Ch 5 - audit evidence and documentation

Question 1

The risk that the auditor expresses an inappropriate audit opinion when the financial statements are materially misstated

Answer 1

Audit risk

Question 2

Auditor’s opinion is materially misstated, reality is no material misstatement

Answer 2

Type 1 Error (false positive)

Question 3

A type 1 error is also referred to as an…

Answer 3

Inefficient outcome (because it leads to additional work/client/investor concerns and costs that are not necessary)

Question 4

Auditor’s opinion is no material misstatement, reality is materially misstated

Answer 4

Type 2 Error (false negative)

Question 5

A type 2 error is also referred to as an…

Answer 5

Ineffective audit/outcome (because the audit is set up to minimize Audit Risk, yet the auditor didn’t)

Question 6

Which error type is worse?

Answer 6

Type 2 Error (worse since there actually were material misstatements that weren’t caught)

Question 7

What is an auditor’s main objective?

Answer 7

To conduct the audit of financial statements in a manner that reduces audit risk to an appropriately low level

Question 8

T/F: Type 2 errors lead to opportunity costs.

Answer 8

False; Type 1 errors because they missed out on investing in that company when the auditor gave the wrong opinion (less wealthy)

Question 9

Those suffered by not taking an action; what you miss out on by doing something else instead.

Answer 9

Opportunity costs

Question 10

T/F: Audit Risk is a function of the risk of material misstatement and detection risk

Answer 10

True

Question 11

Audit Risk (AR) equations:

Answer 11

AR = risk of material misstatement * detection risk
OR
AR = inherent risk * control risk * detection risk

Question 12

Risk of material misstatement equation:

Answer 12

Risk of material misstatement = inherent risk * control risk

Question 13

The susceptibility of an assertion to a misstatement, due to error or fraud, that could be material, individually or in combination with other misstatements, before consideration of any related controls; How likely a material misstatement is based on its nature

Answer 13

Inherent risk
(some accounts, clients, or assertions are inherently more likely to produce misstatements than others)

Question 14

The risk that a misstatement, due to error or fraud, could occur in an assertion and could be material, individually or in combination with other misstatements, will not be prevented or detected on a timely basis by the company’s internal controls; the likelihood that the controls would not catch/correct a material misstatement.

Answer 14

Control risk
(The effectiveness of the design and operation of internal controls)

Question 15

The risk that the procedures performed by the auditor will not detect a misstatement that exists and that could be material, individually or in combination with other misstatements.

Answer 15

Detection risk

Question 16

T/F: An auditor sets the control and inherent risks.

Answer 16

False; the auditor sets the detection risk; the auditor assesses the control and inherent risks because they are what they are

Question 17

The auditor sets the detection risk to…

Answer 17

To whatever is needed to keep audit risk low

Question 18

T/F: Detection Risk is the only piece the auditor directly influences.

Answer 18

True
(auditor can’t influence control or inherent risk)

Question 19

Given: Audit Risk is set at 5%, Inherent Risk is assessed at 50%, Control Risk is assessed at 40%.
What does Detection Risk need to be set to?

Answer 19

Algebra equation:
5% = 50% * 40% * D
5%/20% = 20%D/20%
D = 25%
(Detection Risk must be set to 25% or lower to keep Audit Risk at 5% or lower)

Question 20

The lower the percentage…

Answer 20

The less risk there is

Question 20

Given: Audit Risk is set at 5%, Inherent Risk is assessed at 80%, Control Risk is assessed at 50%.
What does Detection Risk need to be set to?

Answer 20

5% = 80% * 50% * D
5% = 40%D
D = 12.5%

** if inherent and control risk are high, detection risk must be low

Question 21

(Low) Audit Risk = Inherent Risk 🡩 * Control Risk 🡫 * Detection Risk?

Answer 21

Net effect of inherent and control risk will determine detection risk (if net is high, detection risk is low; if net is low, detection risk can be higher)

Question 21

T/F: Both inherent risk and control risk have an inverse relationship with detection risk.

Answer 21

True; if control risk is high, detection risk is low; if inherent risk is high, detection risk is low (vice versa)

Question 22

Where does audit evidence come from (5)?

Answer 22

in short: Everywhere
1. The client
2. Peer companies
3. In-house experts
4. The news
5. Your friends

Question 23

T/F: Auditors must obtain sufficient and appropriate audit evidence.

Answer 23

True

Question 24

The measure of the quantity of audit evidence.

Answer 24

Sufficiency (enough evidence –> subjective)

Question 25

The measure of the quality of audit evidence, i.e., its relevance and reliability.

Answer 25

Appropriateness (good evidence that is BOTH relevant and reliable)

Question 26

The relationship to the assertion or to the objective of the control being tested.

Answer 26

Relevance (must be related to the fundamental assertion being tested)

Question 27

This depends on the nature and source of the evidence and the circumstances under which it is obtained.

Answer 27

Reliability (non-binary, there is a spectrum of reliability)

** least reliable evidence is verbal assertions by the client

Question 28

5 things that make evidence more reliable:

Answer 28

1. Documentary evidence (vs verbal evidence)
2. Original documents (not copies)
3. Good control environment
4. Comes from outside the client (i.e. bank confirmations)
5. Provided directly to the auditor (from outside the client)

Question 29

T/F: There is an inverse relationship between the required (subjective) levels of Sufficiency and Appropriateness.

Answer 29

True; if your evidence is extremely good (high Appropriateness) you don’t need as much of it (lower Sufficiency).

Question 30

T/F: Lower Materiality (concerned with smaller misstatements) –> Higher Requirement for Sufficiency

Answer 30

True

Question 31

T/F: Lower Risk of Material Misstatement –> Higher Requirement for Sufficiency

Answer 31

False; Greater risk of material misstatement requires higher sufficiency

Question 32

8 Ways auditors collect evidence:

Answer 32

IROC-RATI acronym:
1. Inspection - reading documents
2. Recalculation - testing mathematical accuracy
3. Observation - shadowing
4. Confirmations - 3rd party
5. Reperformance - testing internal controls
6. Analytical procedures
7. Tying
8. Inquiry – Interviews/questionnaires

Question 33

Connections/paths from Source Documents to the financials is often referred to as…

Answer 33

an Audit Trail

Question 34

When you start with a Source Document and tie it forward to the Financial Statements.

Answer 34

Tracing
(trace in sd)

Question 35

When you start with a Financial Statement item and tie it backward to the related Source Documents.

Answer 35

Vouching
(vouch for fs)

Question 36

T/F: Tracing is used to test Completeness (when concerned about understatements of liabilities)

Answer 36

True; want to make sure client includes liabilities provided by source docs on f/s

Question 37

T/F: Vouching is used to test Valuation/Allocation (to ensure $ values are correct)

Answer 37

False; Vouching is used to test Existence/Occurrence when concerned about overstatements of assets (want to make sure client’s assets on f/s actually exist/occur in source docs)

Question 38

3 Types of audit procedures:

Answer 38

1) Risk assessment procedures: identify the riskiest depts/accs/areas of financial statements
2) Test of controls: to verify if Internal Controls are operating effectively
3) Substantive procedures: to look for $ value Material Misstatements

Question 39

Common risk assessment procedures (4 audit procedures):

Answer 39

1. Inquiries
2. Observations
3. Inspections
4. Analytical procedures

Question 40

Common IC Testing Procedures (2 audit procedures):

Answer 40

1. Reperformance
2. Observation

Question 41

Common Substantive Procedures (4 audit procedures):

Answer 41

1. Tying
2. Recalculation
3. Confirmations
4. Analytical procedures

Question 42

Substantive Procedures that aren’t Analytical Procedures

Answer 42

Test of details

Question 43

Tests of Details that focus on the ending balance in an account. (ex: for cash and inventory)

Answer 43

Test of balances

Question 44

Tests of Details that focus on testing the transactions in an account. (ex: for sales)

Answer 44

Test of transactions

Question 45

A test that qualifies as both an Internal Control Test and a Substantive Procedure.

Answer 45

Dual purpose test
(ex: verifying Bank Reconciliations are prepared correctly)

Question 46

Records kept by the auditor of the procedures applied, the tests performed, the information obtained, and the pertinent conclusions reached in the engagement. The main method of documentation for audits

Answer 46

Workpapers

Question 47

6 Examples of workpapers:

Answer 47

1. audit programs
2. analyses
3. memoranda
4. letters of confirmation and representation
5. abstracts of company documents
6. schedules or commentaries prepared/obtained by the auditor

Question 48

What components are included in a workpaper?

Answer 48

1. client name, description, date
2. index
3. preparer and reviewer ID
4. tickmarks and tickmark legend
5. notes describing what the auditor did
6. auditor’s conclusion

Question 49

Workpapers are stored in an…

Answer 49

Audit file

Question 50

Workpapers that don’t typically change from year to year are stored in a…

Answer 50

Permanent file (e.g., the company’s Board of Director bi-laws)

Question 51

T/F: Workpapers are confidential but not privileged.

Answer 51

True; clients don’t normally have access to them but governing bodies are allowed to request for workpapers