Audit Risk Flashcards
Inadequate internal control over assets may increase the susceptibility of misappropriation of assets due to
inadequate access controls over automated records
inadequate physical safeguard over assets
inadequate management understanding of information technology
Statements on auditing standards, specifically require auditors to assess the risk of material misstatements due to
fraud and to consider that assessment in designing the audit procedures to be performed.
Auditors obtain knowledge about management’s risk assessment through
procedures performed to obtain an understanding of the entity and its environment, including internal controls.
Decisions about how much and what types of evidence involve
making decisions with regard to materiality and risk.
Inherent risk
is the possibility of a material misstatement in the financial statements due to lack of perfection and 100 percent efficiency at all time from both humans and systems/technology.
Control risk
is the risk that a material error will not be prevented or detected on a timely basis by the client’s internal control
Detection risk
is the risk that the auditor will not detect a material error in the financials
The three fundamental conditions necessary for the commission of fraud are
(1) some type of incentive or pressure, (2) an opportunity to commit the fraud and (3) an attitude that allows the individual to rationalize the act.
Situations that raise risk factors
new employees, new systems, new products, new territories, new competitors, and new accounting pronouncements.
If either inherent risk or control risk is especially high,
then enough substantive testing must be done by the auditor so that detection risk is reduced low enough to compensate. In that way, even if inherent risk is high, the reduction of detection risk will offset that impact so that overall audit risk remains unchanged.
