Auditing 81.3550 Internal Control Studies & Risk Assessment Chapter 9 Internal Control Studies & Risk Assessment Chapter 9.

Slides:



Advertisements
Similar presentations
OPERATING EFFECTIVELY AT WESD. What is Internal Control? A process designed to provide reasonable assurance the organizations objectives are achieved.
Advertisements

An Internal Control Overview
Internal Control and Control Risk
Auditing Concepts.
Internal Control.
1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.
The Islamic University of Gaza
S11: Risk Based Audit Approach. Session Objectives  To define audit risks and establish the relationship between materiality and audit risk  To discuss.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Internal Control Structure. Learning Objectives l To understand the components of an organization’s internal control structure l To know the objectives.
CHAPTER 10 UNDERSTANDING INTERNAL CONTROLS Fall 2007
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
CHAPTER 9 UNDERSTANDING INTERNAL CONTROLS Winter 2004
6-1 McGraw-Hill/Irwin ©2002 by The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 Internal Control Evaluation: Assessing Control Risk.
9 - 1 What is the purpose of an ICS? l First, what is it?? Policies and procedures established to provide reasonable assurance that the entities specific.
Chapter 9 The Study of Internal Control and Assessment of Control Risk
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Internal Control in a Financial Statement Audit
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Section 404 Audits of Internal Control and Control Risk
9 - 1 Copyright  2003 Pearson Education Canada Inc. CHAPTER 9 The Study of the Internal Control and Assessment of Control Risk.
Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.
INTERNAL CONTROL OVER FINANCIAL REPORTING
Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.
Control environment and control activities. Day II Session III and IV.
Chapter 10 Internal control and Control Risk.
1 CHAPTER 6 Internal Control: Concepts. 2 What is internal control? Internal control is a process designed to provide reasonable assurance regarding the.
Chapter 07 Internal Control McGraw-Hill/IrwinCopyright © 2014 by The McGraw-Hill Companies, Inc. All rights reserved.
Introduction to Internal Control Systems
INTERNAL CONTROL OVER FINANCIAL REPORTING
Chapter 5 Internal Control over Financial Reporting
Considering Internal Control
Internal Control in a Financial Statement Audit
 2004 Prentice Hall Business Publishing, Accounting Information Systems, 9/e, by Bodnar/Hopwood 4 – 1 Transaction Processing and the Internal Control.
Chapter 7 Auditing Internal Control over Financial Reporting McGraw-Hill/Irwin ©2008 The McGraw-Hill Companies, All Rights Reserved.
NO FRAUD LEFT BEHIND The Effect of New Risk Assessment Auditing Standards on Schools Runyon Kersteen Ouellette.
Internal Control in a Financial Statement Audit
9 - 1 ©2003 Prentice Hall Business Publishing, Essentials of Auditing 1/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 9.
©2003 Prentice Hall Business Publishing, Auditing and Assurance Services 9/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 10.
Learning Objectives LO5 Illustrate how business risk analysis is used to assess the risk of material misstatement at the financial statement level and.
Evaluation of Internal Control System
Evaluation of Internal Control System. Learning Objective 1 Contrast management’s need for internal control with the auditor’s need to consider internal.
[Hayes, Dassen, Schilder and Wallage, Principles of Auditing An Introduction to ISAs, edition 2.1] © Pearson Education Limited 2007 Slide 7.1 Internal.
CHAPTER 5 INTERNAL CONTROL OVER FINANCIAL REPORTING.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin 6-1 Chapter Six Internal Control in a Financial Statement Audit.
A Guide for Management. Overview Benefits of entity-level controls Nature of entity-level controls Types of entity-level controls, control objectives,
McGraw-Hill/Irwin © The McGraw-Hill Companies 2010 Auditing Internal Control over Financial Reporting Chapter Seven.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
©2012 Prentice Hall Business Publishing, Auditing 14/e, Arens/Elder/Beasley Section 404 Audits of Internal Control and Control Risk Chapter.
Copyright © 2007 Pearson Education Canada 9-1 Chapter 9: Internal Controls and Control Risk.
Chapter 5 Evaluating the Integrity and Effectiveness of the Client’s Control Systems.
1 CHAPTER 5 - b INTERNAL CONTROL OVER FINANCIAL REPORTING.
©©2012 Pearson Education, Auditing 14/e, Arens/Elder/Beasley Considering Internal Control Chapter 10.
Copyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall. Chapter
Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.
McGraw-Hill/Irwin © The McGraw-Hill Companies 2010 Internal Control in a Financial Statement Audit Chapter Six.
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
©2005 Prentice Hall Business Publishing, Auditing and Assurance Services 10/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 10.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2008 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
Section 404 Audits of Internal Control and Control Risk
Modern Auditing: Assurance Services and the Integrity of Financial Reporting, 8th Edition William C. Boynton California Polytechnic State University at.
Internal Control and Managing Cash
Auditing Concepts.
Chapter 7 Part 1 Internal Control
Defining Internal Control
Internal controls 01-Nov-2017.
INTERNAL CONTROLS AND THE ASSESSMENT OF CONTROL RISK
Internal Control Internal control is the process designed and affected by owners, management, and other personnel. It is implemented to address business.
Presentation transcript:

Auditing Internal Control Studies & Risk Assessment Chapter 9 Internal Control Studies & Risk Assessment Chapter 9

Highlights What is internal control? Why is it important? How do auditors study, evaluate and document an organization’s internal control processes? What types of tests are used? Understanding the two basic audit approached commonly used What is internal control? Why is it important? How do auditors study, evaluate and document an organization’s internal control processes? What types of tests are used? Understanding the two basic audit approached commonly used

What is internal control? Internal control consists of the policies & procedures established & maintained by management to assist in orderly & efficient conduct of business. Need to keep in mind the cost vs. benefit of internal control processes and procedures

Internal Control Internal control is a process designed to provide reasonable assurance regarding the achievement of management’s objectives regarding: reliability of controls optimizing use of resources safeguarding of assets preventing & detecting fraud & error

Components of Internal Control the control environment

Control Environment The control environment is the actions, policies, and procedures that reflect management’s attitude regarding controls and their importance. The control environment is the actions, policies, and procedures that reflect management’s attitude regarding controls and their importance.

Elements of the Control Environment Management Philosophy and Operating Style: –Approach to monitoring and responding to risk –Attitude and actions around financial reporting –Emphasis on meeting goals both financial and operational –Honesty and type of business behaviours exhibited and encouraged Management Philosophy and Operating Style: –Approach to monitoring and responding to risk –Attitude and actions around financial reporting –Emphasis on meeting goals both financial and operational –Honesty and type of business behaviours exhibited and encouraged

Elements of the Control Environment Board of Directors and Audit Committee : –How active of a role does the committee take in running the company? –Audit Committees dealings and interest in the auditors and their work

Elements of The Control Environment Organizational Structure –Clearly defined lines of responsibility and authority Organizational Structure –Clearly defined lines of responsibility and authority

Elements of The Control Environment Methods used in the assignment of authority and responsibly What are the formal methods that management uses to communicate internal controls to employees? Company Policies Employee Handbook Job Description Memo:

Elements of The Control Environment Management Control Methods Do management’s methods send a clear message about the importance of control? Do management’s methods serve to detect misstatements?

Elements of The Control Environment Systems Development Methodology –Who can make modifications? –What testing is done? Systems Development Methodology –Who can make modifications? –What testing is done? Does management have a methodology for developing and modifying systems and procedures?

Elements of The Control Environment Personal Policies and Practices Management should ensure that competent, trustworthy, motivated personnel are employed to meet client goals and objectives. Employees are the critical component of effective internal control.

Elements of The Control Environment Management reactions to external influences Should be aware of these influences and prepared to react properly Management reactions to external influences Should be aware of these influences and prepared to react properly Is management aware of external influences such as changes in the economy and technology?

Elements of The Control Environment Internal Audit Does an internal audit department exist? Does it effectively monitor control policies and procedures, and enhance operational effectiveness and efficiency? Who does the internal audit department report to?

Components of Internal Control control systems Accounting Systems + Control Procedures

Components of Internal Control accounting systems Accounting systems have several subcomponents - classes of transactions

Components of Internal Control Control procedures are policies and procedures, in addition to those related to other components, established to enable the entity to address risks in the achievement of their objectives. control procedures

Categories of Control Procedures Appropriate segregation of duties –Separate custody of assets from accounting –Separate custody of assets from authorization of transactions –Separate operational responsibility from record keeping –Adequate segregation of duties within EDP –Reconciliation – i.e. separate from transaction data entry clerk Appropriate segregation of duties –Separate custody of assets from accounting –Separate custody of assets from authorization of transactions –Separate operational responsibility from record keeping –Adequate segregation of duties within EDP –Reconciliation – i.e. separate from transaction data entry clerk

Categories of Control Procedures Can be difficult in smaller companies due to the costs involved Fewer employees make segregation tough

Categories of Control Procedures Segregation of duties designed to help prevent loss but difficult if there is collusion Collusion is the defeat of adequate separation of duties wherein employees cooperate to perpetrate fraud....we’re agreed. We’ll be rich be- yond our wildest dreams!...we’re agreed. We’ll be rich be- yond our wildest dreams!

Why is collusion particularly troublesome for auditors? Competent, untrustworthy, motivated personnel often know how to conceal their fraud.

Categories of Control Procedures Proper authorizations of transactions and activities –general authorization - management establishes authorization policies –specific authorization - management makes authorizations on a case-by-case (ie all A/P requests) Proper authorizations of transactions and activities –general authorization - management establishes authorization policies –specific authorization - management makes authorizations on a case-by-case (ie all A/P requests) accounts payable policies & procedures cash receipts policies & procedures personnel policies & procedures

Categories of Control Procedures Adequate Documents and Records should provide reasonable assurance that all assets are properly controlled and all transactions are correctly recorded.

Design and Use of Documents, Input Screens, and Electronic Transactions Documents should be prenumbered and accounted for Documents should be complete soon after the transaction Documents should be understandable, correctly designed including routing and authorizations Documents should be prenumbered and accounted for Documents should be complete soon after the transaction Documents should be understandable, correctly designed including routing and authorizations Documents should be designed for multipurpose

Categories of Control Procedures Adequate safeguards over access to and use of assets and records Examples include physical: locking rooms, fenced areas, fireproof safes, safe deposit boxes, security guards; access; backup files and recovery Adequate safeguards over access to and use of assets and records Examples include physical: locking rooms, fenced areas, fireproof safes, safe deposit boxes, security guards; access; backup files and recovery

Categories of Control Procedures Independent verification of performance and the accuracy of recorded amounts Controls may change or be forgotten about if not followed up on or performed Segregation of duties between required

When should weaknesses be reported to the client? When there are significant deficiencies in the design or operation of internal control. GAAS requires the auditor to communicate(oral or written) with the audit committee regarding the significant deficiencies.

Two Basic Audit Approaches Substantive Approach –Used when decide not to rely on internal controls or not cost effective to do so –CR=Max, DR=Low –No test of controls required –Extent of evidence will be high Substantive Approach –Used when decide not to rely on internal controls or not cost effective to do so –CR=Max, DR=Low –No test of controls required –Extent of evidence will be high Combination Approach –Used when auditor can rely on internal controls for a specific assertion –CR=below Max, DR=Med-High –Extent of evidence will be medium to low –Need to not only understand IC system but also do test of controls to support assessment level below max

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.