Module 13 Audit Process fundamental concepts Flashcards
What is audit risk?
The risk that the auditor gives the wrong opinion on the financial statements when the financial statements are materially misstated.
What is misstatement?
Where there is a difference between an amount, classification, presentation or disclosure reported in the financial statements and the correct treatment in accordance with the applicable financial reporting framework. Misstatements can arise from fraud or error.
What is the risk-based approach?
This is where auditors tailors the nature, extent and timing of audit procedures performed on each area of the financial statements according to the risk of there being a misstatement in that area.
(it allows auditors to focus audit work on the areas that are most likely to contain issues and so ensures that the audit is efficient)
What is materiality?
An expression of the relative significance or importance of a particular matter in the context of the financial statements as a whole. A matter is condiered to be material if its omission or misstatement would reasonably influence the economic decisions of the users taken on the basis of the financial statements.
An item can be material because of its size or nature.
How does materiality impact audit work?
It determines the scope of the work performed (which items are tested and to what degree)
It determines the nature of the final audit opinion. Where a material misstatement exists in the financial statements, they do not show a true and fair view.
Why is gathering evidence during audits important?
An auditor can only express an opinion over whether the accounts give a true and fair view if they have collected sufficient and appropriate evidence to support the figures.
What are the three methods of gathering evidence?
Understanding the entity and the overall control environment - this provides the risks that exist due to the nature of the entity (predominantly done at the planning stage of the audit)
Testing the controls of the entity - Good controls reduce the risk that figures in financial statements are incorrect and they will help prevent or detect errors/fraud. (done at the systems and controls stage)
Testing the numbers in the financial statements - this is substantive testing and allows auditors to detect misstatements in the financial statements. (Done at the substantive testing and completion stages of the audit)
What is audit judgement often referred to as?
The appropriateness of an auditor’s judgement is dependent on the competence and experience of the auditor and the need to comply with accepted methodology, this is often known as professional judgement.
What is professional scepticism?
Having an attitude that includes a questioning mind that challenges management with a degree of doubt that demands hard evidence, being alert to conditions which may indicate possible misstatement due to error or fraud, and a critical assessment of audit evidence.
What are the three risk components of audit risk?
Inherent Risk (IR) - The susceptibility of a financial statement account to a material misstatement, irrespective of related internal controls.
Control Risk (CR) - The risk that the entity’s controls will not prevent or detect and correct a material misstatement in the financial statements on a timely basis.
Detection Risk (DR) - The risk that the auditor’s procedures will not detect material misstatements that exists in the financial statements.
What is the audit risk formula?
Audit risk = Inherent Risk X Control Risk X Detection Risk
Where can inherent risk come from?
Business risk - business risks that would have an impact on the financial statements would be considered an inherent risk
Account specific risk - accounts that contain non-routine, complex or judgemental transactions are inherently risky
What are the two categories that risk can be categorised into?
Financial statement level risks - Something that will affect the financial statement as a whole (the impact of a misstatement would be at the financial statement level)
Assertion level risks - this relates to a specific area of the accounts only (the impact of misstatement would be at the assertion level)
Where does control risk come from?
Control risk increases where the internal control systems at an entity are poorly designed or do not operate effectively
What is risk of material misstatement (ROMM)?
The combination of inherent risk and control risk. It is the risk that a material misstatement may exist in the financial statements prior to the auditor undertaking any procedures.