1 / 60

AFM 201 Audit: Midterm 1 Fall 2011 Joanne Toporowski

AFM 201 Audit: Midterm 1 Fall 2011 Joanne Toporowski. Introduction to Auditing. Why do we conduct audits? V erification of information without self-review Three party accountability First party: auditor Second Party: accountable party Third Party: user Auditors vs. other professionals.

ossie
Télécharger la présentation

AFM 201 Audit: Midterm 1 Fall 2011 Joanne Toporowski

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. AFM 201 Audit: Midterm 1 Fall 2011 Joanne Toporowski

  2. Introduction to Auditing • Why do we conduct audits? • Verification of information without self-review • Three party accountability • First party: auditor • Second Party: accountable party • Third Party: user • Auditors vs. other professionals

  3. Definition of Auditing • Auditing is the accumulation and evaluation of evidence about information to determine and report on the degree of correspondence between the information and established criteria.

  4. Key Components of Auditing • Quantifiable information (related to entity) • Criteria: GAAP generally • Evidencegathering and evaluation • Competent, independent person • Reporting

  5. Demand for Audits • Remoteness of information • External auditors increase credibility • Bias and motives of provider • May want loans, maintain stock price, management bonuses, etc. • Voluminous data • Details can be lost in summary • Complex exchange transactions • Not everyone has studied accounting or business • Perceived cost/benefit • Reduce information risk

  6. Internal Auditing • Independent, objective assurance and consulting activity designed to add value and improve an organization’s operations. • Internal auditors must be independent • Operational auditing • Use of resources • Achievement of business objectives • Compliance with company policies

  7. Types of Auditing • Public Sector Audits: • Financial statement • Compliance • Laws and regulations • Value-for-money • Economy, efficiency and effectiveness • Regulatory Audits: • Canada Customs and Revenue Agency • Federal and Provincial bank examiners • Fraud Audits • Forensic Accounting • International Auditing • International harmonization is a key focus

  8. GAAS: Auditing Requirements • The examination is to be performed and the report prepared by persons having adequatetechnical training and proficiency in auditing, with due care and with an objective state of mind.

  9. Competent • Education and experience • Competence allows the auditor to: • recognize underlying assertions made by management, • decide which evidence is relevant to support assertion, • select and perform procedures for obtaining evidence, and • evaluate evidence for reality and conformity to GAAP.

  10. Training and Proficiency • formal accounting education, • continuing professional education • technical qualifications • experience in client industry

  11. Objectivity • Unbiased and impartial • This is achieved by maintaining independence. • Independence in fact • Independence in appearance • Threats to independence

  12. Threats to Independence • Self-Interest • Self-Review • Advocacy • Familiarity • Professional Scepticism • Intimidation • Independence must be DOCUMENTED!

  13. A note on independence…

  14. Due Professional Care • The quality of the audit work: • completeness of working papers, • evidence • appropriate conclusions based on the evidence • Court precedents “prudent practitioner;” • Firm will have quality control procedures in place

  15. Practice Standards • GAAS: Generally Accepted Accounting Standards • Overall responsibilities of auditors • Ethical requirements • Examination standards • Lists objectives of the audit • Express an opinion on whether the f/s are prepared in conformity with an applicable framework • List principles and fundamental concepts • NOT an “instruction manual”

  16. GAAS: Examination Standards • Planning: Plan and perform the audit to reduce audit risk to an acceptably low level consistent with the objectives of the audit • Supervision: Plan the nature and timing of the audit as well as supervision and review of the engagement team’s work

  17. Examination Standards Continued • Internal Control Assessment: The auditor should obtain an understanding of the entity and its environment, including internal control, sufficient to identify and assess the risks of material misstatement of the financial statements whether due to fraud or error, and sufficient to design and perform further audit procedures.

  18. Examination Standards Continued • Sufficient evidence: The auditor should obtain sufficient appropriate audit evidence to be able to draw a reasonable conclusion on which to base an audit opinion. • We will discuss evidence collection methods in a later chapter

  19. GAAS: Reporting Standards • Use of a standard report • Qualified– financial statements depart from GAAP or the scope of the audit work was limited • Unqualified– auditors are not calling attention to anything wrong • Report conclusion: • Adverse opinion • Disclaimer of opinion

  20. Final Notes • Professional Scepticism • Inclination to question all material assertions made by management • Results from potential conflict of interests between management and users • Critical Thinking • Who is management trying persuade • Statements must represent underlying activities • F/S can be prepared in accordance with GAAP but not accurately represent the underlying transactions

  21. The Audit Process • Preplanning • Engagement letter, staffing, independence threat analysis • Are preconditions for an audit present. • Acceptability of the financial reporting framework. • Management’s understanding of its reporting responsibilities. • Scope limitations that may be present in the engagement.

  22. The Audit Process • Evaluate compliance with ethical requirements, including independence. • Assess independence of the auditor • Assess competence of the auditor • Engagement teams

  23. The Audit Process • Decide whether to accept or retain the audit engagement. • The PA needs to assess each potential client for risk, and should re-assess existing clients on an annual basis.

  24. The Audit Process • Establish an understanding of the terms of the engagement. • Document the expectations and limitations of the engagement. • Obtain an understanding of the client’s business, control environment and related risks.

  25. Understanding the Client’s Business • The auditor needs to identify risky areas that will require attention in the audit. • previous working paper files • preliminary analytic review • enquiries and interviews • trade publications and review of industry • client and competitor websites. • Forensic auditors may be used to screen for fraud risks.

  26. The Audit Process • 6. Plan the Audit: • assess materiality, • assess risk, • make a preliminary assessment of inherent and control risk, and • decide on audit approach for gathering evidence.

  27. The Audit Process 7. Perform the Audit Tests and Evaluate the results • Test internal controls • Issue a report on managements internal controls • Analytical procedures • Substantive testing • Test of details of balances 8. Form an opinion 9. Issue the appropriate report

  28. Materiality • Recall: • “Reduce risk to an acceptably low level” • “Free from material misstatements” • Identify the acceptable amount of misstatements allowed in the financial statements. • Qualitative and Quantitative factors • Some inaccuracy is unavoidable • Cost/benefit, time, budget.

  29. Materiality • Definition: Materiality is the largest amount of uncorrected misstatement that might exist in financial statements that still fairly present the company’s financial position and results of operations. • Material if: the information is likely to influence the economic decisions of financial statement users. • Focus on users of the F/S • Critical Thinking

  30. Materiality • Auditors are generally left without definite, quantitative guidelines to determine materiality. • Quantitative guidelines: • 5% of income from continuing operations, • 5% of net income before bonus, • Cumulative effect of errors

  31. Materiality • Quantitatively immaterial misstatements become material if: • Makes a change in earnings • Hides a failure to meet analysts’ expectations • Changes a loss into income • Affects the auditee’s compliance with regulatory requirements • Involves the concealment of unlawful transaction or fraud • Has the effect of increasing management compensation

  32. Risk Reduction • Information Risk • Financial statements provide information that does not accurately reflect the underlying transactions • Audit Risk • Risk of insufficient evidence being gathered to correctly assess the underlying economic climate • Created by the fact that you are taking a sample • Accounting Risk • Risk that errors associated with forecasts used in GAAP and accounting estimates are not properly disclosed.

  33. Audit Risk • The probability that an auditor will fail to express a reservation that financial statements are materially misstated is audit risk. • The risk that the auditor’s opinion is incorrect • Auditors assess risk in audit related terms; inherent risk, control risk and detection risk.

  34. Inherent Risk • The probability of material misstatement occurring in transactions entering the accounting system or being in the account balances is inherent risk. • Auditors do not create or control inherent risk. • Auditors only try to assess its magnitude based on prior experience, management bias, and nature of the transactions. • The auditor will consider factors that contribute to inherent risk. • Prior history of errors • Nature of the item • Process/calculation complexity • Management judgement/bias • Nature of account (understated or overstated)

  35. Control Risk • The risk that the client’s internal control system will not prevent or detect a material misstatement is control risk. • Auditors do not create or manage Control Risk; • They evaluate or assess probability of failure to detect material misstatements. • This assessment of effectiveness may be tested by the auditor in the audit. • To justify assessment of LOW control risk • Assessment is based on study and evaluation of the company’s control system. • If you plan on relying on controls, you must test controls.

  36. Detection Risk • Definition: The risk that any material misstatement that has not been corrected by the client’s internal control will not be detected by the auditor. • Auditors can control this risk by conducting substantive (balance audit) tests. • Substantive tests include audit of details of transactions and balances, and analytical procedures applied to dollar amounts in the accounts.

  37. Audit Risk Model Audit Risk = Inherent Risk x Control Risk x Detection Risk • Auditors generally try to limit audit risk to less than 5% • AR, IR and CR cannot be 0%

  38. Internal Controls • Internal control is defined as the process designed, implemented, and maintained by management to provide reasonable assurance about: • the reliability of financial reporting, • effectiveness and efficiency of operations, and • compliance with applicable laws and regulations.

  39. Internal Control Consists of: • Control environment • management attitudes, structure, effective communication of control objectives and supervision of personnel and activities • Preventive vs. Detective/Corrective • Risk assessment process • How does management identify and deal with potential risks? • Starting point of the auditor’s business risk analysis

  40. Internal Control Consists of: • Information Systems and business processes • Support management decisions, related to all key business processes • Open communication increases internal control effectiveness • Control Activities • Capable personnel, segregation of duties, controlled access, periodic comparison • Monitoring of controls • How does management know that IC procedures are being followed?

  41. Quality Control • QC policies at firm and individual audit level • QC procedures should be communicated to personnel in an understandable manner • Auditors should implement QC procedures. Review any delegated work. • Document QC • Monitoring QC: • Practice inspections, peer reviews, quality inspections

  42. Financial Statement Assertions • Assertions are claims management makes in financial statements. • Systems create trial balance • Management summarizes the information into financial statements • Audit objectives are to obtain and evaluate evidence about assertions made by management • Assertions are the fundamental management claims to be audited

  43. Five Principle Assertions • Existence • Do assets, obligations (liabilities) and equities exist? • Did included transactions actually happen? • Completeness • All transactions and amounts that happened are included? Was anything MISSED or FORGOTTEN (cut-off considerations)? • Ownership • Rights: Do the assets on hand belong to the company? • Obligations: Were the obligations incurred by the company (not by someone else)?

  44. Five Principle Assertions • Valuation • Is the asset at lower of cost or net realizable value? Is the liability at cost? • Presentation • Do the statements include all relevant information in a way that financial statement users can understand? • Assume a prudent user

  45. Evidence Collection • Inspection • Observation • Inquiry • Confirmation • Re-calculation • Re-performance • Analytical procedures

  46. Evidence Collection • Inspection • Inspection or count of a tangible asset or document • Very reliable • Observation • use of the senses to assess certain activities • Rarely sufficient evidence on it’s own • Must be DOCUMENTED!

  47. Evidence Collection • Inquiry • Obtaining of written or oral information from the client in response to questions from the auditor • Assess risk, but don’t rely upon • Confirmation • The receipt of a written or oral response from an independent third party verifying the accuracy of information • Extremely reliable but costly

  48. Evidence Collection • Re-calculation • Involves rechecking the computations and mathematical work completed by the client during the period under audit. • Re-performance • The redoing of other non-mathematical procedures such as internal controls. • Analytical Procedures • Use comparisons and relationships between financial and non-financial information to determine whether account balances appear reasonable.

  49. Persuasive Evidence • Persuasive evidence is: • Appropriate • Relevant – does the evidence pertain to the audit assertion being tested? • Reliable • Sufficient • Would another professional reach the same conclusion as you did? • Timely • Part of the evidence gathering decision is related to the tradeoff of the cost of gathering evidence versus its persuasiveness.

More Related