a. Briefly describe three strategies for testing internal controls when information technology is used for significant accounting processing.
b. Identify two strategies that might be used to support a low control risk assessment. Discuss the difference between the two strategies.
c. Discuss a third audit strategy that might be used to assess control risk at a high level. Explain why this strategy will not support a low control risk assessment.