Professional Documents
Culture Documents
Page 2 of 4
ReSA: The Review School of Accountancy
Auditing Theory: Understanding of the Entity’s Internal Control AT-08
18. A proper segregation of duties requires:
A. That an individual authorizing a transaction should record it also.
B. That an individual authorizing a transaction maintain custody of the asset that resulted
from the transaction.
C. That an individual maintaining custody of an asset be entitled to access the accounting
records for the asset.
D. That different individuals should handle custody, authorization and record-keeping.
19. A process implemented by management to assess the effectiveness of internal control
performance over time.
A. Monitoring of controls C. Tests of controls
B. Quality control system D. Risk assessment procedures
20. An entity’s ongoing monitoring activities often include:
A. Periodic audits by the audit committee.
B. Reviewing the purchasing function.
C. The audit of the annual financial statements.
D. Control risk assessment in conjunction with quarterly reviews.
21. Which of the following pertains to the control environment?
A. Management has created and maintained a culture of honesty and ethical behavior
B. The process in which operating activities are assigned
C. Both a and b
D. Neither a nor b
22. Which of the following pertains to risk assessment?
A. An audit client’s process for identifying business risks relevant to the financial
reporting objective
B. Business procedures, within both IT and manual systems, by which those
transactions are initiated, recorded, processed, corrected, transferred to the general
ledger and reported in the financial statements
C. Client policies on limiting physical access to assets and records
D. All of the above
23. Which of the following pertains to information systems?
A. An audit client’s process for identifying business risks relevant to the financial
reporting objective
B. Business procedures, within both IT and manual systems, by which those
transactions are initiated, recorded, processed, corrected, transferred to the general
ledger and reported in the financial statements
C. Client policies on limiting physical access to assets and records
D. All of the above
24. According to PSA 315, the auditor uses the understanding of internal control to:
A. Identify types of potential misstatements
B. Consider factors that affect the risk of material misstatements
C. Design the nature, timing and extent of further audit procedures (i.e., tests of
controls and substantive tests)
D. All of these.
25. In an audit of financial statements, an auditor’s primary consideration regarding a control is
whether it:
A. Enhances management’s decision-making processes.
B. Reflects management’s philosophy and operating style.
C. Affects management’s financial statement assertions.
D. Provides adequate safeguards over access to assets.
26. An auditor would most likely be concerned with internal control policies and procedures that
provide reasonable assurance about:
A. The efficiency of management’s decision-making process.
B. Appropriate prices the entity should charge for its products.
C. Methods of assigning production tasks to employees.
D. The entity’s ability to process and summarize financial data.
27. These controls may also be relevant to the audit if the external auditor intends to make use
of company-produced information in designing and performing further audit procedures (tests
of controls and substantive tests):
A. Controls over completeness and consistency.
B. Controls over existence and occurrence.
C. Controls over completeness and accuracy.
D. Controls over presentation and disclosure
Page 3 of 4
ReSA: The Review School of Accountancy
Auditing Theory: Understanding of the Entity’s Internal Control AT-08
28. Which of the following is (are) a correct statement(s) for internal control systems of small
companies?
A. Elements of internal control for small entities may not be available in documentary
form
B. Segregation of incompatible duties are often inadequate due to staff limitations
C. The involvement of the owner-manager may be a compensatory control for the
inadequate segregation of incompatible duties
D. All of the above
-end of AT-08-
Page 4 of 4