Chapter 6 SB HW Flashcards
The nature, timing, and extent of substantive tests is determined by the level of ______ risk.
detection
Setting an audit strategy ______.
requires a detailed understanding of the entity’s internal controls
When an assertion being tested is not significant, the control has been effective in prior audits, or for efficiency, auditors may test controls at an ______ date.
Interim
Management and the board of directors are responsible for ______.
- Establishing performance measures
- Evaluating performance of internal control
- Implementing corrective actions
True or false: Monitoring is an effective component of internal control, whether or not deficiencies are communicated to those with oversight responsibilities in a timely manner.
False; deficiencies must be communicated to those with oversight responsibility in a timely manner.
In determining whether an IT specialist is needed, the auditor should consider the ______.
- Participation in e-commerce
- Complexity of IT systems and controls
- Extent data is shared among systems
True or false: An IT specialist can be used to compensate for the auditor’s lack of sufficient IT-related knowledge.
False; auditors should have sufficient IT related knowledge.
Auditors may rely on ______ likely to prevent or detect and correct a material misstatement.
any control
The last step in the decision process under either audit strategy is performing
__________ procedures.
substantive
The proper execution of transactions is ensured by ______ controls.
processing
Processing steps and computer processing are included in a ______ flowchart.
systems
The auditor uses the combination of the achieved level of ________ risk and the assessed level of _________ risk to determine the required level of __________ risk needed to bring audit risk to an acceptably low level.
control; inherent; detection
If the auditor determines that internal controls are not properly designed or not implemented, the auditor will ______.
- Set the level of control risk at high
- Use substantive procedures to reduce the RMM to an acceptable level
Monitoring of internal controls ______.
- Is intended to assess quality of performance over time
- Should be done to determine operating effectiveness
- May identify the need for control redesign
To obtain an understanding of an entity’s internal controls, auditors may use ______.
Inquiry, Inspection, Observation, Tracing
When audit risk is low and the risk of material misstatement is high, detection risk will be set at ______.
low
After planned tests of controls have been completed, the auditor should reach a conclusion on the ______ level of control risk.
achieved
Many organizations prepare ______ which include documentation of the accounting system and related control activities.
procedures manuals
To understand management’s and the board of directors’ attitudes, awareness, and actions concerning it, the auditor should gain sufficient knowledge about the ___________.
control environment
In order to provide evidence to support the lower level of control risk when using a reliance strategy, auditors perform ______.
tests of controls
When a service organization provides accounting services to an entity and those services affect the entity’s accounting records, ______.
- They are considered part of the entity’s information system
- The entity’s external auditor must be concerned with the internal control system at the service organization
When audit risk is low and the risk of material misstatement is high, substantive tests should be performed ______.
mostly at year-end
