Professional Documents
Culture Documents
Session- 9
ALI SAJJAD
Contents
1. Why audit planning is essential.
2. audit planning and audit approach procedure
3. accept client and initial audit planning
4. engagement letter
5. purpose of audit planning
6. professional skepticism
7. interim audit and final audit
8. Understand entity and its environment
9. understanding accounting and internal control
system
10. Risk and materiality
11. Materiality
Three reasons why auditor should
properly plan engagement
1. Acceptable
audit risk
1. Objectives
2. Responsibilities of management
3. Responsibility of auditor
4. Engagement limitations
5. Expected fees
Audit engagement letter
Written representative letter
Preparing an audit plan is the first stage in the conduct of an audit engagement.
The plan sets out answers to three main questions (the ‘3Ws’):
The auditor needs this knowledge and understanding in order to assess the risk
attached to the audit. Risk assessment is a key feature of the audit planning process
and the assessment of risk in the audit will affect:
The planning process is essential to all audits, both internal and external. It is equally
important to other assurance engagements such as a ‘review’ assignment.
1.2 Professional skepticism
“An attitude that includes a questioning mind,
being alert to conditions which may indicate
possible misstatement due to error or fraud,
and a critical assessment of audit evidence”.
1.3 Interim audit final audit
Interim audit and final audit
Most large audits will be split into two phases. Much of the systems assessment work and
transaction testing will be carried out on the interim audit (taking place perhaps two-thirds of the
way through the year) with the balance of the work and testing of statement of financial position
items taking place at the final audit shortly after the year end.
A number of key benefits may arise from spreading the work across interim and final audit such as:
1. More flexible resource planning within the firm – the timing of interim audit is typically
more flexible than the timing of final audit. This helps reduce demand for audit staff
during ‘busy season’ (traditionally the first few months of a calendar year when many
clients require their final audit to take place)
1. Substantive testing. Note that where substantive testing was performed at the
interim phase auditors typically test the subsequent period between interim audit
and period end.
2. Tests to ensure conclusions formed at interim audit remain valid
3. Obtaining third party confirmations such as bank letters and trade receivables
confirmations
4. Analytical review and subsequent events review
5. Subsequent events review
6. Obtaining written representations
ISA 330 specifically states that the following procedures can only be performed at or after the
period end:
1. Agreeing the financial statements to the accounting records;
2. Examining adjustments made during the course of preparing the financial statements; and
3. Procedures to respond to a risk that, at the period end, the entity may have entered into
improper sales contracts, or transactions may not have been finalized
2. Understanding accounting and internal control
system
If the entity has an internal audit function then auditor shall obtain an understanding of the
nature of the internal audit function’s responsibilities, its organizational status, and the
activities performed, or to be performed.
The auditor should try to reach a judgment about how strong (or weak) the internal controls
are, in order to make a decision about the amount of testing that should be carried out in the
audit. He should consider:
1. The financial statement level refers to risks which are pervasive to the
financial statements as a whole and which potentially affect many
assertions (see below). An example might be if management have a
tendency to override internal controls – this would affect all areas of the
accounting systems.
1. the areas where risk of misstatement (error) appear to exist, and the nature of the risk
2. when an error should be considered material, and when it may be ignored
3. what aspects of the audit will be the most difficult to plan because of the high risk of
misstatement.
The auditor should consider:
1. assessments of inherent risks and control risks, and the identification of significant audit areas
2. setting materiality levels
3. the possibility of material misstatements, including those arising because of fraud (rather than unintentional
error)
4. the identification of complex accounting areas, particularly those involving accounting estimates. (Areas of
accounting where the estimates used will be more difficult to audit.)
The auditor will then focus his work on balances in the financial statements where he
considers there is a material risk of misstatement. High risk/material items will be
audited in detail, but low risk/immaterial items will receive less attention.
Approaches
Most firms now use a mixture of the audit risk approach and a systems-
based approach.
2.4 Materiality:
“Information is material if its omission or misstatement could influence the
economic decisions of users taken on the basis of the financial statements.”
AUDITORS ENTITLED TO ASSUME THAT USERS:
1. have a reasonable knowledge of business and are willing to study the information in
the financial statements diligently
2. understand that financial statements are prepared and audited to levels of materiality
Profitability ratios
Profitability Ratios
Earnings Net income
=
per share Average common shares outstanding
Operating income
Profit margin =
Net sales
3. Audit risk
3.1 Risk based audit approach
3.2 Response to assessed risk
1. At the financial statement level these “responses” are overall ones, which
may include:
2. emphasizing to the audit team the need to maintain an attitude of
professional skepticism
3. assigning more experienced staff or increased supervision of staff
4. the use of experts
5. changing the nature, timing and extent of audit procedures (for example,
performing more substantive procedures at the final rather than at the interim
audit, or obtaining more “persuasive” audit evidence).
The assessment of the risks at this level and therefore the auditor’s response is very much
affected by the auditor’s assessment of the control environment. An effective control
environment will be likely to increase the auditor’s confidence in controls in all areas and
allow him to carry out more procedures at the interim audit and to carry out less tests of
detail. Both of these terms are considered in later chapters.
Detection risk
PRACTICE QUESTIONS
ACTIVITY
THANKS