Roadmap to Data Integrity: Practical Data Validation, Verification, and Security Controls



Similar documents
Data Quality Assessment. Approach

Framework for Data warehouse architectural components

Data Management II. (A Researcher's Perspective) Yanyun Wu, M.D., Ph.D. Yale University School of Medicine

VICTORIAN CARDIAC OUTCOMES REGISTRY. Data Management Policy

10426: Large Scale Project Accounting Data Migration in E-Business Suite

FISCAL PLAN RESPONSE TO THE AUDITOR GENERAL

White Paper: FSA Data Audit

The PMP Application Process

Internal Audit Report. Lee County Port Authority: Purchasing Card Compliance Audit

Employee Off-Cycle Review

CHAPTER B YEAR END CLOSING OVERVIEW

Hertsmere Borough Council. Data Quality Strategy. December

Session 190 PD, Model Risk Management and Controls Moderator: Chad R. Runchey, FSA, MAAA

Internal Model Approval Process (IMAP) Contents of Application (CoA) Template. August 2011 Version 1.0

Audit of NSERC Award Management Information System

Document Management Operations Audit Checklist

How To Digitize The Management Information System (Mis)

TTC AUDIT COMMITTEE REPORT NO.

Accounts receivable/credit & collections audit program

Problems and Measures Regarding Waste 1 Management and 3R Era of public health improvement Situation subsequent to the Meiji Restoration

Jerry Clark VP and Sr. Region Manager, Fiserv Risk & Compliance

PO Audit The AXA PPP healthcare Project Data Health Check Tool

Market Data Manager Overview

Solvency II Data audit report guidance. March 2012

National Occupational Standards in Accounting

UNIVERSITY OF LEICESTER, UNIVERSITY OF LOUGHBOROUGH & UNIVERSITY HOSPITALS OF LEICESTER NHS TRUST JOINT RESEARCH & DEVELOPMENT SUPPORT OFFICE

PERFORMANCE DATA QUALITY STRATEGY

2.2 INFORMATION SERVICES Documentation of computer services, computer system management, and computer network management.

QA Transactions and Reports

AP Automation Checklist

Finance Process Documents - Staff and Pensions Payroll

Timor- Leste. United Nations Development Programme. Vacancy Announcement

Registrations and Awards Online System User Guidance

Internal Control Deliverables. For. System Development Projects

Salesforce Certified Data Architecture and Management Designer. Study Guide. Summer 16 TRAINING & CERTIFICATION

SUBSIDIARY LEDGER MANAGEMENT AND INTERNAL CONTROLS

MICHIGAN AUDIT REPORT OFFICE OF THE AUDITOR GENERAL. Doug A. Ringler, C.P.A., C.I.A. AUDITOR GENERAL ENTERPRISE DATA WAREHOUSE

SEAMO Billing Services: An Overview. Updated June 05, 2015

Feature. A Higher Level of Governance Monitoring IT Internal Controls. Controls tend to degrade over time and between audits.

DATA AUDIT: Scope and Content

Chapter 2. Concepts and Tasks

Royal Borough of Kensington and Chelsea. Data Quality Framework. ACE: A Framework for better quality data and performance information

Office of Financial Research Constituent Relationship Management Tool Privacy Impact Assessment ( PIA ) April, 2015

EQR PROTOCOL 4 VALIDATION OF ENCOUNTER DATA REPORTED BY THE MCO

Sarbanes-Oxley Compliance A Checklist for Evaluating Internal Controls

Department of the Interior Privacy Impact Assessment Template

RFP EXHIBIT J. Corporations and Charities System. Conceptual Solution Architecture Model

AGA Kansas City Chapter Data Analytics & Continuous Monitoring

Building a Data Quality Scorecard for Operational Data Governance

Quality Assurance and Data Management Processes

IT Application Controls Questionnaire

Office of the Auditor General Performance Audit Report. Statewide Oracle Database Controls Department of Technology, Management, and Budget

Date Submitted: October 1, Unit: The Office of Institutional Research, Planning, and Effectiveness I. MISSION STATEMENT

Randy Steinberg Migration Technologies

3. Current Auditing Computerized Tools

Supply Chain Finance WinFinance

Data Quality Policy. Appendix A. 1. Why do we need a Data Quality Policy? Scope of this Policy Principles of data quality...

University of Hawai i Executive Policy on Data Governance (Draft 2/1/12)

Master Data Management Decisions Made by the Data Governance Organization. A Whitepaper by First San Francisco Partners

A Business Case for Fixing Provider Data Issues

M&E Development Series

HYPERION MASTER DATA MANAGEMENT SOLUTIONS FOR IT

Hardware Inventory Management Greater Boston District

The Data Quality Continuum*

Point of View: FINANCIAL SERVICES DELIVERING BUSINESS VALUE THROUGH ENTERPRISE DATA MANAGEMENT

Technical. Overview. ~ a ~ irods version 4.x

Attestation of Identity Information. An Oracle White Paper May 2006

BUPA MEDICAL GAP SCHEME

Journey Management Journey Management

7 Directorate Performance Managers. 7 Performance Reporting and Data Quality Officer. 8 Responsible Officers

August 2014 Report No

GENPACT partners with Automation Anywhere to deliver Robotic Process Automation (RPA) An Automation Anywhere Case Study

CHAPTER 7 Data Submission for Batch Upload Systems

SharePoint Governance Execution

ECM+ Maturity Model. Defining the corporate benchmark against best practices

Existing Technologies and Data Governance

CREDIT CARD PROCEDURES OBJECTIVE..2 OVERVIEW..2 DEPARTMENT S CREDIT CARD PROCEDURES...3 FINANCIAL SERVICES PROCEDURES... 5 BANK RECONCILIATION 6

ORGANISATIONAL PERFORMANCE MANAGEMENT SYSTEM

ORACLE HYPERION DATA RELATIONSHIP MANAGEMENT

Financial Close Optimization: Five Steps for Identifying and Resolving Systems and Process Inefficiencies

DATA QUALITY POLICY April 2010 Updated January

Getting to Yes: Justifying Your AP Automation Project

Customer Tracking and Fulfillment

Members of the Civil Service Commission. Matt Doyle, Director of Human Resources Alex Souto, Human Resources Associate

Transcription:

Roadmap to Data Integrity: Practical Data Validation, Verification, and Security Controls Emory Internal Audit Scott Stevenson, Chief Audit Officer Deepa Pawate, Associate Chief Audit Officer Kristy Habib, Manager, University Internal Audit 1

What is Data Integrity? 2

Data Integrity Multiple Dimensions Emory Policy Institutional Data Management says that data integrity is composed of: Accuracy: Data free from errors Completeness: All values are present. Consistency: Data satisfy a set of definitions or constraints that applied and maintained in the same manner across reports Reliability: Independent custodians or users obtain consistent results when applying the same definitions or constraints. Timeliness: Data are available when required. 3

Why Does Data Integrity Matter? Upfront & Ongoing Effort Risks of Data Integrity Issues 4

Examples of Data Integrity & Quality Issues Duplicate Records Data Collected Does not Match Context and Definitions Data Quality Spelling Errors Data Collected is Incorrect at Point of Entry/Feed Out of Date Info 5

Promoting Data Integrity = Validation + Verification + Security (1) Data validation The computer checks if the data is correct and makes sense (e.g., correct format, length, etc.). (2) Data verification and approval People step-in to confirm that the data is reliable and accurate (e.g., reported data matches source data, etc.). (3) Data security People limit access to data sets, systems, and spreadsheets to only those with a need to know (e.g. formal user access request process, access terminations, audit logs). 6

Data Integrity Key Controls for Your Unit/Department (1) Document your unit s data management procedures and controls: Data validation, Data verification, and Data security * Include source systems for data, where data is downloaded into (e.g., spreadsheet), who has access, how data is manipulated/edited to meet context of questions being asked, who reviews/approves it before submission to report preparer (e.g., Institutional Research) for reporting, etc. (2) Carry-out and implement unit-level controls. (3) Maintain evidence of unit-level controls. 7

(2) Carry-out validation, verification, and security controls: Data Milestone Examples of controls validation, verification, and security (1) Before, during and after data input/capture (2) After extraction from storage (3) After compilation for reporting purposes (a) Control access to spreadsheets and data systems (b) Enable system/spreadsheet audit logs to track changes (c) System/spreadsheet edit checks (prevent wrong data element type, range, etc.) (d) Designate independent reviewers to confirm correct capture (e) For automated feeds, establish a transfer log/record count check (f) Perform reconciliation manual or automated - between data extracted versus data source (entire population or sampling) (g) Agree on context and usage of data (Institutional Research and data owner/supplier) (h) Retain supporting data sets/results that substantiate reported values (i) Establish documented unit-level (data owner/supplier) data verification and approval process, which is relied upon by the report preparer (e.g., Institutional Research, who performs a direct query of your data OR receives a spreadsheet/data file from your unit). (4) Published data (j) Perform a post-publication review that data published was the data agreed upon. 8

(3) Maintain evidence of unit-level data validation, verification, and approval process Examples of evidence include: Unit-level approval support (e.g., emails string from designated department level reviewers/approvers) Hardcopy sign-off approvals on forms maintained, etc. Approvals should be supported by retention of query and results supporting the submitted data. 9

Questions? 10

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information