Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Understanding internal control – identify and briefly discuss the components of internal
control including providing an example of each component)
1. The control environment- tone at the top
2. The entity’s risk assessment process – how management identify business risk
3. The information system and business processes relevant to financial reporting and
communication – how they measure and value transactions
4. Control activities – performance review, comparing actual to budgets, physical controls
and segregation of duties
5. The monitoring of controls – monitoring internal controls, management review of
reconciliation
Identify and briefly discuss and the elements of the control environment.
1. Management philosophy and operating cycle – attitude towards financial reporting
2. Organizational structure – key areas of responsibility
3. Operation of the board of directors, particularly the audit committee – BOD independent
4. Methods of assigning authority and responsibility – key resources in proper roles and key
accountabilities
5. Management monitoring methods of internal audit and personnel policies and practices –
key staff doing their jobs, succession planning
6. External influences – human resources and hiring practices
7. Computerized systems – commitment to competence
Why do we need to understand internal controls?
1. Plan audit strategy
2. A combined audit strategy is efficient
3. Assess areas where misstatements could occur
4. Internal controls that prevent and detect misstatements
5. Areas of significant risk – internal controls are required to be tested. ( fraud, related party
transaction, complex transactions)
Stopping risk assessment work – auditors may decide to stop evaluation work in phase 1 for
two reasons: control is too poor to justify reliance – control risk is set at maximum and goal is
audit effectiveness
Cost/benefit of reliance is not justified, although control is good, goal is audit efficiency.
Control Objectives
1. Validity – recorded transactions are valid and documented
2. Completeness – all valid transactions are recorded and none are omitted
3. Authorization – transactions are authorized according to company policy
4. Accuracy – transaction dollar amounts are properly calculated
5. Classification – transactions are properly classified in the accounts
6. Accounting – transaction accounting is complete
7. Proper period – transactions are recorded in the proper period
Limitations of internal control – Costs vs benefits, internal controls are geared towards
recurring transactions, management override and collusion
Discuss managements and the auditor’s responsibilities – evaluating existing internal controls
and assessing risk of material misstatement related to them. Find out what an organization does
to avoid potential errors and irregularities in seven categories.
Apply concepts in discussing the strengths and weaknesses in internal controls and Discuss
how an auditor documents internal controls
Documentation of the control structure shows the audit team’s understanding on internal controls
and the basis of decisions reached
A number of tools are available to the auditor for documentation:
1. Internal control questionnaires, formal interview using a checklist – easy to use
STRENGTH, questions may not capture full understanding WEAKNESS
2. Narratives – is a written description (describe you A/R process) STRENGTH, difficult to
update only as good as the information provided WEAKNESS
3. Flowcharts – takes a very complex organization and simplifies STRENGTH, time
consuming and requires specialized skills WEAKNESS
4. Company’s manual – the company knows their control best STRENGTH, they have to be
up to date WEAKNESS
Understand direction of control testing – in order to test for completeness or for existence, the
right population must be selected.
Population of relevant source documents -----completeness ------financial statements or other
Understand dual purpose procedure an audit procedure which is used simultaneously for
testing controls over s transaction and to provide substantive audit evidence about its amount.
LESS RELIABLE
External – internal documentation
Internal documentation with good internal controls)
Observation
Analytical procedures with specific data
LEAST RELIABLE
Internal documentation (if poor internal controls)
Inquiry
Broad analytical procedures
Continuity schedules
Examples: Detailed fixed asset schedule
Interest expense can often be recalculated using the average loan balance and the interest rate
and compared to the reported interest expense.
Discuss positive and negative confirmations definition, when they are used, when
confirmations are not required under CAS, process to prepare an accounts receivable
confirmation.
Positive confirmation requests a reply in all cases, whether the account balance is considered
correct or incorrect.
Negative confirmations request replies only if the account balance is considered incorrect.
Negative confirmations are typically sent out for a large balance of a similar population – small
dollar receivables where the A/R balance is large.
Using the work of an expert – understand the conditions the auditor will consider in using
the work of
1) an expert and impact on the auditor’s report
2) internal audit,
3) role of group auditor / component auditor
Chapter 10 Sampling
Understand why auditors sample?
1. Test controls (compliance tests) for assessing control risk
2. Test balances (substantive tests) to determine whether balances are materially misstated
Discovery Sampling
Terms used in sampling to uncover fraud
Set the EPDR=0 expected population deviation rate
Attribute Sampling in control testing this is the type of audit sampling in which auditors look
for the presence or absence of a control condition.
Dollar Unit Sampling Dollar-unit sampling (or sampling with probability proportionate to size)
is an attribute sampling method that can be used for sampling for tests of controls and for
sampling for tests of details of balances.
Chapter 11 &12
Chapter 12 –
Authorization purchases are made by purchasing departments or authorized purchasers.
Disbursements are authorized by an A/P department
Custody A receiving department receives the goods purchased and forwards them to the proper
departments. Custody of cash is the responsibility of personnel assigned to authorize and sign
cheques. Assess to blank documents should also be considered as an aspect of custody
Recording purchases should be recorded once the purchase order, receiving report, and vendor
invoice are matched. Disbursements are recorded when the cheques are prepared
Periodic Reconciliation periodic comparison of existing assets to recorded amounts in various
accounts occur in several ways
Discuss the existence assertion related to the revenues, receivables and receipts process
Critical management assertions existence and valuation, secondary assertions are ownership,
completeness and disclosure.
Discuss the completeness assertion related to the purchases, payables and payments process
When considering assertions and obtaining evidence about A/P and other liabilities, auditors
must put emphasis on the completeness and obligations assertions. Emphasis because companies
tend to be less concerned about recording expenses and liabilities. Auditors cannot rely entirely
on the management assertion of completeness.
Identify the terms lapping – this is to test for a manipulation of A/R entries to hide a theft or
fraud. kiting – this is building up of apparent balances in one or more bank accounts based on
uncollected cheques drawn against similar accounts in other banks. Kiting involves depositing
money from one bank account into another, using a hot cheque from another bank account before
the first cheque clears.
Discuss the importance of using analytical procedures at the end of the audit.
All miscellaneous, other or clearing accounts with credit balances should be analyzed.
1. Identify each important transaction and determine whether amounts are properly
classified
2. Miscellaneous accounts may contain accounting errors or incorrect classification
Type I requires adjustment. Did the condition exist at the B/S date? Condition YES
Type I – customer declares bankruptcy
Settlement of litigation
Type II requires disclosure. Did the condition exist at the B/S date? condition NO
Type II – stock issue
Sale of business segment
Loss of A/R transaction because auditee customer suffer a casualty – flood, fire
Auditing Procedures for the period subsequent to the balance sheet date
Auditing procedures of subsequent event:
1. Read the latest available interim financial statements, compare them with the financial
statements being reported on, and make any other comparisons considered appropriate in
the circumstances
2. Enquire of officers and other executives having responsibility for financial and
accounting matters about whether the interim statements have been prepared on the same
basis as that used for the statements under examination
3. Read the available minutes of meetings of shareholders, directors, and appropriate
committees; enquire about matters dealt with at meetings for which minutes are not
available
4. Request that the client send a letter to legal counsel enquiring about outstanding claims,
possible claims, and management’s evaluation, with the reply to be sent directly to the
auditor
5. Obtain written representations, dated as of the date of the auditor’s report, from
appropriate officials, generally the CEO and CFO about whether any events occurred
subsequent to the date of the financial statements that, in the officer’s opinion, would
require adjustment or disclosure in these statements
Discuss the general purpose, content and requirements for letter of enquiry and response
letters.
Purpose:
(a) To obtain written representations from management and, where appropriate, those charged
with governance that they believe that they have fulfilled their responsibility for the preparation
of the financial statements and for the completeness of the information provided to the auditor;
(b) To support other audit evidence relevant to the financial statements or specific assertions in
the financial statements by means of written representations if determined necessary by the
auditor or required by other CASs; and
(c) To respond appropriately to written representations provided by management and, where
appropriate, those charged with governance, or if management or, where appropriate, those
charged with governance do not provide the written representations requested by the auditor.
Define a management representation letter and discuss when and why one is required.
Written representation – A written statement by management provided to the auditor to confirm
certain matters or to support other audit evidence. Written representations in this context do not
include financial statements, the assertions therein, or supporting books and records.
Management’s written representation – the auditor should also direct questions to management
regarding contingencies, litigation, claims and assessments. Other examinations and procedures
may also lead the auditor to the discovery of contingencies
Although written representations provide necessary audit evidence, they do not provide
sufficient appropriate audit evidence on their own about any of the matters with which they
deal. Furthermore, the fact that management has provided reliable written representations does
not affect the nature or extent of other audit evidence that the auditor obtains about the
fulfillment of management's responsibilities, or about specific assertions.
Discuss subsequent events – an event that occurs after the year end. Auditor is required to
gather evidence up to and including date and audit report.
Types: type 1 adjustment of dollar amounts required and type 2 no adjustments but disclosure
required
Discuss subsequent discovery of fact
When an auditor learns of facts that are important after the audit report has been issued the
auditor must determine:
a. If the information is reliable
b. If these facts existed at the date of the report
Discuss and identify situations that need to be communicated to the Audit Committee
Auditor should review with management in advance information to be covered with the audit
committee
a. Communication with the audit committee can be either written or oral
b. The auditor will communicate all matters affecting approval of annual financial
statements with the board of directors
Discuss the independent auditor’s report, going concern, contingencies, EOM & OM par
(CAS 706), comparatives vs. corresponding figures
Audit Reports (also see chapter 16)
Write clear and concise audit procedures for tests of controls as they relate to control
objectives and substantive test as they relate to assertions.
Discuss the impact and effect of information technology on the audit / auditor (separate
slides, specific points regarding these slides were discussed in the class).
Discuss the general and application controls in a manual and computer environment
Chapter 3
Apply the Rules of Professional Conduct
Understand who the auditors owe a duty of care to
Apply the conditions to prove negligence to a question
Understand how auditors can limit legal liability