Flashcards in Test 2 - Ch.7 Deck (25):
In a public company, management must assess and report on internal control over financial reporting (T/F)
According to PCAOB, who is responsible for the reliability of the internal controls over financial reporting?
The entity's CEO and/or CFO
Section 404 of SOX requires the auditor to provide what?
Reasonable assurance on both the financial statements and internal controls.
Name 3 topics management must address as part of their internal control assessment process.
1. Multiple Locations
2. Service Organizations
3. Safeguarding Assets
The auditor's report contains an opinion on the effectiveness of internal control over financial reporting based on the auditor's independent work (T/F).
Prior to issuing a report on internal controls over financial reporting, an auditor is required to do what?
Communicate to management, in writing, all control deficiencies identified during the audit and inform the audit committee when such a communication has been made.
Management's written representations concerning internal control are signed by who?
CEO and CFO
Management disclosure of material weakness corrected during the period would result in what type of audit opinion.
A material weakness of internal controls results in what type of audit opinion?
The absence of misstatements in financial statements is considered convincing evidence that existing controls are effective (T/F).
The person in charge of authorizing credit to customers does not properly understand what constitutes a credit risk. This is an example of what?
A deficiency in operation
The auditor should provide recommendations for improving internal control in the audit report (T/F)
A control deviation caused by an employee performing a control procedure that he or she is not authorized to perform is always considered a...
Deficiency in Operation
The financial statement amounts exposed to a deficiency effects the likelihood that a control deficiency could result in a misstatement (T/F)
Name 3 Entity Level Controls
1. Monitor results of Operations
2. Risk Assessment Procedures
3. Period-End financial Close Procedures
What type of controls are most likely to best tested during an interim period?
Controls that operate on a continuous basis
If the financial reporting risks for a location are low and the entity has good entity-level controls, management may rely on what for their assessment
Self-Assessment & Entity-Level controls
A type of audit procedure that traces a transaction from each major class of transaction from origination through the company's information system until it is reflected in the company's financial reports
An auditor being prevented to test internal controls should result in what type of opinion?
A control deficiency that is reasonably likely cause a misstatement that are not material, but significant results in what type of opinion?
What should an auditor do when using an outside auditor opinion regarding ICFR?
Accept the opinion after
1. Evaluating the auditor work
2. Make reference to the auditor in the audit report
The auditor should communicate to management, in writing, all control deficiencies in internal control identified during the audit (T/F)
Significant deficiencies and material weakness must be communicated to an entity's audit committee because they represent...
Significant deficiencies in the design or operation of internal control
The systems analyst reviews output and controls the distribution of output from the IT department represents what?
A weakness in internal control over IT