AICPA on Reporting on Internal Control in an Integrated Audit Flashcards

1
Q

Define an Integrated Audit?

A

audit of internal controls over Financial Reporting AND audit of the nonissuers financial statements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the key date when auditing internal controls?

A

Did the client have effective internal controls “as of”in managements assessment of ICFR (i.e. as of December 31)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the preconditions of the audit of ICFR?

A
  • Management accepts responsibility of internal control
  • Management provides the auditors with an assessment of ICFR
  • The auditor should plan and perform the integrated audit to achieve objectives of both engagements simultaneously
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

When planning the audit of ICFR, what needs to be considered?

A
  • Risk assessment
  • Fraud Risk
  • Multiple locations
  • Materiality (same was financial statement materiality)
  • Using the work of internal auditors
  • Top-down approach
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the top-down approach for auditing internal controls?

A

Begin with financial statement level

Focus on entity-level controls

Focus on significant classes of transactions, process, monitoring controls

Verify auditors understanding of the risk in the entity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How do you test controls?

A
  • Evaluate design effectiveness- mix of inquiry, observation, inspection (a walkthrough is usually sufficient to evaluate design)
  • Operating effectiveness- Mix of inquiry, observation, inspection
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are some areas you want to focus on when looking at controls?

A

1) size and composition of the account
2) Susceptibility to misstatement
3) Volume of activity and complexity
4) Nature of accountant, transactions, disclosure
5) Exposure to loss in the accountant
6) Contingent liabilities
7) Existence of related parties

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

When should you communicate material weaknesses and significant deficiencies?

A

60 days before the release date. Gives the client enough time to clean-up or fix the material weakness

This should be done in writing!

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What should be included in the auditors written report on ICFR?

A
  • Title: Word Independent
  • Introduction: Name of entity, states that ICFR has been audited “as of date”, and identified the criteria
  • Management responsibility
  • Auditor responsibility: Express an opinion, plan and perform the audit to obtain reasonable assurance, belief the the audit obtained sufficient and appropriate basis for the opinion

Definition and inherent limitation- Paragraph commenting on the inherent limitations of internal control

Opinion

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

When would you issue an adverse report?

A
  • At least one material weakness
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

If there is a scope limitation on ICFR, what should the auditor do?

A

1) Disclaimer of opinion

2) Withdrawal from the engagement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the most common control criteria?

A

COSO Framework

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What does “scaling the audit” mean?

A

Less complex procedures may be performed for less risky/complex areas of the audit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the 5 reasons you would modify the report?

A

1) Adverse opinion
2) Scope limitation
3) Management report is incomplete or improperly presented
4) Making reference to a component auditor
5) Management report includes additional information

How well did you know this?
1
Not at all
2
3
4
5
Perfectly