AUD - Nate's Flashcards
What does PIE stand for in the standards of field work?
Planning and supervision,
Internal control, and
Evidence
What does GCDO stand for in the standards if reporting?
GAAp,
Consistency
Disclosure, and
Opinion
When is adversed opinion rendered?
When a severe GAAP departure is present in the F/S
What are the 2 main differences between the standards of attestation and the auditing standards?
The attestation standards and generally accepted auditing standards differ conceptually in 2 main areas:
(1) the attestation standards provide a framework for the attest function beyond historical F/S; and
(2) the attestation standards provide for the growing number of attest services in which the practitioner expresses assurances in forms other than the positive opinion
Formula of days sales in acct receivable?
Acc rec / credit sales per day.
Credit sales per day = total credit sales / 365
Adj entry for wages at end of year that weren’t recorded:
DR: operating expenses
CR: accrued wages payable (accrued liability)
Why would an auditor modify the auditor’s report based on the work of a specialist?
If there is a difference between the specialist’s valuation of an asset and the client’s
Who should make up the audit committee?
Members of the board or directors who are not officers or employees
What are the 3 general standards?
(1) adequate training
(2) independence of mental attitude
(3) due professional care
3 fieldwork standards?
(1) adequate planning
(2) understanding the entity and its internal control
(3) sufficient and appropriate audit evidence
The auditors judgment of the overall fairness of the F/S is applied within the framework of?
Generally accepted audit principles
What dioes the auditor primarily use to come up with materiality?
The prior year F/S
Basics of independence concerning a close relative?
CR can have a financial interest in the audit client as long as the amount is immaterial to them.
CR can work for the audit client as long as it is not in acctg or financial reporting.
CR can work for audit firm, and is not a covered member unless the person works on the engagement team or can influence the members of the engagement team or the audit itself
When planning a new audit, why would the auditor conaider the methods used to process accounting information?
Because the metjods influence the design of internal control
Who appoints the PCAOB?
SOX created the PCAOB and it is overseen by SEC
Under securities act of 1934 what organizations are required to submit audited F/S?
Every company traded on national and over thr counter exchanges
Primary purpose of establishing quality control procedures for deciding whether to accept a new client?
Minimize likelihood of association with clients whose management lack integrity
To succeed in legal action against the auditor, the client must be able to show that?
The CPA had duty to perform,
The CPA breached the contract,
The client suffered losses,
And that there is a close causal connection between the auditor’s behavior and the damages suffered by the client
Detection risk?
Risk that auditor concludes no material misstatement exists when there actually is one
3 components of audit risk
(1) inherent risk
(2) control risk
(3) detection risk
They are multiplied together: .8x .75 x .25 = .15 audit risk
If inherent risk is .8 and control risk is .2, what does the auditor do to lower audit risk?
Increase and perform substantive testing to reduce detection risk to the point that it equals the acceptable level of audit risk
Why are inherent risk and control risk different than detection risk?
Inherent risk is the possibility of a material misstatement due to lack of human
and system technology.
Control risk is risk of material error that is not prevented or detected on a timely basis by the client’s internal controls.
Detection risk is risk that the auditor misses a material error. Thus, inherent risk and control risk are functions of the client and it’s environment while detection risk is not
The risk of material misstatement refers to
The combo of inherent & control risk. Multiplying IR by CR results in the ‘risk of material misstatement’
The level of detection risk is inversely related to
The assurance provided by substantive tests. As the auditor performa substantive procedures he becomes more and more sure there are no material errors exist, and detection risk goes down
The audit program should be designed so that sufficient evidence is gathered to
Support the auditors conclusion
Do most illegal acts affect the F/S directly or indirectly?
Indirectly
If you uncover an illegal act at a public company, the auditor is required to notify
The SEC
When auditor has reason to believe an illegal act has occurred, he should do what?
Consider accumulating additional evidence, inquire of mgmt at a level above those who did the act, and consult with the client’s legal counsel
What is lapping fraud?
You steal customer’s A money, then you get customer B’s moneu and apply to it to A’s acct, then get C’s money and apply it to B’s acct, and so on
What is kiting?
Money is moved from one account to the other but in different time periods to inflate the amount being reported
Does the PCAOB make auditing standars that must be followed by all CPAs?
It only makes auditing standars for public companies
Is the PCAOB a gov agency?
No
Private sector non profit corp created by sox of 2002 to oversee audits of public companies to protect interest of investors. All pcaob rukes and standars must be approved by SEC
What is an s-1 form?
A form that must be filed with the SEC whenever a company plans to issue nee securities to the public
What is auditors responsibility for supplementary information such as segment info?
Auditor should apply limited procedures to the required info and report deficiencies in or omission of such info
Who creates auditing standars for private companies?
The AICPA
What is form 8-K?
The form filed with SEC to report a significant event
How long do you have to dispose of stock in a client if you inherent some unsolicited?
30 days
Do operating leases and claims against clients for material amounts impair independence?
No
Are statements in the standards that include the word “should” mandatory?
They are considered presumptively mandatory-the auditor can depart from them if justification is documented
What is the completeness assertion concerned with?
Determining that all transactions are recorded
In testing the existence assertion for an ssset, the auditor normally works from the _____ to the ____
Accounting records to the supporting evidence
According to SOX how long does a firm keep audit documentation?
7 yrs
What is the best place to out in writing the understandinf between client and firm about what will take place during the audit?
The engagement letter
To see if cks are being issued for unauthorized purchases, the auditor would most likely select testing from the population of:
Canceled cks
What does tracing shipping docs to sales invoices accomplish?
That all items shipments have been invoiced
Most effective control over recorded purchases?
Supporting forms such as p. o. And receiving reports are independently compared for agreement
If trying to detect overstatment of sales, you start with the
Accounting records and trace to the source documents
What is pervasiveness?
The extent to which an exception affects different parts of the F/S
What does TID stand for in the GAAS general standards?
Training
Independence, and
Due professional care
Difference between adverse opinion and disclaimer of opinion?
Adverse opinion is stating that the financials do not fairly present the position of company in accordance to GAAP.
Disclaimer of opinion is when a material uncertainty affects the financials
What paragraph explicitly states the auditors responsibility to express and opinion?
The opening paragraph of the standard audit report
When would a lack of independence cause a disclaimer of opinion?
In all cases
If the financials and/or footnotes fail to disclose info that is required by GAAP, what type of opinion is issued?
Adverse or Qualified.
If qualified, an extra paragraph would be added that describes the nature of the missing info, and the opinion paragraph would have an extra sentence “except for the information discussed in previous paragraph.”
On a public company audit, are the reports on the financial statements and internal controls issued separately or combined?
It can be either
What are the 2 situations which result in a qualified opinion?
1) when the statements are materially misstated due to one acct balance or class of transaction that does not have a pervasive effect on the statements
1) when the auditor is unable to obtain audit evidence regarding a particular acct balance that does not pervasively affect the statements.
Essentially either a single deviation from GAAP or a scope limitation.
The report itself is very similar to an unqualified opinion but an extra paragraph is added to explain the qualification after the scope paragraph but before the opinion paragraph
How many paragraphs does a standard unqualified report have and what are they?
- 1) the intro paragraph states the audit work performed and states the reaponsibility of the auditor and auditee in relation to the f/s
2) the scooe paragraph details the scope of the audit work
3) the opinion paragraph simply states the unqualified opinion
When is an adverse opinion issued and how does the report change?
Adverse is the opposite of an unqualified opinion. It means that the f/s as a whole are materially misstated and do not confirm with GAAP. Or the differ “pervasively” from GAAP.
On the report, the scope paragraph is modified accordingly and an explanatory paragraph is added after the scooe paragraph but before the opinion paragraph.
In the opinion paragraph, the auditor specifically states that the statements are not in accordance with GAAP.
What situations would result in a disclaimer of opinion?
When the auditor is not independent or there is a conflict of interest. When a limitation of scope is imposed by the client and the auditor cant gather sufficient audit evidence. When there is a substantial going concern issue. When there arr significant uncertainties in the business of the client
When an auditor selects one or a few transactions and follows them through the entire acctg process, he is doing what?
A walkthrough. A walkthrough combines observation, documentation, and inquiry.
PCAOB standard 2 requires at least one walkthrough per major class of transaction
Which section of SOX requires mgmt to issue an internal control report?
Section 404 requires auditors to assess and report on the effectiveness of internal control over financial reporting
What is the definition of incompatible functions?
Those that place any person in a position to both perpetrate and conceal errors or irregularities in the normal course of their duties. Well designed controls should separate the duties of authorization, record keeping and custody of assets
What is the primary purpose of the auditors consideration of internal controls?
To determine the nature, extent, and timing of audit tests to be applied
If the auditor finds a reportable condition in internal controls, who should they tell first?
The audit committe
If after understanding the ICs the auditor decides to perform tests of controls, the auditor most likely decided that:
It would be efficient to perform tests of controls that would result in a reduction in planned substantive tests
What is the concept of reasonable assurance?
Recognizes that the cost of internal controls should not exceed the benefits provided
7 factors of the control environment: (i see ham bone)
I - integrity and ethical values
C - commitment to competence
H - human resource policies and practices
A - assignment of authority and responsibility
M - management’s philosphy & operating style
B - board of directors or audit committe participation
O - organization
Even the best designed IC can fail due to:
Human error, faulty judgment, collusion, managment override
What are the 5 components of internal control? (Clowns run cartels in mexico)
1) control evironment
2) risk assessment
3) control activities
4) information and communication
5) monitoring
*** What is the process of assessing risk in general?
You assess inherent risk and control risk to determine the amount of substantive testing that must be carried out to reduce detection risk to a level so that overall risk will still achieve an acceptably low level. Acceptable audit risk is not changed
What is the audit risk formula?
Inherent risk X control risk X detection risk = overall audit risk
The auditor uses the assessed level of control risk to determine the acceptable level of
Detection risk for financial statement assertions
If auditor increases the level of control risk because controls are found to be innefective, the auditor would most likely increase the
Extent of tests of details
What do assertions about existence or occurrence deal with?
Whether assets or liabilities exist at a given date and whether recorded transactions have occurred during a given period
When an auditor assesses control risk as low, he must
Identify specific policies and procedures that are likely to prevent or detect material misstatements, and he must perform tests of controls to evaluate the effectiveness of such policies and procedures. If the tests of controls result in the control risk being assessed as low, then the auditor may limit the extent of substantive testing
What does “information and communicatikn” refer to as far as internal control within an organization?
The ability of the accounting system to generate reliable info and convey it in a timely manner to the parties in the organization that need it
What are the 5 assertions about classes of transactions and events for the period? Alistair Overeem Cant Cut Corners
Accuracy - amounts and other data have been recorded appropriately
Occurrence - transactions and events that have been recorded have occurred
Completeness - all transactions and events that should have been recorded have been recorded
Classification - transactions and events have been recorded in the proper accounts
4 assertions about account balances at end kf period? Even Cain Realizes Value
Existence - assets, liabilities, and equity interests exist
Completeness - all assets, liabilities, and equity that should have been recorded have been recorded
Rights and obligations - the entity holds or controls the rights to assets, and liabilities are the obligations of the entity
Valuation and allocation - assets, liabilities, and equity interests are included in the f/s at appropriate amounts and any resulting valuation or allocation adjustments are appropriately recorded
4 assertions about presentation and disclosure: Overeem Cant Complain Anymore
Occurrence and rights and obligations: disclosed events and transactions have occurred and pertain to the entity
Completeness: all disclosures that should have been included have been included
Classifiaction and understandability: financial info is appropriately presented, described, and clearly expressed
Accuracy and valuation:!financial and other infi are disclosed fairly and at appropriate amounta
Why is it best tonhave “blind” invoices received by the receiving department?
To make sure the receiving dept counts the incoming merchandise so that they only pay for what they received
What is the purpose of purchase cutoff testing?
To determine that items actually received in inventory have been included in the proper period
What is an integrated test facility?
It puts fake transactions in with real transactions which are processed together without client employees knowing it
A person who mails signed checks can also
Cancel the supporting documents
An effective control over purchases would be to have the purchasing department authorized to
Purchase but not initiate purchases
An increased extent of tests of controls is modt likely to occur when
Controls appear to be effective so that the preliminary control risk assessment is low. This is because auditor can then do less substantive testing
Are significant deficiencies and material weaknesses supposed to be relayed orally or written to those charged with governance?
AU 325 says that sig def and material weaknesses in a publix company must be communicated in writing to the audit committee of the board of directors
When should contril deficiencies be reported?
Either during the audit or aftet the audit’s completion, within 60 days of the report release date
Management must disclose material weaknesses in internal control if the weakness exists:
At the end of the year
What are the 2 types of control deficiency?
Design and operations.
Design means it’s poorly designed, whike operations means the people performing their tasks are doing then defficiently
What is the ratio estimation used for?
To measure the total estimated error amount within a population
There is an inverse relationship between sample size and
Tolerable error. As the tolerable error decreases the sample size would increase
What is sampling risk?
The risk that the sampke chosen doesn’t accurately represent the population
How is the allowance for sampling risk calculated?
It is the difference between the upper limit and the deviation rate of the sample
What is the embedded audit modules?
Coded into the client’s system to collect data for the auditor
Purpose of test data approach?
Test data is entered with a known outcome into client’s system to see if it produces same result
Under PCAOB standards, a scope limitation related to internal controls over financial reporting should result in:
A disclaimer of opinion
If a control deficiency is discovered, what is the next step?
Determine if it is a material weakness by gathering additional evidence
What opinion is rendered if there is one or more material weakness in internal control over fin reporting?
An adverse opinion
“If this statement is not correct… Give detaiks of difference directly to our auditors
Acc rec confirmation
“In our opinion, these statements audited by us comply in all material respects”
Comfort letter to underwriters
“No claims that OUR lawyer…”
Management rep letter
“Which raises substantial doubt about its ability to continue as a going concern”
Auditors report
CPA is associated with the financial statements, but is NOT independent
Compilation report
Providing NEGATIVE assurance on a company’s financials
Review report
Material departure from GAAP but NOT materially misstated
Qualified report for GAAP departure
