Information system risk auditing model based on process mining

Author

Huang Zuo-ming ; Cong Qiu-shi ; Hu Ji-bing

Author_Institution

Audit Inf. Eng. Key Lab., Nanjing Audit Univ., Nanjing, China

fYear

2012

fDate

20-22 Sept. 2012

Firstpage

39

Lastpage

45

Abstract

The basic function of audit is finding risk and preventing fraud from occurring as well as maintaining healthy, safe operation of enterprise and even the whole economy. By combining process mining techniques and risk management theory and using the technique of obtaining evidence on fraud risk as a trial, this paper takes business process risk auditing of process-aware information systems as its research goal. The paper aims to find out faults in the business process and audit evidence. It also aims to propose process mining-based risk auditing models of information systems from the perspective of workflow and in allusion to complicated business process. This paper identifies risk and implements continuous audit and monitor as well as searches risk auditing mechanisms and risk control method by using consistency analysis between actual business process and pre-designed business.

Keywords

auditing; data mining; fraud; information systems; risk management; audit evidence; business process; consistency analysis; fraud prevention; fraud risk; healthy operation; information system risk auditing model; process mining techniques; process-aware information systems; risk auditing mechanisms; risk control method; risk management theory; safe operation; Data mining; Immune system; Information systems; Monitoring; Organizations; Process control; continuous auditing; continuous monitoring; process mining; risk auditing mechanism;

fLanguage

English

Publisher

ieee

Conference_Titel

Management Science and Engineering (ICMSE), 2012 International Conference on

Conference_Location

Dallas, TX

ISSN

2155-1847

Print_ISBN

978-1-4673-3015-2

Type

conf

DOI

10.1109/ICMSE.2012.6414158

Filename

6414158