(ii) the entity's risk assessment process (iii) the information system relevant to financial reporting and communication (iv) control activities and (v) monitoring of controls. The statement recommends that dividing internal control into the above components provides a useful framework for the auditor to consider the client's internal control. At Black 'n Blue Ltd the following policies, procedures or conditions exist. 1.There is strong segregation of duties in the inventory cycle between receiving inventory, its custody, the issue of inventory and the recording of all movement in the perpetual inventory records. 2. The board of directors and senior management meet every six months to identify the challenges facing the company and how successfully they are being addressed. 3. The company's organizational structure is designed in such a way as to provide the board with a realistic chance of achieving its objectives on an ongoing basis. 4. The human resource department goes to great lengths to define the skills necessary for each job category and to recruit suitable personnel. 21 Page CS CamScanner 5.The financial director meets frequently with the financial accountant to ensure that information required to be disclosed by IFRS (the reporting standard used by the company) is properly accumulated, recorded and processed. 6. Access to the company's network is controlled by the use of comprehensive logical controls e.g. user IDs, user profiles, passwords, and is granted on a need to know basis. 7. The recording in the general ledger of sales, purchases etc, processed by the computer is achieved by passing journal entries. All journal entries are scrutinised and authorized by two senior financial accounting department employees. 8. All transactions keyed into the computer via terminals are subject to a wide range of input controls. 9. The internal audit department conducts frequent reviews of breakdowns in internal control and how these are corrected. 10. To enter Black 'n Blue Ltd's computer facility, warehouse and processing plant, an individual must place his thumb on a biometric scanner. YOU ARE REQUIRED TO: a) Briefly describe each of the components of internal control as identified by ISA 315. (10) b) Indicate to which component each of the policies, procedures or conditions listed in points 1 to 10 relate. (10) (2) c) Explain the difference between an automated control and a manual control. d) Suggest 4 ways in which computerization (IT) benefits a company's internal control. (4)