A-3 2013 Flashcards

1
Q

Before the auditor accepts an engagement, what communication between the predecessor and the auditor should be made?

A

Obtain client’s permission to make inquiries of the predecessor auditor. Specific inquiries include: information that might bear on management integrity; disagreements with management over accounting principles, auditing procedures, or other similarly significant matters; the predecessor’s understanding as to the reasons for the change of auditors; and, communication to management, the audit committee, and those charged with governance regarding fraud, illegal acts by clients, and matters relating to internal control.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

After accepting the engagement, what communication between the auditor and the predecessor can be made?

A

The auditor may: make specific inquiries regarding matters that may affect the conduct of the audit (e.g., audit problems); review the predecessor’s audit documentation related to matters of continuing accounting and auditing significance. Note that the auditor should not make reference to the work of the predecessor as the basis for the opinion.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What should the auditor assess when considering the firm’s client acceptance and continuance policies?

A

The auditor should assess: the firm’s ability to meet reporting deadlines; the firm’s ability to staff the engagement; independence; integrity of client management; the group engagement’s team ability to obtain sufficient appropriate audit evidence.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What topics should be included in the agreement to audit engagement terms? What is the purpose of establishing such an understanding?

A

An understanding should include: Objectives and the scope of the audit; Management’s responsibilities; The auditor’s responsibilities; The limitations of the engagement; Other matters, such as timing, client assistance, fees and billing, etc. The purpose of the agreement is to reduce the risk of misunderstanding. Note that an engagement letter documenting the understanding is a requirement under PCAOB standards.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Name the six main financial statement assertions for nonissuer and issuers. (COVERU and CEO APPROVED)

A

Nonissuer: Completeness: CutOff, Valuation, allocation, and accurancy; Existence and occurrence: Rights and obligations; Understandability and classification (COVERU). Issuer: Completeness: Existence; Occurrence (CEO). Allocation; Presentatiuon; Obligations; Valuation; E; Disclosure (APPROVED).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Name the relevant assertions for “transactions and events.”

A

Completeness, (Proper Period) Cutoff, Accuracy, Classification, Occurrence.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Name the relevant assertions for “account balances.”

A

Completeness, Allocation and Valuation, Rights and Obligations, Existence.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Name the relevant assertions for “presentation and disclosures.”

A

Completeness; Understandability and Classification; Rights and Obligations, and Occurrence; Valuation and Accuracy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the audit strategy?

A

The audit strategy outlines the scope of the audit engagement, the reporting objectives, timing of the audit, and required communications, and the factors that determine the focus of the audit. The audit strategy also includes a preliminary assessment of materiality and tolerable misstatement.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Define materiality and tolerable misstatement.

A

Materiality is the amount of error or omission that would affect the judgment of a reasonable person. The auditor uses judgment to set the initial levels of materiality (including materiality for the financial statements as a whole, performance materiality, and materiality for particular classes of transactions, account balances, and disclosures), and to revise them appropriately throughout the audit. Tolerable misstatement is the maximum error in a population that the auditor is willing to accept. Tolerable misstatement is the application of performance materiality to a particular sampling procedure.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is an audit plan?

A

A written audit plan (required for every audit) is a listing of audit procedures that the auditor believes are necessary to accomplish the objectives of the audit. The audit plan typically follows development of the audit strategy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What should be included in each step of the audit plan? (We cast our NET over the audit!)

A

Each step of the audit plan should set out the procedure in detail, specifying the nature, extent, and timing of the work to be performed and including a reference to the assertion under consideration. Nature, Extent, Timing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

List the three types of audit procedures and tell why each is used.

A

Risk assessment procedures–to obtain an understanding of the entity and its environment, including its internal control. Tests of controls–to evaluate the operating effectiveness of internal control in preventing or detecting material misstatements. Substantive procedures–to detect material misstatements in the financial statements.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the responsibilities of assistants when there are disagreements?

A

Assistants have a responsibility to exercise due professional care and to observe the standards of fieldwork. They should bring any disagreements with the conduct of the audit to the attention of the auditor-in-charge. The assistant also has the right to document the disagreement, and, if necessary, to disassociate from the opinion.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What factors determine the amount of reliance an independent auditor may place on the work of internal auditors?

A

The following factors affect the amount of reliance: the objectivity of internal auditors (level of reporting within the organizational structure); the competence of internal auditors; an evaluation of the work performed by internal auditors. Note that the external auditor remains solely responsible for hte audit report, and may not share judgment responsibility with the internal auditor.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Should an auditor refer to the work of a specialist in the auditor’s report?

A

Generally, in the case of an unmodified opinion, no reference is made to the work of a specialist. If, however, the auditor decides to express a modified opinion due to the work of the specialist, reference to the specialist may be made. The auditor may need the permission from the specialist before making reference to the specialist. Under the ISAs, the auditor is required to obtain permission from the specialist before making reference to the specialist in the report.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Under PCAOB standards, what factors affect the nature and extent of necessary planning activities?

A

The sixe and complexity of the company; The auditor’s previous experience with the company; Changes in circumstances that occur during the audit.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

According to PCAOB standards, what factors indicate less complex operations?

A

Fewer business lines; Less complex business processes and financial reporting systems; More centralized accounting functions; Extensive involvement of senior management in day to day operations; Fewer levels of management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

The engagement partner is responsible for:

A

Planning the audit; Supervising the work of engagement team members; Complying with relevant audit standards.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What factors determine the nature, extent, and timing of supervision?

A

The size and complexity of the entity; The nature of the work assigned to each engagement team member; the assessed risk of material misstatement; the qualifications of the assistants.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Distinguish between the three types of material misstatements.

A

The three types of material misstatements are: Factual misstatements: There is no doubt. Judgmental misstatements: Management and the auditor have material judgment differences on accounting estimates or the application of accounting policies. Projected misstatements: This represents the auditor’s best estimate of misstatements in populations, by projectng misstatements in an audit sample to the population that the samples were drawn.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What is audit risk? List and define the two elements of audit risk.

A

Audit risk is the risk that the auditor may unknowingly fail to modify appropriately the opinion on financial statements that are materially misstated. It is comprised of: Risk of Material Misstatement–The risk that the financial statements are materially misstated; Detection Risk–The risk that the auditor will not detect a material misstatement that exists in a relevant assertion.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

State the audit risk model including the relationship of detection risk to substantive tests.

A

AR = RMM x DR. Where: RMM = Risk of material misstatement; DR = Detection risk. Note that as the acceptable level of detection risk increases, the assurance required from substantive tests decreases. As the acceptable level of detection risk decreases, the assurance required from substantive testing must increase.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What are the two components of the risk of material misstatement?

A

Inherent Risk: The susceptibility of a relevant assertion to a material misstatement assuming there are no related controls. Control Risk: The risk that a material misstatement that could occur in a relevant assertion will not be prevented or detected (and corrected) on a timely basis by the entity’s internal control.

25
Q

What is the difference between error and fraud? State the auditor’s responsibility to detect errors and fraud.

A

An error is an unintentional misstatement or omission of amounts or disclosures in the financial statements. Fraud is an intentional action that results in misstatements or omissions of financial information with the intent to deceive financial statement users. THe auditor must plan and perform the audit (using due care and professional skepticism) to provide reasonable (not absolute) assurance about whether the financial statements are free of material misstatement, whether due to errors or fraud.

26
Q

Name the two types of fraud.

A

Fraudulent financial reporting; Misappropriation of assets, or defalcation.

27
Q

What fraud risk factors are generally present when fraud occurs?

A

The three conditions that generally are present when fraud occurs are: incentives/pressures; opportunity; and, rationalization/attitude. The auditor identifies and evaluates these fraud risk factors as part of assessing the risk of material misstatement due to fraud.

28
Q

When analyzing fraud risk, which four attributes should the auditor consider?

A

The auditor should consider the following fraud risk attibutes: Type of risk; Significance of the risk; Likelihood of the risk; Pervasiveness of the risk.

29
Q

How would an auditor reprot noncompliance of a law or regulation assuming: 1) it has material effect on the financial statements; 2) there is insufficient evidence; or 3) the client refuses to accept a modified report?

A

Scenario 1: If not adequately reflected in the financial statements, a qualified opinion or adverse opinion should be issued. Scenario 2: If unable to obtain sufficient evidence of a suspected noncompliance, a qualified opinion or disclaimer of opinion should be issued. Scenario 3: If the client refuses to accept a modified reprot, the auditor should withdraw from the engagement and contact those charged with governance in writing.

30
Q

Why is the auditor required to obtain an understanding of the entity and its environment?

A

To access the risk of material misstatement and to make informed judgments about other audit matters such as: Materiality and tolerable misstatement; The entity’s selection and application of accounting procedures; Areas that require special audit consideration; Design and performance of further audit procedures.

31
Q

What steps should the auditor perform in assessing and responding to risk?

A
  1. Obtain an understanding of the entity and its environment, including its internal control. 2. Assess the risk of material misstatement. 3. Respond to the assessed level of risk by designing further audit procedures based on this assessment. 4. Test internal controls to evaluate their operating effectiveness. 5. Perform substantive tests. 6. Evaluate the sufficiency and appropriateness of audit evidence obtained.
32
Q

What risk assessment procedures should the auditor use to obtain an understanding of the entity and its environment?

A

Risk assessment procedures include: Inquiry, Analytical procedures, Observation and inspection, Risk assessment discussion.

33
Q

What factors should be examined when obtaining an understanding of the entity and environment?

A

When obtaining an understanding of the entity and environment, the auditor should understand: Industry, regulatory, and other external factors; The nature of the entity; Objectives, strategies, and business risks; The entity’s financial performance; Internal control; The company’s selection and application of accounting principles (issuer audits–PCAOB standards).

34
Q

What are analytical procedures?

A

Evaluations of financial information made by a study of plausible relationships among both financial and nonfinancial data (e.g., ratio analysis). Note: Analytical procedures are required in the planning and final review phases of the audit. They also may be used (but are not required) in substantive testing.

35
Q

For what purposes are analytical procedures used in the audit planning phase?

A

Analytical procedures are used in planning the audit to understand the client’s business and to identify unusual transactions and events, amounts, ratios, or trends that might represent specific risks relevant to the audit.

36
Q

What are the objectives of internal control?

A

To promote efficiency and effectiveness of operations; To ensure reliable financial reporting; To encourage compliance with applicable laws and regulations.

37
Q

What are some inherent limitations of internal control?

A

Errors may be made in the performance of control procedures. Collusion provides a way to bypass controls related to segregation of duties. Top management can override internal controls. Segregation of duties may be difficult to achieve in a smaller entity.

38
Q

What are the five components of internal control? (CRIME)

A

Control environment, Risk assessment, Information and communication systems, Monitoring, Existing control activities.

39
Q

Why is the control environment particularly important to internal control?

A

The control environment sets the tone of an organization, influencing the control consciousness of its employee, and providing the foundation for the other components of internal control.

40
Q

What factors are included in the control environment?

A

Communication and enforcement of integrity and ethical values; Management’s commitment to competence; Participation of those charged with governance; Management’s philosophy and operating style; Organizational structure; Assignment of authority, responsibility, and accountability; Human resource policies and practices.

41
Q

Describe the “risk assessment” component of internal control.

A

Risk assessment is an entity’s identification and analysis of risks to achievement of its objectives with respect to financial reporting. Risk assessment involves indentification, analysis, and management of business risks relevant to the preparation of financial statements.

42
Q

What functions are served by an entity’s information system with respect to financial reporting?

A

Identify and record all valid transactions; Describe transactions in a timely manner and in sufficient detail to allow proper classificaiton; Measure and record the proper monetary value of transactions; Determine and ensure proper recording of transactions and events in the appropriate time period; Present transactions and related disclosures properly in the financial statements.

43
Q

What functions should an auditor understand about an entity’s communication system with respect to financial reporting?

A

The methods used to communicate roles, responsibilities, and significant matters related to financial reporting. Communications between management and those charged with governance, and between management and external parties.

44
Q

What activities may be considered part of the monitoring component of internal control?

A

The monitoring process may include: Management and supervisory activities; Separate internal control evaluations; The internal audit function; Evaluation of communication from external parties.

45
Q

Name some conrol activities that are relevant to an audit. (PAID TIPS)

A

Prenumbering of documents; Authorizeation of transactions; Independent checks to maintain asset accountability; Documentation; Timely and appropriate performance reviews; Information processing general and application controls; Physical controls for safeguarding assets; Segregation of duties.

46
Q

What functions should be segregated? (Segregation of duties is your ARC to protect against a flood of toubles)

A

Authorizing transactions; Recording transactions; Maintaining Custody of the related assets.

47
Q

Why does an auditor obtain an understanding of the client’s internal control?

A

An auditor obtains an understanding of internal control to evaluate the design of controls and determine whether they have been implemented, to assess the risk of material misstatement, and to design the nature, extent, and timing of further audit procedures.

48
Q

When are a service organziation’s services considered to be part of an entity’s information system?

A

A service organization’s services are considered to be part of an entity’s information system when those services affect the initiation, execution, processing, or reporting of the user company’s transactions.

49
Q

What two types of reports may a service auditor provide, and what is the difference in how the user auditor may use them?

A

The service auditor may provide a “Report on Management’s Description of the Service Organization’s System and the Suitability of the Design and Operating Effectiveness of Controls (Type 2 Report)” or simply a “Report on Management’s Description of the Service Organization’s System an the Suitability of hte Design of Controls (Type 1 Report)>” THe Type 2 Report may support a reduction in the assessed level of control risk whereas the Type 1 Report does not.

50
Q

What steps should the auditor take in designing the nature, extent, and timing of further audit procedures?

A

The auditor uses his or her understanding of the entity and environment, including internal control: Identify types of potential material misstatements; Consider the factors that affect the risk of material misstatement; Design tests of controls, when applicable; Design substantive procedures.

51
Q

What are the three ways in which an auditor should respond to assessed risk?

A

The auditor should respond to assessed risk in three ways: An overall response, to address risk at the FS level; A response at the relevant assertion level; A response to significant risks.

52
Q

What is a significant risk?

A

A significant risk is one that requires special audit consideration. The following factors may be indicative of a significant risks: Nonroutine, unusual, or complex transactions; Business risks that may result in material misstatement; Fraud risk; Significant related party transactions; Accounting estimates or other subjective measurements of financial information; Accounting principles that are subject to different interpretations.

53
Q

What are the documentation requirements surrounding the auditor’s assessment of risk?

A

The auditor should document the: Discussion among the audit team; Understanding of the entity and its environment, including its internal control; Assessment of the risks of material misstatement; Basis for the risk assessment; Identified risks and related controls evaluated.

54
Q

What are the two approaches an auditor may use to respond to identified risks at the relevant assertion level?

A

Substantive approach–Only substantive tests are used, either because there are no effective controls, or because it would not be efficient to test the operating effectiveness of controls. Combined approach–Tests of the operating effectiveness of control and tests of substantive procedures are both used.

55
Q

When are tests of controls performed?

A

When the auditor’s risk assessment is based on the assumption that controls are operating effectively; OR When substantive procedures alone are insufficient, such as when there is a significant amount of electronic processing.

56
Q

How does the auditor’s assessment of the risk of material misstatement affect substantive procedures?

A

The auditor’s determination that the risk of material misstatement is high necessitates a greater level of assurance from substantive procedures, which may be obtained by varying the nature, extent, or timing of such procedures. The auditor’s determination that the risk of material misstatement is low allows a reduction in the assurance required from substantive procedures. This too may be accomplished by varying the nature, extent, or timing of such procedures.

57
Q

What are the documentation requirements surrounding the auditor’s response to assessed risk?

A

The auditor should document the: Overall response addressing assessed risk at the FS level; Nature, extent, and timing of further audit procedures; Linkage of further audit procedures with assessed risk at the relevant assertion level; Results of audit procedures; Conclusions reached regarding the use of prior period evidence.

58
Q

Under PCAOB standards, what factors are relevant to the concllusion that sufficient appropriate evidence has been obtained?

A

The significance of uncorrected misstatements and the likelihood of their having a material effect on the financial statements; The results of audit procedures performed; The auditor’s risk assessment; The appropriateness of the evidence obtained.