Abstract:
The basic function of audit is finding risk and preventing fraud from occurring as well as maintaining healthy, safe operation of enterprise and even the whole economy. By combining process mining techniques and risk management theory and using the technique of obtaining evidence on fraud risk as a trial, this paper takes business process risk auditing of process-aware information systems as its research goal. The paper aims to find out faults in the business process and audit evidence. It also aims to propose process mining-based risk auditing models of information systems from the perspective of workflow and in allusion to complicated business process. This paper identifies risk and implements continuous audit and monitor as well as searches risk auditing mechanisms and risk control method by using consistency analysis between actual business process and pre-designed business.