12) ROMM - Overall Level

Question 1

what happens during the risk assessment?

Answer 1

(still part of the planning stage)

the auditor identifies the ROMM at overall and assertion level

Question 2

what is the definition of audit risk?

Answer 2

the risk that the auditor expresses an inappropriate audit opinion when the FS are materially misstated

Question 3

what is the definition of ROMM?

Answer 3

the risk that FS are materially misstated before the start of the audit work

Question 4

at which levels are ROMM considered?

Answer 4

overall FS level and assertion level

Question 5

what are the components of audit risk?

Answer 5

ROMM + detection risk

Question 6

what are the components of ROMM?

Answer 6

inherent risk + control risk

Question 7

what are the scales for the likelihood of risk?

Answer 7

low, medium, high, significant

Question 8

what is detection risk?

Answer 8

risk that the procedures performed by the auditor to reduce audit risk to an acceptably low level will not detect a material misstatement

Question 9

what can cause detection risk?

Answer 9

• tight audit deadline

- new client we are unfamiliar with

Question 10

what is inherent risk?

Answer 10

• built-in risk
• the potential of the FS as a whole to have misstatement that could be material (in isolation or aggregate) before controls are considered

Question 11

what is control risk?

Answer 11

the risk that the controls are not operating effectively

Question 12

what can give rise to inherent risk?

Answer 12

• fraud
• errors
• going-concern assumption is not appropriate
• non-compliance with laws

Question 13

what can cause errors in the FS?

Answer 13

• incompetent staff
• reliance on tech
• short-staffing
• having multiple locations

Question 14

what can give rise to control risk?

Answer 14

• lack of mgmt integrity
• mgmt override of controls
• weaknesses
• poor control environment

Question 15

why do we determine ROMM?

Answer 15

to determine the nature, timing and extent of audit procedures we need to do

Question 16

why do we do audit procedures?

Answer 16

to obtain audit evidence

Question 17

why do we obtain audit evidence?

Answer 17

so we can use it to provide our opinion on the FS

Question 18

what is the risk-based audit approach?

Answer 18

1) identify and assess ROMM based on understanding the entity and its environment
2) obtain sufficient evidence through designing risk responses
3) form audit opinion

Question 19

from where can audit evidence be obtained?

Answer 19

• mgmt
• TCWG
• internal auditors
• regulators

Question 20

what is business risk?

Answer 20

what can go wrong ito business and mgmt objectives for both operational and info integrity risks

Question 21

which risks are controlled by the auditor?

Answer 21

detection risk

Question 22

what is the audit risk equation?

Answer 22

AR = IR x DR x CR

Question 23

what risks can the auditor not control?

Answer 23

ROMM – inherent and control risk

Question 24

how can auditors reduce detection risk?

Answer 24

• sound audit planning
• performing audit procedures
• proper assignment of personnel
• professional skepticism