Deck 6: Understanding of the Clients System of Internal Controls

A)Internal control
B)Compliance
C)Reporting
D)Risk assessment

A)relates only to a client's IT systems
B)relates to the efficiency of the internal audit function
C)is a very broad concept and can encompass all of the elements of an organization
D)is unrelated to the audit

A)adequately controlling the entities operations and its financial reporting
B)adequately supervising the internal audit function
C)with the reporting objective and the operations objectives related to safeguarding of assets
D)ensuring management is immediately made aware of any errors regardless of size

A)client acceptance and continuance
B)compliance objectives which pertain to adherence to laws and regulations to which the entity is subject
C)internal control analysis
D)risk of material misstatement

A)describes the auditor's system of internal control
B)refers to both the financial statements of the client and the audit work being conducted
C)sets the foundation for effective internal control, and provides discipline and structure
D)speaks to the ability of the client to gain funding in capital markets

A)will guarantee that the entity will meet its objectives
B)will eliminate all risks related to entity objectives
C)can only provide an entity with reasonable assurance in achieving its financial reporting objectives
D)should be carefully examined to see if the benefits outweigh the costs of providing such a system

A)ineffective understanding of the purpose of a control
B)controls within a software system are never overridden
C)no evidence or history of collusion within the organization
D)top management agree as to the type and extent of system to implement

A)integrating the internal and external audit functions
B)auditing both internal control over financial reporting(ICFR) and the financial statements
C)integrating component auditors
D)comparing prior year results with the current year to look for abnormalities

A)Control Environment
B)Risk Assessment
C)Control Activities
D)Information and Communication

A)controls that deal with monetary compensation for employees and contractors
B)controls that compensate for another control's potential ineffectiveness
C)controls that are determined to be redundant after analysis
D)controls that have been determined by the auditor to be effective

A)respond to things that can go wrong with transactions.
B)are used reactively to determine where problems have occurred.
C)deal with the financial statements in general.
D)management have suggested the auditor implement.

A)form an ultimate opinion on the financial statements based on management's directives
B)assess the combined inherent, control and detection risks to evaluate the likelihood that material misstatements could occur in the financial statements.
C)audit the system of internal control only
D)ultimately ensure that the internal audit function is performing properly

A)cash sales may not be recorded
B)errors may be made in journalizing cash receipts
C)checks received may not agree with prelist of cash
D)receipts may be posted to the wrong customer account

A)segregation of duties
B)performance reviews
C)authorization control
D)physical controls

A)an entity's risk assessment process
B)a detective control pertaining to accounts receivable
C)a preventive control relating to an IT function
D)a physical lock on a storage facility

A)reliability and transparency
B)efficiency of the entity's operations,
C)adherence to laws and regulations
D)safeguarding of assets against loss

A)entity
B)division
C)operating unit
D)function

A)considering what can go wrong in the financial statements
B)considering which members of top management might be committing fraud
C)assigning the highest ranking and most experienced members of an audit team to an audit
D)sending questionnaires to top management to complete before interviewing any mid-level management employees

A)should be reevaluated every five years to respond to changing market conditions and threats
B)should only solicit feedback from and be crafted by top management
C)is its process for identifying and responding to risks that an organization will not achieve its objectives
D)is the same as the auditor's consideration of risk

A)gaining an understanding of the entity-level (or entity-wide) internal control components
B)talking to the internal audit function
C)discussions with the client's attorney
D)a directive from the audit partner in charge

A)transaction
B)entity
C)division
D)function

A)physical access to assets to those authorized to have access
B)the informational output of the firm
C)investors access to certain records of the firm which should be kept private
D)access to accounting information to senior managers only

A)Performance reviews
B)Information processing controls
C)Physical controls
D)Segregation of duties

A)management activities
B)control activities
C)legislative activities
D)company procedures

A)the safeguarding of assets against loss
B)the adherence to laws and regulations
C)reliability and timeliness
D)timeliness and transparency

A)Control environment
B)Entity-level controls
C)Monitoring activities
D)Information and communication

A)The organization demonstrates a commitment to attract, develop, and retain competent individuals in alignment with objectives.
B)The organization specifies objectives with sufficient clarity to enable the identification and assessment of risks relating to objectives.
C)The organization identifies risks to the achievement of its objectives across the entity and analyzes risk as a basis for determining how the risks should be managed.
D)The organization considers the potential for fraud in assessing the risks to the achievement of objectives.

A)Monitoring
B)Risk assessment
C)Control activities
D)Information and communication

A)are provided by the auditor to the client in training sessions
B)are of no concern, for they are always present
C)are the products of the organization's ethical and behavioral standards
D)should start at the bottom and work their way up the organization

A)control activities
B)control environment
C)risk assessment
D)information and communication

A)Computer general controls
B)Computer application controls
C)IT dependent manual controls
D)None of these options are correct.

A)elimination of mistakes
B)elimination of the need for personnel
C)greater consistency in processing than manual systems
D)increased workload created by exception reports

A)Monthly statement of receivable balances
B)Sales invoice
C)Sales cycle database
D)Customer master file

A)differ for each transaction cycle
B)remain the same for each transaction cycle
C)be closely related to transaction processing controls
D)always consist of input controls and processing controls

A)entity
B)division
C)transaction
D)function

A)increased efficiency in processing transactions
B)less documentary evidence
C)potential availability of real-time financial information
D)the extra cost of staffing an IT support function

A)Invoices not journalized or posted to customer accounts
B)Sales invoices recorded in the incorrect accounting period
C)Products shipped without shipping documents being generated
D)Sale made without credit approval

A)bill of lading and sales database
B)sales invoice and sales database
C)sales invoice, sales cycle database, and monthly statements of receivables balances
D)bill of lading and monthly receivables balances

A)customer master file and sales order
B)sales order and sales invoice
C)bill of lading and packing slip
D)credit sales order

A)valuation and accuracy
B)classification
C)rights and obligations
D)cutoff

A)layering activity
B)IT activity
C)general control activity
D)auditing process activity

A)Customer master file
B)Packing slip
C)Bill of landing
D)Sales invoice

A)shipping document serving as acknowledgement of receipt of goods for delivery by a freight carrier.
B)client prepared document with the details of items included in a shipment.
C)electronic file that accumulates data on sales, cash receipts, and accounts receivables.
D)electronic file containing the customer shipping and billing information and the customer credit limit.

A)reperformance
B)walkthrough
C)recalculation
D)vouching

A)a statement of cash receipts
B)an aging of accounts receivable
C)monthly statements of receivable balances
D)a general ledger receivables report

A)Computer application controls
B)Computer general controls
C)IT dependent manual controls
D)None of these options are correct.

A)completeness and accuracy
B)cutoff and classification
C)rights and obligations
D)valuation and allocation

A)accuracy, completeness, and occurrence
B)completeness, occurrence, and cutoff
C)accuracy, occurrence, and rights and obligations
D)presentation and disclosure

A)completeness and valuation
B)accuracy and occurrence
C)valuation and allocation
D)rights and obligations

A)Sales made to unauthorized customers
B)Goods released from warehouse for unauthorized orders
C)Some shipments going unbilled
D)Sales invoices recorded in the incorrect amount

A)client is large and complicated
B)is relatively small and not overly complex
C)requests the auditor do so
D)inherent risk is deemed to be high

A)a reasonableness test
B)visual scanning
C)a comparison to source documents
D)statistical accuracy checking

A)Checklists and preformatted questionnaires
B)Combinations of narratives and flowcharts
C)Flowcharts and logic diagrams
D)Narratives and logic diagrams

A)ending balances with beginning balances plus known transactions processed.
B)contents of a master file before and after each update.
C)data with an expected limit.
D)actual results and estimated results.

A)Narratives
B)Logic diagrams
C)Flow charts
D)Preformatted questionnaires

A)are technically complex and thus misunderstood
B)are too simplistic
C)usually take longer to prepare than narratives or checklists
D)are more expensive to prepare due to the number of audit hours involved

A)audit plan
B)only flowcharts
C)flowcharts, narratives, and logic diagrams
D)logic diagrams only

A)discussed among audit team members only
B)submitted to the client's internal audit function for agreement/approval
C)well documented so it can be referred back to at any time
D)in documentary form only and submitted to the client's attorneys for risk assessment

A)Combinations of narratives and flowcharts
B)Checklists
C)Preformatted questionnaires
D)Narratives

A)only the IT environment
B)only IT activities
C)the IT environment and all IT activities
D)individual IT applications

A)should always be written and updated regularly as the auditor gains further understanding
B)is the client's responsibility, and should be provided to the auditor by the client
C)should be jointly drafted by the auditor and the client
D)should be retained in the permanent audit file and never shared with the client

A)data received for processing have been properly authorized and converted into machine-sensible form
B)data received for processing have been properly authorized only
C)the computer processing has been performed as intended for the particular application
D)reports generated by the accounting system are accurate and reliable

A)a complex system of flowcharts detailing the audit procedures conducted and key audit findings
B)a narrative surmise of the key audit findings
C)being similar to a flowchart but including little detail
D)being completed by the client and the auditor upon conclusion of the audit

A)Valid code check
B)Missing data check
C)Limit check
D)Valid character check

A)Before-and-after report
B)Missing data check
C)Visual scanning
D)Reconciliation of totals

A)physical, software, and procedural
B)administrative and legal
C)software and hardware
D)transaction-level

A)internal audit control
B)internal system control
C)computer application control
D)systems application control

A)independent controls
B)manual controls
C)IT general controls
D)tech controls

A)Input, timing, and service controls
B)Timing, service, and processing controls
C)Processing, output, and service controls
D)Input, processing, and output controls

A)missing data check
B)valid character check
C)valid code check
D)sequence test check