Front | Back |
Internal control
|
A process, effected by an entity’s board of directors, management and other personnel, designed to provide reasonable assurance regarding the achievement of objectives
|
•Reliability of financial reporting
•Effectiveness and efficiency of operations
•Compliance with applicable laws and regulations
|
3 objective categories of internal control
|
•Human error
•Collusion
•Management override
•Cost/benefit analysis
|
Limitations of internal control
|
Cost benefit analysis
|
–There is often a trade-off between the cost and the effectiveness of internal controls.
–The concept of reasonable assurancerecognizes that the cost of an entity’s internal control should not exceed the benefits that are expected to be derived.
|
Managements responsibility
|
–Responsibility for establishing and maintaining adequate internal control over financial reporting
–Assess and report on the effectiveness of internal control over financial reporting
|
Auditors responsibility
|
–For public companies, must audit and issue an opinion about the effectiveness of the internal control over financial reporting
–For each fraud risk, must evaluate whether controls are in place to mitigate the fraud risk
–Must assess control risk to determine the nature, timing and extent of substantive procedures to be performed
|
•Committee of Sponsoring Organizations of the National Commission of Fraudulent Financial Reporting (TreadwayCommission)
|
COSO
|
•Includes the FEI, AAA, IIA, IMA, AICPA
|
Coso includes what organizations
|
•Control Environment
•Risk Assessment
•Control Activities
•Monitoring
•Information and Communication
|
Internal control componenets (COSO)
|
Attitudes of managers and directors
|
The most pervasive influences on the control environment
|
Preventive controls
|
_____________ are better if it is cost effective
|
Control environment
|
•Sets the “tone at the top”of an organization, influencing the control consciousness of its people.
•It is the foundation for all other components.
|
Control environment
|
An auditor must obtain a detailed understanding of the ______________ and document that understanding
|
Control environment general principles
|
•Integrity and ethical values
•Board of directors
•Management’s philosophy and operating style
•Organizational Structure
•Financial reporting competencies
•Authority and responsibility
•Human resources
|
•3-6 “outside”members of Board.
|
Audit committee composition
|