Audit 5 - Sampling and Communications Flashcards

1
Q

What is audit sampling?

A

The testing of less that 100% of the items within an account balance or class of transactions in order to evaluate some characteristic of the balance or class

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

When is audit sampling especially useful?

A

When the auditor has no special knowledge about likely misstatements contained in account balances and transactions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Samples MUST be…

A

randomly selected – each item in a population must have an absolutely equal chance of being selected, CPA cannot use bias (no substitute)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is sampling risk?

A

Risk that the sample is not representative of the population and that the auditor’s conclusion will be different from the conclusion had the auditor examined 100% of the population

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Types of sampling include

A

Statistical and Nonstatistical sampling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

In statistical sampling, auditors…

A

specify the risk they are willing to accept and then calculate the sample size that provides that degree of reliability. Results evaluated quantitively

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

In nonstatistical sampling, the sample size is…

A

not determined mathematically – auditors use their judgment in determining sample size. Results evaluated judgmentally

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Professional judgment must be applied in both statistical/nonstatistical sampling to…

A
  1. define population and sampling unit
  2. select appropriate sampling method
  3. evaluate appropriateness of evidence
  4. evaluate the nature of deviations and errors
  5. consider sampling risk
  6. evaluate results obtained from sample/project results onto population
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Professional judgment is not used in statistical ONLY when…

A

selecting samples

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Statistical sampling – advantages

A
  1. measures the sufficiency of audit evidence obtained
  2. provides objective basis for quantitive evaluation of results
  3. design an efficient sample
  4. quantify sampling risk to limit risk to acceptable level
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Uses of statistical sampling

A

May be used to estimate many different characteristics of populations – generally used as attribute sampling or numerical quantity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Sampling concepts generally do NOT apply to…

A
  1. Risk assessment procedures
  2. Tests of automated controls
  3. Analyses of security and access controls
  4. Some tests related to the operation of the control environment
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Sampling risks in substantive testing (variables – $ amt)

A
  1. Risk of incorrect acceptance

2. Risk of incorrect rejection

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Risk of incorrect acceptance (beta)

A

Risk that the sample supports the conclusion that the recorded account balance is NOT materially misstated when in fact is IS materially misstated

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Risk of incorrect rejection (alpha)

A

Risk that the sample supports the conclusion that the recorded account balance IS materially misstated when in fact is is NOT materially misstated

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Sampling risks in tests of controls (attributes – yes/no)

A
  1. Risk of assessing control risk too LOW

2. Risk of assessing control risk too HIGH

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Risk of assessing control risk too LOW

A

Risk that the assessed level of control risk based on the sample is less than the true risk based on the actual operating effectiveness of the control – overrealiance – ineffective

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Risk of assessing control risk too HIGH

A

Risk that the assessed level of control risk based on the sample is greater than the true risk based on the actual operating effectiveless of the control – underreliance – inefficient

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Efficiency is lost with

A

the risk of assessing control risk too HIGH and the risk of incorrect REJECTION

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Effectiveness is lost with

A

the risk of assessing control risk too LOW and the risk of incorrect ACCEPTANCE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Nonsampling risk

A

includes all aspects of audit risk not due to sampling – is always present and cannot be measured. Can only reduce risk to very low level through adequate planning and supervision, and quality control of all firm practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Attribute sampling is…

A

A statistical method used to estimate the rate of occurrence of a specific characteristic. Generally yes/no questions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Deviation rate is..

A

The auditor’s best estimate of the deviation rate in the population from which it was selected

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

If the estimated deviation rate is less than the tolerable rate for the population…

A

The auditor should consider the risk that such a result might be obtained even though the true deviation rate for the population exceeds to tolerable rate for the population

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Steps for testing controls/attribute sampling

A
  1. Define objective of test
  2. Define the population
  3. Define the sampling unit
  4. Define the attributes of interest
  5. Determine the sample size
  6. Select the sample
  7. Evaluate the results
  8. Form conclusions
  9. Document sampling procedure
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Attributes of interest

A

is only found in attribute sampling – deviations are situation where the control was not properly applied

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

To determine the sample size for tests of controls, the auditor must consider..

A
  1. Risk of assessing control risk too LOW
  2. Tolerable deviation rate
  3. Expected deviation rate
  4. Population size
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

The risk of assessing control risk too low and tolerable deviation rate have which type of relationship to sample size?

A

INVERSE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

Expected deviation rate has which type of relationship with sample size?

A

DIRECT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

Types of sample selection include…

A

Random selection, and systematic selection. Block sampling is NOT acceptable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Upper deviation rate = the sum of

A

Sample deviation rate + Allowance for sampling risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

The auditor may rely on the control if..

A

the UDR is LESS THAN or EQUAL TO the auditor’s TDR

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

The auditor would not rely on the control when…

A

the UDR is GREATER THAN the auditor’s TDR

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Sampling documentation for tests of controls

A

The auditor must document each step in audit sampling – planning, rationale for parameters, performance of procedures, observed results, evaluation and interpretation of results

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Variable sampling is…

A

A statistical sampling method used to estimate the numerical measurement of population, such as dollar value

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

Objective of variable sampling is..

A

To obtain evidence about the reasonableness of monetary amounts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

Tolerable misstatement is..

A

The maximum monetary misstatement in the related account balance or class of transactions that the auditor is willing to accept

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

Stratification

A

Separation of items subject to sampling into relatively homogeneous groups. Commonly used when population has highly variable recorded amounts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Projected misstatement

A

projection of misstatement onto population upon completion of sampling procedures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

If TPM > TM, the auditor should..

A

Consider the risk that such a result might be obtained even though the true monetary misstatement for the population exceeds tolerable misstatement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Commonly used classical variable sampling plans

A
  1. Mean-per-Unit estimation
  2. Ratio estimation
  3. Difference estimation
42
Q

Mean-per-Unit

A

Uses the average value of the items in the sample to estimate the true population value – very sensitive to the variability of the population

43
Q

Ratio estimation

A

Uses the ratio of the audited (correct) values of items to their book values to project the true population – usually requires smaller sample sizes than the MPU method – only effective when auditor expects large numbers of over- and understaements

44
Q

Difference estimation

A

Uses the average difference between the audited (correct) value of items and their book values to project the actual population value – usually requires smaller sample size that the MPU method – only effective when auditor expects large numbers of over- and understaements

45
Q

Steps for substantive testing

A
  1. Define objective of test
  2. Define the population
  3. Define the sampling unit
  4. Determine the sample size
  5. Select the sample
  6. Evaluate the results
  7. Form conclusions
  8. Document sampling procedure
46
Q

To determine the sample size for substantive testing, the auditor must consider..

A
  1. Tolerable misstatement
  2. Expected misstatement
  3. Acceptable level of risk
  4. Characteristics of the population
  5. Assessed risk of material misstatement
47
Q

Test of controls/variable sampling has DIRECT relationship with

A
  1. Expected misstatement
  2. Standard deviation
  3. Assessed level of risk
48
Q

Test of controls/variable sampling has INVERSE relationship with

A
  1. Tolerable misstatement

2. Acceptable level of risk

49
Q

Book value is fairly stated if…

A

Recorded book value falls within the acceptable range (point estimate +/- allowance for sampling risk)

50
Q

Sampling documentation for substantive tests

A

The auditor must document each step in audit sampling – planning, rationale for parameters, performance of procedures, observed results, evaluation and interpretation of results

51
Q

Probability-proportional-to-size (PPS) sampling

A

Technique where the sampling unit is defined as an individual dollar in a population – once a dollar is selected, the entire account containing that dollar is audited

52
Q

Advantages of PPS sampling

A
  1. Automatically emphasizes larger items by stratifying the sample
  2. If no errors are expected, PPS generally requires a smaller sample
53
Q

Disadvantages of PPS sampling

A

Zero balances, negative balances, and understated balances require special design considerations

54
Q

PPS sample interval =

A

tolerable misstatement / reliability factor

55
Q

PPS tolerable misstatement is…

A

the maximum dollar error that may exist in the account without causing the F/S to be materially misstated

56
Q

PPS reliability factors

A

correspond to the risk of incorrect acceptance and are generally obtained from a table

57
Q

PPS evaluation – auditor concludes balance is fairly stated when…

A

no errors are found in the sample, the error projection is zero, and the allowance for sampling risk would not exceed the auditor’s tolerable error

58
Q

PPS projected error =

A

Recorded amount – Audit amount / recorded amount = % * sample interval

59
Q

Dual-purpose samples are generally used only when…

A

the auditor believes that there is an acceptable low risk that the deviation rate in the population exceeds to tolerable rate

60
Q

The size of a sample designed for dual-purposes should be…

A

the larger of the samples that would otherwise have been designed for the two separate purposes

61
Q

An accountant communicates internal control-related matters in what situations?

A
  1. F/S audit (nonissuers)
  2. Examination of I/C (nonissuesr)
  3. Audit of I/C (issuers)
62
Q

A control deficiency exists when…

A

the design or operation of a control does not allow management or employees, in the normal course of performing their assigned functions, to [prevent, or detect] and correct misstatements on a timely basis

63
Q

A deficiency in design occurs when…

A

a necessary control is missing or when an existing control does not achieve the desired objective

64
Q

A deficiency in operation occurs when…

A

a properly designed control does not operate as designed, or is performed by an inappropriate person

65
Q

A material weakness is…

A

a deficiency, or a combination of deficiencies in internal control [over financial reporting], such that there is a reasonable probability that a material misstatement of the entity’s [company’s annual or interim] F/S will not be [prevented or detected] and corrected on a timely basis

66
Q

A significant deficiency is…

A

deficiency, or a combination of deficiencies, in internal control [over financial reporting] that is less severe than a material weakness yet important enough to merit attention by those charged with governance

67
Q

Control deficiencies that may be significant deficiencies or material weaknesses include..

A

deficiencies in the design of controls, and failure in the operation of controls

68
Q

Auditor’s responsibility – control deficiencies (nonissuer)

A

Auditor is responsible for evaluating control deficiencies identified during the audit and, in some cases, reporting on those deficiencies

69
Q

Auditor’s responsibility – detection of control deficiencies

A

Auditor of F/S is not required to perform procedures to identify deficiencies in I/C

70
Q

Significant deficiencies and material weaknesses must be communicated..

A

on a timely basis in writing to mgt and those charged with governance – even those that were corrected during the audit

71
Q

Previously existing deficiencies and material weaknesses that have not been corrected…

A

should be communicated again, in writing, during the current audit by referring to the previously issued written communication and the date of such communication

72
Q

Written communication – timing

A

Recommended: by report release – Required: release + 60 days

73
Q

Management’s responsibility – control deficiency

A

to evaluate and address control deficiencies – mgt may decide to accept deficiencies or weaknesses if cost of correction is too high (auditor must still communicate)

74
Q

Communication of control deficiencies in I/C – F/S audit

A

to management only – within 60 days of report release date

75
Q

Communication of significant deficiency in I/C – F/S audit

A

to management and those charged with governance – within 60 days of report release date

76
Q

Communication of material weakness in I/C – F/S audit

A

to management and those charged with governance – within 60 days of report release date

77
Q

Communication of deficiencies and weaknesses should include..

A
  1. definition of the term material weakness and, when relevant, the definition of significant deficiency
  2. description of significant deficiencies and material weaknesses, including an explanation of their potential effects
  3. Sufficient information to enable those charged with governance and mgt to understand context
  4. restriction of use
78
Q

Absence of significant deficiencies and material weaknesses

A

auditor may NOT report absence of significant deficiency, but MAY issue communication indicating that no material weaknesses were identified

79
Q

Integrated audits

A

Audit of both the F/S and management’s assessment of the effectiveness of I/C over financial reporting. Required by PCAOB for issuers.

80
Q

Integrated audits – objective

A

to express an opinion on the effectiveness of the entity’s internal control over financial reporting

81
Q

Integrated audits – mgt requirements (issuers)

A
  1. establishing and maintaining an adequate I/C structure and procedures for financial reporting
  2. annual report must contain assessment of the effectiveness of I/C structure and procedures for financial reporting
82
Q

Integrated audits – mgt requirements (nonissuers)

A
  1. accept responsibility for effectiveness of I/C
  2. evaluate effectiveness of I/C using suitable and available criteria
  3. support assertion about effectiveness of I/C with sufficient appropriate audit evidence
  4. provide written assertion about the effectiveness of the entity’s I/C in a report that accompanies the auditor’s report
83
Q

Failure to obtain written rep from client is a..

A

scope limitation that will generally result in the auditor’s withdrawal or disclaimer of opinion

84
Q

Steps of testing controls (issuers/nonissuers)

A
  1. evaluate the design effectiveness of the controls
  2. test and evaluate the operating effectiveness of the controls
  3. obtain relatively more evidence for controls that are subject to a greater risk of failure
  4. obtain sufficient appropriate audit evidence to support the opinion
  5. determine the effect of any identified control deviations
  6. determine the appropriate timing for tests of controls
  7. consider knowledge obtained during past examinations
85
Q

If a service org is part of entity’s I/C, auditor should..

A
  1. obtain understanding of relevant controls

2. obtain evidence that the controls are operating effectively

86
Q

Integrated audits – Evaluating control deficiencies (issuers/nonissuers)

A
  1. determine whether identified deficiencies represent significant deficiencies or material weaknesses
  2. compensating controls may limit severity of identified deficiencies
87
Q

Communication of control deficiencies in I/C – examination of nonissuer

A

to management only – within 60 days of report release date

88
Q

Communication of significant deficiency in I/C – examination of nonissuer

A

to management and those charged with governance – by the report release date

89
Q

Communication of material weakness in I/C – examination of nonissuer

A

to management and those charged with governance – by the report release date

90
Q

Communication of control deficiencies in I/C – examination of issuer

A

to management, in writing, and inform the audit committee that this communication has been made

91
Q

Communication of significant deficiency in I/C – examination of issuer

A

to management and audit committee, in writing

92
Q

Communication of material weakness in I/C – examination of issuer

A

to management and audit committee, in writing, prior to the issuance of the auditor’s report

93
Q

A material weakness requires the auditor to..

A

issue an adverse opinion

94
Q

Financial statement audit vs. Examination of I/C

A

F/S audit: purpose of consideration of I/C is to enable auditor to plan the audit and determine the NET of tests to be performed – Examination: to express an opinion about whether the entity maintained, in all material respects, effective I/C as of a point in time based on the control criteria

95
Q

To whom does “those charged with governance” refer?

A

Those who bear responsibility to oversee the obligations and strategic direction of an entity, including the financial reporting process

96
Q

What is an audit committee?

A

A committee of the BODs, generally made up of 3-5 members of the board who are “outside directors”

97
Q

Specific functions of the audit committee

A
  1. selects and appoints the independent auditor and sets audit fee
  2. ensures that any recommendations made by the auditor are given proper attention
  3. ensure the I/C of the company with the help of the independent auditor
98
Q

Audit committee and auditor should meet..

A

without management present at least once each year

99
Q

Required communications with those charged with governance

A
  1. matters related to the auditor’s responsibility
  2. overview of the planned scope and timing of the audit
  3. significant audit findings
100
Q

Requirements of management’s rep letter

A
  1. final piece of evidential matter
  2. letter is mandatory
  3. dated same date as audit report
  4. signed by CEO and CFO
  5. representations
  6. materiality
  7. doubt about the reliability of written representations
101
Q

Contents of management’s rep letter

A
  1. financial statements
  2. completeness of information
  3. fraud
  4. laws and regs
  5. uncorrected misstatements
  6. litigation and claims
  7. estimates
  8. related party transactions
  9. subsequent events
  10. additional representations