Auditing Concepts The Auditing Process Definition American Accounting

  • Slides: 15
Download presentation
Auditing Concepts

Auditing Concepts

The Auditing Process Definition: American Accounting Association (AAA) Auditing is a systematic process of

The Auditing Process Definition: American Accounting Association (AAA) Auditing is a systematic process of objectively obtaining and evaluating evidence regarding assertions about economic actions and events to ascertain the degree of correspondence between those assertions and established criteria , and communicating the results to interested users.

Explanation of the Definition § Systematic process ð structured as a dynamic activity in

Explanation of the Definition § Systematic process ð structured as a dynamic activity in a logical manner ð an unplanned approach to computer auditing may result in bypassing important segments of processing or the related files § Obtaining and evaluating evidence ð reliability of the control structure • tests to verify whether the control function is working as prescribed ð contents of the files • substantive testing coherency between files and company transactions § § Ascertain correspondence between assertion and established criteria Communicating results to interested users ð other members of audit team , client

Security Audit and general Audit Schema Audit Security Manager External Auditor Security Audit Company

Security Audit and general Audit Schema Audit Security Manager External Auditor Security Audit Company Audit - security and privacy - availability - confidentiality - accessibility Accounting system - verification audit approach IT-Audit Internal Control System - controls within IT-system - IT systems audit approach

IT auditing § Problems specific for computer auditing : ð Concentration of the data

IT auditing § Problems specific for computer auditing : ð Concentration of the data processing ð Data consultancy via computer or IT-personnel ð Data can be erased ð Data are very much compacted ( can be lost , stolen , . . . ) ð Basic documents disappear ( telephone , EDI , . . . ) ð Automated decisions ð More complexity ð More vulnerable ( network ) IT-audit: high degree of specialization , fast evolution

Understanding internal control structure § Necessary to plan the audit ð identify the types

Understanding internal control structure § Necessary to plan the audit ð identify the types of potential misstatements that could occur ð consider the factors that affect the risk of material misstatements ð design substantive tests § The auditor must understand the three elements of the internal control structure ð the control environment ð the accounting system ð the control procedures

Assessment of Control Risk Purpose The purpose of control risk assessment is to evaluate

Assessment of Control Risk Purpose The purpose of control risk assessment is to evaluate the effectiveness of an entity’s internal control structure policies in preventing or detecting material misstatements in the financial statements. Control Risk ð the likelihood that misstatements in accounting data will not be prevented or detected and corrected Control structure ð those policies and procedures established by the entity to provide reasonable assurance that its established objectives will be achieved

The Control Environment The collective effect of various factors on establishing , enhancing, or

The Control Environment The collective effect of various factors on establishing , enhancing, or mitigating the effectiveness of specific policies and procedures. ð managers philosophy and operating style ð entity’s organizational structure ð functioning Bo. D and its committees (audit committee) ð methods of assigning authority and responsibility ð performance control and internal auditing methods ð personnel policies and practices ð various external factors Reflects overall attitude, awareness and actions concerning the importance of control

The Accounting System § The accounting system consists of the methods and records established

The Accounting System § The accounting system consists of the methods and records established to identify , assemble, analyze, classify , record and report an entity’s transactions and to maintain accountability for the related assets and liabilities. It includes an ability to: § ð identify and record all valid transactions ð describe the transactions in sufficient detail to permit proper classification of transactions for financial reporting ð measure the value of transactions in a manner that permits recording their proper monetary value ð determine the time period in which transactions occurred ð present properly the transactions and related disclosures in financial statements

The Control Procedures Those policies and procedures that management has established to provide reasonable

The Control Procedures Those policies and procedures that management has established to provide reasonable assurance that specific entity objectives will be achieved. It includes provision for: ð proper authorization of transactions and activities ð segregation of duties ð design of adequate safeguards over access to and use of assets and records ð independent checks on performance and proper valuation of recorded amounts

Understand the Control Structure In order to obtain an understanding of the control structure

Understand the Control Structure In order to obtain an understanding of the control structure , the auditor needs information about: ð the classes of transactions that are significant ð how the transactions are initiated ð the accounting records, supporting documents, machinereadable information and specific accounts involved in the processing and reporting of transactions ð the accounting processing involved from the initiation of transactions, including how the computer is used to process data ð the financial reporting process used to prepare the financial statements , including accounting estimates and disclosures

Control Risk Assessment Conclusions § If Control structure is weak ð additional audit effort

Control Risk Assessment Conclusions § If Control structure is weak ð additional audit effort in control structure area is inappropriate ð control risk is high ð significant substantive testing will be necessary § If Control structure seems to be strong ð efficiency of audit might be improved if control risk can be assessed at a low level , allowing reliance on the control structure • tests of controls might demonstrate that they are functioning properly and substantive testing can be reduced • tests of controls might demonstrate that they are not functioning properly and substantive testing cannot be reduced

Effects of IT on Accounting Control Examples of effects: ð decentralized activities performed by

Effects of IT on Accounting Control Examples of effects: ð decentralized activities performed by several clerks may be centralized into one computer program, omitting internal control ð with lack of documentation the audit trail may disappear ð although the total number of employees increases , there is typically a decrease in human involvement in the actual processing of accounting data invoking the loss of visual checking ð instead of random errors there are systematic errors ð specialized knowledge needed to audit effectively ð the IT-auditor must be involved in the early stages of system design in order to build-in accounting controls ð problems for the auditor sometimes worse in smaller companies ð computer fraud ( unauthorized checks or policies, . . . )

Audit Trail in an IT System The audit trail are those records that enable

Audit Trail in an IT System The audit trail are those records that enable a transaction to be traced from its source forward to a summarized total in a financial statement or the other way around. The IT system can affect the audit trail in several ways: ð source documents filed in a difficult-to-access manner ð traditional source documents may be eliminated ð ledger summaries replaced by master files not showing summarized values ð sometimes no standard transaction listing or journal ð paper reports only for exceptions ð always computer and programs needed to read data ð sequence of data and activities difficult to observe

AUDITING 10 1 Auditing AAAs Definition Auditing isAUDITING 10 1 Auditing AAAs Definition Auditing is
REV 01 ACCOUNTING CONCEPTS DEFINITION OF ACCOUNTING AccountingREV 01 ACCOUNTING CONCEPTS DEFINITION OF ACCOUNTING Accounting
Accounting Concepts principles policies Accounting Principles Accounting ConceptsAccounting Concepts principles policies Accounting Principles Accounting Concepts
ETHICS IN AUDITING AUDITING FUNCTION Ethics in AuditingETHICS IN AUDITING AUDITING FUNCTION Ethics in Auditing
NAIC CLUB ACCOUNTING CONCEPTS NAIC ACCOUNTING CONCEPTS NAICNAIC CLUB ACCOUNTING CONCEPTS NAIC ACCOUNTING CONCEPTS NAIC
Lecture 2 Accounting Concepts and Policies Accounting conceptsLecture 2 Accounting Concepts and Policies Accounting concepts
NAIC CLUB ACCOUNTING CONCEPTS NAIC ACCOUNTING CONCEPTS NAICNAIC CLUB ACCOUNTING CONCEPTS NAIC ACCOUNTING CONCEPTS NAIC
ACCOUNTING PROCESS INTRODUCTION TO ACCOUNTING The American InstituteACCOUNTING PROCESS INTRODUCTION TO ACCOUNTING The American Institute
AUDITING ACCOUNTING STANDARDS AND FINANCIAL RATIOS I ACCOUNTINGAUDITING ACCOUNTING STANDARDS AND FINANCIAL RATIOS I ACCOUNTING
Introduction to auditing Definition of Audit Definition AuditIntroduction to auditing Definition of Audit Definition Audit
European Accounting International Accounting in Europe and AccountingEuropean Accounting International Accounting in Europe and Accounting
Accounting for Financial Institutions Banks Accounting Banks AccountingAccounting for Financial Institutions Banks Accounting Banks Accounting
1 Introduction to Accounting WHAT IS ACCOUNTING Accounting1 Introduction to Accounting WHAT IS ACCOUNTING Accounting
Intermediate Financial Accounting I Financial Accounting and AccountingIntermediate Financial Accounting I Financial Accounting and Accounting