Statement on Auditing Standards SAS 112 Communicating Internal

  • Slides: 18
Download presentation
Statement on Auditing Standards (SAS) 112 Communicating Internal Control Related Matters Identified in an

Statement on Auditing Standards (SAS) 112 Communicating Internal Control Related Matters Identified in an Audit

SAS 112 Effective date – June 30, 2007 n Issued in May 2006 n

SAS 112 Effective date – June 30, 2007 n Issued in May 2006 n Objectives n ¨ Define internal control deficiencies ¨ Define the auditor’s reporting requirements n Impact

SAS 112 – Impact n Internal Control ¨ Process ¨ Reasonable assurance of financial

SAS 112 – Impact n Internal Control ¨ Process ¨ Reasonable assurance of financial reporting ¨ Safeguarding assets ¨ Consists of 5 interrelated components (COSO)

SAS 112 – Impact n COSO

SAS 112 – Impact n COSO

SAS 112 – Impact n Auditor Scope of Internal Control (I/C) ¨ No expression

SAS 112 – Impact n Auditor Scope of Internal Control (I/C) ¨ No expression of an opinion ¨ Must consider the internal control in the nature, timing and extent of audit procedures ¨ May place reliance on the I/C ¨ Must test controls of major federal program under the single audit

SAS 112 – Type of Deficiencies Material Weakness n Significant Deficiency n Control Deficiency

SAS 112 – Type of Deficiencies Material Weakness n Significant Deficiency n Control Deficiency n

SAS 112 – Type of Deficiencies n Control Deficiency ¨ “exists when the design

SAS 112 – Type of Deficiencies n Control Deficiency ¨ “exists when the design or operation of a control does not allow management or employees, in the normal course of performing their assigned functions, to prevent or detect misstatements on a timely basis. ” ¨ Design deficiency ¨ Operation deficiency

SAS 112 – Type of Deficiencies n Significant Deficiency ¨ “a control deficiency or

SAS 112 – Type of Deficiencies n Significant Deficiency ¨ “a control deficiency or combination of deficiencies that adversely affects the entity’s ability to initiate, authorize, record, process, or report financial data reliably in accordance with GAAP such that there is more than a remote likelihood that a misstatement of the f/s that is more than inconsequential will not be prevented or detected. ”

SAS 112 – Type of Deficiencies n Significant Deficiency, cont’d ¨ More n n

SAS 112 – Type of Deficiencies n Significant Deficiency, cont’d ¨ More n n Chance of an event occurring is more than slight but less than likely Reasonably possible ¨ More n n n than remote likelihood – than inconsequential – “Prudent official, reasonable person” concept Quantitative and qualitative assessment Approximately 20% of tolerable misstatement

SAS 112 – Type of Deficiencies n Material Weakness ¨A significant deficiency, or combination

SAS 112 – Type of Deficiencies n Material Weakness ¨A significant deficiency, or combination of significant deficiencies, that results in more than a remote likelihood that a material misstatement of the f/s will not be prevented or detected.

SAS 112 – Previous Definitions n Material Weakness (SAS 60) ¨A reportable condition in

SAS 112 – Previous Definitions n Material Weakness (SAS 60) ¨A reportable condition in which the design or operation of one or more of the internal control components does not reduce to a relatively low level the risk that misstatements caused by error or fraud in amounts that would be material in relation to the financial statements being audited may occur and not be detected within a timely period by employees in the normal course of performing their assigned functions.

SAS 112 vs. SAS 60 SAS 112 SAS 60 Material Weakness Reportable Condition Significant

SAS 112 vs. SAS 60 SAS 112 SAS 60 Material Weakness Reportable Condition Significant Deficiency Mgmt Letter Comment Control Deficiency

Evaluating Control Deficiencies n Evaluation: ¨ Depends n on the potential for misstatement Management

Evaluating Control Deficiencies n Evaluation: ¨ Depends n on the potential for misstatement Management Acceptance: ¨ Conscious decisions on the part of management to accept a degree of risk does not preclude auditor communication

Evaluating Control Deficiencies Examples of significant deficiencies: ¨ Inadequate selection and application of GAAP

Evaluating Control Deficiencies Examples of significant deficiencies: ¨ Inadequate selection and application of GAAP ¨ Lack of antifraud programs and controls ¨ Lack of controls over non-routine transactions ¨ Lack of controls over period end financial reporting

Evaluating Control Deficiencies n Examples of material weaknesses: ¨ Restatement of previously issued financial

Evaluating Control Deficiencies n Examples of material weaknesses: ¨ Restatement of previously issued financial statements or prior-period adjustments ¨ Identification of a misstatement by the auditor (not initially detected by I/C) ¨ Ineffective risk assessment function ¨ Ineffective compliance monitoring ¨ Failure to assess previous deficiencies

Auditor Reporting Significant deficiencies and material weaknesses must be reported to “those charged with

Auditor Reporting Significant deficiencies and material weaknesses must be reported to “those charged with governance” n Communication is best made by the report release date but should be made no later than 60 days following the release date n

Concluding Remarks n SAS 112 is not just an Auditor-Controller (A/C) issue ¨ Good

Concluding Remarks n SAS 112 is not just an Auditor-Controller (A/C) issue ¨ Good internal control is a County-wide responsibility ¨ Timely coordination with departments and A/C office is key

Questions?

Questions?

STATEMENT OF AUDITING STANDARDS 112 SAS 112 CommunicatingSTATEMENT OF AUDITING STANDARDS 112 SAS 112 Communicating
MODUL1 INTERNAL AUDITING THE NATURE OF INTERNAL AUDITINGMODUL1 INTERNAL AUDITING THE NATURE OF INTERNAL AUDITING
Value of Internal Auditing Internal Auditing Assurance InsightValue of Internal Auditing Internal Auditing Assurance Insight
Internal Auditing BY CDR ALOK MOHAN Internal auditingInternal Auditing BY CDR ALOK MOHAN Internal auditing
SAS 70 Statement on Auditing Standards No 70SAS 70 Statement on Auditing Standards No 70
Standards vs Procedures Auditing standards differ from auditingStandards vs Procedures Auditing standards differ from auditing
Auditing Standards IFTAIRP Audit Guidance Government Auditing StandardsAuditing Standards IFTAIRP Audit Guidance Government Auditing Standards
SAS 112 The New Auditing Standard Jim CorkillSAS 112 The New Auditing Standard Jim Corkill
AUDITING 10 1 Auditing AAAs Definition Auditing isAUDITING 10 1 Auditing AAAs Definition Auditing is
ETHICS IN AUDITING AUDITING FUNCTION Ethics in AuditingETHICS IN AUDITING AUDITING FUNCTION Ethics in Auditing
SAS SAS Base Programmer Advanced Programmer SAS httpSAS SAS Base Programmer Advanced Programmer SAS http
SAS Peking University SAS Club SAS 2006 10SAS Peking University SAS Club SAS 2006 10
DISCO DUROS SAS Qu es SAS SAS provieneDISCO DUROS SAS Qu es SAS SAS proviene
SAS Peking University SAS Club SAS 2006 10SAS Peking University SAS Club SAS 2006 10
Internal Tides Internal Tides Internal Tides are InternalInternal Tides Internal Tides Internal Tides are Internal
esercizio Internal Internal Internal Disponibile nelle dispense Internalesercizio Internal Internal Internal Disponibile nelle dispense Internal
Communicating Communicating by Chris Robinson Communicating Good communicatorsCommunicating Communicating by Chris Robinson Communicating Good communicators