Audit Engagement Planning Flashcards

1
Q

On what 4 things do minutes of board and committee meetings provide info?

A
  1. New developments
  2. Staff changes
  3. Diversification into new markets or products
  4. Major initiatives such as cost reduction programs
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

With respect to gathering information from the audit committee, what is the CAE’s responsibility?

A

To have regular meetings with chairman of audit committee

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the 7 sources of external reports?

A
  1. External audit
  2. Specialists (e.g. I.T. consultants)
  3. Engineers
  4. H&S inspectors
  5. Insurance assessors
  6. Actuaries
  7. Occupational health practitioners
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What information can be gathered from external reports?

A
  1. May indicate hi-level risks
  2. Evidence of fraud
  3. May warn of potentially serious situation
  4. May provide assurance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What information can be gathered from the organisation’s intranet?

A
  1. Policy information
  2. Structure charts
  3. Procedures
  4. Standards
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What information can be gathered from the Internet when planning an audit engagement?

A

Key risks facing similar organisations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

When gathering information, what should the organisation’s risk policy confirm?

A
  1. Management ethos

2. Policy for risk management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the purpose of policy documents?

A

To lay down a framework in which the organisation will achieve its objectives

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How do policy documents help IA when gathering information?

A

They help IA to identify key processes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

With respect to policy and procedure documents, for what does IA have authority?

A

To recommend and influence changes to policies and procedures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What information can be taken from the business plan?

A
  1. Most recent assessment of business area
  2. Strategy for next 12 months
  3. Forecast for next three to five years
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Analytical reviews provide measures of d… and t… when compared to related facts

A

Deviation and trend

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the two main questions asked in analytical review?

A
  1. Is variance within tolerance?

2. Are trends consistent with one another?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

When due to conduct a fact-finding interview, it is important to undertake b… p…

A

Background preparation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

When conducting a fact-finding interview, it is important never to enter the interview c…

A

Cold

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

When conducting a fact-finding interviewing, you should prepare a c… of areas to cover

A

Checklist

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

When preparing for a fact finding interview, you should list the t… of q… you will use

A

Types of questions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

The two types of fact finding questions are…?

A

Open and closed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

When conducting a fact finding interview, it is crucial to define the o… of the meeting

A

Objectives

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

During or after a fact finding interview, you should encourage the manager to what?

A

Walk through the processes and introduce you to key staff

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What is the first stage in engagement planning?

A

Establish planned scope

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

When establishing the planned scope of an audit engagement, what information should you draw on?

A
  1. Conclusions on risk maturity
  2. The audit strategy
  3. Title of the assignment
  4. Info linking audit to responses requiring assurance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What is the second stage of audit engagement planning?

A

Assess the risk maturity of the unit being audited

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

When assessing risk maturity at the engagement level, the criteria used should be…

A

Consistent with those used at macro level

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
If actual risk maturity is greater than or equal to expected risk maturity, how should IA proceed?
Carry on as planned
26
If actual risk maturity is less than expected, how should IA proceed?
Report to management, with conclusion that responses in scope not working effectively
27
If risk maturity is less than expected, is it necessarily the end of the audit?
No. Can restrict scope to responses identified as effective
28
What are the six key organisational systems?
1. Fixed assets 2. Payroll 3. Purchasing (creditors) 4. Sales (debtors) 5. Stock 6. Cash (bank)
29
According to performance std 2200, "internal auditor must develop and d... a plan for each engagement, including scope, objectives, timing and resource allocations"
Document
30
According to performance std 2200, "internal auditors must develop and document a plan for each e..., including the scope, objectives, timing and resource allocations"
Engagement
31
According to performance std 2200, "internal auditors must develop and document a plan for each engagement, including the s..., objectives, timing and resource allocations"
Scope
32
According to performance std 2200, "internal auditors must develop and document a plan for each engagement, including the scope, o..., timing and resource allocations"
Objectives
33
According to performance std 2200, "internal auditors must develop and document a plan for each engagement, including the scope, objectives, t..., and resource allocations"
Timing
34
According to performance std 2200, "internal auditors must develop and document a plan for each engagement, including the scope, objectives, timing and r... allocations"
Resource
35
When planning an audit engagement, what are the four angles from which the audit area are appraised?
1. Business objectives 2. Key risks to business objectives 3. Adequacy and effectiveness of risk management and control systems 4. Opportunity for making significant improvements
36
What should provide the rationale for an audit engagement?
Prior risk based macro planning
37
What are the two main purposes of an audit engagement?
1. Determine significant parts of audit | 2. Undertake audit in premeditated and coordinated way
38
What are the five general objectives of an audit engagement?
1. Seek evidence that controls and risks in scope exist 2. That controls function as intended 3. That they are fit for job (effective) 4. That they are efficient 5. That they are adequate to maintain the control environment
39
The "audit scope" is the e... of the audit and its limitations
Extent
40
The "audit scope" is the extent of the audit and its l...
Limitations
41
What determines the audit scope?
1. Size of the business area 2. Objectives of business area 3. Risks of business area 4. Nature of systems and procedures
42
The audit scope identifies the b... of the engagement
Boundaries
43
The audit scope pinpoints c... areas and risks to be examined
Control
44
The audit scope pinpoints control areas and r... to be examined
Risks
45
On what should be the whole focus of an audit engagement?
Management of risks
46
What is the justification for testing in an audit engagement?
To evaluate risk mitigation activities
47
The risk matrix includes detailed r..., causes and controls, plus IA's test strategy and individual tests
Risks
48
The risk matrix includes detailed risks, c..., and controls, plus IA's testing strategy and individual tests
Causes
49
The risk matrix includes detailed risks, causes, and c..., plus IA's testing strategy and individual tests
Controls
50
The risk matrix includes detailed risks, causes, and controls, plus IA's t... s..., and individual test
Testing strategy
51
The risk matrix includes detailed risks, causes, controls, plus IA's testing strategy and individual t...
Tests
52
What three things should the testing strategy consider?
1. Definition of the risk area and reason for testing 2. Definition of risk management strategies in place 3. Identification of how to test risk management strategies
53
What three questions should be asked once the testing strategy has been completed?
1. What are root causes of risk? 2. Have insurance or other transfer strategies already mitigated risk? 3. Does risk impact on other risk areas?
54
The audit engagement will be looking for information that confirms: c... m... exist, function as intended, and function to an adequate level
Control mechanisms
55
The audit engagement will be looking for information that confirms: control mechanisms exist, f... as intended, and function to an adequate level
Function
56
The audit engagement will be looking for information that confirms: control mechanisms exist, function as intended, and function to an a... l...
Level
57
The audit engagement will be looking for evidence that controls are e... and e...
Efficient and effective
58
List the five main methods for gathering information during audit engagement planning.
1. Walkthroughs 2. Focus groups 3. Surveys 4. One-to-one interviews 5. Audit testing
59
The purpose of analytical methods is to learn about the s... a... or activity being reviewed
Subject area
60
The purpose of analytical methods is the learn about the subject area or a... being reviewed
Activity
61
Analytical methods work by looking at r... within information and comparing to criteria
Relationships
62
Analytical methods work by looking at relationships within information, and comparing to c...
Criteria
63
What are the two main analytical methods?
Trend analysis and ratio analysis
64
CAATTs have the ability to improve the r... and q... of IA analysis
Range and quality
65
CAATTS can be used to a... and e... info from databases
Access and extract
66
CAATTs can be used for s... and s... analysis
Sampling and statistical
67
CAATTs can t..., check and perform calculations
Tabulate
68
CAATTs can tabulate, check and perform c...
Calculations