Chapter 4: Risk Assessment Flashcards
Audit Risk
The risk that an auditor expresses an unqualified opinion on materially misstated financial statements
Two levels of Audit Risk
- Financial Statement Level
- Individual account balance or class of transactions level
Audit Risk Model
IR x CR x DR = AR
Inherent Risk
Control Risk
Detection Risk
Inherent Risk
Susceptibility of an assertion about a class of transaction, account balance or disclosure to a misstatement due to error or fraud that could be material, either individually or when aggregated with other misstatements, before consideration of any related controls
IS ALWAYS THERE BECAUSE OF THE NATURE OF BUSINESS
Control Risk
The risk that a misstatement that could occur in an assertion about a class of transaction, account balance, or disclosure and that could be material, either individually or when aggregated with other misstatements
WILL NOT BE PREVENTED, or detected or corrected, on a timely basis by the entity’s internal control
CONTROLLED BY MANAGEMENT TO CONTROL INHERENT
Detection Risk
The risk that the procedures performed by the auditor to reduce audit risk to an acceptably low level will not detect a misstatement that exists and that could be material, either individually or when aggregated with other misstatements
CONTROLLED BY AUDITORS
IS NEVER 0
What is detection risk determined by?
The effectiveness of the audit procedures and how well the procedures are applied by the auditor
Examples of heightened Inherent Risk
Transaction complexity, and the adoption of new accounting standards
Examples of heightened Control Risk
The creation of new controls or the implementation of a new accounting information system
Risk of Material Misstatement
Combination of IR and CR, Auditors have little to no control over this
Steps for using the Audit Risk Model
- Set a planned level of audit risk such that an opinion can be issued on the financial statements
- Assess the risk of material misstatement (IRxCR)
- Use the audit risk equation to solve for the appropriate level of detection risk:
DR = AR/IRxCR
Engagement Risk
An auditor’s exposure to financial loss and damage to professional reputation
Business risks
Risks that result from significant conditions, events, circumstances or actions that impair management’s ability to execute strategies
What do you need to understand about the entity and it’s environment?
- Nature of the Entity
- Industry, Regulatory and External Factors
- Internal Control
- Objectives, Strategies, and Business Risks
- Entity Performance Measures
Two types of Material Misstatemens
- Errors
- Fraud