Unit 5 Flashcards
(35 cards)
What are the 3 levels of the top-down approach in order to select controls
Financial Statement Level: Auditor evaluates overall risk
Entity Levlel: auditor identifies and tests controls on CRIME
Accounts disclolsuresm and assertions level
When comparing an FS audit to an audit of internal controls for non-issuers, what is the difference in the extent of testing
extent of testing of internal controls for a FS audit is more limited than an audit of internal controls
If you are performing an audit of internal controls for a nonissuer, how do you handle deficiencies identified during the audit
significant deficiencies and material weaknesses should be communicated in writing to management by the report release date
While control deficiencies which are not significant should be communicated in writing within 60 days of the report release date
Material weakness of internal controls results in what
an adverse opinion
What standards are referenced in the auditors report that provides an opinon on the operating effectiveness of internal controls for 1. issuers and 2. non issuers
- issuers must reference that they followed standards set by PCAOB
- non issuers must reference that they followed standards generally accepted in the USA
Is the report that contains an opinion on the operating effectiveness of internal controls restricted in terms of use
generally no
What is an attestation agreement
one where the CPA is engaged to issue an examination, a review, or an agreed-upon procedure reported on a subject matter or an assertion that is the responsilbility of management
What are the 6 major categories of attestation services
CRAP FM
Compliance with regulatory or contractual reqs.
Reporting on controls at a service org
Agreed upon procedures
Pro forma FS
Financial forecasts and projections
Managements discussion and analysis
How do attestation standards differ from GAAS
Attestation standards are more broad, there is no mention to GAAP or the FS, the level of assurance is below GAAS
What are the common concepts related to all attestation engagements
CAPE CORP
Compliance with all relevant attestation standards
Acceptance and continance are performed for relationships
Preconditions for an engagement are present (independence and responsibility)
Engagement documentation standards for timeliness, retention, ownership etc..
Change in terms are accepted when reasonable
Other cpa’s work is allowed to be used
Responsibility for quality control lies with engagement partner
Professional skeptisism and judgement is required
What are the levels of assurance for an examination, review and agreed upon procedures
Examination: positive opinion, high level of assurance, based on a variety of procedures.
Review: “negative assurance”, moderate level of assurance, based on inquiry and analytical procedures
Agreed upon procedures: No assurance, but procedures and findings are listed
What are the seven conditions that must exist in order to perform an agreed upon procedure
I AM SURE
Independence
Agreement of parties
Measurability and consitency of subject matter
Sufficiency of procedures
Use of report is restricted
Responsibility of subject matter is with client
Engagements to perform agreed upon procedures on prospective FS must include a summary of significant assumptions.
Whats the difference between a financial forecast and financial projection
Financial forecast is the expected results based on conditions and expected course. It is appropriate to be for general or limited use.
Financial Projections are more of a what if, and is only appropriate for limited/restricted use only
How can a CPA be associated with prospective FS
CPA an preparea and/or comile the FS
apply agreed upon procedures and examine them.
BUT CPA CANNOT review prospective FS
how does an examination of prospective FS differ from applicaiton of agreed upon proceudres
an examination is broader and more substancial in scope and responsibility than agreed upon procedures engagement
an examination also inludes an expression of an opinion as to whether the statements are presented in conformity with AICPA guidelines and whether guidlines provide a reasonable basis for statements
What kind of engagement can an auditor perform on pro forma FS
they can perform either an examination or review of pro forma statements
What are the two types of reports may a service auditor provide, and what is the difference in how the user auditor may use them
Type 1 report is a report on managements description of the service orgs system and suitability of the design of controls. This report DOES NOT support a reduction in the assessed level of control risk
Type 2 report is a report on managements description of the service orgs system and suitability of design AND operating effectiveness of controls. This report MAY support a reduction in the assessed level of control risk.
Under US auditing standards, when can an auditor issue a special report on a client’s compliance with contractual agreements or regulatory requirements
the audittor must have audited the clients FS and expressed an unmodified or qualified opionion
AND
may only give negative assurance on the compliance
How may the compliance report be presented?
report on compliance may either be a seperate report provided or in an other matters paragraph
when reporting on an attestation engagement regarding an entitys compliance with requirements of specific laws and regs, the CPA may be engaged to perform what type of engagements
the engagement may be an agreed upon procedures or examination
NOT a review
What is the formula for audit risk of noncompliance
AR = Risk of material noncompliance x Detection Risk
Explain the difference between “unconditional requirements” and “presumptively mandatory requirements” defined by the GAGAS (the yellow book)
“unconditional requirements” are where the auditors must comply and “presumptively mandatory” are where the auditor “should comply”
Any reason for not observing presumptively mandatory requirements that are not observed, need to be documented
Identify the 3 types of govt. audits/engagements normally undertaken by CPAs
Financial Audits: incorporate GAAS and determine whether the financial statemtns presents fairly and in accordance with GAAP
Attestation Engagements: incorporate the AICPA standards for examinations, reviews, and agreed upon procedures by reference and include expanded requirements
Performance audits: engagmetns that may have the following objectives: effectiveness, economy, and efficiency, interal control, compliance etc..
Attestation engagements performed in conformity with Governmental Auditing Standards (Yellow Book) could include what subjects
compliance with specified laws, regulations, rules, contracts, or grants
Effectiveness of internal control over conpliance with requirements
Presentation of MD&A
