Professional Documents
Culture Documents
1. Characteristics of Fraud
Misstatements in the financial statements can arise from either fraud or error. The
distinguishing factor between fraud and error is whether the underlying action that results in the
misstatement of the financial statements is intentional or unintentional.
Fraud is an intentional act by one or more individuals among management, those charged
with governance, employees, or third parties, involving the use of deception to obtain an unjust
or illegal advantage. On the other hand, error is an unintentional misstatement or omission of
amounts or disclosures in the financial statements.
Fraud Terms
a. Embezzlement (defalcation) – involves theft of fund placed in one’s trust or care.
b. Larceny – involves theft of personal property.
c. Forgery – act of forging or producing a copy of a document, signature, etc.
d. Bribery – persuading someone to act in one’s favor illegally by a gift.
e. Extortion (blackmail) – obtaining something (e.g., money) through force or threats.
f. Conspiracy (collusion or connivance) – agreement between two or more people to
commit a crime.
g. Earnings management – use of accounting to enhance financial performance.
h. Income smoothing – a form of earnings management in which revenues and expenses are
shifted between periods to reduce fluctuations in earnings.
2. Types of Fraud
Although fraud is a broad legal concept, the auditor is concerned with fraud that causes a
material misstatement in the financial statements. Two types of intentional misstatements are
relevant to the auditor – misstatements resulting from fraudulent financial reporting and
misstatements resulting from misappropriation of assets. Although the auditor may suspect or, in
rare cases, identify the occurrence of fraud, the auditor does not make legal determinations of
whether fraud has actually occurred.
Fraudulent Financial Reporting
Fraudulent financial reporting involves intentional misstatements including omissions of
amounts or disclosures in financial statements to deceive financial statement users. It can be
caused by the efforts of management to manage earnings in order to deceive financial statement
users by influencing their perceptions as to the entity’s performance and profitability. Such
earnings management may start out with small actions or inappropriate adjustment of
assumptions and changes in judgments by management. Pressures and incentives may lead these
actions to increase to the extent that they result in fraudulent financial reporting. Such a situation
could occur when, due to pressures to meet market expectations or a desire to maximize
Identify and assess risks On all audits, consider the Communicate audit results about
of material misstatements possibility of management fraud to management and those
due to fraud by override of controls on charged with governance.
considering: adjusting journal entries,
a. Fraud risk factors accounting estimates, and Document consideration of fraud;
and fraud unusual transactions. and, if improper revenue
triangle; and recognition not considered a risk,
b. Internal controls describe why.
that address the
identified risks
Auditor should always apply professional judgement and professional skepticism.
Identifying and Assessing the Risks of Material Misstatements due to Fraud
The auditor shall evaluate whether the information obtained from risk assessment
procedures indicates that one or more fraud risk factors are present. Fraud risk factors refer to
events or conditions that indicate an incentive or pressure to commit fraud provide an
opportunity to commit fraud. They are referred to as “fraud triangle” because when all three
conditions are present, it is highly likely that fraud has occurred or may be occurring.
The Fraud Triangle
Opportunity
Incentive or Pressure
Incentive or pressure to commit fraudulent financial reporting may exist when
management is under pressure, from sources outside or inside the entity, to achieve an
expected (and perhaps unrealistic) earnings target or financial outcome – particularly
since the consequences to management for failing to meet financial goals can be
significant. Similarly, individuals may have an incentive to misappropriate assets, for
example, because the individuals are living beyond their means.
Opportunity
A perceived opportunity to commit fraud may exist when an individual believes
internal control can be overridden, for example, because the individual is in a position of
trust or has knowledge of specific weaknesses in internal control.
Attitudes or Rationalization
Individuals may be able to rationalize committing a fraudulent act. Some
individuals possess an attitude, character or set of ethical values that allow them
knowingly and intentionally to commit a dishonest act. However, even otherwise honest
individuals can commit fraud in an environment that imposes sufficient pressure on them.
Risk Responses Relating to Fraud
Overall Response: FS Level ROMM
a. Heighten professional skepticism;
b. Assign people with specialized skills/knowledge, such as information technology;
c. Develop specific procedures to identify the existence of fraud; and
d. Incorporate an element of unpredictability in selecting the nature, timing and extent of
audit procedures.
Specific Responses to Potential Fraud Risks: Assertion Level ROMM
a. Change the nature, timing and extent of procedures to address the risk, such as:
- Obtain more reliable and relevant audit evidence or additional corroborative
information to support management’s assertions,
- Perform a physical observation or inspection of certain assets,
- Observe inventory counts on an unannounced basis, and
- Perform further review of inventory records to identify unusual items, unexpected
amounts, and other items for follow-up procedures.
b. Perform further work to evaluate the reasonableness of management’s estimates and the
underlying judgements and assumptions.
c. Increase sample sizes or perform substantive audit procedures at more detailed level.
d. Use computer-assisted audit techniques (CAATs). For example,
- Gather more evidence about data contained in significant accounts,
- Perform more expensive testing of electronic transactions and files,
- Select sample transactions from key electronic files,
- Sort transactions with specific characteristics, and
- Test an entire population instead of a sample.
e. Request additional information in external confirmations.
f. Change the timing of substantive procedures from interim date to one near the period
end.
Laws and regulations can have direct or indirect effect on the financial statements. Laws
and regulations that have direct effect on financial statements results in amounts and disclosures
reported on the financial statements. For example: tax laws and pension laws. On the other hand,
laws and regulations that have indirect effect on the financial statements are not reported in the
financial statements since they are primarily operational in nature. However, non-compliance
may result in fines, litigation or other consequences for the entity that may have a material effect
on the financial statements. For example: labor laws, environmental protection laws, health laws,
operating license, regulatory solvency requirements.
7. Responsibility for Compliance with Laws and Regulations
The responsibility for the compliance, including prevention and detection of non-
compliance with laws and regulations rests with the management and those charged with
governance. The management, with oversight of those charged with governance, must institute
actions aimed to address risks of non-compliance with laws and regulations. These could
include:
• Maintaining a register of significant laws, and a record of any complaints received;
• Monitoring legal requirements and designing procedures/internal controls to ensure
compliance with these requirements;
• Engaging legal advisors to assist in monitoring legal requirements; and
• Developing, publicizing, implementing, and following a code of conduct.