Chapter 1
1
Auditing
auditing: Is the accumulation and evaluation of evidence about information to determine and report on the degree of correspondence between the information and established criteria
must be done by a competent, independent person
capable of having the knowledge to do so
competent to know the types and amount of evidence needed to reach proper conclusions
not affiliated with the company and no bias
audit adds little to no value if the individual is biased towards any of the information
independent auditors: CPAs or firms that perform audits of commercial and noncommercial entities
information must be in a verifiable form and some standards or criteria in order to evaluate information
audits of quantifiable information
financial statements
historical financial statements audited by CPAs, criteria needs to match GAAP
can also be audited over internal controls of financial reporting
federal income tax returns
criteria is found in the Internal revenue code (IRC)
audits of subjective information
efficiency of systems
criteria can be the level of input or output errors
efficiency of manufacturing operations
compliance
internal controls
criteria needs to match the COSOs framework
evidence: any information used by the auditor to determine whether the information being audited is stated in accordance with established criteria
data on transactions
communication with outsiders
observations
oral testimony of client
must obtain sufficient quality and quantity of evidence
determine the amount of evidence needed to evaluate information and its correspondence to establish criteria
audit report: communication of auditors findings to its users
final stage of the audit
informs readers of the degree of correspondence between the information audited and established criteria
can differ in forms
financial statement audits are highly technical
operational audits can be given orally
2
Auditing vs. Accounting
accounting: the recording, classifying, and summarizing of economic events in a logical manner for the purpose of providing financial information for decision making
accountants must develop a systems in order to make sure events are recorded timely and at a reasonable cost
auditors focus on determining whether recorded information properly reflects the economic events that occurred during the accounting period
auditors must have the expertise in accumulation and interpretation of audit evidence
3
Information Risk
rate of interest usually determined by 3 factors
risk free rate - the rate the bank could earn by investing in treasury notes for the same length of time as business loans
business risk for the customer - risk reflects the possibility that the business will not be able to repay its loan because of economic or business conditions (recession, management decisions, competition)
information risk - reflects the possibility that the information was inaccurate
information risk: the risk that information upon which a business decision was made is inaccurate
auditing has no effect on RFR or BR, but can have a significant effect on information risk
makes sure that the information given to outsiders is as accurate as possible
4
Causes of Information Risk
Remoteness
information gathered is often relied on others, when its obtained from others the likelihood of It being intentionally or unintentionally misstated increases
Bias and motives of providers
information by someone whose goals are inconsistent with those of the decision maker
can result in inadequate or incomplete disclosures of information
Voluminous Data
in larger organizations, the volume of exchange transactions is fairly large
increases the prob. that there is improperly recorded data in the record
Complex Exchange Transactions
exchange transactions between orgs have become more and more complex
acquisitions
combining and disclosing results of operations in different industries
properly valuing and disclosing derivative financial instruments
reducing information risk
smaller businesses tend to keep info risk higher in order to reduce the cost of trying to reduce it
larger businesses will pay the extra money in order to reduce their information risk
3 main ways to reduce it
user verifies information
user may go to the business and examine records and obtain information such as physical count
often impractical due to cost of it
IRS does this with tax returns
in acqusitions, company may hire an outside audit team to perform these tasks
user shares information risk with management
managemnet is responsible for providing reliable Information to users
legal issues may arise is decisions were made on false information
audited financial statements are provided
most common way to obtain reliable information is to have an independent audit
external users like stockholders and lenders rely on such information to be as accurate as possible
audit assurance is valued because the information is complete, accurate and unbiased
5
Assurance Services
assurance service: Is an independent professional service that improves the quality of information for decision makers
done by an independent person relaying unbiased information
SOX 404
provisions resulted in the act now requires CPAs to perform internal control audits
CPAs have also expanded their audits to include things such as:
information of interest to investors
reports on CSR and sustainability reports
attestation services: a type of assurance service in which the CPA firm issues a report about a subject matter or assertion that is made by another party
primary categories include
audit of historical financial statements
audit of internal controls over financial reporting
reviews of historical financial statements
other attestation services that may be applied to a broad range of subject matter
audit of historical financial statements: a form of attestation service in which the auditor issues a written report stating whether the financial statements are in material conformity with accounting standards
most common assurance service provided by CPA firms
designed to provide reasonable assurance that statements are free of material misstatements
publicly traded companies are required to have audits under the federal securities act and opinions can be found in their annual financial reports
internal control over financial reporting: an engagement in which the auditor reports in the effectiveness of internal control over financial reporting; such reports are required for accelerated filer public companies under SOX 404
must attest to the effectiveness of internal control over financial reporting
review of historical financial statements: management asserts that the statements are fairly stated in accordance wiht accounting standards, the same as an audit, but a lower level of assurance is needed
requires less evidence to perform
requires less money
but gives a lower assurance level
nonassurance services provided by CPAs
accounting and bookkeeping services
tax services
management consulting services
the quality of information is often an important criterion in management consulting, this gial is not the primary purpose
6
Types of Audits
operational audits: evaluates the efficiency and effectiveness of any part of an organization’s operating procedures and methods, gives recommendations for improving operations
operational audit
reviews are not limited to accounting
can evaluate organizational structure, computer operations, production methods, marketing, and any other area that auditor is qualified
effective and efficiency must also meet the established criteria for compliance and financial audits
more like management consulting than auditing
compliance audit: conducted to determine whether the auditee is following specific procedures, rules, or regulations set by some higher authority
compliance audit
determine whether personnel are following the procedures prescribed by controller
review wage rates for compliance with minimum wage laws
contractual agreements with bankers and lenders
mortages in compliance with governmental regulations
governmental units like school districts, subject to audits due to governmental regulations
results are typically reported to management rather than outsiders
financial statement audits: conducted to determine whether financial statements are stated in accordance with specific criteria
financial statement audit
using cash basis or other
stated in accordance to accounting standards and regulations
gathers evidence to look for material errors or misstatements
auditors must have extensive knowledge of the company due to different complexities within
7
Types of Auditors
Certified public accounting firms: responsible for auditing historical financial statements of all publicly traded companies, large, small and noncommercial organizations
Government accountability office auditors: an auditor working for the US government accountability office (GAO), a nonpartisan agency in the legislative branch of the federal government
reports and is responsible solely to Congress
audits information prepped by federal government agencies before its submitted to congress
evaluates the operational efficiency and effectiveness of federal programs
Internal revenue agents: auditors who work for the IRS and conduct examinations of taxpayers returns
responsible for enforcing federal tax laws
solely compliance audits
Internal auditors: auditors employed by a company to audit for the companies board of directors and management
can range from 1-100s, depending on the size of the company
involved in operational auditing or computer systems
reports directly to high executive office to remain independent from rest of business
outsiders don’t rely solely on internal audits because of the lack of independence
Certified Public Accountant: a person who has met state regulatory requirements, including passing the Uniform CPA exam, and thus has been certified; a CPA may have their primary responsibility the performance of the audit function on historical financial statements of commercial and noncommercial financial entities
1
Auditing
auditing: Is the accumulation and evaluation of evidence about information to determine and report on the degree of correspondence between the information and established criteria
must be done by a competent, independent person
capable of having the knowledge to do so
competent to know the types and amount of evidence needed to reach proper conclusions
not affiliated with the company and no bias
audit adds little to no value if the individual is biased towards any of the information
independent auditors: CPAs or firms that perform audits of commercial and noncommercial entities
information must be in a verifiable form and some standards or criteria in order to evaluate information
audits of quantifiable information
financial statements
historical financial statements audited by CPAs, criteria needs to match GAAP
can also be audited over internal controls of financial reporting
federal income tax returns
criteria is found in the Internal revenue code (IRC)
audits of subjective information
efficiency of systems
criteria can be the level of input or output errors
efficiency of manufacturing operations
compliance
internal controls
criteria needs to match the COSOs framework
evidence: any information used by the auditor to determine whether the information being audited is stated in accordance with established criteria
data on transactions
communication with outsiders
observations
oral testimony of client
must obtain sufficient quality and quantity of evidence
determine the amount of evidence needed to evaluate information and its correspondence to establish criteria
audit report: communication of auditors findings to its users
final stage of the audit
informs readers of the degree of correspondence between the information audited and established criteria
can differ in forms
financial statement audits are highly technical
operational audits can be given orally
2
Auditing vs. Accounting
accounting: the recording, classifying, and summarizing of economic events in a logical manner for the purpose of providing financial information for decision making
accountants must develop a systems in order to make sure events are recorded timely and at a reasonable cost
auditors focus on determining whether recorded information properly reflects the economic events that occurred during the accounting period
auditors must have the expertise in accumulation and interpretation of audit evidence
3
Information Risk
rate of interest usually determined by 3 factors
risk free rate - the rate the bank could earn by investing in treasury notes for the same length of time as business loans
business risk for the customer - risk reflects the possibility that the business will not be able to repay its loan because of economic or business conditions (recession, management decisions, competition)
information risk - reflects the possibility that the information was inaccurate
information risk: the risk that information upon which a business decision was made is inaccurate
auditing has no effect on RFR or BR, but can have a significant effect on information risk
makes sure that the information given to outsiders is as accurate as possible
4
Causes of Information Risk
Remoteness
information gathered is often relied on others, when its obtained from others the likelihood of It being intentionally or unintentionally misstated increases
Bias and motives of providers
information by someone whose goals are inconsistent with those of the decision maker
can result in inadequate or incomplete disclosures of information
Voluminous Data
in larger organizations, the volume of exchange transactions is fairly large
increases the prob. that there is improperly recorded data in the record
Complex Exchange Transactions
exchange transactions between orgs have become more and more complex
acquisitions
combining and disclosing results of operations in different industries
properly valuing and disclosing derivative financial instruments
reducing information risk
smaller businesses tend to keep info risk higher in order to reduce the cost of trying to reduce it
larger businesses will pay the extra money in order to reduce their information risk
3 main ways to reduce it
user verifies information
user may go to the business and examine records and obtain information such as physical count
often impractical due to cost of it
IRS does this with tax returns
in acqusitions, company may hire an outside audit team to perform these tasks
user shares information risk with management
managemnet is responsible for providing reliable Information to users
legal issues may arise is decisions were made on false information
audited financial statements are provided
most common way to obtain reliable information is to have an independent audit
external users like stockholders and lenders rely on such information to be as accurate as possible
audit assurance is valued because the information is complete, accurate and unbiased
5
Assurance Services
assurance service: Is an independent professional service that improves the quality of information for decision makers
done by an independent person relaying unbiased information
SOX 404
provisions resulted in the act now requires CPAs to perform internal control audits
CPAs have also expanded their audits to include things such as:
information of interest to investors
reports on CSR and sustainability reports
attestation services: a type of assurance service in which the CPA firm issues a report about a subject matter or assertion that is made by another party
primary categories include
audit of historical financial statements
audit of internal controls over financial reporting
reviews of historical financial statements
other attestation services that may be applied to a broad range of subject matter
audit of historical financial statements: a form of attestation service in which the auditor issues a written report stating whether the financial statements are in material conformity with accounting standards
most common assurance service provided by CPA firms
designed to provide reasonable assurance that statements are free of material misstatements
publicly traded companies are required to have audits under the federal securities act and opinions can be found in their annual financial reports
internal control over financial reporting: an engagement in which the auditor reports in the effectiveness of internal control over financial reporting; such reports are required for accelerated filer public companies under SOX 404
must attest to the effectiveness of internal control over financial reporting
review of historical financial statements: management asserts that the statements are fairly stated in accordance wiht accounting standards, the same as an audit, but a lower level of assurance is needed
requires less evidence to perform
requires less money
but gives a lower assurance level
nonassurance services provided by CPAs
accounting and bookkeeping services
tax services
management consulting services
the quality of information is often an important criterion in management consulting, this gial is not the primary purpose
6
Types of Audits
operational audits: evaluates the efficiency and effectiveness of any part of an organization’s operating procedures and methods, gives recommendations for improving operations
operational audit
reviews are not limited to accounting
can evaluate organizational structure, computer operations, production methods, marketing, and any other area that auditor is qualified
effective and efficiency must also meet the established criteria for compliance and financial audits
more like management consulting than auditing
compliance audit: conducted to determine whether the auditee is following specific procedures, rules, or regulations set by some higher authority
compliance audit
determine whether personnel are following the procedures prescribed by controller
review wage rates for compliance with minimum wage laws
contractual agreements with bankers and lenders
mortages in compliance with governmental regulations
governmental units like school districts, subject to audits due to governmental regulations
results are typically reported to management rather than outsiders
financial statement audits: conducted to determine whether financial statements are stated in accordance with specific criteria
financial statement audit
using cash basis or other
stated in accordance to accounting standards and regulations
gathers evidence to look for material errors or misstatements
auditors must have extensive knowledge of the company due to different complexities within
7
Types of Auditors
Certified public accounting firms: responsible for auditing historical financial statements of all publicly traded companies, large, small and noncommercial organizations
Government accountability office auditors: an auditor working for the US government accountability office (GAO), a nonpartisan agency in the legislative branch of the federal government
reports and is responsible solely to Congress
audits information prepped by federal government agencies before its submitted to congress
evaluates the operational efficiency and effectiveness of federal programs
Internal revenue agents: auditors who work for the IRS and conduct examinations of taxpayers returns
responsible for enforcing federal tax laws
solely compliance audits
Internal auditors: auditors employed by a company to audit for the companies board of directors and management
can range from 1-100s, depending on the size of the company
involved in operational auditing or computer systems
reports directly to high executive office to remain independent from rest of business
outsiders don’t rely solely on internal audits because of the lack of independence
Certified Public Accountant: a person who has met state regulatory requirements, including passing the Uniform CPA exam, and thus has been certified; a CPA may have their primary responsibility the performance of the audit function on historical financial statements of commercial and noncommercial financial entities
