Chapter 5 - Intro to internal control and info flow

Question 1

What is a system of internal control?

Answer 1

System designed and maintained by those charged with governance and management of assurance

Question 2

What are the steps when implementing internal controls?

Answer 2

1. Identify risks
2. Implement controls to mitigate

Question 3

What is the purpose of internal controls?

Answer 3

• Minimise risks
• Ensure effective functioning
• Compliance with rules

Question 4

What are the limitations of internal controls?

Answer 4

• Human error possibility
• Collusion
• Unusual transactions
• Hard for small companies to implement

Question 5

What are the 5 components of internal control set out by ISA 315?

Answer 5

• Control environment
• Entity’s risk assessment process
• Entity’s process to monitor internal controls
• Info system and communication
• Control activities

Question 6

What does the extent of reliance on internal control depend on?

Answer 6

Nature of the engagement and practitioner’s expectations of effectiveness of controls

Question 7

What is the control environment?

Answer 7

Includes the governance and management functions and the attitudes, awareness and actions of those charged with governance and management

Question 7

What is the audit committee?

Answer 7

Sub-committee of the board of directors responsible for overseeing entity’s internal controls

Question 7

What happens in a strong control environment?

Answer 7

Management ensures individuals have the competence to perform roles

Question 8

What does the audit committee comprise of?

Answer 8

NEDs

Question 8

What does the UK corporate governance code require the audit committee to have written terms of reference on?

Answer 8

• Review integrity of financial statements
• Review internal financial controls
• Monitor internal audit function
• Monitor external auditor

Question 9

What is the risk assessment process?

Answer 9

Iterative process for identifying and analysing risks

Question 10

What is a business risk?

Answer 10

Risk resulting from significant conditions that could adversely affect achievement of objectives

Question 11

What is the role of a company’s internal audit department?

Answer 11

Review overall control system

Question 12

Are smaller companies likely to have an internal audit function?

Answer 12

No

Question 13

What is meant by info system and communication?

Answer 13

Components of internal control that includes the financial reporting system and records of transactions

Question 14

What are control activities?

Answer 14

Policies and procedures that help ensure management directives are carried out

Question 15

What is the most tangible internal control for auditors?

Answer 15

Control activities

Question 16

What forms can control activities take?

Answer 16

Manual or computerised

Question 17

What are the different types of control activity?

Answer 17

• Authorisation and approvals
• Reconciliations
• Verifications
• Physical controls
• Segregation of duties

Question 18

What are the risk to cyber security?

Answer 18

• Human threats
• Fraud
• Deliberate sabotage
• Viruses
• Malware
• DoS

Question 19

What suggestions to combatting cyber risks did the IACEW 2014 Audit insights report make?

Answer 19

• Communications is a key barrier
• Organisational structure need to define responsibility
• NEDs and audit committee need to play an active role

Question 20

What are the 3 types of docs used for recording the understanding of the business?

Answer 20

• Narrative notes
• Questionnaires/checklists
• Diagrams

Question 21

What is the best way of recording relationships and reporting lines?

Answer 21

Organisation charts and family frees

Question 22

What is the limitations of using a flowchart?

Answer 22

• Can be difficult for reader to assimilate
• Time consuming to construct

Question 23

What is a walk through procedure?

Answer 23

Procedure that tracks a few transactions from beginning to end through the financial reporting system

Question 24

When are walk through procedures performed?

Answer 24

Near the start of the fieldwork stage

Question 25

What type of control is counting petty cash?

Answer 25

Physical

Question 26

What type of control is reviewing master files?

Answer 26

Info processing control

Question 27

What component does a staff training program fall under?

Answer 27

Control environment

Question 28

What component does a review of actual performance vs budget fall under?

Answer 28

Control activity

Question 29

What component does the internal audit function fall under?

Answer 29

The entity’s process to monitor the system of internal control