Professional Documents
Culture Documents
A RISK-BASED APPROACH TO
CONDUCTING A QUALITY AUDIT
9th Edition
Karla M. Johnstone | Audrey A. Gramling | Larry E. Rittenberg
CHAPTER 5
PROFESSIONAL AUDITING STANDARDS AND THE
AUDIT OPINION FORMULATION PROCESS
LEARNING OBJECTIVES
1.
2.
3.
4.
5-2
LEARNING OBJECTIVES
5.
6.
7.
8.
5-3
LEARNING OBJECTIVES
9.
10.
11.
12.
5-4
LEARNING OBJECTIVES
13.
14.
5-5
5-6
5-7
5-8
5-9
LEARNING OBJECTIVE 1
5-11
5-12
5-13
Objective
Context in which the requirements are set
Definitions
Relevant meanings of terms in standards
Requirements
Actions required to achieve objective of the standard
5-14
5-15
5-16
Objective
Clear statement of the objective of the auditor
Definitions
For applicable terms included
Requirements
For each objective are provided
5-17
5-18
5-19
LEARNING OBJECTIVE 2
5-21
5-22
5-23
5-24
5-25
5-26
5-27
INTEGRATED AUDIT
Combines audits of an organizations financial
statements and its internal control over financial
reporting
In this audit:
Opinion provided on effectiveness of internal control
over financial reporting
Additional audit work done to be able to issue that
opinion
5-28
5-29
LEARNING OBJECTIVE 3
5-31
5-32
5-33
LEARNING OBJECTIVE 4
ACCOUNTING CYCLES
Recording and processing transactions that affect a
group of related accounts
Begin when a transaction occurs and ends when it is
recorded in financial statements
Break the audit into manageable sections of related
accounts
5-35
ACCOUNTING CYCLES
Auditor focuses on:
Flow of transactions within a particular cycle
Identifying:
Points where material misstatement can occur
Controls that have been designed and implemented to
mitigate those risks
5-36
5-37
LEARNING OBJECTIVE 5
Existence
Completeness
Rights and obligations
Valuation
Presentation and disclosure
5-39
Completeness
Refers to inclusion of all transactions and accounts in financial statements
Valuation or Allocation
Refers to inclusion of accounts in financial statements at appropriate
amounts
5-40
LEARNING OBJECTIVE 6
5-42
5-43
AUDIT PROCEDURES
Sufficient appropriate audit evidence: Measure of the
quantity of audit evidence about following factors of
audit procedures
Nature
Timing
Extent
Audit program
Lists audit procedures to be followed in gathering
evidence
Helps monitor progress and supervising work
Copyright 2014 South-Western/Cengage Learning
5-44
5-45
LEARNING OBJECTIVE 7
AUDIT DOCUMENTATION
Record of audit procedures performed, relevant
audit evidence obtained, and conclusions the auditor
reached
Known as working papers or workpapers
5-47
PURPOSES OF AUDIT
DOCUMENTATION
Assisting engagement team in:
Planning and performing audit
Supervising and reviewing audit work
5-48
EXAMPLES OF AUDIT
DOCUMENTATION
Audit programs
Analyses prepared by client or auditor
Memorandums
Summaries of significant findings or issues
Letters of confirmation and representation
Checklists
Correspondence concerning significant findings or
issues
Copyright 2014 South-Western/Cengage Learning
5-49
LEARNING OBJECTIVE 8
5-51
5-52
5-53
LEARNING OBJECTIVE 9
5-55
5-56
5-57
Control risk
The risk that a misstatement due to error or fraud that
could occur in an assertion and that could be material,
individually or in combination with other misstatements,
will not be prevented or detected on a timely basis by the
organization's internal control
Copyright 2014 South-Western/Cengage Learning
5-58
5-59
TYPES OF CONTROLS
Entity-wide controls
Transaction controls
Fraud-related controls
5-60
5-61
TYPES OF PROCEDURES TO
ASSESS DESIGN EFFECTIVENESS
Inquiry of appropriate personnel
Observation of the organizations operations
Inspection of relevant documentation
Performance of walkthroughs
Documentation of preliminary assessment of control
design and basis for that assessment
Understand the approach used by management for
conclusions on effectiveness of internal control
Copyright 2014 South-Western/Cengage Learning
5-62
5-63
5-64
5-65
5-66
5-67
5-68
5-69
5-70
5-71
FRAUD CONSIDERATIONS
Performing tests of controls and substantive
procedures susceptible to fraud risks
Performing procedures related to risk of
management override of controls
Examining journal entries
Reviewing accounting estimates for biases
Evaluating business rationale for significant unusual
transactions
5-72
LEARNING OBJECTIVE 10
5-74
5-75
Transaction controls
5-76
5-77
Considering
submitting test
transactions through
the system to
determine its
performance
Taking a random
sample of
transactions for
determining:
a) Operations of key
controls
b) Completion of
process
Reviewing
exception reports
and determining:
a) Proper exceptions
being noted
b) Exceptions go to
authorized
personnel with
adequate follow-up
5-78
Taking a sample of
transactions and
examining
evidence
supporting that the
controls are
working
Authorizations
Taking a sample of
reconciliations to
determine that:
a) They were
performed by an
authorized person
b) They were
performed properly
Reconciliations
Reviewing
documentation of
selected
transactions to
determine:
a) Proper
authorization
b) Recorded in
correct time period
Taking a sample of
reports used to
identify unusual
transactions and
review them to
determine:
a) Regular usage
b) Identification of
unusual items
5-79
5-80
5-81
5-82
5-83
5-84
Control environment
Risk assessment
Information and communication
Monitoring
5-85
5-86
5-87
LEARNING OBJECTIVE 11
5-89
5-90
LEARNING OBJECTIVE 12
5-92
LEARNING OBJECTIVE 13
APPLY THE CONCEPTS RELATED TO THE AUDITORS
ASSESSMENT OF INTERNAL CONTROL DESIGN
EFFECTIVENESS, IMPLEMENTATION, AND OPERATING
EFFECTIVENESS
MANAGEMENT ASSESSMENT OF
CONTROLS
Factors considered in deciding whether to categorize
a deficiency as significant or not
Risk that is being mitigated and whether other controls
operate effectively
Materiality of related account balances
Nature of deficiency
Volume of transactions affected
Subjectivity of account balance that is subject to
control
Rate at which control fails to operate
Copyright 2014 South-Western/Cengage Learning
5-94
MANAGEMENT ASSESSMENT OF
CONTROLS
Deficiency of segregation of duties
Did not rise to a significant deficiency or a material
weakness
Management decides to use this deficiency as a
motivation to centralize purchases
5-95
MANAGEMENT ASSESSMENT OF
CONTROLS
Deficiency of lack of approval considered as a
significant deficiency based on the following
rationale:
Major departure from an approved process
Could lead to purchase of unauthorized goods
Could be shipped elsewhere and lead to material
misstatement in financial statements
5-96
5-97
5-98