Chapter 3

Question 1

What are the three stages of an audit?

Answer 1

Planning (risk assessment), Execution (risk response), Reporting

Question 2

What happens during the planning stage of an audit?

Answer 2

Assess client, plan audit strategy, identify risks, set materiality, prepare audit plan

Question 3

What is audit risk?

Answer 3

Risk of giving a clean opinion on FS that have a material misstatement

Question 4

How does the auditor gain understanding of the client?

Answer 4

Through inquiries, analytics, observation, inspection

Question 5

Why do auditors assess related parties?

Answer 5

To detect risks of fraud or error in transactions not at arm’s length

Question 6

Examples of related parties?

Answer 6

Parent companies, subsidiaries, joint ventures, directors, family of key staff

Question 7

How do auditors assess fraud risk from related parties?

Answer 7

Discussion, management inquiry, document inspection, review unusual transactions

Question 8

What are the two types of fraud?

Answer 8

Fraudulent financial reporting and misappropriation of assets

Question 9

What is the fraud risk triangle?

Answer 9

Incentives/Pressures, Opportunities, Attitudes/Rationalization

Question 10

What are examples of fraud incentives?

Answer 10

Bonuses tied to earnings, high competition, ongoing losses, going public

Question 11

What are examples of fraud opportunities?

Answer 11

Weak controls, poor governance, complex transactions, related parties

Question 12

What are examples of fraud rationalization?

Answer 12

Poor tone at the top, focus on profit, aggressive accounting

Question 13

What should auditors do if fraud is suspected?

Answer 13

Seek legal advice, report to management/governance, consider withdrawal

Question 14

What is the going concern assumption?

Answer 14

Belief that a company will stay in business for the foreseeable future

Question 15

Red flags for going concern issues?

Answer 15

High debt, negative cash flow, ongoing losses, key customer loss, legal issues

Question 16

Mitigating factors for going concern?

Answer 16

Parent guarantee, asset sale, raise capital

Question 17

What makes accounting estimates risky?

Answer 17

Complexity, subjectivity, uncertainty

Question 18

What is corporate governance?

Answer 18

Systems and rules that guide and control an entity

Question 19

Why is corporate governance important for auditors?

Answer 19

Weak governance increases misstatement risk

Question 20

What are IT general controls?

Answer 20

Policies for IT system operation, security, maintenance

Question 21

What are IT application controls?

Answer 21

Controls over transaction processing in individual IT apps

Question 22

How do auditors respond to strong vs. weak IT controls?

Answer 22

Strong = rely on controls; Weak = use more substantive testing

Question 23

What are closing procedures?

Answer 23

Client activities to ensure transactions are recorded in correct period

Question 24

Why are closing procedures important?

Answer 24

To prevent misstatements from period cutoff issues

Question 25

What is the definition of an audit risk?

Answer 25

it is the risk auditors will make a unmodified (clean) opinion on FS that actually contain material misstatement (this risk is always here, there is never a 0% chance)

Question 26

What does the execution stage involve?

Answer 26

Test internal controls Detailed checks on financial date In order to gather enough reliabile evidence to see if the FS are presented fairly or not

Question 27

What does the reporting stage involve?

Answer 27

Evaluate any evidence of misstatements that were found Perform any final analytical procedures Form an opinion on fair presentation of FS Prepare audit report and management letter

Question 28

What must the auditors gain an understanding of in terms of the clients

Answer 28

Auditors must understand their clients operations, industry, operating/regulatory environment They must also learn the internal controls

Question 29

What are some ways an auditor can gain an understanding of the client?

Answer 29

Perform analytical procedures Perform observation and inspection procedures Review the annual report, read meeting minutes, tour the premises

Question 30

What are some areas that auditors should document their knowledge of the client in (stages of an audit)

Answer 30

Operations, industry, customers & suppliers Ownership, governance structure, regulatory environment Investments & financial arrangements Internal controls Accounting policies & financial reporting framework

Question 31

What do related parties include?

Answer 31

Parent companies, subsidiaries, joint ventures, associates, directors, managers, and close family members of key staff

Question 32

What does an auditor do relating to the related parties in an audit?

Answer 32

Make sure that they are identified, and that the transactions between them are appropriately disclosed in the FS

Question 33

What if there is a lack of independence between related parties in an audit?

Answer 33

Then transactions may not be in the normal couse of operations which increases the risk of fraud & error, potentially impacting the operating results of the company

Question 34

What are some examples of how an auditor would assess the risk of related parties?

Answer 34

Asking management to identify all related parties & transactions (nature, type, and purpose) Be alert when inspecting documents for undisclosed related parties Understand companies internal controls for identifying related parties Discuss how likely it is that the FS could be misstated because of relationships/transactions with related parties

Question 35

What are the two types of fraud?

Answer 35

Fraudulent financial reporting Fraud through misappropriateion of assets (theft)

Question 36

Explain fraudulent financial reporting?

Answer 36

Occurs at management level Manipulating operating results or omitting information to deceive others Because bonuses, stock options, pressure to meet targets...

Question 37

Explain fraud through misappropriation of assets (theft)

Answer 37

Occurs at the employee level, typically involves smaller amounts

Question 38

Which fraud typically takes place at the management level?

Answer 38

Fraudulent financial reporting

Question 39

Which fraud typically takes place at the employee level?

Answer 39

Fraud through misappropriation of assets (theft)

Question 40

What are the three factors auditors consider when assessing the risk of fraud?

Answer 40

Incentives and pressures to commit fraud Opportunities to commit fraud Attitudes and rationalization to justify fraud

Question 41

What are examples of incentives and pressures to commit fraud?

Answer 41

Bonuses or stock options that are tied to earnings High competition or pressure to perform Rapid business growth Plans to go public

Question 42

What are examples of opportunities to commit fraud?

Answer 42

Poor internal controls Weak corporate governance Complex business model and transactions Significant management estimates Related third party transactions

Question 43

What are examples of attitudes and rationalization to justify fraud?

Answer 43

poor tone at the top effective internal controls not being a priotity excessive focus on profit maximization aggressive attitutde towards accounting policies and compliance with regulations

Question 44

How many factors need to be present to be considered a fraud risk?

Answer 44

Only one

Question 45

How many factors need to be present for fraud to occur

Answer 45

More than one

Question 46

If an auditor finds fraud (or suspects fraudulent activity), what should they do?

Answer 46

Seek legal advice to determine reporting responsibilities Report fraud to the appropriate level of management & those charged with governance Consider withdrawing from the audit (minimize risk of association)

Question 47

What is going concern?

Answer 47

The assumption that a company will continue to operate in the foreseeable future - meaning that it wont go bankrupt, shut down, or be foreced to liquidate assets

Question 48

How do auditors assess going concern risk?

Answer 48

Check whether any events or conditions cause doubt on the companies ability to continue Continue to be on the lookout for such events Checking the management's assessment and obtaining sufficient appropriate evidence to say that there are no doubt in the companies ability to continue as going concern.

Question 49

What are examples of things that are red flags that indicate going concern may be at risk?

Answer 49

Significant debt-to-equity ratio Inability to pay debts (obtain refinancing) Ongoing losses, negative cash flows, weak profit margins Over-reliance on few customers or suppliers Loss of key personnel Major litigation

Question 50

What are ways to mitigate going concern factors?

Answer 50

Letter of guarantee from the parent company Ability to sell assets or business segment to raise cash Ability to raise funds through share issue or borrowings

Question 51

The higher the risk associated with the accounting estimate, the greater...

Answer 51

the greater the amount of audit effort required to assess the reasonableness of the estimate

Question 52

What is corporate governance?

Answer 52

The rules, systems, and processes used to guide and control entities and enhance accountability to shareholders.

Question 53

Do companies have to disclose corporate governance?

Answer 53

Yes, public companies must disclose their corporate governance practices and say why they believe these practices are appropriate

Question 54

Does the auditor need to understand the IT?

Answer 54

Yes, the auditor must gain an understanding of the clients IT system and the associated risks

Question 55

What are the 3 IT risks?

Answer 55

Unauthorized access to computers, software and data Error in programs Lack of backup and loss of data

Question 56

What are the two categories of IT controls?

Answer 56

General controls Application controls

Question 57

What are general controls?

Answer 57

policies and procedures that apply to the IT systems as a whole Includes policies, procedures for purchases, maintenance, and daily operations of IT system, security, and staff training

Question 58

What are application controls for IT controls?

Answer 58

manual or automated controls that operate at the business level and applied to processing of transactions by individual IT applications

Question 59

What should an auditor do if they believe that the IT controls are strong?

Answer 59

They should continue the audit strategy as normal and test / rely on the IT controls, and reduce reliance on substantivie procedures.

Question 60

What should an auditor do if they believe that the IT co ntrols are inadequate?

Answer 60

The audit strategy will pivot to rely more heavily on substantive procedures (procedures that are used to detect material misstatements in FS)