CPAExcl 9-SOX & PCAOB Flashcards Preview

CPA Review - AUD > CPAExcl 9-SOX & PCAOB > Flashcards

Flashcards in CPAExcl 9-SOX & PCAOB Deck (80)
Loading flashcards...
1

List the standard setting responsibilities of the Public Company Accounting Oversight Board (PCAOB).

Auditing and related attestation, quality control, ethics and independence standards.

2

What is the purpose of the Sarbanes-Oxley Act of 2002?

The purpose is to address a series of perceived corporate misconduct and alleged audit failures (including Enron, Tyco, and WorldCom, among others) and to strengthen investor confidence in the integrity of the U.S. capital markets.

3

The Sarbanes-Oxley Act of 2002 consists of 11 "Titles," the first four of which are directly applicable to auditors. What is the purpose of Title III?

It established requirements related to "corporate responsibility" to make executives take responsibility for the accuracy of financial reporting (including a requirement for certification by the entity's "principal officers") and to make it illegal for management to improperly influence the conduct of an audit.

4

The Sarbanes-Oxley Act of 2002 consists of 11 "Titles," the first four of which are directly applicable to auditors. What is the purpose of Title IV?

To address a variety of "enhanced financial disclosures," the most well-known of which deals with required internal control reporting (Section 404), among other matters.

5

The Sarbanes-Oxley Act of 2002 consists of 11 "Titles," the first four of which are directly applicable to auditors. What is the purpose of Title I?

It establishes the PCAOB, gives standard-setting authority to the PCAOB regarding auditing, quality control, and independence standards, and creates its role in overseeing the accounting firms required to register with the PCAOB.

6

How frequently is the Public Company Accounting Oversight Board (PCAOB) required to conduct inspections of registered public accounting firms?

The frequency of inspection depends on the number of issuers that a firm audits.
1. Firms that provide audit reports for at least 100 issuers - PCAOB must inspect annually;
2. Firms that provide audit reports for fewer than 100 issuers - PCAOB must inspect every three years.

7

The Sarbanes-Oxley Act of 2002 consists of 11 "Titles," the first four of which are directly applicable to auditors. What is the purpose of Title II?

It established independence requirements for external auditors, which addressed perceived conflicts of interest [limiting nonaudit services, establishing a five year rotation for the audit partner and review partner, and restricting members of the audit firm from taking key management positions (including CEO, CFO, controller, or chief accounting officer) during the one year period preceding the audit engagement].

8

What is the audit committee's responsibility regarding nonaudit services not specifically prohibited by Title II of the Sarbanes-Oxley Act?

The issuer's audit committee is required to approve any nonaudit services, including tax services, that are not specifically prohibited by Title II.

9

List the two primary revenue sources through which the Public Company Accounting Oversight Board's (PCAOB) budget is funded.

1. Registration and annual fees from public accounting firms; and
2. An annual "accounting support fee" assessed on issuers based on their relative monthly market capitalization.

10

List the five primary responsibilities of the PCAOB.

1. Registration of public accounting firms;
2. Inspection of registered public accounting firms;
3. Standard setting;
4. Enforcement;
5. Funding.

11

What interim standards were adopted by the Public Company Accounting Oversight Board (PCAOB)?

PCAOB adopted the American Institute of Certified Public Accountants' (AICPA) auditing standards in existence on April 16, 2003, as "interim standards, on an initial, transitional basis."

12

What are deemed "significant findings or issues" that must be documented by the auditor?

1) Issues involving the application of accounting principles; 2) Circumstances causing modification of planned audit procedures; 3) Matters that could result in modification of the auditor's; 4) Material misstatements; 5) Significant deficiencies or material weaknesses in internal control; 6) Difficulties in applying auditing procedures; and 7) Disagreements among members of audit team.

13

Differentiate between the American Institute of Certified Public Accountants' (AICPA) and the Public Company Accounting Oversight Board's (PCAOB) requirements regarding "retention" of audit documentation.

1. AICPA: requires retention of audit documentation for five years for audits of "nonissuers;"
2. PCAOB: requires retention of audit documentation for seven years for audits of "issuers."

14

List the three general documentation requirements under Public Company Accounting Oversight Board (PCAOB) Auditing Standard No. 3.

1. Demonstrate the auditor's compliance with PCAOB standards;
2. Support the basis for the auditor's conclusions regarding every relevant financial statement assertion; and
3. Demonstrate that the underlying accounting records agree to or reconcile with the financial statement elements.

15

Differentiate between the American Institute of Certified Public Accountants' (AICPA) and the Public Company Accounting Oversight Board's (PCAOB) requirements regarding the documentation completion date.

1. AICPA: A complete and final set of audit documentation should be assembled no later than 60 days after the report release date for audits of "nonissuers."
2. PCAOB: A complete and final set of audit documentation should be assembled no later than 45 days after the report release date for audits of "issuers."

16

Describe the limited changes in audit documentation that are permitted after the documentation completion date.

1. No documentation can be deleted; but
2. Documentation can be added - must indicate the date the information was added, the name of the person preparing the additional documentation, and the reason for adding it.

17

Describe the level of detail in the audit documentation required by Public Company Accounting Oversight Board (PCAOB) Auditing Standard No. 3.

The documentation should be prepared in sufficient detail to permit an experienced auditor without prior connection to the engagement to understand the procedures performed and the conclusions reached and to determine who performed the work and on what date.

18

Define "report release date."

The date when the auditor grants permission to use the auditor's report in connection with the issuance of the entity's financial statements. This date must be documented by the auditor.

19

What is meant by the term "stated control objective" in the Public Company Accounting Oversight Board's (PCAOB) Auditing Standard No. 4?

The specific control objective identified by management that, if achieved, would result in the material weakness no longer existing.

20

List the five conditions required for an engagement to report whether a previously reported material weakness continues to exist under the Public Company Accounting Oversight Board's (PCAOB) Auditing Standard No. 4.

1) Management accepts responsibility for internal control over financial reporting; 2) Management evaluates the effectiveness of the specific controls that address the material weakness; 3) Management provides an assertion that the specific control is effective; 4) Management supports its assertion with evidence; and 5) Management provides a written report to accompany the auditor's report.

21

What opinion choices does an auditor have when engaged to report on whether a previously reported material weakness continues to exist under the Public Company Accounting Oversight Board's (PCAOB) Auditing Standard No. 4?

The auditor may either express (1) an unqualified opinion or (2) a disclaimer of opinion. A qualified opinion is not permitted.

22

What is the engagement objective as prescribed under the Public Company Accounting Oversight Board's (PCAOB) Auditing Standard No. 4?

1. To express an opinion as to whether a previously reported material weakness (one or more) in internal control continues to exist as of a specified date.
2. Such an engagement is strictly voluntary, because PCAOB standards do not require reporting on whether a previously reported material weakness continues to exist.

23

Describe the top-down approach.

A risk-based approach to auditing that begins at the financial statement level and with the auditor's understanding of the overall risks to internal controls over financial reporting (ICFR). The auditor then focuses on "entity-level" controls and works down to significant accounts and disclosures and their relevant assertions.

24

Define "significant deficiency."

A deficiency, or a combination of deficiencies, in internal control over financial reporting that is less severe than a material weakness, yet important enough to merit attention by those responsible for oversight of the company's financial reporting.

25

List the procedures associated with testing operating effectiveness of internal controls.

Inquiry, observation, inspection, re-performance.

26

Define "control deficiency."

A weakness that exists when the design or operation of a control does not allow management or employees, in the normal course of performing their assigned functions, to prevent or detect misstatements on a timely basis.

27

List the two categories of control deficiency.

(1) Deficiency in design and (2) deficiency in operation.

28

List some indicators of material weaknesses.

1. Identification of fraud involving senior management, whether or not material;
2. Restatement of previously issued financial statements;
3. Identification by the auditor of a material misstatement of the financial statements in the current period; and
4. Ineffective oversight of the company's external financial reporting and internal control by the company's audit committee.

29

Define "walkthrough."

The process of following a transaction from origination through the company's processes until reflected in the financial records.

30

Define "deficiency in design."

A deficiency that exists when a control necessary to meet the control objective is missing or when an existing control is not properly designed so that, even if the control operates as designed, the control objective is not always met.