Study Unit 1

Question 1

Articles of incorporation include

Answer 1

corporation name
# shares authorized
street address of corporation's initial registered office
name of registered agent @ office
name & address of each incorporator

Question 2

Additional provision aoi may include

Answer 2

purpose & power of corp
internal mgt
subject matter allowed to be addressed in the bylaws

Question 3

bylaws

Answer 3

provision for managing the business

states authorirty of officers/directors, selection process, term length, pay, how to decide to issue new stock

Question 4

Shareholders

Answer 4

• required to hold annual meeting, need special meetings for important issues (mergers, etc.)
• @ annual meeting may amend aoi, vote, elect/remove officers

Question 5

BOD

Answer 5

• select/remove officers
• decisions wrt capital structure
• add/amend/repeal bylaws
• initiate changes (m&a)
• decide to declare/distribute dividends
• set mgt comp
• coordinate audit activities
• evaluate & manage risk

Question 6

Fiduciary duty

Answer 6

Directors owe fiduciary duty
fiduciary- legal duty to act for benefit of corp, held to higher std of care
fiduciary duty req directors & officers to be
-act in corp best interest, be loyal, use due diligence wrt responsibilities, disclose conflicts of interest

Question 7

Officers

Answer 7

resp for day to day ops
CEO selected by & report to BOD
CEO selects other execs; officers are agents (fiduciary duty)

Question 8

internal auditors

Answer 8

IA assess make recomm for improving governance to achieve

• promote ethics & values
• ensure effective org performance mgt & accountability
• communicate risk & ctrl info
• coordinate activities/info among BOD, ext/int auditors, mgt

Question 9

Audit committee

Answer 9

• address complaints wrt acctg & audit
• receive reports about acctg policies, material alt treatments, effects of at disclosures, treatments preferred by ext auditors

Question 10

Section 302

Answer 10

-f/s free from material misstatements
-responsible for IC & evaluate for effectiveness
-inform audit committee & auditors of significant ctrl def, fraud (material or not)
-significant changes were (or weren’t) made wrt IC (including corrective ctrl)
intentional violations can result in forfeiting bonus/incentive based compensation

Question 11

Section 404

Answer 11

report contains statement by CEO/CFO that includes

• mgt takes responsibility for establish/maintain system of IC
• name of IC model used to design/assess effectiveness (COSO)
• evaluate IC effectiveness
• statement pubic acctg firm registered w/ PCAOB

Question 12

Section 407

Answer 12

each audit committee must have financial expert if not, disclose reason
financial experts must
-know GAAP & F/S
-experience in prep of F/S of comparable issuers & application of principles wrt acctg estimates, etc.
-experience w/ internal acctg ctrls
-understand audit committee functions

Question 13

Section 906

Answer 13

corp responsibility for financial reports
certify filings into U.S. Code
criminal penalties for unkwnowing & knowing noncompliance for filing
-knowing- fines up to $5M and/or up to 20 yrs in prison
-unknowing- fines up to $1M and/or up to 10 yrs in prison

Question 14

Whistleblowers

Answer 14

SOX & Dodd-Frank, SEC may pay for info other than from audit or investigation

• may sue retaliating employers
• claims asserted for up to 180 days
• trial by jury allowed
• rights & remedies can’t be waived (i.e. employment contract)

Question 15

Internal Control & it’s objectives

Answer 15

• has 3 classes of objectives (ORC)
• ongoing
• effected by all ppl in org
• provide only reasonable assurance
• adaptable to entity’s structure

Question 16

Operations (mission)

Answer 16

-improving financial perf, productivity, quality, innovation, customer satisfaction
-includes safeguarding assets (assist in risk assessment; avoid waste/inefficiency)
Pitch Perfect is quality comedy (P P I Q C)

Question 17

Reporting

Answer 17

• timely, reliable info needed for DM & stakeholders

- relate to financial/nonfinancial & internal/external reporting

Question 18

Compliance

Answer 18

subject to laws/regs that have minimum stds of conduct

-compliance with internal policies/procedures is an operational objective

Question 19

Control Environment

Answer 19

• Integrity & ethical values (tone @ top, stds of conduct, perf eval, correct deviations)
• oversight (operates independently)
• establ of structures, reporting lines, authorities & resp (design, assign, limit authority)
• commitment to attract, develop, retain competent indiv
• org holds indiv accountable

Question 20

Risk Assessment

Answer 20

assessment of risk & need to manage org change
principles
specifies objectives to ID & assess objectives
ID & analyze risk,
assess fraud risk,
ID & assess changes that affect IC

Question 21

Risk Assessment objectives

Answer 21

operations- mgt choice, risk tolerance, op & financial perf goals, basis for committing resources
ext f.reporting- comply w/ stds, materiality, reflect activities
ext nonf reporting- comply w/ stds/frameworks, consider preclusion, reflect activities
internal reporting- mgt choices, precision, reflect activies
compliance- ext laws/regs, risk tolerance

Question 22

Control Activities

Answer 22

policies, procedures ensure mgt directive carried out.
applied @ various level
preventive or detective, segregation of duties

Question 23

3 principles of control activities

Answer 23

select/develop c.a. to mitigate risk
select/develop general c.a. over tech to support achievement of objectives
deploys c.a. thru policies that establish expectations & procedures that put policies into action

Question 24

Information & Communication

Answer 24

enable org to obtain info to maintain accountability, measure & review perf

3 principles

• relevant, quality info (ext & int)
• internally communicates info
• communicates with external parties

Question 25

Monitoring

Answer 25

process assesses quality of IC perf over time to ensure controls continue to meet needs of org
2 principles
-develops & performs ongoing/sep (both) to determine if components IC are present & functioning
-evaluates & communicates ctrl deficiencies

Question 26

3 components for COSO

Answer 26

establish foundation for monitoring
-tone @ top
-org structure
-baseline for IC effectiveness
Design/execute monitoring procedures based on risks to achieve org obj
-prioritize risk
-ID ctrl
-ID persuasive info
-implement monitoring procedures
assess/report results & include follow up on corrective action
-prioritize findings
-report results
-follow up

Question 27

Control Baseline

Answer 27

starting point

supported understanding of current system’s design & operation

Question 28

Change ID

Answer 28

IDs & addresses changes needed

Question 29

Change management

Answer 29

evaluates design & implementation of changes (establishes new baseline)

Question 30

Control revalidation

Answer 30

update periodically

revalidates proper operation of system at a time when no known changes occurred

Question 31

COSO Cube

Answer 31

The rows are the 5 components of IC (CRIME), with the slices representing the 3 objectives (ORC), and the columns representing the 4 parts of org structure (Entity level, division, operating unit, function)

Question 32

BOD & Its committees responsibility

Answer 32

oversight role
integrity, ethics
need to be objective, have industry knowledge

Question 33

Senior MGT

Answer 33

CEO- tone @ the top

responsible for design & op of IC

Question 34

Internal Auditors

Answer 34

consulting & advisory role

evaluates adequacy & effectiveness of IC wrt risks in oversight, ops, Info sys

Question 35

ERM

Answer 35

extends COSO to enterprise risk mgt
way to integrate & coordinate all risk mgt activities
emphasis on objectives & establ ways to evaluate ERM effectiveness

Question 36

Risk mgt

Answer 36

Id potential events

manage risk to be w/in risk appetite (degree of willingness of sr mgt to accept risk)

Question 37

ERM helps mgt to

Answer 37

reach objectives
prevent loss of reputation & resources
report effectively
comply with laws & regs

Question 38

ERM capabilities

Answer 38

consideration of risk appetite & strategy
risk response decisions (avoid, reduce, share, accept)
reduction of op surprise/losses
multiple & cross enterprise risk (integrated response to multiple risks)
response to opps (mgt respond quickly thru ID potential events)
Deployment of capital

Question 39

Risk & opportunity

Answer 39

risk- potential negative impact

opportunities- potential positive impact (offset risks)

Question 40

ERM objectives

Answer 40

Operations- effectiveness/efficiency
Reporting- reliability
Compliance- adherence to laws/regs
Strategic- align w/ & support mission

Strategic & ops affected by ext events
Report & compliance are w/in entity’s control

Question 41

Components of COSO ERM

Answer 41

Control activities, risk assessment, info & comm, monitoring, control env, risk response, objective setting, internal environment

Question 42

Risk response
objective setting
internal environment

Answer 42

risk response-consistent w/ risk tolerance & appetite
obj setting- must be complete before events can be ID’d; ensures process established & align w/ mission & appetite
internal- reflects mgt philosophy, appetite, integrity, ethics, overall env

Question 43

COSO ERM cube

Answer 43

4 objectives (ORCS), 8 interrelated components (CRIME ROI) & org units (Entity level, division, business unit, subsidiary) on the other side

apply approach to each intersection of 3 elements (control activities for reporting objectives at the division level)

Question 44

Present & functioning fairly

Answer 44

no material weakness

risk w/in appetite

Question 45

Strategies for risk response

Answer 45

avoidance- get rid of the risk
retentition- accept (self-insurance)
reduction- lowers level of risk (mitigate)
share- transfer some loss potential to another party (insurance)

Question 46

Risk MGT process

Answer 46

ID risk
Assess risk
Prioritize risk
Formulate response
Monitor response