Chapter 7. Auditing Internal Control over Financial Reporting. Copyright 2012 by The McGraw-Hill Companies, Inc. All rights reserved.

Similar documents
Comparison of the PCAOB s Auditing Standards No. 5 and No. 2 (Certain key differences are highlighted by underlining)

McGraw-Hill/Irwin. Copyright 2013 by The McGraw-Hill Companies, Inc. All rights reserved.

McGraw-Hill/Irwin. Copyright 2013 by The McGraw-Hill Companies, Inc. All rights reserved.

Chapter 4. Risk Assessment. Copyright 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin

CPA REVIEW SCHOOL OF THE PHILIPPINES M a n i l a. AUDITING THEORY Risk Assessment and Response to Assessed Risks

Internal controls over Financial Reporting Key concepts. Presentation by Jayesh Gandhi at WIRC

McGraw-Hill/Irwin. Copyright 2013 by The McGraw-Hill Companies, Inc. All rights reserved.

Auditing Standards and Practices Council

May 3, To the Jail Board Members and Management Western Tidewater Regional Jail Authority 2402 Godwin Blvd Suffolk, Virginia 23434

STATEMENT OF AUDITING STANDARDS 500 AUDIT EVIDENCE

Internal Financial Controls New perspectives as per Companies Act 2013 and CARO 2016

Reporting on an Examination of Controls at a Service Organization Relevant to User Entities Internal Control Over Financial Reporting

Special Considerations Audits of Group Financial Statements (Including the Work of Component Auditors)

Evaluating Internal Controls

Reporting on Pro Forma Financial Information

McGraw-Hill/Irwin. Copyright 2013 by The McGraw-Hill Companies, Inc. All rights reserved.

US U.S. AAM vs. DTTL AAM A Refresher Deloitte Touche Tohmatsu

Copyright 2013 by The McGraw-Hill Companies, Inc. All rights reserved.

Auditing Standards and Practices Council

INTERNATIONAL STANDARD ON AUDITING 315 UNDERSTANDING THE ENTITY AND ITS ENVIRONMENT AND ASSESSING THE RISKS OF MATERIAL MISSTATEMENT CONTENTS

Standards on Review Engagements (SREs) E- 1220

INTERNATIONAL STANDARD ON AUDITING 210 TERMS OF AUDIT ENGAGEMENTS CONTENTS

Performing Audit Procedures in Response to Assessed Risks and Evaluating the Audit Evidence Obtained

[RELEASE NOS ; ; FR-77; File No. S ]

Report on Inspection of KPMG AG Wirtschaftspruefungsgesellschaft (Headquartered in Berlin, Federal Republic of Germany)

ACC 269 Auditing and Assurance Services

FREQUENTLY ASKED QUESTIONS ABOUT INTERNAL CONTROL OVER FINANCIAL REPORTING

February 23, Office of the Secretary Public Company Accounting Oversight Board 1666 K Street, N.W. Washington, D.C.

PROFESSIONAL LEVEL PART-A: OVERVIEW OF AUDITING AND ASSURANCE

Public Company Accounting Oversight Board

The Auditor s Responses to Assessed Risks

PART 6 - INTERNAL CONTROL

PHILIPPINE STANDARD ON AUDITING 300 PLANNING AN AUDIT OF FINANCIAL STATEMENTS CONTENTS

AUDIT RISK ASSESSMENT AND RESPONSES TO ASSESSED RISK BY Geoffrey Byamugisha Partner, Ernst & Young. Lessons on Audit Risk. Responding to fraud risk

SRI LANKA AUDITING STANDARD 300 PLANNING AN AUDIT OF FINANCIAL STATEMENTS CONTENTS

Chapter 2. Multiple Choice

Auditing Standard 16

Chapter [LO 3] Why do the audit standards address qualifications of the user of financial statements in the discussion of materiality?

LIST OF SUBSTANTIVE CHANGES AND ADDITIONS. PPC's Guide to Audits of Nonprofit Organizations

Reporting on Pro Forma Financial Information

SRI LANKA AUDITING STANDARD 300 PLANNING AN AUDIT OF FINANCIAL STATEMENTS CONTENTS

International Standard on Auditing (Ireland) 500 Audit Evidence

SARBANES-OXLEY COMPLIANCE MANAGING CHANGING EXPECTATIONS January 20, 2017

Planning an Audit of Financial Statements

2016 INSPECTION OF BHARAT PARIKH & ASSOCIATES CHARTERED ACCOUNTANTS. Preface

Sample Audit Committee. of Auditors and Management

Report on Inspection of KAP Purwantono, Sungkoro & Surja (Headquartered in Jakarta, Republic of Indonesia)

INSTRUCTION ON METHODOLOGY ON PERFORMING FINANCIAL AUDIT AND REGULARITY AUDIT ( Official Gazette of MN, no. 07/15 from 17 th February 2015)

Auditor Objectivity and Skepticism What s Next?

AGS 10. Joint Audits AUDIT GUIDANCE STATEMENT

SAS Teleconference

Internal Audit Policy and Procedures Internal Audit Charter

Forum on Auditing in The Small Business Environment

Engagement Quality Review

Maryland School for the Deaf

Report on Inspection of Deloitte LLP (Headquartered in Toronto, Canada) Public Company Accounting Oversight Board

Aalborg Universitet. ISA 402 & ISAE 3402 Lessons Learned Berthing, Hans Henrik Aabenhus. Publication date: 2013

Audit Evidence This section is effective for audits of financial statements for periods ending on or after December 15, 2012.

Scope of this SA Effective Date Objective Definitions Sufficient Appropriate Audit Evidence... 6

Planning an Audit 259

Auditing Standard No. 2 vs. Auditing Standard No. 5: Implications for Integrated Audits and Financial Reporting Quality

STANDARD-SETTING UPDATE OFFICE OF THE CHIEF AUDITOR SEPTEMBER 30, 2017

CLARIFIED INTERNATIONAL STANDARDS ON AUDITIING WHAT DOES IT MEAN FOR AUDITORS IN THE UK AND IRELAND?

up Texas Society of ~ Certified Public Accountants

Assurance Hand Note Professional Stage-Knowledge Level By: Shafique Ahmed-Sr. Officer (Internal Audit-BSRM) Assurance

AUDITING CPA EXAM REVIEW V 3.2. For Exams Scheduled After December 31, 2017

Audits of Group Financial Statements

IT Audit Process. Michael Romeu-Lugo MBA, CISA March 27, IT Audit Process. Prof. Mike Romeu

New auditing regime: checklist [1]

Department of Human Resources Local Department Operations

Inspection of Petrie Raymond, Chartered Accountants L.L.P. (Headquartered in Montreal, Canada) Public Company Accounting Oversight Board

Report on Inspection of KPMG Auditores Consultores Ltda. (Headquartered in Santiago, Republic of Chile)

AICPA ACCOUNTING AND AUDIT MANUAL 1

Speech by SEC Staff: Remarks before the 2007 AICPA National Conference on Current SEC and PCAOB Developments

Assessment of the Design Effectiveness of Entity Level Controls. Office of the Chief Audit Executive

Reliable Financial Reporting. Evaluating Deficiencies in Internal Control Over Financial Reporting

INTERNATIONAL STANDARD ON AUDITING 580 WRITTEN REPRESENTATIONS CONTENTS

UNIVERSITY OF ILLINOIS AT URBANA-CHAMPAIGN

Report on. Issued by the. Public Company Accounting Oversight Board. June 16, 2016 THIS IS A PUBLIC VERSION OF A PCAOB INSPECTION REPORT

Companion Policy Acceptable Accounting Principles and Auditing Standards

) ) ) ) ) ) ) ) ) ) ) )

DATA ANALYTICS : THE FUTURE OF AUDIT

US Inspection Findings and Internal Control Methodology Changes

Financial Statements Framework

Internal Control Questionnaire and Assessment

Implementing the new revenue guidance in the manufacturing industry

Terms of Engagement 105. Source: SAS No Effective for audits of financial statements for periods ending on or after December 15, 2012.

The Role of Analytics in Auditing The Importance of What the Numbers Indicate and Lack to Indicate

Internal Controls: Need Them, Have Them, Love Them

Copy of the Accounting Auditor s Report (Consolidated) Independent Auditor s Report

SEMINAR ON INTERNAL FINANCIAL CONTROLS. Oct 31, 2015 at ISACA Pune Chapter Nov 1, 2015 at Pune Branch of WIRC of ICAI

AICPA Peer Review Program Compliance: Responding to Latest Developments

Report on controls over Devon Funds Management Limited s investment management services. For the period from 1 January 2014 to 31 December 2014

AUDITING AND ATTESTATION CHAPTER 1 PROFESSIONAL STANDARDS, AUDIT PROCESS, AND AUDIT PLANNING. Magic Memory Outline

Audit Standards 6/23/2017. Outline. Let s Refresh. Changes to the IIA Standards

Chapter 8 Analytical Procedures

AMERICAN EXPRESS COMPANY AUDIT AND COMPLIANCE COMMITTEE CHARTER (as amended and restated as of September 26, 2017)

TIS Section 8800, Audits of Group Financial Statements and Work of Others

Summary of ISAs for ACCA F8 Students. The Essential Knowledge Paul Merison

Forum on Auditing in The Small Business Environment

Transcription:

Chapter 7 Auditing Internal Control over Financial Reporting McGraw-Hill/Irwin Copyright 2012 by The McGraw-Hill Companies, Inc. All rights reserved.

Management Responsibilities under Section 404 Management must comply with the following requirements in order for the external auditor to complete an audit of ICFR. 1. Accept responsibility for the effectiveness of the entity s ICFR. LO# 1 2. Evaluate the effectiveness of the entity s ICFR using suitable control criteria. 3. Support the evaluation with sufficient evidence, including documentation. 4. Present a written assessment regarding the effectiveness of the entity s ICFR as of the end of the entity s most recent fiscal year. 7-2

Auditor Responsibilities under Section 404 and AS5 The entity s independent auditor must audit and report on the effectiveness of ICFR. The auditor is required to conduct an integrated audit of the entity s ICFR and its financial statements. LO# 2 7-3

LO# 3 ICFR Defined ICFR is defined as a process designed to provide reasonable assurance regarding the reliability of financial reporting and the preparation of financial statements in accordance with GAAP. Controls include procedures that: 1. Pertain to the maintenance of records that fairly reflect the transactions and dispositions of the assets of the company. 2. Provide reasonable assurance that transactions are recorded in accordance with GAAP. 3. Provide reasonable assurance regarding prevention or timely detection of unauthorized acquisition, use, or disposition of the company s assets. 7-4

Internal Control Deficiencies LO# 4 M A G N I T U D E Material Not material but significant Not material or significant Defined Material weakness Significant deficiency Control deficiency Report externally to audit committee and to management Report to audit committee and to management Report to management Remote Reasonably possible or probable L I K E L I H O O D 7-5

LO# 5 Management s Assessment Process Management must follow a top-down, risk-based approach: 1. Identify financial reporting risks and controls. 2. Evaluate evidence about the operating effectiveness of ICFR. 3. Consider which locations to include in the evaluation. 7-6

LO# 6 Performing an Audit of ICFR Figure 7-2 7-7

Integrating the Audits of Internal Control and Financial Statements LO# 6 An integrated audit is composed of the audits of internal control and the financial statements. The control testing impacts the planned substantive procedures. Also, the results of the substantive procedures are considered in the evaluation of internal control. Tests of internal control Substantive audit procedures 7-8

LO# 7 Planning the Audit of ICFR The planning process is similar to the process used for the audit of financial statements. Consider the following: Risk assessment and the risk of fraud. Scaling the audit. Using the work of others. 7-9

LO# 8 Using a Top-Down Approach Figure 7-3 7-10

Test the Design and Operating Effectiveness of Controls LO# 9 Evaluate design Test and evaluate operating effectiveness Nature: Inquiry, Inspection of documents, observation, and reperformance. Timing: Interim vs. as of date Extent: Consider (1) Nature of the control; (2) Frequency of operation; and (3) Importance of the control. 7-11

LO# 10 Evaluate Identified Control Deficiencies 7-12

Remediation of a Material Weakness LO# 11 Remediation is the process of correcting a material weakness in the ICFR If a material weakness is corrected before the as of date, there must be sufficient time for both management and the auditor to test the operating effectiveness of the control if not, an adverse opinion is still issued. 7-13

LO# 12 Written Representations In addition to the management representations obtained as part of a financial statement audit, the auditor also obtains written representations from management related to the audit of ICFR. Failure to obtain written representations from management, including management s refusal to furnish them, constitutes a limitation on the scope of the audit sufficient to preclude an unqualified opinion. 7-14

Auditor Documentation LO# 13 Requirements The auditor must properly document the processes, procedures, judgments, and results relating to the audit of internal control. When an entity has effective ICFR, the auditor should be able to perform sufficient testing of controls to assess control risk for all relevant assertions at a low level. 7-15

Types of Reports Relating to the Audit of ICFR LO# 14 An unqualified opinion signifies that the client s internal control is designed and operating effectively (no material weaknesses). A serious scope limitation requires the auditor to disclaim an opinion. An adverse opinion is required if a material weakness is identified. 7-16

LO# 15 Additional Required Communications in an Audit of ICFR The auditor must communicate in writing to management and the audit committee all significant deficiencies and material weaknesses identified during the audit (AS5). This communication should be made prior to the issuance of the auditor s report on ICFR. In addition, the auditor should communicate to management, in writing, all control deficiencies identified during the audit and inform the audit committee when such a communication has been made. 7-17

Advanced Module 1: Use of Service Organizations LO# 16 Management and the auditor should perform the following procedures with respect to the activities performed by the service organization: (1) obtain an understanding of the controls at the service organization that are relevant to the entity s internal control and the controls at the user organization over the activities of the service organization; and (2) obtain evidence that the controls that are relevant to management s assessment and the auditor s opinion are operating effectively. Sometimes a Type 2 report is issued 7-18

LO# 18 Advanced Module 2: Computer-Assisted Audit Techniques Computer-assisted audit techniques (CAATs) include: Generalized audit software packages. Custom audit software. Test data. 7-19

End of Chapter 7 7-20

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback