Week 7

Question 1

Assessing control risk at less than high involves all of the following except:

Answer 1

concluding that controls are ineffective.

Question 2

Obtaining an understanding of the internal control and assessing control risk:

Answer 2

may be performed concurrently in an audit.

Question 3

The conclusion reached as a result of assessing control risk is referred to as the:

Answer 3

assessed level of control risk.

Question 4

An auditor assesses the level of control risk to:

Answer 4

determine the extent of substantive tests to be performed.

Question 5

How does the extent of substantive tests required to constitute sufficient appropriate audit evidence vary with the auditor’s assessment of control risk?

Answer 5

Directly.

Question 6

The ultimate purpose of assessing control risk is to contribute to the auditor’s evaluation of the:

Answer 6

risk that material misstatements exist in the financial report.

Question 7

Assessing control risk at less than high would most likely involve:

Answer 7

Identifying specific internal controls relevant to specific assertions.

Question 8

A primary purpose of internal controls is to:

Answer 8

meet objectives of maintaining sound documents and records and accurate financial reporting.

Question 9

When obtaining an understanding of the entity and its environment, the auditor should obtain an understanding of internal controls primarily to:

Answer 9

assess the risk of material misstatement and plan the audit.

Question 10

Which of the following would be least likely to suggest to an auditor that the client’s management may have overridden the internal control?

Answer 10

Differences are always disclosed on a computer exception report.

Question 11

In assessing control risk, the auditor is basically concerned that the system provides reasonable assurance that:

Answer 11

misstatements have been prevented or detected.

Question 12

T or F

for internal control: Control procedures reasonably ensure that collusion among employees cannot occur.

Answer 12

False

Question 13

T or F
for internal control: The cost–benefit relationship is a primary criterion that should be considered in designing internal control.

Answer 13

True

Question 14

What is one of the overriding principles of internal control?

Answer 14

Responsibility for the performance of each duty must be fixed.

Question 15

Virginia Samuels, the purchasing officer of Handyman Wholesalers Pty Ltd (Handyman), has a relative who owns a retail hardware store. Virginia arranged for hardware to be delivered by manufacturers to the retail store on a COD basis, thereby enabling her relative to buy at ’wholesale prices in Handyman’s name. Virginia was probably able to accomplish this because of Handyman’s poor internal control for:

Answer 15

purchase orders.

Question 16

A company policy should clearly indicate that defective merchandise returned by customers is to be delivered to the:

Answer 16

receiving clerk.

Question 17

An effective internal control for the payroll function would generally include which of the following?

Answer 17

Total time spent on jobs should be compared with total time indicated on time-clock cards

Question 18

An auditor reviews a client’s payroll procedures. The auditor would consider the internal control to be less than effective if a payroll department supervisor was assigned the responsibility for:

Answer 18

distributing payroll cheques to employees.

Question 19

Management’s attitude toward aggressive financial reporting and its emphasis on meeting projected profit goals most likely would significantly influence an entity’s control environment when:

Answer 19

management is dominated by one individual.

Question 20

The control environment component of internal controls includes all of the following except:

Answer 20

access to computer programs.

Question 21

The risk assessment component of internal controls refers to:

Answer 21

the entity’s identification and analysis of risks relevant to achievement of its objectives.

Question 22

Which of the following is not one of the five elements of internal control?

Answer 22

Corporate governance.

Question 23

The internal control environment includes all of the following except:

Answer 23

tests of control.

Question 24

A well-prepared flowchart should make it easier for the auditor to:

Answer 24

perform walk-throughs.

Question 25

A flowchart is most frequently used by an auditor in connection with the:

Answer 25

review of the client’s internal accounting controls.

Question 26

Emerald Ltd maintains a large, full-time internal audit staff that reports directly to the chief accountant. Audit reports prepared by the internal auditors indicate that the structure is functioning as it should be and that the accounting records are reliable. The external auditor will probably:

Answer 26

place limited reliance on the work performed by the internal audit staff.

Question 27

To provide for the greatest degree of independence in performing internal auditing functions, an internal auditor most likely should report to the:

Answer 27

audit committee.

Question 28

When an independent auditor decides that the work performed by internal auditors may have a bearing on the nature, timing and extent of contemplated audit procedures, the independent auditor should plan to evaluate the objectivity of the internal auditors. Relative to objectivity, the independent auditor should:

Answer 28

consider the organisation level to which internal auditors report the results of their work

Question 29

In which of the following situations would an auditor most likely use a strategy of reliance on internal control?

Answer 29

No paper trail is generated, as the entity receives sales orders, bills customers and receives payment based only on information generated from IT.

Question 30

One of the major problems with IT systems is that incompatible functions may be performed by the same individual. One compensating control for this is the use of:

Answer 30

a computer log.

Question 31

If a control total were to be calculated on each of the following data items, which would best be identified as a hash total for a payroll IT application?

Answer 31

Department numbers.

Question 32

If a control total were to be computed on each of the following data items, which would best be identified as a hash total for a payroll IT application?

Answer 32

Employee’s identification number.

Question 33

The completeness of IT-generated sales figures can be tested by comparing the number of items listed on the daily sales report with the number of items billed on the actual invoices. This process uses:

Answer 33

control totals.

Question 34

Gift Stores Ltd has a fully integrated IT accounting system and is planning to issue credit cards to creditworthy customers. To strengthen the internal control by making it difficult for one to fraudulently create a customer account number, a check digit should be placed:

Answer 34

consistently in any position.

Question 35

An input control is designed to ensure that:

Answer 35

data received for processing are properly authorised and converted to machine-readable form.

Question 36

An advantage of using systems flowcharts to document information about internal control instead of using internal control questionnaires is that systems flowcharts:

Answer 36

provide a visual depiction of clients’ activities.

Question 37

For a complex system, auditors are least likely to use which of the following when documenting their understanding of internal controls?

Answer 37

Narratives.

Question 38

Walk-throughs usually involve all of the following audit procedures except:

Answer 38

re-performance.

Question 39

Which of the following situations is not a reason to assess control risk as high?

Answer 39

The auditor has assessed detection risk as high.

Question 40

In obtaining an understanding of the internal control policies and procedures that are relevant to audit planning, the auditor should perform procedures to provide sufficient knowledge of:

Answer 40

design of the relevant policies, procedures and records and whether they have been placed in operation.

Question 41

Which of the following is not a medium that can normally be used by an auditor to record information concerning a client’s internal control?

Answer 41

Procedures manual.

Question 42

When the auditor has assessed the level of control risk at less than high, the auditor should document:

Answer 42

The understanding of the entity’s internal control elements obtained to plan the audit.
The conclusion and the basis for that conclusion.
The implications for the overall audit strategy.

Question 43

Procedures directed towards obtaining evidence concerning the effectiveness of the design or operation of an internal control policy or procedure are referred to as:

Answer 43

tests of controls.

Question 44

The auditor observes client employees in obtaining an understanding of the internal control in order to:

Answer 44

corroborate the information obtained during the initial phases of obtaining an understanding of the internal control.

Question 45

The following are steps in the audit process:
I. prepare flowchart.
II. gather exhibits of all documents.
III. interview personnel.
The most logical sequence of steps is:

Answer 45

III, II, I.

Question 46

The auditor’s understanding of the client’s internal control is documented to substantiate:

Answer 46

compliance with the auditing standards.

Question 47

After the auditor has prepared a flowchart of the accounting system and control procedures surrounding sales, and assessed the design of the system, the auditor would perform tests of controls for all control procedures:

Answer 47

considered to be strengths that the auditor plans to use as a basis for an assessed level of control risk less than high.

Question 48

Which of the following internal control features would an auditor be least likely to review?

Answer 48

Classification of sales and cost records by products.

Question 49

When considering the internal control for inventory with respect to segregation of duties, an auditor would be least likely to:

Answer 49

inspect documents.

Question 50

In the weekly computer run to prepare payroll cheques, a cheque was printed for an employee whose employment was terminated the previous week. Which of the following controls, if properly used, would have been most effective in preventing this error or ensuring its prompt detection?

Answer 50

A control total for hours worked, prepared from time-cards collected by the timekeeping department
and compared to the payroll sheets.

Question 51

The auditor obtains evidence supporting the notion that proper segregation of duties exists by:

Answer 51

personally observing the employees who apply the control procedures.

Question 52

Which of the following procedures is essential to determine whether effective internal control policies and procedures have been prescribed and are being followed?

Answer 52

Understanding the internal control and performing tests of controls.

Question 53

Which of the following input controls is a numeric value computed to provide assurance that the original input value does not contain a transcription error?

Answer 53

Check digit.

Question 54

A limit test is a:

Answer 54

test to ensure that a numerical value does not exceed some predetermined value.

Question 55

An IT input control is designed to ensure that:

Answer 55

data received for processing are properly authorised and converted to machine readable form.

Question 56

For good internal control, which of the following functions should not be the responsibility of the cashier?

Answer 56

Data processing.

Question 57

In updating a computerised accounts receivable file, which one of the following would be used as a batch control to verify the accuracy of the postings of cash receipts remittances?

Answer 57

The sum of the cash deposits, plus the discounts taken by customers.

Question 58

After obtaining an initial understanding of a client’s IT controls, an auditor may decide not to perform tests of controls related to the control procedures within the IT section of the client’s internal control. Which of the following justifications would not be a valid reason for choosing to omit tests of controls?

Answer 58

The controls appear adequate.

Question 59

Which of the following computer documentation would an auditor most likely utilise in obtaining an understanding of internal control?

Answer 59

Systems flowcharts.

Question 60

Which of the following situations most likely represents a weakness in IT internal control?

Answer 60

The systems analyst reviews output and controls the distribution of output from the IT department.

Question 61

Which of the following would lessen the effectiveness of the internal control in a computer system?

Answer 61

Computer operators have access to detailed program documentation.

Question 62

Which of the following information is likely to be least important to an auditor who is reviewing the internal control of the data processing function?

Answer 62

Bit storage capacity.

Question 63

Which of the following information is likely to be of least importance to an auditor in obtaining an understanding of the internal control?

Answer 63

The cost-benefit ratio of data processing operations.

Question 64

A procedural control used in the management of a computer centre to minimise the possibility of data or program file destruction through operator error includes:

Answer 64

external labels.

Question 65

The use of a header label is most likely to prevent errors by the:

Answer 65

computer operator.

Question 66

When erroneous data are detected by computer program controls, such data may be excluded from processing and printed on an error report. The error report should most probably be reviewed and followed up by the:

Answer 66

IT control group.

Question 67

Internal control procedures within the IT activity may leave no visible evidence indicating that the procedures were performed. In such instances, the auditor should test these controls by:

Answer 67

reviewing transactions submitted for processing and comparing them to related output.

Question 68

Totals of amounts in computer-record data fields that are not usually added, but are used only for data-processing control purposes, are called:

Answer 68

hash totals.

Question 69

Which of the following activities would most likely be performed in the IT department?

Answer 69

Conversion of information to machine-readable form.

Question 70

Which of the following is an example of a check digit?

Answer 70

An algebraically determined number produced by the other digits of the employee number

Question 71

After obtaining an understanding of internal control and assessing control risk of an entity, an auditor decided not to perform tests of controls. The auditor most likely decided that:

Answer 71

the evidence that could be obtained through tests of controls would not support an assessment of control risk as less than high.

Question 72

Assessing control risk at a level below high most likely would involve:

Answer 72

identifying internal controls relevant to specific assertions.

Question 73

An auditor may decide to assess control risk at high for certain assertions because the auditor believes:

Answer 73

evaluating the effectiveness of control policies and procedures is inefficient.

Question 74

After obtaining an understanding of an entity’s internal control system, an auditor may assess control risk at a high level for some account balances because he or she:

Answer 74

believes the internal controls are unlikely to be operating effectively.

Question 75

Test of controls must be performed:

Answer 75

to ensure that controls that are to be relied upon are operating effectively throughout the entire year.

Question 76

A procedure that would most likely be used by an auditor in performing tests of controls that involve segregation of functions and that leave no transaction trail is:

Answer 76

observation.

Question 77

Which of the following audit tests would be regarded as a test of controls?

Answer 77

Tests of the signatures on sales orders to a list of approved signatories.

Question 78

Which of the following procedures most likely would not be included as part of an auditor’s tests of controls?

Answer 78

Analytical procedures

Question 79

Evidence about which aspect(s) of internal control is usually gained when the auditor is assessing control risk?

Answer 79

Existence.

Question 80

Based on a study and evaluation completed at an interim date, the auditor concludes that no significant internal accounting control weaknesses exist. The records and procedures would most likely be tested again at year-end if:

Answer 80

enquiries and observations lead the auditor to believe that conditions have changed.

Question 81

An auditor wishes to perform tests of controls on a ABC Ltd’s cash disbursements procedures. If the control procedures leave no audit trail of documentary evidence, the auditor most likely will test the procedures by:

Answer 81

observation and enquiry.

Question 82

When undertaking tests of controls which are related to controls built around a major transaction flow, which assertion would be of least interest to the auditor?

Answer 82

Valuation and allocation.

Question 83

While auditing at Bandana Ltd and undertaking tests of controls which are related to controls built around their integrated sales and purchases system, which assertion would be of least interest to you as auditor?

Answer 83

Rights and obligations.

Question 84

In the examination of which of the following general ledger accounts will tests of controls be particularly appropriate?

Answer 84

Sales.

Question 85

Tests designed to detect credit sales made before the end of the year that have been recorded in the subsequent year provide assurance about management’s assertion of:

Answer 85

Cut-off.

Question 86

Which of the following tests of control most likely would help assure an auditor that goods shipped are properly billed? Checking that the client has:

Answer 86

examined shipping documents for matching sales invoices.

Question 87

While auditing Georgie Ltd you have identified as a risk whether all sales have occurred. The procedure that will be most effective in verifying this assertion is:

Answer 87

selecting a sample of invoices and vouching them to delivery dockets.

Question 88

To determine whether internal control structure policies and procedures operated effectively to minimise errors of failure to invoice a shipment, the auditor would select a sample of transactions from the population represented by the:

Answer 88

bill of lading file.

Question 89

For effective internal control, the billing function should be performed by the:

Answer 89

accounting department.

Question 90

Tracing shipping documents to pre-numbered sales invoices provides evidence that:

Answer 90

shipments to customers were properly invoiced.

Question 91

Tracing bills of lading to sales invoices provides evidence that:

Answer 91

shipments to customers were recorded as sales.

Question 92

Which is not a key segregation of duties for the revenue process? Different parties should:

Answer 92

prepare shipping orders and prepare bills of landing.

Question 93

All of the following are important controls over credit memos except:

Answer 93

proper segregation of duties to ensure that sales discounts taken were earned.

Question 94

When undertaking tests of controls for revenues, auditors are more concerned with controls associated with the occurrence assertion than they are with the completeness assertion because:

Answer 94

clients are more likely to overstate than understate revenues.

Question 95

An auditor selects a sample from the file of shipping documents to determine whether invoices were prepared. This test is performed to assess which assertion for sales?

Answer 95

Completeness.

Question 96

While auditing the sales system of Candle Pty Ltd you have determined that there is a risk of sales being misstated, and that this potential misstatement is associated with the completeness assertion. Which of the following would be an appropriate audit response to this assessed risk?

Answer 96

Select a sample of shipping documents test to related sales invoices and the sales journal.

Question 97

Which of the following is a test of controls for the control assertion of completeness for revenue?

Answer 97

Trace shipping documents to sales invoices and the sales journal.

Question 98

An auditor most likely would limit substantive audit tests of sales transactions when control risk is assessed as low for the occurrence assertion concerning sales transactions and the auditor has already gathered evidence supporting:

Answer 98

cash receipts and accounts receivable.

Question 99

Beta Pty Ltd posts to its perpetual inventory records directly from its sales invoices. Inadequate control procedures over the invoicing function allow goods to be invoiced that are not shipped. The inadequate control procedures could cause an:

Answer 99

overstatement of revenues and receivables, and an understatement of inventory.

Question 100

Beta Pty Ltd posts to its perpetual inventory records directly from its sales invoices Inadequate control procedures over the invoicing function allow goods to be shipped that are not invoiced. The inadequate control procedures could cause an:

Answer 100

understatement of revenues and receivables and an overstatement of inventory.

Question 101

Which of the following internal controls would be most likely to deter the lapping of collections from customers?

Answer 101

Segregation of duties between receiving cash and posting the accounts receivable ledger.

Question 102

Purchase cut-off procedures should be designed to test whether all inventory:

Answer 102

purchased and received before the year-end was recorded at year-end.

Question 103

The cut-off assertion for accounts payable involves testing whether all accounts payable are:

Answer 103

recorded in the proper period.

Question 104

Which of the following is a primary function of the purchasing department?

Answer 104

Ensuring the acquisition of goods of a specified quality.

Question 105

To ensure the completeness of purchases made during the year, the auditor should:

Answer 105

select a sample of invoices received before the year-end and ensure that they are appropriately recorded in the accounts payable master file.

Question 106

While undertaking the audit of the payables and disbursements system at Broil Ltd, you find that the internal control questionnaire indicates that an approved receiving report is required to accompany every cheque request for payment of merchandise. Which of the following tests of control would provide you with the greatest assurance that this control is operating effectively?

Answer 106

Select and examine voucher documents and ascertain that the related receiving reports are dated no later than the date of payment.

Question 107

An audit client erroneously recorded a large purchase twice. Which of the following tests of control would be most likely to detect this error in a timely and efficient manner?

Answer 107

Reconciling suppliers’ monthly statements with subsidiary payable ledger accounts.

Question 108

When goods are received, the receiving clerk should match the goods with:

Answer 108

the supplier shipping document and the purchase order.

Question 109

In a properly-designed accounts payable system, a voucher is prepared after the invoice, purchase order, requisition and receiving report are verified. The next step in the system is:

Answer 109

entering of the voucher into the voucher register.

Question 110

In auditing the purchases system, an auditor vouches a sample of entries in the voucher register (accounting records) to the supporting documents. Which assertion would this test of controls most likely support?

Answer 110

Occurrence.

Question 111

Tests of controls for the occurrence assertion for purchases include all of the following except:

Answer 111

tracing a sample of vouchers to the purchases journal.

Question 112

Which of the following is the most effective test of control to detect vouchers prepared for the payment of goods that were not received?

Answer 112

Matching of purchase order, receiving report and supplier invoice for each voucher in the accounts payable department.

Question 113

Which of the following internal control activities is not usually performed in the accounts payable department?

Answer 113

Accounting for unused pre-numbered purchase orders and receiving reports.

Question 114

In a properly-designed purchasing process, the same employee most likely would match suppliers’ invoices with receiving reports and also:

Answer 114

recompute the calculations on suppliers’ invoices.

Question 115

Tests designed to detect payroll payments made after the end of the year that have been incurred in the current year provide assurance about management’s assertion of:

Answer 115

Cut-off.

Question 116

To check the accuracy of the accounting records with regards to the recorded hours worked, an auditor would ordinarily compare time sheets with:

Answer 116

time recorded in the payroll register.

Question 117

Selected employee time cards that have been approved by supervisory personnel during the year are compared to the payroll register to ensure that they have been recorded. Which of the following assertions for payroll expense does this test?

Answer 117

Completeness.

Question 118

Which of the following procedures would be most likely to be considered a weakness in an entity’s internal controls over payroll?

Answer 118

The employee who distributes payroll cheques is responsible for later distributing unclaimed payroll cheques to the employees absent at time of payroll distribution.

Question 119

Selected items from the payroll register are compared to employee time-cards that have been approved by supervisory personnel. Which of the following assertions for payroll expense does this test?

Answer 119

Occurrence.

Question 120

Possible misstatements related to the occurrence assertion for payroll transactions include all of the following except

Answer 120

payments to valid employees at a rate in excess of the authorised amount.

Question 121

When reviewing the audit working papers of Coffee Ltd you find the following audit populations were used as the basis from which to select a random sample in response to an account balance, assertion at risk and an appropriate audit procedure. Which of these populations would be of most concern to you as being an inappropriate audit population, given the assertion at risk and the audit procedure selected?

Answer 121

Completeness of payroll—population from which sample was selected was payroll recorded in the payroll file, and the procedure was to ensure that the hours worked were matched with the details contained on the employee’s time sheet.

Question 122

Auditing by testing the input and output of an IT system instead of the computer program itself will:

Answer 122

not detect program errors that do not show up in the output sampled.

Question 123

An auditor will use test data to gain certain assurances with respect to the:

Answer 123

controls contained within the program.

Question 124

Which of the following is a significant difference between the test data (test deck) approach and an integrated test facility (ITF)?

Answer 124

ITFs are processed on a live run basis while test data (test deck) can only be processed on a ‘test run’ basis.

Question 125

When testing a computerised accounting system, which of the following is not true of the test data approach?

Answer 125

The test data must consist of all possible valid and invalid conditions.

Question 126

Which of the following is not among the errors that an auditor might include in the test data when auditing a client’s IT system?

Answer 126

Differences in description of units of measure.

Question 127

An auditor who is testing IT controls in a payroll system would most likely use test data that contain conditions such as:

Answer 127

time cards with invalid job numbers.

Question 128

An approach to testing real-time processing of a computer-based information system is known as the integrated test facility (ITF) technique. This approach involves:

Answer 128

setting up a small set of records for a fictitious entity in the master files and then processing dummy transactions against the fictitious entity.

Question 129

Jones Ltd has numerous customers. Each customer file contains name, address, credit limit and account balance. The auditor wishes to undertake a test of the automated control that does not allow account balance to exceed credit limit. The best procedure for the auditor to follow would be to: A. develop a program to compare credit limits with account balances and print out the details of any account with a balance exceeding its credit limit.

Answer 129

ANSB. develop test data that would cause some account balances to exceed the credit limit and determine if the system properly detects such situations.

Question 130

In a daily computer run to update cheque account balances and to print out basic details on any customer account that was overdrawn, the overdrawn account of the computer programmer was never printed. Which of the following control procedures would have been most effective in detecting this irregularity?

Answer 130

Periodic recompiling of programs from approved and documented source code, and comparison with programs currently in use.