Assessing & responding to RMM due to error or fraud Flashcards

1
Q

what is the audit risk model?

A

audit risk = inherent risk X control risk X detection risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

what is inherent risk?

A

risk that a material misstatement will exist if there were no I/C;
determined by nature of entity and environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

what is control risk?

A

the entity’s I/C will fail to prevent or detect a material misstatement (managed by internal control); determined by controls put in place by the entity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

what is detection risk?

A

the risk that if a material misstatement exists in the F/S, auditors will fail to identify it (gets reduced by audit procedures, response to RMM)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

true or false: RMM exists independently of audit

A

TRUE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

if CR is below maximum auditors may…

A

reduce number of substantive tests planned because some risks is mitigated

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

auditors will omit interim testing if CR were assessed at….

A

maximum level but not below

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

what are the tasks required for a review?

A

-Perform analytical procedures (3 STEPS)
1. develop expectations
2. compare client’s actual data with
expectations
3. investigate significant differences
-Perform inquires
-Obtain management representation
-Maintain independence
-Obtained signed engagement letter
-Express conclusion
-Limited assurance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

what are the tasks required for an audit?

A

-Perform analytical procedures (3 STEPS)
1. develop expectations
2. compare client’s actual
data with expectations
3. investigate any
significant differences
-Perform inquires
-Obtain management representation
-Maintain independence
-Obtained signed engagement letter
-Communicate with predecessor CPA
-Understand I/C
-Assess RMM
-Send letter to client’s lawyer
-Substantive testing to detect material misstatement
-Express opinion
-Reasonable assurance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

if true state of population has a deviation rate > tolerable rate and the auditor’s estimate based on sample results deviation rate > tolerable rate

A

control risk increased properly

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

if true state of population has a deviation rate > tolerable rate and the auditor’s estimate based on sample results deviation rate < tolerable rate

A

control risk decreased improperly (Type 2 error) Ineffective

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

if true state of population has a deviation rate < tolerable rate and the auditor’s estimate based on sample results deviation rate < tolerable rate

A

control risk unchanged properly

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

if true state of population has a deviation rate < tolerable rate and the auditor’s estimate based on sample results deviation rate > tolerable rate

A

control risk increased improperly (Type 1 error) Ineffective

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

increase in RMM leads to…

A

decrease in acceptable level of detection risk and increase in substantive testing to maintain the desired audit risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

if RMM is high then…

A

increase professional skepticism and planned audit procedures
1. more thorough tests
2. rely on more year-end testing
3. assign experienced staff with specialized skills
4. close supervision required

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

what does RACE stand for in relationship to year end balance sheet accounts

A

Rights and obligations: own or have the rights to use?
Allocation and valuation: are the recorded amounts correct?
Completeness: are all assets/liabilities recorded?
Existence: do the assets/liabilities exist?

17
Q

after CR and RMM are assessed, what tests will the auditor perform

A

tests of transactions details because they are needed to detect material financial misstatements

18
Q

what is audit risk?

A

the risk that a material misstatement exists in the financial statements and will not be detected by the audit

19
Q

If I/C is effective…

A

control risk is low, there’s an increased reliance on the controls and a decreased number of substantive procedures performed

20
Q

which two components of the risk are characteristics of the entity?

A

inherent risk and control risk

21
Q

segregation of duties protects assets from…

A

misappropriation

22
Q

what are the 4 phases in the process for understanding I/C and assessing CR

A
  1. obtain an understanding of the design and operation of I/C
  2. assess CR
  3. design, perform and evaluate tests of controls if applicable
  4. set detection risk and plan substantive procedures
23
Q

if tests of controls are not performed when assessing CR

A

leave CR at max level because I/C is poorly designed

24
Q

during the “design, perform and evaluate tests of controls if applicable” phase, if testing indicates I/C effective

A

reduce CR; auditors increase reliance on controls and decrease substantive testing

25
Q

what are the three things that lead to fraud?

A

incentive, opportunity and rationalization

26
Q

what is fraud incentive?

A

reason (motivation) for committing the fraud; ex. personal gain, pressure to meet operating objectives

27
Q

what is opportunity fraud?

A

have the ability to commit the fraud; ex. management override, lack of I/C, collusion

28
Q

what is rationalization fraud?

A

attitude, justify the fraud in a manner consistent with their beliefs; ex. “getting worse”, don’t believe they are wrong

29
Q

what is the purpose of substantive testing?

A

to identify material financial misstatements the amount and type of substantive testing is based on previously assessed level of control risk

30
Q

who determines the acceptable level of audit risk?

A

auditor