In , on 01/07/2009
at 07:59 AM, Walt Farrell said:
>Thus, it was not -our- management making that policy, but an outside body
>making the policy, and we had to adhere to it or show why it should not
>apply to us.
The real question is what you do when you are complying with the published
exter
day, January 07, 2009 8:14 AM
To: IBM-MAIN@bama.ua.edu
Subject: Re: Auditors (was: Survey says...)
In <5411f4eec9c68f4ca6f78821e685165a027dd...@htxmail.jhacorp.com>, on
01/06/2009
at 04:11 PM, Hal Merritt said:
>In many parts of the world, auditor behavior is spelled out in ISO
9000.
In <5411f4eec9c68f4ca6f78821e685165a027dd...@htxmail.jhacorp.com>, on
01/06/2009
at 04:11 PM, Hal Merritt said:
>In many parts of the world, auditor behavior is spelled out in ISO 9000.
"Crap is okay as long as you document that it is crap."
--
Shmuel (Seymour J.) Metz, SysProg and JO
--
Audits, especially external audits, carry a lot of weight. The
enforcement does not come from the auditors, but the audits do not seem
to be questioned. And the audit groups seem to have their own SME which
in some cases really stretch the
On 7 Jan 2009 06:00:59 -0800, wfarr...@us.ibm.com (Walt Farrell)
wrote:
>While I generally support the position that auditors should not "make
>policy", having worked at a national bank previously I think there is an
>aspect of this discussion that no one has mentioned yet.
But many times policie
On Wed, 7 Jan 2009 14:24:47 +, Ted MacNEIL wrote:
>>There can be different levels of "policy". For example, when the national
bank examiners (aka, "auditors") visited us they conducted audits according
to the policies established by the national body that chartered/insured our
>bank.
>
>It's
>There can be different levels of "policy". For example, when the national
>bank examiners (aka, "auditors") visited us they conducted audits according to
>the policies established by the national body that chartered/insured our
bank.
It's the same in Canada.
But, the examiners don't make the p
On Wed, 7 Jan 2009 06:59:45 -0600, Chase, John wrote:
>Indeed. If management merely "rubber-stamps" whatever recommendations
>or suggestions auditors make, it certainly can create the appearance
>that the auditors are "running the show". That doesn't change the facts
>that management makes polic
> -Original Message-
> From: IBM Mainframe Discussion List On Behalf Of Hal Merritt
>
> In many parts of the world, auditor behavior is spelled out in ISO
9000.
> And, as I recall, that behavior is much like Ted's posts. Not so in
the
> US, it would seem. I wonder if that would account for
itors. But
they are embracing it and ramming it down any handy throat.
-Original Message-
From: IBM Mainframe Discussion List [mailto:ibm-m...@bama.ua.edu] On
Behalf Of Ted MacNEIL
Sent: Tuesday, January 06, 2009 3:06 PM
To: IBM-MAIN@bama.ua.edu
Subject: Re: Auditors (was: Survey says...
On Tue, 6 Jan 2009 21:06:01 +, Ted MacNEIL
wrote:
>>I guess our mangement forgot to read the definitions. And come to
think of it, that has been true in every shop I've seen.
>
>Yes. But, who carries the hammer?
The management that called for the audits in the first place.
They have no way
>I guess our mangement forgot to read the definitions. And come to think of it,
>that has been true in every shop I've seen.
Yes. But, who carries the hammer?
>Audits, especially external audits, carry a lot of weight. The enforcement
>does not come from the auditors, but the audits do not see
On Tue, 6 Jan 2009 20:37:06 +, Ted MacNEIL
wrote:
>...
>>> 2. Auditors don't approve; they report on compliance.
>
>>Maybe that's how it works where you live. It is different elsewhere.
>
>True auditors just report on compliance.
>SME's define.
>Compliance officers enforce.
>
>Anything else
13 matches
Mail list logo
