Audit Engagement Planning

Question 1

On what 4 things do minutes of board and committee meetings provide info?

Answer 1

1. New developments
2. Staff changes
3. Diversification into new markets or products
4. Major initiatives such as cost reduction programs

Question 2

With respect to gathering information from the audit committee, what is the CAE’s responsibility?

Answer 2

To have regular meetings with chairman of audit committee

Question 3

What are the 7 sources of external reports?

Answer 3

1. External audit
2. Specialists (e.g. I.T. consultants)
3. Engineers
4. H&S inspectors
5. Insurance assessors
6. Actuaries
7. Occupational health practitioners

Question 4

What information can be gathered from external reports?

Answer 4

1. May indicate hi-level risks
2. Evidence of fraud
3. May warn of potentially serious situation
4. May provide assurance

Question 5

What information can be gathered from the organisation’s intranet?

Answer 5

1. Policy information
2. Structure charts
3. Procedures
4. Standards

Question 6

What information can be gathered from the Internet when planning an audit engagement?

Answer 6

Key risks facing similar organisations

Question 7

When gathering information, what should the organisation’s risk policy confirm?

Answer 7

1. Management ethos

2. Policy for risk management

Question 8

What is the purpose of policy documents?

Answer 8

To lay down a framework in which the organisation will achieve its objectives

Question 9

How do policy documents help IA when gathering information?

Answer 9

They help IA to identify key processes

Question 10

With respect to policy and procedure documents, for what does IA have authority?

Answer 10

To recommend and influence changes to policies and procedures

Question 11

What information can be taken from the business plan?

Answer 11

1. Most recent assessment of business area
2. Strategy for next 12 months
3. Forecast for next three to five years

Question 12

Analytical reviews provide measures of d… and t… when compared to related facts

Answer 12

Deviation and trend

Question 13

What are the two main questions asked in analytical review?

Answer 13

1. Is variance within tolerance?

2. Are trends consistent with one another?

Question 14

When due to conduct a fact-finding interview, it is important to undertake b… p…

Answer 14

Background preparation

Question 15

When conducting a fact-finding interview, it is important never to enter the interview c…

Answer 15

Cold

Question 16

When conducting a fact-finding interviewing, you should prepare a c… of areas to cover

Answer 16

Checklist

Question 17

When preparing for a fact finding interview, you should list the t… of q… you will use

Answer 17

Types of questions

Question 18

The two types of fact finding questions are…?

Answer 18

Open and closed

Question 19

When conducting a fact finding interview, it is crucial to define the o… of the meeting

Answer 19

Objectives

Question 20

During or after a fact finding interview, you should encourage the manager to what?

Answer 20

Walk through the processes and introduce you to key staff

Question 21

What is the first stage in engagement planning?

Answer 21

Establish planned scope

Question 22

When establishing the planned scope of an audit engagement, what information should you draw on?

Answer 22

1. Conclusions on risk maturity
2. The audit strategy
3. Title of the assignment
4. Info linking audit to responses requiring assurance

Question 23

What is the second stage of audit engagement planning?

Answer 23

Assess the risk maturity of the unit being audited

Question 24

When assessing risk maturity at the engagement level, the criteria used should be…

Answer 24

Consistent with those used at macro level

Question 25

If actual risk maturity is greater than or equal to expected risk maturity, how should IA proceed?

Answer 25

Carry on as planned

Question 26

If actual risk maturity is less than expected, how should IA proceed?

Answer 26

Report to management, with conclusion that responses in scope not working effectively

Question 27

If risk maturity is less than expected, is it necessarily the end of the audit?

Answer 27

No. Can restrict scope to responses identified as effective

Question 28

What are the six key organisational systems?

Answer 28

1. Fixed assets
2. Payroll
3. Purchasing (creditors)
4. Sales (debtors)
5. Stock
6. Cash (bank)

Question 29

According to performance std 2200, “internal auditor must develop and d… a plan for each engagement, including scope, objectives, timing and resource allocations”

Answer 29

Document

Question 30

According to performance std 2200, “internal auditors must develop and document a plan for each e…, including the scope, objectives, timing and resource allocations”

Answer 30

Engagement

Question 31

According to performance std 2200, “internal auditors must develop and document a plan for each engagement, including the s…, objectives, timing and resource allocations”

Answer 31

Scope

Question 32

According to performance std 2200, “internal auditors must develop and document a plan for each engagement, including the scope, o…, timing and resource allocations”

Answer 32

Objectives

Question 33

According to performance std 2200, “internal auditors must develop and document a plan for each engagement, including the scope, objectives, t…, and resource allocations”

Answer 33

Timing

Question 34

According to performance std 2200, “internal auditors must develop and document a plan for each engagement, including the scope, objectives, timing and r… allocations”

Answer 34

Resource

Question 35

When planning an audit engagement, what are the four angles from which the audit area are appraised?

Answer 35

1. Business objectives
2. Key risks to business objectives
3. Adequacy and effectiveness of risk management and control systems
4. Opportunity for making significant improvements

Question 36

What should provide the rationale for an audit engagement?

Answer 36

Prior risk based macro planning

Question 37

What are the two main purposes of an audit engagement?

Answer 37

1. Determine significant parts of audit

2. Undertake audit in premeditated and coordinated way

Question 38

What are the five general objectives of an audit engagement?

Answer 38

1. Seek evidence that controls and risks in scope exist
2. That controls function as intended
3. That they are fit for job (effective)
4. That they are efficient
5. That they are adequate to maintain the control environment

Question 39

The “audit scope” is the e… of the audit and its limitations

Answer 39

Extent

Question 40

The “audit scope” is the extent of the audit and its l…

Answer 40

Limitations

Question 41

What determines the audit scope?

Answer 41

1. Size of the business area
2. Objectives of business area
3. Risks of business area
4. Nature of systems and procedures

Question 42

The audit scope identifies the b… of the engagement

Answer 42

Boundaries

Question 43

The audit scope pinpoints c… areas and risks to be examined

Answer 43

Control

Question 44

The audit scope pinpoints control areas and r… to be examined

Answer 44

Risks

Question 45

On what should be the whole focus of an audit engagement?

Answer 45

Management of risks

Question 46

What is the justification for testing in an audit engagement?

Answer 46

To evaluate risk mitigation activities

Question 47

The risk matrix includes detailed r…, causes and controls, plus IA’s test strategy and individual tests

Answer 47

Risks

Question 48

The risk matrix includes detailed risks, c…, and controls, plus IA’s testing strategy and individual tests

Answer 48

Causes

Question 49

The risk matrix includes detailed risks, causes, and c…, plus IA’s testing strategy and individual tests

Answer 49

Controls

Question 50

The risk matrix includes detailed risks, causes, and controls, plus IA’s t… s…, and individual test

Answer 50

Testing strategy

Question 51

The risk matrix includes detailed risks, causes, controls, plus IA’s testing strategy and individual t…

Answer 51

Tests

Question 52

What three things should the testing strategy consider?

Answer 52

1. Definition of the risk area and reason for testing
2. Definition of risk management strategies in place
3. Identification of how to test risk management strategies

Question 53

What three questions should be asked once the testing strategy has been completed?

Answer 53

1. What are root causes of risk?
2. Have insurance or other transfer strategies already mitigated risk?
3. Does risk impact on other risk areas?

Question 54

The audit engagement will be looking for information that confirms: c… m… exist, function as intended, and function to an adequate level

Answer 54

Control mechanisms

Question 55

The audit engagement will be looking for information that confirms: control mechanisms exist, f… as intended, and function to an adequate level

Answer 55

Function

Question 56

The audit engagement will be looking for information that confirms: control mechanisms exist, function as intended, and function to an a… l…

Answer 56

Level

Question 57

The audit engagement will be looking for evidence that controls are e… and e…

Answer 57

Efficient and effective

Question 58

List the five main methods for gathering information during audit engagement planning.

Answer 58

1. Walkthroughs
2. Focus groups
3. Surveys
4. One-to-one interviews
5. Audit testing

Question 59

The purpose of analytical methods is to learn about the s… a… or activity being reviewed

Answer 59

Subject area

Question 60

The purpose of analytical methods is the learn about the subject area or a… being reviewed

Answer 60

Activity

Question 61

Analytical methods work by looking at r… within information and comparing to criteria

Answer 61

Relationships

Question 62

Analytical methods work by looking at relationships within information, and comparing to c…

Answer 62

Criteria

Question 63

What are the two main analytical methods?

Answer 63

Trend analysis and ratio analysis

Question 64

CAATTs have the ability to improve the r… and q… of IA analysis

Answer 64

Range and quality

Question 65

CAATTS can be used to a… and e… info from databases

Answer 65

Access and extract

Question 66

CAATTs can be used for s… and s… analysis

Answer 66

Sampling and statistical

Question 67

CAATTs can t…, check and perform calculations

Answer 67

Tabulate

Question 68

CAATTs can tabulate, check and perform c…

Answer 68

Calculations