Professional Documents
Culture Documents
CPA Part 1 Auditing
CPA Part 1 Auditing
Company directors have a legal requirement to produce true and fair annual
financial statements. To help ensure this is done, companies are required to
have their published financial statements audited by an external team of
experts.
This additional work is carried out by internal auditors, who may be company
The UK Corporate Governance Code highlights the need for entities to maintain
good systems of internal control (RACE CAM I). An internal audit function is
part of the control environment
Factors to consider when assessing the need for an internal audit function
include:
Set up cost
Predicted savings by not having to engage external consultants , where
such work will now be carried out by the internal audit department
1
© Cenit Online 2015
CPA P1 AUDITING
Management’s perceived need for assessing risk and internal control
Whether it is more cost effective to outsource the work
Internal auditors’ work has expanded in recent years, and the role of internal
audit often now includes:
The directors of a company are responsible for the detection and prevention of
fraud.
2
© Cenit Online 2015
CPA P1 AUDITING
Internal Audit v External Audit
3
© Cenit Online 2015
CPA P1 AUDITING
organisation
Use the mnemonic “ROPERS” to remember the headings under which to compare
Internal Audit and External Audit
4
© Cenit Online 2015
CPA P1 AUDITING
Types of Risk
Prioritising Risk
Clearly, high likelihood, high impact risks cannot be ignored and need to be
managed in some way. However, risk management is partly a cost/benefit
exercise, so low likelihood, low impact risks may not be addressed at all.
5
© Cenit Online 2015
CPA P1 AUDITING
Managing Risk
6
© Cenit Online 2015
CPA P1 AUDITING
Where there is an internal audit function, the audit committee should annually
review its scope of work, authority and resources, again having regard to those
factors.
Where there is no internal audit function, the audit committee should consider
annually whether there is a need for this function and make a recommendation
to the board.
Internal audit staff are typically expected to carry out a variety of tasks:
7
© Cenit Online 2015
CPA P1 AUDITING
company and yet is expected to give an objective opinion on matters for
which management are responsible
Internal audit will only succeed if it is properly staffed and resourced
If internal auditors identify fraud, they may be unwilling to disclose it
for fear of the repercussions (which could involve the collapse of the
company and the loss of their job)
8
© Cenit Online 2015
CPA P1 AUDITING
1) Economy
Attaining the appropriate quantity and quality of physical, human and financial
resources (inputs ) at the lowest cost
2) Efficiency
3) Effectiveness
How well an activity is achieving its policy objectives or other intended effects.
When performance indicators are designed, they should have such objectives in
mind.
9
© Cenit Online 2015
CPA P1 AUDITING
Example of Value for Money Audit: Busy Buses operates a number of bus routes
around the country. Its objectives are to gain market share and maximise
profits, whilst being known as the best provider of public transport in the
country. It is performing a VFM audit.
10
© Cenit Online 2015
CPA P1 AUDITING
ECONOMY
Petrol/diesel may best be supplied by having their own private petrol pumps
where the buses are garaged.
Staff costs will be monitored against other bus companies, to ensure that they
are competitive (to encourage good staff) but not too high.
Given the company’s objective to be the best, it may be wise to pay staff rates
that are higher than the industry average.
EFFICIENCY / EFFECTIVENESS
• % occupancy by route
Internal audit will be required to maintain the data to support this ongoing
analysis, as well as suggesting additional measures.
BEST VALUE
Particularly popular in local government, where public money is being spent and
there must be a public demonstration that value is being achieved. Commonly
known as the “4 C’s”:
1) Challenge
2) Compare
12
© Cenit Online 2015
CPA P1 AUDITING
3) Consult
All users and providers of the service are invited to put forward their views
4) Compete
Financial Audits
The most traditional part of internal audit work, involving monitoring of financial
It is this area of work that external auditors are most likely to want to rely on
in order to reduce their own work.
OPERATIONAL AUDITS
13
© Cenit Online 2015
CPA P1 AUDITING
Regulatory Compliance
There will be a number of regulations a company will need to comply with. Some
will be specific to the industry the client operates in (e.g. regulations over
disposing of hazardous waste in the nuclear industry) and some will apply to
companies operating in a particular region or country (e.g. tax laws). Internal
audit may assist with or review compliance with these laws and regulations.
Fraud Investigations
Internal auditors may be asked to assess the level of customer service . They
could do this by phoning in or visiting stores/outlets and pretending to be
customers.
This may include testing controls operating centrally (at head office) or at
branches
As already discussed
As already discussed
14
© Cenit Online 2015
CPA P1 AUDITING
Procurement
The Internal Audit Dept may consist of employees of the company or the
function may be outsourced to a service provider
Entity does not have to recruit staff Independence and Objectivity issues if
the entity uses the same firm to
provide both internal and external
audit services
15
© Cenit Online 2015
CPA P1 AUDITING
The service provider has different Cost of outsourcing may be so high (i.e.
specialist skills redundancy cost of existing IA staff
and rates charged by Outsourcing
firm) that the directors may choose
not to have any Internal Audit
Function
Costs such as staff training are Service Provider staff may only have a
eliminated limited knowledge of the entity
Typically, an internal audit report will be addressed to the audit committee and
is likely to have the following structure, or something similar:
16
© Cenit Online 2015
CPA P1 AUDITING
Terms of Reference
Executive summary
Key recommendations
Actions, with responsibilities and timescale
Appendices with detailed findings from the procedures undertaken
ISA 610 – Using The Work Of Internal Auditors provides guidance to the
external auditor when the external auditor expects to use the work of the
internal audit function to modify the nature or timing, or reduce the extent , of
audit procedures to be performed directly, by the external auditor.
The role of internal audit is determined by management and the directors and
its objectives differ from those of the external auditors who are engaged to
report independently on the financial statements. The external auditors’
17
© Cenit Online 2015
CPA P1 AUDITING
primary concern is whether the financial statements are free from material
misstatement. The internal audit function’s objectives vary according to the
requirements of management and the directors and, generally, less emphasis is
placed on materiality considerations.
There are a number of important statements in ISA 610 that reflect mandatory
practice:
S Scope of work: How are internal auditors employed and how are their
recommendations implemented?
P Professional care demonstrates care and diligence in the way that they
plan, record and monitor their work.
18
© Cenit Online 2015
CPA P1 AUDITING
‘When external auditor intends to use specific work of internal auditing, the
external auditor should evaluate and perform audit procedures on that work to
confirm its adequacy for the external auditor’s purposes’.
This evaluation may significantly reduce the amount of detailed testing that the
external auditors would normally carry out. Typical issues to be identified are
these:
The nature and timing of the tests reflects sound judgement of risk and
materiality.
The work is done by technically competent persons
The work is documented with a high standard of care.
Any unusual features that are discovered are suitably investigated and
drawn to management’s attention.
The work of assistants is suitably supervised and documented.
The audit conclusions are appropriate and suitably reported.
The work of the internal auditors is tested and the external auditor is
satisfied with the quality of work done.
19
© Cenit Online 2015
CPA P1 AUDITING
Exercise - Reliance On Internal Audit
Your firm is the newly appointed external auditor to a large company that sells,
maintains and leases office equipment and furniture to its customers and you
have been asked to co-operate with internal audit to keep audit costs down. The
company wants the external auditors to rely on some of the work already
performed by internal audit.
ii) A review of the structure of internal controls in each major function every
four years;
During the current year, the company has gone through a major internal
restructuring in its information services function and the internal auditors have
been closely involved in the preparation of plans for restructuring, and in the
related post-implementation review.
Required:
20
© Cenit Online 2015
CPA P1 AUDITING
a) Explain the extent to which your firm will seek to rely on the work of the
internal auditors in each of the areas noted above. (6 marks)
b) Describe the information your firm will seek from the internal auditors in
order for you to determine the extent of your reliance. (6 marks)
d) Explain why it will be necessary for your firm to perform its own work in
certain audit areas in addition to relying on the work performed by internal
audit.
(4 marks)
(Total: 20 marks)
21
© Cenit Online 2015
CPA P1 AUDITING
SOLUTION: RELIANCE ON INTERNAL AUDIT
This question focuses on the relationship between the internal and external
audit functions. This is a standard area which should have been covered
thoroughly in your studies – however, as always, the examination question as set
gives the topic a specific emphasis which must be fully reflected in your answer.
In dealing with part (a) it is important to appreciate that the objectives of the
external auditors are more concerned with the true and fair view presented by
the financial statements than are the internal auditors. Consider the situations
given in the question in this context.
Much of your answer to part (b) can be based on standard material – but note
that a good answer must make some specific reference to the cyclical aspect
of the work of the internal auditors.
Parts (c) and (d) are dealing with reasonably standard aspects of the
relationship between the internal and external audit functions – these should
not produce major difficulties in answering the question.
22
© Cenit Online 2015
CPA P1 AUDITING
i. As requested, the external auditors will seek to rely on the work of internal
audit to the maximum extent possible. This might cover planning, risk
assessment, tests of controls and substantive testing.
ii. In all cases, the external auditor should be aware that the purpose of
internal audit’s work will not be primarily directed towards the financial
statements.
iii. In relation to the cyclical audit of internal controls, it may be possible to rely
on the work of internal audit in relation to all of the areas noted, but only if
the internal controls audited affect the financial statements. It may be that
internal audit’s work on operations and customer support is less relevant than
its work in other areas.
b) Information required
23
© Cenit Online 2015
CPA P1 AUDITING
internal audit’s systems documentation (the work on information systems
and finance may include documentation of the company’s accounting and
internal control systems);
ii. The external auditors should ask to see all documentation relating to the
work performed by internal audit on information services restructuring
during the year because the external auditors’ assessment and testing of
systems will be split into two parts, pre- and post-restructuring.
24
© Cenit Online 2015
CPA P1 AUDITING
c) Circumstances in which it would not be possible to rely on the work of internal
audit
ii. It will also not be possible to rely on internal audit if internal audit is
those who control the functions that they work on, or where they are
ii. Areas material to the financial statements are likely to be long and short-
term leasing receivables and inventory. Leases may be complex and the
auditors will wish to ensure that accounting policies are appropriate and that
25
© Cenit Online 2015
CPA P1 AUDITING
they have been properly applied. The valuation of inventory will have a direct
effect on the profit for the period.
This is an area that is easy to manipulate and external auditors will wish to
ensure that this has not happened.
iii. External auditors will also wish to perform their own risk analysis and final
26
© Cenit Online 2015