Audit test 1 Flashcards

1
Q

Audit Market Takeaways - invisible hand

A

People tend to pick the optimal quality for both parties.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How are prices in an Audited Market?

A

Prices are more stable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Information Asymmetry market

A

Prices are unstable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Assurance

A

Governance, Risk, and control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

objectivity

A

integrity, accountability, and independence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

5 competencies

A

competence, independence, credibility, connectivity, communication.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

competence

A

skills and knowledge required to provide assurance and advisory services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

independence

A

the ability to inspire trust based on consistent competence and integrity.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

3 party relationship

A

assurance professional - determines the scope of the assurance initiative, sets suitable assessment of subject matter, executes engagement then communicates.
accountable party - governs and manages subject matter suitable criteria
User - uses the conclusion

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Business and audit objectives

A

sets objectives and then the auditors test to see if what management is saying is actually true.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

systematic and disciplined approach internal auditing

A

planning, performing, and communicating.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

COSO Cube - components

A

control environment, risk assessment, control activities, info & communication, monitoring activities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Where is the most activity spent as an internal auditor in the coso cube?

A

Monitoring activities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Coso framework - objectives

A

operations, reporting, compliance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

best reporting structure

A

Having the CAE report to the audit committee directly and they report to the board of directors.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Key elements of governance structure

A

Governance
Risk management
Internal control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Three lines model

A

Governing Body
management
internal audit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

3 lines model keys

A

governing body delegates, directs, and has oversight over man. and auditors.
Management reports to the governing body and aligns and communicates internal audit.
Audit reports to governing body and aligns and communicates with management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Audit quality

A

function of independence and competence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Auditors role in enterprise risk management

A

Auditors can give assurance, but they shouldn’t be telling a company they need to do a specific thing.

21
Q

What are controls

A

to help prevent, detect and correct inherent risk

22
Q

inherent risk

A

All the risks associated with the audit that can’t be changed

23
Q

contol risk

A

the chances their control system prevents, detects and corrects the inherent risk.

24
Q

detection risk

A

allowable MOE - how much testing will the auditors have to do.

25
Q

What does high DR mean?

A

High detection risk means that the company’s controls are good because they have a bigger margin of error.

26
Q

what does a low DR mean

A

lower DR means that there is a lot on residual risk left over so auditors have a lower MOE and they need to catch a lot of those errors.

27
Q

Relationship between residual risk, DR, and substantive testing

A

Higher residual=Lower DR=Higher testing

28
Q

fraud triangle

A

Incentive/pressure - opportunities - attitudes

29
Q

Entity level controls

A

controls related to the control environment-controls over management override.

30
Q

process level controls

A

reconciliations of key accounts- such as inventory counts

31
Q

transaction level controls

A

authorizations-source documents

32
Q

Segregation of duties

A

separating important duties to different people to minimize the chance of fraud or theft.

33
Q

control deficiency

A

design or operation of a control that does not prevent or detect misstatements on a timely basis.

34
Q

Significant deficiency

A

is a control deficiency or combination of control deficiencies, in internal control over financial reporting that is less severe than a material weakness

35
Q

Material weakness

A

Report externally, audit committee, and management

36
Q

significant deficiency

A

report to audit committee and management

37
Q

Control deficiency

A

report to management

38
Q

Opinions of internal control effectiveness

A

unqualified, adverse, disclaimer

39
Q

unqualified opinion

A

the company maintained, in all material respects, effective internal control over financial reporting

40
Q

Adverse

A

The company had not maintained effective internal control over financial reporting - at least one material weakness.

41
Q

what are the 4 general controls?

A

logical access, program development, program change, operations

42
Q

logical access

A

Making sure the correct person is logging in - password requirements

43
Q

Program development

A

Implementation of ERP

44
Q

Program change

A

making sure updates go smoothly as planned

45
Q

Operations

A

data center, disaster recovery, etc.

46
Q

1ST LINE ROLE - 3 LINES MODEL

A

PROVISION OF PRODUCTS/SERVICES TO CLIENTS; MANAGING RISK - WORKERS DOING REVIEWS TO ENSURE THERE WERE NO MISTAKES

47
Q

2ND LINE ROLE - 3 LINES MODEL

A

PROVIDES COMPLEMENTARY EXPERTISE, SUPPORT, MONITORING AND CHALLENGES RELATED TO THE MANAGEMENT OF RISK

48
Q

Internal control components

A

control, (risk, control - inside comm/info), monitoring.

Environment, (assessment, activites comm/info), monitoring.

49
Q

Assurance Engagement IT Responsibilities

A

Include the organization’s information systems in its annual audit planning process.

Identify and assess the organization’s IT risks.

Ensure that it has sufficient IT audit expertise.

Assess IT governance, management, and technical controls.

Assign auditors with appropriate levels of IT expertise to each assurance engagement.

Use technology-based audit techniques as appropriate.