Performing Further Procedures & Obtaining Evidence (30-40%)

Question 1

What are some key things to understand when evaluating whether audit evidence is ‘sufficient’ and ‘appropriate?’

Answer 1

SUFFICIENT - relates to QUANTITY of audit evidence obtained - based on assessed levels of risk & quality of evidence gathered

APPROPRIATE - relates to QUALITY of audit evidence obtained

CONSIDERATIONS FOR QUALITY OF EVIDENCE:

• highly reliable when obtained from independent sources outside entity (confirmations)
• more reliable for auditor to rely on controls pertaining to evidence, when audit evidence obtained internally from client
• higher quality when obtained directly from auditor (ex: observing controls operating effectively vs. asking EE if they perform control)
• hard copy is more reliable than conveyed orally (looking at document vs. someone telling you something happened)
• higher quality when original document vs. copy

Question 2

What are the sampling techniques?

Answer 2

ATTRIBUTE sampling:

• used to perform TEST of CONTROLS
• looking at transactions to determine if control was performed or not
• assess RMM too low - audit ineffective
• assess RMM too high - audit inefficient

VARIABLE sampling:
- used for SUBSTANTIVE testing of populations, usually to test an ending balance in an account

Question 3

What are the steps for attribute sampling? for variable sampling?

Answer 3

ATTRIBUTE sampling - steps:

• identify what objective of test is
• define what a deviation is based on test
• define & acquire population
• choose sampling method (statistical-random or judgmental-haphazard/arbitrarily selecting)
• choose sampling size
• test transactions & deviations
• calculate deviation/tolerable deviation rates and a confidence interval
• upper precision limit compared to deviation rate (can only rely on internal controls if deviation rate is less than/equal to stated tolerable rate)
• decide if any other factors have implications on decision to rely on or not (if not & DR is lower than TR, will rely on)

*population size has little/no effect on sample size, however, tables for sample size are based on assumption of very large populations

**VARIABLE sampling - steps - essentially the same as above, except that transactions will be dollar amounts - auditor tests all transactions that are individually material (not being sampled - tested 100%)

Question 4

What is the formula for accept/modify questions?

Answer 4

sample error rate (SER) - number of deviations actually found in sample (3 deviations in 100 - sample size error rate of 3%)

then, add the ‘allowance for sampling risk’ (ASR) rate to ‘sample error rate’ to get your ‘upper error limit’ (UEL) - if ASR is 2%, you add this to SER found, which would give you 5% UEL in this example

then, compare this UEL to your tolerable rate (TR) - if TR was 5%, you can rely on IC - if TR was 4%, you need to modify planned level of control risk (cannot rely on IC)

.
SER + ASR = UEL
UEL < / > TR
-if UEL < TR = can rely
-if UEL > TR = cannot rely

Question 5

What is the basic formula for calculating a sample size? and what are the elements within?

Answer 5

n = sample size
SD = estimated standard deviation
Z = is the Z-coefficient is the measure of reliability for population
N = size of population
A = allowance for sampling risk

   [  SD x Z x N ]  ^2 n =  [ ---------------- ]
   [          A        ]

Question 6

What is stratification?

Answer 6

separating a population into groups of transactions that are similar - such as, transactions over a certain dollar amount

stratifying a population can decrease a sample size

Question 7

What are some other concepts?

Answer 7

• increase in TR (tolerable misstatement) would decrease sample size & vice versa - if more mistakes are allowed, sample size can be smaller - if less mistakes are allowed, larger sample size needs to be tested to gain assurance a lower number of mistakes exist
• if assessed level or control risk increases, sample size needs to be larger & vice versa - auditor thinks a population has a high risk of material misstatement, then sample size will be larger
• falsely conducting that a material misstatement does not exist based on a sample is ‘incorrect acceptance’ - this is a type 2 error

Question 8

How does Observation & Inspection work for testing operating effectiveness of controls?

Answer 8

• observing the control in action
• inspecting documents for indications that control has been performed

steps:

• auditor asks EE - how does this control work?
• EE explains steps of process
• auditor documents how EE says control is supposed to work
• auditor randomly selects number of transactions that should have gone through control being tested
• find the original documents & inspect them
• if no deviations, auditor can rely on
• if more deviations found than acceptable amount, auditor concludes controls are weak & requires additional substantive testing (not rely on)

Question 9

How does Recalculation & Reperformance work for testing operating effectiveness of controls?

Answer 9

recalculating a figure to test for accuracy (common ex: recalculating depreciation expense to verify its accuracy)

auditor re-executes a control/procedure that was originally performed by EE to see if get same result - done manually or through computer-assisted techniques

Question 10

What are Analytical Procedures? How are they used?

Answer 10

evaluations of financial information based on relationships among both financial data and non-financial data

• used in planning (preliminary) strategy (required)
• used as substantive procedures (not required)
• used in final review (required)
• usually do all 3

Question 11

What are factors to consider when deciding how to use analytics to test an assertion?

Answer 11

• does nature of assertion lend itself to analytical procedures?
• is there plausible & predictable relationship?
• is data used to develop the expectation reliable?
• is the expectation precise?

*some assertions can be tested solely through analytics, others require combination of analytics & test of details, or some might not need analytics

Question 12

What are 5 factors used to develop an expectation?

Answer 12

• comparable information from a prior period (if sales increased by similar % in past 3 years, expect similar in CY)
• anticipated results of entity from budgets/forecasts (if management forecasted sales of $50K at BOY, auditor would expect sales close to at EOY)
• similar industry information such as ratios compared to industry averages (gross margin % compared to its industry averages/benchmarks)
• relationship between elements of financial information (if sales increased certain %, similar increase in AR expected)
• relationship between financial and non-financial information (payroll costs compared to # of EEs)

Question 13

How are Analytical Procedures used in the Planning Stage?

Answer 13

auditor will use high-level analytics

• looking at quarterly reports
• unaudited financial information provided by client

makes analytical comparisons as a starting point for identifying areas to take a closer look

ex: comparing CY sales to PY sales for significant changes

focus in planning stage - use analytics to enhance auditor’s understanding of business & transactions that have happened since the last audit

Question 14

How are Analytical Procedures used in the Final Review Stage for forming overall conclusions?

Answer 14

wide variety of analytical procedures may be used when forming overall conclusions

• reading FS
• considering the adequacy of evidence gathered in response to unusual/unexpected balances identified during course of audit & unusual/unexpected balances or relationships that were not previously identified

results may indicate additional evidence is needed

analytics should be performed by manager or partner that has comprehensive knowledge of clients business & industry

Question 15

What are External Confirmations?

Answer 15

sent by auditor to third party, in order to confirm a balance/transaction that they have or have had with company being audited

auditor controls the requests & responses, or it defeats the purpose of trying to confirm with third party

best addresses assertions of existence & occurrence

3 types of confirmation requests:

• POSITIVE - asking for response whether or not third party agrees on amount (if not enough responses received, auditor will perform alternate procedures - AR: look at cash receipts, AP: look at cash disbursements)
• NEGATIVE - only asks for response if third party disagrees with amount (less reliable than positive)
• BLANK - asks third party to fill in information/amounts

Question 16

What is ADAs (Audit Data Analytics)?

Answer 16

the science & art of discovering & analyzing patterns, identifying anomalies, & extracting other useful information in data underlying or related to subject matter of an audit through analysis, modeling, & visualization for the purpose of planning or performing the audit

ADAs can be used during risk assessment or for substantive procedures at relevant assertion level

Question 17

What are the 5 steps of ADAs (Audit Data Analytics)?

Answer 17

1) PLAN - plan the ADA
2) ACCESS & PREPARE - access & prepare data for purposes of the ADA (will prepare data using ETL process-extract, transform, load)
3) CONSIDER - consider relevance & reliability of data used (characteristics data should have)
4) PERFORM - perform the ADA (identify any notable items)
5) EVALUATE - evaluate the results (have objectives been achieved? + document procedures performed & results of)

Question 18

What are the 3 categories data can be classified for ADAs (Audit Data Analytics)

Answer 18

• STRUCTURED: data organized as part of a specific system - in a database/spreadsheet in rows & columns
• SEMI-STRUCTURED: data is in specific tagged format - HTML, XBRL, XML, etc.
• UNSTRUCTURED: data in text/video/audio format

Question 19

What are the characteristics of considering the relevance & reliability of data for ADAs (Audit Data Analytics)?

Answer 19

FATCCC

• FRESHNESS: data includes most recent changes to data set
• ACCURACY: free from significant errors
• TIMELENESS: data is available when requested
• COMPLETENESS: is complete - all pertinent data included
• CONSISTENCY: data fields have consistent format & well managed
• CLARITY & RELATEDNESS: data fields clearly defined & related to ADA being performed

Question 20

What are the steps for attending physical inventory counts?

Answer 20

• EVALUATE managements instructions/procedures for recording/controlling results of entity’s physical inventory counts
• OBSERVE EEs performing counts according to said procedures
• INSPECT inventory (look for damaged/obsolete)
• PERFORM test counts (chose items from inventory listing & finding them in warehouse & tracing them)
• PERFORM audit procedures on final inventory records to assess whether accurately reflect count results

Question 21

What procedures help identify litigation, claims & assessments?

Answer 21

• inquiring of management & clients legal counsel and obtaining description & evaluation of any as of date of FS
• reviewing board meeting minutes or any documents obtained from management regarding
• reviewing legal expense accounts & invoices from external legal counsel

Question 22

Auditor would obtain what evidence for actual or potential litigation, claims & assessments?

Answer 22

• period in which cause for legal action occurred
• degree of probability of an unfavorable outcome
• amount or range of potential loss
• attorneys letters to clients external legal counsel serves to corroborate information provided by management
• audit opinion will be modified if legal counsel refuses to respond appropriately to auditors letter of inquiry and the auditor cannot gather sufficient audit evidence via alternate procedures, or if management refuses permission to communicate with external legal counsel

Question 23

What factors can cause substantial doubt about entity’s ability to continue as going concern?

Answer 23

• negative financial trends: recurring operating losses, working capital deficiencies, negative cash flows
• defaulting on loans, falling out of covenant on debt obligations, denial of trade credit from suppliers, debt restructuring, seeking new methods of financing
• work stoppages, labor disputes, dependence on success of particular project, unsustainable LT commitments
• legal proceedings/legislation that harm ability to operate, loss of key franchises/patents, loss of principal customer/supplier, catastrophes

Question 24

What is a representation letter? What is included in this letter?

Answer 24

written representations from management to corroborate managements verbal responses to important question from auditor - required

usually includes:

• management is responsible for fairness, IC, significant assumptions, related party transactions as pertain to FS
• any uncorrected misstatements are immaterial
• effects of any litigation/claims against company have been properly accounted for/disclosed
• all relevant financial records were made available to auditor
• no fraud involving management or EEs with significant financial reporting responsibilities

Question 25

What is a subsequent event? What are the 2 types?

Answer 25

events that happen after date of FS, but before date of auditor’s report

1) events that require adjustment (event provides better information about conditions as of BS date, will be included)
2) events that require disclosure (event does not relate to conditions as of BS date, but is still material, will be disclosed)

Question 26

What are steps to identifying subsequent events?

Answer 26

• obtaining understanding of procedures that management established to ensure subsequent events are identified
• inquiring of management & when appropriate, those charged with governance about whether any subsequent events have occurred that might affect FS
• reading minutes, if any, of board meetings of entity’s owners, managers & those charged with governance & inquiring about matters discussed at such meetings for which meeting not available yet
• reading entity’s latest subsequent interim FS, if any

Question 27

What are some comparisons an auditor should review during audit planning?

Answer 27

• client vs. industry
• related accounts
• actual vs. budget
• financial vs. non-financial
• CY vs. PY

Question 28

What are some items that an auditor would inquire to the predecessor auditor?

Answer 28

• reasons for change
• integrity of management
• disagreements during audit
• communications with management

Question 29

What are some examples of Analytical Procedures?

Answer 29

• comparison of CY vs PY financial information
• comparison of CY financial information with budgets/projections/forecasts
• relationships among elements of financial information within CP (PPE^)
• relationship of financial information to nonfinancial information (warranty exp)
• plotting trends over multiple periods
• comparison of client financial information with industry data (liquidity, activity, profitability, coverage ratios)

Question 30

What are the concepts of audit evidence?

Answer 30

NATURE:

• underlying accounting data used to test assertions
• corroborating evidential matter

SUFFICIENCY & APPROPRIATENESS:

• quality - relevant & reliable
• quantity - higher quality evidence > lower quantity obtained, greater risk of MM > larger quantity to obtain

EVALUATION:

• thorough
• unbiased
• auditor judgement
• understanding of types of evidence available & relative reliability of available evidence

Question 31

What are the Audit Procedures for Obtaining Evidence?

Answer 31

• inspection of records/documents
• inspection of tangible assets
• reperformance
• recalculation (foot #s)
• scanning (not efficient)
• analytical procedures
• observation
• inquiries (a lot of time spent here)
• confirmation

*most important skill is asking the right question & follow up question

Question 32

What are the levels of reliability of the types of evidence?

Answer 32

HIGH:

• reperformance
• recalculation
• inspection of tangible assets

MEDIUM:

• inspection of records/documents
• confirmation
• analytical procedures
• scanning

LOW:

• inquiries
• observation

Question 33

What is the goal of sampling?

Answer 33

sample to represent the population

sample rate = population rate

Question 34

What are some examples of audit procedures involving sampling?

Answer 34

• inspection of tangible assets (inventory count)
• inspection of records/documents (matching of documents)
• reperformance (reperform tests performed by client)
• recalculation (recalculate depreciation)
• confirmation (customer AR balances)

Question 35

What are some examples of audit procedures that do not involve sampling?

Answer 35

• analytical procedures
• scanning
• inquiry
• observation
• • classes of transactions or account balances not tested
• • procedures applied to every item in the population

Question 36

What is Sampling Risk?

Answer 36

risk that sample drawn is not representative of population - result auditor will reach incorrect conclusion about reliability of internal controls, account balances or class of transactions

Question 37

What is Non-Sampling Risk?

Answer 37

risk of reaching incorrect conclusion for reasons other than sampling

• inappropriate audit procedure
• incorrect application of appropriate procedure
• incorrect interpretation of audit results

Question 38

What are the confidence levels and precision for Sampling Risk?

Answer 38

confidence level - compliment of sampling risk (5-10%) = 90-95%

precision - allowance for sampling risk

• sampling risk at 5% = 95% confident
• sampling risk at 10% = 90% confident

Question 39

What are the types of auditor decision errors related to Sampling Risk?

Answer 39

Tests of Controls:

1) risk of assessing control risk (CR) TOO HIGH - UNDER RELIANCE on internal controls - relates to efficiency (potential cost - wasted time & money)
* risk of incorrect rejection (1RU)
2) risk of assessing control risk (CR) TOO LOW - OVER RELIANCE on internal controls - relates to effectiveness (potential cost - being sued, out of business, damage reputation) (2AO)
* risk of incorrect acceptance

Substantive Tests:

1) risk of INCORRECT REJECTION - relates to EFFICIENCY
2) risk of INCORRECT ACCEPTANCE - relates to EFFECTIVENESS

Question 40

What are the types of audit sampling?

Answer 40

• STATISTICAL sampling (10%) - auditor relies on laws of probability to compute sample size & evaluate sample results - more objective & more accurate
• NON-STATISTICAL sampling (90%) - auditor relies on judgement in addition to audit firm guidance & knowledge of underlying statistical theories to reach conclusion on audit test - questioning judgement harder to prove

Question 41

How do you determine the sample size?

Answer 41

• determine the desired confidence level (direct relationship)
• determine the TDR (tolerable deviation rate) (indirect relationship)
  
  • maximum deviation rate auditor will accept & still rely on controls
  • lower the TDR, bigger the sample size
• determine EPDR (expected population deviation rate) (direct relationship)
  
  • if EPDR > TDR, 10% > 5% - omit testing & do not rely on controls, bigger the sample size
• consider effect of population size (direct relationship)
  
  • bigger the population, bigger the sample

Question 42

What are some specific situations in performing audit procedures and how are they handled?

Answer 42

• VOIDED DOCUMENTS - not a deviation - pick replacement
• UNUSED/INAPPLICABLE DOCUMENTS - not a deviation - pick replacement
• INABILITY TO EXAMINE SAMPLE ITEM - deviation - assume the worst
• STOPPING TEST BEFORE COMPLETION (if discover large number of deviations early in testing) - test other controls? set CR to max & shift to substantive strategy?

Question 43

In the Evaluation stage, how are the sample results calculated? how are final conclusions drawn?

Answer 43

CUDR (computed upped deviation rate) is equal to SDR (standard deviation rate) plus allowance for sampling risk

CUDR = SDR + SR allowance
(8% = 6% + 2%)

SDR = # deviations/sample size (3 deviations of 50 documents = 6% SDR)

• if CUDR < TDR, 6% < 7% - controls can be relied upon
• if CUDR > TDR, 8% > 7% - controls not reliable

Question 44

What are the final evidential evaluation processes?

Answer 44

• perform final analytical procedures (focus on big picture)
• evaluate entity’s ability to continue as going concern
• obtain representation letter
• evaluate FS presentation/disclosures
• make final assessment of audit results (review audit documentation & obtain independent review of engagement)