Audit Reports Flashcards

Question 1

Q

What is Audit Sampling?

Answer

A

Taking part of a population, subjecting it to audit procedures, projecting results to a population

Question 2

Q

What are the requirements for an audit report?

Answer

A

Must conform to GAAP

Consistency with prior period reporting is implied (must state if inconsistent)

Adequacy of disclosure is implied (must state if disclosures are lacking)

Opinion is provided - provides assurance

Must be signed by the auditor- and dated.

Question 3

Q

What is the primary duty of an auditor?

Answer

A

To provide users of financial information with REASONABLE ASSURANCE that the financial statements are not materially misstated.

Question 4

Q

What is the majority of an auditor’s work in determining an audit opinion?

Answer

A

Collection of evidence to support the opinion.

Question 5

Q

What does auditing internal control in a company’s IT environment accomplish?

Answer

A

Plan the rest of audit - Shorter audit trails that may expire, Less documentation

Assess the level of Control Risk - Unauthorized access to systems or data is more difficult to catch

Systems access controls adds another layer to separation of duties analysis

Focus should be on the general controls, new systems development, current systems changes, and program/data access control or computer ops control changes

Question 6

Q

What are the characteristics of Statistical Sampling?

Answer

A

Based on formulas

Helps find an appropriate audit sample

Helps evaluate evidence obtained

Helps evaluate results and quantify Sampling Risk

Question 7

Q

If internal control is poor and a company’s accounting practices are sloppy, which risk is higher?

Answer

A

Control risk increases with poor internal control and sloppy accounting practice.

Question 8

Q

Who created the International Auditing Standards?

Answer

A

The International Auditing and Assurance Standards Board (IAASB)

Member of the International Federation of Accountants (IFAC)

Question 9

Q

What engagements are covered by the AICPA Code of Professional Conduct?

Answer

A

Covers all professional engagements and is the minimum standard of conduct

Member should additionally follow specific standards for a specific engagement

Question 10

Q

How should an audit report be adjusted if reporting is not consistent with the prior period?

Answer

A

If inconsistent- an Unqualified Opinion is OK

Explanatory paragraph after Opinion is added

Otherwise - Qualified Opinion issued

Question 11

Q

What is the auditor’s responsibility for detecting theft or fraud?

Answer

A

Auditors are not responsible for detecting theft or fraud.

Instead, they are responsible for providing REASONABLE ASSURANCE that the financial statements are not materially misstated.

Question 12

Q

Of what does audit Evidence consist?

Answer

A

Evidence consists of client accounting data and supporting documentation from client or from third parties.

Question 13

Q

When is an audit of IT NOT required?

Answer

A

Controls are redundant to another department

The system doesn’t appear to be reliable and testing controls wouldn’t be an efficient use of time

Costs exceed benefit

Question 14

Q

If internal control is poor, what is the effect on the audit?

Answer

A

Auditor will need to perform more testing and dig deeper into accounts in order to arrive at an opinion regarding the financial statements.

Question 15

Q

What are the characteristics of Non-Statistical Sampling?

Answer

A

Based on human decision

Equally acceptable as Statistical Sampling

Question 16

Q

When is consistency not violated with respect to changes in reporting between years?

Answer

A

Accounting Errors

Reclassifications

Prospective treatment of a new principle

Accounting Estimate Change

Question 17

Q

For whom were IAASB International Auditing Standards created?

Answer

A

IAASB standards are for countries that don’t have their own standards and help set the tone for the rest of the members who do have their own standards (AICPA)

IAASB doesn’t override member standards

Question 18

Q

What must an accountant have under the AICPA Code of Professional Conduct?

Answer

A

Integrity
Objectivity
No Conflicts of Interest
No known misrepresentations of facts
No outsourcing of judgment

Question 19

Q

When should an auditor be hired in relation to the balance sheet date for optimum audit planning and efficiency?

Answer

A

The earlier the auditor is hired, the better for audit planning and efficiency.

Question 20

Q

What is the relationship between Evidence and Detection Risk?

Answer

A

Evidence has an inverse relationship with Detection Risk

The one aspect of Audit Risk an auditor can control through (N)ature, (T)iming, (E)xtent of audit procedures.

Inherent Risk and Control risk are outside of auditor’s control.

Question 21

Q

When can an audit of IT be performed without directly interacting with the system?

Answer

A

System isn’t complex/complicated

System output is detailed

Question 22

Q

For what does internal control provide reasonable assurance?

Answer

A

Internal control provides reasonable assurance that:

Material misstatements will be prevented

Reliability/integrity of financial statements will be preserved

Assets are protected against misuse

Question 23

Q

What financial approach is used under IAASB audit standards?

Answer

A

IAASB standards are based on a risk assessment approach

Question 24

Q

What are the characteristics of Substantive Tests?

Answer

A

Variables sampling

Probability proportionate to size sampling

Question 25

Q

What assurance is provided in an audit opinion?

Answer

A

The opinion states that the financial statements are fairly presented in all material respects

The opinion states if the financials are in conformity with GAAP.

Question 26

Q

When can audit procedures be performed at interim dates?

Answer

A

If Control Risk for the accounts and/or transactions is low, audit procedures can be performed at interim dates.

The auditor then reviews changes in the balances at year-end.

Question 27

Q

What are threats and safeguards to independence?

Answer

A

Safeguards > Threats = Independence

Threats > Safeguards = No Independence

Question 28

Q

Which aspects of Audit Risk can an auditor control?

Answer

A

Detection Risk, which is decreased by gathering evidence.

Question 29

Q

What is the role of a Database Administrator?

Answer

A

Maintains database

Restricts access

Responsible for IT internal control

Question 30

Q

What is required in an examination of internal control under Sarbanes-Oxley?

Answer

A

CEO/CFO must disclose Internal Control deficiencies

Management must provide assessment of Internal Conrol

Management must certify Financial Statements

Question 31

Q

How do IAASB audit standards compare to US audit standards?

Answer

A

IAASB = No Internal Control audits

IAASB = No Referencing another Audit Firm

IAASB = Less detailed documentation

IAASB = Required: obtain written fraud assessment

IAASB = Required: location of auditor’s home office

Question 32

Q

What are the threats to independence?

Answer

A

Self-Review (Auditing own work)

Advocate of the Client

Adverse Interest (Lawsuit against Client)

Too familiar with Client – could impair the appearance of Independence to public

Undue influence on Client - On Board of Directors, exception being an Honorary board position

Question 33

Q

What type of sampling are Control Tests?

Answer

A

Attribute Sampling

Question 34

Q

What are the sections of the audit report?

Answer

A

Title - States that the auditor is independent

Address - whomever hired the auditor

Introduction Paragraph

Scope Paragraph

Opinion Paragraph

Signed and Dated by Author

Question 35

Q

When can an auditor accept an engagement offered after the year is already closed?

Answer

A

The auditor can take the engagement if they are able to overcome the limitations of the engagement.

Question 36

Q

Which aspects of Audit Risk can an auditor NOT control?

Answer

A

Inherent Risk and Control Risk are outside of an auditor’s control.

Question 37

Q

What is the role of a Systems Analyst?

Answer

A

Recommends changes or upgrades

Liaison between IT and users

Question 38

Q

What is the relationship between internal control and Substantive Testing?

Answer

A

Inverse Relationship:

Stronger Internal Controls = Less Testing Needed

Weaker Internal Controls = More Testing Needed

Question 39

Q

What are International Ethical Standards?

Answer

A

Standards set by International Ethics Standards Board for Accountants (IESBA)

Code of Ethics for Professional Accountants - Similar to AICPA Code of Professional Conduct

Question 40

Q

What are the Safeguards to independence?

Answer

A

Offset the threats

Safeguards are created by Legislation (SOX), Client (Audit Committee), Accounting Firm (Policies)

Question 41

Q

What is Sampling Risk?

Answer

A

Risk that your sample isn’t representative of population

Can happen even if audit is done properly

Question 42

Q

Which statements are included in the Scope Paragraph of the audit report?

Answer

A

GAAS was followed (IF SEC company, use the standard of the PCAOB)
Reasonable assurance about material misstatements was obtained.
Financial statements and disclosures are supported by evidence.
Management estimates evaluated
Accounting principles evaluated
Financial Statement presentation evaluated
Reasonable basis exists for an opinion

If any scope limitations exist, the auditor tries to work around them and still issue an unqualified opinion if possible.

Question 43

Q

For what does an auditor use professional skepticism?

Answer

A

To plan the scope of the audit

To plan the objectives of the audit

Question 44

Q

How does a high level of acceptable Detection Risk affect an audit?

Answer

A

Less Evidence collected. Opens door for incremental audit risk - Internal Control should be strong.

Business and transactions should be relatively stable and predictable.

(N) Less-competent Evidence collected
(T) Interim testing acceptable
(E) Fewer transactions are verified.

Question 45

Q

What is the role of the data Librarian?

Answer

A

Responsible for disc storage

Holds system documentation

Question 46

Q

What are the three objectives of internal control?

Answer

A

Reliability of Financial Reporting

Operational Efficiency/Effectiveness

Compliance with Law and Regulations

Question 47

Q

Which groups are covered under the three sections of the International Ethical Standards?

Answer

A

A) Covers all accountants

B) Covers Public accountants

C) Covers accountants in a business environment

Question 48

Q

What are the characteristics of a Covered Member?

Answer

A

On the engagement team, have Significant influence on Audit, such as:

Reviewing Partner
Managing Partner in CPA Firm
Firm Personnel who does more than 10 hours of non-attest work (Income Taxes)
Partner sharing office with another Partner who oversees an engagement
Financial Interest in Client by Covered Member (Auditor on Engagement)

Question 49

Q

What is the risk of assessing Control Risk too high?

Answer

A

A risk of Control Testing - Auditor works to make Control Risk lower

More substantive tests - Sample overstates Control Risk, Leads to an under-reliance on internal control, over-testing, and overall audit inefficiency

Audit ends up being effective (correct result), but you do more work

Question 50

Q

For an unqualified opinion to be issued- what must be the case with all periods presented?

Answer

A

A prior year’s Financial Statement used for comparative purposes must also meet criteria for an Unqualified Opinion

If an exception arises- the Explanatory and Opinion paragraphs will address the issue

If a prior year’s issue has been corrected- issue an Unqualified opinion and ignore the past issue

Question 51

Q

How can analytical procedures be performed in audit planning?

Answer

A

The auditor can compare actual versus forecasted numbers.

Question 52

Q

What should occur when a low level of Detection Risk is acceptable?

Answer

A

More Evidence collected

(N) More-competent Evidence collected
(T) End of year balance testing
(E) More transactions are verified

Question 53

Q

What is the benefit of Generalized Audit Software in an audit?

Answer

A

Uses computer speed to quickly sort data and files, which leads to a more efficient audit

Compatible with different client IT systems

Extracts evidence from client databases

Tests data without auditor needing to spend time learning the IT system in detail

Client-tailored or commercially produced

Question 54

Q

What are the five components of internal control?

Answer

A

Control Environment

Risk Assessment

Information and Communication

Monitoring

Control Activities

Question 55

Q

What are the requirements for all accountants under the International Ethical Standards?

Answer

A

Accountants should have Integrity
Accountants should be Objective
Accountants should have Competence
Accountants should exercise Due Care
Accountants should maintain Confidentiality
Accountants should act Professionally

Question 56

Q

What are the requirements for a Covered Member?

Answer

A

No direct financial interest

No Material indirect financial interest

Firm personnel who are not Covered Members cannot own more than 5% of stock

Covered Member’s immediate family cannot own more than 5% of stock or be employed in Key positions. If Covered member is aware of this, it will impair independence.

Cannot make management decisions.

All requirements apply during the period of the professional engagement, and as long as they are a client.

Question 57

Q

What is the risk of assessing Control Risk too low?

Answer

A

A risk of Control Testing - Complement to Confidence Level
Inverse relationship to Sample Size

Higher accepted risk of assessing Control Risk too low = Smaller Sample

Lower accepted risk of assessing Control Risk too low = Larger Sample

Question 58

Q

What is included in an unqualified opinion paragraph with an emphasis?

Answer

A

Includes:

Immaterial GAAP issues
Going Concern worries
Auditor shares responsibility
Emphasizing a particular aspect of Financial Statements
Unqualified Opinion/Assurances not affected

Explanatory paragraph added after opinion

Question 59

Q

What must an auditor have in order to discuss issues relating to a predecessor auditor’s work?

Answer

A

If issues relating to predecessor auditor’s work on previous Financial Statements come up during the current audit, Auditor must have client’s permission to discuss the issue.

Question 60

Q

What are the primary risks in an audit for a typical for-profit company?

Answer

A

Auditors are there to verify that

Assets & Revenues are not overstated
Expenses & Liabilities are not understated

Exception – if the CPA Exam states that it is a “tax-driven” company, flip them around

Question 61

Q

What is a Relational Database?

Answer

A

Group of related spreadsheets

Retrieves information through Queries

Question 62

Q

What is the purpose for a control environment assessment?

Answer

A

Sets tone for the entire company

Question 63

Q

What questions should public accountants pose to themselves under the International Ethical Standards?

Answer

A

What are the threats/safeguards?
Does this new client threaten our ethics?
What are the conflicts of interest?
What are the threats/safeguards for offering a second opinion?
What are the threats/safeguards for receiving commissions or contingent fees?
Is our marketing truthful?
What are the threats/safeguards for receiving client gifts?
What are the threats/safeguards to objectivity?

Question 64

Q

What happens when a Covered Member disagrees with a Supervisor?

Answer

A

If Supervisor’s position is still GAAP/GAAS, defer to Supervisor

If Supervisor’s position is not GAAP/GAAS, report to higher levels of management

If management ignores you, consider leaving the firm

Answer 65

A

Leads to higher Detection Risk - Fewer substantive tests

Sample understates Control Risk

This error leads to over-reliance on internal control, undertesting, and overall audit ineffectiveness.

Does NOT necessarily mean that the Financial Statements are materially misstated – it does mean that if there is one, you are less likely to find it

Answer 66

A

A qualified opinion creates reduced assurances.

It results from scope limitations or major inconsistencies.

It includes material problems with GAAP- disclosures- or segment reporting.

If there is an issue that causes a Qualified Opinion- the explanatory paragraph goes after the Scope and before the Opinion paragraphs and the Opinion paragraph refers to the issue as well.

Answer 67

A

Were they adequately performed? (Review the working papers)

Are the results consistent with the audit report?

Answer 68

A

Cost vs. Benefit is a primary constraint.

Answer 69

A

A language that defines a database and gives information on database structure.

It maintains tables, which can be joined together.

It establishes database constraints.

Answer 70

A

Integrity/Ethics of Management
Compentence of Management
Organizational Structure
Human Resource Policies
Assignment of Authority/Responsibility
Management's Style (riskier with a dominant/aggressive individual)
Board/Audit Committee involvement

Answer 71

A

Audit

Review

Attestation Engagement

Answer 72

A

A risk of Substantive Testing - Auditor accepts a balance as fairly stated, when in fact it is not fairly stated

Hurts audit effectiveness

Wrong conclusion reached

Efficient, but not effective

Answer 73

A

Qualified opinion is issued.

Scope paragraph modified

Explanatory paragraph between Scope and Opinion paragraphs

Opinion paragraph points out scope limitation

Answer 74

A

Auditor determines what the reporting objectives are.

Auditor determines the scope of the audit.

Answer 75

A

Sufficient (quantity)

Appropriate: Relevant & Reliable (Quality)

Answer 76

A

Maintains and queries a database

Auditor needs information, so client uses DML to get the information needed

Answer 77

A

Detection Risk determines nature, timing, and extent of audit procedures.

Answer 78

A

Agreement must be in writing.
Independence not required - Must state if you are not independent

Applicable engagements: Consulting, Compilation

Answer 79

A

A risk of Substantive Testing - Auditor rejects balance as fairly stated when in fact it is fairly stated

Hurts audit efficiency

Wrong recommendations given

Effective, but not efficient

Answer 80

A

Qualified opinion is issued.

Scope paragraph remains unchanged

Explanatory paragraph between Scope and Opinion paragraphs

Opinion paragraph points out inconsistency

Answer 81

A

Materiality and Audit Risk

Answer 82

A

Best evidence: Observation of activity by auditor.

2nd Best: Originates from External Parties and is sent directly to auditor (or failing that, items are generated by third party and provided to auditor by the client, such as a bank statement)

Weakest: Oral evidence from management.

Answer 83

A

A Data Control Language controls a database and restricts access to the database.

Answer 84

A

Risk of material misstatement determines acceptable level of Detection Risk

Answer 85

A

Consulting engagements are covered by Statements on Standards for Consulting Services (SSCS)

Requirements: Competence, Due Care, Planning, Supervision, Obtain Sufficient Data, Must Serve Client Interest, Must have written or oral agreement, must communicate with client.

Answer 86

A

Risk of human (auditor) missing an error

Also called exception, error or deviation.

Answer 87

A

States that an opinion cannot be issued.

Creates negative assurances

Includes severe Scope limitation

Answer 88

A

Training and Proficiency (Education and Audit Experience)

Independence

Due Professional Care

(TIP)

Answer 89

A

Third party documents are more persuasive and credible than internally-prepared docs

Auditor Knowledge = Most Persuasive

3rd Party info given to auditor

3rd Party info given to client

Internally-prepared doc

Answer 90

A

A numerical character consistently added to a set of numbers.

It makes it more difficult for a fraudulent account to be set up or go undetected.

Answer 91

A

Rapid growth in the company.

The methods management uses to identify risk, estimate its significance and assess the likelihood of occurrence

Major changes to operations, personnel, systems, IT, products, corporate organization, and foreign operations.

Answer 92

A

Advisory Services

Transaction Services

Management Consulting

Implementation Services

Answer 93

A

Sampling Risk deals with the chance that your audit sample is flawed

Non-Sampling risk deals with the chance that your human decisions/conclusions are flawed

Answer 94

A

Very material GAAP and Disclosure issues would cause an Adverse Opinion.

If there is an issue that causes an Adverse Opinion- the explanatory paragraph goes after
the Scope and Before the Opinion paragraphs and the Opinion paragraph refers to the issue as well

Answer 95

A

Auditor must be independent in fact and appearance

Honesty

No direct financial interest

No indirect material financial interest

Answer 96

A

Test substance/amounts/values. They help to reduce the risk of material misstatements. They only test accuracy of financial statements and dollar amounts - they don’t test internal controls.

Answer 97

A

A Code Review tests a program’s processing logic.

Advantageous because auditor gains a greater understanding of the program.

Answer 98

A

No internal control testing is performed.

All audit procedures are increased in intensity to compensate for increased risk.

Answer 99

A

Not allowed if Member also performs services where independence is required

Commissions or referral fees for Covered Members are not allowed

Example – Audit firm gets a commission for recommending to Client that they implement a new A/P System…NOT Allowed

If a firm performing non-attest work doesn’t also perform Covered Member services (aka – Independence not
required), then Firm can get a commission on referring products/services, but they must disclose to the Client

Tax Preparation - Payment according to refund amount is disallowed

Answer 100

A

Looking at Control Procedures - Were invoices approved when paid?

Errors are stated in terms of %, not dollar amounts

For example, 5 invoices out of 100 were not properly paid. Error rate is 5%

Hint: If you see Error Rate on the Exam, they are referring to Attribute Sampling.

Answer 101

A

Disclosed in Introductory Paragraph.

Doesn’t name the other auditor without permission.

Referenced in Opinion paragraph and division of responsibility indicated

If other auditor is not referenced- then you take responsibility for their conclusions- so consideration of independence- experience- credentials- etc required

Answer 102

A

Technical abilities mirror those held by peers in the profession
Follow GAAS Standards
Obtain a Reasonable Level of Assurance
Maintain Reasonable Level of Skepticism
Supervise Audit Staff
Review judgment at every level

Answer 103

A

Trace (or Vouch)
Reconcile
Analytical Procedures
Confirmations
Examine evidence that supports management assertions.

(T.R.A.C.E.)

Answer 104

A

Examines data and looks for reasonableness using upper and lower limits to determine if data fits the correct range.

Did anyone score higher than 100%?

Answer 105

A

Auditor tests internal controls.

Auditor evaluates Control Risk based on tests

Auditor adjusts substantive tests accordingly:

Weaker Internal Control = More substantive tests

Stronger Internal Control = Less substantive tests

Answer 106

A

When fees are structured relative to judicial proceedings.

Example: IRS audit, or filing an amended tax return subject to tax case with a different taxpayer.

Answer 107

A

Control Procedures are either operating properly or they are not operating properly – based on Error Rate and the tolerance you have for errors

Answer 108

A

Compilations are governed by SSARS (Statements on Standards for Accounting and Review Services)

Answer 109

A

Planning and Supervision
Internal Control
Evidence

(PIE)

Answer 110

A

Auditors focus first on Balance Sheet Accounts, then associated Income Statement items

Answer 111

A

Auditor processes data with client’s computer - fake transactions are used to test program control procedures.

Each control needs to only be tested once

Problem with this method - fake data could combine with real data.

Answer 112

A

Performance Reviews

Information Processing

Physical Controls

Segregation of Duties

Answer 113

A

Client must carry them out - covered member cannot perform management functions.

Client must assign someone of competence to oversee the non-attest engagement and CPA must be satisfied that this has occurred.

Answer 114

A

Error rate in population that you are willing to accept/tolerate

Inverse relationship to Sample Size

Higher Tolerable Rate = Smaller Sample
Lower Tolerable Rate = Larger Sample

If you’re willing to accept a higher probability that errors exist, there is less pressure on the sample

Answer 115

A

Non-SEC (non-public) registrants only.

Answer 116

A

Consistency
Disclosures
Opinion
GAAP

(CDOG)

Answer 117

A

Assurance Level is High.

Acceptable Detection Risk is Low.

Answer 118

A

Auditor can review logs to see which applications were run and by whom.

Answer 119

A

Understand Client’s:

Major transaction classes
Transaction initiation
Support records/documents
Transaction processing
Financial Statement internal reporting process
Financial Statement external reporting process

Answer 120

A

Must have definite objectives

Must have specific procedures planned

Must have a basis for recommendations

Must have recommendations communicated

Must have action steps to implement

Answer 121

A

What Error Rate are you expecting? - Judgment call, based on experience

Direct relationship to Sample Size

More errors = Larger Sample

Less errors = Smaller Sample

Answer 122

A

Accountant puts together financial statements with information PROVIDED BY MANAGEMENT.

No opinion is expressed- and no assurances are given.

Independence is not required.

Answer 123

A

Review the previous financial statements

Speak to third parties

Contact predecessor auditor to evaluate whether engagement should be accepted (must have client permission)

Answer 124

A

If Acceptable DR is High - Negative Confirmation is used - Customer only responds if balance is materially wrong.

If Acceptable DR is Low - Positive Confirmation is used - Customer asked to confirm by telling auditor the balance.

Corresponding Income Statement Account - Revenue

Answer 125

A

Helpful in online environments

Restricts computer access - may use encryption.

Answer 126

A

Through written documentation such as internal control memos, flowcharts, and questionnaires

Answer 127

A

Departure from GAAP is appropriate if GAAP would cause Financial Statements to be misleading, then it must be explained/disclosed.

Answer 128

A

Attribute in the sample gives information about the entire audit population

Used to estimate Internal Control error rate

Answer 129

A

Disclosures not necessary – must state that they are not included

Answer 130

A

Note: must have permission of client to contact predecessor auditor (no permission = no engagement)

Why the Auditor Change?
Any Serious Discussions with Audit Committee?
How is Management Integrity? Disagreements?
How was Internal Control?
Understand Industry or Be Willing to Learn
Consider Scope Limitation - Limited evidence available = no engagement

Answer 131

A

Review purchase orders/invoices

Confirm with Vendors

Corresponding Income Statement Account – Various Expenses

Answer 132

A

Library Management Software logs any changes to system/applications etc.

Answer 133

A

Were all transactions recorded?
Were they timely?
Measured appropriately?
Recorded in correct period?
Presented and disclosed properly?
Did Management communicate their responsibilities?

Answer 134

A

Member may disclose confidential info when client isn’t following GAAP

OR

If they receive a subpoena – CPAs are not Attorneys, so there is no CPA-Client privilege

Answer 135

A

Used to determine initial level of Control Risk

Answer 136

A

SSARS (Statements on Standards for Accounting and Review Services)

Answer 137

A

Note: must be written

Objectives of Engagement
Limitations of Engagement
Responsibilities of Management - Provide written assertions
Responsibilities of Auditor - Limited error/fraud responsibility
Expectations of Access to Records
Financial Statements (and Disclosures) are Management’s Responsibility
Compliance with Laws
Internal Control

Answer 138

A

Examine purchase agreements

Look at Board Minutes

Is Inventory held as collateral?

Corresponding Income Statement Account – COGS

Answer 139

A

Assist with audit calculations

Enable continuous monitoring in an audit environment that is changing

Weakness: requires implementation into the system design

Example: SCARF - Collects information based on some criteria and can be analyzed at a later time (necessary because the audit environment is continually changing)

Answer 140

A

Auditor needs reasonable assurance that controls are functioning as designed and effective

Internal Control Testing should be strong as (IRON) so that nothing gets past them

Inquiry – Interview company personnel
Re-performance – Can it be replicated?
Observation – Watch the control be applied
INspection – Dig into the details/documents

If results are as expected, substantive procedures do not need to be adjusted

Answer 141

A

This is an act discreditable.

You MUST return all documents the client gives you even if they don’t pay their bill.

If you create a document, however, like a work paper, you are not required to give the client a copy of papers you created if they haven’t paid their bill

They are the firm’s work papers, but are still confidential!

Answer 142

A

Risk of Assessing Control Risk too low

Gives you the Sampling Risk

Answer 143

A

Reviews give limited assurance.

Answer 144

A

Management is responsible for financial statements and adequacy of disclosures.

Presentation & Disclosure
Existence (Tests Overstatements)
Rights & Obligations
Completeness (Tests Understatements)
Valuation & Allocation

Answer 145

A

Should match last year’s ending balance.

Answer 146

A

An Audit Hook is an application instruction that gives auditor control over the application.

Answer 147

A

Controls tested by auditor in a prior year can be used in the current year’s audit assuming they are re-tested every third year

Exception: If the control has changed since the last audit

Answer 148

A

CPA firm names must not be misleading.

If partner dies, remaining partner has two years to change name if partnership dissolved. If partner dies and more than one partner still remains (i.e. 1 dies and you still have 2 or more partners…you don’t need to change the name)

All Partners/Shareholders must be members of the AICPA in order to hold themselves out as members of the AICPA. Non-CPAs can be owners, but 2/3 of Ownership must be CPAs. Non-CPA owner must not be involved with the accounting, and is still bound by AICPA code of conduct, must maintain CPE requirements and have Bachelor’s degree.

Answer 149

A

Attribute sampling is only useful when there is documented evidence (an audit trail) to test

Use when the existence of an error needs to be verified or debunked

Answer 150

A

Analytical procedures are required for reviews.

Compare results to documented predictions.

Answer 151

A

Responsible for Hiring Auditor

Oversees Internal Control

Must Agree with Auditor on: Responsibility of the Parties, Audit Fee, Timing of the Audit, Audit Plan

Acts as Liaison Between Auditor and the Board

Auditor Communicates Concerns about: Internal Control Deficiencies, Errors, Fraud, Illegal Activities

Answer 152

A

If Beginning Balance, Additions, Subtractions are OK, then Ending Balances should also be OK.

Answer 153

A

Transaction Tagging allows logging of company transactions and activities.

Answer 154

A

Control Risk increases

Scope of substantive procedures increases

Detection Risk decreases

Material Weakness - Reasonable possibility that a material misstatement in Financial Statements would not be found, more than a remote chance of occurrence

Answer 155

A

It is an Act Discreditable.

Answer 156

A

Testing for a dollar amount

Value in sample gives information about value in entire population.

Answer 157

A

Financial statements are presented with no opinion expressed- and limited assurances are given.

Independence is required for a review engagement.

Answer 158

A

Inherent Risk x Control Risk x Detection Risk

Risk that material mistakes, errors, omissions, or fraud will result in an inaccurate audit report

Based on Auditor Judgment

Measured in both Qualitative and Quantitative

Answer 159

A

Foot all balances – Check the Math

Trace Cash Flow items to other Financial Statements

Check classifications - Operating Activities, Investing Activities, Financing Activities

Answer 160

A

Extended Records add audit data to financial records.

Answer 161

A

Reasonable possibility exists that a material misstatement in Financial Statements would not be found, and has more than a remote chance of occurrence.

Answer 162

A

Licenses are granted at the State level
If State revokes certificate, AICPA Ban
Felony Conviction, AICPA Ban
Prepares Fraudulent Tax Return, AICPA Ban
Intentionally failing to file return, AICPA Ban
SEC can get involved with discipline

Answer 163

A

Mean Per Unit = Sample Average x Number in Population

Stratification - Decreases effect of variance in population and reduces sample size

Answer 164

A

A prospective financial statement that uses normal circumstances.

General and limited use allowed.

Answer 165

A

Risk that internal control will not detect error or fraud

Auditor cannot control this.

Answer 166

A

Interest Paid

Income Taxes Paid

Non-cash Transactions

Cash and Cash Equivalents Definitions

Answer 167

A

Destroys prior data when updated

aka “Destructive Updating”

Requires well-documented Audit Trail

Answer 168

A

Tests Completeness

Starts with source document and traces forward to the journal entry.

Answer 169

A

Monitors CPA Firms who audit SEC clients - All SEC Audit firms must register

Issues standards for firms to follow - usually stricter than AICPA standards

Answer 170

A

A form of Variable Sampling

Does NOT use Standard Deviation

Auditor focuses on a dollar amount

Larger or more valuable items get picked more often as part of the sample

Answer 171

A

A prospective financial statement using hypothetical situations.

Only limited use by the client is allowed.

Answer 172

A

Which transactions have a higher level of risk?

Auditor cannot control

Answer 173

A

Results as if you had used Indirect Method

Non-cash Transactions

Cash and Cash Equivalents Definition

Answer 174

A

If the auditor only audits the outputs of a computer system and doesn’t also audit the software applications, an error in the applications could be missed.

Answer 175

A

Tests Existence.

Starts with a journal entry and searches for a voucher or source document to support the entry.

Answer 176

A

If Client pays a contingent fee (i.e. based on outcome)

With Marketing or Planning engagements

Aggressive Tax Strategies

Firm does tax work for Client employee involved with audit oversight or their
family

Answer 177

A

Misstatement found in sample – have to project it to remainder of population

Answer 178

A

Independence is required

Only limited use by the client is allowed.

Answer 179

A

Will the auditor fail to detect a material misstatement?

Auditor CAN control

Do testing at year-end
Increase substantive testing
Run more effective tests

Answer 180

A

Subsequent events occur after the Balance Sheet Date, but before the audit report is issued.

Auditor needs to make inquiries and assess if they affect the audit report.

Answer 181

A

Software that translates source program (similar to English) into a language that the computer can understand

Answer 182

A

Non-compatible duties performed by separate individuals, such as:

Authorization of asset disbursement vs. Recording of Assets vs. Custody of assets

If supporting audit evidence doesn’t exist, use Observation and Inquiry

Accounting should be segregated from Production

Answer 183

A

Client Audit Committee must approve non-audit work performed by Firm

Firm must disclose any potential independence issues to Audit Committee

Answer 184

A

PPS:

Easier to use, Results in a stratified (homogenous) sample, Results in a smaller sample size to audit, Easy to design

Classic Variables Sampling:

Easy to expand sample size, Selecting zero and negative balances easy

Answer 185

A

No disclosure required.

Answer 186

A

Less Acceptable DR = Run More Substantive Tests

More Acceptable DR = Run Less Substantive Tests

More Substantive Tests (DR down) = Less Audit Risk; (AR = IR x CR x DR)

Less Substantive Tests (DR up) = More Audit Risk; (AR = IR x CR x DR)

Answer 187

A

If audit report has already been issued and auditor becomes aware of a situation that was present as of the BS date, client should issue a disclosure to financial statement users and/or revise the financial statement.

Regulatory agencies might need to get involved under some circumstances.

Answer 188

A

Client data is processed using Generalized Audit Software (GAS)

Sample size can be expanded without significantly increasing the audit cost

GAS output compared to client output

Answer 189

A

Employees who prepare vouchers/invoices should not also have the authority to SIGN CHECKS

Tip – Remember this as an underlying theme with Segregation of Duties – authority to make a payment should not also lie in the hands of those creating invoices/vouchers. Why? People commit fraud by setting up fake companies and basically paying themselves

Answer 190

A

GAO - Government Accountability Office

Answer 191

A

Tolerable rate for error - Inverse relationship with sample size

Risk of assessing Control Risk too low - Inverse relationship with sample size

Expected population error rate - Direct relationship with sample size

Population size does NOT affect the sample size - as population is larger, sample size doesn’t grow.

Answer 192

A

Accrue if estimable.

Explanatory paragraph if not estimable.

Answer 193

A

Quantitative Measurements - Inherent, Control, and Detection Risk can all be measured in terms of percentages

Non-Quantitative Measurements - Inherent, Control, and Detection Risk can all be measured in terms of acceptable ranges

Answer 194

A

If auditor discovers that they forgot to perform a substantive procedure, auditor should determine if other substantive procedures performed served as a substitute.

Otherwise support for their audit opinion could be jeopardized.

Answer 195

A

Employees who have custody of assets should not also RECORD those assets

Someone in charge of petty cash should not also control the petty cash records

Treasury Department (custodians) should NOT have record keeping duties

They control assets and should not be able to adjust any recording of those assets

Answer 196

A

Auditors must follow both GAAS and GAS – aka the “Yellow Book”
Materiality threshold is usually lower
More detail is required on working papers
More stringent CPE rules and requirements - 24 hours of continuing education must be related to governmental auditing every 2 years
Compliance with Regulations is a requirement of the Audit Report

Answer 197

A

SER + ASR < TER

SER = Sample Error Rate

ASR = Allowance for Sampling Risk

TER = Tolerable Error Rate

Answer 198

A

Auditor assesses need for explanatory paragraph based on loss likelihood.

Answer 199

A

It is Management’s responsibility.

Answer 200

A

REQUIRED When planning the audit (preliminary)

REQUIRED When reviewing the audit (final)

Analytical procedures may be also performed optionally along with the substantive testing.

Use of Analytical Procedures in the audit must be documented.

Answer 201

A

Controls can’t stop collusion or bad judgment

Management can override controls

Cost vs. Benefit relationship of Internal Control

Answer 202

A

The amount that you add to the Sampling Error Rate to get some cushion for your sample.

As high as you think the population error rate could go based on experience.

Answer 203

A

Gain contingencies are not reported.

Answer 204

A

Assess the RISK that such things will lead to material misstatements

Design the audit to provide reasonable assurance against fraud, illegal acts that directly and materially affect the financial statements

Report ALL management fraud to the audit committee (minor fraud by low-level employees not reported to committee)

Perform required inquiries and procedures (management inquiries, analytical procedures, discussions with audit personnel about fraud)

Answer 205

A

Helps the Auditor:

Determine if Management Assertions are reasonable

Develop audit plan

Develop some expectations about the financial statement and hopefully bring to light any glaring errors on financial statement

Answer 206

A

A written report to management is required.

Report declaring that no material weaknesses were found is allowed

Previous weaknesses reported that still exist should be reported again

Should be reported no later than 60 days after audit report release date

If one or more material weaknesses is uncorrected at year-end, an Adverse Opinion on internal control must be given

Answer 207

A

The amount of error rate that you can accept - If population error rate is less than TER, then accept the Control as effective

If population error rate is more than TER, do more testing to get SER lower or conclude control isn’t effective. Do more substantive testing

Answer 208

A

It doesn’t. Opinion is unqualifed.

Answer 209

A

Fraud is born out of:

Rationalization
Incentive
Opportunity

(RIO)

Answer 210

A

Analytical Procedure focus is on dollar amounts (not internal controls)

Analyzes Financial Data: Do Financial Statements Make Sense?

Comparison of data between years

Answer 211

A

A significant deficiency adversely affects a company’s ability to report in the financial statements according to GAAP.

A significant deficiency is a “more than a remote likelihood” of material misstatement by “more than an inconsequential amount”

Answer 212

A

Determine Test Objective - for example, have sales shipments been billed?

Define Population and Deviation - take a sample of shipping document, trace forward to see if billed

Determine Sample Size based on tolerable rate for error, risk of assessing Control Risk too low, and expected population error rate.

Select Sampling Technique

Answer 213

A

Qualified Opinion is issued.

Similar to Scope Limitation.

Explanatory paragraph after Scope Paragraph.

Opinion refers to GAAP issue.

Answer 214

A

Errors are unintentional, fraud is intentional.

Answer 215

A

Current Ratio = Current Assets / Current Liabilities

Answer 216

A

If a Significant Deficiency is identified, a written report to management required

Report declaring that no significant deficiencies is not allowed

Previous deficiencies reported that still exist should be reported again

Should be reported no later than 60 days after the audit report release date

Answer 217

A

Perform the Sampling Plan

Evaluate Results

Document Results

Answer 218

A

Adverse opinion is issued.

Same paragraph structure as a Qualified opinion.

Answer 219

A

Management compensation tied to stock
Aggressive financial forecasting
Former auditor disagreed with Management
Records not available for audit

Current audit procedures may need to be reconsidered if red flags exist.

Answer 220

A

Quick Ratio = Liquid Assets / Current Liabilities

Answer 221

A

A control is not operating as intended

Written report to management not required

Answer 222

A

Every certain # of a population is selected

Population needs to be randomly ordered

Primary advantage is that population doesn’t require pre-numbering

Answer 223

A

Unqualified opinion with an Emphasis is OK

Explanatory paragraph is added after Opinion paragraph.

Answer 224

A

Has been observed in similar situations

Does NOT necessarily mean that there is a material weakness in internal control

Leads to an auditor taking action

Answer 225

A

Asset Turnover = Net Sales / Average Assets

Answer 226

A

Are the competent?

Are the objective?

Answer 227

A

Also called Stop or Go sampling

Each audit step determines the next step

Answer 228

A

An audit performed under governmental auditing standards (GAS).

Answer 229

A

Internal control analysis can result in the conclusion that IC is weak, but probably won’t identify illegal acts

Answer 230

A

Inventory Turnover = COGS / Average Inventory

Answer 231

A

Auditor needs to understand the role of Internal Auditors within the organization because their work affects the audit plan

Responsibility for judgments about materiality or appropriateness of entries or estimates cannot be shared with third parties like Internal Auditors

Internal Auditors should be asked to do some of the legwork like preparing schedules or running reports

They should not be asked to make any decisions or judgments

Answer 232

A

Audit is testing an area that is so crucial that zero population errors can be tolerated

Any phony employees on payroll?

Answer 233

A

GAS is more strict that GAAS.

Answer 234

A

Strives to make audit engagement procedures less patterned and predictable

Re-evaluates management’s application of accounting procedures

Finds and assigns audit personnel with relevant skills in this area

Answer 235

A

Gross Margin % = Gross Margin / Sales

Answer 236

A

CEO/CFO must disclose deficiencies

Management must provide assessment of Internal Controls

Management must certify Financial Statements

Answer 237

A

Easy to implement, but is the worst method of sampling.

Answer 238

A

A report on internal control is required.

GAAS and GAS don’t require the I/C report.

Answer 239

A

Any fraud risks identified that could lead to material misstatement

Audit procedures performed to assess risks

Nature of communication made to audit committee and company management

Disclosure to third parties regarding fraud not normally the auditor’s responsibility

Fraud by management should normally be reported to the audit committee, NOT the SEC.

Answer 240

A

Ratios are Analytical Procedures

Answer 241

A

Has inverse relationship:

Stronger internal control results in LESS substantive testing

Weaker internal control leads to MORE substantive testing

Answer 242

A

Created PCAOB

Designates Officer responsibility for internal control

Must disclose significant internal control weaknesses to auditor and audit committee

Must disclose any level of fraud discovered by employees with internal control responsibilities

Answer 243

A

Budget vs. Actual comparisons are Analytical Procedures.

Answer 244

A

Reliability of Financial Reporting

Operational Efficiency/Effectiveness

Compliance with Law and Regulations

Answer 245

A

Statements on Auditing Standards (SAS)
Auditing Interpretations, AICPA Guides & SOPs
Industry Articles (no authority)

Answer 246

A

Ratio analysis

Budget vs. Actual comparison

Comparison of data between years

Use of non-financial data to predict expected values for financial data

Answer 247

A

Control Activities

Risk Assessment

Information and Communications

Monitoring

Control Environment

Answer 248

A

Firm Leadership exhibits quality and leads by example and sets the tone for the organization

Firm should Monitor and document that its policies and procedures are being followed

Firm should have Relevant Ethical Requirements

Acceptance and continuance of client engagements should continue to be evaluated for client integrity, auditor competency, and legality

Firm should have competent and ethical personnel

Firm engagements are performed, supervised, and reviewed in accordance with professional standards and regulations.

Answer 249

A

Management assertions help the auditor to plan the audit and select substantive tests.

Answer 250

A

Integrity/Ethics of Management
Compentence of Management
Organizational Structure
Human Resources Policies
Assignment of Authority/Responsibility
Management's Style (riskier with a dominant/aggressive individual)
Board/Audit Committee involvement

Answer 251

A

SSARS - Statements on Standards for Accounting and Review Services

These govern reporting for non-public entities only

Answer 252

A

Presentation - Cutoff, Classification - Is it in the right period and category?
Existence/ Occurrence - Did it happen? Does it exist?
Rights & Obligations - Does the company own them?
Completeness - Was everything recorded?
Valuation - Are they worth the amount at which they are recorded?

(PERCV)

Answer 253

A

Auditor tests internal controls.

Auditor evaluates Control Risk based on tests

Auditor adjusts substantive tests accordingly:

Weaker Internal Control = More substantive tests

Stronger Internal Control = Less substantive tests

Answer 254

A

Independence NOT required for Compilations

No Internal Control work allowed

No assurance given

Answer 255

A

Occurrence

Cutoff

Classification

Completeness

Accuracy

Answer 256

A

Understand Client’s:

Major transaction classes
Transaction initiation
Support records/documents
Transaction processing
Financial Statement internal reporting process
Financial Statement external communication process

Answer 257

A

Compilations are not an assurance service. No assurance is provided.

Answer 258

A

Occurrence

Completeness

Classification

Accuracy

Answer 259

A

Auditor must document understanding of Internal Control via Memos, Flowcharts, and Questionnaires

Answer 260

A

Reviews provide NEGATIVE assurance.

Answer 261

A

No, it is an extended procedure.

For example, you don’t have to take a loan covenant document and go search out that it’s a valid loan covenant. Instead, you consider the source – if it’s externally prepared, it’s more persuasive.

Answer 262

A

Auditor needs reasonable assurance that controls are functioning as designed and effective

Internal Control Testing should be strong as (IRON) so that nothing gets past them:

Inquiry – Interview company personnel
Re-performance – Can it be replicated?
Observation – Watch the control be applied
INspection – Dig into the details/documents

If results are as expected, substantive procedures do not need to be adjusted

Answer 263

A

Reviews require independence.

No Internal Control work allowed
Performs analytical procedures
No material indirect financial interest allowed
No immaterial direct financial interest allowed

Answer 264

A

First and foremost, you need to understand management’s rationale and methods for developing estimates before you can judge reasonableness.

Next, Auditor should formulate their own opinion on what a good estimate should be and compare it.

Finally, determine if subsequent events affect the estimate.

Answer 265

A

Must have an understanding of the client industry.

Answer 266

A

Audit workpapers are the property of the auditor.

They can be paper or electronic.

They must include a WRITTEN audit program (either paper or electronic).

Answer 267

A

CPA expresses a conclusion about an assertion - Compliance with laws

NOT considered a Consulting engagement

Independence Required

Answer 268

A

Information pertaining to the current year’s audit.

Answer 269

A

Independence is not required for consulting services.

Answer 270

A

Information used for this audit and future audits, which is updated as needed.

Answer 271

A

Report is restricted to specified users.

Agreed-upon procedures are implemented.

Answer 272

A

Must be kept for 5 years after the audit release date or according to regulations, whichever is longer.

Must be kept for 7 years under PCAOB Audit

PCAOB audits also require an Engagement Completion Document

Answer 273

A

Any experienced auditor should be able to look at your work and understand what you did.

Answer 274

A

If further documents are added to the work papers after the audit report is issued, it must be documented as to who added them, why they were added, and any effects on the audit report.

Answer 275

A

After the audit report is released, the firm has 60 days to subtract from the file.

You can still add to the file if you document it, but you cannot delete any information after 60 days.

Note – for SEC auditors, the PCAOB only allows deletions up to 45 days after issuance of the audit report.

Brainscape's Knowledge GenomeTM

Audit Reports Flashcards

Brainscape's Knowledge Genome^TM