Deck 8: Execution of the Audit Testing of Controls

The more complex the client's operations and its internal controls,the less experienced the auditor who performs the work needs to be.

Attribute sampling is a sampling technique used to reach a conclusion about the total dollar amount of misstatement in an account balance.

Enquiry involves the auditor observing the actual control being performed.

If the tests of controls confirm the auditor's preliminary evaluation of controls,the planned substantive audit procedures are not modified.

The greater the degree of reliance on an internal control,the less they test the control to provide the required assurance.

The purpose of prevent controls is to discover fraud or errors that may have occurred during transaction processing and to rectify those errors.

Transaction-level controls are implemented by businesses to reduce the risk of misstatements due to error or fraud and to ensure that processes are operating effectively.

Benchmarking is an audit strategy that can be used to carry forward the benefit of certain application controls testing into future audit periods.

Tracing certain amounts on the bank reconciliation to the accounting records is an example of inspection of physical evidence.

To improve efficiency,auditors test only those controls that they believe are critical to their opinion.

An example of a purely manual control is a locked stock cage for high dollar-value items.

If inherent risk is low and a reasonable level of assurance has been gained from controls testing,extensive substantive procedures need to be performed to estimate the dollar value of any error in an account balance.

Re-performance involves the auditor re-performing the control to test its effectiveness.

IT general controls are driven by the particular software application being used.

Tests of account balances can often provide evidence about the continued functioning of controls.

The Committee of Sponsoring Organisations (COSO)of the Treadway Commission has produced guidance for designing and implementing effective internal controls.The 2013 framework is expected to help organisations adapt their internal control to changing business conditions.Another recent COSO publication provides guidance for organisations using cloud computing to meet their technology needs.Explain the various aspects of this guidance and critically evaluate its impact at enhancing internal controls within companies using cloud computing.

The Australian Securities and Investments Commission (ASIC)inspects audit firms' compliance with audit quality and auditor independence requirements.Explain the process used by ASIC in conducting these inspections and critically evaluate their effectiveness at enhancing audit quality.

What are the factors considered by auditors in determining whether there is a need for additional detailed tests of controls?

What are the main items commonly included in tests of controls working papers?

Explain and provide examples of the various techniques commonly used when testing controls.

ASA 230 Audit Documentation requires auditors to document each stage of the audit in their working papers.What are the specific requirements in ASA 230 regarding the contents of working papers and explain the importance of auditors effectively documenting the tests of controls that they have performed?

Explain the differences between prevent controls and detect controls.