leadership styles(Awareness Level)</P>
<P> 不同领导风格下的风险/控制内容</P>
<P> 7.Change management(Awareness Level)</P>
<P> 变革管理</P>
<P> 8.Conflict management(Awareness Level)</P>
<P> 冲突管理</P>
<P> 9.Management control techniques(Proficiency Level)</P>
<P> 管理控制技术</P>
<P> 10.Types of control (preventive, detective, input, output)(Proficiency Level)</P>
<P> 控制类型(预防型、检查型、输入、输出)</P>
<P> F.Plan Engagements (15 - 25 percent)(Proficiency Level)</P>
<P> 策划审计业务(15-25%)</P>
<P> 1.Initiate preliminary communication with engagement client</P>
<P> 开展与审计业务客户的初步沟通</P>
<P> 2.Conduct a preliminary survey of the area of engagement</P>
<P> 对审计业务范围实施初步调查</P>
<P> a. Obtain input from engagement client</P>
<P> 从审计业务客户处获得信息</P>
<P> b. Perform analytical reviews</P>
<P> 进行分析性复核</P>
<P> c. Perform benchmarking</P>
<P> 进行基准比较</P>
<P> d. Conduct interviews</P>
<P> 实施面谈</P>
<P> e. Review prior audit reports and other relevant documentation</P>
<P> 查阅以前的审计报告和其他相关资料</P>
<P> f. Map processes</P>
<P> 绘制流程图</P>
<P> g. Develop Checklists</P>
<P> 编制检查清单</P>
<P> 3.Complete a detailed risk assessment of the area (prioritize or evaluate risk/control factors)</P>
<P> 完成相关领域的详细风险评估(对风险/控制因素进行排序或评估)</P>
<P> 4.Coordinate audit engagement efforts with</P>
<P> 与以下方面协调审计业务工作:</P>
<P> a. External auditor</P>
<P> 外部审计师</P>
<P> b. Regulatory oversight bodies</P>
<P> 法规监督机构</P>
<P> 5.Establish/refine engagement objectives and finalize the scope of engagement.</P>
<P> 建立/完善审计业务的目标,确定审计业务的范围</P>
<P> 6.Identify or develop criteria for assurance engagements (criteria against which to audit)</P>
<P> 确认或开发保证业务的标准(审计所依照的标准)</P>
<P> 7.Consider the potential for fraud when planning an engagement</P>
<P> 在策划审计业务时考虑舞弊的潜在可能</P>
<P> a. Be knowledgeable of the risk factors and red flags of fraud</P>
<P> 理解舞弊的风险因素和危险信号</P>
<P> b. Identify common types of fraud associated with the engagement area.</P>
<P> 确认与审计业务范围相关的一般舞弊类型</P>
<P> c. Determine if risk of fraud requires special consideration when conducting an engagement</P>
<P> 在实施审计业务时确定是否需要对舞弊的风险进行特殊考虑</P>
<P> 8.Determine engagement procedures.</P>
<P> 确定审计业务步骤</P>
<P> 9.Determine the level of staff and resources needed for the engagement</P>
<P> 确定审计业务所需的人员水平和资源</P>
<P> 10.Establish adequate planning and supervision of the engagement.</P>
<P> 建立对审计业务充分的计划和监督</P>
<P> 11.Prepare engagement work program.</P>
<P> 编制审计业务工作方案</P> Part II - Conducting the Internal Audit Engagement
<P> 第二部分–实施内部审计业务</P>
<P> A. Conduct Engagements (25 - 35 percent) (Proficiency Level)</P>
<P> 实施内部审计业务(25– 35%) (要求熟练掌握)</P>
<P> 1. Research and apply appropriate standards:</P>
<P> 研究和采用适当的标准</P>
<P> a. IIA Professional Practices Framework (e.g., Code of Ethics, Standards, Practice Advisories)</P>
<P> IIA专业实务框架(如,《职业道德规范》、《标准》、《实务公告》)</P>
<P> b. Other professional., legal, and regulatory standards</P>
<P> 其他专业的、法律的和法规的标准</P>
<P> 2. Maintain awareness of potential for fraud when conducting an engagement</P>
<P> 在实施审计业务时要保持防范潜在舞弊的意识</P>
<P> a. Notice indicators or symptoms of fraud</P>
<P> 注意舞弊的迹象和征兆</P>
<P> b. Design appropriate engagement steps to address significant risk of fraud</P>
<P> 设计适当的审计业务步骤以应对重大的舞弊风险</P>
<P> c. Employ audit tests to detect fraud</P>
<P> 采用审计测试以发现舞弊</P>
<P> d. Determine if any suspected fraud merits investigation</P>
<P> 确定是否应该对任何可疑的舞弊进行调查</P>
<P> 3. Collect data.</P>
<P> 收集数据</P>
<P> 4. Evaluate the relevance, sufficiency, and competence of evidence.</P>
<P> 评估证据的相关性、充分性和适当性</P>
<P> 5. Analyze and interpret data.</P>
<P> 分析和解释数据</P>
<P> 6. Develop workpapers.</P>
<P> 编制审计工作底稿</P>
<P> 7. Review workpapers.</P>
<P> 复核审计工作底稿</P>
<P> 8. Communicate interim progress.</P>
<P> 沟通中期进展情况</P>
<P> 9. Draw conclusions.</P>
<P> 得出结论</P>
<P> 10. Develop recommendations when appropriate.</P>
<P> 在适当的时候编制建议书</P>
<P> 11. Report engagement results</P>
<P> 报告审计业务结果</P>
<P> a. Conduct exit conference</P>
<P> 召开退出会议</P>
<P> b. Prepare report or other communication</P>
<P> 编制审计报告或其他沟通文件</P>
<P> c. Approve engagement report</P>
<P> 批准审计业务报告</P>
<P> d. Determine distribution of report</P>
<P> 确定审计报告的分发</P>
<P> e. Obtain management response to report</P>
<P> 取得管理层对报告的反馈意见</P>
<P> 12. Conduct client satisfaction survey.</P>
<P> 实施顾客满意度调查</P>
<P> 13. Complete performance appraisals of engagement staff.</P>
<P> 完成审计业务人员的业绩评价</P>
<P> B. Conduct Specific Engagements (25 - 35 percent) (Proficiency Level)</P>
<P> 实施具体审计业务(25 - 35 %)(要求熟练掌握)</P>
<P> 1. Conduct assurance engagements.</P>
<P> 实施保证业务</P>
<P> a. Fraud investigation.</P>
<P> 舞弊调查</P>
<P> 1) Determine appropriate parties to be involved with investiagion</P>
<P> 确定调查的适当对象</P>
<P> 2) Establish facts and extent of fraud (e.g., interviews, interrogations, and data analysis)</P>
<P> 证实舞弊事实和程度(如,面谈、讯问和数据分析)</P>
<P> 3) Report outcomes to apprpriate parties</P>
<P> 向适当方面报告结果</P>
<P> 4) Complete a process review to improve controls to prevent fraud and recommend changes</P>
<P> 对过程进行检查以改善预防舞弊的控制,并提出改进建议。</P>
<P> b. Risk and control self-assessment</P>
<P> 风险和控制自我评价</P>
<P> 1) Facilitated approach</P>
<P> 促进方法</P>
<P> (a) Client-facilitated</P>
<P> 审计业务客户自我促进</P>
<P> (b) Audit-facilitated</P>
<P> 审计促进</P>
<P> 2) Questionnaire approach</P>
<P> 调查问卷方法</P>
<P> 3) Self-certification approach</P>
<P> 自我认证方法</P>
<P> c. Audits of third parties and contract auditing.</P>
<P> 第三方审计和合同审计</P>
<P> d. Quality audit engagements.</P>
<P> 质量审计业务</P>
<P> e. Due diligence audit engagements.</P>
<P> 尽职调查审计业务</P>
<P> f. Security audit engagements.</P>
<P> 安全审计业务</P>
<P> g. Privacy audit engagements.</P>
<P> 保密审计业务</P>
<P> h. Performance (key performance indicators) audit engagements</P>
<P> 绩效(主要业绩指标)审计业务</P>
<P> i. Operational (efficiency and effectiveness) audit engagements</P>
<P> 经营(效率和效果)审计业务</P>
<P> j. Financial audit engagements.</P>
<P> 财务审计业务</P>
<P> k. Compliance audit engagements.</P>
<P> 合规性审计业务</P>
<P> l. Information technology (IT) audit engagements.</P>
<P> 信息技术(IT)审计业务</P>
<P> 1) Operating systems</P>
<P> 操作系统</P>
<P> (a) Mainframe</P>
<P> 大型机</P>
<P> (b) Workstations</P>
<P> 工作站</P>
<P> (c) Server</P>
<P> 服务器</P>
<P> 2) Application development</P>
<P> 应用软件开发</P>
<P> (a) Application authentication</P>
<P> 应用软件认证</P>
<P> (b) Systems development methodology</P>
<P> 系统开发方法学</P>
<P> (c) Change control</P>
<P> 变动控制</P>
<P> (d) End user computing</P>
<P> 终端用户计算</P>
<P> 3) Data and network communications</P>
<P> 数据和网络通讯</P>
<P> 4) Voice communications</P>
<P> 语音通讯</P>
<P> 5) System security (e.g., firewalls, access control)</P>
<P> 系统安全(如,防火墙、访问控制)</P>
<P> 6) Contingency planning</P>
<P> 应急计划</P>
<P> 7) Databases</P>
<P> 数据库</P>
<P> 8) Data center operations</P>
<P> 数据中心运行</P>
<P> 9) Web infrastructure</P>
<P> 网络基础设施</P>
<P> 10) Software licensing</P>
<P> 软件许可</P>
<P> 2. Conduct consulting engagements</P>
<P> 实施咨询业务</P>
<P> a. Internal control training</P>
<P> 内部控制培训</P>
<P> b. Business process review</P>
<P> 经营过程检查</P>
<P> c. Benchmarking</P>
<P> 基准比较法</P>
<P> d. Information technology (IT) and systems development</P>
<P> 信息技术(IT)与系统开发</P>
<P> e. Design of performance measurement systems</P>
<P> 业绩测评系统的设计</P>
<P> C. Monitor Engagement Outcomes (5 - 15 percent)(Proficiency Level)</P>
<P> 监督审计业务结果(5– 15%)(要求熟练掌握)</P>
<P> 1. Determine appropriate follow-up activity by the internal audit activity</P>
<P> 根据内部审计结果确定适当的跟踪活动</P>
<P> 2. Identify appropriate method to monitor engagement outcomes</P>
<P> 确认监督审计业务结果的适当方法</P>
<P> 3. Conduct follow-up activity</P>
<P> 实施跟踪活动</P>
<P> 4. Communicate monitoring plan and results</P>
<P> 沟通监督计划和结果</P>
<P> D. Fraud Knowledge Elements (5 - 15 percent)</P>
<P> 舞弊知识要点(5– 15%)</P>
<P> 1. Discovery sampling (Awareness Level)</P>
<P> 发现抽样(要求了解)</P>
<P> 2. Interrogation techniques (Awareness Level)</P>
<P> 讯问技术(要求了解)</P>
<P> 3. Forensic auditing (Awareness Level)</P>
<P> 司法鉴定审计(要求了解)</P>
<P> 4. Use of computers in analyzing data (Proficiency Level)</P>
<P> 利用计算机分析数据(要求熟练掌握)</P>
<P> 5. Red flags (Proficiency Level)</P>
<P> 危险信号(要求熟练掌握)</P>
<P> 6. Types of fraud (Proficiency Level)</P>
<P> 舞弊类型(要求熟练掌握)</P>
<P> E. Engagement Tools (15 - 25 percent)</P>
<P> 审计业务工具(15 - 25 %)</P>
<P> 1. Sampling (Awareness Level)</P>
<P> 抽样(要求了解)</P>
<P> a. Nonstatistical (judgmental)</P>
<P> 非统计(判断)</P>
<P> b. Statistical</P>
<P> 统计</P>
<P> 2. Statistical analyses (process control techniques) (Awareness Level)</P>
<P> 统计分析(过程控制技术)(要求了解)</P>
<P> 3. Data gathering tools (Proficiency Level)</P>
<P> 数据收集工具(要求熟练掌握)</P>
<P> a. Interviewing</P>
<P> 面谈</P>
<P> b. Questionnaires</P>
<P> 调查问卷</P>
<P> c. Checklists</P>
<P> 检查清单</P>
<P> 4. Analytical review techniques (Proficiency Level)</P>
<P> 分析性复核技术(要求熟练掌握)</P>
<P> a. Ratio estimation</P>
<P> 比率估计</P>
<P> b. Variance analysis (e.g., budget vs. actual)</P>
<P> 变量分析(如,预算与实际相比较)</P>
<P> c. Other reasonableness tests</P>
<P> 其他合理性测试</P>
<P> 5. Observation (Proficiency Level)</P>
<P> 观察(要求熟练掌握)</P>
<P> 6. Problem solving. (Proficiency Level)</P>
<P> 解决问题(要求熟练掌握)</P>
<P> 7. Risk and control self-assessment (CSA) (Awareness Level)</P>
<P> 风险和控制的自我评价(要求了解)</P>
<P> 8. Computerized audit tools and techniques (Proficiency Level)</P>
<P> 计算机审计工具和技术(要求熟练掌握)</P>
<P> a. Embedded audit modules</P>
<P> 嵌入式审计模块</P>
<P> b. Data extraction techniques</P>
<P> 数据提取技术</P>
<P> c. Generalized audit software (e.g., ACL, IDEA)</P>
<P> 通用审计软件(如,ACL, IDEA)</P>
<P> d. Spreadsheet analysis</P>
<P> 电子表格分析</P>
<P> e. Automated workpapers (e.g., Lotus Notes, Auditor Assistant)</P>
<P> 自动化工作底稿(如,Lotus Notes,Auditor Assistant)</P>
<P> 9. Process mapping including flowcharting (Proficiency Level)</P>
<P> 包括流程图的过程描述(要求熟练掌握)</P> PartⅢBusiness Analysis and Information Technology
<P> 第三部分:经营分析和信息技术</P>
<P> A. Business Processes (15–25 percent)</P>
<P> 经营过程(15-25%)</P>
<P> 1. Quality management (e.g., TQM)(Awareness Level)</P>
<P> 质量管理(如,全面质量管理)(要求了解)</P>
<P> 2. The International Organization for Standardization (ISO) framework(Awareness Level)</P>
<P> 国际标准化组织框架(要求了解)</P>
<P> 3. Forecasting(Awareness Level)</P>
<P> 预测(要求了解)</P>
<P> 4. Project management techniques(Proficiency Level)</P>
<P> 项目管理技术(要求熟练掌握)</P>
<P> 5. Business process analysis (e.g., workflow analysis and bottleneck management, theory of constraints)(Proficiency Level)</P>
<P> 经营过程分析(如,工作流程分析和瓶颈管理,约束理论)(要求熟练掌握)</P>
<P> 6. Inventory management techniques and concepts(Proficiency Level)</P>
<P> 存货管理技术与概念(要求熟练掌握)</P>
<P> 7. Marketing-pricing objectives and policies(Awareness Level)</P>
<P> 营销—定价目标与政策(要求了解)</P>
<P> 8. Marketing-supply chain management(Awareness Level)</P>
<P> 营销—供应链管理(要求了解)</P>
<P> 9. Human Resources(Proficiency Level)</P>
<P> 人力资源(要求熟练掌握)</P>
<P> a. Individual performance management and measurement</P>
<P> 个人业绩管理与测评</P>
<P> b. Supervision</P>
<P> 监督</P>
<P> c. Environmental factors that affect performance</P>
<P> 影响业绩的环境因素</P>
<P> d. Facilitation techniques</P>
<P> 促进方法</P>
<P> e. Personnel sourcing/staffing</P>
<P> 人员来源/配备</P>
<P> f. Training and development</P>
<P> 培训与发展</P>
<P> g. Safety</P>
<P> 安全</P>
<P> 10. Balanced Scorecard(Awareness Level)</P>
<P> 平衡计分卡(要求了解)</P>
<P> B. Financial Accounting and Finance (15 - 25 percent)</P>
<P> 财务会计与财务管理(15-25%)</P>
<P> 1. Basic concepts and underlying principles of financial accounting (statements, terminology, relationships)(Proficiency Level)</P>
<P> 财务会计的基本概念与基本原则(报表、术语、关系)(要求熟练掌握)</P>
<P> 2. Intermediate concepts of financial accounting (e.g., bonds, leases, pensions, intangible assets, R&D)(Awareness Level)</P>
<P> 中级财务会计概念(如,债券、租赁、退休金、无形资产、研发支出)(要求了解)</P>
<P> 3. Advanced concepts of financial accounting (e.g., consolidation, partnerships, foreign currency transactions)(Awareness Level)</P>
<P> 高级财务会计概念(如,合并、合伙、外币业务)(要求了解)</P>
<P> 4. Financial statement analysis(Proficiency Level)</P>
<P> 财务报表分析(要求熟练掌握)</P>
<P> 5. Cost of capital evaluation(Awareness Level)</P>
<P> 资本成本评估(要求了解)</P>
<P> 6. Types of debt and equity(Awareness Level)</P>
<P> 债务和权益的种类(要求了解)</P>
<P> 7. Financial instruments (e.g., derivatives)(Awareness Level)</P>
<P> 金融工具(如,衍生工具)(要求了解)</P>
<P> 8. Cash management (treasury functions)(Awareness Level)</P>
<P> 现金管理(出纳职能)(要求了解)</P>
<P> 9. Valuation models(e.g, inventory valuation and business valuation)(Awareness Level)</P>
<P> 估价模型(如,存货估价和企业估价)(要求了解)</P>
<P> 10. Business development life cycles(Awareness Level)</P>
<P> 企业发展生命周期(要求了解)</P>
<P> C. Managerial Accounting (10 - 20 percent)</P>
<P> 管理会计(10-20%)</P>
<P> 1. Cost concepts (e.g., absorption, variable, fixed)(Proficiency Level)</P>
<P> 成本的概念(如,全部成本、变动成本、固定成本)(要求熟练掌握)</P>
<P> 2. Capital budgeting(Awareness Level)</P>
<P> 资本预算(要求了解)</P>
<P> 3. Operating budget(Proficiency Level)</P>
<P> 运营预算(要求熟练掌握)</P>
<P> 4. Transfer pricing(Awareness Level)</P>
<P> 转移定价(要求了解)</P>
<P> 5. Cost-volume-profit analysis(Awareness Level)</P>
<P> 本—量—利分析(要求了解)</P>
<P> 6. Relevant cost(Awareness Level)</P>
<P> 相关成本(要求了解)</P>
<P> 7. Costing systems (e.g., activity-based, fixed)(Awareness Level)</P>
<P> 成本核算系统(如,作业成本系统、固定成本系统)(要求了解)</P>
<P> 8. Responsibility accounting(Awareness Level)</P>
<P> 责任会计(要求了解)</P>
<P> D. Regulatory, Legal, and Economics (5 -15 percent)(Awareness Level)</P>
<P> 规章,法律和经济(5-15%)(要求了解)</P>
<P> 1. Impact of government legislation and regulation on business</P>
<P> 政府法规对经营的影响</P>
<P> 2. Trade legislation and regulations</P>
<P> 贸易法规</P>
<P> 3. Taxation schemes</P>
<P> 税收体系</P>
<P> 4. Contracts</P>
<P> 合同</P>
<P> 5. Nature and rules of legal evidence</P>
<P> 法律证据的本质和规则</P>
<P> 6. Key economic indicators</P>
<P> 主要经济指标</P>
<P> E. Information Technology (IT) (30 - 40 percent)(Awareness Level)</P>
<P> 信息技术(要求了解)</P>
<P> 1. Control frameworks (e.g., SAC, COBIT)</P>
<P> 控制框架(如,SAC,COBIT)</P>
<P> 2. LAN, VAN, and WAN</P>
<P> 局域网,虚拟专用网和广域网</P>
<P> 3. Electronic funds transfer (EFT)</P>
<P> 电子资金转账</P>
<P> 4. e-Commerce</P>
<P> 电子商务</P>
<P> 5. Electronic data interchange (EDI)</P>
<P> 电子数据交换</P>
<P> 6. Functional areas of IT operations</P>
<P> 信息技术的功能分类</P>
<P> 7. Encryption</P>
<P> 加密</P>
<P> 8. Viruses</P>
<P> 病毒</P>
<P> 9. Information protection</P>
<P> 信息防护</P>
<P> 10. Evaluate investment in IT (cost of ownership)</P>
<P> 信息技术投资评估(拥有成本)</P>
<P> 11. Enterprise-wide resource planning (ERP) software (e.g., SAP R/3, Peoplesoft)</P>
<P> 企业资源计划(如,SAP R/3,Peoplesoft)</P>
页:
[1]