Lesson 5: Audit risk And audit evidence Flashcards
(30 cards)
What type of approach is required by ISAs when auditing?
Risk-based approach
What happens in a risk-based approach?
Auditors analyse the risks associated with the client’s business, transactions and systems which could lead to misstatements in the financial statements, and direct their testing to risky areas
Define audit risk
Audit risk is the risk that the auditor expresses an inappropriate audit opinion when the financial statements are materially misstated
What two levels can a misstatement be at?
Financial statement level
Individual account balance or disclosure leve
Audit risk has two major components,
what are they?
One is dependent on the entity, and is the risk of material misstatement arising in the financial statements (inherent risk and control risk).
The other is dependent on the auditor, and is the risk that the auditor will not detect material misstatements in the financial statements (detection risk
What is the equation for audit risk?
Audit risk = Inherent risk x Control risk x Detection risk (AR = IR x CR x DR)
Define inherent risk
Inherent risk is the probability of loss based on the nature of an organization’s business, without any changes to the existing environment. The concept can be applied to the financial statements of an organization, where inherent risk is considered to be the risk of misstatement due to existing transactional errors or fraud.
Define controlled risk
Control risk is the probability that financial statements are materially misstated, due to failures in the system of controls used by a business.
Define detection risk
This risk is caused by the failure of the auditor to discover a material misstatement in the financial statements.
Finish the sentence Detection risk is a function of the effectiveness
of an audit procedure and of its application by the auditor.
What is Professional scepticism
‘An attitude that includes a questioning mind, being alert to conditions which may indicate possible misstatement due to fraud or error, and a critical assessment of audit evidence.’
What are the three risk assessment procedures
Inquiries of management and other within the entity
Analytical procedures
Observation (e.g. of control procedures) and inspection (e.g. of key strategic documents and procedural manuals).
Inquiry
The auditors will usually obtain most of the information they require from staff in the accounts department, but may also need to make enquiries of other personnel, for example, internal audit, production staff , management or those charged with governance.
Observation and inspection
Include observing the normal operations of a company, reading documents or manuals relating to the client’s operations or visiting premises and meeting staff.
These techniques are likely to confirm the answers made to inquiries made of management.
What does Analytical procedures mean
‘Analytical procedures’ means the analysis of relationships to identify inconsistencies and unexpected relationships.
Analytical procedures include the following type of comparisons:
name the 6
(a) Prior periods
(b) Budgets and forecasts
(c) Industry information
(d) Predictive estimates
(e) Relationships between elements of financial information, ie ratio analysis
(f) Relationships between financial and non-financial information, e.g. payroll costs to the number of employees
What are the 7 types of audit evidence that every audit procedure obtains one or more
- Inspection
- Observation
- Confirmation
- Recalculation
- Reperformance
- Analytical procedures
- Inquiries of the client
What happens during inspection and observation
Inspection—The auditor’s examination of the client’s documents and records to substantiate the information in the financial statements.
Observation—Watching a process or procedure being performed by others.
What happens during confirmation and recalculation
Confirmation—The receipt of a direct written response from a third party verifying the accuracy of information that was requested by the auditor.
Recalculation—Rechecking a sample of calculations made by the client.
What happens during reperformance and analytical procedures
Reperformance—The auditor’s test of client accounting procedures or controls.Analytical
Procedures—The evaluation of financial information through analysis of plausible relationships among financial and nonfinancial data and are required during planning and completion phases of all audits.
What happens during the last stage if inquiry
Inquiry—Obtaining written or oral information from the client in response to auditor questions. Usually not considered conclusive unless it is corroborated.
Responding to the risk assessment
The auditor shall formulate an approach to the assessed risks of material misstatement.
ISA 330 The objective of the auditor is to obtain sufficient appropriate audit evidence regarding the assessed risks of material misstatement, through designing and implementing appropriate responses to those risks.
To respond appropriately to financial statement level risks, the auditor may do the following:
Assign more experienced personnel or those with specialized knowledge.
Evaluate the selection and application of accounting policies to identify earnings management or bias that may create a material misstatement.
Incorporate additional elements of unpredictability in the selection of audit procedures.
What does the ISA 330 say aboutResponses to the risks of material misstatement at the assertion level
ISA 330 says that the auditor shall design and perform further audit procedures whose nature, timing and extent are based on and are responsive to the assessed risks of material misstatement at the assertion level
