Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Chapter 1
Overview of Auditing Process and Pre-Engagement Activities
Topic chapter discusses the definition of audit, phases of audit and the different
considerations of auditor in accepting an audit engagement.
Learning Objectives:
After studying this chapter, you should be able to:
1. Describe what an audit is.
2. Enumerate and describe different phase of an audit.
3. Identify and explain pre-engagement activities.
4. Identify the different considerations in accepting audit.
Audit
An audit is a systematic process of objectively obtaining and evaluating evidence
regarding assertions about economic actions and events ascertain the degree of
correspondence between these assertions and established criteria and communicating
the results thereof. (American Accounting Association)
Audit Process
The audit process is the sequence of different activities involved in an audit. This
process normally includes the following steps:
Phase Description
1. Pre-engagement This phase will require a decision from the auditor
whether or not to accept new client or continue
relationship with an existing one. This process
would require evaluation not only of the auditor’s
qualification, but also the integrity and auditability
of the client’s financial statements.
Primary objective: To minimize the likelihood of
being associated to a client whose management
locks integrity
2. Audit Planning Audit planning involves the development of an
overall audit strategy, audit plan and audit
program. The auditor usually obtained more
detailed knowledge about the client’s business
and industry in order to understand the
transaction and events affecting the financial
statements.
Preliminary assessment of risk and materiality is
also made during this phase.
2
Primary objective: To assess the different risks associated
with the audit to determine the nature, timing and extent of
further audit procedures necessary to be performed.
3. Considerations of Since entity’s internal control directly affects the reliability of
Internal Controls the financial statements. It is appropriate to study and
evaluate these controls.
Primary objective: To establish a basis for reliance on
internal controls, in determining the nature, timing and extent
of audit procedures to be performed.
4. Evidence Using the information obtained in audit planning and
gathering consideration of internal controls, the auditor perform
(substantive testing) substantive test to determine whether entity’s financial
statements are presented fairly in accordance with financial
reporting standards. Substantive procedures could either be
analytical procedures or test of details of transaction balances.
This phase will always be performed by the auditor.
Primary objective: To ascertain the degree of
correspondence between the financial statements prepared by
client’s management and the financial reporting framework.
With this, the auditor will be able to conclude whether or not
the financial statements are presented fairly in accordance
with financial reporting standards.
5. Completing the Wrapping-up procedures are performed; conclusion reached
audit are reviewed; and an overall opinion is formed during this
phase.
Primary objective: To assist the auditor in assessing
conclusion reached is consistent with evidence gathered
6. Issuance of the In this stage, auditor prepares and issues audit report which
audit report describes the scope of the audit and states the auditor’s
conclusion regarding the fairness of the financial statements.
Primary objective: To communicate the conclusions reached
by the auditor to various intended users.
7. Post-audit After completion of the audit engagement, auditor performs
responsibilities procedures that will enable him/her identify areas for
improvement in the current and future engagements.
Primary objective: To assess and evaluate the quality of
services delivered by the engagement team.
3
Pre-Engagement
Acceptance of an engagement
In making a decision whether to accept or reject an engagement, an auditor should
consider the following:
1. Its competence;
2. Its independence;
3. Its ability to serve the client properly; and
4. The integrity of the prospective client’s management.
Note: Every time communication is made to parties other than the client, the auditor
shall seek permission from the client and document the item discussed.
Audit of Components
When the auditor of a parent entity is also the auditor of its subsidiary, branch, or
division (component), the factors that influence the decision whether to send a separate
engagement letter to the component include the following:
Who appoints the component auditor
Legal requirements in relation to audit appointments
5
Degree of Ownership
Whether a Separate auditor’s report is to be issued on the component; and
Degree of Independence of the component’s management from the parent
entity.
Recurring Audits
On recurring audits, the auditor should consider whether circumstances require the
terms of the engagement to be revised and whether there is a need to remind the client
of the existing terms of the engagement. The auditor may decide not to send a new
engagement letter each period.
However, the following factors may make it appropriate to send a new letter:
Any indication that the client misunderstands the objective and scope of the
audit
Any revised or special terms of engagement
A recent change of management, board of directors or ownership.
A significant change in ownership
A significant change in nature or size of the client’s business.
A change in legal or regulatory requirements.
A change in financial reporting framework adopted in the preparation of the
financial statements.
A change in other reporting requirements.
6
Circumstance Justifiable
1. Change in circumstances affecting the need for the service √
2. A misunderstanding as to the nature of an audit or related services √
originally requested.
3. A restriction on the scope of the engagement, whether imposed by ×
management or caused by circumstances
4. If the change relates to information that is incorrect, incomplete or ×
otherwise unsatisfactory
5. the auditor is unable to obtain sufficient appropriate audit evidence ×
regarding assertions
Circumstance that could lead to Change in Engagement
15
Chapter 2
AUDIT PLANNING – INTRODUCTION AND RISK ASSESSMENT PROCEDURES
Topic Overview:
This chapter discusses the audit planning process, audit strategy and risk assessment
procedures.
Learning Objectives:
After studying this chapter, you should be able to:
1. Explain audit planning
2. Identify and explain the major audit planning activities.
3. Identify considerations in establishing audit strategy.
4. Describe the difference of audit strategy, audit plan and audit program
5. Identify the activities in risk assessment.
6. Describe audit risk and its components and how will it affect the audit
procedures.
The nature and extent of planning activities will vary according to the (SECTA)
Previous Experience with the entity of key engagement team members (partner,
manager, and staff-in-charge)
16
Audit Plan
After the overall audit strategy has been established, an audit plan can be developed to
address the various matters identified in the overall audit strategy, taking into account
the need to achieve the audit objectives through the efficient use of the auditor’s
resources.
The audit plan is more detailed than the overall audit strategy in that it includes the
nature, timing and extent of audit procedures to be performed by engagement team
members. These procedures may be documented in audit program.
17
The auditor program shall serve as a:
Set of instructions to assistants involved in the audit; and
Means to control and record the proper execution of the work.
The audit program also contains:
The auditor objectives for each area; and
A time budget in which hours are budgeted for the various audit areas or
procedures.
Changes to Planning Decision during the Course of the Audit
The overall audit plan and the audit program should be revised as necessary during the
course of the audit. Planning is continuous throughout the engagement because of
changes in condition or unexpected results of audit procedures.
Planning documentation
The auditor shall document:
a. The overall audit strategy
b. The audit plan
c. Any significant changes made during the audit engagement to the overall
strategy or audit plan, and the reasons for such changes
18
DIRECTION, SUPERVISION AND REVIEW
The auditor should plan the nature, timing and extent of direction and supervision of
engagement team members and review of their work.
The nature, timing and extent of the direction and supervision of engagement team
members and review of their work vary depending on many factors, including
The assessed risks of material misstatement;
Size and complexity of the entity
The area of audit and
Capabilities and competence of personnel performing the audit work.
Materiality
Information is material if its omission or misstatement could influence the economic
decisions of users taken on the basis of the financial statements.
20
Materiality depends on the size of the item or error judge in the particular
circumstances of its omission or misstatement.
The concept of materiality recognizes that some matters, but not all, are important for
fair presentation of the financial statements in conformity with PFRS.
The auditor should consider materiality and its relationship with audit risk when
conducting an audit. The auditor’s purpose in considering materiality at the planning
stage of the audit is to determine the appropriate scope of their audit procedures.
Audit Risk
Audit risk is the risk that the auditor gives an inappropriate audit opinion when the
financial statements are materially misstatement.
Component of Audit Risk
a. Risk of material misstatement
Inherent risk is the susceptibility of an account balance or class of
transaction to misstatement that could be material individually or when
aggregated with misstatements in other balances or classes, assuming
that there is no related controls.
Control risk is the risk that a misstatement, that could occur in an account
balance or class of transactions that could be material, individually or
when aggregated with misstatements in other balances or classes, will not
be prevented or detected and corrected on a timely basis by the
accounting and internal control systems.
b. Risk on not Detecting the Misstatement
Detection Risk is the risk that the auditor’s substantive procedures will not
detect a misstatement that exists in an account balance or class
transactions that could be material, individually or when aggregated with
misstatements in other balances or classes.
21
Interrelationship of the Components of Audit Risk
Auditor's Assessment of Control risk is
High Medium Low
Auditor's High Lowest Lower Medium
assessmen Mediu
t of m Lower Medium Higher
inherent
risk Low Medium Higher Highest
Obtaining an
understanding of the
entity’s environment
Consider Materiality
and Assess Risk of
Material Misstatements
Determine the
acceptable level of
Audit Risk
Topic Overview
This chapter discusses internal controls, assessment of control risk and how will affect
audit procedures.
Learning Objectives:
After studying this chapter, you should be able to:
1. Describe the objectives and inherent limitation of an internal control,
2. Identify and explain each component of internal control.
3. Describe the appropriate responses of the auditor to assessed risks.
4. Explain test of controls and substantive procedures and identify how they are
affected by assessed risk.
The auditor uses the understanding of internal control to identify types of potential
misstatements, consider factors that affect the risk of material misstatement, and
design the nature the nature, timing, and extent of further audit procedures.
Internal Control System means all the policies and procedures (internal controls)
adopted by the management of an entity to assist in achieving management’s objective
of ensuring, as far as practicable:
Orderly and efficient conduct of its business, including adherence to
management policies;
Safeguarding of assets
Prevention and detection of fraud and error
Accuracy and completeness of the accounting records; and
Timely preparation of reliable financial information.
31
The internal control system extends beyond those matters which relate directly to the
functions of accounting system.
Administrative control includes, but is not limited to, plan of organization and the
procedures and records that are concerned with the decision process leading to
management’s authorization of transactions. Administrative controls promote
operational efficiency and adherence to managerial policies.
32
On the other hand, accounting control compromises the plan of organization and the
procedures and records that are concerned with the safeguarding of assets and the
reliability of financial records. It involves systems of authorization and approval control
over assets, internal audit and all other financial matters.
The auditor shall obtain an understanding of whether the entity has a process for:
(IAM)
Identifying business risks relevant to financial reporting objectives
Assessing the significance of risks and the likelihood of their occurrence
Deciding how to Manage those risk
C. The information system, including the related business processes relevant
to financial reporting, and communication.
a. Infrastructure (physical and hardware components)
b. Software (process and procedures;
c. People
d. Input or data; and
e. Output or meaningful information.
NOTE: Infrastructure and software will be absent, or have less significance in systems
that are exclusively or primary manual.
The information system relevant to financial reporting objectives, such as the financial
reporting system, consist of the procedures and records established to initiate, record,
process and report entity transaction.
34
( as well as events and conditions ) and to maintain accountability for the related
assets, liabilities, and entity.
Communication of financial reporting roles and responsibilities and significant matters
relating to financial reporting includes:
a. Communications between management and those charged with governance and
b. External communications, such as those with regulatory authorities
TEST OF CONTROLS
The auditor should give adequate consideration to controls relevant to the audit. The
quality of the entity’s internal control can have significant impact in determining the
nature, timing and extent of the audit procedures in gathering audit evidence related to
class of transactions, account balances and disclosures.
The auditor shall design and perform tests of controls to obtain sufficient appropriate
audit evidence as to the operating activities of controls when:
a. The auditor’s assessment of risks of material misstatement at the assertion level
includes an expectation that the controls are operating effectively (i.,e the auditor
intends to rely on the operating effectiveness of controls in determining the nature,
timing and extent of substantive procedures) or
b. Substantive procedures alone cannot provide sufficient appropriate audit evidence at
the assertion level.
Test of controls over the design of a policy or procedure include Inquiry, Observation,
Inspection, Reperformance and Walk-through tests.
36
SUBSTANTIVE PROCEDURES
Irrespective of the assessed risks of material misstatement, the auditor shall design and
perform substantive procedures for each material class of transaction, account balance,
and disclosure.
Summary of Procedures Performed in Consideration of internal Control
Reassessment
Obtainofan
Control Risk Audit Approach Effect on Substantive Test
CR assessment remainsof
understanding at Less Reliance Approach Less effective procedures
than High Interim testing may be appropriated
the internal control Smaller sample size
focusing on the
CR assessment is changed to High Switch to no Reliance More effective procedures
design and approach Test nearer or at the year end
implementation of Larger sample size
the controls.
Control risk at Perform
maximum level Substantive
Make preliminary
test
assessment of
Control Risk
Control risk at Perform Test
below maximum of controls
level
Documentation Requirements
Control Risk Understanding of Control risk Basis for the control risk
Assessment internal control assessment assessment
Learning Objectives
1. Describe the different categories of transaction cycles.
2. Identify the forms or documents used in different departments.
3. Identify and describe the functions of departments in each transaction cycle.