Financial Statement Audit: Objectives, Scope, Responsibilities, and Assertions

Learning Outcomes

  • After studying this chapter, you should be able to:

    • Discuss audit objectives and conduct audit procedures.

    • Explain auditing work in light of the underlying principles governing it (professional ethics, standards, legal environment).

    • Describe and contrast the responsibilities of the auditor versus those of management and those charged with governance.

    • Identify, list, and test Management’s Assertions at the transaction, account-balance, and presentation/disclosure levels.

Introduction: Nature & Purpose of an Audit

  • Independent examination of a company’s financial statements by a qualified third party.

  • Provides reasonable assurance that management’s financial statements present a “true and fair view” (or “fairly present, in all material respects”) of performance (profit or loss) and position (assets, liabilities, equity).

  • Reinforces the stewardship relationship between management (agents) and owners/other stakeholders (principals).

  • Audit opinion adds credibility but does not guarantee absence of fraud or error.

Basic Principles Governing an Audit

  • Auditor must comply with:

    • Malaysian Institute of Accountants (MIA) By-Laws on Professional Ethics, Conduct & Practice.

    • IFAC Code of Ethics for Professional Accountants (global benchmark).

  • Five fundamental ethical principles:

    1. Integrity – straightforwardness, honesty.

    2. Objectivity – no bias, conflict of interest, or undue influence.

    3. Professional Competence & Due Care – maintain knowledge/skill, act diligently.

    4. Confidentiality – respect and safeguard information obtained.

    5. Professional Behaviour – comply with laws/regulations, avoid discrediting the profession.

Auditor’s Responsibility for Detecting Fraud (ISA 240)

  • ISA 240: The Auditor’s Responsibilities Relating to Fraud in an Audit of Financial Statements sets basic principles, essential procedures, and guidance.

  • Core ideas:

    • Auditor’s primary goal remains detecting material misstatements (MM) in financial statements caused by fraud or error.

    • Must maintain professional scepticism throughout the audit, recognizing the possibility that MM due to fraud could exist regardless of past experience.

    • Fraud distinguished from error:

    • Error = unintentional misstatements/omissions.

    • Fraud = intentional deception for unjust/illegal advantage, perpetrated by management, employees, or third parties.

    • Two fraud categories relevant to auditors:

    1. Fraudulent Financial Reporting (FFR) – manipulation of accounting records, misapplication of GAAP, fictitious entries, timing differences, concealment of liabilities, etc.

    2. Misappropriation of Assets (MoA) – theft/embezzlement, unauthorized use of assets, fraudulent disbursements.

  • Inherent Limitations: Because of collusion, management override, and cost–benefit constraints, an audit cannot provide absolute assurance.

Required Auditor Actions under ISA 240

  1. Risk Identification & Assessment

    • Perform procedures (inquiries, analytical procedures, brainstorming) to gather information about possible fraud.

    • Identify/assess risks of MM due to fraud at both financial-statement level and assertion level.

  2. Overall Responses

    • Adjust audit strategy: assignment/supervision of staff, unpredictability, increased scrutiny of management estimates.

  3. Design & Perform Further Procedures

    • Respond specifically to assessed risks, including the mandatory response to management override:

      • Examine journal entries & other adjustments.

      • Review accounting estimates for bias.

      • Evaluate business rationale of significant unusual transactions.

  4. Evaluate Audit Evidence

    • Consider whether discovered misstatements indicate fraud.

  5. Written Representations

    • Obtain written statements from management that:

      • Acknowledge responsibility for internal control & financial statements.

      • Confirm disclosure of all known frauds or suspected frauds.

  6. Communication

    • Discuss matters with appropriate level of management & those charged with governance.

    • Consider reporting to regulators if required.

Warning Signs (MIA By-Laws)

  • Discrepancies in accounting records.

  • Conflicting/missing evidence.

  • Problematic or unusual relations between auditor & management.

Examples of Fraud & Error

  • Fraudulent Financial Reporting:

    • Manipulating/falsifying records.

    • Omitting transactions (e.g., undisclosed lawsuits).

    • Intentional misclassification (operating lease → finance lease).

    • Fictitious journal entries.

    • Biased assumptions in estimates.

    • Shifting revenue/expenses across periods (cut-off manipulation).

  • Misappropriation of Assets:

    • Embezzling cash receipts.

    • Stealing inventory/intellectual property.

    • Fictitious vendors or payments for goods/services not received.

    • Personal use of company assets.

Management’s Responsibilities toward Fraud (ISA 240 perspective)

  • Primary responsibility for prevention & detection of fraud rests with management & those charged with governance (TCWG).

  • Key duties:

    • Design & Implement Internal Controls that foster an ethical culture and reduce fraud opportunities.

    • Ongoing Fraud Risk Assessment to identify, assess, and mitigate fraud risks.

    • Oversight by TCWG to monitor management’s processes and the integrity of financial reporting.

  • By diligently fulfilling these roles, management helps safeguard assets and ensure reliable financial statements.

Management’s Assertions (Audit Objectives Tie-in)

  • Assertions = management’s implicit/explicit claims about recognition, measurement, presentation, and disclosure.

  • Auditor designs tests to obtain sufficient appropriate evidence for each relevant assertion.

  • Modern ISA 315 (Revised 2019) integrates disclosure assertions into the two primary buckets:

    • Transaction/Class of Transactions Assertions

    • Account Balance Assertions

    • (Historically, Presentation & Disclosure Assertions were listed separately; content remains relevant.)

Transaction-Level Assertions

  • Accuracy – amounts and data are recorded correctly.

  • Classification – transactions posted to proper accounts.

  • Completeness – all transactions/events that should be recorded are recorded.

  • Cut-off – transactions recorded in proper accounting period.

  • Occurrence – recorded transactions actually happened.

Account-Balance Assertions

  • Completeness – all assets, liabilities, equity items recorded.

  • Existence – balances actually exist at reporting date.

  • Rights & Obligations – entity owns/controls assets and is obligated for liabilities.

  • Valuation & Allocation – balances recorded at appropriate amounts; valuation methods applied correctly.

Presentation & Disclosure Assertions (legacy list)

  • Accuracy & Valuation – disclosed amounts are correct and appropriately valued.

  • Completeness – all required disclosures included.

  • Occurrence & Rights/Obligations – disclosed events/rights pertain to the entity.

  • Understandability – information is clearly presented, appropriately grouped/classified.

Illustrative Matrix Snippet (conceptual)

  • For each significant account/transaction (e.g., Inventory, Cash, Revenues, Expenses, Commitments, Related-Party Payables), assess risk per assertion (C, V, E, etc.) and plan procedures (test of details, controls, analytics) accordingly. The slide hinted at coding (Low/Mod/High) for risk levels.

Conclusion & Big-Picture Takeaways

  • Overall Audit Objective: enable expression of an independent opinion on whether the financial statements are prepared, in all material respects, in accordance with an applicable financial reporting framework (e.g., IFRS, MFRS, GAAP).

  • Auditor’s opinion enhances credibility but does not shift primary responsibility for fraud prevention to the auditor.

  • Effective audits rely on:

    • Sound ethical foundation (integrity, objectivity, competence…).

    • Robust risk-based procedures aligned with ISA 240 & other ISAs.

    • Clear delineation of responsibilities between auditor, management, and TCWG.

  • Understanding management’s assertions is central to planning, performing, and evaluating audit evidence.

Connections & Real-World Relevance

  • Regulatory failures (e.g., Enron, Wirecard) highlight importance of professional scepticism and ethical compliance.

  • Investors, lenders, and regulators rely on audited financial statements to allocate capital and enforce accountability.

  • Audits support broader societal trust in capital markets by mitigating information asymmetry and agency costs.

Ethical & Practical Implications

  • Breaches of ethical principles can lead to disciplinary action, loss of licensure, civil liability, and reputational damage.

  • Auditors must balance cost constraints with the need for sufficient procedures; judgment and experience are critical.

  • Continuous professional development ensures competence amid evolving accounting standards, technologies, and fraud schemes.