Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
17 Cards in this Set
- Front
- Back
|
What does Internal Control provide?
|
Reasonable Assurance on:
Material misstatements will be prevented Reliability/Integrity of F/S will be preserved Assets are protected against misuse |
|
|
Internal Control requirements under SOX
|
o CEO/CFO must disclose I/C deficiencies
o Management must provide assessment of I/C o Management must certify F/S |
|
|
Objectives of Internal Control
|
Reliability of Financial Reporting
Operational Efficiency/Effectiveness Compliance with Law and Regulatory |
|
|
Components of Internal Control
|
(CRIME)
Control Activities Risk Assessment Info & Communication Systems Monitoring Environment |
|
|
Components of risk assessment that affect risk of operating environment
|
1. New personnel
2. New info system 3. Rapid growth 4. New technology 5. New business model/products/activities 6. Corporate restructuring 7. Expand foreign operations 8. New accounting pronouncements |
|
|
Components of Control Activities
|
Performance Reviews
Information Processing Physical Controls Segregation of Duties |
|
|
Components of Information & Communication
|
Auditor needs to understand
o Major transaction classes o Transaction initiation o Support records/documents o Transaction processing o F/S internal reporting process o F/S external communication process |
|
|
Components of Control Environment
|
1. Integrity and ethical values
2. Commitment to competence 3. Board of directors/audit committee 4. Management's philosophy 5. Organizational structure 6. Assignment of authority & responsibility 7. Human resources policies |
|
|
Internal Control testing should be strong as IRON
|
o Inquiry – Interview company personnel
o Re-performance – Can it be replicated? o Observation – Watch the control be applied o iNspection – Dig into the details/documents |
|
|
Tracing vs. Vouching
|
Tracing = Completeness
Starts with source document and traces forward to the journal entry Vouching = Existence Starts with entry and searches for a voucher or source document to support the entry |
|
|
Segregation of duties
|
(ARC)
Authorization of asset disbursement Recording of Assets Custody of assets |
|
|
Control Deficiencies - Material Weakness
|
o Reasonable possibility that controls will not
prevent a material misstatement o Written report to management required o Report declaring that no material weaknesses were found is allowed o Previous weaknesses reported that still exist should be reported again o Should be reported no later than 60 days after audit report release date o If one or more material weaknesses is uncorrected at year-end, an Adverse Opinion on internal control must be given |
|
|
Control Deficiencies - Significant Deficiency
|
o Adversely affects company’s ability to report F/S
in accordance with GAAP o “More than a remote likelihood” of material misstatement by “more than an inconsequential amount” o Written report to management required o Report declaring that no significant deficiencies is not allowed o Previous deficiencies reported that still exist should be reported again o Should be reported no later than 60 days after audit report release date |
|
|
Control Deficiency
|
o A control is not operating as intended
o Written report to management not required |
|
|
What needs to be assess on internal audits if auditor decides to use them
|
1. Competence
2. Objectivity a. Organizational status b. Areas audited |
|
|
Auditors should assess the Internal Audits Competence by considering
|
1. Educational level
2. Professional certifications 3. Audit policies, programs, procedures 4. Practices regarding assignment of internal auditors 5. Supervision and review 6. Quality of documentation 7. Performance evaluation |
|
|
Written Communication regarding Internal Controls should include
|
1. The purpose of an audit is to express an opinion on the fs
2. The audit is not expressing an opinion of internal controls 3.consideration of internal control was NOT designed to identify all deficiencies or material weaknesses 4. Definition of material weakness 5. Identify significant deficiencies and material weaknesses 6.Limit use of communication to mgt , those charged with governance |
