Introduction to internal control

Question 1

Define internal control (2)

Answer 1

1. The process designed and implemented by those charged with governance, management, and other personnel
2. Provides reasonable assurance about the achievement of the entity’s objectives with regard to reliability of financial reporting, effectiveness and efficiency of operations and compliance with applicable laws and regulations.

Question 2

What is the purpose of internal controls?

Answer 2

To help an organisation to achieve its objectives and mitigate its risks

Question 3

What are the limitations of internal controls? (4)

Answer 3

CUTSCHE

1. COLLUSION
2. UNUSUAL TRANSACTIONS tend to be outside the scope of control systems
3. Special considerations in SMALL COMPANIES
4. HUMAN ERROR

Question 4

What are the special considerations in small companies that limit the effectiveness of internal controls? (2)

Answer 4

1. Informal nature/lack of documentation

2. Limited numbers of staff make segregation of duties difficult

Question 5

What does ISA 315 set out as the components of internal control? (5)

Answer 5

AIMER

1. Control ACTIVITIES
2. INFORMATION SYSTEM
3. MONITORING
4. Control ENVIRONMENT
5. RISK ASSESSMENT process

Question 6

Define control environment

Answer 6

1. governance and management functions
2. attitudes, awareness, and actions of those charged with governance and management concerning the entity’s internal control and its importance in the entity

Question 7

Define audit committee

Answer 7

A subsection of the board of directors that has a particular interest in the accounting and finance activities of the company

Question 8

Key features of an audit committee

Answer 8

NORU

1. Comprised of NON-EXECUTIVE DIRECTORS
2. OVERSEES the financial statements, internal audit, and external audit
3. Required to have written terms of REFERENCE
4. Requirement for UK listed companies under the UK CORPORATE GOVERNANCE CODE

Question 9

Define risk assessment process

Answer 9

The process by which management in a business identifies business risks relevant to financial reporting objectives and decides what actions to take to address those risks

Question 10

What are the stages of the risk assessment process? (4)

Answer 10

1. Identify relevant business risks
2. Estimate the significance of the risks
3. Assess the likelihood of occurrence
4. Decide on actions to address the risks

Question 11

What sort of actions might be taken to address risks uncovered in a risk assessment?

Answer 11

Control activities, insurance, changes in operations

Question 12

Define information systems

Answer 12

Comprises all the information that flows into the financial statements and includes the process of financial statement preparation

Question 13

Define control activities

Answer 13

Manual or computerised procedires that help an organisation to achieve its objectives and mitigate the business risk it faces

Question 14

What are the five different types of control activities set out by ISA 315? (5)

Answer 14

SPIRA

1. Segregation of duties
2. Physical controls
3. Information processing, including computer controls
4. Review of performance
5. Authorisation

Question 15

Define general controls

Answer 15

Policies and procedures that relate to many applications and support the effective function of application controls by helping to ensure the CONTINUED PROPER OPERATION of information systems

Question 16

Define application controls

Answer 16

MANUAL or AUTOMATED procedures that apply to individual areas within the system to ensure COMPLETENESS, ACCURACY, and VALIDITY of the recording and processing of transactions

Question 17

What sort of computer control are virus checks on software on employees’ computers?

Answer 17

General

Question 18

Which component of ISA 315 ‘Identifying and Assessing the Risks of Material Misstatement Through Understanding of the Entity and its Environment’ does the process of preparing the financial statements illustrate?

Answer 18

Information system

Question 19

Which component of ISA 315 ‘Identifying and Assessing the Risks of Material Misstatement Through Understanding of the Entity and its Environment’ does locking the inventory storeroom illustrate?

Answer 19

Control activities

Question 20

Are companies required to have an audit committee?

Answer 20

Only listed companies

Question 21

Whose attitude is a significant aspect of an entity’s control environment?

Answer 21

Directors and other senior staff

Question 22

Which type of internal control activity is illustrated by the financial controller counting petty cash on a monthly basis?

Answer 22

Physical control

Question 23

Which type of internal control activity is illustrated by there being two keys to a safe; one held by the finance director and the other by the managing director?

Answer 23

Physical control

Question 24

Which type of internal control activity is illustrated by the financial controller reconciling the receivables ledger to the receivables ledger control account monthly?

Answer 24

Information processing; are undertaken to check the completeness and accuracy of information

Question 25

Which type of internal control activity is illustrated by the receivables ledger clerk posting invoices to the receivables ledger and the cash book clerk posting cash receipts to the receivables ledger?

Answer 25

Segregation of duties

Question 26

What type of system would be the simplest way of recording a straightforward system not subject to a great deal of change annually?

Answer 26

Narrative notes

Question 27

Define monitoring controls

Answer 27

Controls that consider the adequacy of internal controls in the light of changes in the environment and business risks. Includes reviewing the effectiveness of controls.

Question 28

Which type of internal control activity is illustrated by the financial controller reconciling the payables ledger to the payables ledger account?

Answer 28

Information processing

Question 29

Which component of ISA 315 ‘Identifying and Assessing the Risks of Material Misstatement Through Understanding of the Entity and its Environment’ does the entity’s internal audit function illustrate?

Answer 29

Monitoring of controls; the internal audit function monitors controls that are already in operation

Question 30

Which component of ISA 315 ‘Identifying and Assessing the Risks of Material Misstatement Through Understanding of the Entity and its Environment’ does the audit committee illustrate?

Answer 30

Control environment; the audit committee contributes to the status of internal controls within an organisation

Question 31

Who appoints and recommends the external auditor?

Answer 31

The external auditor is appointed by shareholders but the audit committee makes recommendations in relation to this.

Question 32

Define input completeness

Answer 32

All valid events and objects are captured and entered into a system