Documente Academic
Documente Profesional
Documente Cultură
AUDITOR'S RESPONSIBILITY
63
IP
3 Types of Fraud
There are two types of fraud that are relevant to fin statement audit. Misstatements resulting from
fraud financial reporting and misstatements resulting from misappropriation of assets.
out to financial
fraudulent
resulting from
1.
Fraud involves motivation to commit it and a perceived opportunity to do so. For example, an
employee might be motivated to steal company's assets because this employee lives beyond his
means. Also, a member of management may be forced to manipulate the financial statements in
order to meet an overly optimistic projection. A perceived opportunity to commit fraud may
exist when there is no proper segregation of duties among employees or when management
believes that internal control can be easily circumvented.
ounts
-
Responsibility of Management and Those Charged with Governance
policies
1 ՏԱՐՈՎ
Auditor's Responsibility
2.
statements may ditor is not and ention of fraud to design the
Although the annual audit of financial stateme, act as deterrent to fraud and error, the auditor is.
cannot be held responsible for the prevention of and error. The auditor's responsibility
is to desio audit to obtain reasonable assurance that the first statements are free from
material misstatements, w caused by error or fraud.
The auditor should assess the risk that fraud of error may cause the financial statements to
contain material misstatements. In this regard, PSA 240 requires the auditor to specifically "assess
the risk of material misstatements due to fraud and consider that assessment in designing the
audit procedures to be performed."
atements, whether
Todaw
PLANNING PHASE 1. When planning an audit, the auditor should
make inquiries of management about the possibility of misstatements due to fraud
and error. Such inquiries may include
Management's assessment of risks due to
fraud Controls established to address the risks Any material error or fraud
that has affected the entity or suspected fraud that
the entity is investigating The auditor's inquiries of management may
provide useful information concerning the risk of material
misstatements in the financial statements resulting from employee fraud.
However, such inquiries are unlikely to provide useful information
regarding the risk of material misstatements in the financial statements
resulting from management fraud. Accordingly, the auditor should also
inquire of those individual in charge of governance to seek their views
on the adequacy of accounting and internal control systems in place,
the risk of fraud and error, and the integrity of management
bined
The fact that fraud is usually concealed can make it very difficult to detect.
Nevertheless, using the auditor's knowledge of the business, the auditor may
identify events or conditions that provide an opportunity, a motive or a means to
commit fraud, or indicate that fraud may already have occurred. Such events or
conditions are referred to as "fraud risk factors”. Fraud risk factors do not
necessarily indicate the existence of fraud, however, they often have been
present in circumstances where frauds have occurred. Examples of fraud risk
factors taken from PSA 240 are set out at the end of this chaptet: Judgments
about the increased risk of material misstatements due to fraud may
influence the
auditor's professional judgments in the f ollowing ways:
b. The auditor may approach the audit with
a heightened level of professional skepticism.
The auditor's ability to assess control risk at less than high level may be
reduced and the auditor should be sensitive to the ability of the
management to override controls.
FLOTT Duo
na
bac SPOLE
Lock
IVS
The audit team may be selected in wa, that ensure that the knowledge, skill, ar ability of
personnel assigned significan responsibilities are commensurate with the auditor's
assessment of risk.
Be satisfied that, given the position of the likely perpetratot, the fraud has no other
implications for other aspects of the audit or that those implications have been
adequately considered.
The auditor may decide to conside management selection and application of significant
accounting policies particularly those related to income determination and asset
valuation.
However, if the auditor detects a material fraud or has been unable to evaluate
whether the effect on financial statement is material or immaterial, the auditor should
TESTING PHASE
Consider implication for other aspects of the audit particularly the reliability of
management representations.
3.
During the course of the audit, the auditor may encounter circumstances that may
indicate the possibility of fraud or error. For example, there are discrepancies
found in the accounting records, conflicting or missing documents or lack of
cooperation from management. In these circumstances, the auditor should
perform procedures necessary to determine whether material misstatements exist.
Discuss the matter and the approach to further investigation with an
appropriate level of that is at least one level above those involved,
Attempt to obtain evidence to determine whether a material fraud in fact
exists and, if so, their effect, and
Suggest that the client consult with legal counsel about questions of
law.
After identifying material misstatement in the financial statements, the
auditor should consider whether such a misstatement resulted from a fraud
or an error: This is important because errors will only result to an
adjustment of financial statements but fraud may have other
implications on an audit.
•
COMPLETION PHASE
5.
The auditor should obtain a written representation from the client's
management that
If the auditor believes that the misstatement is, or may be the
result of fraud, but the effect on the financial statements is not
material, the auditor should
it acknowledges its responsibility for the implementation and
operations of accounting and internal control systems that are
designed to prevent and detect fraud and error;
Refer the matter to the appropriate level of management at least one
level above those involved, and
ected
LAWS A
vs AND
NONCOMPLIANCE WITH REGULATIONS
commission by
Monitoring compliance with the Code of Conduct and acting appropriately to
discipline employees who fail to comply with it.
nintentional
Noncompliance refers to acts of omission of commissi the entity being audited, either intentional
or uninten which are contrary to the prevailing laws or regulations acts
include transactions
entered into by, or in the nat the entity or on its behalf by its management or empl
Common examples include:
rulations. Such in the name of
Engaging legal advisors to assist in monitoring legal requirements.
•
Maintaining a register of significant laws with which the entity has to comply within its
particular industry and a record of complaints.
Tax evasion Violation of environmental protection laws Inside trading of securities
Management's Responsibility
In larger entities, these policies and procedures may be supplemented by
assigning appropriate responsibilities to an internal audit function an audit
committee.
Auditor's Responsibility
It is management's responsibility to ensure that the entity operations are
conducted in accordance with laws and regulations. The responsibility for the
prevention and detection of noncompliance rests with management. (PSA
250)
An audit cannot be expected to detect noncompliance with all laws and regulations.
Nevertheless, the auditor should recognize that noncompliance by the entity with
laws and regulations may materially affect the financial statements.
The following policies and procedures, among others, may assist
management in discharging its responsibilities for the prevention and detection
of noncompliance:
Monitoring legal requirements and ensuring that operating procedures are
designed to meet these requirements.
PLANNING PHASE
1.
In order to plan the audit, the auditor should obtain a general
understanding of the legal and regulatory framework applicable to the entity
and the industry and how the entity is complying with that framework.
Instituting and operating appropriate systems of internal control.
Developing, publicizing and following a Code of Conduct.
To obtain the general understanding of laws and regulations, the auditor
would ordinarily:
• Use the existing knowledge of the entity's
industry and business.
Ensuring employees are properly trained and understand the Code of
Conduct.
73
TESTING PHASE
identifying
Discuss with management the policie procedures adopted for identif evaluating
and accounting for lition claims and assessments.
ing for litigation
Discuss the legal and regulator framework with auditors of subsidiaries in other
countries (for example, if the subsidiary is required to adhere to the securities
regulations of the parent company).
4. When the auditor becomes aware of
information concerning a possible instance of noncompliance, the auditor should obtain
an understanding of the nature of the act and the circumstances in which it has
occurred, and sufficient other information to evaluate the possible effect on the financial
statements. When evaluating the possible effect on the financial statements, the
auditor considers:
The potential financial consequences, such as fines, penalties, damages, threat
of expropriation of assets, enforced discontinuation of operations and litigation.
Whether the potential financial consequences require disclosure.
RO
After obtaining the general understanding, the auditor should design
procedures to help identify instances of noncompliance with those laws
and regulations where noncompliance should be considered when
preparing financial statements, such as:
Inquiring of management as to whether the entity is in compliance with
such laws and regulations.
Whether the potential financial consequences are so serious as to call into
question the fair presentation given by the financial statements.
75
• COMPLETION PHASE
The auditor should obtain writt. representations that management has disclosed to the auditor all
known actual or possible noncompliance with laws and regulations that could materially affect the
financial statemente
not directly affect the fair presentation of the financial statements unless the results of other
procedures that were applied cause the auditor to suspect that a material indirect effect
noncompliance may have occurred.
8.
If a scope limitation has precluded the auditor from obtaining sufficient
appropriate evidence to evaluate the effect of noncompliance with laws and
regulations, the auditor should express a qualified opinion of a disclaimer of
opinion,
The fraud risk factors identified below are examples of such factors typically
faced by auditors in a broad range of situations. However, the fraud risk factors
listed below are only examples; not all of these factors are likely to be present in
all audits, nor is the list necessarily complete. Furthermore, the auditor exercises
professional judgment when considering fraud risk factors individually or in
combination and whether there are specific controls that mitigate the risk.
Fraud Risk Factors Relating to Misstatements Resulting from Fraudulent
Financial Reporting
An audit is subject to the unavoidable risk that some material misstatements in
the financial statements will not be detected, even though the audit is
properly planned and performed in accordance with PSAs. This risk is
higher with regard to material misstatements resulting from
noncompliance with laws and regulations because:
Fraud risk factors that relate to misstatements resulting from fraudulent financial
reporting may be grouped in the following three categories:
1. Management's Characteristics and Influence over the
Control Environment.
There are many laws and regulations relating principally to the operating
aspects of the entity that typically do not have a material effect on the
financial statements and are not captured by the accounting and
internal control systems. Auditors are primarily concern with the
noncompliance that will have a direct and material effect in the financial
statements. Hence, auditors do not normally design audit procedures to
detect noncompliance that will
2. 3.
Industry Conditions Operating Characteristics and
Financial Stability.
77
1.
racteristics and
Fraud Risk Factors Relating to Management's Characterist: Influence over the Control Environment
There is a failure by management to display and communicate an appropriate
attitude regarding internal control and the financial reporting process. Specific indicators might
include the following:
These fraud risk factors pertain to management's abili pressures, style, and attitude
relating to internal cont the financial reporting process.
ernal control and
- Management does not effectively communicate and support the entity's
values or ethics, or management communicates inappropriate values or ethics.
|--
Management commits to analysts, creditors and other third parties to
achieving what appear to be unduly aggressive or clearly unrealistic
forecasts.
Management continues to employ ineffective accounting, information technology
or internal auditing staff.
78
-
Frequent disputes with the current or a predecesso. auditor on accounting, auditing or
reporting matter
These fraud risk factors involve the economic and regulatory environment in which the
entity operates.
New accounting, statutory or regulatory requirements that could impair the financial
stability of profitability of the entity.
Unreasonable demands on the auditor, includino unreasonable time constraints
regarding the completion of the audit or the issuance of the auditor's report.
A high degree of competition or market saturation, accompanied by declining margins.
Formal or informal restrictions on the auditor that inappropriately limit the auditor's
access to people or information, or limit the auditor's ability to communicate
effectively with those charged with governance.
A declining industry with increasing business failures and significant declines in
customer demand.
Rapid changes in the industry, such as high vulnerability to rapidly changing technology
or rapid product obsolescence.
Domineering management behavior in dealing with the auditor, especially
involving attempts to influence the scope of the auditor's work.
3.
Fraud Risk Factors Relating to Operating Characteristics and Financial Stability
•
The corporate governance structure is weak or ineffective, which may be
evidenced by, for example:
Inability to generate cash flows from operations while reporting earnings and
earnings growth.