Chapter 11 Flashcards
Define Transaction Based Approach/Vouching based Approach/ Direct verification.
Under this approach no reliance is placed on internal control system of entity to determine level of substantive testing. Auditor may set testing level b/w 50% to 100% of the population.
This approach is used by auditor when entity internal controls are absent/weak or number of transactions are low. e.g: when auditing F/S of a small company.
Define system-based approach of auditing.
This approach is used by auditor when auditor decides to rely on internal control system of client to determine level of substantive testing. Following are stages of System-based Approach:
1. Evaluating Internal Control System:
a. Obtain understanding of internal controls.
b. Perform test of controls if controls are assessed strong.
2. Determine the level of substantive testing:
This is based on results of test of controls. If controls are actually operating effectively, reduce level of testing and vice-versa.
However, there may be some inherent limitations of internal control system, so auditor cannot completely rely on controls and will always perform some substantive testing for each area of F/S.
Define Risk Based Approach of Auditing.
Under this approach:
- Auditor obtain understanding of entity and its internal controls.
- Auditor identifies risk of material misstatement.
a. at assertion level.
b. at F/S level. - For risk at F/S level, auditor shall follow overall approach.
- For risk at assertion level, auditor perform test of controls and substantive procedures.
- Auditor prepares overall audit strategy and audit plan to document these matters.
Examples of audit risk and business risk.
All audit risk are business risk but all business risk are not audit risk.
Examples of Audit Risks.
- Compliance with laws and regulation that relates to F/S.
- Preparation of F/S.
Examples of Business Risks.
- Continuous reduction in profits.
- Compliance with laws and regulation.
- Preparation of F/S.
Define Audit Risk.
Audit risk is the risk that auditor expresses an inappropriate opinion when F/S are materially misstated.
Audit risk is the product of Risk of Material Misstatement and Detection risk.
Define Risk of Material misstatement.
The risk that F/S are materially misstated (individually or aggregated) prior to audit. These consist of Inherent risk and Control Risk.
Define Inherent Risk with examples and it can be reduced..
The susceptibility of an assertion to a misstatement that could be material (individually or as aggregated) before consideration of any related controls. Inherent Risk may arise from nature of items themselves, or nature of entity/industry.
Example: Risk of theft of precious and portable items, Risk of misstatement in accounts with estimates and judgments.
Inherent Risk cannot be reduced.
Define Control Risk with examples and it can be reduced.
The risk that misstatement that could occur in an assertion that could be material (either individually or aggregated) will not be prevented, detected and corrected on a timely basis by the entity’s internal control system.
Example: No physical verification, No Reconciliations, No Authorizations.
Control risk can be reduced by strengthening internal controls.
Define Detection Risk with examples and it can be reduced..
The risk that procedures performed by auditor will not detect a misstatement that exists and that could be material (individually or aggregated).
Example: Sampling Risk, Non-sampling Risk.
This can be reduced by more direction, supervision and review and also by increasing the sample size.
Define Business Risk
Risk that events or conditions may adversely affect the ability of entity to achieve its objectives.
ON which factors auditor shall obtain understanding of entity.
- Relevant industry, regulatory and other external factors, including AFRF.
- Nature of the entity and its operations, ownership and MGT structures, types of current and planned investment.
- Entity’s selection and application of accounting policies, including whether they are consistent with AFRF, and any change in accounting policies is appropriate.
- Entity’s objectives and strategies and those related business risks that may result in risk of material misstatement in F/S.
- Evaluation and review of entity’s F/S.
Define NPO.
NPO does not work to make profit for its shareholders. Its objectives are to provide services to society as a whole or to a group in society. Examples are Charites, Societies, Clubs and Govt. Organizations.
Define Charity.
Charity is an organization which raises funds from general public and spend its funds on defined beneficiaries in accordance with its objectives.
What is an audit approach for a NPO.
- Audit approach in planning.
- Audit approach in Risk Assessment.
- Audit approach in Assessing Internal Controls.
- Audit approach in Obtaining Evidence.
- Audit approach in forming opinion.
Explain Audit approach in planning stage a NPO
Auditor shall consider:
- Environment in which organization operates.
- Objective and scope of work.
- Local regulations applicable on NPO.
- Form and content of F/S.
- Key audit areas.(Cash).
Audit approach in Assessing Internal Control of a NPO.
Key areas of internal controls include:
- Controls over incomes.
- Controls over expenditure.
- Controls over recording of income and expenditure.
However, control department of NPO is likely to be weak because:
- Lack of segregation of duties as staff is limited.
- Volunteer staff which may not be well qualified or experienced to develop good control system.
- Lack of authorizations due to lack of involvement of trustee.
- Not internal audit department of NPO.
Audit approach in obtaining evidence in audit of NPO.
- Substantive testing approach should be used because of weak internal controls and lack of control activities.
- Analytical procedures will be important to ensure reasonableness of reported figures.
- Key areas include:
a. Possibility of misuse of funds
b. Completeness of income, expenses, assets and liabilities.
Audit approach in reporting phase of an audit of NPO.
If audit of NPO is required by law, the report prescribed by law may be applicable. If audit is conducted voluntarily, than report prescribed by ISAs may be used with modification according to agreed scope and objective of audit.
What inherent risk are associated with incomes of NPO.
Risk Factor. Explanation. Effect on audit approach.
- If income of charity. Donation income is Audit report may need
Is derived wholly unpredictable. It may. to be modified because
from donations. Fall in poor economic. going concern assumption
causing going concern. is affected by uncertainty
issue. of future incomes. - If cash is collected. It is difficult to ensure Audit opinion may need to
by volunteers from. completeness of income. be modified because of
various locations. because volunteers lack of evidence to
may be inexperienced. ensure completeness of
Further, donations may be. income.
stolen by volunteers.
What inherent risks are associated with expenses of NPO.
Risk Factor. Explanation. Effect on audit approach.
- If constitution of There is the risk that Expenditures will have to
charity specifies expenditures can be be carefully reviewed to
how the income is incurred for objects ensure that:
to be spent. outside the constitution. a. funds are not miused.
of charity b. expenditure are not
ultra-varies the objectives
of charity. - If there are There is a risk that Auditor will check:
specific instructions. donations may not be a. Specific donation is
about utilization of. recorded appropriately. recorded as liability.
donations. or may not be spent as b. Specific donation is
per instructions of donor. spent as per instructions
of donor. - If constitution of There is a risk that Auditor will check whether
charity requires that admin expenses can this limit has exceeded.
admin expenses exceed this limit and Auditor will also check
cannot exceed a may be miscalssified areas if there are unusual
certain percentage. by MGT. increase in other expenses
of income. as a possibility of
Misclassification of admin
expenses
