Chapter 8

Question 1

Describe Management’s Responsibility

Answer 1

1. Meet strategic, operational, & performance objectives
2. Measure performance
3. Communicate results
4. SAS: responsible for adopting sound acc policies and establishing & maintaining internal control
5. Fair representation of FS
6. Provide info to independent auditors

Question 2

Describe Risk of Management Override & Collusion
- What can be done about it?

Answer 2

Internal Controls cannot control management override
- Prevention not possible in a collusive environment
- Fear of detection

Question 3

Three Procedures to Identify Breakdowns in internal controls due to override and collision

Answer 3

1. Journal entries recorded in the books & record
2. Review significant accounting estimates
3. Scruitinize one time transactions

Question 4

How do Collusive Frauds differ from Solo Fraud?

Perpertrators, behavior, association w/ vendor, what type of fraud, doll

Answer 4

• Collusive fraudsters tend to be younger, make, less education
• Less likely to exhibit personal behavior issues like addicition or control issues
• More likely to exhibit unusually close associations w/ vendors and wheeler dealer attitude
• More likely to involve FS, have larger dollar losses and shorter duration
• More likely to be discovered by tip or complaint, internal audit, law enforcement, or by accident

Question 5

Key Diffs Btw Management Override Frauds and Lack of Control Frauds

Profile, tenure, types of fraud, materiality of fraud

Answer 5

• More likely older, senior level, educated, with shorter tenure
• More likely to engage in corruption and FS fraud, less likely to commit material fraud
• More common outside US
• Orgs antifraud env is + related to likelihood of mgmnt override fraud
• Lack of controls fraud - different from management override –> diff remedies

Question 6

What is the Role of the External Auditor?

Answer 6

1. Reasonable assurance
2. Free of material misstatement
3. Analytical Procedures
4. Expectations Gaap
5. Attest fairness of mngmt presentation of info
6. Audit Report with opinion

Question 7

How is fraud considered in FS audits?

SAS # 99 / #113

Answer 7

1. Enhanced professional skepticism
2. Pre-audit fraud brainstorming
3. Interviews w/ management
4. Audit test design

Question 8

Determining factor btw material misstatement from fraud or error

Answer 8

Intent

Question 9

How Fraud - an intentional misstatement - can be achieved?

3 ways

Answer 9

1. Manipulation, falsification, or alteration of underlying accounting data, records, & documentation
2. Misrepresentation or omission of events, transacs and other signif info
3. Intentional mispplication of accounting principles

Question 10

What is the concept of Materiality?What does not have materiality threshholds

Answer 10

The magnitude of an omission or misstatement of acc info, in light of surrounding circumstances, makes it probable that judgement of a reasonable person relying on the info would have changed or influenced by the omission or misstatement

• Materiality is a relative concept, qualitive vs quantative aspect

Illegal acts have no materiality threshold
- FCPA only states if material

Question 11

Relationship btw Earnings Management and Fraud

Answer 11

Deliberate actions by mngmt to meet specific earning objectives for private gain
- Income smoothing: shifting of revenue btw periods

Acc Principles and policies have some degree of choice
- may lead to fraud
- need clear and convincing evidence

Question 12

Role of BoD & Audit Committee

Answer 12

Primary responsibility
- oversee management
- direct internal auditor
- direct external auditor

Internal controls over fin rep and comp internal control process

Assure - mgmnt has adequately assessed risk of mngmt override or collusion amound top level manages and exec

Help set tone at the top

Establish Anti fraud programs

Ethics training

Instituting a zero-tolerance policy

Proactively Investigate whistleblower tips and protect them

Question 13

Role of Internal Auditors and Purpose

Answer 13

Increased perception that fraud perpetrators will be detected

Operations:
- Evaluate segment, product line, and division profitability
- Improve internal productivity

Financial Reporting
- Evalutation of internal controls

Question 14

What is Fraud Detection and how can it be accomplished?

Answer 14

The first sign or symptom that a fraud has occurred
- Can be accomplished through use of well designed internal controls, supervison, & monitoring, as well as the active search of evidence

More work needs to be done to ensure that other explanation, like human error, are not at the root of this system

Initial fraud detection steps: 1st steps towards concluding predication has been met - far from evidence needed to convince jury

Question 15

Ideal Internal Control Environment

Answer 15

1. Commitment to integrity & ethical & core values
2. Commitment to competence
3. An independent BoD & Audit Committe that participates in the internal control
4. Management’s attitudes, philosophy, and operating style concerning important internal controls and operational issues
5. Organizational Structure, include lines of responsibility and authority, particularly as it relates to the control environment & operational expectation
6. Communications about the importance of control related matters, ethics, anti-fraud awareness and commitment, organizational and operating plans, employee job descriptions & related policies
7. Human resources policies and procedures

Question 16

How to create a clear & unwavering commitment to a culture of honesty

Answer 16

• Hiring honest employees
• Training them in all aspects of their duties & responsibilities
• Delivering fraud awareness in organization orientation and ongoing communications
• Providing fraud risk assessment methodology to appropriate personnel

Question 17

How Red Flags are used to Detect Fraud?

Answer 17

• Does the anomaly have supporting documentation?
• Does the documentation appear to be falsified, altered, or fictitious?
• Does the transaction and its reflection in the FS makes sense?
• Does the transaction make sense in light of the company’s operations, goals, and objectives?
• Does the totality of this and similar transaction make sense analytically when evaluted in comparison to the economy, the industry, key competitor, and other acc #s?
• Does the transaction have proper approval and the proper authority levels?
• Does anything else about the transactions or its nature make it appear suspicious?

Question 18

Most common detection methods (stats)

Answer 18

**Tips **
- 33% frauds by tips in small orgs vs 44% frauds
- Many are fake

Accidental discovery and tips
- Account for 50% of all frauds

Question 19

Why may employees not report and how to fix this?

Answer 19

Employees may not report for fear of getting someone in trouble

Whistleblower or fraud hotline
- Easy and Anonymous
- Tipster must provide sufficient detail

Question 20

Behavioral Red Flags

Answer 20

Lifestyle Symptoms
- living outside of means
- easy to ovserve
- most perps spend gains almost immediately

Unusual Behaviors
- Fear causes fraudster to act differently
- stress changes fraudsters behavior
- Difficult to discover fraud from clues alone
- Combine with other red flags

Question 21

Analytical Anomolies

Answer 21

1. Transaction or FS relationship does not make sense
2. Transacs are too small or too large when compared to normal activity
3. Patterns or breaks in patterns
4. Analytical anomalies are common and should be pursued until fraud is discovered or ruled out

Question 22

Some Analytical Anomolies

Answer 22

• Unusual & missing items
• Large or smaller than usual items
• No pattern when you would expect one
• A break in a pattern that is unexpected
• Round, even transaction amounts
• Cash transactions instead of transaction by check
• Large consistent transactions
• Unusual timing of transactions
• Unexpected transaction recipients or beneficiaries
• Unexplained cash shortages
• Unexplained inventory shortages
• Deviation from specifications
• Increased Scrap
• Excessive Purchases
• Too many debit or credit memo

Question 23

Anomolies that include strange relationships

rev, inventory, volume

Answer 23

Revenues Increasing
- But Inventory decreasing
- But AR decreasing
- But AR increasing at a greater %

Inventory Increasing
- But A/P decreasing
- But decreasing warehouse cost

Increased Volume
- But increased cost per unit
- But decreased scrap

Question 24

Some Accounting Anomalies

Answer 24

• Missing documents
• Old items being carried on bank & other account reconciliation from one pd to the next period
• Excessive void or credit memos
• Common names, addresses, or phone numbers of payees or customer
• Name, addresses, or phone #s that are the same as those of employees
• Increases in past due A/R
• Excessive write-offs of A/R
• Increase in # & amnt of reconciling items
• Alteration on documents
• Duplicate payments
• Second endorsements on checks
• Breaks in check, invoice, purch order, other squences
• Questionable handwriting
• Photocopied documents

-101

Question 25

What are Internal Controls intended to do?

Answer 25

Prevent, deter, and detect fraud

Question 26

What 5 safeguards are present in a normal internal control environment?

Answer 26

1. Adequate **separation of duties** 2. **Proper authorization** of transaction & activities 3. **Adequate documents** & records 4. **Physical control** over assets & record 5. **Independent checks** on performance

Question 27

Why are nonfinancial numbers important and which to focus?

Answer 27

Should use data from surrounding op systems - World revolves on **quantities and prices** Correlate quantity and price with #'s in FS and tax returns

Question 28

Questions necessary for targeted fraud risk assessment? | 15 total know the gist

Answer 28

1. Do **one or two key appear to dominate** the comp? 2. Do any key employees have **close association w/ vendors**? 3. Do any key employees have **outside bus interest** that **conflict w/ their job duties?** 4. Does the orgs background checks identify **previous unethical behavior**? 5. Does the org educate employees on the importance of ethics and **antifraud programs**? 6. Does the org have an **anonymous way to report**? 7. Is job or assignment **rotation mandatory** if emp hands cash & acc duties? 8. Has the comp established positive pay controls supply bank with daily check list issued and authorized? 9. Are refunds, voids, & discounts routinely checked for **patterns of activ**? 10. Are **purchasing and receiving function sep** from invoice, AP, and general ledger functions 11. Is the employee payroll list periodically reviewd for duplicate or missing SS #? 12. Are there policies and proce adressing the identification of proprietary info? 13. Do employes w/ acess to proprietary info sign **nondisclosure agreements**? 14. Is there a company policy that adresses the receipt of gifts from customer and suppliers? 15. Are the orgs** fin goals & objectives realistic**?

Question 29

What are the three Categories fraud examiners use to categorize schemes?

Answer 29

**1. Category 1:** Wrongdoing perpertrated by insider acting **alone** with principal benefit to indiv **2. Category 2:** Wrongdoing perp by **1+ indiv acting collusively** w/ princip benefit to indiv perps or org **3. Category 3:** Wrong doing perp by an **outside 3rd pty** agains the org w/ principal benefit to the third party

Question 30

What is the Ten Step Approach to Targeted Fraud Risk Assessment?

Answer 30

1. Identify, understand, and evaluate the comps **operating environment & pressures** that exist 2. Identify the **business processes** and consider diff in foreign ops as wll as btw subsid 3. Identify the **"process owner"** for each of the identified significant process 4. Review **past fraud experience** w/ the comp for the process being evaluated 5. Identify **how fraud may occur in each process** and at each location through fraud brainstorming techniques 6. Identify the parties who have the **ability to commit** the potential fraud 7. Evaluate the **liklihood that each of the identified fraud could occur** & be signif as well as well as the pervasiveness without consideration of controls 8. Consider the likely **methodology to commit and conceal the fraud** to determine the level of mitigation to prevent, detect, and deter fraud 9. Investigate the **characteristics of potential fraud **manifestation within each process 10. Remediate fraud risk schemes by **designing control active to mitgate** the unmitigated fraud scheme risk

Question 31

How AI can be used for Targeted Fraud Risk Assessment?

Answer 31

Competer aided auditing tools and technquies to prevent and deter fraud by analysing transaction - Data extraction - Analysis

Question 32

What is the importance of digital evidence?

Answer 32

Info is captured electronically and is available to monitore fraudesters activities - inexpensive - fraudster risks detection as long as the data is stored

Question 33

What can Stored Data be used for?

Answer 33

- Trace transactions - Document approvals and exceptions - Provide evidence of system override

Question 34

Detection & Investigation in a Digital Env | Value of Info systems & targeted approach

Answer 34

**Value** - generate red flags for investigation - Reconstruct actual data flow - Strong evidence trail **Targeted Approach** - Sense of what could or did go wrong - How it would manifest itself