AUD 1 Flashcards

Question

# AUD Reports How does a very material GAAP issue affect the Audit Report?

Answer 1

Modified-Adverse Opinion is issued. Emphasis-of-Matter paragraph is added after Opinion paragraph.

Answer 2

GAS is more strict than GAAS.

Answer 3

An audit performed under governmental auditing standards (GAS). A report on internal control is required. GAAS and GAS don't require the I/C report.

Answer 4

Taking part of a population- subjecting it to audit procedures- projecting results to a population

Answer 5

Based on formulas Helps find an appropriate audit sample Helps evaluate evidence obtained Helps evaluate results and quantify Sampling Risk

Answer 6

Based on human decision Equally acceptable as Statistical Sampling

Answer 7

Variables sampling Probability proportionate to size sampling

Answer 8

Attribute Sampling

Answer 9

Risk that your sample isn't representative of population Can happen even if audit is done properly

Answer 10

A risk of Control Testing - Auditor works to make Control Risk lower More substantive tests - Sample overstates Control Risk- Leads to an under-reliance on internal control- over-testing- and overall audit inefficiency Audit ends up being effective (correct result)- but you do more work

Answer 11

A risk of Control Testing - Complement to Confidence Level Inverse relationship to Sample Size Higher accepted risk of assessing Control Risk too low = Smaller Sample Lower accepted risk of assessing Control Risk too low = Larger Sample

Answer 12

Leads to higher Detection Risk - Fewer substantive tests Sample understates Control Risk This error leads to over-reliance on internal control- under-testing- and overall audit ineffectiveness. Does NOT necessarily mean that the Financial Statements are materially misstated - it does mean that if there is one- you are less likely to find it

Answer 13

A risk of Substantive Testing - Auditor accepts a balance as fairly stated- when in fact it is not fairly stated Hurts audit effectiveness Wrong conclusion reached Efficient- but not effective

Answer 14

A risk of Substantive Testing - Auditor rejects balance as fairly stated when in fact it is fairly stated Hurts audit efficiency Wrong recommendations given Effective- but not efficient

Answer 15

Risk of human (auditor) missing an error Also called exception- error or deviation.

Answer 16

Sampling Risk deals with the chance that your audit sample is flawed Non-Sampling risk deals with the chance that your human decisions/conclusions are flawed

Answer 17

Looking at Control Procedures - Were invoices approved when paid? Errors are stated in terms of %- not dollar amounts For example- 5 invoices out of 100 were not properly paid. Error rate is 5% Hint: If you see Error Rate on the Exam- they are referring to Attribute Sampling.

Answer 18

Control Procedures are either operating properly or they are not operating properly - based on Error Rate and the tolerance you have for errors

Answer 19

Error rate in population that you are willing to accept/tolerate Inverse relationship to Sample Size Higher Tolerable Rate = Smaller Sample Lower Tolerable Rate = Larger Sample If you're willing to accept a higher probability that errors exist- there is less pressure on the sample

Answer 20

What Error Rate are you expecting? - Judgment call- based on experience Direct relationship to Sample Size More errors = Larger Sample Less errors = Smaller Sample

Answer 21

Attribute in the sample gives information about the entire audit population Used to estimate Internal Control error rate

Answer 22

Used to determine initial level of Control Risk

Answer 23

Risk of Assessing Control Risk too low Gives you the Sampling Risk

Answer 24

Attribute sampling is only useful when there is documented evidence (an audit trail) to test Use when the existence of an error needs to be verified or debunked

Answer 25

Testing for a dollar amount Value in sample gives information about value in entire population.

Answer 26

Mean Per Unit = Sample Average x Number in Population Stratification - Decreases effect of variance in population and reduces sample size

Answer 27

A form of Variable Sampling Does NOT use Standard Deviation Auditor focuses on a dollar amount Larger or more valuable items get picked more often as part of the sample

Answer 28

Misstatement found in sample - have to project it to remainder of population

Answer 29

PPS: Easier to use- Results in a stratified (homogenous) sample- Results in a smaller sample size to audit- Easy to design Classic Variables Sampling: Easy to expand sample size- Selecting zero and negative balances easy

Answer 30

Tolerable rate for error - Inverse relationship with sample size Risk of assessing Control Risk too low - Inverse relationship with sample size Expected population error rate - Direct relationship with sample size Population size does NOT affect the sample size - as population is larger- sample size doesn't grow.

Answer 31

SER + ASR < TER SER = Sample Error Rate ASR = Allowance for Sampling Risk TER = Tolerable Error Rate

Answer 32

The amount that you add to the Sampling Error Rate to get some cushion for your sample. As high as you think the population error rate could go based on experience.

Answer 33

The amount of error rate that you can accept - If population error rate is less than TER- then accept the Control as effective If population error rate is more than TER- do more testing to get SER lower or conclude control isn't effective. Do more substantive testing

Answer 34

Determine Test Objective - for example- have sales shipments been billed? Define Population and Deviation - take a sample of shipping document- trace forward to see if billed Determine Sample Size based on tolerable rate for error- risk of assessing Control Risk too low- and expected population error rate. Select Sampling Technique

Answer 35

Perform the Sampling Plan Evaluate Results Document Results

Answer 36

Every certain # of a population is selected Population needs to be randomly ordered Primary advantage is that population doesn't require pre-numbering

Answer 37

Also called Stop or Go sampling Each audit step determines the next step

Answer 38

Audit is testing an area that is so crucial that zero population errors can be tolerated Any phony employees on payroll?

Answer 39

Easy to implement- but is the worst method of sampling.

Answer 40

To provide users of financial information with REASONABLE ASSURANCE that the financial statements are not materially misstated.

Answer 41

Auditors are *not* responsible for detecting theft or fraud. Instead- they are responsible for providing REASONABLE ASSURANCE that the financial statements are not materially misstated.

Answer 42

The earlier the auditor is hired- the better for audit planning and efficiency.

Answer 43

If Control Risk for the accounts and/or transactions is low- audit procedures can be performed at interim dates. The auditor then reviews changes in the balances at year-end.

Answer 44

The auditor can take the engagement if they are able to overcome the limitations of the engagement.

Answer 45

To plan the scope of the audit To plan the objectives of the audit

Answer 46

The auditor can compare actual versus forecasted numbers.

Answer 47

If issues relating to predecessor auditor's work on previous Financial Statements come up during the current audit- Auditor must have client's permission to discuss the issue.

Answer 48

Were they adequately performed? (Review the working papers) Are the results consistent with the audit report?

Answer 49

Auditor determines what the reporting objectives are. Auditor determines the scope of the audit.

Answer 50

Auditor must be independent in fact and appearance Honesty No direct financial interest No indirect material financial interest

Answer 51

Technical abilities mirror those held by peers in the profession Follow GAAS Standards Obtain a Reasonable Level of Assurance Maintain Reasonable Level of Skepticism Supervise Audit Staff Review judgment at every level

Answer 52

Review the previous financial statements Speak to third parties Contact predecessor auditor to evaluate whether engagement should be accepted (must have client permission)

Answer 53

Note: must have permission of client to contact predecessor auditor (no permission = no engagement) Why the Auditor Change? Any Serious Discussions with Audit Committee? How is Management Integrity? Disagreements? How was Internal Control? Understand Industry or Be Willing to Learn Consider Scope Limitation - Limited evidence available = no engagement

Answer 54

Note: must be written Objectives of Engagement Limitations of Engagement Responsibilities of Management - Provide written assertions Responsibilities of Auditor - Limited error/fraud responsibility Expectations of Access to Records Financial Statements (and Disclosures) are Management's Responsibility Compliance with Laws Internal Control

Answer 55

Management is responsible for financial statements and adequacy of disclosures. Presentation & Disclosure Existence (Tests Overstatements) Rights & Obligations Completeness (Tests Understatements) Valuation & Allocation

Answer 56

Responsible for Hiring Auditor Oversees Internal Control Must Agree with Auditor on: Responsibility of the Parties- Audit Fee- Timing of the Audit- Audit Plan Acts as Liaison Between Auditor and the Board Auditor Communicates Concerns about: Internal Control Deficiencies- Errors- Fraud- Illegal Activities

Answer 57

Inherent Risk x Control Risk x Detection Risk Risk that material mistakes- errors- omissions- or fraud will result in an inaccurate audit report Based on Auditor Judgment Measured in both Qualitative and Quantitative

Answer 58

Risk that internal control will not detect error or fraud Auditor cannot control this.

Answer 59

Which transactions have a higher level of risk? Auditor cannot control

Answer 60

Will the auditor fail to detect a material misstatement? Auditor CAN control Do testing at year-end Increase substantive testing Run more effective tests

Answer 61

Less Acceptable DR = Run More Substantive Tests More Acceptable DR = Run Less Substantive Tests More Substantive Tests (DR down) = Less Audit Risk; (AR = IR x CR x DR) Less Substantive Tests (DR up) = More Audit Risk; (AR = IR x CR x DR)

Answer 62

Quantitative Measurements - Inherent- Control- and Detection Risk can all be measured in terms of percentages Non-Quantitative Measurements - Inherent- Control- and Detection Risk can all be measured in terms of acceptable ranges

Answer 63

It is Management's responsibility.

Answer 64

Assess the RISK that such things will lead to material misstatements Design the audit to provide reasonable assurance against fraud- illegal acts that directly and materially affect the financial statements Report ALL management fraud to the audit committee (minor fraud by low-level employees not reported to committee) Perform required inquiries and procedures (management inquiries- analytical procedures- discussions with audit personnel about fraud)

Answer 65

Fraud is born out of: Rationalization Incentive Opportunity (RIO)

Answer 66

Errors are unintentional- fraud is intentional.

Answer 67

Management compensation tied to stock Aggressive financial forecasting Former auditor disagreed with Management Records not available for audit Current audit procedures may need to be reconsidered if red flags exist.

Answer 68

Has been observed in similar situations Does NOT necessarily mean that there is a material weakness in internal control Leads to an auditor taking action

Answer 69

Internal control analysis can result in the conclusion that IC is weak- but probably won't identify illegal acts

Answer 70

Strives to make audit engagement procedures less patterned and predictable Re-evaluates management's application of accounting procedures Finds and assigns audit personnel with relevant skills in this area

Answer 71

Any fraud risks identified that could lead to material misstatement Audit procedures performed to assess risks Nature of communication made to audit committee and company management Disclosure to third parties regarding fraud not normally the auditor's responsibility Fraud by management should normally be reported to the audit committee- NOT the SEC.

Answer 72

Created PCAOB Designates Officer responsibility for internal control Must disclose significant internal control weaknesses to auditor and audit committee Must disclose any level of fraud discovered by employees with internal control responsibilities

Answer 73

1. Statements on Auditing Standards (SAS) 2. Auditing Interpretations- AICPA Guides & SOPs 3. Industry Articles (no authority)

Answer 74

Firm Leadership exhibits quality and leads by example and sets the tone for the organization Firm should Monitor and document that its policies and procedures are being followed Firm should have Relevant Ethical Requirements Acceptance and continuance of client engagements should continue to be evaluated for client integrity- auditor competency- and legality Firm should have competent and ethical personnel Firm engagements are performed- supervised- and reviewed in accordance with professional standards and regulations.

Answer 75

SSARS - Statements on Standards for Accounting and Review Services These govern reporting for non-public entities only

Answer 76

Independence NOT required for Compilations No Internal Control work allowed No assurance given

Answer 77

Compilations are not an assurance service. No assurance is provided.

Answer 78

Reviews provide NEGATIVE assurance.

Answer 79

Reviews require independence. No Internal Control work allowed Performs analytical procedures No material indirect financial interest allowed No immaterial direct financial interest allowed

Answer 80

Must have an understanding of the client industry.

Answer 81

CPA expresses a conclusion about an assertion - Compliance with laws NOT considered a Consulting engagement Independence Required

Answer 82

Independence is not required for consulting services.

Answer 83

Report is restricted to specified users. Agreed-upon procedures are implemented.

Answer 84

Develop Audit Strategy; Communicate with Component Auditors; Perform work on the Consolidation Process; Evaluate Audit Conclusions; Understand work of Component Auditors;

Answer 85

Firm Partners; Group Engagement Partner; Audit Staff

Answer 86

The Group Engagement Team; The Materiality threshold must be lower than the Group Materiality threshold

Answer 87

Group Audit Engagement Direction - Supervision - Performance and the Audit Report

Answer 88

Audit a component of the entity

Answer 89

Audit the Financial Information

Answer 90

Perform Audit Procedures

Answer 91

Analytical Procedures performed at Group Level

Answer 92

Contact Client external counsel through a Letter of Inquiry

Answer 93

Collection of evidence to support the opinion.

Answer 94

Evidence consists of client accounting data and supporting documentation from client or from third parties.

Answer 95

Evidence has an inverse relationship with Detection Risk The one aspect of Audit Risk an auditor can control through (N)ature (T)iming (E)xtent of audit procedures. Inherent Risk and Control risk are outside of auditor's control.

Answer 96

Detection Risk which is decreased by gathering evidence.

Answer 97

Inherent Risk and Control Risk are outside of an auditor's control.

Answer 98

Less Evidence collected. Opens door for incremental audit risk - Internal Control should be strong. Business and transactions should be relatively stable and predictable. (N) Less-competent Evidence collected (T) Interim testing acceptable (E) Fewer transactions are verified.

Answer 99

More Evidence collected (N) More-competent Evidence collected (T) End of year balance testing (E) More transactions are verified

Answer 100

Auditors are there to verify that Assets & Revenues are not overstated Expenses & Liabilities are not understated Exception - if the CPA Exam states that it is a tax-driven company flip them around

Answer 101

Cost vs. Benefit is a primary constraint.

Answer 102

Sufficient (quantity) Appropriate: Relevant & Reliable (Quality)

Answer 103

Best evidence: Observation of activity by auditor. 2nd Best: Originates from External Parties and is sent directly to auditor (or failing that items are generated by third party and provided to auditor by the client such as a bank statement) Weakest: Oral evidence from management.

Answer 104

Third party documents are more persuasive and credible than internally-prepared docs Auditor Knowledge = Most Persuasive 3rd Party info given to auditor 3rd Party info given to client Internally-prepared doc

Answer 105

Test substance/amounts/values. They help to reduce the risk of material misstatements. They only test accuracy of financial statements and dollar amounts - they don't test internal controls.

Answer 106

``` Trace (or Vouch) Reconcile Analytical Procedures Confirmations Examine evidence that supports management assertions. ``` (T.R.A.C.E.)

Answer 107

Auditors focus first on Balance Sheet Accounts then associated Income Statement items

Answer 108

Assurance Level is High. Acceptable Detection Risk is Low.

Answer 109

If Acceptable DR is High - Negative Confirmation is used - Customer only responds if balance is materially wrong. If Acceptable DR is Low - Positive Confirmation is used - Customer asked to confirm by telling auditor the balance. Corresponding Income Statement Account - Revenue

Answer 110

Review purchase orders/invoices Confirm with Vendors Corresponding Income Statement Account - Various Expenses

Answer 111

Examine purchase agreements Look at Board Minutes Is Inventory held as collateral? Corresponding Income Statement Account - COGS

Answer 112

Should match last year's ending balance.

Answer 113

If Beginning Balance Additions Subtractions are OK then Ending Balances should also be OK.

Answer 114

Foot all balances - Check the Math Trace Cash Flow items to other Financial Statements Check classifications - Operating Activities Investing Activities Financing Activities

Answer 115

Interest Paid Income Taxes Paid Non-cash Transactions Cash and Cash Equivalents Definitions

Answer 116

Results as if you had used Indirect Method Non-cash Transactions Cash and Cash Equivalents Definition

Answer 117

Subsequent events occur after the Balance Sheet Date but before the audit report is issued. Auditor needs to make inquiries and assess if they affect the audit report.

Answer 118

If audit report has already been issued and auditor becomes aware of a situation that was present as of the BS date client should issue a disclosure to financial statement users and/or revise the financial statement. Regulatory agencies might need to get involved under some circumstances.

Answer 119

If auditor discovers that they forgot to perform a substantive procedure auditor should determine if other substantive procedures performed served as a substitute. Otherwise support for their audit opinion could be jeopardized.

Answer 120

REQUIRED When planning the audit (preliminary) REQUIRED When reviewing the audit (final) Analytical procedures may be also performed optionally along with the substantive testing. Use of Analytical Procedures in the audit must be documented.

Answer 121

Helps the Auditor: Determine if Management Assertions are reasonable Develop audit plan Develop some expectations about the financial statement and hopefully bring to light any glaring errors on financial statement

Answer 122

Analytical Procedure focus is on dollar amounts (not internal controls) Analyzes Financial Data: Do Financial Statements Make Sense? Comparison of data between years

Answer 123

Current Ratio = Current Assets / Current Liabilities

Answer 124

Quick Ratio = Liquid Assets / Current Liabilities

Answer 125

Asset Turnover = Net Sales / Average Assets

Answer 126

Inventory Turnover = COGS / Average Inventory

Answer 127

Gross Margin % = Gross Margin / Sales

Answer 128

Ratios are Analytical Procedures

Answer 129

Budget vs. Actual comparisons are Analytical Procedures.

Answer 130

Ratio analysis Budget vs. Actual comparison Comparison of data between years Use of non-financial data to predict expected values for financial data

Answer 131

Management assertions help the auditor to plan the audit and select substantive tests.

Answer 132

Presentation - Cutoff Classification - Is it in the right period and category? Existence/ Occurrence - Did it happen? Does it exist? Rights & Obligations - Does the company own them? Completeness - Was everything recorded? Valuation - Are they worth the amount at which they are recorded? (PERCV)

Answer 133

Occurrence Cutoff Classification Completeness Accuracy

Answer 134

Occurrence Completeness Classification Accuracy

Answer 135

No it is an extended procedure. For example you don't have to take a loan covenant document and go search out that it's a valid loan covenant. Instead you consider the source - if it's externally prepared it's more persuasive.

Answer 136

First and foremost you need to understand management's rationale and methods for developing estimates before you can judge reasonableness. Next Auditor should formulate their own opinion on what a good estimate should be and compare it. Finally determine if subsequent events affect the estimate.

Answer 137

Audit workpapers are the property of the auditor. They can be paper or electronic. They must include a WRITTEN audit program (either paper or electronic).

Answer 138

Information pertaining to the current year's audit.

Answer 139

Information used for this audit and future audits which is updated as needed.

Answer 140

Must be kept for 5 years after the audit release date or according to regulations whichever is longer. Must be kept for 7 years under PCAOB Audit PCAOB audits also require an Engagement Completion Document

Answer 141

Any experienced auditor should be able to look at your work and understand what you did.

Answer 142

If further documents are added to the work papers after the audit report is issued it must be documented as to who added them why they were added and any effects on the audit report.

Answer 143

After the audit report is released the firm has 60 days to subtract from the file. You can still add to the file if you document it but you cannot delete any information after 60 days. Note - for SEC auditors the PCAOB only allows deletions up to 45 days after issuance of the audit report.

Answer 144

Controls are redundant to another department The system does not appear to be reliable and testing controls would not be an efficient use of time Costs exceed benefit

Answer 145

System isn't complex or complicated System output is detailed

Answer 146

Maintains database Restricts access Responsible for IT internal control

Answer 147

Recommends changes or upgrades Liaison between IT and users

Answer 148

Responsible for disc storage Holds system documentation

Answer 149

Uses computer speed to quickly sort data and files- which leads to a more efficient audit Compatible with different client IT systems Extracts evidence from client databases Tests data without auditor needing to spend time learning the IT system in detail Client-tailored or commercially produced

Answer 150

Group of related spreadsheets Retrieves information through Queries

Answer 151

A language that defines a database and gives information on database structure. It maintains tables- which can be joined together. It establishes database constraints.

Answer 152

Maintains and queries a database Auditor needs information- so client uses DML to get the information needed

Answer 153

A Data Control Language controls a database and restricts access to the database.

Answer 154

A numerical character consistently added to a set of numbers. It makes it more difficult for a fraudulent account to be set up or go undetected.

Answer 155

A Code Review tests a program's processing logic. Advantageous because auditor gains a greater understanding of the program.

Answer 156

Examines data and looks for reasonableness using upper and lower limits to determine if data fits the correct range. Did anyone score higher than 100%?

Answer 157

Auditor processes data with client's computer - fake transactions are used to test program control procedures. Each control needs to only be tested once Problem with this method - fake data could combine with real data.

Answer 158

Auditor can review logs to see which applications were run and by whom.

Answer 159

Helpful in online environments Restricts computer access - may use encryption.

Answer 160

Library Management Software logs any changes to system/applications etc.

Answer 161

Assist with audit calculations Enable continuous monitoring in an audit environment that is changing Weakness: requires implementation into the system design Example: SCARF - Collects information based on some criteria and can be analyzed at a later time (necessary because the audit environment is continually changing)

Answer 162

An Audit Hook is an application instruction that gives auditor control over the application.

Answer 163

Transaction Tagging allows logging of company transactions and activities.

Answer 164

Extended Records add audit data to financial records.

Answer 165

Destroys prior data when updated aka Destructive Updating Requires well-documented Audit Trail

Answer 166

If the auditor only audits the outputs of a computer system and doesn't also audit the software applications- an error in the applications could be missed.

Answer 167

Software that translates source program (similar to English) into a language that the computer can understand

Answer 168

Client data is processed using Generalized Audit Software (GAS) Sample size can be expanded without significantly increasing the audit cost GAS output compared to client output

Answer 169

Plan the rest of audit- Shorter audit trails that may expire- Less documentation Assess the level of Control Risk - Unauthorized access to systems or data is more difficult to catch Systems access controls adds another layer to separation of duties analysis Focus should be on the general controls- new systems development- current systems changes- and program or data access control or computer ops control changes