Documente Academic
Documente Profesional
Documente Cultură
10:
UNDERSTANDING THE ENTITY
and
its Environment
Performance of risk
assessment procedures
to identify/ assess risk of
material misstatement
through understanding
the entity.
PHASE I-C:
The Standards presents an overview of the requirements such as:
I. Risk assessment procedures and sources of information about the
entity and its environment, including its internal control.
II. Understanding the entity and its environment, including its
internal control.
III. Identifying and assessing of the risks of material misstatements.
IV. Materials weakness in internal control.
V. Documentation
I. Risk assessment procedures and sources of
information about the entity and its
environment, including its internal control.
RISK
ASSESSMENT
Procedures
a) Inquiries of management and others within the entity
b) Analytical Procedures; and
c) Observation and Inspection
Example
and effectiveness of the entity’s internal control
and
andeffectiveness of the entity’s
whether management internaltocontrol
responded any
and whether findings
management responded to
from these activities.any
findings from these activities.
Inquiries of employees involved in initiating,
s
Inquiries of
processing or employees involved or
recording complex in unusual
initiating,
processing
transactions mayorhelp
recording complex
the auditor or unusual
in evaluating
transactions may help of
the appropriateness thethe
auditor in evaluating
selection and the
the appropriateness of the selection and the
application of certain accounting policies.
application of certain accounting policies.
Inquiries directed toward in-house legal counsel may
relateInquiries directedastoward
to such matters in-house
litigation, legal counsel
compliance may
with laws
relate
and to such matters
regulations, as litigation,
knowledge of fraudcompliance
or suspectedwith laws
fraud
and regulations,
affecting knowledge
the entity, of fraud
warranties, or suspected
post-sales fraud
obligations,
affecting the entity,
arrangements (suchwarranties, post-sales
as joint ventures) withobligations,
business
arrangements
partners and the meaning of contract business
(such as joint ventures) with terms.
partners and the meaning of contract terms.
When the auditor intends to use information about the entity and its environment
obtained in prior periods, the auditor should determine whether changes have
occurred that may affect the relevance of such information in the current audit.
The members of the engagement team should discuss the susceptibility of the
entity’s F.S to material misstatements.
The auditor’s understanding of the entity and its
environment consists of an understanding of the following
aspects:
Bargaining
Bargaining
Barriers Strength Power of
Suppliers of
Power of
to of
Contents
Raw Here
Materials Customers
Entry Competitors
and Labor
In most cases, the applicable financial reporting framework will be that of
the jurisdiction in which the entity is registered or operates and the auditor is
based, and the auditor and the entity will have a common understanding of
that framework. In some cases there may be no local financial framework.
Examples of matters an auditor
may consider
INDUSTRY CONDITIONS REGULATORY ENVIRONMENT
-Accounting principles and industry
01 - The market and competition,
including demand, capacity, and price
specific practices.
- Regulatory framework for regulated
competition. industry.
-- Cyclical or seasonal activity. - Legislation and regulation that
-- Product technology relating to the
entity’s products.
02 significantly affect the entity's
operations.
-- Energy supply and cost - Regulatory requirements.
- Direct supervisory activities.
-Taxation (corporate and other).
- Government policies currently
affecting the conduct of the entity’s
business.
OTHER EXTERNAL FACTORS - Monetary, including foreign exchange
AFFECTING THE ENTITY’S controls
03 BUSINESS
-General level of economic activity (for
- Fiscals
-- Financial incentives (for example,
example, recession, growth) government aid programs.
- Interest rates and availability of - Tariffs, trade restrictions
financing. -- Environmental requirements
- Inflation, currency revaluation. affecting the industry and the entity’s
business.
B. Nature Of Entity
EXISTENCE OF OBJECTIVES
Add Text
Expansion of the business Current & prospective Easy to change
requirements colors, photos
and Text.
EFFECTS OF IMPLEMENTING A
STRATEGY, PARTICULARLY ANY
EFFECTS THT WILL LEAD TO NEW
ACCOUNTING REQUIREMENTS
D. MEASUREMENT AND
REVIEW
OF THE ENTITY’S
FINANCIAL
PERFORMANCE
The auditor should obtain
an understanding of
the measurement and revi
ew of the entity's financial
performance.
Much of the information used in
Much of the information used in
performance measurement
performance measurement
may be produced by the
may be produced by the
entity’s information system.
entity’s information system.
Examples of matters an auditor may consider include the following:
Key ratios and operating statistics
Key performance indicators
Trends
Competitor analysis
Is the susceptibility of an Is the risk that a Is the risk that an auditor’s SAMPLING
account balance or class misstatement, that could substantive procedures
of transactions to occur in an account will not detect a RISK
misstatement that could be balance or class of misstatement that exists in
material, individually or transactions and that an account balance or
when aggregated with could be material , class of transactions that
NON
misstatements in other individually or when could be material, SAMPLING
balances or classes, aggregated with individually or when RISK
assuming there are no misstatements in other aggregated with
related internal control. balances or classes. misstatements in other
balances or classes.
To assess inherent risk, the auditor uses professional judgment to
INHERENT evaluate numerous factors, example which are:
RISK
At the Financial Statement Level
• The integrity of the management
• Management experience and knowledge and changes in management during for
the period.
02 Complex calculations
04 Significant judgment
Documentation of
Understanding and
Assessment of Control
Risk
a) the understanding obtained of the entity’s
accounting and internal control systems; and
b)the assessment of control risk
DETECTION
Risk
This refers to the risk that the auditor’s
examination will not detect a material
error in an account balance.
The level of detection risk relates directly to
The
the level of detection
auditor’s riskprocedures.
substantive relates directly
Theto
the auditor’s
auditor substantive
should consider procedures.
the assessed The
levels
ofauditor should
inherent considerrisks
and control the in
assessed levels
determining
of nature,
the inherenttiming
and control risksofinsubstantive
and extent determining
the nature,required
procedures timing and extent of
to reduce substantive
audit risk to
procedures required
an acceptably low level. to reduce audit risk to
an acceptably low level.
G. USING THE AUDIT RISK
MODEL TO DETERMINE
THE NATURE, TIMING,
AND EXTENT OF AUDIT
PROCEDURES
Called the audit risk mode, auditors use this
Audit Risk = Inherent Risk x Control Risk x Detection Risk relationship to determine the nature, timing,
and extent of audit procedures to manage
AR = IR x CR x DR and control audit risk.
An auditor plans audit This assessment implies If after the auditor has It is the amount of risk
risk for each financial that the auditor obtained an the auditor can allow
statement assertion attempts to predict understanding of for an assertion or a
so that he or she will where misstatements internal control and measure of the risk
be able to express an are most and least likely concludes that they’re that audit evidence for
opinion on the in the financial completely ineffective, a segment will fail to
financial statements statement segments. the auditor would assign detect misstatements.
taken as a whole. a high risk factor to
control risk.
Solve Equation
Determine to Determine
Assess Assess
Planned 01 Inherent Risk 02 Control Risk 03 Allowable 04
Audit Risk Detection Risk
The following are the major factors that should be considered
when assessing inherent risk:
The following are the major factors that should be considered
when assessing inherent risk:
• The lack of previous year’s audit results would cause most auditors to use a
larger inherent risk for initial audits that for repeat engagement in which no
material misstatements had been found.
RELATED
RELATEDPARTIES
PARTIES
NONROUTINE TRANSACTIONS
SUSCEPTIBILITY TO DEFALCATION
MAKE UP OF POPULATION
Step 4
DETERMINE ALLOWABLE DETECTION RISK
Step 3
ASSESS CONTROL RISK
Allowable detection risk or Planned detection risk is the
amount of risk the auditor can allow for an assertion or a
Control risk represents
measure of the risk that audit evidence for a segment will
(1) an assessment of whether a
fail to detect misstatements exceeding a tolerable
client’s internal controls are
amount, should such misstatements exist.
effective for preventing and
detecting misstatements, and
There are two key points about planned detection risk:
(a) It is dependent on the other three factors in the
(2) the auditor’s intention to make
model.
that assessment at a level below
(b) It determines the amount of substantial evidence that
the maximum (100%) as part of
the auditor plans to accumulate, inversely with the
the audit plan.
size of planned detection risk.
Where: