Deck 8: Audit Risk Assessment

A)risk assessment process.
B)information system.
C)legal environment.
D)control environment.

A)Board of directors.
B)Audit committee.
C)Organisational structure.
D)Accounting package used.

A)The operations of the business entity have become so unwieldy that management must rely on the chief financial officer to effectively control operations.
B)Checks and reviews protect against employee collusion and reduce the chance of employee fraud.
C)Internal control procedures must be utilised to maintain accurate accounting records.
D)It is impractical for auditors to audit most companies within economic fee limitations without relying on the client's system of internal controls.

A)All accounting records can generally be kept by the same person.
B)The various steps involved in executing a transaction should be separated.
C)The responsibility for executing a transaction, recording it and maintaining custody of resulting assets should be assigned to different individuals or departments.
D)All of the above are correct statements.

A)Discussions with management.
B)Performing substantive procedures.
C)Observing processes in action.
D)Inspecting relevant documents.

A)and concealed through collusive actions.
B)by two or more employees.
C)and concealed by a single employee.
D)by accounting personnel.

A)Internal controls are more important when companies grow in size and complexity.
B)Effective internal controls are able to provide absolute assurance for an entity's management and board.
C)Auditors have a statutory legal obligation to report on internal controls within the entity.
D)The control environment is the auditor's overall attitude, awareness and actions regarding internal control and its importance in the entity.

A)The sex of directors.
B)Experience and stature of directors.
C)The extent of director's involvement and scrutiny of management's activities.
D)Independence from management.

A)Internal control systems focus on routine transactions.
B)Management participating in the supervision of operations.
C)They compare actual performance with budgeted performance.
D)All of the above.

A)being sufficiently skilled.
B)exercising disciplinary action for violations of expected behaviour.
C)the experience and stature of directors.
D)the approach taken to monitoring business risks.

A)Fraud.
B)Complex transactions.
C)Related party transactions.
D)Transactions within the normal course of business.

A)Expanding foreign exchange operations.
B)Changing the external auditor.
C)New personnel.
D)New technology.

A)Existence.
B)Rights and obligations.
C)Completeness.
D)Accuracy, valuation and allocation.

A)Collusion.
B)Mistakes in judgement.
C)Accounting override.
D)Management override.

A)Audit risk.
B)Operational risk.
C)Compliance risk.
D)Financial risk.

A)organisational controls.
B)systems development and maintenance controls.
C)data and procedural controls.
D)access controls.

A)Completeness.
B)Occurrence.
C)Accuracy.
D)Cut-off.

A)control trail.
B)audit trail.
C)tracing trail.
D)accounting trail.

A)Output controls.
B)Input controls.
C)General controls.
D)Processing controls.

A)Industry of operation.
B)Susceptibility to misappropriation.
C)Sensitivity of valuations to economic factors.
D)All of the above.

A)a material misstatement will occur in the accounting process.
B)audit procedures will fail to detect a weak control system.
C)control procedures will not detect a material misstatement that occurs.
D)the prescribed control procedures will not be applied uniformly.

A)good access controls.
B)strong firewalls.
C)controls to detect attempts at unauthorised access.
D)all of the above.

A)the method of processing.
B)the extent of segregation of duties.
C)the audit procedures conducted.
D)all operations performed in processing the class of transactions.

A)+DR if +CR and +IR.
B)+DR if -CR and -IR.
C)+DR if +CR and -IR.
D)+DR if -CR and +IR.

A)documenting the understanding.
B)tests of controls.
C)substantive tests.
D)procedures to obtain an understanding.

A)Weak internal controls may increase the risk of material misstatement.
B)To determine the level of inherent risk.
C)Because strong internal controls indicate management integrity.
D)All of the above.

A)the existing controls.
B)the standard controls for the client's industry.
C)a total absence of controls.
D)an ideal set of controls.

A)Control risk.
B)Rejection risk.
C)Acceptance risk.
D)Deception risk.

A)the procedures to obtain an understanding.
B)the documentation of the understanding.
C)all the planned tests of controls.
D)all the above.

A)Internal control questionnaire.
B)Flow chart and narrative memoranda.
C)Both of the above.
D)None of the above.

A)It may be completed in a mechanical fashion.
B)It reduces errors of omission.
C)It provides guidance for less experienced staff.
D)It is usually developed by experienced professionals.

A)confirming transactions.
B)inspecting documents and records.
C)enquiring of appropriate management.
D)reviewing previous experience with the client.

A)the same as audit risk.
B)medium.
C)high.
D)low.