Professional Documents
Culture Documents
PURPOSE OF PLANNING
'The objective of the auditor is to plan the audit so that it will be performed in an effective
manner.’
It is vital that engagements are planned to ensure that the auditor:
• Devotes appropriate attention to important areas of the audit.
• Identifies and resolves potential problems on a timely basis.
• Organises and manages the audit so that it is performed in an effective and efficient
manner.
• Selects team members with appropriate capabilities and competencies. risk assessment
PURPOSE OF PLANNING
• Planning activities:
– Developing the audit strategy
– Developing an audit plan.
THE AUDIT STRATEGY
The audit strategy sets the scope, timing and direction of the audit. It allows the
auditor to determine:
• The resources to deploy for specific audit areas (e.g. experience level, external experts)
• The amount of resources to allocate (i.e. number of team members) when the resources
are to be deployed
• How the resources are managed, directed and supervised, including the timings of
meetings, debriefs and reviews.
THE AUDIT STRATEGY
• Once the audit strategy has been established, the next stage is to develop a specific,
detailed plan to address how the various matters identified in the overall strategy will be
applied.
• The strategy sets the overall approach to the audit, the plan fills in the operational details
of how the strategy is to be achieved.
• The audit plan should include specific descriptions of:
• The nature (what), timing (when) and extent (how much) of risk assessment procedures
and other audit procedures.
THE AUDIT PLAN
• It is performed before the year end. The auditor must consider the timing of audit procedures such as
whether to carry out an interim audit and a final audit, or just a final audit.
• An interim audit should improve risk assessment and make final procedures more efficient.
Tasks that can be done during interim audit:
1. Documenting systems after understanding systems. (KOB)
2. Performing Test of controls(to assess effectiveness of controls)
3. Opening balance of balance sheets items can be verified.
4. Transactions can be tested.
INTERIM AND FINAL AUDIT
Purpose of interim audit: it helps auditors to spread the work load and it is specifically
useful where detection risk is high due to short deadline.
Timing of interim audit: It should be
• Neither too late: if performed too late it can interfere with the client`s year end
procedures. 31 Dec 2020
• Nor too early: if performed too early there will be not enough data available to verify.
• It should be performed after mid year.
INTERIM AND FINAL AUDIT
• The auditor's report can be signed closer to the year-end resulting in more timely
reporting to shareholders.
• If the interim audit identified areas of increased risk, for example, controls were found
not to be working effectively, increased substantive procedures will be required at the
final audit.
FRAUD AND ERROR
• Internal auditors: can help management fulfil their responsibilities in respect of fraud and
error. Typical functions the internal auditor can perform include:
• Testing the effectiveness of the internal controls at preventing and detecting fraud and error
and provide recommendations for improvements to the controls.
• Performing fraud investigations to identify:
– how the fraud was committed
– the extent(duration) of the fraud
– provide recommendations on how to prevent the fraud from happening again.
FRAUD AND ERROR
• Consider the potential for management override of controls and recognise that audit
procedures that are effective for detecting error may not be effective for detecting fraud.
• Consider any incentives/pressure to commit fraud such as profit/revenue related bonuses
or applications for finance.
– Opportunities to commit fraud such as ineffective internal controls.
– Management’s attitude e.g. disputes with the auditor over auditing matters or failure to
remedy known deficiencies.
FRAUD AND ERROR
• Obtain written representation from management and those charged with governance
that they:
1. Have disclosed to the auditor the results of management’s fraud risk assessment.
2. Have disclosed to the auditor any known or suspected frauds.
3. Have disclosed to the auditor any allegations of fraud affecting the entity’s financial
statements.
FRAUD AND ERROR
3. In addition to these responsibilities the auditor must also consider whether they have a
responsibility to report the occurrence of a suspicion to a party outside the entity. Whilst
the auditor does have an ethical duty to maintain confidentiality, it is likely that any legal
responsibility will take precedence. In these circumstances it is advisable to seek legal
advice.
4. If the fraud has a material impact on the financial statements the auditor's report will be
modified/qualified. When the auditor's report is modified, the auditor will explain why it has
been modified and this will make the shareholders aware of the fraud.
COMPLIANCE WITH LAWS & REGULATIONS
• Remaining alert to the possibility that other audit procedures applied may bring instances
of non-compliance to the auditor's attention.
• Inspect correspondence between the management & the legal advisor of the company.
• Inspect board minutes for management's discussion on actions to be taken regarding the
non-compliance.
• Obtaining written representation from the directors that they have disclosed to the
auditors all those events of which they are aware which involve possible non-compliance,
together with the actual or contingent consequences which may arise from such non-
compliance.
COMPLIANCE WITH LAWS & REGULATIONS
Reporting non-compliance
• The auditor should report non-compliance to management.
• If the auditor suspects management is involved in the non-compliance, the matter should
be reported to the audit committee .
• If the non-compliance has a material effect on the financial statements, a qualified or
adverse opinion should be issued.
• The auditor should also consider whether they have any legal or ethical responsibility to
report non-compliance to third parties e.g. to a regulatory authority.