Deck 8: Internal Control and Control Risk

A) Control risk
B) The control environment
C) The accounting system
D) Control procedures

A) assess control risk.
B) evaluate internal controls in place in an accounting system.
C) understand the internal controls procedures for an accounting system.
D) highlight inadequate aspects of internal control.

A) whether the financial statements are auditable.
B) the level of control risk supported by the understanding obtained.
C) the level of control risk.
D) whether a lower level of control risk could be supported.

A) qualitative
B) sufficient appropriate
C) absolute
D) reasonable

A) run manuals.
B) minutes of the board of directors.
C) the corporate bylaws.
D) systems manuals.

A) Management overriding a control
B) Misunderstanding of instructions
C) Collusion by employees
D) Inappropriate assessment of the effectiveness of internal controls

A) Examining the invoices for signatures
B) Inquiry
C) Reperformance
D) Observation

A) the tests of that control will be reduced this year.
B) the auditor would not test this area again this year.
C) it will be unnecessary to test that control this year.
D) the extent of tests of that control may be reduced this year if the auditor determines that it is still in place.

A) control risk may be higher than the initial assessment.
B) the auditor determines that substantive testing is not effective.
C) controls are expected to be operating effectively.
D) controls are not operating as effectively as initially assessed.

A) ensure reliability of financial reporting.
B) provide reliable data and promote efficiency.
C) promote efficiency and encourage adherence to policy.
D) provide reliable data, safeguard assets and comply with the Corporations Act.

A) Efficiency and effectiveness of operations
B) Obtaining the best internal control system possible
C) Compliance with applicable laws and regulations
D) Reliability of financial reporting

A) authorisation, payment and recording.
B) authorisation, recording and custody.
C) custody, execution and reporting.
D) authorisation, execution and payment.

A) transactions are executed in accordance with management's general or specific authorisation.
B) employees act with integrity when performing their assigned tasks.
C) unusual transactions are accurately recorded.
D) collusive activities would be detected by segregation of employee duties.

A) detection risk is low.
B) it is a small entity.
C) control risk is assumed to be maximum.
D) all of the above

A) auditing procedures are to be restricted.
B) external audit assurance is no longer necessary.
C) improvements in internal control are overdue.
D) controls are operating as intended.

A) 4, 1, 2, 3
B) 1, 2, 3, 4
C) 1, 3, 2, 4
D) 2, 1, 3, 4

A) reviewing the process of recording transactions.
B) reviewing and evaluating the client's accounting processes.
C) tracing a sample of documents through the accounting process.
D) touring the client's plant and operations.

A) account balances.
B) classes of transactions.
C) both A and B, because they are equally weighted.
D) both A and B, because they vary from client to client.

A) Compliance with applicable laws and regulations
B) Efficient and effective use of resources
C) Reliable financial reporting
D) Reducing control risk

A) Australian Securities Industry Commission (ASIC).
B) board of directors.
C) chief executive officer.
D) audit committee.

A) detection risk is set as high.
B) the auditor reevaluates control risk.
C) the auditor predominately performs substantive tests.
D) the auditor performs tests of controls.

A) recommended by the Corporations Act.
B) required by auditing standards.
C) required by accounting standards.
D) required by the ASX for listed companies.

A) significant deficiencies in the design or operation of the internal controls.
B) intentional attempts by client personnel to limit the scope of the auditor's field work.
C) flagrant violations of the entity's documented conflict- of- interest policies.
D) material irregularities or illegal acts perpetrated by high- level management.

A) defalcation.
B) error.
C) non- compliance with accounting standards.
D) unbiased information.

A) fewer transactions to process.
B) a voucher system.
C) a wider segregation of duties.
D) the owner- manager's personal interest and close relationship with the personnel.

A) risks of ineffective audit procedures.
B) risks of making a loss for the year.
C) risks of being over- audited.
D) risks relevant to the preparation of appropriate financial statements.

A) regular review by top management.
B) competent trustworthy personnel.
C) proper authorisation procedures.
D) separation of duties.

A) is reduced but not removed; therefore, it is still of concern to the auditor.
B) is no longer a concern because the potential for misstatement has been sufficiently reduced.
C) could cause a material loss, so it must be tested using substantive procedures.
D) is magnified and must be removed from the sampling process and examined in its entirety.

A) cost/benefit relationship of the system of internal control.
B) timing of the tests to be performed.
C) achievement of the objectives of the system of internal control.
D) comparison of recorded accountability with assets.

A) analytical review procedures.
B) tests of transactions.
C) tests of controls.
D) reperformance procedures.

A) authorisation of transactions.
B) reliability of statistical data.
C) decision processes of management.
D) achievement of the company's objectives and goals.

A) codes of conduct.
B) communication of entity values and behavioural standards to personnel through policy statements.
C) management's actions to reduce incentives for dishonest acts.
D) all of the above

A) sufficiently simple to ensure they are clearly understood.
B) prenumbered consecutively.
C) designed for multiple use.
D) prepared at some time after a transaction takes place.

A) Automatic reorder points for raw materials inventory
B) A sales price list for merchandise
C) Credit limits for various classes of customers
D) A sales manager's authorisation for a sales return

A) the company's controls do not promote effectiveness.
B) the company's controls do not promote efficiency.
C) the controls affecting the reliability of financial reporting are inadequate.
D) all of the above

A) a felony.
B) collusion.
C) defalcation.
D) malfeasance.

A) Backup and recovery procedures
B) Automated internal verification procedures
C) Physical controls
D) Access controls

A) observation.
B) reconciliation.
C) inspection.
D) reperformance.

A) it is impossible to verify them, so the auditor will have to rely on substantive tests.
B) it is impossible to audit that area of client's system.
C) the only thing available as verification of their effectiveness is inquiry of management.
D) the auditor generally observes them being applied.

A) owners.
B) directors.
C) top management.
D) all of the above

A) Procedures whose effectiveness depends on segregation of duties can be circumvented by collusion.
B) The competence and integrity of client personnel provides an environment conducive to accounting control and provides assurance that effective control will be achieved.
C) The benefits expected to be derived from effective internal accounting control usually do not exceed the costs of such control.
D) Procedures designed to assure the execution and recording of transactions in accordance with proper authorisations are effective against irregularities perpetrated by management.

A) Documentation must include procedural write- ups.
B) Documentation must include flowcharts.
C) No documentation is necessary, although it is desirable.
D) No one particular form of documentation is necessary, and the extent of documentation may vary.

A) it eases the burden on the auditor's requirement to do a complete study of the controls this year.
B) it is sufficient for the auditor just to inquire of the client whether the controls have been changed since last year.
C) the auditor can skip the evaluation of this area on repeat engagements.
D) this information can be updated and carried forward to the current year's audit.

A) analytical tests.
B) tests of controls.
C) a walk- through.
D) tests of transactions.

A) testing the internal controls.
B) documenting the auditor's understanding of internal controls.
C) designing the audit manual and procedures.
D) documenting the auditor's understanding of the client's organisational structure.

A) attitude of its management.
B) effectiveness of its independent auditor.
C) effectiveness of its internal auditor.
D) attitude of its employees.

A) a basis for constructive suggestions to the client for improving the accounting system.
B) a method for safeguarding assets, checking the accuracy and reliability of accounting data, promoting operational efficiency and encouraging adherence to prescribed managerial policies.
C) reasonable protection against client fraud and defalcations by client employees.
D) an understanding that is sufficient for the auditor to plan the audit adequately.

A) Inquiry
B) Reperformance
C) Observation
D) Documentation

A) a thorough knowledge of accounting.
B) independence from the original data preparer.
C) an analytical and inquisitive mind.
D) all of the above

A) defalcation.
B) error.
C) non- compliance with accounting standards.
D) unbiased information.

A) increasing
B) reducing
C) requiring
D) estimating

A) Yes, in testing controls only.
B) Yes, in both obtaining an understanding of controls and testing controls.
C) Yes, in obtaining an understanding of controls only.
D) No.

A) Tests of the specific items making up the balance in a given general ledger account
B) Tests of matching batch totals of quantities shipped to quantities billed
C) Tests of the additions to property, plant and equipment by physical inspections
D) Tests of the inventory pricing to vendors' invoices

A) The primary disadvantage of the questionnaire approach is that individual parts of the system are examined without providing an overall view.
B) The questionnaire can cover each audit area reasonably quickly, and it can be accomplished at the beginning of the audit engagement.
C) The primary advantage of the questionnaire approach is the relative completeness of coverage of each audit area that a good instrument affords.
D) It is unacceptable for the auditor to rely on an internal control questionnaire that has been filled out by client's personnel.

A) 2, 3, 4
B) 1, 2, 4
C) 1, 2, 3
D) 1, 3, 4

A) When reliable and understandable narratives, flowcharts and questionnaires are available from the client, it is desirable to use them rather than have the auditor prepare his or her own documents.
B) It would be unusual to use both a narrative and a flowchart to describe the same system.
C) The advantage of the narrative description is the ease of describing the details of the internal controls.
D) The use of both questionnaires and flowcharts on the same engagement is highly desirable for understanding the client's system.

A) larger sample sizes for the tests of control would be appropriate.
B) a greater number of controls must be tested.
C) more tests must be conducted on each control.
D) all of the above would apply.

A) adequacy of the computer system.
B) competency and dependability of the people using it.
C) ability of the internal audit staff to maintain it.
D) proper implementation by management.

A) defalcation.
B) error.
C) non- compliance with accounting standards.
D) unbiased information.

A) financial statements may not accurately reflect accounting standards correctly.
B) the accuracy of the output of accounting systems is based on the accuracy of the input and processing.
C) the accuracy of the output of accounting systems is based on the accuracy of the input.
D) all of the above.

A) determine whether transactions are recorded to permit preparation of financial statements in conformity with generally accepted accounting principles.
B) perform reduced tests of controls to the extent outlined in the audit program.
C) not increase the extent of predetermined substantive tests.
D) determine the control procedures that should prevent or detect errors and irregularities.

A) Checking approval of customer sales orders
B) Matching prices on sales invoices against a standard price list
C) Observation of staff performing their duties
D) Observation of the inventory count

A) direct personal observation of the employee who applies control procedures.
B) making inquiries of coworkers about the employee who applies control procedures.
C) inspection of third- party documents containing the initials of who applied control procedures.
D) preparation of a flowchart of duties performed and available personnel.

A) after identifying specific controls that will reduce control risk and making an assessment of control risk.
B) after testing the controls for effectiveness.
C) after obtaining an understanding of the control environment and the accounting system at a fairly detailed level.
D) only after all three steps above are completed.

A) relevant
B) realistic
C) required
D) relative

A) will prevent material misstatements from occurring.
B) will either prevent material misstatements or detect and correct them.
C) will detect and correct material misstatements.
D) will neither prevent material misstatements nor detect and correct them.

A) risk assessment.
B) data preparation.
C) document and report generation.
D) data entry.

A) proper authorisation of transactions.
B) adequate separation of duties among personnel.
C) the use of physical precautions.
D) adequate documentation.

A) confidential documents.
B) general ledger and journals.
C) physical assets of a company.
D) all of the above

A) audit report.
B) management letter.
C) reportable conditions letter.
D) engagement letter.

A) When documenting the auditor's understanding of internal control
B) When evaluating the system of internal administrative control
C) When performing preliminary analytical procedures
D) When performing tests of controls

A) in the United States.
B) in neither Australia nor the United States.
C) in Australia.
D) in both Australia and the United States.

A) determine the nature, timing and extent of substantive tests for financial statement assertions.
B) modify the initial assessments of inherent risk and preliminary judgements about materiality levels.
C) ascertain whether the opportunities to allow any person to both perpetrate and conceal irregularities are minimised.
D) determine whether procedures and records concerning the safeguarding of assets are reliable.

A) All employees become bored or dissatisfied.
B) All employees can reduce the system to a shambles.
C) Other controls can be absent.
D) All employees need numerous controls.

A) calculated by using the formulas provided in ASA 315.
B) calculated by using the audit risk model.
C) an economic issue, trading off the costs of testing controls against the cost of testing balances.
D) determined by using actuarial tables.

A) Maintaining insurance for fire and theft
B) Carefully selecting and training employees
C) Fixing responsibility for the performance of employee duties
D) Management demonstrating by policy and example that it values accuracy and integrity

A) controls are not operating as effectively as initially assessed.
B) control risk may be higher than the initial assessment.
C) the auditor determines that substantive testing is not effective.
D) controls are expected to be operating effectively.