Professional Documents
Culture Documents
written by
Course Information
Prerequisite Internal Control and Fraud in
Government Engagements or
comparable
knowledge/experience; A detailed
knowledge in [an area] and/or
experience at a mid-level position
within an organization with
operational or supervisory
responsibilities
Field of Study Auditing - Governmental
CPE Credit Hours 17
Author Biography
Lucinda Upton, CPA, CGFM, has been in governmental auditing and accounting for more than 30
years. In her career with Kentucky state government, she held positions with the Legislative
Research Commission, Office of the Health Services Inspector General, the Medicaid program,
and Auditor of Public Accounts. She was previously with the National Association of State
Auditors, Comptrollers, and Treasurers. She has been a discussion leader for national conferences
and training sessions and has provided training and technical assistance to state audit staff, local
government officials, and CPAs who audit governmental entities. Ms. Upton has authored training
programs for Thomson Reuters Tax and Accounting, Bisk Education, Inc., the AICPA Continuing
Education Division, and the Association of Government Accountants (AGA).
Course Description
This course provides the information an auditor needs to design, perform, and report on a
financial statement audit of a governmental entity in accordance with generally accepted auditing
standards (GAAS). Our experts cover: new auditing and accounting requirements; risk assessment
procedures, general planning procedures, and the detailed audit plan; substantive procedures
and tests of controls; audit programs for specific audit areas including pensions and
postemployment benefits other than pensions (OPEB); special-purpose and state governments;
general and concluding procedures; and the auditors reports. This update includes an overview of
the following newly issued GASB Statements No. 88 through No. 92. This course is most
appropriate for the professional with detailed knowledge in audits of state and local government
who may be at a mid-level position within an organization with operational or supervisory
responsibilities, or both.
Learning Objectives
Upon successful completion of this course, the user should be able to:
recognize significant changes to the AICPA Codification of Auditing Standards, the Yellow
Book, and GASB standards;
identify the importance of and procedures behind risk assessment;
recognize the various classes of financial statement assertions;
identify issues related to substantive testing in a financial statement audit;
identify the process of deciding when and how to perform tests of controls;
recognize the process of developing audit programs and detailed audit plans for various audit
areas;
identify unique accounting, reporting, and auditing characteristics in various special purpose
governmental units;
identify unique accounting, reporting, and auditing characteristics dealing with pensions and
OPEB;
identify various general and concluding audit procedures; and
recognize the importance and relevance of standard GAAS and GAGAS reports on the basic
financial statements.
Effective Date
The clarified standards generally were effective for audits of financial statements for periods
ending on or after December 15, 2012. Some, such as the standard on compliance audits, were
made effective earlier.
Codification Section Identifiers
The clarified standards use “AU-C” section numbers instead of the previously used “AU” section
numbers. The AU-C identifier has been retained in the Codification and the AU sections have been
discontinued.
Format of Standards
Each standard follows a specified format. The introduction explains the purpose and scope of the
standard. The objective defines the context in which the requirements are set. When appropriate,
a standard explains specific meanings of terms in that standard. Application and other
explanatory material explains or provides guidance for carrying out the requirements of the
standard; it is an integral part of the standard, and the auditor is required to read and understand
the entire text of the standard.
Format of Codification
The major parts of the Codification are as follows: general principles and responsibilities; risk
assessment and response to assessed risk; audit evidence; using the work of others; audit
conclusions and reporting; special considerations; and special considerations in the United States.
Substantive Changes to the Codification
Some of the clarified standards contain substantive changes in content, while others have merely
been converted to the clarity format. This chapter focuses on the AU-C sections that had
substantive changes, presented in the format of the new Codification. The participant in this
program is presumed to have a basic understanding of the auditing standards that were not
changed in the clarity project.
The “General Principles and Responsibilities” part of the Codification covers the following: overall
objectives of the independent auditor and the conduct of an audit in accordance with GAAS;
terms of engagement; quality control; audit documentation; consideration of fraud in a financial
statement audit; consideration of laws and regulations in an audit of financial statements; the
auditor's communication with those charged with governance; and communicating internal
control related matters identified in an audit.
Objectives of the Auditor and Conduct of an Audit
AU-C §200 is Overall Objectives of the Independent Auditor and the Conduct of an Audit in
Accordance With Generally Accepted Auditing Standards. It did not substantially change what the
auditor is required to do, but it is structurally different and introduced new terminology.
Overall Objectives of the Auditor
AU-C §200 supersedes AU §150, Generally Accepted Auditing Standards, which contains the 10
general, field work, and reporting standards. It establishes the overall objectives of the auditor.
Note
If the auditor fulfills the overall objectives and meets applicable ethical requirements,
the ASB believes that the auditor will have fulfilled the 10 standards.
The ASB concluded that it is appropriate that the auditor determine the acceptability
of the applicable financial reporting framework in conjunction with accepting the
engagement.
Agreement of Management Responsibility
AU-C §210 requires the auditor to obtain the agreement of management that it acknowledges
and understands its responsibility for selecting the appropriate financial reporting framework,
establishing and maintaining internal control, and providing access and information to the
auditor. These requirements were contained or implied in previous standards.
Unless required by law or regulation to do so, the auditor should not accept an audit engagement
if the auditor has determined that the applicable financial reporting framework is not acceptable.
Also, the auditor should not accept the engagement if management has not acknowledged in the
engagement letter its responsibility for the selection and application of the appropriate financial
reporting framework, establishing and maintaining internal control, and making all financial
records and related information available to the auditor.
Recurring Audits
For recurring audits, AU-C §210 requires the auditor to assess whether circumstances require the
terms of the audit engagement to be revised. If the auditor concludes that the terms do not need
to be revised, the auditor should remind the entity of the terms of the engagement. This reminder
can be accomplished by means of a new engagement letter or a written or oral reminder that the
responsibilities in the previous terms of engagement still apply.
Understanding for Each Audit
Previous standards required the auditor to establish an understanding with the client for each
engagement. In practice, this requirement may not result in a reminder each year for recurring
audits. AU-C §210 requires the auditor to document the reminder.
Request to Change Audit to Lower Level of Assurance
AU-C §210 also addresses situations in which the auditor is requested to change the audit
engagement to an engagement that conveys a lower level of assurance. The auditor should
determine whether reasonable justification for doing so exists.
Prescribed Layout or Wording of Report
In some situations, law or regulation prescribes the layout or wording of the auditor's report in a
form or in terms that are significantly different from the requirements of GAAS. In these
circumstances, previous GAAS required the auditor to reword the prescribed form or attach a
separate report. AU-C §210 includes the explicit requirement that, if the auditor determines that
rewording the prescribed form or attaching a separate report would not be permitted or would not
mitigate the risk of users misunderstanding the auditor's report, the auditor should not accept the
engagement.
Consideration of Fraud
AU-C §240, Consideration of Fraud in a Financial Statement Audit, did not significantly change or
expand the previous standard. However, it changed the definition of fraud to be consistent with
the international standards. It broadened the definition by including the list of parties who may
commit fraud and by referring to the use of deception. AU-C §240 defines “fraud” as an
intentional act by one or more individuals among management, those charged with governance,
employees, or third parties, involving the use of deception that results in a misstatement in
financial statements that are the subject of an audit.
The ASB believes that the new definition of fraud does not create differences between
the application of the old and new versions of the standard.
AU-C §265, Communicating Internal Control Related Matters Identified in an Audit, supersedes
AU §325 of the same name. AU-C §265 makes explicit two requirements that were implied in AU
§325.
Deficiencies in Internal Control
The first formerly implicit requirement is to determine whether, on the basis of the audit work
performed, the auditor has identified one or more deficiencies in internal control.
Written Communication of No Material Weaknesses
The second formerly implicit requirement is to include specific matters in a written communication
in which the auditor states that no material weaknesses were identified during the audit. These
matters are similar to those in the written communication of significant deficiencies and material
weaknesses. They include the following: the definition of the term “material weakness” and, when
relevant, the definition of the term “significant deficiency;” sufficient information to enable those
charged with governance and management to understand the context of the communication; and
communication in an audit conducted in accordance with Government Auditing Standards that
the report is not suitable for any other purpose but does not restrict the use of the auditor's report.
Note
The requirement to state in a Government Auditing Standards audit that the report on
internal control is not suitable for any other purpose changed previous practice.
The second new requirement is that the auditor include, in a written communication, an
explanation of the potential effects of the significant deficiencies and material weaknesses
identified. The potential effects need not be quantified.
The ASB did not believe this explanation required additional effort by the auditor
because the potential effects would have been considered as part of evaluating the
severity of the deficiency.
A user auditor is required to inquire of management of the user entity about whether the service
organization has reported to the user entity any fraud, noncompliance with laws and regulations,
or uncorrected misstatements. If so, the user auditor is required to evaluate how such matters
affect the nature, timing, and extent of further audit procedures.
Adequacy of Standards Used by Service Auditor
As in the previous standard, in determining the sufficiency and appropriateness of the audit
evidence provided by a service auditor's report, the user auditor should be satisfied regarding the
adequacy of the standards under which the service auditor's report was issued.
1 D. Audit Evidence
This part of the Codification discusses the standards on audit evidence. Some standards changed
with the implementation of the Codification while others did not.
When management's plans include financial support by third parties and such support is
necessary in supporting management's assertions about the entity's ability to continue as a going
concern for a reasonable period of time, the auditor should obtain sufficient appropriate audit
evidence about the intent of such supporting parties to provide the necessary financial support,
including written evidence of such intent, and the ability of such supporting parties to provide the
necessary financial support.
Period beyond Management's Assessment
AU-C §570 requires the auditor to inquire of management regarding its knowledge of conditions
or events beyond the period of management's evaluation that may affect the entity's ability to
continue as a going concern.
Requirements Not Significantly Changed
The Codification does not significantly change the audit evidence requirements for the following:
analytical procedures;
audit sampling;
auditing accounting estimates, including fair value estimates and related disclosures;
related parties;
subsequent events;
written representations; and
consideration of omitted procedures after the report release date.
The next part of the Codification covers audit conclusions and reporting. It does not significantly
change or expand the requirements for opinion modifications. The AU-C sections on Other
Information in Documents Containing Audited Financial Statements (SAS No. 118);
Supplementary Information in Relation to the Financial Statements as a Whole (SAS No. 119); and
Required Supplementary Information (SAS No. 120) were issued in the clarity format. They were
effective for audits of financial statements for periods beginning on or after December 15, 2010.
Therefore, participants in this course should already be familiar with them.
Forming an Opinion and Reporting
AU-C §700, Forming an Opinion and Reporting on Financial Statements, requires the auditor to
describe management's responsibility for the financial statements in more detail than the
previous standard.
Description of Management's Responsibility
The description includes an explanation that management is responsible for the preparation and
fair presentation of the financial statements in accordance with the applicable financial reporting
framework, and that this responsibility includes the design, implementation, and maintenance of
internal control relevant to the preparation and fair presentation of financial statements that are
free from material misstatement, whether due to fraud or error.
Use of Headings in the Report
AU-C §700 also includes a presumptively mandatory requirement for the use of headings
throughout the auditor's report to clearly distinguish each section of the report.
1 G. Special Considerations
The next part of the Codification addresses special considerations. The requirements and
guidance for Reporting on Compliance With Aspects of Contractual Agreements or Regulatory
Requirements in Connection With Audited Financial Statements (which is based on AU §623,
Special Reports) has not significantly changed.
The U.S. Government Accountability Office (GAO) last revised Government Auditing Standards—
also known as generally accepted government auditing standards (GAGAS) or the Yellow Book—
in 2018. The 2018 revision superseded the 2011 revision and was effective for financial audits for
periods ending on or after June 30, 2020. Early implementation was not permitted.
Overview of Major Changes
This chapter discusses major changes in the Yellow Book to the general standards and standards
for financial audits.
Conceptual Framework for Independence
The Yellow Book includes a conceptual framework for independence to provide a way for auditors
to assess their independence for activities that are not expressly prohibited in the standards. The
GAO document, Answers to Independence Standard Questions, has been retired.
Documentation of Independence
The Yellow Book adds requirements for documentation to support adequate consideration of
auditor independence.
Changes to the Independence Standard
In the Yellow Book, specific references to personal, external, and organizational impairments, and
the overarching principles for independence described in the 2007 standards, were removed.
However, the underlying concepts related to these categories were retained in the conceptual
framework. The audit organization and the individual auditors, whether government or public,
must be independent. Independence has two components: independence of mind and
independence in appearance.
Independence of Mind
Independence of mind is a state of mind that permits the performance of an audit without being
affected by influences that compromise professional judgment and allows an auditor to act with
integrity and exercise objectivity and professional skepticism.
Independence in Appearance
Independence in appearance is the absence of circumstances that would cause a reasonable and
informed third party, having knowledge of the relevant information, to reasonably conclude that
the integrity, objectivity, or professional skepticism of an audit organization or member of the
audit team had been compromised.
Period of Independence
As a general rule, auditors should be independent from an audited entity during two periods:
A. The auditor should be independent during any period of time that falls within the period
covered by the financial statements or subject matter of the audit.
B. The auditor should be independent during the period of the professional engagement. This
period begins when the auditors either sign an initial engagement letter or other agreement
to perform an audit (such as a contract with the state to audit a local government) or begin to
perform the audit, whichever is earlier. The period lasts for the entire duration of the
professional relationship that, for recurring audits, could cover many periods. The period ends
with the formal or informal notification, either by the auditor or the audited entity (or its
oversight government), of the termination of the professional relationship or by the issuance
of a report, whichever is later.
Accordingly, the period of the professional engagement does not necessarily end with
the issuance of a report and recommence with the beginning of the following year's
audit or a subsequent audit with a similar objective.
For financial statement audits, a nonaudit service performed during the period covered by the
financial statements may not impair an auditor's independence with respect to those financial
statements provided that the following three conditions exist:
A. The nonaudit service was provided prior to the period of the professional engagement.
B. The nonaudit service related only to periods prior to the period covered by the financial
statements.
C. The financial statements for the period to which the nonaudit service did relate were audited
by another auditor or, in the case of an examination or review engagement, were examined,
reviewed, or audited by another auditor, as appropriate.
The Conceptual Framework
The Yellow Book establishes a conceptual framework that auditors use to identify, evaluate, and
apply safeguards to address threats to independence that result from activities that are not
specifically prohibited by the Yellow Book. Auditors should apply the conceptual framework at the
audit organization, audit, and individual auditor levels to accomplish the following three
purposes:
A. Identify threats to independence
B. Evaluate the significance of the threats identified, both individually and in the aggregate
C. Apply safeguards as necessary to eliminate the threats or reduce them to an acceptable level
Threats to Independence
Auditors should evaluate the following seven broad categories of threats to independence:
A. Self-interest—The threat that a financial or other interest will inappropriately influence an
auditor's judgment or behavior
B. Self-review—The threat that an auditor or audit organization that has provided nonaudit
services will not appropriately evaluate the results of previous judgments made or services
performed as part of the nonaudit services when forming a judgment significant to an audit
C. Bias—The threat that an auditor will, as a result of political, ideological, social, or other
convictions, take a position that is not objective
D. Familiarity—The threat that aspects of a relationship with management or personnel of an
audited entity, such as a close or long relationship, or that of an immediate or close family
member, will lead an auditor to take a position that is not objective
E. Undue influence—The threat that external influences or pressures will impact an auditor's
ability to make independent and objective judgments
F. Management participation—The threat that results from an auditor's taking on the role of
management or otherwise performing management functions on behalf of the entity
undergoing audit
G. Structural—The threat that an audit organization's placement within a government entity, in
combination with the structure of the government entity being audited, will impact the audit
organization's ability to perform work and report results objectively
Safeguards
Safeguards are controls designed to eliminate or reduce to an acceptable level threats to
independence. Examples of safeguards include the following:
1. Consulting an independent third party, such as a professional organization, a professional
regulatory body, or another auditor
2. Involving another audit organization to perform or reperform part of the audit
3. Having a professional staff member who was not a member of the audit team review the work
performed
4. Removing an individual from an audit team when that individual's financial or other interests
or relationships pose a threat to independence
When Threats to Independence Are Not at an Acceptable Level
When threats to independence are not at an acceptable level, thereby requiring the application of
safeguards, auditors should document the threats identified and the safeguards applied to
eliminate the threats or reduce them to an acceptable level. Certain conditions may lead to
threats that are so significant that they cannot be eliminated or reduced to an acceptable level
through the application of safeguards, resulting in impaired independence.
Note
Under such conditions, auditors should decline to perform a prospective audit or
terminate an audit in progress (when they are not required by law or regulation to
perform the audit).
Note
The 2018 Yellow Book revision specifically states that auditors should conclude that
preparing financial statements in their entirety from a client-prepared trial balance or
underlying accounting records creates significant threats to auditors' independence,
and should document the threats and safeguards applied to eliminate and reduce
threats to an acceptable level or decline to provide the service.
Provision of certain other nonaudit services always impairs an external auditor's independence
with respect to an audited entity. Therefore, these nonaudit services are prohibited from being
performed by the external auditor.
A. Non-Tax Disbursement: Prohibited services for non-tax disbursement are as follows:
1. Accepting responsibility to authorize payment of audited entity funds, electronically or
otherwise
2. Accepting responsibility for signing or cosigning audited entity checks, even if only in
emergency situations
3. Maintaining an audited entity's bank account or otherwise having custody of an audited
entity's funds or making credit or banking decisions for the audited entity
4. Approving vendor invoices for payment
B. Benefit Plan Administration: Prohibited services for benefit plan administration are as follows:
1. Making policy decisions on behalf of audited entity management
2. When dealing with plan participants, interpreting the plan document on behalf of
management without first obtaining management's concurrence
3. Making disbursements on behalf of the plan
4. Having custody of a plan's assets
5. Serving a plan as a fiduciary as defined by the Employee Retirement Income Security Act
(ERISA)
C. Investment Advisory or Management Services: Prohibited services for investment advisory or
management services are as follows:
1. Making investment decisions on behalf of audited entity management or otherwise
having discretionary authority over an audited entity's investments
2. Executing a transaction to buy or sell an audited entity's investment
3. Having custody of an audited entity's assets, such as taking temporary possession of
securities purchased by an audited entity
to improve the relevance of financial statement information for certain component units.
Reporting Investments
A majority equity interest in a legally separate organization should be reported as an investment if
a government's holding of the equity interest meets the definition of an investment. A majority
equity interest that meets the definition of an investment should be measured using the equity
method, unless it is held by a special-purpose government engaged only in fiduciary activities, a
fiduciary fund, or an endowment (including permanent and term endowments) or a permanent
fund. Those governments and funds should measure the majority equity interest at fair value.
Reporting Other Holdings
All other holdings of a majority equity interest in a legally separate organization should be
reported as a component unit, and the government or fund that holds the equity interest should
report an asset related to the majority equity interest using the equity method. Ownership of a
majority equity interest in a legally separate organization results in the government being
financially accountable for that organization.
Component Unit Reporting
A component unit in which a government has a 100 percent equity interest must account for the
assets, deferred outflows of resources, liabilities, and deferred inflows of resources at acquisition
value at the date the government acquired a 100 percent equity in the component unit.
Transactions presented in flows statements of the component unit in that circumstance should
include only transactions that occurred subsequent to the acquisition.
Effective Date
The requirements of Statement No. 90 are effective for reporting periods beginning after
December 15, 2018. The GASB encourages earlier application. The requirements should be
applied retroactively, except for the provisions related to reporting a majority interest in a
component unit and reporting a component unit if the government acquires a 100 percent equity
interest. Those provisions should be reported on a prospective basis.
GASB Statement No. 91
GASB Statement No. 91 is Conduit Debt Obligations.
Objectives
The objectives of GASB Statement No. 91 are to provide a single method of reporting conduit debt
obligations by issuers and eliminate diversity in practice associated with commitments extended
by issuers, arrangements associated with conduit debt obligations, and related note disclosures.
Definition
A conduit debt obligation is defined as a debt instrument having all of the following
characteristics:
There are at least three parties involved: an issuer, a third-party obligor, and a debt holder.
The issuer and the third-party obligor are not within the same financial reporting entity.
The debt obligation is not a parity bond of the issuer, nor is it cross-collateralized with other
debt of the issuer.
The third-party obligor or its agent, not the issuer, ultimately receives the proceeds from the
debt issuance.
The third-party obligor, not the issuer, is primarily obligated for the payment of all amounts
associated with the debt obligation (debt service payments).
Nature of the Commitment
All conduit debt obligations involve the issuer making a limited commitment. Some issuers
extend additional commitments or voluntary commitments to support debt service in the event
the third party is, or will be, unable to do so.
Liability Recognition Criteria
An issuer should not recognize a conduit debt obligation as a liability. However, an issuer should
recognize a liability associated with an additional commitment or a voluntary commitment to
support debt service if certain recognition criteria are met. As long as a conduit debt obligation is
outstanding, an issuer that has made an additional commitment should evaluate at least
annually whether those criteria are met. An issuer that has made only a limited commitment
should evaluate whether those criteria are met when an event occurs that causes the issuer to
reevaluate its willingness or ability to support the obligor's debt service through a voluntary
commitment.
Arrangements Often Characterized as Leases
In some arrangements, capital assets are constructed or acquired with the proceeds of a conduit
debt obligation and used by third-party obligors in the course of their activities. Payments from
third-party obligors are intended to cover and coincide with debt service payments. During those
arrangements, issuers retain the titles to the capital assets. Those titles may or may not pass to
the obligors at the end of the arrangements. Issuers should not report those arrangements as
leases, nor should they recognize a liability for the related conduit debt obligations or a receivable
for the payments related to those arrangements. In addition, the following provisions apply:
If the title passes to the third-party obligor at the end of the arrangement, an issuer should
not recognize a capital asset.
If the title does not pass to the third-party obligor and the third party has exclusive use of the
entire capital asset during the arrangement, the issuer should not recognize a capital asset
until the arrangement ends.
If the title does not pass to the third-party obligor and the third party has exclusive use of only
portions of the capital asset during the arrangement, the issuer, at the inception of the
arrangement, should recognize the entire capital asset and a deferred inflow of resources. The
deferred inflow of resources should be reduced, and an inflow recognized, in a systematic and
rational manner over the term of the arrangement.
Disclosures
Issuers are required to disclose general information about their conduit debt obligations,
organized by type of commitment, including the aggregate outstanding principal amount of the
issuers' conduit debt obligations and a description of each type of commitment. Issuers that
recognize liabilities related to supporting the debt service of conduit debt obligations also should
disclose information about the amount recognized and how the liabilities changed during the
reporting period.
Effective Date
The requirements of Statement No. 91 are effective for reporting periods beginning after
December 15, 2020. The GASB encourages earlier application.
GASB Statement No. 92
GASB Statement No. 92 is Omnibus 2020. It addresses practice issues that have been identified
during implementation and application of certain GASB Statements.
Topics Addressed
Statement No. 92 includes specific provisions about the following topics: The effective date of
Statement No. 87, Leases, and Implementation Guide 2019-3, Leases, for interim financial
reports
Reporting of intra-entity transfers of assets between a primary government employer and a
component unit defined benefit pension plan or defined benefit other postemployment
benefit (OPEB) plan
The applicability of Statements No. 73, Accounting and Financial Reporting for Pensions and
Related Assets Statements 67 and 68, as amended, and No. 74, Financial Reporting for
Postemployment Benefit Plans Other Than Pension Plans, as amended, to reporting assets
accumulated for postemployment benefits
The applicability of certain requirements of Statement No. 84, Fiduciary Activities, to
postemployment benefit arrangements
Measurement of liabilities (and assets, if any) related to asset retirement obligations (AROs) in
a government acquisition
Reporting by public entity risk pools for amounts that are recoverable from reinsurers or
excess insurers
Reference to nonrecurring fair value measurements of assets or liabilities in authoritative
literature
The terminology used to refer to derivative instruments
Effective Date
The requirements of Statement No. 92 are effective as follows:
The requirements related to the effective date of Statement No. 87 and Implementation
Guide 2019-3, reinsurance recoveries, and terminology used to refer to derivative instruments
are effective upon issuance.
The requirements related to intra-entity transfers of assets and those related to the
applicability of Statements No. 73 and No. 74 are effective for fiscal years beginning after June
15, 2020.
The requirements related to the application of Statement No. 84 to postemployment benefit
arrangements and those related to nonrecurring fair value measurements of assets or
liabilities are effective for reporting periods beginning after June 15, 2020.
The requirements related to the measurement of liabilities (and assets, if any) associated with
AROs in a government acquisition are effective for government acquisitions occurring in
reporting periods beginning after June 15, 2020.
Earlier application is encouraged and permitted by topic.
Note
At the time this program went to press, the GASB was reviewing a proposal that would
postpone the effective dates of provisions in certain pronouncements. Updates are
available at https://www.gasb.org/home.
1 K. Summary
This chapter provided an overview of the AICPA Codification of Statements on Auditing
Standards. It also discussed the revisions of Government Auditing Standards (the Yellow Book)
and recent GASB pronouncements, GASB Statement Nos. 88 through 92.
Study Question 1
Which of the following is an auditor requirement related to internal control deficiencies identified
in an audit?
The auditor is required to quantify and communicate, in
A writing or orally, the potential effects of the significant
deficiencies or material weaknesses identified.
The auditor is required to include, in a written
B communication, an explanation of why no significant
deficiencies or material weaknesses were identified.
The auditor is required to communicate orally to those
C charged with governance internal control deficiencies that
are not significant deficiencies or material weaknesses.
The auditor is required to include, in a written
D communication, an explanation of the potential effects of
significant deficiencies and material weaknesses identified.
Study Question 2
What are the consequences for auditor independence if an auditor performs management
responsibilities on behalf of an audited entity?
Study Question 3
Which of the following is not a characteristic of a conduit debt obligation?
Study Question 4
Which of the following statements is true regarding capital assets acquired with the proceeds of a
conduit debt obligation and used by third-party obligors in the course of their activities?
This chapter discusses risk assessment and other planning procedures. It describes inquiries of
management, analytical procedures, observation and inspection, and discussion among the
engagement team in assessing risks of material misstatement. It also discusses understanding
the entity and its environment, including its internal control, in assessing risks of material
misstatement, in general terms and in terms of entity-level and activity-level controls. This
chapter concludes with a discussion of how the auditor makes planning decisions and judgments,
including materiality and risk levels, as well as additional requirements of the Yellow Book for
financial audits.
Upon successful completion of this chapter, the user should be able to:
identify the importance of and procedures behind risk assessment.
Opinion Units
The auditor should consider opinion units during the planning and risk assessment activities. The
assessment of risks of material misstatement of the financial statements is at the opinion unit
level. Opinion units are as follows: governmental activities, business-type activities, aggregate
discretely presented component units, each major governmental fund, each major enterprise
fund, and the aggregate remaining fund information (nonmajor governmental and enterprise
funds, internal service funds, and fiduciary funds).
The Entity and Its Environment
An essential aspect of risk assessment is obtaining an understanding of the entity and its
environment, including the entity's internal control. The information obtained is used to support
the auditor's assessment of the risk of material misstatement. Risk assessment procedures may
also provide audit evidence about relevant assertions related to account balances, transaction
classes, or disclosures, as well as about the operating effectiveness of controls. As a result, risk
assessment procedures may also serve as tests of controls or substantive procedures, or they may
be performed concurrently with those procedures.
Auditors will give more weight to information about risks and knowledge of fraud if management
has effective processes and assessment methods. Management is often in the best position to
perpetrate fraud. Therefore, the responses of members of senior management concerning the
likelihood of fraud perpetrated by themselves are less meaningful than in respect to perpetration
by lower levels within the entity.
Inquiries of Those Charged with Governance
The auditor is required to inquire directly of those charged with governance (or the audit
committee or its chair) about their views of the risks of fraud and whether they have knowledge of
any actual, suspected, or alleged instances of fraud. If applicable, the auditor should obtain an
understanding of their role in overseeing the entity's fraud risk assessment and monitoring
process.
Inquiries of Others within the Entity
The auditor is required to inquire of internal auditors if the entity has an internal audit function.
The auditor also is required to make specific inquiries of persons involved in the financial reporting
process about inappropriate or unusual activity relating to the processing of journal entries and
other adjustments. Making inquiries of employees outside the accounting department or those at
varying levels of authority may be useful in providing a different perspective about the risks of
fraud. Their responses may corroborate responses received from management or may provide
information about the possibility of management override of controls. Their responses may also
provide information about the effectiveness of management's communication and support of the
entity's values or ethics.
Inquiries about Related Parties
Some related-party relationships and transactions give rise to higher risks of material
misstatement than transactions with unrelated parties. The auditor is required to inquire of
management about the identity of related parties, including changes from the prior period; the
nature of related-party relationships; and whether there were any transactions with those related
parties during the period and, if so, the transaction type and purpose. Auditors also are required
to inquire of management and others within the entity and perform risk assessment procedures as
needed to understand the controls established to identify, account for, and disclose related-party
relationships and transactions; authorize and approve significant related-party transactions and
arrangements; and authorize and approve significant transactions and arrangements outside the
normal course of business.
2 C. Analytical Procedures
Introduction
Risk assessment procedures should include analytical procedures, which may include both
financial and nonfinancial information. The identification of unusual or unexpected relationships
may help the auditor identify risks of material misstatement, especially risks due to fraud.
However, when analytical procedures use data aggregated at a high level, the results provide only
a broad initial indication about whether a material misstatement may exist.
The auditor is required to include analytical procedures related to revenue. Auditors perform
preliminary analytical procedures related to revenue to identify unusual or unexpected
relationships that may indicate fraudulent financial reporting. Ordinarily, a comparison of current
and prior-period account balances for revenue accounts is not sufficient to achieve that objective.
Other types of procedures are used.
Unusual or Unexpected Relationships
Examples of unusual or unexpected relationships relating to revenue that may indicate a material
misstatement due to fraud include the following:
A. Actual revenues at significant variance from originally budgeted revenues
B. Actual revenues at significant variance from prior-period actual revenues without similar
changes in the revenue base or rates
C. A significant increase in actual revenues over those of the prior period that is just enough to
keep the entity from reporting annual or accumulated fund balance or net position deficits, or
from violating debt covenants
D. Large miscellaneous or one-time revenues
E. Significant differences in resources received in advance and deferred inflows of resources from
the prior period
F. Revenue from sales of assets without a similar reduction in the asset accounts
G. Investment income that is contrary to market conditions
H. Expenditure-driven grant revenue without offsetting grant expenditures
Update during Final Review
The analytical procedures related to revenue should be updated in the final review stage of the
audit.
Documentation of Analytical Procedures
The auditor should record the identifying characteristics of the specific items or matters tested.
For an inspection of documents, the auditor could indicate the title and date of the report or the
document name and number. For an observation of procedures, the auditor could document the
process or subject matter observed, the individuals involved and their titles, and where and when
the observation was performed.
The auditor should consider the susceptibility to fraud as a distinct part of any
combined discussion to avoid potential dilution of this critical consideration.
The focus of the audit team discussion should be to allow individual members to gain a better
understanding of the potential for material misstatements resulting from error or fraud in the
specific areas assigned to them and to understand how the results of audit procedures they
perform affect other aspects of the audit. The partner or more experienced members of the audit
team can share their insights based on their cumulative knowledge of the entity and its
environment. It is not always necessary or practical for the discussion to include all members in a
single discussion, and not all members need to be informed of all decisions made. The
engagement partner and key engagement members should take part in the team discussion. The
engagement partner should determine the matters to be communicated to team members who
are not involved in the team discussion.
Matters to Be Discussed
The discussion is designed to identify areas of vulnerability to material misstatement. The
discussion should open the minds of members of the audit team to potential material
misstatements from error and fraud. Any high-risk areas that have already been identified should
be communicated to the team members.
Specific Requirements
The following matters are specifically required to be included in the engagement team discussion:
A. Information about the engagement provided by the engagement partner as part of her/his
responsibility to direct the engagement team
B. Related-party relationships and transactions
C. The susceptibility of the entity's financial statements to material misstatement
D. Application of GAAP to the entity's facts and circumstances in light of its accounting policies
E. Fraud-related matters
Note
The team also may include a discussion of critical issues and areas of significant audit
risk; areas susceptible to management override of controls; unusual accounting
practices used by the entity; important control systems; significant IT applications and
how the use of IT may affect the audit; materiality at the opinion unit level and account
level; how materiality will be used to determine the extent of testing; and the need to
exercise professional skepticism throughout the audit, to be alert for information or
other conditions that indicate that a material misstatement due to fraud or error may
have occurred, and to be rigorous in following up on such conditions.
As part of the engagement team discussion, auditors are required to consider how related-party
relationships and transactions could affect the susceptibility of the financial statements to
material misstatement. The team might discuss the following matters: the nature and extent of
the entity's relationships and transactions with related parties; the importance of maintaining
professional skepticism regarding related parties throughout the audit; circumstances or
conditions that may indicate the existence of unidentified related-party relationships or
transactions; the types of records or documents that might indicate the existence of related-party
relationships or transactions; the importance that management and those charged with
governance attach to the identification of, accounting for, and disclosure of related-party
relationships and transactions and the related risk of management override; and how related
parties might be involved in fraud.
Discussion of Fraud-Related Matters
The team discussion should include the following fraud-related matters: how and where the
entity's financial statements might be susceptible to material misstatement due to fraud; how the
entity's assets could be stolen; external and internal factors that might create incentives or
pressures, provide opportunities, or enable rationalization of fraud; the risk of management
override of controls; circumstances that might be indicative of manipulation of the budget or
other financial measures; practices management might use to manipulate the budget or other
financial measures that could lead to fraudulent financial reporting; how the auditor might
respond to the susceptibility of the financial statements to material misstatement due to fraud;
and the importance of maintaining professional skepticism regarding the potential for material
misstatement due to fraud.
Fraudulent Financial Reporting and Misappropriation of Assets
The discussion should consider financial misstatement from both fraudulent financial reporting
and misappropriation of assets. Key considerations in assessing fraud risk are the motivations that
may exist for management to intentionally misstate the financial statements and missing controls
that could result in misappropriation of assets, including fraudulent disbursements.
Audit Response
The discussion should include the appropriate audit response to the areas identified as
susceptible to material misstatement due to fraud or error. For example, the auditor might
identify the accounts that would be affected and the nature of the procedures that could be
performed to address the risks.
Professional Skepticism
The auditor should maintain professional skepticism throughout the audit, recognizing that a
material misstatement due to fraud could exist regardless of the auditor's past experience with
the honesty and integrity of entity management and those charged with governance. Professional
skepticism is an attitude that includes a questioning mind and being alert to conditions that may
indicate possible misstatement due to fraud or error and a critical assessment of audit evidence.
Note
A belief that management and those charged with governance are honest and have
integrity does not allow the auditor to be satisfied with less than persuasive audit
evidence.
In addition to documenting the discussion among the engagement team, the auditor should
document key elements of the understanding obtained regarding each aspect of the entity and its
environment, the sources of information from which the understanding was obtained, and the risk
assessment procedures performed.
Components of the Understanding
The auditor's understanding of the entity and its environment includes industry, regulatory, and
other external factors; the nature of the entity, including its opinion units; objectives, strategies,
and related business risks that may result in a material misstatement of an opinion unit;
measurement and review of the entity's financial performance; and the selection and application
of accounting policies. In addition, the consideration of fraud risk factors is an important objective
of performing risk assessment procedures.
Industry, Regulatory, and Other External Factors
The objective of the auditor's understanding of industry, regulatory, and other external factors is
to evaluate whether the entity is subject to specific risks of material misstatement arising from the
nature of the government industry, degree of regulation, or other external forces, such as political,
social, or technological factors.
2. These characteristics mean that an audit of a governmental unit will have a more focused
consideration on compliance with laws and regulations, a greater emphasis on transaction
testing, and more concern with internal control. Generally, information that may be useful in
gaining an understanding of the entity and its environment can be obtained from various
sources—such as federal and state laws and regulations, local charters, budget documents,
recent bond offerings, prior-period financial reports, the request for proposals for audit
services, and discussions with management.
Political Environment
Political considerations include both general and specific matters that may have an influence on
the conduct of the engagement. The visibility of governmental operations and related news media
coverage can provide a potential source of information.
Reporting Requirements
The auditor should inquire of management and review bond covenants, grant requirements,
requirements of higher levels of government, and pertinent statutes to identify the entity's legal
reporting requirements.
Note
The Yellow Book also requires reports on compliance with laws and regulations and on
internal control in a financial statement audit.
Economic Environment
The auditor should consider economic trends and indicators. Factors such as unemployment
rates, age and income demographics of the population, assessed values of real property,
population trends, and commercial economic indicators may influence the level and type of
governmental activities. This type of information is available from state economic agencies and
local chambers of commerce. Another source of information is bond rating agencies that rate
securities of governments.
Nature of the Entity and Its Opinion Units
The auditor should obtain an understanding of the nature of the entity and its opinion units. The
nature of the entity includes its operations, its governance, the types of its existing and future
investments, and its structure and financing. This understanding helps the auditor understand the
classes of transactions, account balances, and disclosures that would be expected in the financial
statements.
Structure and Governance Characteristics: The structure of a governmental unit and its
governance are affected by the allocation of administrative responsibilities. The executive and
legislative branches may share these responsibilities. By inquiry and inspection of documents, the
auditor should be able to obtain the following information:
1. The authorities, responsibilities, and duties of the executive branch and legislative branch and
the relationship between the two
2. The composition of the legislative or governing body, including the composition and activities
of an audit committee, if any
3. The organization of the executive branch, including overall and personnel organization charts
4. The authorities, duties, and responsibilities of key administrative and financial personnel,
including any formal position descriptions
Operating Characteristics: Based on inquiry, observation, and reading of statutes and ordinances,
the auditor should obtain an understanding of and document a general description of the
following: taxing procedures and procedures for other major sources of revenue and revenue
management; purchasing procedures; treasury functions, including major financing sources,
major investments, and the use of high-risk investments; budgeting procedures; fund accounting
requirements, including specified funds and overall fund structure; and potentially high-risk
operations, such as hospitals, landfills, and social service programs.
Objectives, Strategies, and Related Business Risks
The auditor should focus on risks that have financial reporting implications. The auditor obtains
an understanding of management's objectives and strategies to identify the related business risks.
The auditor's risk assessment procedures may be influenced by the size and sophistication of the
entity. When making inquiries, the auditor will generally restrict questioning to upper
management. These inquiries should prompt management to describe the entity's future trends,
expectations, objectives, and strategies.
Measurement and Review of the Entity's Financial Performance
The auditor should obtain an understanding of the measurement and review of the entity's
financial performance made by management and external parties.
Information used by management may include the following:
key financial and nonfinancial performance indicators,
trends,
key ratios and other operating and financial statistics,
forecasts and variance analyses,
budget-to-actual financial performance,
period-on-period financial performance, employee performance measures,
enterprise fund performance reports, and
comparisons to performance of similar governmental units (benchmarking).
Information prepared by external parties includes bond rating agency reports. A downgrade in an
entity's bond rating is an important risk indicator.
Selection and Application of Accounting Policies and Accounting Estimates
The auditor should obtain an understanding of management's selection and application of
accounting policies and evaluate whether the policies are appropriate for the entity's activities and
consistent with policies used in governmental financial reporting.
Accounting Estimates: The auditor should obtain an understanding of the following regarding
accounting estimates:
1. Requirements of the applicable financial reporting framework relevant to the accounting
estimates, including those related to disclosures
2. How management identifies transactions, events, and conditions that may give rise to
accounting estimates
3. How management makes accounting estimates and the data on which estimates are based,
including methods used, relevant controls, whether a specialist was used, assumptions
underlying accounting estimates, any changes in methods or assumptions made (or that
should have been made) from the prior period and reasons for the changes, and whether and
how management has assessed the effect of estimation uncertainty
Risks of Material Misstatement: The auditor's assessment of the appropriateness of the entity's
accounting policies and accounting estimates is important for considering the risks of material
misstatement at the financial statement and relevant assertion levels, whether due to fraud or
error. The auditor uses the understanding of management's selection and application of
accounting policies along with the identification of fraud risk factors to evaluate whether an
overall response is necessary.
Risk of Fraud in Selection and Application of Accounting Policies: In determining overall
responses to fraud risk, the auditor should evaluate whether the selection and application of
accounting policies—particularly policies related to subjective measurements and complex
transactions—may be indicative of fraudulent financial reporting. These may be used to
manipulate budget and other financial information, or bias that may create a material
misstatement. Management bias in the selection and application of accounting principles may
individually or collectively involve matters such as contingencies, fair value measurements,
revenue recognition, accounting estimates, related-party transactions, and transactions without a
clear activity or purpose.
Fraud Risk Factors
Fraud risk factors are events or conditions that indicate an incentive or pressure to perpetrate
fraud, provide an opportunity to commit fraud, or indicate attitudes or rationalizations to justify a
fraudulent action. The auditor should evaluate whether the information obtained from risk
assessment procedures indicates that one or more fraud risk factors are present.
Risks of Material Misstatement: The identification of fraud risk factors is a part of performing risk
assessment procedures. In addition, with the other information obtained about the entity and its
environment, the fraud risk factors are an important component in identifying the risks of material
misstatement at the financial statement and relevant assertion levels. The auditor's primary
concern is to identify whether a risk factor is present and needs to be considered in identifying and
assessing risks of material misstatement due to fraud. The presence of a particular fraud risk
factor does not necessarily indicate the existence of fraud.
Fraudulent Financial Reporting: Broad examples of fraud risk factors for fraudulent financial
reporting include the following:
1. Financial stability is threatened by economic, industry, or entity operating conditions.
2. Excessive pressure exists for management to meet the requirements or expectations of third
parties.
3. Information available indicates that the personal financial situation of management or those
charged with governance is threatened by the entity's financial performance.
4. Management or operating personnel are under excessive pressure to meet financial targets
established by those charged with governance.
5. The nature of the industry or the entity's operations provides opportunities to engage in
fraudulent financial reporting.
6. The monitoring of management is not effective.
7. The entity's organizational structure is complex or unstable.
8. Internal controls are deficient.
9. Management has failed to remedy known significant deficiencies or material weaknesses in
internal control on a timely basis.
Misappropriation of Assets: One of the primary fraud risks in governmental units is fraudulent
cash disbursement. The auditor may become aware of information that indicates potential
financial stress or dissatisfaction of employees who have access to assets susceptible to
misappropriation. Examples of risk factors include unfavorable changes in employee benefit plans
and failure to receive expected pay raises.
Specialized IT Skills
The auditor should consider whether specialized IT skills are needed to determine the effect of IT
on the audit, identify and assess IT risks, understand IT controls, design and perform tests of IT
controls or substantive procedures, or identify IT control deficiencies. The following factors may be
considered in determining whether the audit team needs to include individuals with specialized IT
skills:
A. The complexity of the entity's systems and IT controls and the manner in which they are used
in conducting the entity's business
B. The significance of changes made to existing systems or the implementation of new systems
C. The extent to which information is shared among systems
D. The extent of the entity's use of electronic commerce
E. The entity's use of emerging technologies
F. The significance of audit evidence that is available only in electronic form
When an IT Specialist Is Used
When an auditor uses an IT specialist on the engagement team, the auditor should be
knowledgeable enough to communicate the audit objectives to the specialist, evaluate whether
the procedures performed by the specialist meet the auditor's objectives, and determine the
effects of the procedures on the nature, timing, and extent of other planned procedures. The
auditor also should determine that the specialist is independent, has adequate technical
knowledge, and meets applicable continuing professional education requirements.
Control Objectives
When obtaining an understanding of internal control, auditors often consider control objectives
when identifying controls and evaluating their design and implementation. A control objective
states the purpose of a control or controls in relation to risks and what could go wrong in the
financial statements. Control objectives relate to entity-level controls, such as control
environment and monitoring activities, as well as controls at the account balance, transaction
class, and disclosure level.
An example of a control objective could be, “All capital asset additions are recorded
correctly.” Failure to achieve that control objective could result in overstatement or
understatement of capital assets and depreciation expense.
When considering control objectives at the relevant assertion level, the auditor may choose to
identify existing controls and evaluate their design effectiveness.
Key Controls
The auditor should focus attention on those controls that are most important in achieving
particular control objectives related to identified risks of material misstatement. Key controls are
considered the most important in achieving the entity's control objectives. The failure of key
controls could materially affect a relevant assertion. On the other hand, the operation of a key
control might prevent, or detect on a timely basis, other control failures. When determining which
controls are key controls, the auditor might consider factors such as the following: the nature of
the risks being addressed; the characteristics of related account balances or transaction classes;
whether the control is preventive or detective; whether the control works in combination with or
relies on the operation of other controls; whether the control is manual or automated; whether the
control addresses more than one control objective; and the nature and type of potential
misstatements that the control would prevent, or detect and correct.
Risk assessment is the entity's process of setting objectives; prioritizing and linking those
objectives; and identifying, analyzing, and managing risks relevant to achieving those objectives.
With respect to the objective of reliable financial reporting, the entity's risk assessment process
involves the identification, analysis, and management of the risks of material misstatement. An
entity's risk assessment process includes financial reporting objectives, management of financial
reporting risks, consideration of fraud risk, and consideration of changes that could impact
internal control. The auditor generally obtains sufficient knowledge of management's risk
assessment process to understand how management considers risks relevant to reliable financial
reporting objectives and decides about actions to address those risks.
The auditor considers both the following:
(a) the aspects of the entity's risk assessment process that enable management to identify,
analyze, and address risks, and
(b) any difficulties the entity has in identifying and addressing those risks.
Risks include changes in operations, new personnel, new or revised information systems,
new operating approaches or activities, restructurings, and new accounting standards.
Monitoring Activities
Monitoring activities are performed by an entity to assess the quality of its internal control over
time. They involve assessing the design and operation of controls on a timely basis, capturing and
reporting identified control deficiencies, and taking action as necessary. Monitoring activities can
also reveal potential fraud. Poor monitoring activities can allow fraud or error to remain
undetected. The auditor should obtain an understanding of the major types of activities that
management uses to monitor internal control over financial reporting. The auditor's
understanding should include the sources of information related to monitoring and the basis on
which management considers information to be sufficiently reliable for that purpose.
Risk Assessment Procedures
The auditor can obtain an understanding of the entity's monitoring activities through direct
inquiries of management, review of policies and procedures manuals to determine monitoring
functions (such as a review of bank reconciliations), or procedures performed to obtain an
understanding of other components of the entity's internal control.
Note
For example, when performing a walkthrough of the cash disbursements transaction
processing system and inspecting the monthly bank reconciliation, the auditor may
notice that the bank reconciliation has been initialed. Upon inquiry of the bookkeeper,
the auditor learns that the senior official placed her initials on the reconciliation to
evidence her review. In this way, the auditor obtains an understanding of both the
design of the monitoring controls and their implementation.
If an entity has a designated internal audit function, the auditor should obtain an understanding
of that function to understand its responsibilities, how it fits into the organizational structure, and
the activities it performs. The auditor is required to inquire of appropriate individuals in the
internal audit function about their understanding of the risks of error and fraud within the entity.
The auditor also is required to inquire about whether the internal audit function has performed
any procedures to identify or detect fraud during the year, whether management has satisfactorily
responded to any findings resulting from their procedures, and whether they have knowledge of
any actual or suspected fraud.
Documentation of the Entity's Monitoring Activities
The auditor should document an understanding of the entity's monitoring activities, including the
sources of information and procedures performed to obtain or update the understanding. The
auditor should document an overall conclusion about whether the monitoring activities are
properly designed and implemented considering the overall size and complexity of the entity.
IT Environment and General Controls
IT systems and their related general controls may enhance the effectiveness and efficiency of an
entity's internal control because of the consistency, timeliness, and accuracy inherent in
automated systems. However, an IT system also poses certain risks, such as reliance on systems or
programs that are inaccurately processing data or are processing inaccurate data. The auditor is
required to obtain an understanding of how the entity has responded to IT-related risks. General
controls generally include controls related to such areas as data center and network operations
and physical security and access to programs and data.
Risk Assessment Procedures
When obtaining an understanding of the IT environment, the auditor should consider what
procedures the computer performs and what information is stored in electronic files. The auditor
obtains an understanding of the extent to which IT is being used for significant transaction
classes. The auditor should evaluate the design of IT general controls and determine whether they
have been implemented when assessing the risks of material misstatement. Deficient general
controls may allow application controls to operate improperly, which can result in material
misstatements in the financial statements.
Documenting the Entity's IT Environment and General Controls
The auditor should document her/his understanding of the extent to which IT is used in significant
transaction classes and the auditor's understanding of and conclusion about the design and
implementation of general computer controls.
Activity-level controls and processes operate at the assertion level. They are directly related to
initiating, authorizing, recording, processing, correcting, transferring to the general ledger, and
reporting the entity's transactions. As a result, the understanding of activity-level controls directly
supports the auditor's risk assessment at the relevant assertion level for account balances,
transaction classes, and disclosures. In obtaining an understanding of activity-level controls, the
auditor also should remember the requirements to obtain an understanding of controls related to
fraud and other significant risks, controls related to risks for which substantive procedures alone
are not adequate, and the effects of IT on the entity's control activities.
Financial Reporting System
The auditor should obtain sufficient knowledge of the financial reporting system, including related
procedures, to understand how misstatements might occur at any point from the occurrence of
transactions and events or conditions to the final presentation in the financial statements.
Classes of Transactions
The auditor should understand the classes of transactions in the entity's operations that are
significant to the financial statements.
Accounting Procedures
The auditor should understand the procedures, within both automated and manual systems, by
which transactions are initiated, authorized, recorded, processed, corrected as necessary,
transferred to the general ledger, and reported in the financial statements.
Accounting Records
The auditor should understand the accounting records, whether electronic or manual, supporting
information, and specific accounts in the financial statements involved in initiating, authorizing,
recording, processing, and reporting transactions.
Other Events and Conditions
The auditor should understand the methods used to capture significant events and conditions—
other than classes of transactions—that are significant to the financial statements.
Note
Examples include asset impairment, commitments and contingencies, subsequent
events, compliance with debt covenants, related-party transactions, going concern
uncertainties, and fair values of financial instruments.
In Yellow Book financial audits, it may be appropriate to use lower materiality levels
than in a GAAS audit because of the public accountability of governmental entities and
entities receiving government funding, various legal or regulatory requirements, and
the sensitivity of government programs.
The two aggregate opinion units (discretely presented component units and remaining
fund information) can be combined into one opinion unit when either of the two is
quantitatively and qualitatively immaterial to the primary government. The resulting
combined opinion unit is called the aggregate discretely presented component unit and
remaining fund information.
The auditor should consider the information in the required reconciliations from the funds
financial statements to the government-wide financial statements.
Selecting a Benchmark
To determine planning materiality, the auditor must select a benchmark. The characteristics the
auditor desires are that the benchmark has relative stability and predictability and be
representative of the entity's size. For many governmental units, total assets or total revenue
provide a good benchmark. Both are relevant because of the emphasis on financial resources in
the governmental environment.
A. In determining total assets for calculation of planning materiality, the auditor excludes
interfund receivables and agency fund assets. In determining total revenue, the auditor
excludes interfund transfers and bond and other debt proceeds. These adjustments make the
benchmark more representative of the actual size of recurring activity.
B. Auditors may consider qualitative factors when determining planning materiality, such as
when large-dollar activity or balances distort quantitative measures. In this situation, auditors
may eliminate certain large-dollar items from the calculation and set separate materiality
levels for the excluded items and for the remaining items. For example, the governmental
activities opinion unit may have general capital assets that exceed the total of other assets in
that opinion unit. The auditor could set one level of materiality for general capital asset
activity and balances and another set for the opinion unit's other activities and balances.
However, the auditor would render a single opinion on the opinion unit.
C. In certain cases, the use of total assets or total revenues as a benchmark may be
inappropriate because they are not the most relevant. For example, many capital projects
funds are substantially completed at year-end, and revenues are typically not significant. In
this case, total assets or total project expenditures may be the most relevant benchmark. For
an enterprise fund, such as a utility, the primary reporting focus is often the level of
operations. In this case, total revenues or total expenses is a more appropriate benchmark
than total assets.
Selecting a Percentage to Apply to the Benchmark
The next step in making a preliminary judgment about planning materiality is to specify a
percentage to apply to the benchmark.
A. Although there is no authoritative requirement, many auditors believe that the materiality
percentage should be adjusted in relation to the size of the entity. The percentage is larger for
a very small government to recognize the practical limits on the effectiveness of audit
procedures. The percentage is smaller for a very large government to recognize that a large
enough absolute amount is often considered material.
B. The reduction of the percentage as the benchmark amount increases will prevent planning
materiality from becoming disproportionately large in relation to the operating statement.
However, the auditor also uses judgment about the entity and its circumstances in
determining the planning materiality amount.
C. Planning materiality judgments are reconsidered as the audit progresses. Because the
calculation made during initial planning may use annualized interim financial information, the
base amounts in the audited financial statements may differ. The auditor adjusts planning
materiality if s/he becomes aware of changes that would have affected its calculation. In
addition, at the conclusion of the audit, the auditor considers whether the audit scope was
adequate in the circumstances.
Materiality for Particular Items of Lesser Amounts
In addition to determining materiality at the financial statement level, the auditor should
determine whether there are particular transaction classes, account balances, or disclosures for
which a lower planning materiality amount is appropriate based on user perceptions of the items.
Auditors often use a lower planning materiality level for related-party transactions and the
remuneration of management and those charged with governance.
Performance Materiality
Performance materiality is the amount or amounts set by the auditor at less than materiality for
the financial statements of an opinion unit to reduce to an appropriately low level the probability
that the aggregate of uncorrected and undetected misstatements exceeds materiality for those
financial statements. When applicable, performance materiality also refers to the amount set by
the auditor at less than the materiality level for a particular transaction class, account balance, or
disclosure. The auditor determines performance materiality to assess the risks of material
misstatement and determine the nature, timing, and extent of further audit procedures.
A. Performance materiality differs from tolerable misstatement. The application of performance
materiality to a particular audit sampling procedure is called tolerable misstatement.
Tolerable misstatement is materiality at the test or procedure level for a specific account
balance or transaction class when that procedure or test is applied using audit sampling.
B. The auditor should establish at least one level of performance materiality for each opinion
unit. Different amounts can be established for various transaction classes, account balances,
and disclosures. The determination of performance materiality is affected by the auditor's
understanding of the entity, any need for revision identified in the performance of risk
assessment procedures, the nature and extent of misstatements identified in previous audits,
and the auditor's expectations regarding misstatements in the current period.
Documentation of Materiality
The auditor should document the following, including factors considered in their determination
and any revisions made during the audit: materiality at the opinion unit financial statement level;
if applicable, materiality levels for particular transaction classes, account balances, or disclosures;
and performance materiality. The auditor should also document the amount below which
misstatements would be considered clearly trivial.
Assessing Risks at the Financial Statement and Relevant Assertion
Levels
Audit risk in a financial statement audit is the risk that the auditor may unknowingly fail to
appropriately modify her/his opinion on financial statements that are materially misstated. It is a
function of the risk that the financial statements are materially misstated and the risk that the
auditor will not detect such material misstatement. In other words, audit risk is the risk of material
misstatement remaining in the financial statements after the audit. Audit risk is a judgmental
rather than a mathematical determination since it cannot be precisely measured as a percentage.
Levels of Risk Assessment
The auditor should identify and assess the risks of material misstatement, whether due to fraud or
error, at the opinion unit financial statement and relevant assertion levels. These risks are
identified and assessed by obtaining an understanding of the entity and its environment,
including its internal control. This understanding provides a basis for designing and implementing
responses to the assessed risks of material misstatement.
A. Risks of material misstatement at the opinion unit financial statement level often relate to the
entity's control environment and are not necessarily identifiable with specific relevant
assertions at the transaction class, account balance, or disclosure level. These overall risks are
relevant to the auditor's consideration of the risks of material misstatement arising from
fraud, such as management override of internal control.
B. The risks of material misstatement at the transaction class, account balance, or disclosure
level consist of inherent risk and control risk.
Response to Risks at the Financial Statement Level
The auditor should design and implement overall responses to address the assessed risks of
material misstatement at the opinion unit financial statement level.
A. Responses may include the following: emphasis to the audit team to use professional
skepticism; assigning staff with higher experience levels or specialized skills or using
specialists; increasing the level of supervision; using a greater degree of unpredictability in
selecting audit procedures; and changing the nature, timing, and extent of substantive
procedures, such as modifying the nature of audit procedures to obtain more persuasive
evidence. The auditor also should consider any specific relevant assertions that may be
affected by the overall risks and develop responses at that level when designing the nature,
timing, and extent of further audit procedures.
B. One fraud risk that is always present is the risk of management override of controls. Overall
responses to this risk include the following: considering the knowledge, skill, and ability of
individual engagement team members when assigning and supervising them; evaluating the
client's selection and application of accounting principles, especially in subjective areas; and
incorporating an element of unpredictability in the selection of audit procedures from year to
year, such as testing account balances and assertions otherwise considered immaterial or low
risk.
Documenting the Risks of Material Misstatement
The auditor should document both the identified and assessed risks at the opinion unit financial
statement level and the overall responses to them.
Establishing an Overall Audit Strategy
The auditor should establish an overall strategy for the audit. The audit strategy is the auditor's
operational approach to achieving the objectives of the audit. It is a high-level determination that
includes the identification of overall risks, the overall responses to those risks, and the general
approach to each audit area as being substantive procedures or a combination of substantive
procedures and tests of controls.
How the Auditor Establishes the Strategy
In establishing the overall audit strategy, the auditor should do the following: determine the key
characteristics of the engagement that define its scope; determine the reporting objectives of the
engagement to plan the timing of the audit and the nature of communications required; consider
significant factors that will determine the focus of the engagement team's efforts, the results of
preliminary audit activities, and knowledge from other engagements performed for the entity, if
any; and determine the nature, timing, and extent of resources needed to perform the audit.
Aspects of the Audit Strategy
The auditor's overall strategy should be developed considering the following: materiality; areas
that may be at higher risk of misstatement; risk of material misstatement at the opinion unit
financial statement level; previous audit's internal control deficiencies; management's
commitment to internal control; volume of transactions; significant changes in accounting
standards; and whether the auditor plans to use substantive procedures alone or a combination of
substantive procedures and tests of controls. The auditor should consider whether the client's
computer system provides a clear audit trail. The auditor also must consider the audit resources
necessary to perform the engagement.
Documenting the Audit Strategy
The auditor should document the overall audit strategy, the audit plan, any significant changes
made to them during the audit, and the reasons for changes. Many of the matters that relate to
the overall audit strategy will be documented in the normal course of gathering information about
the entity and its environment. Professional standards do not necessarily require that a separate
audit strategy memorandum be prepared to document in one place all matters that affect the
audit strategy.
Additional Yellow Book Requirements
The Yellow Book establishes additional requirements related to the following: noncompliance
with contracts and grant agreements; abuse; ongoing investigations or legal proceedings; and
communication of fraud, noncompliance, and abuse. Auditors should design their audits to
provide reasonable assurance of detecting misstatements resulting from noncompliance with the
provisions of contracts or grant agreements that could have a direct or indirect material effect on
financial statement amounts or other financial data significant to the audit objectives.
Noncompliance with Laws, Regulations, Contracts, and Grant Agreements
The auditor is responsible for considering laws, regulations, contracts, and grant agreements and
how they affect the audit. The auditor should assess whether management has identified
compliance requirements that have a material effect on financial statement amounts, obtain an
understanding of the possible effects of the compliance requirements on the determination of
financial statement amounts, assess the risk that a material misstatement occurred because of
noncompliance, and design and perform the audit to provide reasonable assurance of detecting
such material noncompliance.
Abuse
Abuse involves behavior that is deficient or improper when compared with behavior that a prudent
person would consider reasonable and necessary business practice given the facts and
circumstances. Abuse also includes misuse of authority or position for personal financial interests
or those of an immediate or close family member or business associate (often referred to as
“corruption”). Abuse may or may not involve fraud or noncompliance, but often results from
noncompliance, particularly noncompliance with laws and regulations that specify allowable
costs and activities. If auditors become aware of abuse that could be material, either
quantitatively or qualitatively, to the financial statements, they should perform additional
procedures to determine its potential effect on the financial statements or other financial data
significant to the audit, including whether the situation or transaction is indicative of fraud or
noncompliance.
Ongoing Investigations or Legal Proceedings
Auditors should avoid interfering with ongoing investigations or legal proceedings. When
investigations or legal proceedings have been initiated or are in process, the auditor should
evaluate the impact on the audit. The auditor may be required to work with investigators or legal
authorities, withdraw from the engagement, or defer further work on the engagement (or a
portion of it) to avoid interfering with the process.
2 K. Summary
This chapter discussed risk assessment and other planning procedures. It described inquiries of
management, analytical procedures, observation and inspection, and discussion among the
engagement team in assessing risks of material misstatement. It also discussed understanding
the entity and its environment, including its internal control, in assessing risks of material
misstatement, in general terms and in terms of entity-level and activity-level controls. This
chapter concluded with a discussion of how the auditor makes planning decisions and judgments,
including materiality and risk levels, as well as additional requirements of the Yellow Book for
financial audits.
Study Question 5
Under what circumstances may risk assessment procedures serve as tests of controls or
substantive procedures?
A Under no circumstances
Study Question 6
Which of the following statements is true regarding the audit team's discussion about the
susceptibility of the entity's financial statements to material misstatement?
Study Question 7
What is the importance of the auditor's assessment of the entity's accounting policies and
accounting estimates?
Study Question 8
Which of the following statements is true regarding an entity's risk assessment process for reliable
financial reporting?
Study Question 9
How do the risks of material misstatement at the opinion unit financial statement level related to
the entity's control environment affect the auditor's response?
Upon successful completion of this chapter, the user should be able to:
recognize the process of assessing risk, and
develop detailed audit plans.
3 A. Chapter Overview
This chapter discusses how the auditor identifies and assesses the risks of material misstatement
at the relevant assertion level and then prepares a detailed audit plan that appropriately
addresses those risks. This chapter also includes a discussion of the auditor's consideration of the
risks of material misstatement due to fraud.
3 B. Financial Statement Assertions
Introduction
Assertions are explicit or implicit representations by management that are embodied in the
financial statements of an opinion unit. The auditor uses these assertions to consider the different
types of potential misstatements that may occur in the entity's financial statements, whether due
to fraud or error. The assertions are described in the professional literature for transaction classes,
account balances, and presentation and disclosure. In an audit of a governmental entity,
management also asserts that transactions and events have been carried out in accordance with
laws and regulations, and those assertions may fall within the scope of the financial statement
audit.
Valuation relates to account balances that require an estimate after initial recording to
determine value, such as uncollectible receivables, obsolete inventory, or other asset
impairments. Allocation refers to items for which an expense related to usage is
allocated over useful life, such as property and certain intangibles or amortization of
premiums or discounts related to liabilities.
Many auditors combine assertions for transactions and events, account balances, and
presentation and disclosure as follows: existence or occurrence, completeness, rights or
obligations, valuation or allocation, accuracy or classification, and cutoff.
3 C. Identifying Risks of Material
Misstatement at the Relevant Assertion
Level
Introduction
To assess the risk of material misstatement at the relevant assertion level for transaction classes,
account balances, and disclosures, the auditor should do the following: identify risks throughout
the process of obtaining an understanding of the entity and its environment, including relevant
internal controls that relate to the risks; assess the identified risks and evaluate whether they
potentially affect many assertions because of their pervasive effect on the financial statements;
relate the identified risks to what can go wrong at the relevant assertion level, considering the
relevant controls to be tested; consider whether the risks are of a magnitude that could result in a
material misstatement of the financial statements; and consider the likelihood that the risks,
including the potential for multiple misstatements, could result in a material misstatement of the
financial statements.
Once auditors have accumulated information for identifying potential risks, they evaluate the
information in combination to determine whether it indicates areas susceptible to material
misstatement. The auditor considers the information in the context of whether the risk relates to
fraud or error; whether the risk is pervasive to the financial statements as a whole or related to
relevant assertions for specific transaction classes, account balances, or disclosures; how the
potential risk could affect specific assertions; if the risk is a potential fraud risk, the extent to which
fraud conditions (incentives or pressures, opportunities, and attitudes or rationalization) have
been observed; and whether the risk is of a magnitude that could result in material misstatement
of the financial statements.
This process helps the auditor identify what could go wrong at the relevant assertion
level, assess the risks, and develop appropriate responses.
Detection Risk
Detection risk (DR) is the risk that the procedures performed by the auditor to reduce audit risk to
an acceptably low level will not detect a misstatement that could be material, either individually
or when aggregated with other misstatements. It is a function of the effectiveness of the nature,
timing, and extent of substantive procedures applied by the auditor and consists of the risk
associated with tests of details (TD) and the risk associated with substantive analytical procedures
(AP).
Detection risk is the auditor's risk. It exists outside the entity and depends on the
auditor's skill in determining the appropriate audit procedures and performing them
correctly to reduce the risk that the auditor will provide an inappropriate opinion on the
financial statements.
Accounting Estimates
As part of risk assessment, the auditor should evaluate the degree of estimation uncertainty of
accounting estimates and determine whether those with a high degree of estimation uncertainty
represent significant risks. The auditor is required to determine whether all of the following are
true:
A. Management has appropriately applied GAAP to the accounting estimate.
B. The method for making the estimate is appropriate and applied consistently.
C. Any change in the estimate or method from the prior period is appropriate.
Related Parties
The auditor should identify and assess the risks of material misstatement associated with related-
party relationships and transactions to determine whether they represent significant risks. In
addition, if related-party fraud risk factors are identified, the auditor should consider them in
identifying and assessing fraud risks.
Significant Audit Areas
The auditor then identifies significant audit areas. An audit area consists of the related transaction
classes, account balances, and disclosures. The auditor should consider the following factors in
determining which audit areas are significant:
A. The relative materiality of an account balance to the opinion unit financial statements
B. The relative significance of a transaction class to the entity's operations or the overall opinion
unit financial statements because of, for example, the materiality or volume of transactions
flowing through the account during the period
C. The susceptibility of the account balance or transaction class to fraud, including both theft
and similar loss of related assets and intentional misstatement by management
D. Audit areas that for other reasons have a high assessed level of inherent risk or contain
significant risks
Note
Reasons include complex calculations, difficult or contentious accounting issues,
new accounting standards, need for judgment, unusual nature of transactions,
past history of significant adjustments, past history of significant adjustments, or
other engagement risk factors.
E. Disclosures that require additional effort at the account balance level in individual audit areas
to ensure their accuracy and completeness
Specific Risks of Material Misstatement
For each audit area, the auditor describes the specific risks of material misstatement affecting the
account balance, transaction class, or related disclosures. The description should include the
cause and direction of potential misstatement and the financial statement assertions affected.
The auditor considers the cause of misstatement—error, fraudulent financial reporting, or theft—
and the effect on the direction of misstatement. The auditor should evaluate whether the
following two specific types of risk are present: significant risks that require special audit
consideration and risks for which substantive procedures alone do not provide sufficient
appropriate evidence.
Significant Risks Requiring Special Audit Consideration
Significant risks require special audit consideration. One or more significant risks normally arise
on most audits. They are likely to exist even in situations in which there are no new or unusual
circumstances at the entity. The auditor's determination of significant risks is based primarily on
the consideration of inherent risk. To determine whether the risk is such that it requires special
audit consideration, the auditor should focus on the nature of the risk; the likely magnitude of the
potential misstatement, including the possibility of multiple misstatements; and the likelihood of
the misstatement occurring.
Nature of the Risk: The nature of the risk is particularly important. The nature of the risk should be
evaluated by considering whether any of the following are true:
1. The risk is a risk of fraud.
2. The risk is related to recent significant economic, accounting, or other developments.
3. The transactions are complex.
4. The risk involves significant transactions with related parties.
5. There is a large degree of subjectivity in the measurement of the financial information related
to the risk.
6. The risk involves significant transactions outside the normal course of business or that
otherwise appear unusual.
Effect on Further Audit Procedures: The auditor should document the significant risks that were
identified and related controls that were evaluated. The identification of significant risks has
important implications for further audit procedures. The auditor must determine whether the
audit approach will involve reliance on controls. If so, the auditor must perform tests of controls in
the current period; reliance on evidence from tests of controls performed in prior periods is not
permitted. The auditor will perform substantive procedures that are specifically responsive to the
risk. If the auditor decides not to rely on controls and instead to perform only substantive
procedures, those procedures should include tests of details.
The auditor identifies and assesses the risks of material misstatement due to fraud at the
assertion level for transaction classes, account balances, and disclosures. The auditor then
describes those fraud risks in terms of their potential effects on the financial statements. The
nature of the observed fraud risk conditions may help the auditor determine the type of risk. For
example, information related to employee dissatisfaction, assets susceptible to theft, and
inadequate safeguarding controls generally indicates susceptibility to misappropriation of assets.
Information related to external pressures to present favorable financial condition or operating
results, accounts or transactions susceptible to manipulation, and inadequate monitoring and
financial reporting controls generally indicates susceptibility to fraudulent financial reporting.
Magnitude of the Risk
The auditor is only responsible for detecting material fraud. Therefore, the auditor considers
whether an identified fraud risk is of a magnitude that could result in material misstatement of
the financial statements or would be likely to occur in material amounts, recognizing that
materiality has both quantitative and qualitative aspects.
Presumption of Revenue Recognition as a Fraud Risk
Material misstatement of the financial statements due to fraudulent financial reporting often
results from improper revenue recognition. Auditors should ordinarily presume that improper
revenue recognition is a risk of material misstatement due to fraud. Absent an effective oversight
process, the opportunity for improper revenue recognition almost always exists because of the
possibility of management override of controls. In a governmental entity, management may
intentionally misstate revenue in the following ways:
A. Recognizing significant revenues on a cash basis instead of on an accrual or a modified
accrual basis
B. Recording revenue in the wrong fund
C. Understating or overstating the allowance for uncollectible receivables
D. Failing to net revenue against expenses or expenditures when required, such as when
insurance recoveries are received in the same year as an impairment loss
E. Recognizing revenue from a legal judgment before the amount is realizable
F. Recognizing revenue from cost reimbursement grants for costs that were not incurred
Overcoming the Presumption of Revenue Recognition as a Fraud Risk
The presumption that improper revenue recognition is a fraud risk may be overcome. For example,
the auditor may note an absence of significant pressures or incentives and an absence of realistic
opportunities. However, the auditor should consider whether a specific opinion unit may have
revenue recognition as a fraud risk. Because revenue is generally material to the financial
statements, the auditor may not be able to overcome the presumption if one or more indications
of potential improper revenue recognition have been identified. If improper revenue recognition is
not identified as a risk of material misstatement due to fraud, the auditor is required to document
the reasons supporting that conclusion.
Assessing Risks of Material Misstatement Due to Fraud
The auditor is required to assess identified fraud risks, taking into account an evaluation of the
entity's antifraud programs and internal control. In other words, before developing a response to
identified fraud risks, the auditor evaluates whether the risks are mitigated by internal controls
and other antifraud programs that address those risks. In determining whether an identified fraud
risk is mitigated, the auditor considers the risk assessment and other procedures performed to
obtain an understanding of the entity and its environment, including its internal control.
Mitigating Controls
As part of the risk assessment and other procedures performed to obtain an understanding of the
entity and its environment, the auditor evaluates whether the entity's antifraud programs and
internal controls that address identified fraud risks have been properly designed and
implemented, and whether those programs and controls mitigate the identified fraud risks. In
some cases, control deficiencies may exacerbate the risks. Because assessed risks of material
misstatement due to fraud are considered to be significant risks, the auditor is required to
understand and evaluate controls, including control activities, relevant to those risks.
Specialized Considerations for Governmental Units
For many governmental units, a major mitigating factor may be the oversight provided by the
governing body. As a general rule, there is no motivation for the governing body to materially
misstate the financial statements. Therefore, an active governing body can be a strong mitigating
factor. However, the auditor should regularly reassess the body's effectiveness, since the members
may turn over often. Another mitigating factor in many governmental units is management's
monitoring of budget-to-actual revenues and expenditures, which can reduce the risk of
improperly classified amounts.
Tests of Controls and Substantive Procedures
Ordinarily, the auditor tests controls only if it is efficient or if detection risk cannot be reduced to
an acceptable level without testing controls. Although the auditor's response to identified fraud
risks may include testing controls, tests of controls alone cannot reduce audit risk to an
appropriately low level. Regardless of the assessed risks of material misstatement, the auditor
should design and perform substantive procedures for all relevant assertions related to each
material transaction class, account balance, and disclosure. Thus, even if controls are tested, the
auditor must perform some substantive procedures, including substantive tests of details. The use
of only substantive analytical procedures is not permitted.
Controls Related to Misappropriation of Assets
Inadequate controls for preventing or detecting misappropriation of assets, including fraudulent
cash disbursements, may increase the susceptibility of assets to theft. When considering fraud risk
factors, the auditor may identify deficiencies in such controls, which create an opportunity for
misappropriation. At that point, the auditor's consideration of controls may be influenced by the
degree to which assets susceptible to misappropriation are present. If the auditor identifies a risk
of material misstatement due to misappropriation of assets, the auditor generally has already
considered risk factors related to control deficiencies that exacerbate the risk by creating an
opportunity for misappropriation of assets. If the auditor has identified such risk factors and
concluded that a risk of material misstatement of an opinion unit's financial statements related to
misappropriation exists, it is unlikely that the auditor will be able to identify antifraud programs
and controls sufficient to overcome the previous consideration of risk factors.
Note
In this situation, the auditor will include substantive procedures, including tests of
details, in her/his further audit procedures.
The overall responses to address the assessed risks of material misstatement at the
opinion unit financial statement level
The linkage of further audit procedures with the assessed risks at the relevant assertion
level
The results of the audit procedures and conclusions that are not otherwise clear
Planning for audit procedures takes place during the course of the audit, and the risk
assessment procedures may cause the auditor to change specific further audit
procedures. The auditor should document changes to the original audit plan.
3 G. Chapter Summary
This chapter discussed the classes of financial statement assertions and how to identify, assess,
and respond to risks of material misstatement at the relevant assertion level. It provided a
separate discussion of how to identify, assess, and respond to risks of material misstatement due
to fraud. It also discussed the auditor's considerations in developing the detailed audit plan.
Chapter 4 of this course provides a more detailed discussion of substantive procedures, while
Chapter 5 provides a more detailed discussion of tests of controls.
Study Question 10
How does an auditor determine relevant assertions in a financial statement audit?
By testing the effectiveness of controls over each assertion
A in a material or significant transaction class, account
balance, or disclosure
Study Question 11
Why does the auditor consider both inherent risk and control risk when considering the risk of
material misstatement at the relevant assertion level?
Study Question 12
What is the effect on further audit procedures when the auditor decides to perform only
substantive procedures?
4 A. Chapter Overview
Substantive procedures are further audit procedures performed to detect material misstatements
at the relevant assertion level. For each relevant assertion within a material account balance,
transaction class, or disclosure, the auditor determines the nature, timing, and extent of
substantive procedures necessary to obtain sufficient, appropriate audit evidence to express an
opinion on the opinion unit's financial statements. Substantive procedures consist of tests of
details and substantive analytical procedures.
The auditor is required to review accounting estimates for biases that could result in material
misstatement due to fraud. Required procedures are as follows:
A. Evaluate whether management's judgments and decisions, even if individually reasonable,
indicate possible bias that may represent a material misstatement due to fraud and, if so,
reevaluate the accounting estimates as a whole.
B. Perform a retrospective review of management's judgments and assumptions related to
significant prior-year accounting estimates.
Unusual Transactions
The auditor is required to evaluate the business rationale for significant unusual transactions.
Significant Risks
When the audit approach to significant risks consists only of substantive procedures, those
procedures should be tests of details only or a combination of tests of details and substantive
analytical procedures. The use of only substantive analytical procedures is not permitted for
significant risks.
Other Specific Requirements
Presumptively mandatory requirements for substantive procedures for particular account
balances include confirmation of accounts receivable and observation of inventory. Requirements
that do not relate to particular account balances or transaction classes include reviewing for
subsequent events and reading minutes of meetings of those charged with governance.
Documentation of Substantive Procedures
The auditor is required to document substantive procedures, including responses to fraud risks, as
follows: the nature, timing, and extent of substantive procedures; the linkage of those procedures
with the assessed risks at the relevant assertion level; and the results of the procedures, including
procedures to address the risk of management override of controls.
The auditor should consider the sufficiency and appropriateness of audit evidence to be obtained
when assessing risks and designing further audit procedures. Sufficiency is the measure of the
quantity of evidence. Appropriateness is the measure of the quality of evidence—its relevance and
reliability in providing support for the conclusions on which the auditor's opinion is based.
Reliability of Audit Evidence
The reliability of audit evidence is affected by both the nature and source of the evidence.
A. Audit evidence is more reliable when it is obtained from knowledgeable independent sources
outside the entity.
B. Audit evidence that is generated internally is more reliable when the related controls imposed
by the entity are effective.
C. Audit evidence obtained directly by the auditor is more reliable than audit evidence obtained
indirectly (such as by inquiry) or by inference.
D. Audit evidence is more reliable when it exists in documentary form, whether paper, electronic,
or other medium.
E. Audit evidence provided by original documents is more reliable than audit evidence provided
by photocopies, faxes, or electronic images.
Electronic images can include documents that have been filmed, digitized, or
otherwise transformed into an electronic form.
4 E. Tests of Details
Application to Transactions and Balances
Tests of details may be applied to transactions and to balances. Tests of transactions are tests of
the processing of individual transactions by inspecting the documents and accounting records
involved in processing, for example, inspecting supporting documents for a cash disbursement.
Tests of balances are tests applied directly to the details of balances in general ledger accounts,
such as confirming accounts receivable balances.
Note
Tests of transactions and balances are related because each class of transactions
affects a related account balance. An auditor may test the transactions that enter an
account balance, the individual items included in the ending balance, or both.
Examples of analytical procedures are the comparison of an account balance with the
balance of the prior period or with a budgeted amount; computation of the ratio of one
financial statement account balance to the balance in another account with which it
would be expected to have a predictable relationship, such as computation of the ratio
of interest expense to debt and comparison of the resulting ratio to the known interest
rate on the debt; and estimation of investment income by considering the amount
invested and the average earnings rate.
Substantive analytical procedures can be used to translate the auditor's understanding of the
entity's environment into reasonable assurance that a particular account balance is not materially
misstated. In designing analytical procedures, the auditor should consider whether the following
conditions exist: the use of substantive analytical procedures is appropriate considering the
relevant assertions; the data from which the expectation of recorded amounts or ratios is
developed is reliable; the expectation is sufficiently precise to identify the possibility of a material
misstatement at the desired level of assurance; and the amount of any difference in recorded
amounts from expected values is acceptable.
Inquiry of Management
A good first step in designing substantive analytical procedures is to ask management what
ratios, relationships, or internal or external data management finds useful, particularly in
identifying and monitoring risks. The auditor can find out the key factors that management
monitors, such as industry or trade publications or published statistics on the economy or the
industry, that help management be aware of important trends or patterns. In some cases,
management may have prepared reports with ratio analyses and comparisons the auditor can
use.
The Entity's Budget
Budget data can be a good source of auditor expectations. The auditor can use the original
budgeted amount for an account balance as her/his expectation of the recorded amount. The
auditor can then determine why actual amounts changed from the original estimate, particularly
if the entity amends the budget to conform to actual activity during the period. At a minimum, the
auditor's inquiries about budget preparation and inspection of budgets and variance reports
provide the auditor with a good working knowledge of the key factors that affect particular
account balances and the stability of plausible relationships.
In most governmental units, the budget has the force of law. Budgets often specify that
particular funds finance particular costs and establish the nature and amount of
interfund activity. The budget allocates anticipated resources. As a general rule,
expenditures that exceed budgeted amounts are legally prohibited. Either a
government's basic financial statements or RSI must include an analysis of significant
budget variations (original versus final budget and final budget versus actual results)
for the general fund and each major special revenue fund with a legally adopted
budget.
The auditor could develop a set of ratios and analyses of the entity's historical financial
information that could be used to analyze financial trends. For example, comparing revenue by
source for the past five years improves the auditor's understanding of the entity's activities and
may identify a revenue source that requires increased attention in the current audit.
Inquiry of Operating Personnel
Operating departments often can be a source of reliable data if the data are outside the influence
of accounting personnel who record the transactions and outside potential manipulation of senior
management. If these conditions are met, the auditor can use operating data to design analytical
procedures that provide persuasive audit evidence about the validity and completeness of, for
example, service revenue and receivables. Total service revenue can be computed by multiplying
the quantity of service provided during the period by the average rate. Engineering or production
reports may be available that provide reliable information on quantity of service provided.
Circumstances Favorable to Analytical Procedures
Many governmental units are well-suited to the application of analytical procedures, particularly
in the areas of governmental fund revenue, proprietary fund service revenue, payroll and
employee benefits, and debt service expenditures.
Likely Cause of Potential Misstatements
Analytical procedures tend to be more useful as the primary substantive procedure when the risk
of misstatement has been assessed as being primarily from error. By nature, errors are as likely to
be understatements as overstatements, and a substantive analytical procedure is effective for
testing for both. For example, a predictive test of revenue developed from operating data can be
effective for detecting either overstatement or understatement of recorded revenue. Tests of
details tend to be directed to either overstatement or understatement.
The availability of reliable data to develop expectations is another circumstance that favors the
use of analytical procedures. As a general rule, data obtained from an independent outside source
(such as a property tax valuator located in another governmental unit) are better than internally
generated data. Nonfinancial data from an independent operating department tend to be more
reliable than data under the influence and control of the accounting department when the entity
has effective controls over collection of the operating data. Data from the accounting department
are more reliable when controls over the accounting system are effective. Audited data (such as
that audited by objective and competent internal auditors) are more reliable than unaudited data.
Precision of the Expectation
Another consideration is whether the expectation can be developed with reasonable precision.
Precision is the term that describes the degree of accuracy of the auditor's expectation to the
actual amount. When the auditor combines the evidence from substantive analytical procedures
with evidence from tests of details, a less precise expectation may be appropriate. A more precise
expectation may be necessary when the substantive analytical procedure is the only procedure
planned to address a particular risk of material misstatement.
A. Other things remaining equal, the larger the recorded amount, the more difficult it is to
develop a precise expectation. The reason is that a small percentage of a very large recorded
amount can be material to the financial statements of an opinion unit. The auditor may need
to break down the recorded amount into more predictable components, since expectations
developed at a more detailed level have a greater chance of detecting a material
misstatement of a given amount. For example, expectations developed concerning monthly
amounts are generally more precise than annual amounts. Comparisons by location or
department are generally more precise than entity-wide comparisons. An account balance
can sometimes be separated into different categories of transactions.
B. Analytical procedures can be effective in testing payroll. The auditor can compare payroll
expenditures to the prior-period actual amount and current budget (by department or
function and in total) and relate it to the number of personnel (by department or function and
in total).
C. Analytical procedures can be effective in testing employee benefits. The auditor can compare
vacation and sick leave amounts to the prior-period actual amount and the current budget
and can compare the ratio of amounts to gross pay with the ratio for the prior period. The
relation of these and other employee benefit expenditures, such as pension expenditures, to
the number of covered employees can be compared to the same relationship in the prior
period.
D. To apply analytical procedures to debt service expenditures or expense, the auditor may be
able to obtain persuasive evidence about the reasonableness of interest expenditures by
comparing the amount to the computation of average rate times average debt outstanding.
Normally, the auditor can review the entity's schedule of debt service for reasonableness in
conjunction with the analytically tested interest cost.
Examples of accounting estimates that are relevant to governmental units include the following:
investments with no market-established fair value or with permanent impairments, derivative
transactions, uncollectible taxes receivable, useful lives of capital assets that are being
depreciated, obligations for compensated absences, claims and judgments, termination benefits,
landfill closure and postclosure care costs, pension benefits, postemployment benefits other than
pensions, and pollution remediation obligations.
How to Use Analytical Procedures on Accounting Estimates
The auditor identifies the need for accounting estimates using knowledge of the government and
the results of risk assessment procedures. The auditor generally inquires of management and
accounting personnel responsible for identified estimates to obtain an understanding of the
methods and procedures used to make the estimates. The auditor can use analytical procedures
to evaluate the reasonableness of an estimate by developing an expectation of what the estimate
should be (generally a range of values) and comparing the expectation to the reported estimate.
Note
For example, the auditor may estimate the uncollectible accounts of a utility to be
between $20,000 and $24,000. If the entity has estimated the uncollectible accounts
at $15,000, the auditor would consider the entity's estimate to be outside the range of
reasonableness.
B. The risk of material misstatement of the remaining balance is related to the risk of material
misstatement of the entire account. Those risks are not necessarily the same because the
auditor may be able to separately identify items that are prone to misstatement and perform
audit procedures on them individually. As a result, the risk of material misstatement of the
remaining balance may be lower than the risk for the account. In this situation, the auditor
may decide to scan the remaining balance for unusual items and test them.
C. If the remaining balance is to be tested, the auditor may be able to use analytical procedures
or consider the contribution of other substantive procedures. If not, the auditor may decide to
use audit sampling on the items in the remaining balance or expand the audit procedures
performed on individually significant items.
Requirements for All Audit Samples
An auditor using nonstatistical sampling is not required to compute sample size using statistical
theory. Nonetheless, the sample sizes of statistical and nonstatistical samples are expected to be
comparable when the same sampling parameters are used. Given the same planning decisions
concerning tolerable misstatement, desired level of assurance, and expected misstatement,
nonstatistical and statistical sample sizes are expected to be about the same. Regardless of the
sampling approach used, the auditor should properly plan, perform, and evaluate the results of
the sample.
Basic Requirements
Certain basic requirements relate to all audit samples, as follows:
A. The auditor defines the population and sampling unit. The auditor should consider the
purpose of the procedure and the characteristics of the population being sampled. The
auditor should relate the account balance, transaction class, or portion of the balance or class
to the objective of the audit procedure.
B. The auditor selects items that can be expected to be representative of the population.
C. The auditor performs appropriate audit procedures on each sample item and investigates the
nature and cause of any deviations or misstatements.
D. The auditor projects sample results to the population, considers sampling risk, and evaluates
whether the use of sampling provided a reasonable basis for drawing conclusions about the
population tested.
Defining the Population and Sampling Unit
The population is usually the account balance or transaction class, excluding those items selected
for testing because of individual significance. Sampling results can be projected only to the
population from which the sample is drawn. The use of the wrong population for a sampling
application can lead to invalid conclusions. The sampling units are the individual items within the
population that are subjected to audit procedures. Sampling units may be physical units (such as
checks listed on deposit slips, credit entries on bank statements, invoices, or accounts receivable)
or monetary units. When using information provided by the audited entity, the auditor should
obtain evidence about the completeness of the population from which the sample is drawn.
For example, if the auditor is sampling accounts payable for confirmation from the
accounts payable subsidiary ledger and plans to project the results to the accounts
payable balance, the auditor can review the reconciliation of the subsidiary ledger to
the general ledger to make sure the population from which the accounts are being
selected is complete.
Representative Selection
All items in the population should have an opportunity to be selected. Methods commonly used
include the following:
A. Simple random selection—Regardless of whether the auditor uses statistical or nonstatistical
sampling, simple random selection gives each item in the population an equal chance of
being selected.
B. Systematic selection—This method can be used with statistical or nonstatistical sampling to
give every item in the population an equal chance of being selected if a random start is used.
It does not produce an equal chance for all combinations of sampling units to be selected
unless numerous random starts are made. The population is divided by the number of sample
items to determine the sampling interval to use.
C. Haphazard selection—This method may not be used for statistical samples because it is not
considered a random selection technique. Under this method, sample items are selected in no
specific pattern without bias for or against any items in the population. For example, the
auditor could select a sample of items from the paid invoices for the year if there were no bias
for or against large ones.
Qualitative Evaluation of the Sample
The auditor also qualitatively evaluates whether the sample seems representative of the
population and is likely to provide a reasonable basis for drawing conclusions about the
population. For example, if the auditor is selecting a sample of expenditure checks with a sample
size of 40, a sample that includes 15 employee travel reimbursement checks may not be
considered representative of the population subjected to the audit procedure or likely to provide a
reasonable basis for drawing conclusions about operating expenditures. If the sample does not
seem representative, it should be selected again.
Performing the Sampling Application
The auditor is required to perform procedures on each item selected or on a replacement item, if
necessary. Replacement items should be used if the test is not applicable for a selected item, such
as when a source document has been legitimately voided. The inability to apply the test or
suitable alternative procedures to a selected item should be considered an error. For example, an
error would be counted when the auditor is unable to test a source document that was used but
cannot be located.
A. The auditor is required to investigate the nature and cause of any misstatements that are
identified when performing the sampling application. Thus, the auditor needs a clear
definition of what constitutes a misstatement for purposes of the test.
B. The auditor's consideration of misstatements also includes evaluating the possible effect of
those items on the objectives of the test and on other aspects of the audit. For example, if all
the misstatements have a common attribute—such as the same type of transaction, time
period, location, activity, or program—the auditor may identify all items in the population that
possess that attribute and extend procedures on those items. The auditor also considers
whether the misstatements may be intentional, indicating the possibility of fraud.
Evaluating the Sample Results
The auditor should evaluate whether the sample has provided a reasonable basis for drawing
conclusions about the population being tested. This evaluation includes an overall evaluation of
the sample results and whether additional procedures are necessary, such as asking entity
management to investigate and make necessary corrections or changing the nature, timing, or
extent of the auditor's procedures.
4 H. Chapter Summary
This chapter discussed issues related to substantive testing in a financial statement audit. It
described the substantive procedures that are required in every audit. This chapter discussed ways
to determine which substantive procedures to perform, as well as the application of tests of
details and substantive analytical procedures to transactions and account balances, including
tests of details of compliance with laws, regulations, contracts, or grant agreements. This chapter
concluded with a discussion of how the auditor can use audit sampling in tests of details.
Study Question 13
Which of the following statements is true regarding substantive procedures that are required in
every audit?
A The specific procedures that need to be performed depend
on the auditor's judgment about the sufficiency and
appropriateness of audit evidence.
The procedures are performed only on relevant assertions
B related to each material account balance, transaction class,
and disclosure with a high assessed risk of material
misstatement.
The auditor's reconciliation or agreement of the financial
C statements to the underlying accounting records excludes
the notes to the financial statements.
The auditor need not address the risk of management
D override of controls when control risk is assessed at a low
level.
Study Question 14
Why is the auditor required to perform a retrospective review of management's judgments and
assumptions related to significant prior-year accounting estimates?
Study Question 15
Why is transaction testing relatively more important than account balance testing in a
governmental audit?
Study Question 17
In evaluating the results of a substantive analytical procedure, why is a significant difference not
necessarily a reliable estimate of the amount of misstatement in the account balance?
5 A. Chapter Overview
This chapter discusses the auditor's tests of the operating effectiveness of controls. Topics covered
include the nature of tests of controls, including the following: inquiry and observation, inspection
of documents, walkthroughs, review of reconciliations, and reperformance of control activities. It
also discusses the timing and extent of tests of controls, including audit sampling, and how to
evaluate the audit evidence obtained to determine whether the evidence supports a reduced
control risk assessment.
Entity-Level Controls
The auditor also will find it efficient and effective to consider entity-level controls before testing
control activities. If the controls at the top level are weak, it creates an environment that is not
conducive to effective controls, and even well-designed and implemented control activities may
not be effective. In that case, testing control activities may not be productive. On the other hand,
some controls at the top may operate at a direct and detailed enough level to reduce the risk of
material misstatement at the relevant assertion level. In that case, it may be more efficient to test
the entity-level controls instead of the control activities, or to use the test of entity-level controls
to reduce the extent of testing control activities.
Controls That Are Improperly Designed or Not Implemented
The auditor will gain no benefit from testing the operating effectiveness of a control that is
inappropriately designed to prevent or detect a material misstatement in a relevant assertion.
Likewise, the auditor will gain no benefit from testing a control that has not been properly
implemented.
Note
An auditor may conclude that the documentation of controls in the entity's accounting
procedures manual indicates that controls are effectively designed to address risks of
material misstatement and satisfy relevant control objectives. When determining
whether the controls are implemented by performing risk assessment procedures, the
auditor may find that the controls, as designed, are not properly communicated or
followed. In this situation, the auditor would not test the controls.
Controls Relevant to Identified Risks for Relevant Assertions
Tests of controls are directed to those controls that are relevant to the risk that an assertion is
misstated. In many audits, the auditor is able to test only one or two selected controls relating to
the risk of concern for a specific assertion for an account. The auditor does not always have to test
all the control activities relating to an assertion to assess control risk at less than high.
Key Controls
The auditor normally focuses on the controls that are key to preventing or detecting material
misstatements in the relevant assertions. Key controls often involve the actions of supervisors and
managers—and may include documentation of supervision, budgeting, reporting, review, and so
forth—that can be tested by inquiry, observation, and inspection of reports and documents. It is
easier and more efficient to test such controls, such as by reviewing the entity's investigation and
variance reports, than it is to perform tests of transactions. Also, the tests may provide more
assurance about the controls than tests of transactions will. For example, management may
prepare budgets, periodically compare them to actual results, and investigate significant
variations in a timely manner. Reports of the variations, investigative actions, explanations of the
variations resulting from the investigations, and corrective actions taken may provide evidence of
the effective operation of the control. Such a control may be a key control with respect to relevant
assertions for revenues and expenditures or expenses.
Walkthroughs
Walkthroughs are commonly used in gaining an understanding or a further understanding of
controls. A walkthrough can also serve as a test of controls and, in some cases, along with other
tests of controls, can provide a valid basis for assessing control risk at less than high. However,
this approach by itself generally does not provide a sufficient basis for assessing control risk as
low.
Reviews of Reconciliations and Similar Bookkeeping Activities
Reviews of reconciliations and other similar bookkeeping activities can be efficient tests of
controls. The auditor's approach generally consists of the following: inspecting evidence that the
activity was performed throughout the period; inspecting examples of the activity having been
performed; and investigating the resolution of significant misstatements or exceptions disclosed
by the activity, or investigating a few if none are significant.
Introduction
The objective of performing tests of controls is to obtain sufficient appropriate audit evidence
about their operating effectiveness to support the auditor's assessment of control risk. Testing of
controls includes obtaining audit evidence about how controls were applied at relevant times
during the audit period; the consistency of application; and who applied the controls and their
means of application, including whether the person performing them has the necessary authority
and competence.
Timing of Tests of Controls
The timing of tests of controls depends on the auditor's objective and the period of time for which
reliance is needed about the operating effectiveness of controls. When a control is tested at a
point in time, the audit evidence can only support a conclusion about the operating effectiveness
at that point in time. When a control is tested over a period of time, the audit evidence can be
used to form a conclusion about operating effectiveness over that period. Other considerations
related to the timing of tests of controls include whether to perform the test at an interim date or
at period end and whether to use audit evidence about the operating effectiveness of controls
obtained in previous audits.
Note
In some cases, the control need only be tested at a point in time, such as controls over
the annual physical inventory of supplies. Other controls may operate throughout the
audit period, requiring the auditor to collect evidence about the operating effectiveness
for the entire period. For an automated control, the auditor may be able to test the
operation of the control at a point in time and collect evidence about its continued
operation through tests of general IT controls.
In designing tests of controls, the auditor should obtain more persuasive audit evidence for a
greater degree of reliance on the effectiveness of a control. When more persuasive audit evidence
is needed, it may be appropriate for the auditor to increase the extent of testing the control in
question. In addition to the degree of reliance on controls, other factors the auditor may consider
would include the following: the frequency with which the control is performed during the period;
the length of time that the auditor is relying on the control's effectiveness; the relevance and
reliability of the audit evidence about operating effectiveness of the control at the relevant
assertion level; the extent to which audit evidence is obtained from tests of other controls related
to the relevant assertion; and the expected deviation rate of the operation of the control.
5 F. Testing IT Controls
How IT Affects Internal Control
Some entities have simple computer operations. They use personal computers, which may be
linked in a local area network, and purchased software packages. Users often do not have
specialized computer training and cannot write or edit computer programs. Other entities use
sophisticated IT systems to conduct operations and may have internal control that depends
heavily on IT. These entities often have highly integrated IT systems that share data and are used
to support all aspects of financial operations and reporting.
Effect of the IT System on Internal Control
The effect of IT on the entity's internal control is related more to the nature and complexity of the
system than to the entity's size. An entity with a simple IT system may use primarily paper-based
manual procedures and manual controls, such as approvals, reconciliations, reviews, and follow-
up of exceptions. An entity with a complex IT system may use automated procedures to initiate,
authorize, record, process, and report transactions. Records may be in electronic format rather
than on paper. Controls in that environment generally consist of a combination of manual and
automated controls programmed into computer applications.
Automated controls include processes such as edit and validation routines embedded
in computer programs.
In addition, the nature of the manual controls may be different. Manuals controls may be
independent of the system, may use information produced by the system, or may be limited to
monitoring the effective functioning of automated controls and handling exceptions.
Risks Posed by IT Systems
IT systems pose the following risks to internal control, the extent and nature of which depend on
the nature and characteristics of the entity's system:
A. Reliance on systems or programs that are incorrectly processing data, processing inaccurate
data, or both
B. Unauthorized access to data resulting in destruction or improper changes to data
C. Inappropriate access by IT personnel, which negates segregation of duties
D. Unauthorized changes to data in master files, systems, or programs
E. Failure to make necessary changes to systems or programs
F. Inappropriate manual intervention
G. Loss or destruction of data or inability to access data as required
Note
For example, in a system in which users can access a common database of information
that affects financial reporting, a lack of control over a single user entry point could
compromise the security of the entire database and result in improper changes to or
destruction of data.
Types of IT Controls
The auditor should obtain an understanding of how the entity has responded to risks arising from
IT. These responses generally involve two types of computer controls: application controls and
general controls.
Application Controls
Application controls apply to the processing of individual transaction applications, such as payroll
and purchases. They relate to the use of IT to initiate, authorize, record, process, and report
transactions or other financial data. Application controls help ensure that transactions occurred,
are authorized, and are completely and accurately recorded and processed. Examples include edit
checks of input data and numerical sequence checks.
A. Application controls performed by IT are referred to as automated controls. Application
controls performed by individuals are referred to as user controls. User controls can include
checks of the completeness and accuracy of computer output against source documents or
other input and manual follow-up of exception reports. For example, a computerized payroll
system may calculate all debit and credit amounts from transaction data and a master file.
The user control would be to manually check the accuracy of the output produced by the
computer by recomputing amounts such as gross pay. User controls also include certain
reconciliation and processing controls over computer-generated data, such as reconciling
subsidiary ledgers to control accounts, and accounting for the sequence of source documents.
B. The effectiveness of user controls, such as reviews of computer-produced exception reports,
may depend on the accuracy of the review, as well as the accuracy of the information in the
report. If the auditor tests the manual follow-up activities, s/he should also determine
whether it is necessary to test the accuracy of the computer-produced reports.
General Controls
General controls are policies and procedures that relate to many applications. They are directed at
ensuring the continued proper operation of IT systems and thus support the effective functioning
of application controls. General controls include controls over the following: data center and
network operations; access security; program change; system software acquisition, change, and
maintenance; and application system acquisition, development, and maintenance.
The auditor considers general controls in relation to their effect on applications and data
that become part of the financial statements.
The auditor first focuses on identifying applications that are significant to the financial
statements. Then the auditor assesses whether there are general controls that, if
ineffective, would permit application controls to operate improperly and allow
misstatements to occur and not be detected.
The auditor can then perform tests of those general controls that are important to the
effectiveness of application controls on which the auditor plans to rely.
The auditor should document the following matters related to tests of controls: the nature, timing,
and extent of tests of controls; the linkage of tests of controls with the control risk assessment at
the relevant assertion level; the results of the tests of controls; the conclusions reached when not
otherwise clear; and the conclusions reached with respect to relying on audit evidence about the
operating effectiveness of controls obtained in a previous audit.
The AICPA Audit Sampling Guide shows how the auditor can choose sample sizes for
large and small populations.
The auditor may combine tests of controls with tests of compliance with laws, regulations,
contracts, or grant agreements. The auditor selects a sample of transactions and inspects
supporting documentation to determine indications of the performance of controls and
indications of compliance with applicable requirements. Sometimes, the auditor may be able to
combine these tests with tests of details; in this case, the auditor also inspects supporting
documentation to determine that transactions were recorded in the correct amount, account, and
period. In either case, the sample size should be the largest sample size necessary to satisfy any of
the purposes of the test.
5 K. Chapter Summary
This chapter discussed how the auditor decides when to test controls and, after deciding to test
controls, which ones to test. It covered how the auditor performs tests of controls, including IT
controls, and how the auditor evaluates the tests of controls and assesses control risk. This
chapter discussed how the auditor can use audit sampling in tests of controls. It also described
how the auditor can test controls and compliance in the same audit procedure.
Study Question 18
Aside from audit efficiency considerations, under what circumstances is it not necessary for an
auditor to develop an expectation of the operating effectiveness of controls or consider tests of
controls?
Study Question 19
Which of the following statements is true regarding tests of controls that involve tests of
transactions?
They ordinarily do not permit a substantial modification to
A substantive procedures when the volume of transactions is
relatively high.
Study Question 20
Why may the auditor find it more efficient to test controls involving the actions of supervisors and
managers than testing transactions?
Controls involving the actions of supervisors and managers
A can be tested by inquiry, observation, and inspection of
reports and documents.
Controls involving the actions of supervisors and managers
B can be used to override controls over transaction
processing.
Study Question 21
Which of the following statements is true regarding the practice of rotating tests of controls over a
three-year cycle?
When the auditor plans to use evidence from a previous
A audit about the operating effectiveness of controls, the
auditor should determine whether changes will be made in
the subsequent period.
The auditor obtains sufficient appropriate evidence about
B whether changes have been made since the previous audit
by inquiry only.
If changes have been made since the previous audit that
C affect the continuing relevance of the audit evidence in a
previous audit, the auditor should test the controls every
two years.
Rotating tests of controls is not permitted if the auditor
D plans to rely on controls that mitigate a fraud risk or other
significant risk.
Study Question 22
Which of the following best describes the auditor's evaluation of the results of a test of controls
using audit sampling?
Upon successful completion of this chapter, the user should be able to:
recognize the process of developing audit programs and detailed audit plans for various audit
areas.
6 A. Chapter Overview
The auditor develops audit programs for individual financial statement audit areas to correspond
with her/his risk assessments and decisions about the audit approach at the assertion level. This
chapter discusses how to develop the necessary audit programs.
6 B. Cash, Investments, and Derivative
Instruments
Introduction
Cash includes currency and checks on hand and demand deposits, including deposits in accounts
and pools that have the characteristics of demand deposit accounts. Deposits include the
following: checking accounts and demand deposits; savings and time accounts; negotiable orders
of withdrawal accounts; nonnegotiable certificates of deposit; money market accounts at financial
institutions; and bank investment contracts.
Relevant Assertions for Cash
Relevant assertions for each opinion unit for cash are as follows:
A. Existence or occurrence. This deals with whether cash exists at a given date and whether
recorded transactions have occurred.
B. Completeness. All cash transactions have been recorded. Cash balances reflect all cash and
cash items on hand, in transit, or on deposit with third parties. All required disclosures have
been included in the financial statements.
C. Rights or obligations. Cash is owned by the entity, and any restrictions on the availability of
funds are identified and properly disclosed.
D. Accuracy or classification. Cash transactions have been recorded properly as to account and
amount. Cash balances are properly classified in the financial statements. Disclosures are
accurate and clearly expressed.
E. Cutoff. Cash balances reflect a proper cutoff of receipts and disbursements.
Substantive Procedures for Cash
Substantive procedures for cash focus primarily on obtaining assurance about the reliability of the
entity's bank reconciliation, which provides audit evidence about existence or occurrence,
completeness, accuracy or classification, and cutoff. Although auditing standards do not require
cash confirmations, auditors often confirm the balance of selected cash accounts as the primary
test of the existence assertion, as well as to obtain evidence about rights or obligations. Other
substantive procedures for cash consist of analytical procedures, such as scanning bank
reconciliations for reasonableness and scanning cash receipts and disbursements for significant or
unusual transactions near year-end, which provide assurance about existence or occurrence,
rights or obligations, completeness, and cutoff. Auditors may also review loan and debt
agreements, governing board minutes, and other documentation; make inquiries of management;
and perform other auditing procedures to obtain evidence about matters that include the
following:
A. Guarantees, endorsements, and/or letters of credit, including guarantee arrangements for
related parties
B. Whether amounts are appropriately classified as cash, cash equivalents, or other short-term
investments
C. Whether overdrawn cash balances are correctly reported as liabilities instead of negative cash
balances
D. Whether the allocation of pooled cash balances and transactions is reasonable, accurate, in
accordance with GAAP, and properly classified and disclosed in the financial statements
E. Whether the entity is in compliance, during the year and at year-end, with requirements that
could have a direct and material effect on the determination of material amounts and
disclosures in the financial statements (such as those relating to legal or contractual
provisions that require separate bank accounts for certain amounts; cash restrictions,
including withdrawal restrictions and minimum balance requirements; designations of
amounts for special purposes; and types of deposits authorized by legal and contractual
provisions and, if applicable, any violations of those provisions during the period)
F. Whether deposits are appropriately collateralized and, if applicable, the portion of bank
balances for which there is custodial credit risk at year-end
G. Whether cash disclosures are in accordance with GAAP and include all appropriate balances,
including balances held by fiduciary funds
Electronic Bank Confirmations
Some financial institutions only respond to electronic confirmation requests submitted via a
designated third-party provider. An electronic form represents audit evidence. However, electronic
confirmations have risks related to reliability because the response may not be from an authentic
source, the respondent may not be knowledgeable about the information, and the integrity of the
transmission may be compromised. The auditor may also use confirmations for arrangements
such as minimum balance requirements related to debt agreements. In addition, the auditor may
confirm authorized check signers.
Canceled Checks
Auditors often use canceled checks when testing bank reconciliations or examining support for
transactions in other audit areas. However, many banks no longer return canceled checks. If the
auditor cannot obtain canceled checks, check images, or substitute checks, the following
alternative procedures may provide satisfactory audit evidence about disbursements:
A. Some banks list the payee on the bank statement and the check number, amount, and date
paid, which provide evidence of the actual payee.
B. Details of disbursements can be confirmed with the payee if neither the check nor a
sufficiently detailed bank statement is available, and the auditor wants independent evidence.
C. The auditor may be able to rely on a combination of information from the bank statement
(check number, amount, and date paid), the entity's internally generated information about
the disbursement, and the entity's control procedures related to disbursements, such as the
following: the use of prenumbered checks and numerical control of checks used; recording of
check numbers in the disbursements journal; designation of authorized check signers;
restricted access to checks and signature plates; and approval of payments, signing of checks,
and timely preparation of bank reconciliations by persons other than the person who prepares
checks and posts disbursements to the accounts.
Pooled Cash
Governmental units typically pool the cash accounts of several funds. Each fund, activity, and
component unit reports its own cash, including its amount of pooled cash. If one fund overdraws
its share of the pooled cash account, the fund should report an interfund liability to the fund that
management determines “loaned” the cash to the overdrawn fund. If a pooled cash account is
overdrawn in total, the balance should be reported as a liability.
Restricted Cash
Some cash must be classified as restricted because, for example, its use is limited by legal or
contractual arrangements, such as debt covenants. In this situation, the auditor's procedures
could include evaluating the adequacy of the entity's compliance with the restrictions and the
reporting of the restrictions.
For example, if the auditor finds that assets restricted for debt retirement include
amounts due from other funds, the implication is that the underlying assets have not
been appropriately restricted. In this situation, the entity is not in compliance with the
requirement to restrict the assets.
Warrants
A warrant is an order drawn by a legislative body or a government official that directs the
treasurer to pay a specified amount to a specified person or the bearer. A warrant that is payable
on demand is the same as a bank check and reduces cash. A warrant may also be payable only
from certain revenues if and when those revenues are received. In this case, it is recorded as a
warrant payable.
Deposit Collateral and Insurance
State statutes often require that cash deposits in excess of deposit insurance be collateralized by
the depository institution. In this situation, the depository institution pledges specified types of
securities as collateral. The auditor should understand the current collateralization laws and
determine the existence and value of collateral throughout the year and at year-end. The auditor
may obtain from the finance director's records a schedule of collateral pledged to secure deposits,
including the name of the depository, a description of the collateral, and the amount. In
determining the extent of collateralization, the auditor should use the market values of the
securities used. The auditor may examine the collateral pledged to secure deposits or confirm the
collateral with banks and agencies holding the pledged securities, and determine if the collateral
complies with legal requirements.
Investments and Derivative Instruments
Governmental units often own a variety of investments, including derivative instruments. Some
derivative instruments are considered to be hedging derivative instruments instead of investment
derivative instruments. Governmental units are generally required to include changes in the fair
value of investments as an element of investment income. However, changes in the fair value of
investments held pursuant to irrevocable split-interest agreements are required to be recognized
as changes in a deferred inflow of resources related to the investment. Realized gains and losses
should not be reported separately from the changes in the fair value of investments on the face of
the financial statements other than by external investment pools. Realized gains and losses may
be disclosed in the notes to the financial statements.
Relevant Assertions for Investments
Relevant assertions of each opinion unit for investments and investment-related transactions,
such as securities lending transactions and reverse repurchase agreements, are as follows:
A. Existence or occurrence. Investments reflected in the financial statements exist, and
investment-related transactions occurred and pertain to the entity.
B. Completeness. Investments reflected in the accounts represent a complete list of all
investments. All investment-related income (including net appreciation or depreciation in fair
value) and expenditures or expenses have been reported. All required disclosures have been
included in the financial statements.
C. Rights or obligations. Investments and investment-related transactions are initiated in
accordance with the established investment policies and comply with laws, regulations, and
plan or trust provisions, if applicable. All investments are owned by the entity, and are free of
liens, pledges, and other trust provisions, if applicable; if not free from security interest, the
investments are identified and properly disclosed.
D. Valuation or allocation. Investments are properly valued in accordance with GAAP.
Investments and investment-related transactions are disclosed at appropriate amounts.
E. Accuracy or classification. Investments are properly identified and classified. Investments and
investment-related income (including net appreciation or depreciation in fair value) and
expenditures or expenses are accurately reported. Disclosures are accurate and clearly
expressed.
F. Cutoff. Investments and investment-related income and expenditures or expenses are
recorded in the proper accounting period.
Substantive Procedures for Investments
Substantive procedures for investments and investment-related transactions generally consist of
a combination of inquiry and analytical procedures. If balances are material, procedures may also
include the following: reviewing state and local laws and regulations; reviewing the entity's
investment policy, debt agreements, governing board minutes, and other supporting documents;
vouching activity during the year and comparing market values to quoted prices; confirmation;
and inspection of documents. These procedures provide evidence about the following:
A. Whether the requirements of laws and regulations, debt issuance documents, contribution
and grant agreements, and other similar documents are appropriately considered in the
entity's written investment policy
B. Whether the investment policy and changes to it have been authorized by the governing body
C. Whether investments and investment-related transactions, during the year and at year-end,
are types authorized by the entity's investment policy and legal and contractual provisions
and, if applicable, actions have been taken to address significant violations of those provisions
during the period
D. Whether the entity is in compliance, during the year and at year-end, with other compliance
requirements that could have a direct effect on the determination of material amounts and
disclosures in the financial statements
E. Whether procedures for establishing and complying with investment risk policies are
adequate
F. Whether policies for valuing investments are in conformity with GAAP and appropriately
applied
G. Whether the entity has considered the need to record impairment losses on investments using
cost-based measures
H. Whether the allocation of internal investment pool balances and transactions is reasonable,
accurate, in conformity with GAAP, and properly classified and disclosed in the financial
statements
I. Whether disclosures for investment and investment-related transactions are in accordance
with GAAP and include all appropriate balances, including balances held by fiduciary funds
Relevant Assertions for Derivative Instruments
The relevant assertions for each opinion unit for derivative instruments are as follows:
A. Existence or occurrence. Reported derivative instruments represent current valid investment,
embedded investment, hedging, or embedded hedging derivative instruments. Reported
deferred outflows of resources and deferred inflows of resources represent changes in
hedging or hybrid hedging derivative instruments for current valid hedging derivative
arrangements. Reported derivative transactions occurred and pertain to the entity.
B. Completeness. All derivatives-related income related to the period and all derivative
instrument balances, deferred outflows of resources, and deferred inflows of resources have
been reported. All required disclosures have been included in the financial statements.
C. Rights or obligations. Conditions and agreements that affect the entity's rights and
obligations concerning investment, hedging, and embedded derivative instruments have been
properly reflected in the financial statements.
D. Valuation or allocation. Derivative instruments, deferred outflows of resources, and deferred
inflows of resources are properly valued in accordance with GAAP. Derivative instruments,
deferred outflows of resources, deferred inflows of resources, and derivatives-related income
are disclosed at appropriate amounts.
E. Accuracy or classification. Derivative instruments and derivatives-related income, including
amounts relating to deferred outflows of resources and deferred inflows of resources, are
properly identified and classified. Derivative instruments, deferred outflows of resources,
deferred inflows of resources, and derivatives-related income are accurately reported.
Disclosures are accurate and clearly expressed.
F. Cutoff. Derivative instruments and derivatives-related income, including reversals of deferred
inflows of resources and deferred outflows of resources, are recorded in the proper accounting
period.
Substantive Procedures for Derivative Instruments
As a general rule, audit procedures for derivative instruments are the same as those for
investments. The auditor may need special skill or knowledge to audit derivative instruments
because the risk of material misstatement may be high due to complex accounting requirements.
The auditor may need to perform additional risk assessment procedures or further audit
procedures relating to fair value estimates.
Basic Audit Procedures for Investments and Derivative Instruments
Routine procedures used to audit investments and derivative instruments include confirmation,
physical inspection, and vouching. When auditing fair value measurements, the auditor should
perform risk assessment procedures to identify and assess the risks of material misstatement
arising from estimates (including fair value estimates) and perform further audit procedures in
response to those risks. The auditor may be able to respond to the assessed risks of material
misstatement by testing how management made the estimate, including an evaluation of the
appropriateness of the method, the reasonableness of the assumptions, and the reliability of the
underlying data.
A. Some fair values are readily determinable from quoted market prices. When there is no
observable market price or when items have characteristics requiring an estimate to be made,
a valuation method acceptable under GAAP should be used. The auditor can test the entity's
valuation, including management's assumptions (or those of a specialist), the valuation
model, and the underlying data; develop an independent estimate and compare it to the
entity's valuation; or review subsequent events and transactions to corroborate
management's valuation.
B. The accuracy, completeness, and relevance of the underlying data should be tested. The
auditor should ensure that the resulting valuation properly reflects both the assumptions and
the data. Tests can include verification of the data source, recomputation, and review of
information for internal consistency.
C. When auditing the valuation of investments in debt and equity securities measured at fair
value, the auditor is required to do the following:
1. Determine whether GAAP specifies a method for measuring fair value.
2. If so, evaluate whether fair value is measured in accordance with that method.
3. For fair value based on a valuation model, test management's determination of fair value
or, if applicable, understand the method used by a broker-dealer or other third party to
determine fair value and consider the guidance for use of management's specialist.
4. Evaluate management's conclusion about the need for an impairment loss and test any
impairment adjustment, including compliance with GAAP.
D. For derivative instruments, the auditor is also required to test the unrealized appreciation or
depreciation in fair value that is recognized or disclosed because of the ineffectiveness of a
hedge, including an evaluation of compliance with GAAP.
Compliance Requirements
Revenues of governmental units are often subject to compliance requirements such as the
following: eligibility requirements, purpose restrictions, or other requirements imposed by
intergovernmental grants or private donations; legal limits on the ability to tax citizens, such as
maximum millage rates, budgetary processes that require public notification and hearings, or
restrictions that limit spending authority; requirements to obtain voter approval to issue debt and
levy taxes to repay that debt; requirements to obtain voter approval to increase tax rates or
restrictions on the use of the additional taxes; and special assessments on a specific group of
property owners that can only be used to benefit those property owners.
Relevant Assertions
Relevant assertions of each opinion unit for revenues and receivables are described below.
Existence or Occurrence
Reported revenues represent amounts relating to the period and pertain to the entity. Reported
receivables represent amounts uncollected as of the end of the period. Reported revenue-related
liabilities and deferred outflows of resources represent amounts received or receivable that have
not met the criteria for revenue recognition. Reported revenue-related liabilities and deferred
inflows of resources are properly classified. Disclosed transactions have occurred and pertain to
the entity.
Completeness
All revenues related to the period and all receivables, revenue-related liabilities, and deferred
outflows of resources, and deferred inflows of resources as of the end of the period are reported.
All required disclosures are included in the financial statements.
Rights or Obligations
Conditions and agreements that affect the entity's receivables, revenue-related liabilities, and
deferred inflows of resources as of the end of the period are properly reflected in the financial
statements.
Valuation or Allocation
Receivables, revenue-related receivables, and deferred inflows of resources are reported at the
proper amounts. Information pertaining to revenues, receivables, revenue-related liabilities, and
deferred inflows of resources is disclosed fairly and at appropriate amounts.
Accuracy or Classification
Amounts and other data relating to revenue transactions and events are recorded appropriately
and in the proper accounts. The financial statements properly classify, describe, and disclose
revenues, receivables, revenue-related liabilities, and deferred inflows of resources, including
classification in the proper fund and activity. Financial and other information is appropriately
presented and described and is disclosed fairly and at appropriate amounts in accordance with
GAAP. Disclosures are accurate and clearly expressed.
Cutoff
Revenue transactions and events are recorded in the correct accounting period.
Substantive Procedures
The auditor obtains audit evidence for revenues, receivables, revenue-related liabilities, and
deferred inflows of resources primarily through reviewing statutes and regulations; reviewing
governing board minutes and other supporting documents; and using confirmation, inquiry, and
analytical procedures.
Audit procedures at the account balance level for receivables can consist primarily of analytical
procedures with a few tests of details. For example, the auditor can compare the balance in
receivables with the balance for prior years or other auditor-developed expectations and
investigate unusual variations. Compute the ratio of the receivables balance to related revenue for
the current and prior years and investigate any unexpected results. Review a reconciliation of the
aged receivables balance to the general ledger account balance, document an explanation for any
unusual reconciling items, and consider whether it is necessary to review documentation
supporting the reconciling items and explanations. Scan the trial balance for unusual items, such
as large credit balances, unusual names, receivables from known related parties; propose
reclassifications, if necessary. Confirm selected receivables. Test the adequacy of the allowance for
uncollectible accounts by inquiring about the entity's process for estimating the allowance,
perform analytical procedures, and investigate any unusual results. Compare revenues for the last
month of the year to the rest of the year and to the first month after year-end. Compare credit
memos for the last few months of the year to the first few months after year-end to test cutoff.
Basic Audit Procedures for Revenues
Because of the interrelationship of receivables and revenues, substantive procedures (generally
analytical procedures) provide audit evidence for assertions related to revenues and may also
provide additional audit evidence for assertions related to receivables. Examples of substantive
procedures for revenues are as follows:
A. Inquire of responsible officials about how the entity raises revenue and identify the major
revenue sources. Obtain an understanding of the entity's revenue recognition policies and
determine whether they are in accordance with GAAP. Inquire of management about and
evaluate changes in revenue recognition policies and significant, unusual, and complex
revenue transactions occurring at or near year-end.
B. Scan a schedule summarizing revenues by fund and type of revenue for the year and compare
amounts to those of prior periods and to the adopted budget or to other auditor-developed
expectations. Investigate any unexpected results.
C. Consider the allocation of revenues to the entity's funds in accordance with the intent of the
governing body and the requirements of laws, regulations, contracts, and grant agreements.
D. Scan the accounting records and review supporting documentation for large or unusual
transactions near year-end.
E. Test compliance with legal and contractual provisions that could have a material effect on the
determination of financial statement amounts and disclosures.
F. Test tax, fee, and service rates for compliance with legal and regulatory requirements or
limitations.
Note
If the auditor does not overcome the presumption of a risk of material misstatement
due to fraud related to improper revenue recognition, the auditor should perform
procedures relating to revenue to respond to that risk.
Compliance Requirements
The expenditure or expense and liability activities of governmental units often are subject to
compliance requirements. For example, budgetary constraints may limit spending for particular
funds, functions, departments, or object classes. State and local laws and regulations, debt
agreements, and grant agreements often require competitive bidding for large purchases, and
certain vendors (contractors) may be barred from providing goods and services. Grants,
entitlements, contributions, and trust agreements may require that funds be spent for particular
purposes or during a particular period, or that matching funds be provided. They also may require
that cash be disbursed within a short time after its receipt by a government. Governments are
sometimes permitted to allocate indirect costs to a grant, often based on an approved indirect
cost allocation plan or rate.
Relevant Assertions
Relevant assertions for each opinion unit for expenditures or expenses, liabilities, and deferred
outflows of resources and deferred inflows of resources are described below.
Existence or Occurrence
Reported expenditures or expenses represent amounts relating to the period and pertain to the
entity. Reported liabilities represent amounts unpaid as of the end of the period. Reported
deferred outflows of resources represent the consumption of net assets that is applicable to a
future reporting period, and deferred inflows of resources represent the acquisition of net assets
applicable to a future reporting period. Disclosed expenditures or expenses, liabilities, deferred
outflows of resources, and deferred inflows of resources have occurred and pertain to the entity.
Completeness
All expenditures or expenses related to the period and all liabilities, deferred outflows of
resources, and deferred inflows of resources as of the end of the period have been reported. All
required disclosures are included in the financial statements.
Rights or Obligations
Conditions and agreements that affect the entity's liabilities, deferred outflows of resources, and
deferred inflows of resources as of the end of the period are properly reflected in the financial
statements.
Valuation or Allocation
Liabilities, deferred outflows of resources, and deferred inflows of resources are reported at
appropriate amounts. Information pertaining to expenditures or expenses, liabilities, deferred
outflows of resources, and deferred inflows of resources is disclosed at appropriate amounts.
Accuracy or Classification
Amounts and other data relating to expenditures or expenses are recorded appropriately and in
the proper accounts. Financial information relating to expenditures or expenses, liabilities,
deferred outflows of resources, and deferred inflows of resources is appropriately presented and
described and is disclosed fairly and at appropriate amounts in accordance with GAAP.
Disclosures are accurate and clearly expressed.
Cutoff
Expenditures or expenses are recorded in the correct accounting period.
Substantive Procedures
The auditor obtains evidence for expenditures or expenses, accounts payable and other liabilities,
deferred outflows of resources, and deferred inflows of resources primarily through reviewing
governing body minutes; reviewing grant and contribution agreements and correspondence from
grantor agencies, contributors, and others; reviewing other supporting documents; inquiring of
management and others; and performing analytical procedures.
Evidence That Is Needed
The auditor performs substantive procedures to obtain audit evidence about the following
matters:
A. Whether the entity is in compliance, during the year and at year-end, with requirements that
could have a material effect on the determination of financial statement amounts
B. Whether the entity adheres to its policy regarding first applying restricted or unrestricted
resources when an expense is incurred for purposes for which both restricted and unrestricted
components of net position are available
E. Whether the entity has appropriately reversed long-outstanding checks and unclaimed
amounts have been handled properly in accordance with escheat laws
F. Whether expenditures or expenses, liabilities, commitments, deferred outflows of resources,
and deferred inflows of resources are measured, presented, and disclosed in the financial
statements in conformity with GAAP
Basic Audit Procedures for Liabilities
Substantive procedures for accounts payable and other liabilities consist of analytical procedures
and tests of details. For example, the auditor can compare the balances in accounts payable and
other liabilities with those of prior years or other auditor-developed expectations and investigate
any unusual fluctuations, considering known changes in the entity's activities. Inquire of entity
personnel about their knowledge of any unprocessed invoices and whether they have been
accrued. Trace receiving cutoff information to the accounting records and determine whether the
liability is recorded in the proper accounting period. Scan the listings of accounts payable and
other liabilities for amounts payable to related parties and any other unusual items and consider
whether appropriate financial statement disclosures are made.
Basic Audit Procedures for Expenditures or Expenses
The interrelationship of liabilities and expenditures or expenses may allow auditors to conclude
that they have obtained, completely or in part, sufficient appropriate audit evidence for relevant
assertions related to expenditures or expenses by applying procedures to relevant assertions
related to accounts payable and other liabilities. If so, analytical procedures will generally provide
sufficient appropriate audit evidence for relevant assertions related to expenditures or expenses.
For example, the auditor can compare balances in expenditure or expense accounts by function,
program, and opinion unit with those of prior years and with budgeted amounts or other auditor-
developed expectations. Determine that expenditures or expenses are recorded correctly as to
account, fund, budget category, period, and amount, and investigate any unexpected variations.
Compute the ratio of individual expenditure or expense accounts to total expenditures or
expenses (for the function, program, or opinion unit), compare to prior-year ratios, and investigate
any unexpected variations. Scan the accounting records, including nonstandard journal entries,
and obtain an understanding of the business rationale for any significant or unusual transactions.
Compliance Requirements
The auditor's considerations of compliance for expenditures or expenses and accounts payable
and other liabilities also apply to payroll and related liabilities. However, payroll and related
liabilities also may be affected by the following: state and local laws that require certain fringe
benefits; federal laws and regulations that require payment of prevailing wage rates on
construction projects; federal laws and regulations relating to overtime, compensatory time, and
employment taxes; civil service requirements for hiring, promoting, and terminating employees;
union contracts; budgetary constraints that may limit the number of employees by department or
function; and grants or contributions that limit the amount of personnel cost that can be charged
to a program. Noncompliance with such requirements may lead to contingent liabilities.
Relevant Assertions
The relevant assertions for expenditures or expenses and accounts payable and other liabilities for
each opinion unit, discussed earlier in this chapter, also apply to payroll and related liabilities.
Substantive Procedures
The audit of payroll and related liabilities is similar to that for expenditures or expenses and
accounts payable and other liabilities. For example, the auditor can compare payroll expenditures
or expenses to the prior period actual and current budget (by function or program and in total)
and relate them to the number of personnel or other auditor-developed expectation. The auditor
may also consider computing the average payroll cost per employee and comparing it to prior
periods. In both cases, unexpected variations would be investigated. Compare accruals for
compensated absences to the prior-period actual and current budget, and compare the
relationship of amounts to gross pay with the same ratio for the prior period or other auditor-
developed expectation and investigate unexpected variations. Compute the ratio of payroll tax
and other employee benefit expenditures or expense as at the end of the period to total payroll
and compare with the ratios of prior years or other auditor-developed expectation and investigate
unexpected variations. Consider the reasonableness of accrued payroll at the end of the period by
performing a predictive test, such as comparing it to the subsequent payroll or other auditor-
developed expectation and investigate unexpected variations.
Inventories
Inventories usually consist of materials and supplies used in operations. The scope of audit work is
influenced by the accounting treatment of inventories; the number of physical sites for storage
and significance of inventories at each site; safeguarding measures used at each site; and the
effectiveness of counting and pricing procedures.
Relevant Assertions
The relevant assertions for inventories of each opinion unit are similar to those for expenditures or
expenses and liabilities.
Basic Audit Procedures
Substantive tests of inventories often can be accomplished with analytical procedures. The auditor
should consider audit risk and materiality of inventories before conducting tests of details.
Inventory amounts are often well below tolerable misstatement. If the entity's controls are
reasonable, the auditor may analytically test inventory, using procedures such as the following:
Compare the dollar amount of inventory by fund to prior periods and consider
reasonableness in relation to knowledge of activity during the period.
Inquire about the individual funds that have recorded inventory and the accounting
method used by each fund to record inventory.
Determine whether inventory amounts reported in the financial statements are properly
classified, whether disclosures are adequate, and whether nonspendable fund balance
has been reported.
Note
If inventories are material and/or audit risk associated with inventories is high, the
auditor may consider the need to count inventory items and compare those counts to
the entity's counts.
Auditors generally can establish the continuing relevance of audit evidence obtained in
prior years that substantiates the beginning balance by making inquiries,
supplemented by observation and inspection, and considering whether the property is
fundamentally the same as in the prior year.
Evidence
The auditor obtains evidence for capital assets and expenditures primarily through reviewing
governing body minutes, statutes and regulations, grant agreements and donor letters, contracts
to lease or sell capital assets, and other supporting documents; inquiring of management and
others; and performing analytical procedures to obtain evidence about the following:
A. Whether the entity is in compliance, during the year and at year-end, with requirements that
could have a material effect on the determination of financial statement amounts
B. Whether the entity has satisfactory title to capital assets or other evidence to support the
reporting of infrastructure assets, whether any liens exist, and whether any capital assets have
been pledged
C. Whether the entity has entered into any service concession arrangements
D. Whether transfers of capital assets between funds, component units, or other entities are
properly recorded
E. Whether depreciation expense has been properly charged to various entity functions
F. Whether the value of donated capital assets has been properly recorded
G. Whether capital asset impairments have been properly reported
H. Whether the asset management system and documentation of the condition of assets comply
with the standards in GASB Statement No. 34 if the modified approach is used for
infrastructure assets
I. Whether financial statement disclosures for capital assets and related accounts are in
conformity with GAAP
J. Whether the entity has maintained and disposed of capital assets in accordance with the
requirements of entities that provided funds to acquire the assets (such as intergovernmental
grants)
Examples of Substantive Analytical Procedures
Examples of substantive analytical procedures at the account balance level are as follows:
A. Compare balances in the capital assets and accumulated depreciation accounts with
balances for prior years and the capital budget or other auditor-developed expectations.
Investigate any unexpected results.
B. Inquire of entity personnel if all additions and deletions have been reflected in the capital
assets schedule and relate such responses to capital expenditures, significant lease
payments, and significant sales of capital assets.
C. Inquire of entity personnel whether there has been any change in depreciable lives or
depreciation methods and whether there are significant amounts of fully depreciated assets.
D. Scan the capital assets schedule and consider whether the lives of assets are reasonable,
depreciation methods are in accordance with GAAP and consistent, and depreciation expense
for the year appears reasonable. Determine whether capital asset impairments have been
properly reported.
E. Inquire of entity personnel about the factors used in determining the depreciable lives of
infrastructure and consider whether the estimate of the remaining useful lives has been
appropriately modified over the years, as evidence became available that the likely useful lives
would be longer or shorter than originally expected.
Debt and Debt Service Expenditures
Governmental units issue debt to provide capital facilities, to finance other significant long-term
commitments such as OPEB obligations, and sometimes to provide short-term financing. Much of
the short-term debt issued is used for interim financing during the construction period of capital
projects.
Compliance Requirements
Debt-related activities usually are subject to various compliance requirements, such as the
following:
A. State and local laws generally impose limits on the amount of debt an entity can issue and
often require approvals by senior levels of government or voters to issue debt. These
limitations can apply to all forms of debt or may be structured so that there are separate
limits and voter requirements for different types of debt (such as general obligation, revenue,
installment, and lease purchase debt) or purposes (such as debt issued for equipment, water
and sewer, or transportation purposes). Local governments may not be able to issue debt
without explicit authority in state law, and state law may limit the form of debt that can be
issued. Other limitations on the form, type, or amount of debt are imposed by federal tax laws
and related Internal Revenue Service regulations relating to tax-exempt debt.
B. The use of debt proceeds is restricted to specific purposes and may restrict other entity
activities. For example, a debt agreement may require that the fund that will repay the debt
must maintain certain levels of equity or changes in equity; that particular revenues must be
used to pay debt service; and that a reserve fund, such as a sinking fund, must be used to set
aside resources for the future payment of debt service obligations.
C. Debt agreements require the payment of principal and interest in specific amounts and on
specific dates.
D. Debt agreements often require the entity to file continuing disclosure documents with certain
distributing organizations.
Relevant Assertions
The relevant assertions of each opinion unit are similar to those for expenditures or expenses and
liabilities.
Basic Audit Procedures
The nature and extent of audit procedures for debt and debt service expenditures are influenced
by considerations such as the following: the nature and amount of the entity's debt and similar
obligations; how often and in what amounts the entity issues debt or enters into debt agreements;
the legal requirements for issuing debt or entering into debt agreements; the identity of the
trustees or fiscal agents used for debt; and the debt covenants or similar debt-related restrictions.
The auditor obtains evidence for debt and debt service expenditures primarily through reviewing
governing body minutes, debt agreements, and other supporting documents; inquiring of
management and others; and performing analytical procedures to obtain evidence about whether
the entity is in compliance (during the year and at year-end) with compliance requirements that
could have a direct and material effect on the determination of financial statement amounts; and
whether the entity's debt issuances are measured, presented, and disclosed in the financial
statements in conformity with GAAP. Examples of substantive procedures for debt and debt
service expenditures include the following:
A. Compare balances of debt and related interest expense accounts with those of prior years.
Investigate any unexpected results.
B. Review documentation for debt coverage and determine whether taxes levied or other
revenues dedicated to service the debt are adequate.
G. If formal action to commit fund balance occurred prior to the end of the reporting period, but
specific amounts were not known until the subsequent period, determine whether the
amounts were properly reported at the end of the reporting period.
H. For special revenue funds, determine that such funds are used only when the proceeds of
specific revenue sources are restricted or committed to expenditure for specified purposes
other than debt service or capital projects and that resources not meeting this criterion are
reported in the general fund or another fund type; identify the specific restricted or committed
revenue sources accounted for and reported in special revenue funds; determine that the
resources accounted for in a special revenue fund were not initially reported in another fund
and subsequently transferred to the special revenue fund; determine whether other resources
accounted for and reported in special revenue funds have been restricted, committed, or
assigned to the fund's specific purpose; determine whether the restricted or committed
proceeds of the specific revenue sources are expected to continue to be a substantial portion
of the inflows reported in the funds; and determine that a special revenue fund is not reported
when a substantial portion of the inflows is not expected to come from restricted or
committed resources and that any remaining resources are reported in the general fund or
another fund type.
I. For permanent funds, determine whether only earnings (and not principal) were expended,
were for the purposes to which the earnings are restricted, and were only to benefit the entity
or its citizens; and determine whether the amount of corpus legally required to be maintained
in perpetuity has been properly maintained.
Introduction
The basic requirements for insurance and self-insurance are as follows: claims and judgments
should be reported as liabilities in government-wide and proprietary and trust fund financial
statements when the loss is probable and reasonably estimable; in governmental funds, claims
liabilities and expenditures should be reported when due and payable. If a government chooses to
report its risk-financing activities in a single fund, that fund should be a governmental fund or an
internal service fund.
Relevant Assertions
The relevant assertions of each opinion unit for insurance and self-insurance are similar to those
for expenditures or expenses and liabilities.
Relevant Assertions
The relevant assertions of each opinion unit for grant and similar programs are similar to those for
revenues and receivables and for expenditures and expenses and liabilities.
Basic Audit Procedures
Substantive procedures for grant and similar programs include the following: reading minutes
and grant agreements to identify grants received and related restrictions, as well as inquiring
about applicable compliance requirements and discussing the entity's procedures for monitoring
grants; identifying financial reports required by grants and reconciling the reports to the
accounting records; comparing grant revenues and expenditures to prior-period amounts and the
current budget and investigating unusual trends or significant differences; and reviewing selected
grant receipts and expenditures charged to grant programs for proper classification and
compliance with regulations and contracts. Audit sampling generally is applicable to testing
individual grant transactions.
Audit Risk and Materiality
The auditor considers the relative audit risk and materiality associated with grants and similar
programs. The auditor inquires about the following matters:
A. The number and nature of grants or similar programs
B. The duration and amount of each grant
C. The degree of administrative involvement in grants passed through to secondary recipients
D. Whether single audit or other governmental compliance audit requirements apply
E. The compliance and reporting requirements of grants
F. The restrictions, conditions, and matching requirements of each grant
G. The methods of receiving funds for each grant
H. Whether any grants permit the allocation of indirect costs and, for each of those grants,
whether the grantor has accepted and approved an allocation plan
Reasonable Assurance
The auditor should obtain reasonable assurance that grant revenues and expenditures charged to
grants are valid and complete and (if applicable) that indirect costs are allocated properly; grants
are administered, and grant revenues and expenditures are recorded, in accordance with grant
provisions and related laws and regulations; and grant-related amounts are properly presented in
the combined financial statements, and related disclosures concerning restrictions and
compliance are adequate.
Nature and Extent of Procedures
In planning the nature and extent of audit procedures for grants and similar programs, the auditor
considers the likelihood that grant compliance requirements have been overlooked or
intentionally violated; grant funds have been overspent or misspent; illegal expenditures have
been made; grant funds have been misappropriated; indirect costs have been misallocated; or
grant charges may be disallowed as unnecessary, unreasonable, or otherwise not in accordance
with limitations and restrictions.
6 I. Chapter Summary
This chapter discussed the auditor's considerations in developing audit programs (or detailed
audit plans) for the following audit areas: cash, investments, and derivative instruments; revenues
and receivables; expenditures or expenses and liabilities; payroll and related liabilities; operating
assets, debt, and equity; insurance and self-insurance; and grant and similar programs. Relevant
assertions and an overview of audit procedures were provided for each audit area. Where
applicable, compliance requirements were also discussed.
Study Question 23
Substantive procedures for cash focus primarily on which of the following?
A Cash confirmations
B Analytical procedures
C Reliability of the entity's bank reconciliation
D Review of loan and debt agreements
Study Question 24
Which of the following is not an example of a compliance requirement for revenues of a
governmental unit?
Study Question 25
Why should the auditor review the allocation of revenues to the entity's funds?
To consider whether revenues were allocated in accordance
A with the intent of the governing body and compliance
requirements
Study Question 26
How may compliance requirements of grants or contributions affect an entity's payroll and related
liabilities?
A They may override civil service requirements for hiring,
promoting, and terminating employees.
Study Question 27
What is the auditor's primary emphasis in the audit areas of operating assets, debt, and equity?
A Operating statement accounts
B Balance sheet accounts
C Notes to the financial statements
D Tests of controls
Study Question 28
Which of the following is not a typical compliance requirement area for capital assets and
expenditures?
Upon successful completion of this chapter, the user should be able to:
identify unique accounting, reporting, and auditing characteristics in various special purpose
governmental units.
7 A. Introduction
Overview
This chapter builds on the auditing considerations discussed in the first six chapters of the course
by providing specific accounting and financial reporting information for special-purpose and state
governments. Special-purpose governments are legally separate entities that perform only one
activity or a few activities, such as school districts and utilities. A special-purpose government may
be a primary government, a component unit, or a stand-alone government. Stand-alone
governments include joint ventures, jointly governed organizations, and pools.
Examples of entities that may be stand-alone governments are regional airports and
regional transportation authorities.
Compliance Requirements
Compliance requirements have been discussed in previous chapters of this course. The auditor
should consider applicable compliance requirements when auditing a special-purpose or state
government since additional requirements often apply.
7 B. Special-Purpose Governments
School Districts
Depending on state laws, a school district generally operates as one of the following: part of the
legal entity of the sponsoring government, a primary government, a stand-alone government, or a
legally separate entity that is a component unit of another government. School districts may have
component units of their own.
Compliance Requirements
School districts are subject to legal and contractual provisions, including state-established
accounting and reporting requirements, that may affect their financial statements. For example,
many states require their school districts to use a standardized chart of accounts for their basic
financial statements and for specialized annual reports. The auditor should consider whether
noncompliance with legal and contractual requirements could have a material effect on the
financial statements.
Attendance Reporting
Most school districts receive financial assistance from a state government based on a measure of
school attendance. Attendance data also affect the amount of certain types of federal financial
assistance. Attendance data typically are determined at individual schools and reported on a
district-wide basis. Some states require the auditor to audit or otherwise perform procedures on
attendance data. Those engagements should be performed under the provisions of AT-C §315,
Compliance Attestation. The auditor should consider whether incorrect attendance data could
have a material effect on the financial statements of a school district.
In many cases, a school district's attendance reporting does not have a material effect
on the current year's financial statements but affects the calculation of state and
federal subsidies to the district in a future period.
Summer Payroll
Some school districts pay teachers twelve times a year for services provided during a nine-month
academic year. Payroll costs are exchange transactions that should be recognized when teachers
provide the services. As a result, school districts should accrue expenditures or expenses and
liabilities at year-end for summer salaries earned but not yet paid. Some school districts facilitate
that expenditure or expense accrual by writing the checks for summer payroll as of year-end and
holding them for later distribution. In this situation, the auditor should evaluate the internal
controls over the safeguarding and subsequent distribution of those checks, as well as the
controls over proper recording of the amounts to be paid during the summer months.
Student Activity Funds
Most school districts have petty cash or bank accounts for student-generated money. In some
cases, the money may be under the control of a school principal or an employee and not subject
to the district's budgetary or centralized accounting and purchasing controls. States have
different legal provisions for how the money in student activity funds may or must be used.
Student activity funds should be reported in a district's financial statements as, for example,
special revenue or agency funds, depending on the requirements concerning the use of the
money.
A district's student activity funds may be of concern to the auditor despite the small
amounts involved because of the opportunity for misappropriation. Many receipts are
in cash and may be handled by several individuals after the district becomes
accountable for the money but before it is deposited. Adverse publicity can result from
a loss or misuse of the money.
A district's accountability for student activity money may differ depending on state law and the
nature of the fundraising activity. For example, a school district may be accountable for gate
receipts for functions held on its campus but not accountable for receipts from an off-campus
fundraising activity until a district employee or official takes custody of the money.
Student Nutrition Programs
Most school districts participate in the U.S. Department of Agriculture (USDA) programs that
provide cash and commodities to ensure nutritious meals for eligible students. The auditor should
consider whether it is necessary to evaluate a district's compliance with the USDA regulations for
those programs as part of the financial statement audit. Revenue should be recognized when the
cash and commodities are received, provided that all eligibility requirements are met. In addition,
some states have established specific accounting and financial reporting requirements for student
nutrition programs.
Charter Schools
Many states have enacted laws that permit the creation of charter schools, which are publicly
funded, nonsectarian schools that operate free of many of the regulations, restrictions, and
mandates of traditional public schools. State laws define the entities that grant the charters
(usually local school districts or the state department of education) as well as eligible applicants
(usually governmental or nonprofit entities or one or more persons or organizations). Charter
schools are typically established under law, and they contract as separate legal entities and are
accountable for their results at the end of the contract period, which is usually three to five years
in length. Per-student state and local funds generally follow the students to a charter school.
Depending on legal and contractual provisions, a charter school may be a governmental or
nongovernmental entity, and it may be a component unit of a governmental entity. Standardized
accounting and financial reporting requirements that states have developed for public schools
may also apply to charter schools.
Hospitals and Other Healthcare Providers
Governmental hospitals and other healthcare providers generally use enterprise fund accounting
and financial reporting standards. If the entity does not meet the criteria requiring the use of
enterprise funds, it may use either governmental fund or enterprise fund accounting and financial
reporting. Often, governments do not use enterprise funds to report activities relating to the long-
term institutional care of the elderly, children, and persons with behavioral or developmental
disabilities because the activities do not meet the criteria requiring the use of enterprise funds,
and user fees are not a principal revenue source for the activities. Governmental hospitals and
other healthcare providers may have component units. In addition, they are subject to legal and
contractual provisions that may affect their financial statements.
Airports
As a general rule, governmental airports are reported in enterprise funds. If an airport does not
meet the criteria for using an enterprise fund, it may use either governmental or enterprise fund
accounting and financial reporting. Airports are subject to legal and contractual provisions that
may affect their financial statements. For example, provisions of grants from the U.S. Federal
Aviation Administration (FAA) may require that the airport's revenues and other resources be used
only for on-airport purposes and not be diverted to off-airport uses. The auditor should consider
whether it is necessary to evaluate the airport's compliance with those requirements as part of a
financial statement audit.
Passenger Facility Charges
Some airports receive revenue from passenger facility charges (PFCs), which are small-dollar
passenger fees that airports charge to help pay for capital development projects. An airport is
required to receive approval from the FAA to impose PFCs and to comply with the FAA's
requirements for the use of PFCs. Airlines collect PFCs through the ticket sales process and remit
them to the appropriate airports.
Note
Federal regulations require an audit of PFCs. The FAA's “Passenger Facility Charge
Audit Guide for Public Agencies” provides auditors with the procedures for auditing
and reporting on PFCs received and expended by airports.
PFCs normally are not reported as components of operating income in a proprietary fund. PFCs
are considered exchange-like transactions. Revenue recognition should be based on the
occurrence of the exchange, that is, when the passenger boards the aircraft. Therefore, the auditor
may consider evaluating whether PFCs have been properly classified and recognized in the
financial statements.
Public Housing Authorities
A public housing authority (PHA) provides shelter to low-income persons and typically receives
substantial capital and operating grants from the U.S. Department of Housing and Urban
Development (HUD). A PHA provides shelter by owning and managing housing developments or
by giving participants vouchers for rent subsidies that are paid directly to private landlords. Some
finance low-interest mortgages and engage in urban renewal activities. A PHA generally operates
as a department of the sponsoring government, a stand-alone government, or a legally separate
entity that is a component unit of another government. A legally separate PHA may be created by
a single sponsoring government, as a joint venture of several governments, or as an independent
regional authority. PHAs generally are reported using enterprise funds. If a PHA does not meet
the criteria that require reporting as an enterprise fund, it may use either governmental fund or
enterprise fund accounting and financial reporting.
Additional Reporting Requirements
HUD has issued Uniform Financial Reporting Standards and written guidelines that require PHAs
that own HUD-assisted housing to submit financial information electronically to HUD using a
template called the Financial Data Schedule (FDS). For those submissions, HUD requires PHAs to
prepare their basic financial statements in conformity with GAAP and to have them audited. HUD
requires PHAs to include the FDS as supplementary information that accompanies their basic
financial statements and for auditors to determine whether the information is fairly presented in
relation to the financial statements. HUD also requires PHAs to obtain an agreed-upon
procedures engagement in which the auditor compares the PHA's electronically submitted data
to the hard copies of the audit report and FDS.
Compliance Requirements
The auditor should obtain an understanding of the HUD grant program requirements, as well as
other compliance requirements that affect the PHA (such as other federal housing grant
programs and/or state requirements), and consider whether it is necessary to evaluate the PHA's
compliance with those requirements as part of the financial statement audit.
HUD grant agreements include compliance requirements for the PHA. Some relate to
transactions, projects, or activities that span more than one financial reporting period,
such as construction programs, construction loans, and beneficiary loan programs.
Others require matching or involve noncash transactions, such as the use of a building
or having grant-related services provided by HUD personnel.
The auditor also may consider confirming directly with HUD the operating subsidies, program
grants, and loans and other housing development and modernization debt relating to the PHA to
determine whether receivable and revenue amounts are properly recognized and reported.
Financing Authorities
Governmental financing authorities make loans to specific types of recipients to lower the costs of
borrowing for the recipients while advancing or achieving a public purpose. Recipients of the loans
may be members of a special-interest group (such as veterans), other governmental or not-for-
profit entities (such as school districts that want to construct new facilities), or for-profit entities
(such as companies that want to finance plant expansions). Financing authorities typically issue
revenue bonds to finance their activities. They generally meet the criteria that require reporting as
an enterprise fund. If not, they may use either governmental fund or enterprise fund accounting
and financial reporting. Financing authorities are subject to various compliance requirements.
Involvement in Purchasing or Constructing Capital Assets
An authority may finance the purchase or construction of capital assets for other entities, take title
to the assets, and lease the assets to the recipients. Ownership of the assets passes to the lessees
when the bonds mature and are retired. The lease or loan payments the authority receives are
used to pay the revenue bond principal and interest and, generally, the authority's administrative
costs. Some financing authorities develop a permanent capital base that is used for making loans
and/or grants to recipients.
No Involvement in Purchasing or Constructing Capital Assets
An authority that finances capital assets may not be directly involved in either purchasing or
constructing the assets or repaying the debt. A financial institution acting as trustee usually
administers the debt service. In this situation, practice supports either reporting the debt and
related capital lease receivable in the authority's financial statements or disclosing the debt and
related capital lease in the notes to the financial statements. However, the authority should report
fees and administrative expenses in its financial statements.
Financing an Entity's Own Capital Assets
An entity may create a financing authority solely to finance its own capital assets, such as state
office buildings or university dormitories. The sponsoring entity usually creates the authority to
shield the borrowing from its own debt limits or other debt restrictions. The authority generally
issues revenue bonds, takes title to the assets and leases them to the sponsoring government,
and uses the lease payments to repay the debt principal and interest. If a legally separate entity,
the authority is a component unit of the sponsoring government. The accounting and financial
reporting depend on whether the authority is presented in the reporting entity's financial
statements as part of the primary government, including as a blended component unit or as a
discretely presented component unit.
If reported as part of the primary government's financial statements, the authority's debt
and assets should be reported as a form of the primary government's debt and assets. For
example, the leased assets would be reported as general capital assets, and the related
debt would be reported as a general long-term liability in the government-wide
statement of net position. The debt service activity of the authority would be reported as a
debt service activity of the primary government.
If the authority is a discretely presented component unit, the lease arrangement should
be treated in the same manner as any other lease agreement of a state or local
government. Related capital lease receivables and payables should not be combined with
other amounts due to or from discretely presented component units, or with capital lease
receivables and payables with organizations outside of the reporting entity.
Related-Party Transactions
When lease arrangements exist between governmental entities and public authorities, related-
party issues should be considered to determine if special reporting and disclosure requirements
are present because it is clear that the terms of the transaction have been significantly affected by
the relationship between the lessee and lessor. The classification and accounting should be
modified as necessary to recognize economic substance rather than legal form. In addition, the
nature and extent of leasing transactions with related parties should be disclosed.
Utilities
Electric, gas, water, sewer, and other utility operations often meet the criteria for the use of
enterprise funds. If not, they may use either governmental fund or enterprise fund accounting and
financial reporting. Utilities are subject to many legal, regulatory, and contractual provisions that
may affect their financial statements. Utility services often are rate regulated. In auditing a public
utility, the auditor should determine whether the services are rate-regulated and, if so, the entity's
accounting policy with regard to applying the provisions of GAAP.
Transportation Systems
A legally separate transportation system (which provides bus, subway, rail, or other services) may
be created by a single sponsoring government, as a joint venture of several governments, or as an
independent regional authority. Some transportation systems meet the criteria requiring
reporting as an enterprise fund. If not, they may use either governmental fund or enterprise fund
accounting and financial reporting. A significant accounting, financial reporting, and auditing
consideration for some transportation systems is infrastructure. Because of low rates or low
ridership, many public transportation systems receive grants and appropriations from other
governments to finance facilities, equipment, or operating expenses. These grants and
appropriations subject a system to legal and contractual provisions that may affect its financial
statements. Such grants and appropriations reported in enterprise funds generally should not be
reported as operating revenue. Rather, they are reported as nonoperating revenue or as capital
contributions (reported separately after nonoperating revenues and expenses).
A public entity risk pool is a cooperative group of governmental entities that join together to
finance an exposure, liability, or risk, which may include property and liability, worker's
compensation, or employee healthcare claims. A pool may be a stand-alone entity or a
component unit of or part of a governmental entity that acts as the pool's sponsor. Public entity
risk pools are subject to legal and contractual provisions that may affect their financial
statements.
Enterprise Fund Accounting
All public entity risk pools account for their activities in an enterprise fund regardless of whether
there is a transfer or pooling of risk and regardless of whether the criteria requiring the use of
enterprise fund accounting are met.
Transfer or Pooling of Risk
Public entity risk pools in which there is some transfer or pooling (sharing) of risk have specific
requirements for recognizing certain revenues and costs, valuation of investments, and financial
statement disclosures. Some of those requirements are described below.
A. Premiums or required contributions generally are recognized as revenue over the contract
period in proportion to the amount of risk protection provided. If a portion of the premium is
specifically identified as being collected for future catastrophe losses, that amount is
recognized as revenue over the contract period and is separately identified as restricted net
position under certain conditions.
B. A liability for unpaid claims costs, including estimates of costs relating to incurred but not
reported (IBNR) claims, is accrued when insured events occur or, for claims-made policies, in
the period in which the event that triggers coverage occurs. That liability is based on the
estimated ultimate cost of settling the claims. IBNR claims should be accrued if it is probable
that a loss has been incurred and the amount can be reasonably estimated.
C. If no accrual is made for an insured event because either a loss is not probable or the amount
of the loss cannot be estimated, or if an exposure to loss exists in excess of the amount
accrued, the contingency should be disclosed if there is at least a reasonable possibility that a
loss or an additional loss may have been incurred.
D. Policy or participation contract acquisition costs (costs that vary with and are primarily related
to acquiring new and renewal contracts) are capitalized and charged to expense in proportion
to premium revenue recognized. Unamortized acquisition costs are classified as an asset.
E. Other costs (such as those relating to investment management, general administration, and
policy maintenance) are expensed as incurred.
F. Investments generally are reported at fair value, with certain exceptions. For example,
mortgage loans are reported at outstanding principal balances if acquired at par value.
G. Disclosures include, but are not limited to, a description of the risk transfer or pooling
agreement, the basis for estimating liabilities for unpaid claims, and a reconciliation of total
claims liabilities, including an analysis of changes in aggregate liabilities for claims and claim
adjustment expenses for the current and prior fiscal years.
H. Certain revenue and claims development information is presented as RSI including, but not
limited to, the amount of gross premium or required contribution revenue and reported
investment revenue for each of the past ten fiscal years, and the cumulative net amount paid
as of the end of the accident year, report year, or policy year.
No Transfer or Pooling of Risk
Public entity risk pools that do not transfer or pool risk among participants are acting as claims
servicers and not insurers. The activity statements of these pools report claims servicing revenue
and administrative costs. Amounts collected or due from pool participants and paid to settle
claims are reported as a net asset or liability on an accrual basis.
External Investment Pools
An external investment pool is an arrangement that commingles, or pools, the moneys of more
than one legally separate entity and invests in an investment portfolio on the participants' behalf.
At least one of the participants is not part of the sponsor's reporting entity. An external
investment pool sponsored by individual state or local governments or jointly by more than one
government is referred to as a governmental external investment pool. Such pools are subject to
compliance requirements that affect how they operate, including allowable investments,
investment income allocation, and distributions and reports to pool participants.
Valuation of Investments
The way a governmental external investment pool values its investments depends on whether it
meets the criteria as a qualifying pool. Generally, those that are not a qualifying external
investment pool report investments at fair value. A qualifying external investment pool may elect
to measure all of its investments at amortized cost if both of the following criteria are met: (a) the
pool transacts with its participants at stable net asset value per share, and (b) the portfolio meets
certain maturity, quality, diversification, liquidity, and shadow pricing requirements.
Financial Reporting
Separate or stand-alone annual financial reports for external investment pools include a
statement of net position and a statement of changes in net position prepared on the economic
resources measurement focus and the accrual basis of accounting. All investment income,
including changes in the fair value of investments, should be reported in the statement of
changes in net position. When the change in the fair value of investments is identified separately
as an element of investment income, it is captioned “net increase (decrease) in the fair value of
investments.”
A. Governments that sponsor one or more external investment pools (sponsoring governments)
report the external portion of each pool as a separate investment trust fund, presenting
statements of fiduciary net position and changes in fiduciary net position for each investment
trust fund and captioning the difference between pool assets, deferred outflows of resources,
and liabilities, and deferred inflows of resources as “net position amounts held in trust for
pool participants.”
Note
The external portion of a pool is the portion that belongs to legally separate
entities that are not part of the sponsoring government's financial reporting entity.
The internal portion is the portion that belongs to the primary government and its
component units and is reported as assets in those funds and component units.
B. The requirement to report each pool as a separate fund applies to the sponsoring
government's combining and individual fund financial statements, which are not part of the
government's basic financial statements. Combining and individual fund financial statements
are presented as supplementary information.
C. If an external investment pool issues a separate report, the sponsoring government must
describe in the notes to the financial statements how to obtain that report. If the pool does
not issue such a report, the sponsoring government's notes to the financial statements should
include certain disclosures such as condensed statements of net position and changes in net
position for each pool.
Colleges and Universities
Some governmental colleges and universities are part of the legal entity of a state or local
government, whereas others are primary governments, stand-alone governments, or component
units of a primary government. Governmental colleges and universities, often referred to as public
institutions, are subject to legal and contractual provisions that may affect their financial
statements. For example, compliance requirements may relate to grants, appropriations from
other governments, contributions, endowments, split-interest agreements, and debt issuances.
Financial Reporting
A public institution that is not a legally separate entity should be reported within the fund
structure of the government, of which it is a part. A public institution that is a legally separate
entity should report as a special-purpose government engaged only in business-type activities,
engaged only in governmental activities, or engaged in both governmental and business-type
activities.
A. A primary government or other entity with financial reporting oversight may require a
particular financial statement presentation for public institutions. The auditor should evaluate
whether a mandated financial statement presentation is in conformity with GAAP. A public
institution's other accounting and financial reporting policies or processes also may be
mandated by other entities.
Note
For example, a primary government may require a component unit institution to
report expenses by function (such as instruction, academic support, student
services, and so forth) rather than by natural or object classification (such as
salaries and wages, employee benefits, supplies, and utilities).
C. In the past, the federal government provided land to certain institutions to be used to
generate funds for these institutions in perpetuity. Those assets provide support to the
institutions through investment of money from the sale of the land or income produced by the
land through mineral or other rights. Those assets are endowments if held by the institution;
however, the assets usually are administered by a state land office or other governmental
agency. State statutes or other externally imposed restrictions often govern the use of the
income from those grants. The source of the revenues and any externally imposed restrictions
on their use should be considered in determining the proper revenue classification in
enterprise funds.
D. Many students or their parents secure loans from a source other than the institution to assist
with the cost of attending the institution. These transactions are between the students or
parents and the lender, such as the U.S. Department of Education, a state loan program, or a
financial institution. Public institutions receive funds from the lenders and then disburse funds
to students or apply amounts to the student's accounts. These third-party transactions are
not pass-through grants. No GASB standard requires institutions to report the loan amounts
received and disbursed as revenue. Institutions that report as engaged only in business-type
activities and that have an accounting policy to report undisbursed loans at year-end as
assets and liabilities in an enterprise fund statement of fund net position should report the
cash flows for these third-party loans in the enterprise fund statement of cash flows. The
GASB has not provided guidance about the appropriate category for reporting the loans as
cash flows. Some believe that reporting them as cash flows from noncapital financing
activities is appropriate, whereas other believe they should be reported as cash flows from
operating activities. Actual practice varies.
E. Public institutions often make student loans from institutional funds and earn interest on the
loans. Student loans from an institution's funds are not intended to be investments but are
undertaken to fulfill a governmental responsibility. Because such “program loans” are made
and collected as part of a governmental program and are part of the operating activities of
the governmental enterprise, the related cash flows are classified as operating activities.
Interest income on the loans is reported as operating revenue.
Note
The principal amounts of the loans made and collected are reported as balance
sheet transactions and do not affect the enterprise fund statement of revenues,
expenses, and changes in fund net position.
H. Public institutions may have endowments. The auditor should understand the legal and
contractual provisions for endowments that could have a material effect on the financial
statements, which may involve understanding the types of endowments, the applicable state
law, how the institution manages the investment of the amounts, how the institution decides
how much of the revenue to spend currently, and the proper financial reporting of both the
earnings and net position.
1. Permanent (or true) endowments are amounts for which donors or other outside entities
have stipulated that the principal is to be maintained in perpetuity. Terms of the gift
instrument will stipulate how earnings on the endowment principle are to be used. The
net position of permanent endowments is reported as restricted and nonexpendable. Net
position resulting from earnings is reported in a component of net position based on the
stipulations in the gift instrument.
2. Term endowments are similar to permanent endowments except that, upon the passage
of a stated period of time or the occurrence of a particular event, all or a part of the
principal may be expended. Terms of the gift instrument will stipulate how earnings are to
be used. The net position of term endowments is reported as restricted and expendable.
Net position resulting from earnings is reported in a component of net position based on
the stipulations in the gift agreement.
3. Quasi-endowments are amounts that the institution's governing board, rather than a
donor or other outside entity, has determined should be managed as if they were a
permanent or term endowment. Net position should be reported as if the board had not
designated the amounts as quasi-endowments. Thus, net position is reported as
restricted and expendable or as unrestricted, depending on whether there are restrictions
on the resources used to create the quasi-endowment.
I. Public institutions often have split-interest agreements, which include charitable gift annuity
contracts, pooled life income trusts, charitable remainder unitrusts, charitable remainder
annuity trusts, and charitable lead annuity trusts. Individual agreements may contain specific
provisions on permissible investments, permissible use of funds when the split interest ends,
or other matters. Some investments may be pooled with those of endowment accounts,
unless separate investments are required. In enterprise funds, earnings on the investment of
these assets are reported as nonoperating revenues. Net position usually should be reported
as restricted and as expendable or nonexpendable based on the conditions attached to the
agreement on how the institution can use the funds when the split interest terminates.
J. If an institution presents its enterprise fund statement of revenues, expenses, and changes in
fund net position using functional classifications, GASB standards neither require it to
allocate nor prohibit it from allocating expenses for depreciation and operations and
maintenance of plant to each function. The statement of activities should present activities
accounted for in enterprise funds by different identifiable activities. Determining whether an
activity is different generally is based on the goods, services, or programs provided by an
activity.
Note
For public institutions reported in enterprise funds, the activities common to those
institutions (such as food service, bookstore, residence halls, and student unions)
generally are not required to be reported separately because they may be
considered incidental to the delivery of a common product or service—higher
education.
K. Some public institutions are required to include information about other legally separate
organizations in their financial statements, often by presentation as component units. This
requirement may apply in the case of research foundations, fundraising foundations, and
university hospitals.
Governmental Entities
Federally recognized Indian tribes are sovereign entities, and the federal government considers
them to be similar to state governments. They meet the definition of governmental entities
because they have the power to enact and enforce a tax levy and have the ability to issue debt that
pays interest exempt from federal taxation directly (rather than through a state or municipal
authority). As a result, they use governmental accounting and financial reporting standards to
prepare their financial statements. Federally recognized Indian tribes usually are considered
primary or stand-alone governments and present both government-wide and fund financial
statements.
Tribal Programs
Indian tribes often operate housing programs, healthcare facilities, schools, colleges, and other
activities for the benefit of their members. The guidance for these activities discussed earlier in
this chapter applies to Indian tribes. As with state and local governmental entities, Indian tribes
often receive substantial federal awards that are subject to federal audit requirements.
Business Activities
Indian tribes also may operate significant business activities in industries such as gaming,
hospitality, recreation, real estate management and development, utilities, farming, and ranching.
In some cases, these business activities meet the criteria requiring the use of enterprise funds. If
not, the activities may be reported in either governmental or enterprise funds.
7 D. State Governments
This chapter discussed the unique accounting, financial reporting, and auditing characteristics of
the following types of special-purpose governmental units: school districts, hospitals and other
healthcare providers, airports, public housing authorities, financing authorities, utilities,
transportation systems, public entity risk pools, external investment pools, and colleges and
universities. It also discussed the unique accounting, financial reporting, and auditing
characteristics of Indian tribal governments and state governments. Aspects of state government
operations discussed included the following: the financial reporting entity, Medicaid, the
Supplemental Nutrition Assistance Program, unemployment compensation benefit plans,
lotteries, escheat property, state tuition programs, and multistate legal agreements.
Study Question 29
What is the potential importance of student attendance data on the audit of a school district?
Study Question 30
Why may an auditor consider confirming directly with the U.S. Department of Housing and Urban
Development (HUD) the operating subsidies, program grants, and loans and other debt relating
to a public housing authority?
Study Question 31
Which of the following statements is true regarding public entity risk pools?
Study Question 32
Which of the following is generally not an auditor consideration for the Supplemental Nutrition
Assistance Program (SNAP)?
A Physical controls over debit cards
B The number of ineligible recipients of debit cards
8 A. Introduction
Overview
This chapter addresses topics related to accounting, financial reporting, and auditing
considerations for governmental defined benefit pension plans and participating governmental
employers in those plans. This chapter is based on the requirements in GASB Statement No. 67,
Financial Reporting for Pension Plans—an amendment of GASB Statement No. 25, as amended;
No. 68, Accounting and Financial Reporting for Pensions—an amendment of GASB Statement
No. 27, as amended; No. 73, Accounting and Financial Reporting for Pensions and Related Assets
That Are Not within the Scope of GASB Statement 68; and No. 82, Pension Issues—an
amendment of GASB Statements No. 67, No. 68, and No. 73. Because the pension-related
elements for employers depend on information maintained by the plan, significant interaction
among the plans, participating employers, and related auditors is necessary to corroborate the
pension amounts in employer financial statements.
Compliance Requirements
The Employee Retirement Income Security Act (ERISA) does not apply to most governmental
entities. Instead, state and local laws and regulations that govern the operation of a pension plan
may affect allowable investments, investment income allocation, funding requirements, member
eligibility and vesting, and payments to plan members and beneficiaries.
Defined benefit pensions are pensions for which the income or other benefits that the plan
member will receive at or after separation from employment are defined by the benefit terms. The
pensions may be stated as a specified dollar amount or as an amount that is calculated based on
one or more factors such as age, years of service, and compensation. Pensions include retirement
income and, if provided through a pension plan, postemployment benefits other than retirement
income (such as death benefits, life insurance, and disability benefits). Pensions do not include
postemployment health care and termination benefits.
Number of Plans
A separate defined benefit pension plan should be reported for a portion of the total assets, even
if the assets are pooled with other assets for investment purposes, if that portion of assets meets
both of the following criteria:
A. The portion of assets is accumulated solely for the payment of benefits to certain classes or
groups of plan members or to plan members who are active or inactive employees of certain
entities (such as state government employees).
B. The portion of assets may not legally be used to pay benefits to other classes or groups of
plan members or other entities' plan members (such as local government employees).
Census Data
The measurement of certain financial statement elements of defined benefit pension plan
financial statements (total pension liability, contributions, contributions receivable, and benefit
payments) depends on plan members' demographic data, which is referred to as census data.
Similarly, certain financial statement elements of employers that participate in defined benefit
pension plans (net pension liability, deferred outflows of resources, deferred inflows of resources,
and pension expense) depend on members' census data. As a result, the relevance of census data
to the measurement of certain financial statement elements depends on the basis upon which
those financial statement elements are calculated. The relevance of census data also depends on
the type of plan (single-employer, cost-sharing, or agent), because accounting and disclosures
differ.
Because the financial statements of agent plans do not reflect any liabilities, deferred outflows of
resources, deferred inflows of resources, or expenses that are based on actuarial information, the
auditor of an agent plan generally does not need to test census data at participating employers.
The auditor's procedures focus on the accumulation and maintenance of census data by the plan
based on its role as the record keeper. As a result, the auditor generally performs procedures
similar to those performed at the plan level for cost-sharing plans, as described above.
8 E. Single and Agent Employer Accounting
and Financial Reporting
Financial Statements Prepared Using the Economic Resources
Measurement Focus and the Accrual Basis of Accounting
Governmental employers that provide defined benefit pensions through a single-employer plan or
an agent multiple-employer (agent) plan that is administered through a qualifying trust are
required to recognize net pension liability, pension expense, and certain deferred outflows of
resources and deferred inflows of resources in their financial statements prepared using the
economic resources measurement focus and the accrual basis of accounting.
Net Pension Liability
The net pension liability is measured as the portion of the actuarial present value of projected
benefit payments that is attributed to past periods of employee service (total pension liability) net
of the pension plan's fiduciary net position. The assumptions used in measuring the total pension
liability are the same as those used for the plan, as discussed above. The fiduciary net position
component of net pension liability is determined using the same valuation methods that are used
by the pension plan for purposes of preparing its statement of fiduciary net position. The net
pension liability is measured as of a date (measurement date) no earlier than the end of the
employer's prior fiscal year, consistently applied from period to period.
For pensions not administered through a qualifying trust, the concept of net pension
liability does not exist. In such plans, the total pension liability should be measured as of a
date (measurement date) no earlier than the end of the employer's prior fiscal year and no
later than the end of the employer's current fiscal year, consistently applied from period to
period.
Pension Expense, Deferred Outflows of Resources, and Deferred Inflows of Resources
The pension expense, deferred outflows of resources, and deferred inflows of resources related to
pensions that are required to be recognized by an employer primarily result from changes in the
components of the net pension liability during the measurement period (i.e., changes in the total
pension liability and the pension plan's fiduciary net position). Most changes in the net pension
liability during the measurement period are included in pension expense. For example, changes in
the total pension liability during the measurement period resulting from current-period service
cost, interest on the total pension liability, and changes of benefit terms are required to be
recognized as pension expense in the current reporting period. Projected earnings on the pension
plan's investments also are required to be included in the determination of pension expense in the
current reporting period.
Pensions not administered through a qualifying trust have no assets in a qualifying trust.
As a result, no fiduciary net position or plan investments exist. Instead, pension expense,
deferred outflows of resources, and deferred inflows of resources related to pensions that
are required to be recognized by an employer primarily result from changes in the total
pension liability during the measurement period.
For pensions not administered through a qualifying trust, pension expenditures are
recognized equal to the total of: (a) amounts paid by the employer for pensions as the
benefits come due, and (b) the change between the beginning and ending balances of
amounts normally expected to be liquidated with expendable available financial
resources. Total pension liabilities are normally expected to be liquidated with
expendable available resources to the extent that benefit payments have matured (i.e.,
benefit payments are due and payable).
Census Data
The employer auditor's consideration of the relevant financial statement assertions that depend
on census data begins with understanding the processes and internal controls used by the
employer and the plan to support the completeness and accuracy of significant elements of
census data that are provided to the actuary. Significant elements of census data include those
elements that, either individually or when combined with other elements, could result in a
material misstatement to one or more elements of the employer's financial statements (net
pension liability, deferred outflows of resources, deferred inflows of resources, and pension
expense).
Significant Elements of Census Data
Significant elements of census data may include some or all of the following:
A. Name,
B. Social Security number,
C. Date of birth,
D. Date of hire,
E. Marital status,
F. Pensionable wages,
G. Service credits (periods of time worked),
H. Class of employee,
I. Position or job code or both,
J. Contributions,
K. Gender,
L. Date of termination or retirement,
M. Spouse's date of birth, and
N. Employment status (active, inactive entitled to but not receiving benefits, or retired).
Substantive Audit Procedures
The substantive procedures for census data at the employer generally focus on testing
incremental changes to the census data file since the prior actuarial valuation, assuming: (a) the
prior-year financial statements were audited, (b) there were no modifications to the auditor's
report in the prior year related to census data, and (c) the auditor has concluded there is no
significant risk of material misstatement due to incomplete or inaccurate census data from prior
years.
Net Pension Liability, Deferred Outflows of Resources, Deferred
Inflows of Resources, and Pension Expense for Single and Agent
Employers
Considerations specific to total pension liability, net pension liability, deferred outflows of
resources, deferred inflows of resources, and pension expense include obtaining an understanding
of the actuary's objectives, scope of work, methods and assumptions, and consistency of
application.
Relevant Assertions
Relevant assertions related to net pension liability, deferred outflows of resources, deferred
inflows of resources, and pension expense for single and agent employers include the following:
A. Member census data reported to the plan is complete and accurate.
B. Member census data accumulated and maintained by the plan is complete and accurate.
C. Actuarial assumptions used in computing the total pension liability are in accordance with
GAAP and Actuarial Standards of Practice.
D. The employer pension amounts (including net pension liability, deferred outflows of
resources, deferred inflows of resources, and pension expense) have been properly calculated
and reported in the financial statements in accordance with GAAP and in the proper period
and are properly disclosed.
Employer Auditor Obtains Audited Plan Financial Statements and Performs Additional
Procedures on Changes in Fiduciary Net Position
The following are examples of substantive procedures for auditing the fiduciary net position for
single employers when the employer auditor is obtaining audited plan financial statements
(audited by another auditor) and is performing additional procedures on components of changes
in fiduciary net position:
A. Obtain audited plan financial statements and determine whether the plan auditor's report is
adequate and appropriate for the employer auditor's purposes.
B. Agree beginning fiduciary net position for the employer to the prior-year audited financial
statements.
C. Verify the completeness and accuracy of the employer and employee contributions attributed
to the employer.
D. Perform analytical procedures over benefit payments by developing an expectation based on
prior-year benefit payments adjusted for changes in employer census data.
E. Perform analytical procedures on investment income and administrative expense by
developing an expectation based on expected return on average investments and the prior-
year administrative expenses adjusted for changes in number of participants.
F. Recompute ending fiduciary net position based on its elements.
G. Reconcile to fiduciary net position used by the actuary in the calculation of the net pension
liability.
H. Agree the fiduciary net position of the net pension liability disclosed in the notes to the plan
financial statements to that reported in the plan statement of fiduciary net position.
Plan Prepares a Schedule of Pension Amounts and Engages Its Auditor to Obtain Reasonable
Assurance and Report
The following are examples of substantive procedures for auditing the net pension liability for
single employers when plan management prepares a schedule of pension amounts that includes
total pension liability, fiduciary net position, and net pension liability, and engages its auditor to
obtain reasonable assurance and report on net pension liability:
A. Evaluate whether the plan auditor's report on the schedule of pension amounts is adequate
and appropriate for the employer auditor's purposes.
B. Evaluate whether the plan auditor has the necessary competence and objectivity for the
employer auditor's purposes.
Substantive Audit Procedures for Agent Employer Fiduciary Net Position
The following are examples of substantive procedures for auditing the fiduciary net position for
agent employers based on information obtained from the plan:
A. Obtain an audited schedule of changes in fiduciary net position by employer from the plan for
the measurement period and perform procedures on amounts specific to the employer: agree
beginning fiduciary net position for the employer to the prior-year audited financial
statements, verify the completeness and accuracy of the employer and employee
contributions attributed to the employer, perform analytical procedures over benefit
payments by developing an expectation based on prior-year benefit payments adjusted for
changes in employer census data, perform analytical procedures on investment income and
administrative expense for the plan as a whole multiplied by the employer's relative
percentage of fiduciary net position, and recompute ending fiduciary net position.
B. Determine whether the plan engaged an auditor to opine on the schedule of changes in
fiduciary net position by employer either through: (1) an opinion on the schedule as a whole
combined with a Type 2 SOC 1 report on the controls over the calculation and allocation of
additions and deductions to employer accounts, or (2) an opinion on each employer column in
the schedule.
C. Evaluate whether the plan auditor's report and accompanying schedule are adequate and
appropriate for the employer auditor's purposes.
D. Reconcile totals in the schedule of pension amounts to those reported in the audited plan
financial statements.
Substantive Audit Procedures for Single and Agent Employer Deferred Outflows of Resources
and Deferred Inflows of Resources
The following are examples of substantive procedures for auditing deferred outflows of resources
and deferred inflows of resources for single and agent employers. Obtain a detailed schedule of
deferred outflows of resources and deferred inflows of resources by type and period for the
employer and perform the following:
A. Agree recognition (amortization) schedules and recognition (amortization) periods for prior-
period deferral amounts to prior-year audit documentation and audited financial statements,
if applicable.
B. Recalculate the current-year gross incremental deferrals for differences between actual and
expected experience and changes in assumptions based on information in the actuarial
valuation report used to measure the net pension liability.
C. Recalculate the current-year gross incremental deferral for the difference between projected
and actual earnings on pension plan investments for the measurement period.
D. Recalculate the recognition (amortization) amount for the current-period incremental
deferrals for differences between actual and expected experience and changes in
assumptions by dividing the gross incremental deferrals by the current-year amortization
period.
E. Recalculate the recognition (amortization) amount for the current-period deferral for
differences between projected and actual earnings on pension plan investments by dividing
the gross incremental deferral by five (years).
F. Verify contributions made after the measurement date and before the employer's year-end
and compare to the amount reported as deferred outflows of resources.
G. Recalculate the mathematical accuracy of the total deferred outflows of resources and
deferred inflows of resources by type as of the measurement date and the total recognition
(amortization) for the measurement period based on the components tested in procedures (A)
through (F) above.
Substantive Audit Procedures for Single and Agent Employer Pension Expense
The following are examples of substantive procedures for auditing pension expense for single and
agent employers:
A. Obtain a detailed schedule of pension expense for the measurement period.
B. Compare total service cost to the actuarial valuation used to measure the total pension
liability.
C. Compare employee contributions to audited plan financial statements, if applicable, or
contributions tested in conjunction with the substantive procedures described above for
auditing fiduciary net position for single employers when the employer auditor is performing
all the substantive procedures.
D. Recalculate interest on total pension liability by multiplying beginning total pension liability,
adjusted for service cost, and actual benefit payments by the discount rate.
E. Verify changes in benefit terms to the actuarial valuation report and procedures performed
related to the total pension liability, as described above.
The basis for the employer's proportion must be consistent with the way contributions to
the plan are determined.
Special funding situations were described earlier in this chapter. An employer that has a special
funding situation for defined benefit pensions recognizes a pension liability and deferred outflows
of resources and deferred inflows of resources related to pensions with adjustments for the
involvement of nonemployer contributing entities. The employer recognizes its proportionate
share of the collective pension expense, as well as additional pension expense and revenue
related to the expense recognized by the nonemployer contributing entities. The employer
discloses in the notes to the financial statements information about the amount of support
provided by nonemployer contributing entities and presents information about the involvement of
those entities in the 10-year schedules of RSI. The recognition and measurement of liabilities,
deferred outflows of resources, deferred inflows of resources, and expenses by a governmental
nonemployer contributing entity in a special funding situation for defined benefit pensions is
similar to that of cost-sharing employers.
Census Data
Census data were discussed earlier in this chapter. The employer auditor's consideration of the
relevant financial statement assertions that depend on census data begins with understanding
the processes and internal control used by the employer and the plan to support the
completeness and accuracy of the significant elements of census data that are provided to the
actuary. In a cost-sharing plan, individual employer census data affect the collective pension
amounts reported by the plan. Certain census data elements, such as contributions, directly affect
the individual employer's proportionate share if used as the basis for allocation.
Net Pension Liability, Deferred Outflows of Resources, Deferred
Inflows of Resources, and Pension Expense
Relevant Assertions
Relevant assertions relating to net pension liability, deferred outflows of resources, deferred
inflows of resources, and pension expense for cost-sharing employers include the following:
A. Member census data reported to the plan is complete and accurate.
B. Member census data accumulated and maintained by the plan is complete and accurate.
C. Actuarial assumptions used in computing the total pension liability are in accordance with
GAAP and Actuarial Standards of Practice.
D. The employer's proportionate share of the collective pension amounts (including net pension
liability, deferred outflows of resources, deferred inflows of resources, and pension expense)
have been properly determined and recorded in the financial statements in the proper period.
E. The employer's deferred outflows of resources and deferred inflows of resources for
contributions made after the measurement date, changes in proportion, and differences
between the employer's actual contributions and its proportionate share of all employer
contributions have been properly determined and recorded in the financial statements in
accordance with GAAP in the proper period and are properly disclosed.
Substantive Audit Procedures for Cost-Sharing Employers
The following are examples of substantive procedures for auditing net pension liability, deferred
outflows of resources, deferred inflows of resources, and pension expense for cost-sharing
employers:
A. Obtain the actuarial valuation report used to measure the collective total pension liability for
the plan as of the measurement date.
B. Evaluate the professional qualifications of the actuary, including his or her competence,
capabilities, and objectivity.
C. Read the actuarial certification for potential exclusions from the scope of the actuary's work or
qualifications on the actuary's certification relating to actuarial methods, actuarial
assumptions, or census data.
D. Determine whether the actuarial valuation was performed as of a date no more than 30
months and 1 day from the employer's fiscal year-end.
E. Evaluate whether the methods and assumptions used in determining the total pension
liability are in accordance with GAAP and Actuarial Standards of Practice and are the same as
those used by the plan.
F. Obtain the audited schedule of employer allocations and compare and recalculate amounts
specific to the employer to the employer's records.
G. Obtain the audited schedule of pension amounts and recalculate the allocated pension
amounts for the employer by multiplying the collective pension amounts for the plan by the
employer's proportionate share (allocation percentage).
H. Evaluate whether the plan auditor's report on the schedule of employer allocations and the
schedule of pension amounts is adequate and appropriate for the employer auditor's
purposes.
I. Evaluate whether the plan has the necessary competence and objectivity for the employer
auditor's purposes.
J. Obtain the audited plan financial statements and: (1) agree or reconcile net pension liability
reported in the schedule of pension amounts (in G above) to the net pension liability disclosed
in the notes to the plan financial statements, and (2) agree the fiduciary net position
component of the net pension liability disclosed in the notes to the plan financial statements
to that reported in the plan statement of fiduciary net position.
8 I. Chapter Summary
This chapter addressed accounting and auditing considerations for governmental defined benefit
pension plan financial statements. It also addressed accounting and auditing considerations for
employers participating in defined benefit pension plans, as well as considerations for
governments whose employees are provided with pensions not administered through a qualifying
trust.
Study Question 33
Which of the following is not a classification of defined benefit pension plans?
A Single-employer
B Cost-sharing
C Defined contribution
D Agent
Study Question 34
Which of the following statements is true regarding a defined benefit pension plan's statement of
fiduciary net position?
Pension plan assets are subdivided into the major
A categories of assets held and the principle components of
the receivables and investments categories.
B Receivables generally are long term.
C Liabilities consist only of benefits due to plan members.
D Net position is reported as unrestricted.
Study Question 35
How is the net pension liability measured for single and agent employers?
Study Question 36
Which of the following is not a method that is used to audit the fiduciary net position for single
employers?
Study Question 37
How are contributions to a pension plan from a cost-sharing employer subsequent to the
measurement date of the net pension liability and before the end of the reporting period reported
in the employer's financial statements?
A Pension expense
B Pension liability
C Deferred outflow of resources related to pensions
D Deferred inflow of resources related to pensions
9 A. Chapter Overview
This chapter addresses topics related to accounting, financial reporting, and auditing
considerations for governmental defined benefit OPEB plans and participating governmental
employers in those plans. This chapter is based on the requirements in GASB Statement No. 74,
Financial Reporting for Postemployment Benefit Plans Other Than Pensions and GASB
Statement No. 75, Accounting and Financial Reporting for Postemployment Benefits Other Than
Pensions. OPEB includes health care benefits such as medical, dental, prescription drugs, and
vision paid in the period after employment, regardless of whether provided separately from or
provided through a pension plan. OPEB also includes death benefits, life insurance, disability, and
long-term care that are paid in the period after employment when provided separately from a
pension plan. OPEB does not include termination benefits or termination payments for unused
sick leave.
Qualifying Trusts
This chapter discusses accounting and financial reporting for state and local government OPEB
plans, both defined benefit and defined contribution, that are administered through a qualifying
trust or equivalent arrangement that satisfies all the following criteria:
A. Contributions from employers and nonemployer contributing entities to the OPEB plan and
earnings on those contributions are irrevocable.
B. OPEB plan assets provide OPEB to plan members in accordance with the benefit terms.
C. OPEB plan assets are legally protected from the creditors of employers, nonemployer
contributing entities, and the OPEB plan administrator. If the plan is a defined benefit OPEB
plan, plan assets also are legally protected from creditors of the plan members.
Compliance Requirements
The Employee Retirement Income Security Act of 1974 (ERISA) does not apply to most
governmental entities. Instead, state and local laws and regulations that govern the operations of
an OPEB plan may affect allowable investments, investment income allocation, funding
requirements, member eligibility and vesting, and payments to plan members and beneficiaries.
Two types of OPEB plans are not administered through a qualifying trust:
A. In a single-employer plan, OPEB is provided to the employees of only one employer.
B. If an OPEB plan is not administered through a qualifying trust, there is no OPEB plan
reporting. Thus, for employers that provide benefits through multiple-employer defined
benefit OPEB plans that are not administered through a qualifying trust, each individual
employer is considered to be participating in its own OPEB plan, similar to a single-employer
plan that is not administered through a qualifying trust.
OPEB Financing (Risk Management) and Administrative
Arrangements
The nature of OPEB arrangements and the related audit approach depend on how the risks
associated with the current-period benefit payments are financed (paid). The risk associated with
current-period benefit payments may be transferred to a third party (e.g., purchase of health
insurance), fully retained (that is, self-insured), or a combination of the two (e.g., partially self-
insured with the purchase of stop-loss insurance).
Risks Transferred to a Third Party
When the risks associated with current-period benefit payments are transferred to a third party,
an insurance company usually pools the experience of the plan or employer with that of other
similar entities and assumes the financial risk of adverse experience. In such an arrangement, a
plan or employer generally has no obligation for current-period benefit payments covered by the
arrangement other than the payment of premiums due to the insurance company unless it is an
experience-rated, minimum premium, or stop-loss insurance arrangement. The audit approach
will primarily focus on the insurance premiums paid.
Self-Insured Risks
When the risks associated with current-period benefit payments are self-insured, the plan or
employer has retained the risk (that is, assumed the obligation) for those benefit payments. The
audit approach will primarily focus on the claims payments, which are usually made by a third-
party administrator who collects a fee for the services provided.
The measurement of certain financial statement elements of defined benefit OPEB plan financial
statements (e.g., total OPEB liability, contributions, contributions receivable, and benefit
payments) depend on plan members' demographic data, which is referred to as census data.
Similarly, certain financial statement elements of employers that participate in defined benefit
OPEB plans (e.g., net [total] OPEB liability, deferred outflows of resources, deferred inflows of
resources, and OPEB expense) also depend on members' census data. Thus, the relevance of
census data to the measurement of certain financial statement elements depends on the basis
upon which those financial statement elements are calculated, as well as on the type of plan
(single-employer, cost-sharing, or agent), as accounting and disclosure requirements differ.
Note
If an OPEB plan is not administered through a qualifying trust, any assets accumulated
for OPEB purposes continue to be reported as assets of the employer or nonemployer
contributing entity. When a government holds assets in a fiduciary capacity (e.g., for other
governments that are not included in the reporting entity), those assets are reported in an
agency fund. Balances reported in the agency fund exclude amounts that pertain to the
employer or nonemployer contributing entity that reports the agency fund.
The additions section of the statement separately displays contributions from employers and
those from nonemployer contributing entities, each including amounts for OPEB as the benefits
come due that will not be reimbursed to the employers using OPEB assets, the total of
contributions from active and inactive plan members not receiving benefits (including those
transmitted by employers), and net investment income, including separate display of investment
income and investment expense. The deductions section separately displays benefit payments
(including refunds of plan member contributions and amounts from employers or nonemployer
contributing entities for OPEB as the benefits come due) and total administrative expenses. The
total difference between total additions and total deductions is reported as the net increase
(decrease) in net position.
Note Disclosures and Required Supplementary Information
The categories of required disclosures include plan description, OPEB plan investments,
receivables, allocated insurance contracts, and reserves. Required supplementary information
(RSI) includes management's discussion and analysis.
Single-Employer and Cost-Sharing Plans
Additional note disclosures for single-employer and cost-sharing OPEB plans include the
following:
A. Components of net OPEB liability, including total OPEB liability, the plan's fiduciary net
position, net OPEB liability, and the plan's fiduciary net position as a percentage of the total
OPEB liability
B. Significant assumptions used to measure total OPEB liability, including inflation, healthcare
cost trend rates, salary changes (if applicable), ad hoc postemployment benefit changes,
sharing of benefit-related costs with inactive plan members, discount rate, and mortality
C. Date of actuarial valuation or alternative measurement method calculation on which the total
OPEB liability is based
Single-employer and cost-sharing OPEB plans present 10-year schedules of RSI, including
information on the changes in the net OPEB liability, key ratios, information on contributions, and
the annual money-weighted rate of return on OPEB plan investments.
Agent Plans
Agent OPEB plans have no specific note disclosure requirements or RSI related to OPEB liabilities
or actuarial information. These plans present as RSI a 10-year schedule of the annual money-
weighted rate of return on OPEB plan investments.
Net OPEB Liability in Single-Employer and Cost-Sharing Plans
The net OPEB liability equals the total OPEB liability for the OPEB plan less the fiduciary net
position of the plan. Total OPEB liability is the actuarial present value of projected benefit
payments attributed to past employee service. Fiduciary net position is determined using the
same valuation methods that are used for the plan's financial reporting. Determining the total
OPEB liability is a three-step process: (1) project future benefit payments, (2) discount projected
future benefit payments to present value, and (3) attribute present value of projected future
benefits to past and future periods.
Timing and Frequency of Actuarial Valuations
The total OPEB liability is determined by: (a) an actuarial valuation as of the OPEB plan's most
recent fiscal year-end, or (b) the use of update procedures to roll forward to the OPEB plan's most
recent fiscal year-end amounts from an actuarial valuation as of no more than 24 months earlier
than the OPEB plan's most recent fiscal year-end.
Projection of Benefit Payments
Projected benefit payments include all benefits to be provided to current active and inactive
members through the OPEB plan (including amounts for OPEB to be paid by employers or
nonemployer contributing entities as the benefits come due) in accordance with the benefit terms
and any additional legal agreements to provide benefits that are in force at the OPEB plan's fiscal
year-end. Projected benefit payments include the effects of the following:
A. Projected ad hoc postemployment benefit changes, including ad hoc cost-of-living
adjustments, to the extent they are considered to be substantively automatic
B. Projected salary changes, in circumstances in which the OPEB formula incorporates future
compensation levels
C. Projected service credits, both in determining a member's probable eligibility for benefits and
in projecting benefit payments in circumstances in which the OPEB formula incorporates
years of service
D. Taxes or other assessments expected to be imposed on benefits
Discounting Projected Future Benefits
The discount rate is the single rate of return that, when applied to all projected benefit payments,
results in an actuarial present value of projected benefit payments equal to the total of the
actuarial present values. A single blended rate should be based on both of the following:
A. The long-term expected rate of return on OPEB plan investments that are expected to be
used to finance the payment of benefits, to the extent that plan fiduciary net position is
projected to be sufficient to make projected benefit payments and plan assets are expected to
be invested using a strategy to achieve that return
B. A yield or index rate for 20-year, tax-exempt general obligation municipal bonds with an
average rating of AA/Aa or higher (or equivalent quality on another rating scale), to the extent
that the conditions in (A) are not met
Attributing the Actuarial Present Value of Projected Benefit Payments to Periods
Attribution of the present value of projected future benefit payments to specific periods is based
on the entry age actuarial cost method.
F. Member census data used in determining employer and member contributions is complete
and accurate.
G. Receivables due from withdrawing employers in a cost-sharing OPEB plan have been
accurately calculated and recorded in the proper period.
Additional Considerations for Agent OPEB Plans
H. Employer (including nonemployer contributing entity) and member contributions are
recorded in the appropriate employer's separate account.
E. Select a sample of claims from the schedule of benefit payments and perform the following
procedures:
1. Determine whether the member or beneficiary was eligible on the date of service in
accordance with the provisions of the substantive plan (e.g., whether the payee meets the
eligibility requirements).
2. Verify claim submission for type and amount of claim, as well as the propriety of required
approvals, if applicable.
3. Verify service provider statements or other evidence of service rendered (e.g., provider bill
or data feed from claims clearinghouse).
4. Verify the accuracy of the claim payment based on the plan provisions and related
documents.
5. Compare the benefit payment amount with the amount included in the cash
disbursement records or trustee reports.
6. For benefit payments received directly by members, verify receipt of the benefit payment.
7. Agree the name, type of benefit, and amount to a member data list to determine that the
member or beneficiary was properly classified in the retired category by the actuary.
F. Obtain and review applicable type 2 SOC 1 report for processes outsourced to third-party
claims processors on behalf of the plan administrator.
G. Evaluate the adequacy of the control over the installation and maintenance of key plan
information, such as benefit provisions, employee information, providers, and rate structure at
the service provider.
H. For plans with stop-loss coverage, evaluate whether specific deductibles or aggregate
deductibles (aggregate attachment points) have been reached (because the insurance entity
is liable for amounts in excess of the specific deductible or aggregate attachment points).
I. Determine that fees associated with third-party claims administrators are reported as
administrative expense (separate from benefit payments).
J. Verify the criteria used by the plan to record benefit payments and determine whether the
claim payments have been properly recorded.
The following are examples of substantive procedures for auditing total OPEB liability, net OPEB
liability, and related disclosures for single-employer and cost-sharing OPEB plans:
A. Obtain the actuarial valuation report used to measure the total OPEB liability as of the plan's
fiscal year-end.
B. Evaluate the professional qualifications of the actuary, including his or her competence,
capabilities, and objectivity.
C. Inquire about the nature of any interests or relationships the actuary may have with the plan
or employer(s) that may create threats to the actuary's objectivity.
D. Read the actuarial certification for potential exclusions from the scope of the actuary's work or
for qualifications on the actuary's certification relating to actuarial methods, actuarial
assumptions, or census data.
E. Inquire of management and the actuary whether the actuarial valuation considers all
pertinent provisions of the substantive plan, including any changes or amendments to the
plan or other events or considerations affecting the actuarial calculations that are effective as
of the plan's fiscal year-end.
Note
Other considerations include whether the valuation includes or does not include
the impact of the Medicare subsidy provided by the Medicare Prescription Drug,
Improvement, and Modernization Act of 2003 as well as taxes and other
assessments.
F. Determine whether the actuarial valuation was performed as of a date within 24 months of
the plan's fiscal year-end.
G. Evaluate whether the methods and assumptions used in determining the total OPEB liability
and actuarially determined contributions information are in accordance with GAAP and
Actuarial Standards of Practice.
H. If the actuarial valuation was performed as of a date prior to the plan's fiscal year-end, review
the appropriateness of the update procedures to roll forward the total OPEB liability to the
plan's fiscal year-end and determine whether all significant known events have been properly
included.
I. Test the reliability and completeness of the member census data.
J. Evaluate the propriety of the long-term expected rate of return used in the calculation of the
discount rate.
K. Evaluate whether the discount rate is reasonable and is a single rate in accordance with GAAP
by obtaining the discount rate calculation and supporting schedules as of the plan's fiscal
year-end, testing the mathematical accuracy of the discount rate and supporting schedules,
and performing the following procedures on the components of the projection of the plan
fiduciary net position (the net position roll forward):
1. Trace beginning plan fiduciary net position to audited plan financial statements.
2. Compare employer (including nonemployer contributing entity) and plan member
contributions in (future) year one to actual contributions in current-year audited plan
financial statements.
3. Evaluate the reasonableness of projected future employer (and nonemployer contributing
entity) and plan member contributions based on age demographics of active plan
members.
4. Evaluate the appropriateness of projected future employer (including nonemployer
contributing entity) contributions based on GAAP criteria.
5. Compare (future) year-one benefit payments to actual benefit payments in the current-
year audited plan financial statements.
6. Evaluate the reasonableness of projected future benefit payments based on age
demographics of current plan members, projected retirement dates, projected benefit
payments based on the applicable benefit formula, and mortality assumptions used in
the actuarial valuation.
7. Recalculate investment earnings by year based on the long-term expected rate of return.
L. Perform the following on the calculation of actuarial present values of the projected benefit
payments: (1) trace beginning fiduciary net position for each year presented and projected
benefit payments to net position roll forward tested previously; (2) for future years in which
beginning fiduciary net position is sufficient to pay projected benefits for the respective year,
determine whether the projected benefit payments were properly discounted using the long-
term expected rate of return on plan investments; (3) for future years in which beginning
fiduciary net position is not sufficient to pay projected benefits for the respective year,
determine whether the projected benefit payments were properly discounted using an
appropriate 20-year AA municipal bond yield or index rate as of the plan fiscal year-end; and
(4) recalculate the single (blended) discount rate.
M. Verify the fiduciary net position used in calculating the net OPEB liability is the same as the
fiduciary net position reported in the plan's statement of fiduciary net position.
N. Recompute the calculation for the net OPEB liability as of the plan's fiscal year-end.
Census Data
Considerations specific to census data may include obtaining an understanding of the
assumptions used by the actuary in changing census data, if applicable, and the plan's processes
and controls used by the plan's management to accurately and completely maintain records for
significant elements of census data for all plan members.
Substantive Audit Procedures for Single Employers
The following are examples of substantive procedures when auditing the census data used in the
measure of total OPEB liability for single employers:
A. Review the actuarial certification in the actuarial valuation report to determine whether there
were any exceptions identified related to the census data and test the resolution, as
necessary.
B. Obtain the census data file sent to the actuary from either the actuary or the plan. If from the
plan, obtain evidence that information obtained from the plan was the same information
reported to and used by the actuary (such as obtaining a written confirmation from the
actuary).
C. Confirm with the actuary whether any information was missing or changes were made to the
census data file provided by plan management.
D. Evaluate the potential impact of assumptions used by the actuary in changing census data
(e.g., corrections to address missing data) on the total OPEB liability.
E. Obtain and test a reconciliation of aggregate census data to the actuarial valuation report
(e.g., the total number of members reported in the census data file to amounts shown in the
actuarial valuation report).
F. Obtain and test a roll forward of the census data from the prior valuation to the current
valuation, and test significant reconciling items.
G. Compare the number of plan members for the current year to the number in the prior year, as
well as the number of plan members to the number of employees.
H. Obtain a list of new employees hired during the period from the prior valuation to the current
valuation from the employer and select a sample to determine whether eligible new
employees were appropriately enrolled in the plan and properly included in the census file.
For each employee selected, verify the accuracy of significant elements of census data from
enrollment that are in the census data file to the human resources (personnel) records.
I. Identify the payroll registers and payroll cycles for all reporting units of the government.
J. Select a sample of active members and perform the following procedures: (1) evaluate
whether the employee is eligible to participate in the plan; (2) compare the static census data
(e.g., name, date of birth, date of hire) in the current census data file to the prior census data
file; and (3) for significant elements of census data that change based on current-year events
and activity (e.g., service credits), verify the incremental changes to the payroll and personnel
records and recalculate the census data in the current census data file based on the prior
census data file and the incremental changes for the period.
K. Select a sample of inactive members entitled to but not yet receiving benefits and compare
the census data information from the current census data file to the prior census data file.
L. Select a sample of inactive members currently receiving benefits and: (1) compare the static
census data information from the current census data file to the prior census data file, and (2)
verify or recalculate the significant elements of census data that change, if any, based on
criteria in the plan document.
Substantive Audit Procedures for Agent Plans
Financial statements of agent OPEB plans do not reflect any liabilities, deferred outflows of
resources, deferred inflows of resources, or expenses that are based on actuarial information. As a
result, the auditors of agent OPEB plans generally do not need to test data at participating
employers. The procedures performed focus on the accumulation and maintenance of census
data by the plan based on its role as the record keeper. The auditor generally performs procedures
similar to those performed at the plan level for cost-sharing OPEB plans. The audit procedures
are designed to provide audit evidence to support relevant assertions related to benefit payments
affected by census data.
In financial statements prepared using the current financial resources measurement focus and
modified accrual basis of accounting, a net OPEB liability is recognized to the extent the liability is
normally expected to be liquidated with expendable available financial resources. OPEB
expenditures are recognized equal to the total of: (a) amounts paid by the employer to the OPEB
plan, including amounts paid for OPEB as the benefits come due, and (b) the change between the
beginning and ending balances of amounts normally expected to be liquidated with expendable
available financial resources to the extent that benefit payments have matured (benefit payments
are due and payable, and the OPEB plan's fiduciary net position is not sufficient to pay those
benefits).
This section discusses considerations, including describing the relevant assertions, when auditing
the OPEB information included in the employer's financial statements. It focuses on specific
considerations for testing certain financial statement elements of the employer's financial
statements affected by defined benefit OPEB plans, including net OPEB liability, deferred
outflows of resources, deferred inflows of resources, and OPEB expense.
Net OPEB Liability, Deferred Outflows of Resources, Deferred Inflows
of Resources, and OPEB Expense
Auditor considerations specific to total OPEB liability, net OPEB liability, deferred outflows of
resources, deferred inflows of resources, and OPEB expense include obtaining an understanding
of the actuary's objectives, scope of work, methods and assumptions, and consistency of
application.
Relevant Assertions
The relevant assertions related to net OPEB liability, deferred outflows of resources, deferred
inflows of resources, and OPEB expense for single and agent employers include the following:
A. Member census data used in calculating the actuarially computed total OPEB liability are
complete and accurate.
B. Actuarial assumptions used in computing the total OPEB liability are in accordance with
GAAP and the Actuarial Standards of Practice.
C. The employer OPEB amounts, including net OPEB liability, deferred outflows of resources,
deferred inflows of resources, and OPEB expense have been properly calculated and reported
in the financial statements in the proper period and are properly disclosed.
Substantive Audit Procedures for Total OPEB Liability
The following are examples of substantive procedures for auditing the total OPEB liability
component (including census data) of net OPEB liability for single and agent employers:
A. Obtain the actuarial valuation report used to measure the total OPEB liability as of the
measurement date.
B. Evaluate the professional qualifications of the actuary.
C. Inquire about the nature of any interests or relationships the actuary may have with the plan
or employers(s) that may create threats to the actuary's objectivity.
D. Read the actuarial certification for potential exclusions from the scope of the actuary's work or
qualifications on the actuary's certification relating to actuarial methods, actuarial
assumptions, or census data.
E. Inquire of management or the actuary whether the actuarial valuation considers all pertinent
provisions of the plan, including any changes or amendments to the plan or other events
affecting the actuarial calculations that are effective as of the measurement date.
F. Determine whether the actuarial valuation was performed as of a date no more than 30
months and 1 day from the employer's fiscal year-end.
G. Evaluate whether the methods and assumptions used in determining the total OPEB liability
are in accordance with GAAP and Actuarial Standards of Practice and are the same as those
used by the plan.
H. If the actuarial valuation was performed as of a date prior to the measurement date, review
the appropriateness of the update procedures to roll forward the total OPEB liability to the
measurement date and determine whether all significant known events occurring between
the valuation date and the measurement date have been properly included.
I. Test the reliability and completeness of the member census data used.
J. Evaluate the propriety of the long-term expected rate of return used in calculating the
discount rate.
K. Evaluate whether the discount rate is reasonable and is a single rate in accordance with
GAAP. Obtain the discount rate calculation and supporting schedules as of the measurement
date. Test the mathematical accuracy of the discount rate calculation and supporting
schedules. Perform the following procedures on the components of the projection of the plan
fiduciary net position (net position roll forward):
1. Trace beginning plan fiduciary net position to audited plan financial statements.
2. Compare employer (including nonemployer contributing entity) and employee
contributions in (future) year one to actual contributions in current-year audited plan
financial statements.
3. Evaluate the reasonableness of projected future employer (including nonemployer
contributing entity) and employee contributions based on age demographics of active
plan members.
4. Evaluate the appropriateness of projected future employer (including nonemployer
contributing entity) contributions based on the GAAP criteria.
5. Compare (future) year one benefit payments to actual benefit payments in the current-
year audited plan financial statements.
6. Evaluate the reasonableness of projected future benefit payments based on age
demographics of current plan members, projected benefit payments based on the
applicable benefit formula, and mortality assumptions used in the actuarial valuation.
7. Recalculate investment earnings by year based on the long-term expected rate of return.
L. Perform the following procedures on the calculation of actuarial present values of the
projected benefit payments:
1. Trace beginning fiduciary net position each year and projected benefit payments to net
position roll forward tested previously.
2. For future years in which beginning fiduciary net position is sufficient to pay projected
benefits for the respective year, determine whether the projected benefit payments were
properly discounted using the long-term expected rate of return on plan investments.
3. For future years in which beginning fiduciary net position is not sufficient to pay projected
benefits for the respective year, determine whether the projected benefit payments were
properly discounted using an appropriate 20-year AA municipal bond yield or index rate
as of the measurement date.
4. Recalculate the single (blended) discount rate.
M. Verify whether the fiduciary net position used in calculating the net OPEB liability is the same
as the fiduciary net position reported in the plan's statement of fiduciary net position.
N. Recompute the calculation for the net OPEB liability.
Single Employers' Fiduciary Net Position
Substantive audit procedures for single employers' fiduciary net position depend on whether the
employer auditor is performing substantive procedures on certain elements (accounts) of the plan
financial statements, another auditor has been engaged to issue an opinion on the financial
statements of the (individual) plan, or the plan prepares a schedule of OPEB amounts for which
the plan engages its auditor to obtain reasonable assurance and report on the net OPEB liability.
Substantive Audit Procedures for Single Employer Fiduciary Net Position
This section addresses the fiduciary net position component of net OPEB liability for OPEB
administered through a qualifying trust.
Employer Auditor Performs All the Substantive Procedures
The following are examples of substantive procedures for auditing the fiduciary net position for
single employers when the employer auditor is performing all the substantive procedures:
A. Obtain a detailed schedule of fiduciary net position for the plan as of the measurement date
that includes all plan assets, deferred outflows of resources, liabilities, and deferred inflows of
resources and perform substantive procedures on the elements similar to those performed for
a single-employer plan as described earlier in this chapter, and reconcile to fiduciary net
position used by the actuary in the calculation of the net OPEB liability.
B. Obtain a detailed schedule of changes in fiduciary net position for the plan that includes all
additions and deductions for the measurement period and agree beginning fiduciary net
position to the prior-year audited financial statements, and perform substantive procedures
on the relevant elements of additions (e.g., contributions and investment income) and
deductions (e.g., benefit payments and administrative expenses) during the measurement
period similar to those performed for a single-employer plan.
Employer Auditor Obtains Audited Plan Financial Statements and Performs Additional
Procedures on Changes in Fiduciary Net Position
The following are examples of substantive procedures for auditing the fiduciary net position for
single employers when the employer auditor is obtaining audited plan financial statements
(audited by another auditor) and is performing additional procedures on components of changes
in fiduciary net position:
A. Obtain audited plan financial statements and determine whether the plan auditor's report is
adequate and appropriate for the employer auditor's purposes.
B. Agree beginning fiduciary net position for the employer to the prior-year audited financial
statements.
C. Verify the completeness and accuracy of the employer and employee contributions attributed
to the employer.
D. Perform analytical procedures over benefit payments by developing an expectation based on
prior-year benefit payments adjusted for changes in employer census data.
E. Perform analytical procedures on investment income and administrative expense by
developing an expectation based on expected return on average investments and the prior-
year administrative expenses adjusted for changes in number of participants.
F. Recompute ending fiduciary net position based on its elements.
G. Reconcile to fiduciary net position used by the actuary in the calculation of the net OPEB
liability.
H. Agree the fiduciary net position of the net OPEB liability disclosed in the notes to the plan
financial statements to that reported in the plan statement of fiduciary net position.
Plan Prepares a Schedule of Pension Amounts and Engages Its Auditor to Obtain Reasonable
Assurance and Report
The following are examples of substantive procedures for auditing the net pension liability for
single employers when plan management prepares a schedule of OPEB amounts that includes
total OPEB liability, fiduciary net position, and net OPEB liability, and engages its auditor to
obtain reasonable assurance and report on net OPEB liability:
A. Evaluate whether the plan auditor's report on the schedule of OPEB amounts is adequate and
appropriate for the employer auditor's purposes.
B. Evaluate whether the plan auditor has the necessary competence and objectivity for the
employer auditor's purposes.
Substantive Audit Procedures for Single and Agent Employer Deferred Outflows of Resources
and Deferred Inflows of Resources
The following are examples of substantive procedures for auditing deferred outflows of resources
and deferred inflows of resources for single and agent employers. Obtain a detailed schedule of
deferred outflows of resources and deferred inflows of resources by type and period for the
employer and perform the following:
A. Agree recognition (amortization) schedules and recognition (amortization) periods for prior-
period deferral amounts to prior-year audit documentation and audited financial statements,
if applicable.
B. Recalculate the current-year gross incremental deferrals for differences between actual and
expected experience and changes in assumptions based on information in the actuarial
valuation report used to measure the net OPEB liability.
C. Recalculate the current-year gross incremental deferral for the difference between projected
and actual earnings on OPEB plan investments for the measurement period.
D. Recalculate the recognition (amortization) amount for the current-period incremental
deferrals for differences between actual and expected experience and changes in
assumptions by dividing the gross incremental deferrals by the current-year amortization
period.
E. Recalculate the recognition (amortization) amount for the current-period deferral for
differences between projected and actual earnings on OPEB plan investments by dividing the
gross incremental deferral by five (years).
F. Verify contributions made after the measurement date and before the employer's year-end
and compare to the amount reported as deferred outflows of resources.
G. Recalculate the mathematical accuracy of the total deferred outflows of resources and
deferred inflows of resources by type as of the measurement date and the total recognition
(amortization) for the measurement period based on the components tested in procedures (A)
through (F) above.
Substantive Audit Procedures for Single and Agent Employer OPEB Expense
The following are examples of substantive procedures for auditing OPEB expense for single and
agent employers:
A. Obtain a detailed schedule of OPEB expense for the measurement period.
B. Compare total service cost to the actuarial valuation used to measure the total OPEB liability.
C. Compare employee contributions to audited plan financial statements, if applicable, or
contributions tested in conjunction with the substantive procedures described above for
auditing fiduciary net position for single employers when the employer auditor is performing
all the substantive procedures.
D. Recalculate interest on total OPEB liability by multiplying beginning total OPEB liability,
adjusted for service cost and actual benefit payments, by the discount rate.
E. Verify changes in benefit terms to the actuarial valuation report and procedures performed
related to the total pension liability, as described above.
Collective OPEB Expense, Deferred Outflows of Resources, and Deferred Inflows of Resources
OPEB expense, deferred outflows of resources, and deferred inflows of resources related to OPEB
are recognized for the employer's proportionate share of collective OPEB expense and collective
deferred outflows of resources and deferred inflows of resources related to OPEB. The employer's
proportionate share is determined using the employer's proportion of the collective net OPEB
liability.
Change in Proportion
If the employer's proportion of the collective net OPEB liability changed since the prior
measurement date, the net effect of that change on the employer's proportionate share of the
collective net OPEB liability and collective deferred outflows of resources and deferred inflows of
resources related to OPEB, determined as of the beginning of the measurement period, is
recognized in the employer's OPEB expense, beginning in the current reporting period, using a
systematic and rational method over a closed period.
Contributions during the Measurement Period
For contributions to the OPEB plan other than those to separately finance specific liabilities of an
individual employer or nonemployer contributing entity to the OPEB plan, the difference during
the measurement period between both of the following should be recognized in the employer's
OPEB expense, beginning in the current reporting period, using a systematic and rational method
over a closed period:
A. The total of such contributions from the employer (and amounts associated with the employer
from nonemployer contributing entities that are not in a special funding situation)
B. The amount of the employer's proportionate share of the total of such contributions from all
employers and all nonemployer contributing entities
Employer Contributions after Measurement Date
Contributions to the plan from the employer subsequent to the measurement date of the net
OPEB liability and before the end of the reporting period are reported as a deferred outflow of
resources related to OPEB.
Collective Net OPEB Liability
The collective net OPEB liability is measured as the portion of the actuarial present value of
projected benefit payments that is attributed to past periods of employee service (total OPEB
liability) for the plan as a whole, net of the OPEB plan's fiduciary net position. The OPEB plan's
fiduciary net position component of net OPEB liability is determined using the same valuation
methods that are used by the OPEB plan for purposes of preparing its statement of fiduciary net
position.
Allocation of OPEB Amounts to Funds or Departments or Both
GAAP does not establish specific requirements for allocation of the net OPEB liability or other
OPEB-related amounts to individual funds or departments. In practice, when governments
allocate OPEB amounts to funds or departments or both, the allocation methodology described
for employers participating in cost-sharing plans is considered appropriate for that purpose. Such
an allocation approach may result in the recognition of additional deferred outflows of resources
or deferred inflows of resources related to changes in proportion from year to year.
Financial Statements Prepared Using the Current Financial Resources
Measurement Focus and Modified Accrual Basis of Accounting
In financial statements prepared using the current financial resources measurement focus and
modified accrual basis of accounting, a net OPEB liability is recognized to the extent the liability is
normally expected to be liquidated with expendable available financial resources. OPEB
expenditures are recognized equal to the total of: (a) amounts paid by the employer to the OPEB
plan, and (b) the change between the beginning and ending balances of amounts normally
expected to be liquidated with expendable available financial resources. Net OPEB liabilities are
normally expected to be liquidated with expendable available financial resources to the extent
that benefit payments have matured. In other words, benefit payments are due and payable, and
the OPEB plan's fiduciary net position is not sufficient for payment of those benefits.
Note Disclosures and Required Supplementary Information
Among the required disclosures are the plan description; the employer's proportionate share
(amount) of collective net OPEB liability; the employer's proportion (percentage) of collective net
OPEB liability (including the basis on which it was determined) and change in its proportion since
the prior measurement date; significant assumptions used to measure total OPEB liability,
including inflation, healthcare cost trend rates, salary changes (if applicable), ad hoc
postemployment benefit changes, sharing of benefit-related costs with inactive plan members,
discount rate, and mortality; the measurement date of collective net OPEB liability and date of
actuarial valuation on which the total OPEB liability is based; information about fiduciary net
position; the amount of OPEB expense recognized by the employer in the reporting period; and
the employer's balances of deferred outflows of resources and deferred inflows of resources
related to OPEB by type. In addition, cost-sharing employers present certain 10-year schedules of
RSI and related notes, including information on the employer's proportionate share (amount) of
the collective net OPEB liability and information on contributions.
Census Data
Census data were discussed earlier in this chapter. The employer auditor's consideration of the
relevant financial statement assertions that depend on census data begins with understanding
the processes and internal control used by the employer and the plan to support the
completeness and accuracy of the significant elements of census data that are provided to the
actuary. In a cost-sharing plan, individual employer census data affect the collective OPEB
amounts reported by the plan. Certain census data elements, such as contributions, directly affect
the individual employer's proportionate share if used as the basis for allocation.
Net OPEB Liability, Deferred Outflows of Resources, Deferred Inflows
of Resources, and OPEB Expense
Relevant Assertions
Relevant assertions relating to net OPEB liability, deferred outflows of resources, deferred inflows
of resources, and OPEB expense for cost-sharing employers include the following:
A. Member census data reported to the plan is complete and accurate.
B. Member census data accumulated and maintained by the plan is complete and accurate.
C. Actuarial assumptions used in computing the total OPEB liability are in accordance with
GAAP and Actuarial Standards of Practice.
D. The employer's proportionate share of the collective OPEB amounts (including net OPEB
liability, deferred outflows of resources, deferred inflows of resources, and OPEB expense)
have been properly determined and recorded in the financial statements in the proper period.
E. The employer's deferred outflows of resources and deferred inflows of resources for
contributions made after the measurement date, changes in proportion, and differences
between the employer's actual contributions and its proportionate share of all employer
contributions have been properly determined and recorded in the financial statements in
accordance with GAAP in the proper period and are properly disclosed.
Substantive Audit Procedures for Cost-Sharing Employers
The following are examples of substantive procedures for auditing net OPEB liability, deferred
outflows of resources, deferred inflows of resources, and OPEB expense for cost-sharing
employers:
A. Obtain the actuarial valuation report used to measure the collective total OPEB liability for
the plan as of the measurement date.
B. Evaluate the professional qualifications of the actuary, including his or her competence,
capabilities, and objectivity.
C. Read the actuarial certification for potential exclusions from the scope of the actuary's work or
qualifications on the actuary's certification relating to actuarial methods, actuarial
assumptions, or census data.
D. Determine whether the actuarial valuation was performed as of a date no more than 30
months and 1 day from the employer's fiscal year-end.
E. Evaluate whether the methods and assumptions used in determining the total OPEB liability
are in accordance with GAAP and Actuarial Standards of Practice and are the same as those
used by the plan.
F. Obtain the audited schedule of employer allocations and compare and recalculate amounts
specific to the employer to the employer's records.
G. Obtain the audited schedule of OPEB amounts and recalculate the allocated OPEB amounts
for the employer by multiplying the collective OPEB amounts for the plan by the employer's
proportionate share (allocation percentage).
H. Evaluate whether the plan auditor's report on the schedule of employer allocations and the
schedule of OPEB amounts is adequate and appropriate for the employer auditor's purposes.
I. Evaluate whether the plan auditor has the necessary competence and objectivity for the
employer auditor's purposes.
J. Obtain the audited plan financial statements and: (1) agree or reconcile net OPEB liability
reported in the schedule of OPEB amounts (in G above) to the net OPEB liability disclosed in
the notes to the plan financial statements, and (2) agree the fiduciary net position component
of the net OPEB liability disclosed in the notes to the plan financial statements to that
reported in the plan statement of fiduciary net position.
Note
GASB Statement No. 84, Fiduciary Activities, establishes criteria for identifying and
reporting fiduciary activities. The criteria focus on: (a) whether a government controls the
assets of the fiduciary activity, and (b) the beneficiaries with whom a fiduciary relationship
exists. Governments with activities meeting the criteria will present a statement of
fiduciary net position and a statement of changes in fiduciary net position. GASB
Statement No. 84 describes four fiduciary funds: pension (and other employee benefit)
trust funds, investment trust funds, private-purpose trust funds, and custodial funds.
Custodial funds will report fiduciary activities that are not held in a qualifying trust.
Agency funds will no longer be reported upon application of GASB Statement No. 84,
which is effective for fiscal years beginning after December 15, 2018.
Total OPEB Liability
The total OPEB liability is measured as the portion of the actuarial present value of projected
benefit payments that is attributed to past periods of employee service. However, if an employer
has fewer than 100 participants (active and inactive) provided with benefits through the OPEB
plan as of the beginning of the measurement period, the total OPEB liability may be measured
using the alternative measurement method. The total OPEB liability is measured as of a date
(measurement date) no earlier than the end of the employer's prior fiscal year, consistently
applied from period to period.
OPEB Expense, Deferred Outflows of Resources, and Deferred Inflows of Resources
The OPEB expense, deferred outflows of resources, and deferred inflows of resources related to
OPEB that are required to be recognized by an employer primarily result from changes in the total
OPEB liability. Most of those changes during the measurement period are included in OPEB
expense. For example, changes in the total OPEB liability during the measurement period
resulting from current-period service cost, interest on the total OPEB liability, and changes of
benefit terms are recognized as OPEB expense in the current reporting period. The portion of
differences between: (a) expected and actual experience in the measurement of the total OPEB
liability, and (b) changes of assumptions or other inputs is reported as deferred outflows of
resources or deferred inflows of resources. Amounts paid by the employer for OPEB as the
benefits come due are not recognized in OPEB expense. Amounts paid by nonemployer
contributing entities that are not in a special funding situation for OPEB as the benefits come due
are recognized as revenue.
Allocation of OPEB Amounts between Primary Government and Discretely Presented
Component Units
When reporting OPEB in stand-alone financial statements of primary governments and
component units that provide OPEB through the same defined benefit OPEB plan, governments
(employers) follow guidance similar to that for cost-sharing employers. OPEB liability, deferred
outflows of resources, deferred inflows of resources, and OPEB expense are recognized for the
government's (primary government or component unit) proportionate share of the respective
collective amounts for the plan as a whole.
Allocation of OPEB Amounts to Funds or Departments or Both
GAAP does not establish specific requirements for allocation of the net OPEB liability or other
OPEB-related amounts to individual funds or departments. In practice, when governments
allocate OPEB amounts to funds or departments or both, the allocation methodology described
for employers participating in cost-sharing plans is considered appropriate for that purpose.
Financial Statements Prepared Using the Current Financial Resources
Measurement Focus and Modified Accrual Basis of Accounting
In financial statements prepared using the current financial resources measurement focus and
modified accrual basis of accounting, a total OPEB liability (or, if an employer has a special
funding situation, a proportionate share of the collective total OPEB liability) is recognized to the
extent the liability is normally expected to be liquidated with expendable available financial
resources. OPEB expenditures are recognized equal to the total of: (a) amounts paid by the
employer for OPEB as the benefits come due, and (b) the change between the beginning and
ending balances of amounts normally expected to be liquidated with expendable available
financial resources.
Note Disclosures and Required Supplementary Information
Among the required disclosures in the financial statements of employers are a plan description,
including the fact that there are no assets accumulated in a qualifying trust; changes in total
OPEB liability, including beginning balances of the components of total OPEB liability, effects
during the reporting period of items that change the components of total OPEB liability, and
ending balances of the components of total OPEB liability; significant assumptions used to
measure the total OPEB liability, including inflation, healthcare cost trend rates, salary changes,
ad hoc postemployment benefit changes, sharing of benefit-related costs with inactive plan
members, discount rate, and mortality; measurement date of the total OPEB liability and the date
of the actuarial valuation or alternative measurement method calculation on which the total
OPEB liability is based; the amount of OPEB expense recognized by the employer in the reporting
period; and the employer's balances of deferred outflows of resources and deferred inflows of
resources related to OPEB by type. Employers also present certain 10-year schedules of RSI and
related notes, including information on changes in the employer's total OPEB liability and key
ratios.
F. Determine whether the actuarial valuation was performed as of a date no more than 30
months and 1 day from the employer's fiscal year-end.
G. Evaluate whether the methods and assumptions used in determining the total OPEB liability
are in accordance with GAAP and Actuarial Standards of Practice.
H. If the actuarial valuation was performed as of a date prior to the measurement date, review
the appropriateness of the update procedures to roll forward the total OPEB liability to the
measurement date and determine whether all significant known events occurring between
the valuation date and the measurement date were properly included.
I. Test the reliability and completeness of the member census data used.
J. Evaluate whether the projected benefit payments were properly discounted using an
appropriate 20-year AA municipal bond yield or index rate as of the measurement date.
F. Obtain and test a roll forward of the census data from the prior valuation to the current
valuation, and test significant reconciling items.
G. Compare the number of plan members for the current year to the prior year, as well as the
number of plan members to the number of employees.
H. Obtain a list of new employees hired during the period from the prior valuation to the current
valuation from the employer and perform the following procedures:
1. Select a sample to determine whether eligible new employees were appropriately
enrolled in the plan and properly included in the census data file.
2. For each employee selected, verify the accuracy of significant elements of census data
from enrollment that are in the census data file to the human resources (personnel)
records (such as name, Social Security number, and date of birth).
I. Identify the payroll registers and payroll cycles for all reporting units of the government.
Substantive Audit Procedures for Deferred Outflows of Resources and Deferred Inflows of
Resources
The following are examples of substantive procedures for auditing deferred outflows of resources
and deferred inflows of resources. Obtain a detailed schedule of deferred outflows of resources
and deferred inflows of resources by type and period for the employer and perform the following:
A. Agree recognition (amortization) schedules and recognition (amortization) periods for prior-
period deferral amounts to prior-year audit documentation and audited financial statements,
if applicable.
B. Recalculate the current-year gross incremental deferrals for differences between actual and
expected experience and changes in assumptions based on information in the actuarial
valuation report used to measure the net OPEB liability.
C. Recalculate the recognition (amortization) amount for the current-period incremental
deferrals for differences between actual and expected experience and changes in
assumptions by dividing the gross incremental deferrals by the current-year amortization
period.
D. Verify benefit payments made and administrative cost incurred after the measurement date
and before the employer's fiscal year-end and compare to the amount reported as deferred
outflows of resources.
E. Recalculate the mathematical accuracy of the total deferred outflows of resources and
deferred inflows of resources by type as of the measurement date and the total recognition
(amortization) for the measurement period based on the components tested in the
procedures described in (A) through (D) above.
9 J. Chapter Summary
This chapter addressed accounting and auditing considerations for defined benefit OPEB plans
that are administered through a trust or equivalent arrangement. It addressed accounting and
auditing considerations for employers participating in single-employer, agent multiple-employer,
and cost-sharing multiple-employer defined benefit OPEB plans that are administered through a
trust or equivalent arrangement. It also addressed accounting and auditing considerations for
governments whose employees are provided with OPEB through OPEB plans that are not
administered through a trust or equivalent arrangement.
Study Question 38
Which of the following is not a type of OPEB plan administered through a qualifying trust?
A Single-employer plan
B Cost-sharing plan
C Agent plan
D Insured plan
Study Question 39
Which of the following is statements is true regarding an OPEB plan's statement of changes in
fiduciary net position?
The additions section aggregates contributions from
A employers and those from nonemployer contributing
entities into a single amount.
B The additions section displays the total contributions from
active and inactive plan members not receiving benefits.
Study Question 40
How is the net OPEB liability defined in single-employer and cost-sharing plans that are
administered through a qualifying trust?
A Total OPEB liability for the plan less the fiduciary net
position for the plan
Study Question 41
Which of the following statements is true regarding allocation of OPEB amounts to funds or
departments?
Study Question 42
Which of the following statements is false regarding special funding situations for single and
agent employers participating defined benefit OPEB plans administered through a qualifying
trust?
The legislative body of the governmental employer is
A required by the special funding situation to appropriate
funds to the plan.
The employer recognizes a liability related to OPEB with
B adjustments for the involvement of nonemployer
contributing entities.
Study Question 43
Which of the following statements is true regarding OPEB expense, deferred outflows of
resources, and deferred inflows of resources related to OPEB in a plan that is not administered
through a qualifying trust?
Upon successful completion of this chapter, the user should be able to:
identify various general and concluding audit procedures.
10 A. Overview
In addition to the audit procedures for specific financial statement elements discussed in previous
chapters of this course, other procedures are necessary that are more general in nature. After
completing audit procedures for specific financial statement components and completing the
general procedures, the auditor should form an opinion on the entity's financial statements. In
addition, if the auditor discovers matters subsequent to the date of the auditor's report, certain
other procedures should be performed.
10 B. Commitments and Contingencies
Introduction
Commitments and contingencies are uncompleted transactions or uncertainties that should be
disclosed, and sometimes their amounts accrued, because of their effect on current financial
position or future operating results. The auditor's primary objectives are determining whether all
significant commitments and contingencies have been identified, assessing their financial effect,
and evaluating presentation and disclosure.
Introduction
Litigation, claims, and assessments are often the cause of significant contingencies. The auditor's
search for those contingencies is accomplished by a related set of inquiries and communications
involving responsible officials and the entity's legal counsel.
The auditor should make sure the lawyer's response contains all items of information requested
and should evaluate wording of the lawyer's assessment of the probability of an unfavorable
outcome. The auditor should decide whether the response is clear regarding a probable or remote
outcome, since the need to accrue the contingency depends on this determination.
Audit Procedures
The auditor should perform subsequent events review procedures that cover the period from the
date of the financial statements to the date of the auditor's report or as close to that date as
practicable. As a result, these procedures should be performed through the date the auditor has
obtained sufficient appropriate evidence to support an opinion on the financial statements. In
addition, it is ordinarily expected that the date of the auditor's report will be close to the report
release date.
Specific Financial Statement Elements
Some subsequent events may be discovered as a result of audit procedures applied to specific
financial statement elements. These procedures usually involve cutoff tests and assessment of
valuation. For example, the inspection of subsequent collections of receivables may disclose a
material subsequent event.
Lawyer's Response and Management Representation Letter
The lawyer's response and the management representation letter may also provide evidence of or
representations about the existence of significant subsequent events, such as the settlement of a
lawsuit.
Audit Documentation
The auditor applies any additional audit procedures necessary to follow up on material
subsequent events disclosed as a result of audit procedures. If material subsequent events are
discovered, the audit documentation should include the information needed to support
adjustments to the financial statements or disclosures about subsequent events.
10 E. Related Parties
Introduction
Identifying a related-party relationship and its appropriate treatment in the financial statements
depends on the entity's application of its financial reporting framework. In some cases, the entity
may have no legal jurisdiction over the related party even when the application of the financial
reporting framework indicates that the entity's financial statements should include those of the
related party. As a result, the auditor should apply the concepts and guidance from the applicable
financial reporting framework to formulate inquiries that will assist in making appropriate
assessments about the existence and nature of related-party relationships.
Audit Procedures
Audit procedures for related parties are applied at all stages of the audit. At the start of the
engagement, the auditor identifies obvious or known related parties and transactions (or updates
information obtained in previous audits) to consider as other procedures are applied during the
audit. Sources of information about related parties include inquiry of predecessor auditors and
entity officials and review of organization charts, prior audit documentation, minutes, contracts,
and agreements. Many governments require officials and employees to file disclosures of related-
party relationships and transactions, and the auditor could obtain information from those
disclosures. The auditor should also consider obtaining representations from senior administrative
officials and the governing body about whether they or any other related parties engaged in any
transactions with the entity during the period. At the end of the audit, the auditor considers
whether the results of procedures applied during the audit indicate the existence of related-party
transactions that should be disclosed. The auditor's objective at the later stage is to understand
the business purpose of the transactions and to consider whether transactions are occurring that
are not being recognized in the accounting records.
Material Transactions
The auditor should understand the business purpose of material related-party transactions.
Proper authorization of such transactions, such as by management or those charged with
governance, is more important than for similar transactions with unrelated parties. If the auditor
has identified a risk of material misstatement related to the nature, purpose, or recording of
material related-party transactions, other procedures may be necessary to understand the
transaction or obtain evidence about it. These procedures could include consultation with persons
knowledgeable about a particular specialized type of transaction. The auditor may consider
obtaining representations from management and those charged with governance about whether
they or any other related parties engaged in any transactions with the entity during the period.
Fraud Risk Factors
The following risk factors may involve transactions with related parties:
A. Significant related-party transactions not in the ordinary course of business or with related
entities that are unaudited or are audited by another firm
B. Significant, unusual, or highly complex transactions—especially those close to period-end—
that pose difficult questions about “substance over form”
C. An overly complex organizational structure involving unusual legal entities or managerial
lines of authority
D. Contractual arrangements that do not appear to have a clear business purpose
10 F. Going Concern
Introduction
The auditor should evaluate whether there is substantial doubt about the entity's ability to
continue as a going concern for a reasonable period of time, which is defined as “the period of
time required by the applicable financial reporting framework or, if no such requirement exists,
within one year after the date that the financial statements are issued.” The period of time
required by the GASB is 12 months beyond the date of the financial statements. It also requires
the financial statement preparer to consider currently known information that may raise
substantial doubt shortly thereafter, such as within an additional three months. As a result, some
auditors extend their audit procedures to the additional period beyond the financial statement
date because such information is required to be included in the financial statements.
Internal matters include work stoppages or other labor difficulties, substantial dependence on the
success of a specific project or program, uneconomic long-term commitments (such as
burdensome labor contracts), and the need to revise operations significantly.
External Matters
External matters include legal proceedings, legislation, or similar matters that might jeopardize
intergovernmental revenues and the fiscal sustainability of key governmental programs; loss of a
critical license or patent for a business-type activity; loss of a principal customer, taxpayer, or
supplier; and an uninsured or underinsured catastrophe (such as drought, earthquake, or flood).
Audit Procedures
The auditor's evaluation is performed on the entity as a whole, not for individual opinion units or
funds. The auditor has two sets of responsibilities related to an entity's ability to continue as a
going concern. The first is to evaluate whether conditions or events identified during the audit,
when considered in the aggregate, indicate there could be substantial doubt about the entity's
ability to continue as a going concern for a reasonable period. The second is, if the auditor
concludes there is substantial doubt about the entity's ability to continue as a going concern, s/he
should gather evidence and consider the effect on the financial statements, the adequacy of
disclosures, and the audit report.
Assessing the Results of Audit Procedures
GAAS does not mandate any specific procedures solely directed to a search for conditions or
events that may affect the entity's ability to continue as a going concern. It does require specific
assessment of whether procedures applied by the auditor identified such conditions and events.
The following are examples of procedures that may provide evidence about such conditions and
events:
A. Applying analytical procedures
B. Reviewing subsequent events
C. Reviewing compliance with the terms of debt and loan agreements, with particular attention
to debt maturing in the near term
D. Reading the minutes of meetings of the governing body and other important committees
E. Inquiring of an entity's legal counsel about litigation, claims, and assessments
F. Confirming with related and third parties the details of arrangements to provide or maintain
financial support
Note
Although the auditor may document the evaluation of going concern status as part of
concluding the audit, s/he should modify planned audit procedures as soon as going
concern problems are identified.
Estimation Uncertainty
Through performing risk assessment procedures and related activities on accounting estimates,
the auditor should identify and assess risks associated with the development of accounting
estimates. In doing so, the auditor is required to evaluate the degree of estimation uncertainty
associated with those estimates. The auditor is also required to determine if those estimates with
high estimation uncertainty represent significant risks. For identified significant risks, the auditor
is required to understand the entity's controls, including control activities. Accounting estimates
with a higher degree of estimation uncertainty may also be susceptible to management bias.
Accounting estimates with a high estimation uncertainty may have one of the following
characteristics:
A. They are highly dependent on judgment.
B. They are not calculated using recognized measurement techniques.
C. Similar estimates in the prior period had substantial differences from the actual outcome.
D. For fair value accounting estimates, a highly specialized, entity-developed model is used for
which there are no observable inputs.
Responding to the Assessed Risks of Material Misstatement
The auditor's further audit procedures for identified accounting estimates should be responsive to
the assessed risks of material misstatement that relate to those estimates. The auditor is required
to determine whether GAAP has been properly applied and whether the methods used are
appropriate and have been applied consistently. If there has been a change from the prior period
in estimates or the methods, the auditor determines if such changes are appropriate in the
circumstances.
Required Audit Procedures
In responding to assessed risks for accounting estimates, the auditor is required to do one or more
of the following:
A. Test the operating effectiveness of the controls over how management made the estimate,
along with appropriate substantive procedures
B. Determine if subsequent events up to the date of the auditor's report provide audit evidence
about the estimate
C. Test how management made the estimate and the underlying data, including the evaluation
of the appropriateness of the method, reasonableness of the assumptions, and reliability of
the underlying data
D. Develop a point estimate or range to evaluate management's point estimate
The Auditor's Approach
The approach selected by the auditor will normally depend on the nature of the estimate, the
effectiveness of the procedure in providing sufficient appropriate audit evidence, and the assessed
risk of material misstatement, including whether the risk is considered to be a significant risk.
Significant Risks
When the auditor determines that there is a significant risk associated with an accounting
estimate, certain procedures should be performed in addition to other substantive procedures to
respond to the risks of material misstatement. The focus is on how management has assessed the
effect of estimation uncertainty on the accounting estimate and how that uncertainty affects the
appropriateness of the amount reported in the financial statements and the adequacy of
disclosures.
Required Audit Procedures for Estimation Uncertainty
The auditor is required to evaluate the following: how management considered alternative
assumptions and why they were rejected or how estimation uncertainty was addressed in making
the accounting estimate; whether the significant assumptions used by management are
reasonable; and (when relevant to the reasonableness of the significant assumptions used by
management or the application of GAAP) management's intent and ability to carry out a specific
course of action.
Required Audit Procedures for Recognition and Disclosure
The auditor also is required to obtain sufficient appropriate evidence about whether
management's decision to recognize or not recognize the estimate, as well as the measurement
basis, is in accordance with GAAP. Even if amounts are not recognized, there may be a need for
disclosure of the circumstances. In some cases, there may also be a need for the auditor to add a
paragraph to the auditor's report to emphasize the matter.
Evaluating the Reasonableness of Estimates and Determining
Misstatements
The auditor evaluates the reasonableness of management's estimates to determine if an audit
difference exists. If the audit evidence supports a point estimate, a misstatement represents the
difference between the auditor's point estimate and the amount recorded by management. If the
auditor has developed a range and management's estimate falls outside that range, the
misstatement is at least the difference between management's point estimate and the nearest
point of the auditor's range.
For example, if the auditor's range is $1,500 to $1,700 for the allowance for
uncollectible accounts, but the entity has estimated $1,200 for the allowance, then
there is at least a $300 misstatement that should be included with other audit
differences.
Disclosures
The auditor should obtain sufficient appropriate audit evidence about whether the disclosures in
the financial statements relating to accounting estimates are in accordance with GAAP. When an
accounting estimate has significant risks, the auditor is required to evaluate the disclosures
pertaining to estimation uncertainty in the financial statements. In some cases, even though the
entity's disclosures may comply with GAAP, the auditor may determine that they are inadequate in
light of the facts and circumstances. The auditor's emphasis on evaluating the adequacy of
disclosures increases as the range of possible outcomes for management's accounting estimate
increases in relation to materiality.
10 H. Written Representations
Introduction
The auditor is required to obtain written representations from management personnel who have
appropriate responsibilities for the financial statements and knowledge of the related matters.
Specific Representations
The auditor asks management to provide a written representation that it has fulfilled its
responsibility as set out in the terms of the audit engagement. In an audit of a governmental
entity, the auditor should also obtain the representations set forth below.
Instances of Noncompliance
Management should provide a written representation that it has disclosed all instances of
identified or suspected noncompliance with the provisions of laws, regulations, contracts, and
grant agreements whose effect should be considered by management when preparing the
financial statements (such as tax or debt limits and debt covenants).
Instances of Abuse
Management should provide a written representation that it has disclosed all instances of
identified or suspected abuse that could be quantitatively or qualitatively material to the financial
statements.
Internal Control and Fraud
Management should provide a written representation that it is responsible for the design,
implementation, and maintenance of internal controls to prevent and detect fraud; management
has disclosed to the auditor the results of its assessment of the risk that the financial statements
may be materially misstated as a result of fraud; management has disclosed its knowledge of
fraud or suspected fraud affecting the entity involving management, employees who have
significant roles in internal control, and others where the fraud could have a material effect on the
financial statements; and management has disclosed its knowledge of any allegations of fraud or
suspected fraud affecting the entity's financial statements.
Uncorrected Misstatements
Management should provide a written representation that it believes the effects of the
uncorrected financial statement misstatements are immaterial, individually and in the aggregate,
to the financial statements as a whole for each opinion unit.
Required Supplementary Information (RSI)
Management should provide a written representation that it acknowledges its responsibility for
the RSI; that the RSI is measured and presented in accordance with prescribed guidelines; that
the methods of measurement or presentation have not changed from those used in the prior
period or, if the methods of measurement or presentation have changed, the reasons for such
changes; and about any significant assumptions or interpretations underlying the measurement
or presentation of RSI.
Supplementary Information (SI)
Management should provide a written representation that it acknowledges its responsibility for
the presentation of the SI in accordance with the applicable criteria; that it believes the SI,
including its form and content, is fairly presented in accordance with applicable criteria; that the
methods of measurement or presentation have not changed from those used in the prior period
or, if the methods of measurement or presentation have changed, the reasons for such changes;
about any significant assumptions or interpretations underlying the measurement of the SI; and
when SI is not presented with the audited financial statements, that management will make the
audited financial statements readily available to the intended users of the SI and the auditor's
report thereon.
When Representations Are Not Provided or Cannot Be Relied upon
An inability to obtain appropriate representations prevents the auditor from expressing an
unmodified opinion. A disclaimer of opinion or withdrawal from the engagement is required when
the required written representations are either not provided by management or the auditor cannot
rely on them because the auditor concludes that sufficient doubt exists about management's
integrity.
Management's Responsibility
Although a management representation letter is usually prepared by the auditor, it is a
communication from the audited entity to the auditor and is signed by entity management. The
representation letter acknowledges management's primary responsibility for the financial
statements, even if the auditor drafts them and the related notes. In addition, the representations
provide other audit evidence and support the validity of the results of audit procedures performed.
When the auditor concludes that written representations are unreliable, s/he should take
appropriate actions, including determining any effect on the auditor's report. The auditor should
disclaim an opinion on the financial statements or withdraw from the engagement if s/he
determines that sufficient doubt exists about management's integrity and the reliability of the
written representations. The possible effects on the financial statements of an inability to rely on
the written representations are pervasive and not limited to specific elements, accounts, or items
in the financial statements.
Materiality
The auditor is permitted to limit representations to matters that are either individually or
collectively material to the financial statements. However, that limitation is acceptable only for
representations that directly relate to amounts included in the financial statements and only if the
auditor and management reach an agreement about what is material for this purpose.
Scope Limitations
Although management's refusal to furnish written representations constitutes a limitation on the
scope of the audit, based on the nature of the representations not obtained or the circumstances
of the refusal, the auditor may conclude that a qualified opinion, rather than a disclaimer or
withdrawal, is appropriate.
Note
Many auditors believe that situations resulting in a qualified opinion will be limited to
those in which only one or a few representations are refused.
Even if a written representation is obtained regarding a matter, the scope of the audit is limited if
the auditor is prevented from performing other procedures s/he considers necessary relating to
that matter. In such a situation, the auditor should issue a qualified opinion or disclaimer of
opinion.
In addition to significant findings, the auditor is required to document the conclusions reached
about such findings or issues and her/his significant professional judgments made in reaching
those conclusions. Judging the significance of a finding or issue generally requires an objective
analysis of the facts and circumstances.
10 J. Analytical Procedures
Introduction
The auditor is required to use analytical procedures in the final review stage of the audit. The
purpose of analytical procedures at this stage is to assist the auditor in assessing the validity of
conclusions reached, including the opinions on the financial statements.
Overall Review
The overall review ordinarily includes consideration of the adequacy of evidence gathered in
response to unusual or unexpected balances identified in planning the audit or during the course
of the audit, as well as unusual or unexpected balances or relationships not previously identified.
If the auditor does not have a sufficient understanding of the cause of unusual or
unexpected relationships, s/he may need to revise the risk of material misstatement
and apply additional audit procedures.
Detailed Review
The objectives of the detailed review of audit work are to assure that there is adherence to
professional standards and firm policies and procedures; integration of results and conclusions
from work on individual financial statement components; and proper summarization of the results
of audit tests, including significant audit findings or issues, for the attention of the supervisory
reviewer and potential reporting to the client.
Supervisory Review
The audit documentation should include evidence of supervisory review. Generally, the
supervisory review focuses more on the summary and evaluation schedules and documentation of
significant findings or issues, while less time and attention are given to supporting schedules. It is
often conducted after the financial statements and audit report have been drafted and is the final
check on whether the audit work supports the overall conclusions on the financial statements.
Note
The Yellow Book requires auditors to document evidence of supervisory review of the
work performed before the report release date.
Nature of Misstatements
A misstatement can result from error or fraud and may occur in the following circumstances: an
inaccuracy occurs in gathering or processing data for inclusion in the financial statements; a
financial statement element, account, or item is omitted; financial statement disclosures are not
in accordance with GAAP; financial statement disclosures required by GAAP are omitted; an
incorrect accounting estimate is made; or management makes unreasonable or inappropriate
judgments concerning an accounting estimate or the selection or application of accounting
policies.
Even if the auditor concludes that the effects of uncorrected misstatements do not cause the
financial statements to be materially misstated, s/he recognizes that there is a risk that the
financial statements may be materially misstated due to further undetected misstatement. If
combined uncorrected misstatements are close to the amount an auditor considers material to
the financial statements of an opinion unit as a whole, the risk of further misstatement may be
considered unacceptable. In this situation, the auditor should perform additional procedures or
determine that the entity appropriately adjusts the financial statements.
Evaluating the Existence of Fraud
An identified instance of fraud is unlikely to be an isolated occurrence. If the auditor believes or
suspects that a misstatement, regardless of its materiality, is a result of fraud, and management
(particularly senior management) is involved, s/he should reevaluate the assessment of the risks
of material misstatement due to fraud and its resulting effect on the nature, timing, and extent of
audit procedures to respond to the assessed risks. The auditor also should consider whether it
indicates possible collusion involving employees, management, or third parties when
reconsidering the evidence previously obtained. In some cases, the risk of material misstatement
due to fraud is so significant that the auditor should consider withdrawing from the engagement
and communicating the reasons for her/his withdrawal to those charged with governance.
The auditor should document the following: the amount below which misstatements will be
regarded as clearly trivial; all misstatements accumulated during the audit and whether they have
been corrected by management; and the auditor's conclusion as to whether uncorrected
misstatements, individually or in the aggregate, cause the financial statements to be materially
misstated, and the basis for that conclusion.
When concluding the audit, the auditor should review the determination of major funds after all
adjustments and reclassifications have been made to the financial statements to determine
whether all required major funds are separately displayed in the financial statements and the
auditor adequately addressed them during the audit.
Drafting the Auditor's Report
Scope Limitation or Other Reportable Matter
The auditor's report is drafted after considering any scope limitations, GAAP departures, or other
matters that should be reported. After the financial statements and auditor's report have been
drafted, the auditor typically discusses them with entity officials. The emphasis in this discussion is
on complex or unusual accounting principles or other matters in the financial statements,
including any unresolved issues of presentation or disclosure.
This discussion is necessary so that the entity can take responsibility for the financial
statements, which generally allows the auditor to remain independent of the entity.
Modifications
Any modifications of the auditor's report also are emphasized. The auditor discusses any
problems identified during the audit, such as deficiencies in internal control, violations of budget
or grant agreements, and errors or fraud. Suggestions for improvement are often discussed.
The auditor should understand the cause of the deviation and its potential effect on the financial
statements by making specific inquiries of management. Ordinarily, the auditor discusses the
facts and circumstances related to the potential deficiency with the appropriate level of
management. In most cases, that includes management personnel who are familiar with the
internal control area affected and who have the authority to take remedial actions.
When Not to Discuss Deficiencies with Management
In some circumstances, it is not appropriate for the auditor to discuss the findings directly with
management. Certain findings may cause the auditor to believe that there is evidence of fraud or
intentional noncompliance with laws and regulations by management or that management is
unable to oversee the preparation of adequate financial statements (which may raise doubts
about management's competence). In these circumstances, it generally would not be appropriate
for the auditor to communicate such deficiencies directly to management.
Evaluating Identified Deficiencies
The auditor should evaluate internal control deficiencies individually and in combination with
other deficiencies affecting the significant account balance or disclosure, relevant assertion, or
component of internal control. Multiple control deficiencies that affect the same financial
statement account balance or disclosure, relevant assertion, or component of internal control
increase the likelihood of misstatement. In combination, they may constitute a significant
deficiency or material weakness, even if they are individually insignificant.
Indicators of a Material Weakness
The following are indicators of a material weakness:
A. Identification of fraud, regardless of materiality, on the part of senior management
B. Restatement of previously issued financial statements to reflect the correction of a material
misstatement due to error or fraud
C. Identification by the auditor of a material misstatement in circumstances indicating that the
misstatement would not have been detected by the entity's internal control
D. Ineffective oversight of the entity's financial reporting and internal control by those charged
with governance
Factors Affecting the Magnitude of Potential Misstatement
In evaluating the magnitude of a potential misstatement, the auditor is considering whether an
identified deficiency could result in a misstatement that is material to the financial statements.
Factors that affect the magnitude of a misstatement that might result from a deficiency or
deficiencies in internal control include but are not limited to the financial statement amounts or
transaction totals exposed to the deficiency and the volume of activity in the account or
transaction class exposed to the deficiency.
The auditor's judgment about the magnitude of a potential misstatement only affects
whether the auditor is required to communicate the identified deficiency to management
and those charged with governance. When in doubt, many auditors choose to
communicate the control deficiency.
In both of these situations, the auditor should obtain sufficient appropriate audit
evidence (such as confirmation with external parties) to corroborate management's
assertion that it has reported such findings in accordance with laws, regulations, and
funding agreements. If unable to do so, the auditor should report the findings. These
reporting requirements are in addition to any other legal requirements to report such
findings directly to outside parties and are applicable even if the auditor has resigned
or been dismissed from the audit.
The auditor may be required by laws, regulations, or policies to report indications of fraud, illegal
acts, noncompliance, or abuse to authorities before performing additional audit procedures. The
auditor should evaluate the impact on her/his audit if investigations or legal proceedings have
been initiated or are in progress. It may be necessary to withdraw from the engagement or defer
work in order to avoid interfering with investigations.
10 P. Subsequent Discovery of Matters after
the Date of the Report
Introduction
Subsequent to the date of the auditor's report, the auditor may become aware of facts that existed
on that date that might have caused her/him to believe information provided by the entity was
incorrect, incomplete, or otherwise unsatisfactory had s/he been aware of them. Subsequent to
the date of the auditor's report, the auditor may conclude that certain necessary audit procedures
were omitted but there is no indication that the financial statements are materially misstated.
Facts Existing at the Date of the Report
When facts are discovered after the report is issued, the auditor is generally required to perform
certain procedures, as described below.
Investigation
If the information that the auditor becomes aware of is of such a nature and from such a source
that s/he would have investigated it had it come to her/his attention during the engagement, the
auditor should investigate it as soon after it comes to her/his attention as is practical.
Disclosure
If, after investigation, the auditor determines that her/his report or the financial would have been
affected if the information had been known at the date of her/his report and s/he believes there
are persons currently relying on or likely to rely on the financial statements who would attach
importance to the information, the auditor should advise the entity to make appropriate disclosure
of the newly discovered facts and their impact on the financial statements to persons who are
relying on the financial statements and the related auditor's report.
Method of Disclosure
The method of disclosure by the governmental unit may, depending on the circumstances, take
one of the following forms: issuance of revised financial statements and auditor's report;
disclosure of the revision in subsequent financial statements instead of reissuing the earlier
statements; or notification to the users of the financial statements that they should not be relied
upon and that revised statements will be issued upon completion of an investigation.
Preventing Future Reliance on the Report
If the entity refuses to make the requested disclosures, the auditor should notify appropriate
parties and take appropriate steps to prevent future reliance on her/his report.
Omitted Procedures
When the auditor determines that certain necessary audit procedures were omitted, s/he should
assess the importance of the omitted procedures on her/his ability to support the opinion
expressed on the financial statements. Review of the audit documentation, discussions with
others assigned to the engagement, and reevaluation of the overall audit scope may be helpful in
making the assessment. The results of subsequent audits also may be considered.
Applying Omitted Procedures or Alternative Procedures
If the auditor concludes that s/he is unable to support the auditor's opinion on the previously
issued financial statements, and there are persons currently relying on or likely to rely on the
report, the auditor should promptly apply the omitted procedures or alternative procedures that
would support the opinion.
Inability to Apply Omitted Procedures or Alternative Procedures
If the auditor is unable to apply the omitted or alternative procedures, s/he may decide to consult
with legal counsel to determine an appropriate course of action.
Audit Documentation
When documenting the necessary revisions to the original audit documentation, the auditor
should document when the change was made and reviewed; who made and reviewed the change;
the reasons for the change; and the procedures performed, audit evidence obtained, and
conclusions reached, and their effect on the auditor's report.
The auditor cannot delete or discard any audit documentation after the documentation
completion date and through the retention date.
10 Q. Chapter Summary
This chapter discussed general and concluding audit procedures related to the following:
commitments and contingencies; litigation, claims, and assessments; management
representation letter; subsequent events; related parties; going concern; accounting estimates
and fair value; analytical procedures; review of audit documentation and summarization and
evaluation of audit evidence; drafting financial statements and the auditor's report;
communicating internal control related matters; communicating with those charged with
governance; communicating fraud and violations of laws and regulations; and subsequent
discovery of matters after the report release date.
Study Question 44
What period of time should be covered by the auditor's review of subsequent events?
Study Question 45
In evaluating an accounting estimate, which of the following statements is typically true regarding
the auditor's development of a point estimate or range to evaluate management's point estimate?
A A range must be less than performance materiality to be
adequate for evaluating the reasonableness of
management's point estimate.
A range that has been narrowed to be equal to or less than
B performance materiality is adequate for evaluating the
reasonableness of management's point estimate.
An auditor's point estimate must be within five percentage
C points of management's point estimate to provide sufficient
appropriate audit evidence.
An auditor's point estimate is never an appropriate audit
D response for evaluating the reasonableness of
management's point estimate.
Study Question 46
Why is the auditor required to evaluate the potential existence of fraud at or near the completion
of the audit?
To determine whether the accumulated results of audit
procedures affect the assessment made earlier in the audit
A about the risk of material misstatement due to fraud or
indicate a previously unidentified risk of material
misstatement due to fraud
To determine whether the accumulated results of audit
procedures provide absolute evidence that the entity's
B financial statements are free from material misstatement
due to fraudulent financial reporting or misappropriation of
assets
Study Question 47
Which of the following is not a type of misstatement that can be used by the auditor to evaluate
the effect of misstatements accumulated during the audit and to communicate misstatements to
management and those charged with governance?
A Factual
B Judgmental
C Projected
D Hypothetical
This chapter describes standard GAAS reports on the basic financial statements, including the
dating of reports, and reports on the financial statements of an individual fund or a component
unit, as well as modifications to the standard report. It discusses reports on financial statements
prepared in accordance with a special purpose framework. This chapter describes the auditor's
responsibility for reports on information accompanying the basic financial statements, including
RSI, SI, and other information. It discusses the additional requirements for reports in an audit
conducted in accordance with the Yellow Book standards, including the reports on the financial
statements and the report on internal control and compliance and other matters. Finally, it
provides an overview of an auditor's association with municipal debt issuances.
Upon successful completion of this chapter, the user should be able to:
recognize the importance and relevance of standard GAAS and GAGAS reports on the basic
financial statements.
C. A section with the heading “Auditor's Responsibility” that states that the auditor's
responsibility is to express an opinion on the financial statements based on the audit; states
that the audit was conducted in accordance with auditing standards generally accepted in the
United States of America (and Government Auditing Standards in a Yellow Book audit) and
that those standards require the auditor to plan and perform the audit to obtain reasonable
assurance about whether the financial statements are free from material misstatement; and
describes the audit by stating the following:
1. An audit involves performing procedures to obtain audit evidence about the amounts and
disclosures in the financial statements.
2. The procedures selected depend on the auditor's judgment, including the assessment of
the risks of material misstatements. In assessing those risks, the auditor considers
internal control relevant to the entity's preparation and fair presentation of the financial
statements in order to design audit procedures that are appropriate in the circumstances
but not for the purpose of expressing an opinion on the effectiveness of the entity's
internal control and, accordingly, no such opinion is expressed.
3. An audit also includes evaluating the appropriateness of the accounting policies used and
the reasonableness of significant accounting estimates made by management, as well as
the overall presentation of the financial statements.
D. A statement about whether the auditor believes that the audit evidence is sufficient and
appropriate to provide a basis for the auditor's opinion
E. A section with the heading “Opinion” that states the auditor's opinion about whether the
financial statements present fairly, in all material respects, the financial position, results of
operations, and cash flows in accordance with U.S. GAAP
F. The manual or printed signature of the auditor's firm and the city and state in which the
auditor practices
Materiality
The basic materiality determination for planning, performing, evaluating, and reporting on the
audit of a government's basic financial statements is based on opinion units. The opinion unit is
the level at which the auditor opines on the financial statements. The auditor may be engaged to
audit at a more detailed level than the opinion unit level used for the basic financial statements,
such as at the individual fund level. The auditor's report when auditing at a more detailed level is
discussed later in this chapter.
Budgetary Reporting
The entity is required to present budgetary comparison schedules as RSI for the general fund and
each major special revenue fund with a legally adopted budget. The entity may instead elect to
report such information as a basic financial statement. Presenting the budgetary comparison
information as a basic financial statement increases the level of assurance the auditor provides on
the information and the resulting amount of audit work that must be performed. In addition,
budgetary comparison information can be presented for other funds or when a legal budget has
not been adopted; that information must be presented and reported on as SI, as discussed later in
this chapter.
Because of the volume and complexity of governmental financial statements, most entities only
present a complete set of financial statements for the current year. If prior-year statements are
presented, the auditor should report on them. When prior-period information is presented, it is
usually limited to prior-period total columns. The auditor is not required to, and usually does not,
report on the comparative information in this situation.
Adverse Opinion
In an adverse opinion, the auditor states that the financial statements are not fairly presented in
accordance with GAAP. The auditor expresses an adverse opinion when s/he was able to obtain
sufficient appropriate audit evidence and concludes that the possible effects of undetected
misstatements (individually or in the aggregate) are both material and pervasive.
Disclaimer of Opinion
In a disclaimer of opinion, the auditor does not express an opinion on the financial statements.
The auditor expresses a disclaimer of opinion when s/he was not able to obtain sufficient
appropriate audit evidence and believes that the possible effects of undetected misstatements are
both material and pervasive.
Scope Limitations
The auditor's inability to obtain sufficient appropriate audit evidence, also referred to as a
limitation on the scope of the audit, may arise from the following: circumstances beyond the
control of the entity, circumstances relating to the nature or timing of the auditor's work, or
limitations imposed by management. The inability to perform a specific procedure is not a scope
limitation if sufficient appropriate evidence can be obtained by performing alternative procedures.
Types of Scope Limitations
Audit evidence may not be sufficient when an entity's accounting systems (including processes
and records) do not provide the necessary information to report capital assets, report interfund
activity and balances in the fund financial statements, or eliminate internal activity and balances
in the government-wide financial statements. In such situations, the auditor should also consider
whether the financial presentations represent a departure from GAAP. Another type of scope
limitation can be the inability to obtain sufficient audit evidence about relevant controls at a
service organization.
Effect on the Auditor's Report
If the auditor cannot obtain sufficient appropriate evidence, s/he should express a qualified
opinion if the possible effects of undetected misstatements could be material but not pervasive. If
the possible effects could be pervasive, the auditor should disclaim an opinion. If the scope
limitation is imposed by management and is material or pervasive, the auditor should request
that management remove the limitation. If management refuses, the auditor should do the
following:
A. Communicate the matter to those charged with governance
B. If sufficient appropriate evidence cannot be obtained by performing alternative procedures
and the auditor concludes the possible effects of an undetected misstatement could be both
material and pervasive, either disclaim an opinion or, when practicable, withdraw from the
audit
Scope Limitation Arising from Alternative Investments
Alternative investments are those for which readily determinable fair values generally do not exist.
Examples are investments in private equity funds, hedge funds, and venture capital funds.
Auditing management's estimate of the fair value of an alternative investment includes assessing
both the extent of the supporting audit evidence and the uncertainties inherent in such an
estimate. The more complex and illiquid the alternative investment, the greater the uncertainty
that may be associated with the valuation estimate. It also may be difficult to obtain a
confirmation of the government's interest in an alternative investment at the level of detail
required to obtain sufficient audit evidence of the existence and valuation of the investments. The
auditor may find it necessary to qualify or disclaim an opinion due to a scope limitation if s/he is
unable to obtain sufficient audit evidence to support the existence, valuation, and disclosure of
alternative investments.
Financial Statements Containing an Unaudited Organization
At times, unaudited financial statements of an organization, function, or activity are included in
the basic financial statements of a primary government or component unit because the unaudited
entity meets the criteria for inclusion in the reporting entity. In this situation, the auditor should
qualify the opinion or disclaim an opinion because of a scope limitation, depending on the
materiality of the unaudited entity to the financial statements.
Qualified Opinion Because of a Scope Limitation
When the auditor qualifies her/his opinion because of a scope limitation, s/he should include a
paragraph with the heading “Basis for Qualified Opinion” immediately before the opinion
paragraph that describes the reasons for the auditor's inability to obtain sufficient appropriate
evidence. The opinion paragraph should state that, except for the possible effects of the matters
described in the basis for modification paragraph, the financial statements are presented fairly.
The opinion paragraph should be headed “Qualified Opinion.”
Disclaimer of Opinion Because of a Scope Limitation
If the possible effects on the financial statements of the scope limitation could be pervasive, the
auditor should disclaim an opinion. The effect on the auditor's report is as follows:
A. The introductory paragraph should be modified to state that the auditor was engaged to
audit the financial statements.
B. The paragraph on the auditor's responsibility should be modified to state only that the
auditor's responsibility is to express an opinion on the financial statements but, because of
the matters described in the basis for disclaimer of opinion paragraph, the auditor was not
able to obtain sufficient appropriate audit evidence to provide a basis for an audit opinion.
C. A paragraph with the heading “Basis for Disclaimer of Opinion” should be included
immediately before the conclusion paragraph that describes the reasons for the inability to
obtain sufficient appropriate evidence.
D. The conclusion paragraph should use a heading that includes “Disclaimer of Opinion.”
E. The conclusion paragraph should state that, because of the significance of the matters
described in the basis for disclaimer of opinion paragraph, the auditor has been unable to
obtain sufficient appropriate evidence to provide the basis for an audit opinion and,
accordingly, does not express an opinion on the financial statements.
Note
In situations where it is appropriate to disclaim an opinion on one or more opinion
units, the auditor should use professional judgment to evaluate the facts and
circumstances applicable to the opinion unit(s) to determine whether the financial
statement presentations are of a magnitude to warrant a disclaimer of opinion on the
entity's financial statements as a whole.
Uncertainties
Report modifications can come about because of uncertainty about an entity's ability to continue
as a going concern and other uncertainties.
Going Concern Uncertainty
The typical way to report on a going concern uncertainty is to add an emphasis-of-matter
paragraph following a standard unmodified opinion. The auditor may, but is not required to,
disclaim an opinion because of a going concern uncertainty.
Other Uncertainties
Other uncertainties involving governmental entities may involve grants received from another
level of government. If the entity has not complied with the provisions of laws, regulations,
contracts, or grant agreements, the entity may need to record a liability or disclose a contingent
liability for possible refunds of grant amounts previously received and expended. The materiality
assessment for determining the need for a report modification is in relation to the opinion unit in
which the grant is recorded.
The presence of such uncertainties, even if they are material, does not generally affect the
auditor's report as long as the required disclosures are made. If the auditor determines
that the financial statements contain a GAAP departure either because disclosure of an
uncertainty is inadequate, the accounting principles used are inappropriate, or the
accounting estimates are unreasonable, it may be necessary to express a qualified or an
adverse opinion.
The auditor should assess the sufficiency of the support for management's estimate of
the outcome of an uncertainty based on the audit evidence that exists or should be
available. If, after considering the existing conditions and available evidence, the auditor
concludes that sufficient appropriate audit evidence supports management's assertions
about the matter involving an uncertainty and its presentation and disclosure in the
financial statements, an unmodified opinion ordinarily is appropriate.
Emphasis-Of-Matter Paragraph
The auditor is not required to include an emphasis-of-matter paragraph for uncertainties, other
than going concern uncertainties, unless a matter that is appropriately presented or disclosed in
the financial statements is of such importance that the auditor judges it fundamental to a user's
understanding of the financial statements. Some auditors highlight uncertainties relating to
matters such as significant estimates or litigation.
Change in Accounting Principle
When the entity has changed to a newly adopted accounting principle that is in accordance with
GAAP and the change has a material effect on the financial statements, the auditor should
include an emphasis-of-matter paragraph in the report. The emphasis-of-matter paragraph
should be included immediately after the opinion paragraph and should describe the change(s) in
accounting principle and provide a reference to the entity's disclosure. The paragraph should be
included in the report until the new accounting principle is applied in all periods presented.
However, if the change is accounted for by retrospective application to all periods presented, the
paragraph is needed only in the period of change.
Note
A change in the method of applying an accounting principle also is considered a
change in accounting principle.
E. Except for regulatory basis financial statements intended for general use, the auditor's report
should include an emphasis-of-matter paragraph that indicates that the financial statements
are prepared in accordance with the applicable special purpose framework; refers to a note to
the financial statements that describes that framework; and states that the special purpose
framework is a basis of accounting other than GAAP.
F. When reporting on regulatory basis financial statements that are intended for general use,
the auditor should express an opinion or disclaim an opinion about whether the financial
statements are presented fairly, in all material respects, in accordance with GAAP. The report
includes a separate paragraph expressing an opinion about whether the financial statements
are prepared in accordance with the special purpose framework.
G. When reporting on regulatory basis financial statements that are intended solely for internal
use and regulatory filing, the auditor's report should include an other-matter paragraph
under an appropriate heading that states that the report is intended solely for use within the
entity and by the identified regulatory agency or agencies.
Note
The other-matter paragraph is included in addition to the emphasis-of-matter
paragraph noted in item (E) above.
H. The auditor's report should include specific elements if the auditor is required by law or
regulation to use a specific layout, form, or wording of the auditor's report.
11 E. Reporting on Information
Accompanying the Basic Financial
Statements
Introduction
The auditor's responsibilities for other information accompanying the basic financial statements
depend on the type of information and whether the auditor is engaged to report on it.
The other-matter paragraph would draw attention to the inconsistency. Neither the
introductory, scope, nor opinion paragraph of the audit report on the financial
statements would mention the inconsistency; and the other-matter paragraph would
neither express nor disclaim an opinion on the inconsistent information.
The threshold for reporting fraud and noncompliance with laws or regulations is different from
that for reporting noncompliance with contracts or grant agreements. Noncompliance with
provisions of contracts or grant agreements or abuse that has an effect on the financial
statements or other financial data significant to the audit objectives that is less than material but
warrants the attention of those charged with governance is not required to be included in the
report. Rather, it should be communicated in writing to audited entity officials; the
communication may be in the form of a management letter. Whether and how to communicate
fraud, noncompliance, or abuse that does not warrant the attention of those charged with
governance is a matter of professional judgment.
Purpose Alert Paragraph
In a Yellow Book financial audit, the auditor's report on internal control and compliance should
contain a “purpose alert” as an other-matter paragraph. The paragraph should describe the
purpose of the auditor's written communication and state that the communication is not suitable
for any other purpose.
To accomplish this requirement, the auditor can label the paragraph “Purpose of this
Report” and include an alert such as the following: “The purpose of this report is solely to
describe the scope of our testing of internal control and compliance and the results of
that testing, and not to provide an opinion on the effectiveness of the entity's internal
control or on compliance. This report is an integral part of an audit performed in
accordance with Government Auditing Standards in considering the entity's internal
control and compliance. Accordingly, this communication is not suitable for any other
purpose.”
Attestation Engagements
A governmental unit may engage an auditor to provide information needed for the official
statement. For example, some revenue bond ordinances require a certification that pledged
revenues exceed certain coverage requirements. In this situation, the entity may engage an
auditor to perform agreed-upon procedures in connection with such certifications. The agreed-
upon procedures engagement is generally performed under the AICPA's attestation standards. If
it is conducted in accordance with Yellow Book standards, the auditor should follow the additional
requirements for attestation engagements in the Yellow Book.
11 I. Chapter Summary
This chapter described standard GAAS reports on the basic financial statements, including the
dating of reports, and reports on the financial statements of an individual fund or a component
unit, as well as modifications to the standard report. It discussed reports on financial statements
prepared in accordance with a special purpose framework. This chapter described the auditor's
responsibility for reports on information accompanying the basic financial statements, including
RSI, SI, and other information. It discussed the additional requirements for reports in an audit
conducted in accordance with the Yellow Book standards, including the reports on the financial
statements and the report on internal control and compliance and other matters. Finally, it
provided an overview of the auditor's association with municipal debt issuances.
Study Question 48
When should the auditor's report on the financial statements be dated?
A The date selected by entity management
B The date of the entity's fiscal year-end
C A date no earlier than the date on which the auditor has
obtained sufficient appropriate evidence to support an
opinion on the financial statements
Study Question 49
Under which of the following circumstances might the auditor express a disclaimer of opinion on
the entity's financial statements as a whole?
Study Question 50
Why may unaudited financial statements of an organization, function, or activity be included in
the basic financial statements of a primary government?
Study Question 51
What is the effect on the audit when financial statements are prepared in accordance with a
special purpose framework?
A The auditor considers opinion units in the same manner as
they would be considered in an audit of GAAP-basis
financial statements.
The concept of opinion units does not apply since the
B auditor issues one opinion on the entity's financial
statements as a whole.
Study Question 52
Which of the following is not required to be included in the auditor's Yellow Book report on
internal control and compliance?
Instances of fraud and noncompliance with provisions of
A laws or regulations that have a material effect on the
financial statements
Instances of fraud and noncompliance with provisions of
B laws or regulations that warrant the attention of those
charged with governance
Noncompliance with provisions of contracts or grant
C agreements that has a material effect on the financial
statements
Noncompliance with provisions of contracts or grant
D agreements that warrant the attention of those charged
with governance
Audit Objective
The audit objective is the goal of the audit procedures used to obtain evidence about the dollar
amounts and disclosures presented in the financial statements. The primary, overriding audit
objective is to express an opinion on the fairness, in all material respects, with which the financial
statements present the financial position, results of operations, and cash flows in conformity with
generally accepted accounting principles (GAAP) or another acceptable financial accounting
framework.
Audit Procedure
An audit procedure is specific and specialized steps or actions auditors take to meet audit
objectives. Audit procedures are performed to achieve the following:
Obtain an understanding of the entity and its environment, including internal controls, to
assess the risk of material misstatements at the financial statement level and the assertion
level. These audit procedures are referred to as risk assessment procedures.
Test the operating effectiveness of internal controls over financial reporting when necessary,
or when the auditor has determined to do so. These audit procedures are referred to as tests
of controls.
Detect material misstatements at the relevant assertion level. These audit procedures are
referred to as substantive tests.
Auditor Judgment
Auditor judgment is the auditor's capacity to perceive, discern, or make reasonable decisions.
Auditors are required to employ judgment when evaluating financial statements for the purpose
of issuing an opinion.
Control Risk
Control risk is the risk that a material misstatement that could occur in an assertion about a class
of transactions, account balance, or disclosure and that could be material, either individually or
when aggregated with other misstatements, will not be prevented or detected and corrected on a
timely basis by the entity's internal control. It is an element of audit risk (AU-C §200).
Control risk is considered along with the inherent risk associated with any assertion and the
effectiveness of the design and operation of the entity's internal control components.
GAGAS
Generally accepted government auditing standards (GAGAS) are those audit standards set forth
in the Government Auditing Standards issued by the Comptroller General of the United States.
GAGAS is also known as the “Yellow Book” because the hard copy has a bright yellow cover. These
are auditing standards that must be followed when required by law, regulation, contract, grant
agreement, or policy. GAGAS pertain to auditors' professional qualifications and the quality of
their work, the performance of field work, and the characteristics of meaningful reporting. These
standards are recommended for use in audits of state and local government organizations,
programs, activities, and functions even when not required.
The GAGAS financial audit standards incorporate AICPA generally accepted auditing standards
(GAAS) by reference. GAGAS also describes ethical principles and establishes independence and
other general standards and additional field work and reporting standards beyond those provided
by the AICPA.
Internal Control
Internal control is a process effected by those charged with governance, management, and other
personnel that is designed to provide reasonable assurance about the achievement of the entity's
objectives with regard to the reliability of financial reporting, effectiveness and efficiency of
operations, and compliance with applicable laws and regulations. Internal control over
safeguarding of assets against unauthorized acquisition, use, or disposition may include controls
relating to financial reporting and operations objectives. This definition recognizes the definition
and description of internal control contained in Internal Control—Integrated Framework of the
Treadway Commission.
Major Funds
The focus of governmental and proprietary fund financial statements is on major funds. (Major
fund reporting requirements do not apply to internal service funds.) Fund statements should
present the financial information of each major fund in a separate column. The reporting
government's main operating fund (the general fund or its equivalent) should always be reported
as a major fund. Other individual governmental and enterprise funds should be reported in
separate columns as major funds based on the following criteria:
Total assets, liabilities, revenues, or expenditures/expenses (excluding revenues and
expenditures/expenses reported as extraordinary items) of that individual governmental or
enterprise fund are at least 10 percent of the corresponding element total (assets, liabilities,
and so forth) for all funds of that category or type (that is, total governmental or total
enterprise funds), and
The same element that met the 10 percent criterion above is at least 5 percent of the
corresponding element for all governmental and enterprise funds combined.
In addition to funds that meet the major fund criteria, any other governmental or enterprise fund
that the government's officials believe is particularly important to financial statement users (for
example, because of public interest or consistency) may be reported as a major fund.
Materiality
Accounting standards usually define materiality as the amount of misstatements, including
omissions, that might individually or in the aggregate be reasonably expected to influence the
economic decisions of users made on the basis of the financial statements. The concept of
materiality is applied by the auditor both in planning and performing the audit; evaluating the
effect of identified misstatements on the audit and the effect of uncorrected misstatements, if any,
on the financial statements; and in forming the opinion in the auditor's report.
Opinion Unit
The opinion unit is the level at which the auditor expresses an opinion on a governmental unit's
financial statements. The opinion units are as follows:
Governmental activities column in the government-wide financial statements
Business-type activities column in the government-wide financial statements
Aggregate discretely presented component units in the government-wide financial
statements
Each major governmental fund in the fund financial statements
Each major enterprise fund in the fund financial statements
Aggregate remaining fund information
In some circumstances, the auditor may choose to combine the two aggregate opinion units
(aggregate discretely presented component units and aggregate remaining fund information) into
a single opinion unit referred to as the aggregate discretely presented component unit and
remaining fund information opinion unit. Audit materiality is based on the opinion units.
Therefore, auditors should make separate materiality determinations for purposes of planning,
performing, evaluating the results of, and reporting on the audit of a government's basic financial
statements for each opinion unit.
Performance Materiality
Performance materiality is defined as:
Quote
The amount or amounts set by the auditor at less than materiality for the financial
statements as a whole to reduce to an appropriately low level the probability that the
aggregate of uncorrected or undetected misstatements exceeds materiality for the
financial statements as a whole. If applicable, performance materiality also refers to
the amount or amounts set by the auditor at less than the materiality level or levels for
a particular class of transactions, account balances, or disclosures.
Substantive Procedures
Substantive procedures are tests of transaction details and account balances and analytical
procedures performed to detect material misstatements in the account balances, transaction
classes, and disclosure components of the financial statements. These tests are used to test
financial statement assertions (AU-C §330).
Uncertainties involved in substantive testing constitute detection risk. Detection risk (DR) is
composed of two other risks—analytical procedure risk (AP) and test-of-detail risk (TD).
DR = AP × TD
Written Representations
AU-C Section 580 states that the auditor should request written representations from
management and includes a list of matters for which specific representations should be made.
Those representations generally include:
Management acknowledgment of primary responsibility for the financial statements and
disclosures.
The completeness of minutes of directors and committee meetings provided to the auditor.
All financial records and related data have been made available to the auditor.
No fraud involving management or employees is known.
The AICPA State and Local Government Audit and Accounting Guide identifies additional written
representations the auditor should obtain in a governmental audit. Among those are the
following:
Management has disclosed all instances of identified or suspected noncompliance with laws,
regulations, and provisions of contracts and grant agreements whose effects should be
considered by management when preparing the financial statements.
Management believes the effects of uncorrected financial statement misstatements are
immaterial to the financial statements as a whole for each opinion unit.
Obtaining written representations is one of the required audit procedures. Refusal of
management to provide written representations is considered a scope limitation and requires
modification of the auditor's opinion.
Final Exam
Welcome to Audits of State and Local Governments. Below is the full list of final exam questions
associated with this course. When you launch the final exam for this course, it will contain a
randomized subset of the questions below, totaling 85 questions. During the actual final exam,
the questions will not appear in the same order as they do below. Note: Each attempt at the final
exam will result in a new randomized subset of the questions below. You must earn a score of at
least 70.00% in order to pass the exam and receive CPE credit for this course.
After you have answered all the questions, select the "Submit Answers" button to receive your
score.
Exam Question 1
When should the auditor determine the acceptability of a client's applicable financial reporting
framework?
Exam Question 2
Under what circumstances is a user auditor permitted to make reference to the work of a service
auditor?
Exam Question 3
In the context of group financial statements, what is the basis for the auditor's determination of
whether to accept the engagement?
Whether the auditor believes s/he will be able to obtain
A sufficient appropriate audit evidence over the group
financial statements
B Whether the auditor will be able to sufficiently participate in
the group audit in order to be the principal auditor
Whether the auditor believes a sufficient number of
C component auditors will be involved in the audit in order to
form an opinion on the group financial statements
D Whether to assume responsibility for the work of the
component auditors
Exam Question 4
Which of the following is not an auditor's responsibility in regard to the auditor's use of the
auditor's in-house specialist?
Exam Question 5
Which of the following is not a purpose of the Yellow Book's conceptual framework for
independence?
Exam Question 6
Which of the following statements is true regarding an auditor's independence with respect to an
audited entity?
Exam Question 8
Which of the following statements is true regarding interest cost incurred before the end of a
construction period?
Exam Question 9
When should a majority equity interest be reported as an investment?
Exam Question 10
How is a government required to report a majority equity interest in a component unit?
C A liability
Exam Question 11
Which of the following is not a party to a conduit debt obligation?
A An issuer
B A third-party obligor
D A debt holder
Exam Question 12
Why does an auditor combine observation and inspection with inquiry procedures when obtaining
an understanding of an entity's internal control?
Combining the procedures provides audit evidence about
A relevant assertions related to account balances, transaction
classes, or disclosures.
B Combining the procedures enables the auditor to reduce
the extent of analytical procedures to be performed.
C The AICPA Codification requires auditors to perform the
procedures concurrently in every GAAS audit.
D Inquiry alone is not sufficient to evaluate the design and
implementation of internal control.
Exam Question 13
Why are the responses of members of senior management concerning the likelihood of fraud
perpetrated by themselves less meaningful to the auditor than management's responses
concerning perpetration of fraud by lower levels within the entity?
Exam Question 14
Which of the following statements regarding the auditor's performance of preliminary analytical
procedures related to revenue is true ?
Exam Question 15
Why is it important for the audit team discussion about the possibility of fraud to include the need
for the auditor to maintain professional skepticism throughout the audit?
Exam Question 16
What is the fundamental reason that the auditor needs to obtain an understanding of the entity
and its environment, including its internal control?
Exam Question 17
How does an auditor obtain audit evidence that a control has actually been implemented?
Exam Question 18
What is the impact on the risk of material misstatement when entity management demonstrates
a poor attitude about the need for a strong accounting and financial reporting function?
There is a reduced likelihood that the entity will have strong
A risk assessment, information and communication,
monitoring activities, and control activities components of
internal control.
B There is a reduced likelihood that the auditor will be able to
rely on substantive tests to reduce the risk to an acceptable
level.
The auditor must perform additional risk assessment
C procedures on the control environment to reduce the
pervasiveness of this risk to an acceptable level.
The auditor must default to the maximum level of control
D risk for the entity and abandon additional risk assessment
procedures.
Exam Question 19
Which of the following is a fraud risk that is always present?
C Corruption
Exam Question 20
How does the auditor use financial statement assertions?
Exam Question 21
Which of the following is not a factor in the auditor's determination of relevant financial statement
assertions?
A The volume of transactions or data related to the assertion
B The source of likely potential misstatement
Exam Question 22
Why does the auditor assess the risk of material misstatement at the relevant assertion level?
Exam Question 23
How does detection risk differ from inherent and control risks?
Inherent and control risks are irrelevant to the risk of
A material misstatement, whereas detection risk is focused on
the risk of material misstatement.
B Inherent and control risks shield the auditor from the risk of
material misstatement, but detection risk does not.
Detection risk can only be reduced to an acceptably low
C level when inherent and control risks are acceptably low to
begin with.
D Detection risk is the auditor's risk, whereas inherent and
control risks are the entity's risks.
Exam Question 24
On which of the following considerations is the auditor's determination of significant risks
primarily based?
A Audit risk
B Detection risk
C Inherent risk
D Control risk
Exam Question 25
Which of the following statements is true regarding the auditor's assessment of control risk?
Exam Question 26
Why is the auditor required to understand and evaluate controls relevant to the assessed risks of
material misstatement due to fraud?
Exam Question 27
Why is the auditor required to examine journal entries and other adjustments in every audit?
A To evaluate the inherent risk in the financial reporting
process
B To determine the competence of employees in the financial
reporting process
C To bolster the auditor's assessment of the risk of
misappropriation of assets
D To search for evidence of possible material misstatement
due to fraud
Exam Question 28
Under what circumstances do analytical procedures tend to be more useful as the primary
substantive procedure?
Exam Question 29
How can an auditor use analytical procedures to evaluate the reasonableness of an entity's
accounting estimate?
Exam Question 30
Which of the following best describes the auditor's responsibility for an identified difference noted
as a result of performing a substantive analytical procedure?
Exam Question 31
Which of the following statements regarding the application of audit sampling in a substantive
test of details is true ?
Performance materiality is materiality at the test or
A procedure level for a specific account balance or transaction
class.
B Audit sampling must be applied on a statistical basis.
Tolerable misstatement is materiality at the test or
C procedure level for a specific account balance or transaction
class.
D Audit sampling is the selection and evaluation of 100
percent of a population.
Exam Question 32
Under which of the following circumstances may tolerable misstatement need to be less than
performance materiality?
Exam Question 34
Which of the following statements regarding the population subject to audit sampling is false?
Exam Question 35
Which of the following is not a method for selecting sampling units that are expected to be
representative of the population?
A Block selection
C Systematic selection
D Haphazard selection
Exam Question 36
Under which of the following circumstances should the auditor select a replacement item in an
audit sample?
Exam Question 37
The auditor's expectation of operating effectiveness of controls typically means which of the
following?
Exam Question 38
Which of the following is the main reason auditors find it necessary to test controls over cash
receipts and disbursements in governmental audits?
Exam Question 39
When is it appropriate for an auditor to use only inquiry and observation to test a control?
A Never
Exam Question 40
Which of the following statements regarding the use of a walkthrough as a test of controls is true?
Exam Question 41
Under what circumstances may it be appropriate for the auditor to increase the extent of testing a
particular control?
A When the auditor's first test of the control indicates that the
control is not operating effectively
B When the auditor needs more persuasive audit evidence for
a greater degree of reliance on the effectiveness of a control
C When management and others within the entity insist that
the control operates effectively
D When those charged with governance agree to provide
additional written representations about the control
Exam Question 42
Which of the following statements regarding deviations from prescribed procedures is false?
Exam Question 43
Why are tests of controls using audit sampling usually tests of transactions?
Exam Question 44
Why does the auditor establish a tolerable rate of deviation in a test of controls using audit
sampling?
Exam Question 45
Which of the following statements regarding sampling plans for tests of controls is false?
Exam Question 46
Which of the following is not a risk associated with electronic bank confirmations?
Exam Question 47
Under what circumstances might an auditor confirm the details of a cash disbursement with the
payee?
Exam Question 48
Why might an audit of investments include a review of state and local laws and regulations and
the entity's written investment policy?
Exam Question 49
Why may the auditor need special skills or knowledge to audit derivative instruments?
Exam Question 50
What are the typical audit procedures for receivables at the account balance level?
Exam Question 52
What are the primary substantive procedures for liabilities?
Exam Question 53
When may analytical procedures provide sufficient appropriate audit evidence for relevant
assertions related to expenditures or expenses?
When the auditor has determined that expenditures or
A expenses are not material to an opinion unit's financial
statements
When the auditor's tests of controls over expenditures or
B expenses using audit sampling indicate that tests of details
are not necessary
C When the auditor's tests of details cannot be designed to
obtain sufficient appropriate audit evidence related to
expenditures or expenses
When the auditor has obtained, completely or in part,
D sufficient appropriate audit evidence for relevant assertions
related to accounts payable and other liabilities
Exam Question 54
Which of the following is not a category of resource outflows reported in the government-wide
statement of activities?
A Extraordinary items
B Expenses
C Special items
Exam Question 55
What is the typical audit approach for the audit areas of operating assets, debt, and equity?
Exam Question 56
When would tests of details typically not be necessary for capital assets and expenditures?
Exam Question 57
Why do reconciliations of the fund financial statements to the government-wide financial
statements not relate to opinion units in the fund financial statements?
Exam Question 58
Which of the following statements regarding audit procedures for grant and similar programs is
true?
Exam Question 59
Provided that all eligibility requirements are met, when should a school district recognize revenue
for cash and commodities received from the U.S. Department of Agriculture student nutrition
programs?
Exam Question 60
When should an airport recognize revenue from passenger facility charges?
Exam Question 61
Why may an entity create a financing authority to finance its own capital assets?
Exam Question 62
In an enterprise fund, how does a transportation system generally report the grants and
appropriations received from other governments?
Exam Question 63
Which of the following is not a type of compliance requirement that affects the operations of an
external investment pool?
A Allowable investments
Exam Question 64
Which of the following is a reason for auditors to understand the requirements of research grants
and contracts awarded to public colleges and universities?
Exam Question 65
Why should the auditor evaluate material incurred-but-not-reported (IBNR) amounts payable to
providers participating in the Medicaid program?
A To consider whether the IBNR payables and related
expenditures or expenses are consistent with Medicaid
accounting and reporting requirements
To consider whether the IBNR payables and related
B expenditures or expenses are properly estimated and
recorded at year-end
C To consider whether the IBNR payables are supported by
legitimate claims from properly enrolled providers
D To consider whether the entity is attempting to bill the
federal government for services not performed by providers
Exam Question 66
Which of the following is not a condition of a qualifying trust?
Exam Question 67
The financial statements of a defined benefit pension plan include which of the following?
Exam Question 68
Which of the following is not a required note disclosure for all defined benefit pension plans?
Exam Question 69
How often should an actuarial valuation of the total pension liability be performed for single-
employer and cost-sharing defined benefit pension plans for financial reporting purposes?
A At least biennially
B At least annually
D Never
Exam Question 70
When are contributions receivable recognized by a defined benefit pension plan?
Exam Question 71
How is the net pension liability recognized by single and agent employers in financial statements
prepared using the current financial resources measurement focus and the modified accrual basis
of accounting?
Exam Question 72
What is the general focus of substantive procedures for census data at a single or agent
employer?
Exam Question 73
How is a cost-sharing employer's net share of the collective net pension liability measured?
Exam Question 74
Which of the following statements is true regarding the allocation of the net pension liability for a
cost-sharing employer to individual funds or departments?
A Pronouncements of the Financial Accounting Standards
Board are required to be followed
B This situation does not occur in practice
Exam Question 75
Which of the following is not included in OPEB?
A Medical benefits
C Termination benefits
D Dental benefits
Exam Question 76
Which of the following statements is true regarding a PERS that administers more than one
defined benefit plan that is administered through a qualifying trust?
Exam Question 77
When are OPEB liabilities for benefits generally recognized in the statement of fiduciary net
position in financial statements prepared using the economic resources measurement focus and
accrual basis of accounting?
Exam Question 78
How is the total OPEB liability defined for single-employer and cost-sharing plans?
Exam Question 79
What is the significance of the number of participants in a single-employer or an agent OPEB plan
as of the beginning of the OPEB plan's fiscal year?
Exam Question 80
How is the net OPEB liability recognized in financial statements prepared using the current
financial resources measurement focus and modified accrual basis of accounting?
The portion of the actuarial present value of projected
A benefit payments attributed to past periods of service net of
the OPEB plan's fiduciary net position
B To the extent the liability is normally expected to be
liquidated with expendable available financial resources
As changes in the total OPEB liability resulting from
C current-period service cost less interest on the total OPEB
liability
D Net of projected earnings on the OPEB plan's investments
Exam Question 81
Which of the following is not a factor that affects substantive audit procedures for single
employers' fiduciary net position?
Whether the employer auditor is performing substantive
A procedures on certain elements or accounts of the plan
financial statements
B Whether another auditor has been engaged to issue an
opinion on the financial statements of the plan
Whether the plan prepares a schedule of OPEB amounts
C and engages its auditor to obtain reasonable assurance and
report on the net OPEB liability
Whether the employer auditor has allocated sufficient audit
D resources to perform both tests of controls and substantive
procedures
Exam Question 82
How is a cost-sharing employer's OPEB expense measured?
Exam Question 84
When a multiple-employer OPEB plan is not administered through a qualifying trust, how does
the government report assets it holds that were accumulated for OPEB purposes in a fiduciary
capacity?
B In a note disclosure
C In an agency fund
Exam Question 85
Why does an employer report total OPEB liability instead of net OPEB liability when the plan is
not administered by a qualifying trust?
Exam Question 86
Why may it be difficult for an auditor to find an entity's commitments and contingencies?
Exam Question 87
When should the auditor communicate with those charged with governance about an entity's
ability to continue as a going concern?
When the auditor concludes, after considering
A management's plans, that additional management
representations are needed
When the auditor concludes, after considering
B management's plans, that there is still a substantial doubt
about the entity's ability to continue as a going concern
C When the auditor concludes that those charged with
governance should modify management's plans
When the auditor concludes that those charged with
D governance should take over for management and develop
an independent plan for mitigating the conditions and
events that led to the going-concern doubt
Exam Question 88
Which of the following statements regarding the auditor's inability to obtain appropriate
management representations is false?
Exam Question 89
What is the purpose of performing analytical procedures in the final review stage of the audit?
Exam Question 90
Which of the following is not a section in the standard auditor's report on the financial
statements?
A Management's responsibility
B Emphasis-of-matter paragraph
C Auditor's responsibility
D Auditor's opinion
Exam Question 91
At what level does the auditor opine on the financial statements?
A Opinion unit
B Fund
C Agency
D Department
Exam Question 92
Which of the following is not a type of modification to the standard auditor's report?
A Disclaimer of opinion
B Qualified opinion
C Piecemeal opinion
D Adverse opinion
Exam Question 93
Under what circumstances should the auditor disclaim an opinion on the financial statements
because of a scope limitation?
Exam Question 94
Which of the following is not an auditor responsibility when the entity's financial statements are
prepared in accordance with a special purpose framework?
Exam Question 95
What does an unmodified GAGAS compliance statement mean in a report on a Yellow Book
financial statement audit?