Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Audit Theory > Exam 2 - Chapter 10 - Internal control risk > Flashcards

Exam 2 - Chapter 10 - Internal control risk Flashcards

1
Q

What are internal control systems?

  • What three objectives do they ensure?
A

Policies and procedures designed to provide management with reasonable assurance of three objectives:

  • Reliability of financial reporting
  • Efficiency and effectiveness of operations
  • Compliance with laws and regulations
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the responsibilities of managers for internal controls?

A

Management

  • Establish and maintain internal control
  • Section 404 requires management to publicly report on operating effectiveness
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the two key decisions (and their components) that alter maangement’s decisions in establishing internal controls?

A

Reasonable assurance

Company should develop I.C. that provide reasonable assurance for financial statements

Inherent limitations

  • Size of entity (and acct staff)
  • Collusion
  • Management override
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is collusion?

What is maangement override?

A

Collusion

An act of two or more employees work together to commit fraud.

Management override

management does not enforce internal controls and overrides system causing failure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the responsibilities of auditors in regards to internal controls?

A
  • Evaluate internal controls to assess risk and designing procedures (all companies)
  • Evaluate effectiveness of internal controls (required for public; optional for private)
  • Report on the internal control systems (public companies only
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the auditor’s objectives for understanding internal control?

A

Controls over reliability of financial reporting

Evaluate controls to maintain compliance to accounting methods

Controls over classes of transactions

prioritize internal controls on maintaining correct transaction types over maintaining correct balances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the five Coso components of internal control?

A

Coso components: internal control framework put in place by management to increase assurance

  1. Control environment
  2. Risk assessment
  3. Control activites
  4. information and communication
  5. Monitoring
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the control enviroment component of Coso framework?

A

Actions, policies, and procedures that reflect attitudes of top members of company on the importance of maintaining internal controls.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the 6 subcomponents of the control environment of a company?

A
  • Integrity and ethical values
  • Commitment to competence (adequate staff)
  • Board of director or audit committee participation
  • Mangement’s philosphy and operating style
  • Organizational structure
  • Human resource policies and practices
    *
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Why are the board of directors important in maintaining adequate control environement?

A
  • Separate from management and has responsibility to ensure mgmt. implements proper I.C.
  • Regularly assess control
  • Board should create audit committe to oversee financial reporting
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is risk assessment component of COSO?

A

Management’s identification of areas of greater risk relevant to prep of financial statements.

steps:

  1. MGMT identifies risk
  2. assess significance (what accts of more likely) of possible risk
  3. Assess likelihood of risk occuring
  4. Develop actions to reduce risk
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the control activities factor of the COSO framework?

What are the five ‘general’ types of control activities?

A

Implementation of detailed policies and procedures to address and minimize risk.

Activity groups:

  • Separation of duties
  • Proper authorization of transactions/activities
  • Adequate documents/records
  • Physical control over assets and records
  • Independent checks on performance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are some examples of adequate documentation and recordkeeping (control activites factor)?

A
  • Prenumbered documents and records (like a check)
  • Prepared at transaction time
  • One form for multiple info
  • Forms that encourage correct prep
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is the information and communication factor of COSO framework?

A

Effective accounting and management information systems to record, process, and report transactions to maintain transaction-related objectives

  • Controls integrated into system like firewalls,
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is the monitoring factor of the COSO framework?

Who often performs this function?

A

Ongoing and periodic assessment of their controls system?

This function is often performed by the internal audit department of large companies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the process (four phases) for understanding internal control and assessing control risk?

A

For all companies

Phase 1 - obtain/document understanding of internal controls

Phase 2 - Assess control risk

For public companies

Phase 3 - Design and perform tests of controls

Phase 4 - Decide planned detection risk and substantive tests

17
Q

How do auditors go about gaining an understanding (phase I) of internal controls?

A
  • Run a walkthrough with staff of how they go about recording transactions (usually done with specific transaction)

Obtain documentation:

  • Narrative: written description of internal controls
  • Flowchart: Sequential flow in organization
  • Internal control questionnaire: Attempt to identify internal control deficiencies
18
Q

What is a control risk matrix and how does it work?

A

Organization tool to find deficiencies in controls:

  • Identify audit objectives/risk as columns
  • List all controls and deficiencies as rows

mark which controls and deficiencies affect audit objectives

19
Q

Control risk matrix identify control deficiencies.

  • What are they?
  • what are the types of deficiencies?
A

Key controls that are absent to mitigate risk and meet audit objectives

Types:

  • Control deficiency: Design of control does not allow personnel to detect misstatements
  • Significant deficiency: Important not material weakness
  • Material weakness: Reasonable assurance that control will not prevent or detect material misstatement
20
Q

What are the five steps to identify control deficiencies?

A
  1. Identify existing controls
  2. Identify absence of key controls
  3. Consider possibility of compensating controls
  4. Decide whether significant or material
  5. Determine potential misstatements that could arise
21
Q

What are compensating controls?

A

Less obvious control procedure that offsets risk in later process

22
Q

What are the procedures for tests of controls?

A

Not as significant

  • Inquire of client personnel

Significant

  • Examine documents, records, reports
  • Reperform client procedures
  • Observe control-related activities

Audit Theory (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions