Professional Documents
Culture Documents
FAM Reviewer by NAN For Further Edit
FAM Reviewer by NAN For Further Edit
Introduction
General Auditing
COA’s existing policy and application of the
Principle Principle explanation in ISSAI 100
principles in this Manual
Ethics and Auditors should comply with relevant COA has adopted the Revised Code of Conduct and Ethical
independence ethical requirements and be independent. Standards for COA Officials and Employees under Resolution
No. 2018-010 dated February 1, 2018.
Professional Auditors should maintain an appropriate This is emphasized under Section 1 (Preliminary Engagement
judgment, due care professional behavior by applying Activities) of this Manual and throughout the entire audit
and skepticism professional skepticism, professional process.
judgment and due care
throughout the audit.
Quality control Auditors should perform the audit in The audit tools to assist and guide Auditors in ensuring the
accordance with professional standards on quality of audit are prescribed in the Manual. The Auditors’
quality control. compliance with the Manual will be assessed using the
Quality Control Documents prescribed under Section 5 of this
Manual.
Audit team Auditors should possess or have access to The training of Auditors is a continuous activity. They will be
management and the necessary skills. trained on the use of audit tools prescribed in the Manual and
skills subsequent issuances to keep them updated on international
standards.
Audit risk Auditors should manage the risks of The adoption of the Manual will address this concern.
providing an inappropriate report in
the circumstances of the audit.
Materiality Auditors should consider The determination of materiality threshold is discussed under
materiality throughout the audit process. Section 2 Part III.A. of this Manual.
Documentation Auditors should prepare audit The auditor shall be guided by the step by step procedures
documentation in sufficient detail to provided in Section 3 Part I.C. of this Manual.
provide a clear understanding of
work performed, evidence obtained and
conclusions reached.
Communication Auditors should establish effective The auditors maintain open communication with the auditees
communication throughout the which is also defined in the Audit
audit process. Terms of Engagement proposed in the Manual.
COA Audit Framework
Audit Streams
1. Financial Audit
2. Compliance Audit
3. Performance Audit
- The orange box displays the Strategic Audit Planning and Risk Identification comprising
the
1. Preliminary Engagement
2. Planning
3. Execution and
4. Reporting.
- The blue box displays the four stages of the audit giving important consideration on quality
control encompassing all four stages.
Overview of the Financial Audit Manual
- The audit mandate, or obligations for public sector entities, arising from legislation,
regulation, ministerial directives, government policy requirements, or resolutions of the
legislature may result in additional objectives.
- may include audit and reporting responsibilities, for example, relating to reporting whether
public sector auditors found any instances of non-compliance with authorities including
budgets and accountability frameworks, and/or reporting on the effectiveness of internal
control.
a) in accordance with national standards, which are based on [or consistent with] the
Fundamental Auditing Principles (ISSAIs 100-999) of the International Standards of
Supreme Audit Institutions (refer to ISSAI 200.12);
b) in accordance with international standards (ISSAIs 1000-2999) (refer to ISSAI 200.13a);
c) in accordance with ISAs (refer to ISSAI 200.13b)
- COA has adopted the INTOSAI Financial Audit Guidelines under COA Resolution Nos.
2013-007, 2014-011, and 2016-007.
Section 1
I. Ensuring Engagement Team’s Independence and Compliance with the Ethical Standard
Purpose of an FS audit - to enhance the degree of confidence of intended users in FS
How? – Achieved by the expression of an opinion by the Auditor on whether the FS are
prepared, in all material respects, in accordance with an applicable FRF
An audit conducted in accordance with the standards and relevant ethical requirements
enables the auditor to form that opinion, which is required under ISSAI 1200
The audit team is also required under ISSAI 1220 to implement quality control procedures at
the engagement level to have a reasonable assurance
a) The audit complies with professional standards and applicable legal and regulatory
requirements; and
b) The auditor’s report issued is appropriate in the circumstances.
b) The engagement team collectively possesses appropriate competence and capabilities to:
The audit engagement letter (Appendix 1-2) or other suitable form of written engagement
shall include:
a) the objective and scope of the audit of the financial statements;
b) the responsibilities of the auditor;
c) the responsibilities of management;
d) identification of the applicable financial reporting framework which is PPSAS or PFRS,
for the preparation of the financial statements;
e) reference to the expected form and content of any reports to be issued by the auditor;
and,
f) a statement that there may be circumstances in which a report may differ from its
expected form and content.
a) It has fulfilled its responsibilities for the preparation and fair presentation of FS in
accordance with applicable FRF;
b) It has provided the auditors with all relevant information and access as required in the
Engagement Letter. The management’s responsibility as discussed in the Engagement
Letter shall be included in the written representation;
c) All transactions have been recorded and are reflected in the FS; and,
d) Other concerns such as propriety of selection and application of accounting policies,
compliance with applicable frameworks in terms of recognition, measurement and
presentation of accounts and disclosures, and specific assertions in the FS.
If the auditor did not receive the requested written representation or doubts the competence,
integrity, ethical value or diligence of management, or its commitment to, or enforcement
thereof, in particular, if written representations are inconsistent with other audit evidence,
and the matter remained unresolved despite additional audit procedures performed, the
auditor shall determine the effect that such concerns or non-submission thereof, may have
on the reliability of oral or written representations and audit evidence in general.
For foreign assisted projects, the engagement letter will consider the requirements of the
foreign lending/grantor institution.
b) Ascertain the reporting objectives of the engagement to plan the timing of the audit
and the nature of the communications required;
c) Consider the factors that, in the auditor’s professional judgment, are significant in
directing the engagement team’s efforts;
e) Ascertain the nature, timing and extent of resources necessary to perform the
engagement.
- The overall audit strategy is prepared by the ATL, reviewed by the SA/RSA and
approved by the CD/RD
- The auditor may need to modify the overall audit strategy as the circumstances arise
because of unforeseen events, changes in conditions, or audit evidence obtained
from the results of audit procedures which require significant changes in strategy.
- These changes, while allowable, must be approved by the CD/RD upon the
recommendation of the SA/RSA.
- The overall audit strategy template is attached as Appendix 2-1 of this Section.
II. Conducting Preliminary Risk Assessment
A. Defining risks
Risk – the probability of an act or event occurring that would have an adverse effect in
the achievement of an agency’s objectives.
Agency risk – the threat that an event, action or inaction will adversely affect the
agency’s ability to successfully achieve its mandate and objectives and execute its
strategies
Audit risk – the risk that the auditor may express an inappropriate opinion on the FS
Although audit risks and agency risks are dissimilar in nature, it is often the case that
identification of significant agency risks lead to the detection of audit risks.
2. Control risk is the risk that a misstatement that could occur in an assertion about a class
of transaction, account balance or disclosure and that could be material, either
individually or when aggregated with other misstatements will not be prevented, or
detected and corrected, on a timely manner by the entity’s internal control. (IRRBAM,
par. 2.6.1 (c))
3. Detection risk is the risk that the auditor’s procedures will not detect a misstatement
that exists in an assertion that could be material, individually or when aggregated with
misstatements. (RBFAM, par. 1.6.1)
b. Estimates – significant estimates are included in transactions, which make it more likely
that an estimation error will be made.
i. Susceptibility to material misstatement
ii. Variations from expected amounts
iii. Transactions not subjected to routine processing
c. Complexity – the transactions in which a business engages are highly complex, and so
are more likely to be completed or recorded incorrectly.
i. Size and composition
ii. Effects of external factors
iii. Completion of unusual/complex transactions at or near period-end
Detection risk relates to the nature, timing and extent of the auditor’s procedures that are
determined by the auditor to reduce audit risk to an acceptably low level.
- It is therefore a function of the effectiveness of a procedure and of its application by the
auditor.
- Matters such as:
(a) adequate planning;
(b) proper assignment of personnel to the engagement team;
(c) the application of professional skepticism; and
(d) supervision and review of the audit work performed,
- Thus, auditors have practically broad knowledge of agency operations which should be
summarized in the UTA Template attached as Appendix 2-2.
- Auditor’s notes on any component that may be significant to the conduct of financial audit.
- To enhance Auditor’s understanding of the audit entity, the following steps shall be
undertaken:
a) Updating information base for financial audit and conducting preliminary risk
assessment;
b) Assessing other matters for consideration; and,
c) Assessing Related Parties transactions
a. Updating information base for financial audit and conducting preliminary risk assessment
- Given the extent and quality of information available to COA Auditors, the sources of
financial information to be used as basis for the preliminary risks assessment review are
categorized as:
- Analysis of information under categories 1 and 2 may assist the audit team in identifying
accounts with possible material misstatements.
- The activities and information that can be gathered under Category 3 are discussed
below
a.1 Updating the Understanding of the Agency’s Internal Control System (AICS)
c. The preliminary assessment of the Internal Control System of the agency is based on
the five components of the internal control:
Control Activities – The policies and procedures established to address risks and to
achieve the agency’s objectives. The procedures that an organization puts in place
to treat risk.
Monitoring – the process that assesses the quality of the internal control system’s
performance over time.
Each of the five components of internal control are present and functioning.
The five components are operating together in an integrated manner.
f. For the evaluation of Internal Control Structure, the ALCC template attached as
Appendix 2-3 will be used. (Culled from the Internal Control Standards for
Philippine Public Sector 2017 (ICSPPS) under COA Resolution No. 2018-007 dated
February 1, 2018.)
g. Upon the completion of the ALCC template, the generated answers shall be
evaluated and the results of the evaluation shall be summarized. The summary of the
evaluation shall form part of the preliminary assessment of the Internal Control
System. The auditor should be able to identify which areas of internal control
activities must be tested as a result of the preliminary evaluation. To guide the
auditor in evaluating the critical internal control processes to be tested, the
procedures can be designed in the form of a checklist questionnaire. An example of a
checklist questionnaire for cash receipts is attached as Appendix 2-3A.
There might be more than one control that addresses the assessed risk of
misstatement to a particular relevant assertion; conversely, one control might address
the assessed risk of misstatement to more than one relevant assertion. It is neither
necessary to test all controls related to a relevant assertion nor necessary to test
redundant controls, unless redundancy is itself a control objective.
The auditor should test the design effectiveness of controls by determining whether
the Agency/Unit/Corporation/Project controls satisfy the
Agency/Unit/Corporation/Project’s control objectives and can effectively prevent or
detect errors or fraud that could result in material misstatements in the financial
statements.
In the previous example of journal entry recording and approval, although there are
two different individuals preparing, and reviewing and approving the journal entry,
the design may not be operating effectively, if the one preparing and/or the one
reviewing and approving, or both, do not have the necessary authority and
competence to do their respective responsibilities.
ii. Observing – watch them do the operation or do the particular steps; and,
iii.Inspecting relevant documents – get a copy of the report, look through the pages or
items and the comments that the reviewer made.
There are two types of controls, preventive controls and detective controls.
j. External Auditor, in this case COA Auditors, can also use the works of Internal
Auditors, when they have determined that the internal audit function is likely to be
relevant to the audit. The guidance on the use of the works of Internal Auditors and in
assessing their objectivity is provided under ISSAI 1610.
k. The internal auditor may be presumed to be objective if the following criteria are met
and the internal auditor’s function is established by legislation or regulation:
The internal auditor is accountable to top management and to those charged with
governance;
The internal auditor reports the audit results both to top management and those
charged with governance;
The internal audit unit is located organizationally outside the staff and management
function of the unit under audit;
The internal auditor is sufficiently removed from political pressure to conduct audits
and report observations, opinions, and conclusions objectively without fear of
political reprisal;
The top management permits internal auditors to audit operations for which they
have previously been responsible for to avoid any perceived conflict of interest; and,
The internal auditor has access to those charged with governance.1
l. Irrespective of the degree of autonomy and objectivity of the internal audit function,
such function is not independent of the entity as required of the external auditor when
expressing an opinion on financial statements. The external auditor has sole
responsibility for the audit opinion expressed, and that responsibility is not reduced by
the external auditor’s use of the work of the internal auditors.
- The GAP shows the overall accounting system of the agency/unit including the standard
source documents, the flow of transactions and recording in the books of accounts, and
their conversion into financial information/data presented in the financial reports.
- The general flow of transaction as well as the possible source documents, books of
accounts and monitoring reports generally required by affected accounts using the GAM
for national government agencies as guide, is illustrated in Appendix 2-4.
- The actual flow of transactions of a particular subsystem as well as the existence of the
documents and books of accounts can be established through a walkthrough analysis
using sample transactions pertaining to the subsystem being analyzed.
- The Auditors are advised to prepare the GAP indicating only the specific source
documents and reports by account applicable to their respective agencies which should be
used in the walkthrough analysis.
- There are two types of financial analysis that can be applied by the Auditor.
a. One is variance analysis where the Auditor can compare the latest set of FS and the
corresponding period of the preceding year's FS balances. The results of the analysis
will provide an initial indication about whether a risk of material misstatement exists.
An example of variance analysis is presented in Appendix 2-5.
b. Another form of FS analysis is a tie-in analysis. The Auditor compares the figures of
the accounts or group of accounts or contra accounts in the FS and reported in the
Notes to FS. A tie-in analysis will show whether the figures presented and disclosed
are reliable and properly presented.
i. Figures of accounts in the SFPos are compared against those reported in other
statements and in the Notes to FS. For instance, the Cash balance of the SFPos
should agree with the ending balance figure of the SCF and Notes to FS.
Differences indicate mathematical errors or omissions.
ii. The amount reflected in the budget and actual amounts columns in the SCBAA
should match the figures reflected in the various registries maintained and
financial accountability reports prepared by the Budget Division/Unit.
iii. The Auditors should have a good knowledge of the chart of accounts, account
description, contra-accounts, accounts that shall no longer be appearing in the year
end SFPos such as Cash-MDS, Regular, and accounts that are for exclusive use of a
particular agency or groups of agencies to be able to perform extensive tie-in-
analysis of accounts within a specific financial statements, and between and among
financial statements.
- Misstatements in the FS can arise from either fraud or error. The distinguishing factor
between fraud and error is whether the underlying action that results in the
misstatements of the FS is intentional or unintentional.
- Although fraud is a broad legal concept, the auditor is concerned with fraud that
causes a material misstatement in the FS. Two types of intentional misstatements are
relevant to the auditor; misstatements resulting from fraudulent financial reporting
and misstatements resulting from misappropriation of assets. Although the auditor
may suspect or, in rare cases, identify the occurrence of fraud, the auditor does not
make legal determinations of whether fraud has actually occurred.
- The following are examples of circumstances that may indicate the possibility that the
FS may contain a material misstatement resulting from fraud.
a. Discrepancies in the accounting records, including:
i. Missing documents;
ii. Documents that appear to have been altered;
iii. Unavailability of documents other than photocopied or electronically
transmitted documents when documents in original form are expected to
exist;
iv. Significant unexplained items or reconciliations;
v. Unusual balance sheet changes, or changes in trends or important FS ratios or
relationships – for example, receivables growing faster than revenues;
vi. Inconsistent, vague, or implausible responses from management or
employees arising from inquiries or analytical procedures;
vii. Unusual discrepancies between the entity’s records and confirmation replies;
viii. Large number of credit entries and other adjustments made to accounts
receivable records.
ix. Unexplained or inadequately explained differences between the accounts
receivable sub- ledger and the control account, or between the customer
statements and the accounts receivable sub-ledger; and,
x. Missing or non-existent cancelled checks in circumstances where cancelled
checks are ordinarily returned to the entity with the bank statement.
- The Auditor should be guided with the requirements under ISSAI 1240 in relation to
fraud in the audit of financial statements.
- Non-compliance by the entity with laws and regulations may result in a material
misstatement of the FS. Detection of non-compliance, regardless of materiality, may
affect other aspects of the audit including, for example, the auditor’s consideration of
the integrity of management or employees.
- Transactions which are non-compliant with existing laws and regulations are
considered illegal and irregular and, thus, disallowed in audit as required under
existing COA regulations. Notices of Disallowance issued to entities for non-
compliance with laws, rules and regulations are not yet taken up in the books until a
Notice of Finality of Decision has been issued in accordance with Rules and
Regulations on Settlement of Accounts. There is a financial error or misstatement in
the event that the management failed to record disallowances which are final and
executory.
- The Auditor should be guided with the requirements under ISSAI 1250 in their
consideration of compliance with laws and regulations. Furthermore, where there are
specific statutory reporting requirements, it may be necessary for the audit plan to
include appropriate tests for compliance with these provisions of the laws and
regulations.
- As discussed in ISSAI 1250, non-compliance shall be reported in the Auditor’s Report
on the Financial Statements in the following manner:
If the auditor concludes that the non-compliance has a material effect on the FS,
and has not been adequately reflected in the FS, the auditor shall, in accordance
with ISSAI 1705, express a qualified opinion or an adverse opinion on the FS.
- Related Parties pertain to (i) persons or other entities that have control or significant
influence, directly or indirectly through one or more intermediaries, over the
reporting entity, (ii) entities over which the reporting entity has control or significant
influence, directly or indirectly through one or more intermediaries, and (iii) other
entities under common control with the reporting entity through having common
controlling ownership and common key management.
- Entities that are under common control by a state, (that is, a national, regional or local
government) are not considered as related unless they engage in significant
transactions or share resources to a significant extent with one another. (par. 10,
ISSAI 1550)
a. To recognize fraud risk factors, if any, arising from related party relationships and
transactions that are relevant to the identification and assessment of the risks of
material misstatement due to fraud; and,
b. To conclude, based on the audit evidence obtained, whether the FS, insofar as they are
affected by those relationships and transactions:
- Appendix 2 of ISSAI 1315 lists conditions and events that may indicate risks of material
misstatements
- For ease in analysis, the potential misstatements may be grouped into three categories
considering the following assertions:
- The preliminary assessment should also include account/s covered by Specific Audit
Instructions issued by the concerned Supervising Auditor. The results of the preliminary
assessment will be summarized to include the FS accounts affected; possible risk identified
from the information gathered and the type of risk in terms of assertion. Additional
information required to firm up the assessments should also be indicated so that the
necessary documents or appointments for interviews with officials concerned are obtained.
A sample Summary Report on the Preliminary Identification of Risks and other matters is
attached as Appendix 2-6.
- The SRPIR becomes the initial basis for conducting further risk assessment and updating the
overall audit strategy. Materiality considerations will be discussed as part of the conduct of
final risk assessment.
III. Conducting Final Risk Assessment
A. Determining the materiality threshold
- Materiality threshold pertains to the amount of materiality set as benchmark to evaluate the
significance of misstatements or omissions noted during audit.
- ISSAI 1320 explains that misstatements and omissions are considered to be material if they,
individually or in aggregate, could reasonably be expected to influence the economic
decisions of users of the FS. The users are considered as a group of users of FS rather than as
individual users.
- The concept of materiality is applied both in planning and performing the audit, and also in
evaluating the effect of identified misstatement in the FS.
o It is also based on the concept that items of little importance do not require to be audited
since these will not affect the judgment or action of a reasonable FS user.
o While materiality is primarily based on the auditor’s professional judgment, such
judgment should consider both qualitative and quantitative aspects to reduce the risk of
audit decisions which are either overly liberal or conservative.
a) The context in which the matter appears; for example, if the matter is also subject to compliance
with authorities, legislation or regulations, or if law or regulation prohibits overspending of
public funds, regardless of the amounts involved;
b) The needs of the various stakeholders and how they use the financial statements;
c) The nature of the transactions that are considered sensitive to users of the financial statements;
d) Public expectations and public interest, including emphasis placed on the particular matter by
relevant committees in the legislature, such as a public accounts committee, including the
necessity of certain disclosures;
e) The need for legislative oversight and regulation in a particular area; and
f) The need for openness and transparency; for example, if there are particular disclosure
requirements for frauds or other losses.
- Quantitative materiality thresholds or the maximum errors are established at three levels:
a. Overall materiality (for the FS as a whole) is an amount set to establish whether or not
the financial statements can be regarded as materially misstated.
• Misstated, individually or in aggregate, above this threshold is considered
significant enough to influence the decision of users and thus, considered the FS
materially misstated.
• This can be changed during the audit depending on the information received by the
Auditor. This is used to determine the level of performance materiality and specific
materiality.
b. Performance materiality is the amount set at less than the overall materiality
- to lower the risk of not being able to detect uncorrected and undetected
misstatements which in the aggregate, may be considered material for the overall
financial statements.
c. Specific materiality refers to the amount or amounts set at less than overall materiality
for particular classes of transactions, account balance or disclosures which may
reasonably be expected to influence the economic decisions of users taken on the basis of
FS.
- Specific Materiality could relate to sensitive areas such as particular note disclosures
(that is, management remuneration or entity key-specific data), compliance with
legislation or certain terms in a contract, or transactions upon which remunerations
are based. It could also relate to the nature of a potential misstatement such as an
illegal act, non-compliance with loan covenants and statutory/regulatory reporting
requirements.
- Some of the disclosures that would normally be subject to a Specific Materiality level
are:
- The Audit Team Leader shall determine the materiality thresholds particular to the audited
entity, subject to the review of the Supervising Auditor and to the approval of the
Cluster/Regional Director concerned.
i. The Audit Team Leaders in the head/component/regional office preparing ML/ SAOR
(whichever may be applicable) shall determine and compute the overall materiality,
performance materiality, specific materiality and testing threshold using their respective
FS. In case of separate FS for each type of fund (e.g., General Fund, Special Education
Fund, Trust Fund), the auditor shall compute materiality thresholds using the specific
FS for each fund.
ii. The Supervising Auditor (head of audit group) preparing the CAAR and issuing the
IAR shall determine the overall materiality, performance materiality, specific materiality
and testing threshold (if applicable) based on the consolidated/combined financial
information of the whole group/agency. The computed overall materiality will be used
in determining whether the consolidated/combined FS is misstated or not, and in
determining the type of audit opinion to be issued on the consolidated/combined FS.
- As discussed in the preliminary risk assessment, the SRPIR becomes the initial basis for
further risk assessment. The Auditor shall conduct final risk assessment on each of the
relevant assertions in the SRPIR.
Risk of material misstatement at the assertion level (risk that the financial statements
are materially misstated prior to audit) consists of
inherent risks and
control risks which were discussed earlier. (ISSAI 1003)
- The Auditors should, however, not limit their evaluation on the risks identified during
Preliminary Assessment as there could be intervening events or circumstances that may
need equal attention.
This include material items in the FS even if initially, they have no risk as these should
eventually be included in the audit plan.
- The ISSAI Implementation Handbook – Financial Audit relative to ISSAI 1315 enumerates
the steps involved in a risk assessment as:
- There are two major classifications of inherent risk: agency risk and fraud risk. Agency
risk results from significant conditions, events, circumstances, actions that could
adversely affect the entity’s ability to achieve its objectives and exercise its strategies.
Fraud risk is related to events or conditions that indicate an incentive or pressure to
commit fraud.
- For identifying risks, the auditor considers: factors like the nature of the operation,
accounting policies, agency objectives and strategies and financial implications,
review of financial performance, relevant controls to mitigate risks at the agency and
transactional levels, and laws and rules applicable for the audited entity.
- The Auditor needs to assess the identified risks and determine their importance for
the audit of the financial statements before considering any internal control that might
mitigate such risks. Risk assessment involves consideration of two attributes about
inherent risks: (i) the likelihood of a misstatement occurring as a result of the risk with
the probability rated as high, moderate or low.; (ii) the magnitude (monetary impact)
if the risk would occur.
- The auditor should gather information from the concerned management officials
about their risk assessment process and as to how risks are identified and managed.
The SRPIR (Appendix 2-6) may be updated as the need arises or when additional
information is obtained.
- Significant risks or pervasive risks affecting the FS as a whole are segregated. These
risks will be considered in all the financial statements accounts. In the case of inherent
risks on FS accounts, these are sorted by FS account and summarized to reflect the
final conditions and assertions identified.
- A significant risk is where the assessed risk of material misstatement is so high that in
the auditor’s judgment, it will require special audit consideration as in these cases:
- For significant risks, the auditor should: evaluate internal control over these risks,
such as control activities and indirect (pervasive) internal controls; design an audit
response to obtain audit evidence with high reliability including tests of controls and
substantive procedures. Substantive analytical procedures alone are not sufficient and
are not considered as an appropriate response.
- Significant risks will include unqualified accounting staff; lack of values formations
training, accounting and procurement training of concerned staff; fraudulent project
transactions; non-routine large transactions; and non-compliance with laws and
regulations. These risks are considered in all of the accounts affected, usually all FS
accounts.
- Since not all control activities are relevant to the audit, an understanding of the
controls related to the risk of misstatement is necessary to ensure that the relevant
control is identified. This is initially undertaken during the preliminary risk
identification (Appendices 2-2 to 2-6 for initial assessment). Only controls related to
the risk of material misstatement should be identified.
- This means that significant risks are identified as to whether they are pervasive or
specific; controls are identified to mitigate them; and controls are tested, observed or
inspected to ensure that these are implemented and functioning.
- Significant risks are considered pervasive if these are not confined to specific
elements, accounts or items of the financial statements. If so confined, the affected
account represents or could represent a substantial proportion of the financial
statements. The level of control risks is assessed as to high, moderate or low based on
the results of tests. (Appendices 2-2 to 2-6 for initial assessment)
- The operating effectiveness of internal control design can be tested in the following
manner, among others:
- The final step in the risk assessment phase of the audit is to review the results of the
risk assessment procedures performed, and assess the risks of material misstatements
at the FS level and the assertion level for classes of transactions and disclosures guided
by the Risk Decision Table.
- Responses to the results of the risk assessment are based on the decision model setting the
nature of audit procedure/s and extent of audit to be performed given the results of a
risk assessment and depending on the level of risk of material misstatement established
for specific audit objectives, accounts and assertions.
a. When both inherent and control risks are low, the overall RMM is also low. Hence,
further testing of controls is performed to firm up the audit conclusion reached
together with a low level of substantive tests.
b. When the inherent risk is low but the control risk is moderate, a low overall RMM is
established. Hence, the extent of tests of controls is moderate with a low level of
substantive tests.
c. When inherent risk is low but control risk is high, the RMM is moderate. As such,
there is no need to perform tests of controls as these cannot be relied on anyway. Since
inherent risk is low, a moderate level of substantive tests is required.
d. When inherent risk is moderate and control risk is low, the RMM is low. More tests of
controls are performed to firm up the audit conclusion, with a low level of substantive
tests.
e. When both inherent and control risks are moderate, the RMM is also moderate.
Hence, the levels of tests of controls and substantive tests to be performed are also
moderate.
f. When inherent risk is moderate and control risk is high, the RMM is high. Hence no
reliance is placed on controls meaning, no tests of controls are necessary. A high level
of substantive tests is however needed.
g. When inherent risk is high and control risk is low, the RMM is moderate. Hence a
high reliance is placed on tests of controls and a moderate level of substantive tests is
required.
h. When inherent risk is high and control risk is moderate, RMM is high. No reliance is
placed on control hence no need to test controls but a high level of substantive tests is
required.
i. When both inherent and control risks are high, RMM is high. No reliance is placed on
control hence no need to test controls but a high level of substantive tests is required.
- Following the risk decision table, tests of controls are performed when control risks are
low to moderate. No tests of controls are needed when control risk is high because there is
no point testing controls which are absent or cannot be relied upon.
- The result of the test of controls will determine the nature, extent and timing (net) of the
substantive tests that will be performed. Substantive tests are procedures performed by
the auditor to detect material misstatement or fraud related to transactions or account
balances.
- The resulting test of assessed risks will form the foundation for the next audit phase
which is to determine how to respond to the assessed risks through the design of audit
procedures. The results of risk assessment at the assertion level is illustrated in Appendix
2-8. A duly filled out sample of Appendix 2-8 is attached as Appendix 2-8A for guidance.
IV. Preparing the Audit Engagement Plan
- The fundamental elements in preparing the audit engagement plan are: (a) updating the overall
audit strategy; (b) preparing the audit program; and (c) preparing the engagement planning
memorandum
- The overall audit strategy prepared during the preliminary risk assessment need to be
updated to consider the results of final risk assessments.
- ISSAI 1450 requires the auditor to revise the overall audit strategy if: (a) the nature of
identified misstatements and the circumstances of their occurrence indicate that other
misstatements may exist that, when aggregated with misstatements accumulated during the
audit, could be material; or (b) the aggregate misstatements accumulated during the audit,
approaches the materiality level determined in accordance with ISSAI 1320.
- The overall audit strategy for COA purposes should consider the key activities from the Risk
Assessment Process to the Reporting Phase. Moreover, there are audit activities or
requirements which no longer form part of the risk assessment process but must be included
in the Strategy. These pertain to, among others:
a. Special considerations: Related Parties; Litigation and Claims; Segment Reporting and
Subsequent Events with procedures discussed in Section 3, Execution Phase;
b. Other accounts determined falling within the performance materiality level not covered
in the risk assessment;
c. In the case of nationwide audits, the Strategy should consider synchronization of
timelines for group planning, execution and reporting; setting materiality thresholds in a
uniform manner; scheduling of audit inspections; confirmations from external parties,
among others.
- An audit program contains the audit procedures to be performed for a specific audit
objective for the financial account and the risks identified by assertion. Audit Program for
each audit areas included in the overall audit strategy should be prepared.
- The audit program saves time and labor; increases efficiency; controls the work performed;
maintains uniformity and continuity; identifies responsibilities; helps to maintain continuity;
and, facilitates presentation of evidence.
- The auditor may use standard audit programs relevant to the risks identified or to the audit
areas. An audit program template is provided as Appendix 2-9.
- The final activity of the Planning Phase is preparing the EPM. As a planning tool, EPM sets
out the objectives of the audit and spells out how the auditor aims to achieve these
objectives. As a supervision and monitoring tool, it tracks the progress of the audit and
promotes high quality and professional audit work.
A brief narration of the major activities to be performed supported by the final overall audit
strategy updated brought about by new conditions, unforeseen events, or audit evidence
obtained from the results of audit procedures which includes the following, among others:
a. Materiality thresholds;
b. The number of staff to conduct the audit;
c. The major timelines: entrance conference, exit conference, securing management
representation letter, audit report issuance;
d. Coordination activities relative to a nationwide audit;
e. Inspections to be conducted; and,
f. External confirmations to be performed.
- The EPM serves as the “blueprint” of the financial audit after the Planning Phase and
contains the detailed audit procedures to be performed in response to the results of the
risk assessment and the procedures for audit areas which no longer had to pass through
a risk process but are required to be performed. It must be prepared by the Audit Team
Leader, reviewed by the SA/RSA and approved by the CD/RD. Template of EPM
(Appendix 2-10) and other related appendices are attached to elaborate on certain facts as
considered necessary.
Section 3
- During this Phase, the audit activities contained in the approved EPM and the Audit
Programs are pursued to ensure that audit procedures are performed as planned and on
time. The steps to be taken follow:
II. Summarize Audit Observation and Recommendation and Communicate with Those
Charged with Governance
A. Areas for consideration in summarizing audit observations
B. Elements of audit observation
C. Performing review of overall audit work
D. Tracking status of prior years’ recommendation
1. test of controls or
• Inspection
• Observation
• Inquiry
• Confirmation
2. substantive procedure
• reperformance
• recalculation and
• analytical procedures.
c. This is particularly relevant when considering the response to the risks of fraud.
- perform audit procedures before the period end so the auditor can identify
significant matters at an early stage of the audit, and consequently resolve them
with the assistance of management or by developing an effective audit approach to
address such matters.
d. Certain audit procedures can be performed only at or after period end, for example:
ii. Examining adjustments made during the course of preparing the FS; and
iii. Performing procedures to respond to a risk that, at period end, the entity may have
entered into improper contracts or transactions that may not have been finalized.
c. However, increasing the extent of an audit procedure is effective only if the audit
procedure itself is relevant to the specific risk.
d. The use of CAATs may enable more extensive testing of electronic transactions and
account files, which may be useful when the auditor decides to modify the extent of
testing, say, in responding to the risks of material misstatement due to fraud. Such
techniques can be used to select sample transactions from key electronic files, to sort
transactions with specific characteristics, or to test an entire population instead of a
sample.
In determining the extent of tests to be performed, the auditor may apply non-
sampling or sampling technique. In case of sampling technique, either statistical or
non-statistical sampling may be adopted.
If a class of transactions or account balance has been divided into strata, the
misstatement is projected for each stratum separately. Projected misstatements
for each stratum are then combined when considering the possible effect of
misstatements on the total class of transactions or account balance.
a. When designing an audit sample, the auditor shall consider the purpose of the
audit procedure and the characteristics of the population from which the
sample will be drawn.
b. The auditor shall determine a sample size sufficient to reduce sampling risk to
an acceptably low level.
c. The auditor shall select items for the sample in such a way that each sampling
unit in the population has a chance of selection.
d. When designing a sample, the auditor uses the tolerable misstatement arrived
at when computing for the materiality thresholds discussed in the previous
Section.
Examples of factors influencing sample size for tests of details are appended in the
tables presented in Appendix 2 of ISSAI 1530.
The Auditor should be conscious of the sampling risks. The risk that the Auditor’s
conclusion based on a sample may be different from the conclusion if the entire
population were subjected to the same audit procedure.
For performing audit procedures on selected items, ISSAI 1530 provides that:
a. The auditor shall perform audit procedures, appropriate to the purpose, on
each item selected.
b. If the audit procedure is not applicable to the selected item, the auditor shall
perform the procedure on a replacement item.
c. If the auditor is unable to apply the designed audit procedures, or suitable
alternative procedures, to a selected item, the auditor shall treat that item as a
deviation from the prescribed control, in the case of tests of controls, or a
misstatement, in the case of tests of details.
The auditor shall evaluate the results of the sample and consider that an
unexpectedly high sample deviation rate may lead to an increase in the assessed
risk of material misstatement, unless further audit evidence substantiating the
initial assessment is obtained.
Under the Audit Execution Phase, audit procedures listed in the Audit Program
attached to the EPM shall be pursued/conducted. To reduce audit risk to
acceptable level, the auditor should conduct substantive procedures in order to
detect material misstatements in the assertion level. These comprise of tests of
details and analytical procedures.
The auditor shall evaluate the results of sampling using the test of details.
An unexpectedly high misstatement amount in a sample may cause the
auditor to believe that a class of transaction or account is materially
misstated, in the absence of further evidence that no material misstatement
exists.
Tests of details are categorized into two types:
(a) test of transactions; and
(b) test of details of account balances and disclosures.
To select the items for testing, the auditor must consider what
represents the population for testing in the circumstances. It can be
the entire population of an account balance, class of transactions or
disclosures; or specific items composed of high value or unusual
items, or selecting sample from the whole population.
There are some assertions for which external confirmations provide less
relevant audit evidence, such as relating to the recoverability of accounts
receivable balances, than they do for their existence.
As provided in ISSAI 1530, the auditor shall evaluate whether the use of the
audit sampling has provided a reasonable basis for conclusions about the
population that has been tested. If the auditor concludes that audit sampling
has not provided a reasonable basis for conclusions about the population
that has been tested, the auditor may:
- The auditor shall design and perform analytical procedures near the end
of the audit as guide when forming an overall conclusion as to whether
the financial statements are consistent with the auditor’s understanding
of the entity.
Paragraph 3 of ISSAI 1230 also states that: ”Audit documentation serves a number of
additional purposes, including the following:
The WPs may be in the form of paper, tapes, films, and other reliable storage and
shall be maintained in two copies (one for the office file and one for the ATL, as
back-up copy). The audit team’s custodian of the WPs shall be responsible for the
updating/upgrading of the audit files and providing a back-up copy for the ATL.
In the case of electronic files, the file naming standards of COA shall be adopted, if
any, otherwise, the Audit Team shall devise its own. Backup copies of all electronic
WPs shall be maintained by the Audit Team and stored separately from the
original copies. Fraud investigation WPs shall not be saved in the network
common drive.
The auditor shall assemble the audit documentation in an audit file and
complete the administrative process of assembling the final audit file on a
timely basis after the date of the auditor’s report. (ISSAI 1230, par. 14). An audit
file may be one or more folders or other storage media, in physical or electronic
form, containing the records that comprise the audit documentation for a
specific engagement.
An audit file may be classified into two types: current audit file and permanent
audit file. Current Audit File (CAF) contains working papers relating to a single
audit engagement.2 Permanent Audit File (PAF) is a set of records that serves
as an ongoing reference for successive audit. The information in the PAF,
which should be regularly updated, is intended to be accessed repeatedly to
assist the audit team in the conduct of their tasks.
Listed below are the contents of CAF and PAF, among others, which shall be
shall be systematically organized/arranged to facilitate supervisory review,
exhibiting a consistent structure thru the use of a logical or easy-to-follow index
code, agreed upon by the Auditor and his/her Supervisor during the planning
phase of each audit, to promote efficient cross-referencing system, convenience
and ease in locating these WPs when circumstances demand for its use. The
Auditor shall avail of the use of databases, word processing search facilities and
other software packages, when necessary, to assist in information storage and
retrieval.
The ATL is primarily responsible for the timely assembly of the final audit file
within 60 days from receipt of transmittal of the audit report (AAR/ML) by the
audited agency, in accordance with Section A21 of ISSAI 230. As a general rule,
the WPs shall be kept under lock and key.
The structure of the working paper should be in a logical format that clearly
shows the purpose/objective of the test (risk being tested), a description of the
test, extent of testing performed, results, conclusion arrived at i.e. any control
weaknesses identified, and potential process improvements, and positive
change opportunities. Where working papers are hand written they should be
neat and legible. If working papers are not clear they may lose their worth as
documented evidence.
Each top schedule of the accounts presents the Audit Conclusion: whether the
audit objective was met or not and the reason thereof; whether the Main
Account audited (e.g. Cash, Receivables, Inventory, etc.) is considered as fairly
stated and presented
All WPs shall be dated, signed by the preparer and reviewer, and clearly
referenced using the standard tickmarks developed by the audit teams.
All pages in the WPs shall be indexed except in the case of a set of document
with several pages, wherein only the cover page shall be given an index
number. The indexing of the files shall be aligned with the order of presentation
in the Table of Contents. The index code shall be indicated at the right top
portion of the WP or on the lower center of the page of the WP and when
numbering a given area, consecutive numbers shall be used (i.e., 2-1, 2-2, 3-1, 3-
2, etc.). WPs shall be indexed according to the Audit Working Paper Checklist
agreed by the ATL and the SA or the concerned Cluster/office.
The SA/RSA and ATL ensure that all evidence is documented properly in audit
working papers. Audit evidence refers to information used by the auditor in
arriving at the conclusions on which the auditor’s opinion is based. It includes both
information contained in the accounting records underlying the financial
statements and information obtained from other sources. (ISSAI 1500)
The auditor can obtain evidence in many different ways, such as:
Audit evidence obtained for these areas/issues and requirements should consider the
following:
a. Inventory in the public sector is often held for use rather than for resale. As such,
property audits go beyond the usual observations of physical inventories conducted
during year-end and cover year round activities. Violations to property related
regulations especially those included in the State Audit Code, are reported as part of
the auditor’s observations and recommendations.
ii. Contingent liability refers to a possible obligation that arises from past events, and
whose existence will be confirmed only by the occurrence or non-occurrence of one
or more uncertain future events not wholly within the control of the entity; or a
present obligation that arises from past events, but is not recognized because: (i) it is
not probable that an outflow of resources embodying economic benefits or service
potential will be required to settle the obligation; or (ii) the amount of the obligation
cannot be measured with sufficient reliability.
iii. Contingent asset refers to a possible asset that arises from past events whose
existence will be confirmed only by the occurrence or non-occurrence of one or
more uncertain future events not wholly within the control of the entity.
Obtain from management and/or from its internal Legal Counsel a description
and evaluation of litigation, claims, and assessments that existed at the date of
the balance sheet being reported on, and during the period from the balance
sheet date to the date the information is furnished, including an identification of
those matters referred to legal counsel. The ISSAI recognizes that public sector
auditors such as COA auditors have the right to communicate directly with the
agency’s external legal counsel without need for management permission.
Review of legal expense account if this exists and if management denies having
any litigation and claim related issues.
i. This is in the case of foreign assisted projects funded by the World Bank;
European Union; USAID; United Nations Development Programme and the ADB
where stand-alone audit reports are submitted to the funding organizations. This
can be presented in the following manner:
Note 10. Audit of Loans and Grants from the Asian Development Bank
A separate special purpose financial audit was performed on government and ADB funds for
Project 12345 “Project on Climate Change” included in this 20xx financial statements for the
Agency. The COA rendered an unmodified audit opinion on the fairness in presentation of the
financial statements and on the Project’s compliance with ADB requirements particularly on SOE
and imprest account procedures prescribed in the Loans Disbursements Handbook; and on the use
of the funds for the purposes intended.
ii. The materiality of misstatements on the overall FS in separate audits will have to
be evaluated.
d. Related party transactions – persons or other entities that have control or significant
influence, directly or indirectly through one or more intermediaries, over the reporting
entity; entities over which the reporting entity has control or significant influence,
directly or indirectly through one or more intermediaries; or, other entities under
common control with the reporting entity through having common controlling
ownership, owners who are close family members, and common key management.
The auditor is required to examine the documents (minutes of meetings, bank and
legal confirmations, such other documents provided) supporting the transaction/s;
establish whether these transactions are properly accounted for and identify possible
misstatements or errors due to fraud by the very nature of the transactions. In
addition, material transactions should be confirmed with related parties identified and
appropriate background research should be conducted as necessary.
i. The Notes to FS should disclose related party transactions, business rationale and
effects of the transactions on the FS. Key terms, conditions, or other important
elements of the transactions necessary for understanding them should also be
disclosed.
ii. Examples of transactions which may qualify as related party transactions in the
Philippines are:
fund transfers to the agency for projects which are not related to the mandate
or objective of the agency;
fund transfers to the agency and subsequent transfers of the same amounts to
non- government agencies;
material cash advances, fund transfers or loans released by the agency to
persons or non-government agencies or parties;
guarantees and guarantor relationships;
agreements for the provision of services to certain parties under terms and
conditions outside the agency’s normal course of business;
complex equity transactions such as corporate restructurings or acquisitions;
transactions with offshore entities in jurisdictions with weak corporate laws;
leasing of premises or the rendering of management services by the agency to
another party if no consideration is exchanged;
sales transactions with unusually large discounts or returns;
transactions with circular arrangements such as sales with commitment to
repurchase; and,
transactions under contracts whose terms are changed before expiry.
iii. Auditors should be guided by the requirements of ISSAI 1240 in case of intentional
non- disclosure by management of related party transactions. The auditor may also
consider the need to re-evaluate the reliability of management’s responses to audit
inquiries and the management’s representations to the auditor.
ii. The nature and reliability of information to support the accounting estimates may
affect the risks of material misstatement of accounting estimates including the
susceptibility to unintentional or intentional management bias.
iii. For accounting estimates that give rise to significant risks, the auditor obtains
appropriate evidence of management’s decision to recognize or not to recognize
accounting estimates in the financial statements. The auditor then evaluates
reasonableness of such estimates and adequacy of disclosures.
iv. The disclosures should include the assumptions used, the method of estimation,
including any applicable model, the basis for selection of the method of
estimation, the effect of any changes to the method of estimation from prior period
and the sources and implications of estimation uncertainty.
f. Subsequent Events pertain to events which occur after the date of the FS but which: i)
provide evidence of conditions that existed at the date of the FS and ii) those that
provide evidence of conditions that arose after the date of the FS.
i. Accruing expenses paid during the ensuing year but pertaining to transactions
which should have been recognized during the year under audit, under accrual
accounting is an example of adjustments made resulting from a subsequent events
analysis.
ii. The auditor should inquire from management whether any subsequent events
that might affect the financial statements have occurred. Specific inquiries about
the following matters should be made about these transactions reported after the
date of the FS:
iii. The terms of audit engagement should include the obligation of management to
inform the auditor of facts that may affect the FS of which management may
become aware during the period from the date the FS are approved for issuance to
the date of the auditor’s report. During this period, the auditor is responsible for
matters that may occur regardless of the lack of disclosure by management. The
lack of disclosure by management may be addressed by performing applicable
audit procedures to obtain sufficient appropriate audit evidence that all
subsequent events have been identified. Such subsequent matters, if material, may
affect the audit opinion to be rendered.
iv. For example, way before the end of the reporting period, a debtor of the agency/unit/
corporation/project with a substantial account already displays inability to pay its
obligation. Management did not adjust the corresponding allowance for impairment on
the account of such debtor despite the circumstances. Two months after the approval of the
issuance of the year-end financial statements and before the issuance of the auditor’s
report, the debtor- client declared bankruptcy. This is an adjusting subsequent event. The
auditor, having knowledge of the situation, recommended for an adjustment for the
increase of allowance for impairment on the account of the bankrupt client. However,
Management refused to make the adjustment. In such a case, the auditor’s opinion is
modified on the matter depending on the materiality of the account’s amount.
v. The auditor is not responsible for subsequent matters that occur after the
date of the auditor’s report which management purposely did not divulge
to him/her.
ISSAI 1600 provides the guidance for Group FS. In COA, Group FS refer to
consolidated FS prepared by the head office of a department/agency.
i. The auditors assigned at the head office (group auditor) and field operating
offices (component auditor) conduct the audit of the FS of their respective
auditees and prepare an ML or SAOR, whichever is applicable.
ii. The component auditor transmits the ML/SAOR to the respective auditees,
a copy thereof furnished to the CD through the RD.
iii. The group auditor prepares the CAAR based on the ML/SAOR issued by
the component auditors, and the result of reviews of the Group Financial
Statements.
iv. The group auditor is responsible for the issuance of group audit opinion
taking into consideration the materiality threshold established for the
Group FS. When the opinion is modified because of inability to obtain
sufficient appropriate audit evidence in relation to the financial information
of one or more components, the reasons for that inability shall be discussed
in the Basis for Modification paragraph in the IAR on the group FS. The
group auditor may refer the matter to the component auditor as deemed
necessary for an adequate explanation of the circumstances.
Whenever necessary, proposed audit adjustments of the Audit Team are forwarded to the
Chief Accountant for action. Once the audit is completed, the Audit Team Leader prepares
a list of all audit adjustments indicating the actions taken by the Chief Accountant
The auditor shall analyze and evaluate whether the unrecorded audit adjustment will
affect the audit opinion to be issued considering the final and/or revised overall and
specific materiality thresholds established, the size, nature and particular circumstance of
misstatement, both in relation to the particular classes of transaction, account balance, or
disclosure, and to the FS as a whole.
II. Summarize Audit Observation and Recommendation and Communicate with Those
Charged with Governance
Upon completion of the Execution Phase but before the conduct of an Exit conference, an
audit summary should be prepared to summarize the work done and conclusions reached
(Appendix 3-1). All uncorrected misstatements accumulated during the audit shall be
included in the summary.
The circumstances related to some misstatements may cause the auditor to evaluate them
as material, individually or when considered together with other misstatements
accumulated during the audit, even if they are lower than materiality for the FS as a
whole. Circumstances that may affect the evaluation include the extent to which the
misstatement:
These circumstances are only examples; not all are likely to be present in all audits nor is
the list necessarily complete.
Significant related party matters arising during the audit shall be communicated to
management such as:
As discussed in ISSAI 1240 in relation to ISSAI 1450, the result of fraud will be considered
in relation to other aspects of the audit, even if the size of the misstatement is not material
in relation to the FS. Depending on the circumstances, misstatements in disclosures could
also be indicative of fraud, and, for example, may arise from:
The working paper supporting the summary should include the conclusions reached
containing the elements of audit observation. The required COA format for an audit
summary should be followed.
a. criteria - pertains to the standard or the benchmark. This is usually a policy, circular,
directive or a law.
b. condition – explains whether the criteria were followed or not based on evidence
gathered.
c. cause – the reason/s for the existing conditions and unmet criteria.
d. effect – adverse result of the failure to meet criteria which is expressed in terms of
losses, wastage, inability to perform ones tasks or meet client expectations among
others.
Recommendations should address both causes and effects of the observation and may
consider inputs from management.
Before reporting, the SA/RSA shall affirm that the Team is still independent of the
auditee. (Appendix 3-2)
Sufficient evidence should be gathered to ensure that all events occurring between the
date of the FS and the date of the Auditor’s Report that require adjustment or
disclosure are identified. Subsequent events are more relevant under accrual
accounting.
The audit team shall make conclusion on whether all planned audit works have been
performed or there are other activities to be undertaken before closing the audit or
reporting.
D. Tracking status of prior years’ recommendation
In addition to existing COA regulation requiring the submission of AAPSI and APMT, the
audit team shall prepare an RTS.
All audit issues with unimplemented recommendations per SIPYAR (Part III of the AAR)
should be reiterated in Part II (Findings and Observations) of the current year’s audit report
if the existing condition still exists that affects the audit opinion. However, the reasons for
the failure of the management to implement recommendation should be assessed to
determine if there is a need to revise or refocus the recommended action. In such case, the
status of affected recommendation in the RTS should be considered “closed for having been
revised”.
All unimplemented recommendations considered closed/closed for having been revised shall
be recommended by the SA/RSA for approval of the CD/RD, and once approved, the
same shall be deleted from the SIPYAR of the succeeding year.
If considered necessary, the Head of the audited agency should be formally informed of
the unimplemented recommendations and possible action to be taken by COA for
continued inaction. Non-implementation of recommendations for no valid reason and
without any alternative action taken to address the problem is a criterion for decreasing
the performance rating of an agency as discussed in Section 5 of this FAM.
The format of the RTS to be maintained by the concerned Audit Team Leader and the
Office of the Director for each agency is shown in Appendix 3-3.
There are factors preventing the Auditee to implement the agreed upon actions, such as
competing priorities; funding issues and lack of staff to implement the recommendations.
One other reason for non-implementation of recommendations is that the recommendation
is not practical and doable. Recommendations should be:
The Audit Team Leader prepares the audit highlights as basis for an exit conference with
management subject to the approval of the SA/RSA.
a. The misstatements identified and the adjustments which the Chief Accountant failed to
take up;
b. The effect of failure to take up adjustments as far as the audit opinion is concerned;
c. Additional disclosures or explanations for inclusion in the Notes to FS;
d. Audit observations and tentative audit recommendations using the audit summaries as
basis;
e. Deadline for submission of management comments;
f. Pending issues and requests such as related parties, litigation and claims, if remained
unsubmitted as of exit conference;
g. Submission of the MRL, if remained unsubmitted as of exit conference;
h. Unimplemented audit recommendations and its impact on the FS; and,
i. Other matters included in the Engagement Letter which have not been addressed.
Section 4
Reporting Phase
- After sufficient and appropriate audit evidence has been obtained, the auditor is now ready
to prepare the independent auditor’s report on the audit of the financial statements of the
Agency/Local Government Unit/Corporation. This phase comprises the following:
Paragraph 17.1 of the Guide to Using International Standards on Auditing in the Audits of
Small- and Medium-sized Entities, Third Edition, Volume 2 – Practical Guidance, 2011 (Guide
2011) states that the final step in the audit process is to
- evaluate the audit evidence obtained,
- consider the impact of misstatements identified,
- form an audit opinion, and
- prepare an appropriately worded audit report.
In a similar way, Chapter 9, Audit Reporting of the Financial Audit ISSAI Implementation
Handbook (Handbook 2018) states that the
- audit report is the final product of the entire audit process, which is prepared
based on sufficient appropriate audit evidence gathered by auditors through
performing audit procedures.
- In this regard, according to ISSAI 1700, the objectives of the auditor are
to form an opinion on the financial statements, based on an evaluation of
the conclusions drawn from the audit evidence obtained; and
to express clearly that opinion through a written report that also describes
the basis for that opinion.
- The applicable and appropriate FRF for National Government Agencies (COA Resolution
No. 2014- 003 dated January 24, 2014), LGUs (COA Resolution No. 2014-003), and Non-
GBEs under the CGS (COA Circular No. 2015-003 dated April 16, 2015) is the PPSAS, while
that for GBEs, CGS is the PFRS (COA Circular No. 2015-003 dated April 16, 2015).
- ISSAI 1700 (Revised), paragraphs 10 to 13 provide that the auditor shall form an opinion on
whether the FS are prepared, in all material respects, in accordance with the applicable
FRF. In order to form that opinion, the auditor shall conclude as to:
- The applicable and appropriate FRF for National Government Agencies (COA Resolution
No. 2014- 003 dated January 24, 2014), LGUs (COA Resolution No. 2014-003), and Non-
GBEs under the CGS (COA Circular No. 2015-003 dated April 16, 2015) is the PPSAS, while
that for GBEs, CGS is the PFRS (COA Circular No. 2015-003 dated April 16, 2015).
a. the assessment of the risks of material misstatement at the assertion level are
appropriate; and
b. sufficient evidence have been obtained to reduce the risks of material misstatement
(RMM) in the financial statements to an acceptably low level.” (Guide 2011)
- Further, to address such objectives, the important questions to ask and consider under
evaluating audit evidence are:
- Did the analytical procedures performed at or near the end of the audit corroborate
conclusions formed during the audit? (Paragraph 17.3 Forming the Opinion, Guide 2011)
- It is essential that the auditor has to determine that sufficient appropriate audit evidence
has been obtained, and no additional work is required. Otherwise, the auditor should
undertake additional risk assessment to address such matters as:
a. those that affect the original audit plan;
b. those that have material impact on the auditor’s report;
c. those changes that affect the overall materiality threshold arrived at in the planning
phase; and,
d. those which necessitates application of additional audit procedures.
- Audit evidence represents information used by the auditor in arriving at the conclusions as
basis for the auditor’s opinion. Audit evidence includes both information contained in the
accounting records underlying the FS and information obtained from other sources (ISSAI
1500-Audit Evidence, par. 5(c)). Examples of the latter are confirmation replies from the
Agency’s/Unit’s/Corporation/Project’s depository banks, debtors, or creditors.
Information from third parties is considered to be more reliable as they have the
impartiality that documents obtained from management lacks.
- Sufficiency is the measure of quantity of audit evidence. The quantity of audit evidence
needed is affected by the auditor’s assessment of the risks of misstatement (the higher the
assessed risks, the more audit evidence is likely to be required) and also by the quality of
such audit evidence (the higher quality, the less may be required). Obtaining more audit
evidence, however, may not compensate for its poor quality. (ISSAI 1500, par. A4.)
- Audit evidence does not have to be copious. As long as the audit is well documented, and
the procedures manifested in such documents attained the audit objectives, the auditor
may conclude that sufficient evidence is obtained which can support the conclusions made.
For example, a working paper (top schedule and sub-schedules) showing how the cash balance is
arrived at in the statement of financial position, with corresponding tick marks to show the audit
procedures undertaken – vouching (accuracy and/or occurrence), verification of bank reconciliation
statements (completeness and/or accuracy), confirmation (existence, disclosure and/or valuation),
cash examination (existence and/or accuracy), workback of cash flow statement (accuracy) – to
address the risks identified supported with duly validated bank reconciliation statements, cash
examination reports and bank confirmation replies is sufficient enough audit evidence.
- Appropriateness is the measure of the quality of audit evidence; that is its relevance and its
reliability in providing support for the conclusions on which the auditor’s opinion is based.
The reliability of evidence is influenced by its source and by its nature, and is dependent on
the individual circumstances under which it is obtained. (ISSAI 1500, par. A5.)
- The auditor must make sure that sources of audit evidence are reliable, those that can be
trusted in terms of authenticity and truthfulness. For example, contracts properly signed by
contracting parties duly witnessed and notarized by a notary public; bank statements
obtained directly by management from depository banks; official receipts with complete
information.
- The evaluation of audit evidence obtained would address the following matters (Section
21.1, Guide 2011):
a. Materiality
i. If the amounts established for overall and performance materiality are still
appropriate in the context of the entity’s actual financial results
ii. If a lower overall materiality (for the financial statements as a whole) than that
initially determined is appropriate, the auditor is required to determine:
whether it is necessary to revise performance materiality; and,
whether the nature, timing and extent of the further audit procedures remain
appropriate.
b. Risk
c. Misstatements
Revision of the overall audit strategy and the audit engagement plan applies when:
e. Paragraph A.21. Circumstances that may affect the evaluation include the
extent to which the misstatement:
Before the auditor evaluates the results of performing procedures and any
misstatements arising therefrom, the first step is to reassess the amounts
established for overall and performance materiality. This is necessary because
the initial determination of materiality will often be based on estimates of the
entity’s financial results, and the actual results may be different. Factors that
would lead to a change include:
For agencies/corporations with FOUs with complete sets of books, the FOU
Team Leader submits to the RSA, the Summary of Uncorrected Misstatements
for consolidation and submission to the SA at the Head Office.
A.3. Evaluating financial statements prepared using the appropriate financial reporting
framework
Before determining what appropriate opinion to render, the Auditor must also
evaluate if:
a. Financial statements are prepared in accordance with the applicable FRF, either
PPSAS or PFRS. These accounting standards serve as guide in the preparation of
the FS:
i. the appropriate presentation and classification of individual and group of
accounts – for example, current and non-current distinction of accounts; real
accounts are correctly presented in the SFPos, nominal accounts in the SFPer;
b. Accounting policies are appropriate and are consistent with PPSAS/PFRS – for
example, the adopted accounting policy on measurement of inventory is the lower of cost
and net realizable value which is aligned with paragraph 15 of PPSAS 12/PAS 2-
Inventories.
The auditors shall use as guide in the evaluation of Management’s disclosure in the
Notes to FS, the disclosure requirements of each of the PPSAS/PFRS. For National
Government Agencies, a disclosure checklist is provided in the GAM.
B. Forms of independent auditor’s report
There are two forms of auditor’s report,
1. unmodified and
2. modified auditor’s report
An unmodified auditor’s report is rendered when the auditor concludes that the FS
are free from material misstatements and are prepared in accordance with the
applicable and appropriate FRF (PPSAS or PFRS).
Opinion
A modified auditor’s report is rendered if the auditor: (a.1) concludes that the FS are
not free from material misstatements; or (a.2) is unable to obtain sufficient
appropriate audit evidence to conclude that the FS as a whole are free from material
misstatement. The auditor’s opinion in a modified auditor’s report is considered
modified if he/she issued qualified or adverse opinion or disclaim an opinion.
b. Adverse Opinion - The auditor shall express an adverse opinion when the auditor,
having obtained sufficient appropriate audit evidence, concludes that
misstatements, individually or in the aggregate, are both material and pervasive to
the FS. Misstatements are considered pervasive if in the auditor’s judgment: (a)
they are not confined to specific elements, accounts or items of the FS; (b) if so
confined, they represent or could represent a substantial proportion of the FS; or
(c) in relation to disclosures, they are fundamental to users’ understanding of the
FS.
c. Disclaimer of Opinion - The auditor shall disclaim an opinion when the auditor is
unable to obtain sufficient appropriate audit evidence on which to base the
opinion, and the auditor concludes that the possible effects on the FS of undetected
misstatements, if any, could be both material and pervasive. A disclaimer is also
rendered when, in extremely rare circumstances involving multiple uncertainties,
the auditor concludes that, notwithstanding having obtained sufficient appropriate
audit evidence regarding each of the individual uncertainties; it is not possible to
form an opinion on the FS due to the potential interaction of the uncertainties and
their possible cumulative effect on the FS.
The auditor may disagree with Management about certain matters such as the
acceptability of accounting policies selected, the method of their application,
or the adequacy of disclosures in the FS resulting in the misstatement of the
FS. If such disagreements are significant to the FS, the auditor shall express a
qualified or an adverse opinion.
Scope limitation imposed by the entity takes the form of Management not
providing access to accounting records or the status of the entity’s records (is
incomplete, etc.), not allowing or limiting the conduct of interview with key
personnel, sanctioning the undertaking of inspection of projects or deliveries.
Limitations to the scope of the audit should never arise from impositions by
the auditor, as this constitutes deviation from audit engagement protocol and
demonstrates unprofessionalism.
For consolidated FS where auditors are required to render an auditor’s report, the
wordings on the auditor’s report are the same except in the title and opinion
paragraph where it is specifically stated that the FS and the Notes to FS are
consolidated.
Qualified Opinion
In our opinion, except for the effects of the matter described in the Basis for Qualified Opinion
section of our report, the accompanying financial statements present fairly, in all material respects,
the financial position of the Group as at December 31, 20X1 and 20X0, and their financial
performance and cash flows for the years then ended, and notes to the financial statements, in
accordance with Philippine Public Sector Accounting Standards or Philippine Financial Reporting
Standards/Philippine Financial Reporting Standards.
A. Title
The auditor’s report shall have a title that clearly indicates that it is the report of an
independent auditor. (Ref: ISSAI 1700 (Revised) par. 21)
B. Addressee
The auditor’s report is normally addressed to those for whom the report is prepared, often
either to the shareholders or to those charged with governance of the entity whose FS are
being audited. (Ref: ISSAI 1700 (Revised) par. A21)
The title, Report on the Audit of Financial Statements, is included to distinguish the following
sections form the other reports required to be contained in the IAR.
In our opinion, the accompanying financial statements present fairly, in all material respects, the
financial position of (Agency/Unit/Corporation/Project) as at December 31, 20X1 and 20X0, and
its financial performance, cash flows, changes in net assets/equity, and comparison of budget and
actual amounts for the year then ended in accordance with Philippine Public Sector Accounting
Standards/Philippine Financial Reporting Standards.
The auditor’s report shall include a section, directly following the opinion section the
“Basis for Opinion”.
In case of modified opinion, this section shall state the basis for modification as the
first paragraph.
Basis for Qualified Opinion (for Qualified Opinion – same qualification for both years)
The Agency’s inventories are carried in the statement of financial position at Pxxx and Pxxx
as at December 31, 20X1 and 20X0, respectively. Management has not stated the inventories
at the lower of cost and net realizable value but has stated them solely at cost, which
constitutes a departure from PPSAS/PFRS. The Agency’s records indicate that, had
management stated the inventories at the lower of cost and net realizable value, an amount of
Pxxx and Pxxx as at December 31, 20X1 and 20X0, respectively, would have been required to
write the inventories down to their net realizable value. This resulted in the understatement as
at December 31, 20X1 and 20X0, respectively, of cost of sales by Pxxx and Pxxx and
overstatement of income tax by Pxxx and Pxxx, net income by Pxxx and Pxxx, and
stockholders’ equity by Pxxx and Pxxx.
These are matters that, in the auditor’s professional judgment, are of most significant in
the audit of FS of the current period. These matters are addressed in the context of the
audit of the FS as a whole.
ISSAI 1701 applies to audit of complete sets of general purpose FS of listed entities, thus
making this section a requirement for listed entities only.
a. Increase transparency about the audit that was performed. Communicating KAM
provides additional information to intended users of the FS to assist them in
understanding those matters that, in the auditor’s professional judgment, were of
most significance in the audit of the FS of the current period.
b. Focus users of the FS on areas in the FS that are subject to significant management
judgment and significant auditor attention, which may assist the users in better
understanding the entity and FS, and the outcome of the audit as reflected in the
auditor’s opinion.
c. Provide users a basis to further engage with management and those in charge of
governance, about certain matters related to the entity, the audited FS, or the audit
that was performed.
a. A substitute for disclosure in the Notes to FS that the applicable FRF requires
Management to make, or that are otherwise necessary to achieve fair presentation;
b. A substitute for the auditor expressing a modified opinion when required by the
circumstances of a specific audit engagement in accordance with ISSAI 1705
(Revised);
c. A substitute for reporting in accordance with ISSAI 1570 (Revised) when a material
uncertainty exists relating to event or condition that may cast significant doubt on
an entity’s ability to continue as a going concern; or,
d. A separate opinion on individual matters.
When communicating KAM, auditors should consider laws and regulations that restrict
the reporting of such information by imposing confidentiality requirements. The need
for confidentiality may be based on the mandate of the SAI or legislation related to
official secrets or privacy. Auditors should identify such laws and regulations and
should consider confidentiality requirements when determining the KAM to
communicate.
The Auditor is prohibited under ISSAI 1705 (Revised) from communicating KAM when
the Auditor disclaims an opinion on the FS, unless such reporting is required by law or
regulations.
The Auditor shall describe each KAM, using an appropriate subheading, in a separate
section of the Auditor’s Report under the heading “Key Audit Matters”. The
introductory language shall state that:
a. KAMs are those matters that, in the auditor’s professional judgment, were of most
significance in the audit of the FS for the period; and,
b. Those matters were addressed in the context of the audit of FS as a whole, and in
forming the auditor’s opinion thereon; the auditor does not provide a separate
opinion on those matters.
Key Audit Matters
We have fulfilled the responsibilities described in the Auditor’s Responsibilities for the
Audit of the Consolidated Financial Statements section of our report, including in
relation to these matters. Accordingly, our audit included the performance of procedures
designed to respond to our assessment of the risks of material misstatement of the
consolidated financial statements. The results of our audit procedures, including the
procedures performed to address the matters below, provide the basis for our audit opinion on
the accompanying consolidated financial statements.
We draw attention to Note X of the financial statements, which describes the effects of a fire in
the agency’s facilities. Our opinion is not modified in respect of this matter.
We draw attention to Note 30 to the Financial Statements which describes the contingent
liabilities for lawsuits or claims filed by third parties against (Agency/Unit/Corporation/
Project) which are either pending in courts or under negotiation, and cases filed by
(Agency/Unit/Corporation) against the (concerned agencies) which are pending before the
Supreme Court, Court of Appeals and the Local Board of Assessments of the Local Government
Unit. Our opinion is not modified in respect of these matters.
We draw attention to Note X to the financial statements which describes the uncertainties
related to pending cases in several courts involving various claims against the Agency.
Because of the significance of the matters described in the Basis for Adverse Opinion
paragraph, it is appropriate to, and we do not, express an opinion on the information referred
to above.
C.5. Other matter
Other matter
In our report dated March 1, 20X1, we expressed an opinion that the 20X0 financial
statements did not fairly present the financial position, results of operations, and cash flows of
Agency/Unit/Corporation/Project in accordance with the PPSAS or PFRS because of two
departures from such principles: (1) Agency/Unit/Corporation/Project carried its property,
plant, and equipment at appraisal values, and provided for depreciation on the basis of such
values, and (2) Agency/Unit/Corporation/Project did not provide for deferred income taxes
with respect to differences between income for financial reporting purposes and taxable income.
The Agency/Unit/Corporation/Project has changed its method of accounting for these items
and restated its 20X0 financial statements to conform with the PPSAS or PFRS. Accordingly,
our present opinion on the restated 20X0 financial statements, as presented herein, is different
from that expressed in our previous report.
The auditor shall read the other information and, in doing so shall:
While reading the other information, the auditor shall remain alert for indications
that the information not related to the financial statements or the auditor’s knowledge
obtained in the audit appears to be materially misstated.
A separate section in the auditor’s report is used to identify the other information,
describe the auditor’s responsibilities in relation thereto, and, if applicable, report on
any material misstatement of the other information in “Other Matter” paragraph
a. Liquidity and capital resource information, such as cash, cash equivalents and
marketable securities; dividends; and debt, capital lease and minority interest
obligations
b. Amounts involved in guarantees, contractual obligations, legal or environmental
claims, and other contingencies
c. Financial measures or ratios, such as gross margin, return on average capital
employed, return on average shareholders’ equity, current ratio, interest coverage
ratio and debt ratio. Some of these may be directly reconcilable to the FS
d. Explanations of critical accounting estimates and related assumptions
e. Identification of related parties and descriptions of transactions with them
f. Descriptions of guarantees, indemnifications, contractual obligations, litigation or
environmental liability cases, and other contingencies, including management’s
qualitative assessments of the entity’s related exposures
g. Management’s qualitative assessments of the impacts of new financial reporting
standards that have come into effect during the period or in the following period,
on the entity’s financial results, financial position and cash flows
The auditor’s report shall include a section with a heading using the appropriate term
to describe those responsible for the preparation of the FS. This heading need not
refer specifically to “Management,” but may also refer to “Those Charged with
Governance” or such term that is appropriate in the context of the legal framework in
the particular jurisdiction.
a. Preparing the FS in accordance with the applicable FRF, and for such
internal control as management determines is necessary to enable the
preparation of FS that are free from material misstatements whether due
to fraud or error; and,
Those responsible for the oversight of the financial reporting process, if different from
those responsible for preparing the FS shall also be identified in this section.
Responsibilities of Management and Those Charged with Governance for the Financial
Statements
Management is responsible for the preparation of the financial statements in accordance with the
Philippine Public Sector Accounting Standards or Philippine Financial Reporting Standards and
for such internal control as management determined is necessary to enable the preparation of
financial statements that are free from material misstatement, whether due to fraud or error.
In preparing the financial statements, management’s responsibility for assessing the agency’s
ability to continue as a going concern, disclosing as applicable, matters related to going concern
and using the going concern basis of accounting unless management either intend to liquidate the
agency or to cease operations, or has no alternative but to do so.
Those charged with governance are responsible for overseeing the agency’s financial reporting
process.
C.8. Auditor’s responsibilities for the audit of the financial statements
a. The objectives of the audit are to: (i) Obtain reasonable assurance about whether
the FS as a whole are free from material misstatement, whether due to fraud or
error; and, (ii) Issue an IAR that includes an opinion.
c. Misstatements can arise from fraud or error and are considered material if,
individually or in the aggregate, they could reasonably be expected to influence
the economic decisions of users taken on the basis of these FS;
i. To identify and assess the risks of material misstatements of the FS, whether
due to fraud or error; to design and perform audit procedures responsive to
those risks; and to obtain audit evidence that is sufficient and appropriate to
provide a basis for his opinion. The risk of material misstatement resulting
from fraud is higher than for one resulting from error, as fraud may involve
collusion, forgery, intentional omissions, misrepresentations, or the override
of internal control.
v. To evaluate the overall presentation, structure and content of the FS, including
the disclosures, and whether the FS represent the underlying transactions and
events in a manner that achieves fair presentation.
h. From the matters communicated with those charged with governance, the auditor
determines those matters that were of most significance in the audit of the FS of
the current period and are therefore the key audit matters.
i. In cases of group audits where ISSAI 1600, paragraph 14 applies, the auditor’s
responsibilities in group audit are: i.1) To obtain sufficient appropriate audit
evidence regarding the financial information of the entities and business activities
within the group to express an opinion on the group FS; i.2) For the direction,
supervision and performance of the group audit; and (i.3) To remain solely
responsible for the auditor’s opinion.
Our objectives are to obtain reasonable assurance about whether the financial statements as a whole
are free from material misstatement, whether due to fraud or error, and to issue an auditor’s report
that includes our opinion. Reasonable assurance is a high level of assurance, but is not a guarantee
that an audit conducted in accordance with ISSAI will always detect a material misstatement when
it exists. Misstatements can arise from fraud or error and are considered material if, individually or
in the aggregate, they could reasonably be expected to influence the economic decisions of users
taken on the basis of these financial statements.
As part of an audit in accordance with ISSAIs, we exercise professional judgment and maintain
professional skepticism throughout the audit. We also:
Identify and assess the risks of material misstatement of the financial statements, whether due to
fraud or error, design and perform audit procedures responsive to those risks, and obtain audit
evidence that is sufficient and appropriate to provide a basis for our opinion. The risk of not
detecting a material misstatement resulting from fraud is higher than for one resulting from
error, as fraud may involve collusion, forgery, intentional omissions, misrepresentations, or the
override of internal control.
Obtain an understanding of internal control relevant to the audit in order to design audit
procedures that are appropriate in the circumstances, but not for the purpose of expressing an
opinion on the effectiveness of the Agency/Unit/Corporation/Project’s internal control.
Evaluate the appropriateness of accounting policies used and the reasonableness of accounting
estimates and related disclosures made by management.
Conclude on the appropriateness of management’s use of the going concern basis of accounting
and, based on the audit evidence obtained, whether a material uncertainty exists related to events
or conditions that may cast significant doubt on the Agency/Unit/Corporation/Project’s ability
to continue as a going concern. If we conclude that a material uncertainty exists, we are required
to draw attention in our auditor’s report to the related disclosures in the financial statements or,
if such disclosures are inadequate, to modify our opinion. Our conclusions are based on the audit
evidence obtained up to the date of our auditor’s report. However, future events or conditions
may cause the Agency/Unit/Corporation/Project to cease to continue as a going concern.
Evaluate the overall presentation, structure and content of the financial statements, including
the disclosures, and whether the financial statements represent the underlying transactions and
events in a manner that achieves fair presentation.
We communicate with those charged with governance regarding, among other matters, the planned
scope and timing of the audit and significant audit observations, including any significant
deficiencies in internal control that we identify during our audit.
We also provide those charged with governance with a statement that we have complied with relevant
ethical requirements regarding independence, and to communicate with them all relationships and
other matters that may reasonably be thought to bear on our independence, and where applicable,
related safeguards.
From the matters communicated with those charged with governance, we determine those matters
that were of most significance in the audit of the financial statements of the current period and are
therefore the key audit matters. We describe these matters in our auditor’s report unless law or
regulation precludes public disclosure about the matter or when, in extremely rare circumstances, we
determine that a matter should not be communicated in our report because the adverse consequences
of doing so would reasonably be expected to outweigh the public interest benefits of such
communication.
This refers to other reporting responsibilities not addressed under the reporting
responsibilities required by the ISSAIs as part of the report. (ISSAI 1720)
The Auditor is required to report on other regulatory requirements, such as the entity’s
inclusion in the Notes to FS information on taxes, duties and license fees paid or accrued
during the taxable year. It may also include applicable requirements from other regulatory
bodies.
“COMMISSION ON AUDIT”, placed before the signature and name of the Supervising
Auditor.
The IAR shall be signed by the Supervising Auditor or duly authorized signatory.
G. Auditor’s address
This represents the official address of the Auditor. It is usually a part of the letterhead
hence, no need to include this after the signature of the Auditor.
It shall be dated not earlier than the date when the auditor has obtained sufficient
appropriate audit evidence, usually after fieldwork or after the exit conference if there are
still procedures to be undertaken as a result of what has been discussed, as basis of the
auditor’s opinion on the FS.
III. Comparative information
ISSAI 1710 – Comparative Information deals with the auditor's responsibilities relating to
comparative information in an audit of FS. The nature of the comparative information that is
presented in an entity's FS depends on the requirements of the applicable FRF. Comparative
information refers to the amounts and disclosures included in the FS in respect of one or more
prior periods in accordance with the applicable FRF.
There are two different broad approaches to the auditor's reporting responsibilities in respect
of such comparative information: corresponding figures and comparative FS. Under the
corresponding figures approach, the amounts and other disclosures for the prior period
included as an integral part of the current period FS, are intended to be read only in relation to
the amounts and other disclosures relating to the current period (referred to as “current period
figures”). The level of detail presented in the corresponding amounts and disclosures is
dictated primarily by its relevance to the current period figures.
The auditor shall determine whether the FS include the comparative information required by
the applicable FRF and whether such information is appropriately classified.
a. The comparative information agrees with the amounts and other disclosures presented in
the prior period or, when appropriate, have been restated; and,
b. The accounting policies reflected in the comparative information are consistent with those
applied in the current period or, if there have been changes in accounting policies,
whether those changes have been properly accounted for and adequately presented and
disclosed.
Under ISSAI 1710, when corresponding figures are presented, the auditor’s opinion
shall not refer to the corresponding figures except in the circumstances described
below:
i. Refer to both the current period’s figures and the corresponding figures in
the description of the matter giving rise to the modification when the effects
or possible effects of the matter on the current period’s figures are material;
or,
ii. In other cases, explain that the audit opinion has been modified because of
the effects or possible effects of the unresolved matter on the comparability
of the current period’s figures and the corresponding figures.
b. If the auditor obtains audit evidence that a material misstatement exists in the
prior period financial statements on which an unmodified opinion has been
previously issued, and the corresponding figures have not been properly restated
or appropriate disclosures have not been made, the auditor shall express a
qualified opinion or an adverse opinion in the auditor’s report on the current
period financial statements, modified with respect to the corresponding figures
included therein.
c. If the prior period financial statements were not audited, the auditor shall state in
an Other Matter paragraph in the auditor’s report that the corresponding figures
are unaudited. Such a statement does not, however, relieve the auditor of the
requirement to obtain sufficient appropriate audit evidence that the opening
balances do not contain misstatements that materially affect the current period’s
financial statements.
d. When the auditor’s report on the prior period, as previously issued, included a
MODIFIED opinion (qualified, disclaimer, or adverse) and the matter which gave
rise to the modified opinion is resolved and properly accounted for or disclosed
in the FS in accordance with the applicable FRF, the auditor’s opinion on the
current period need not refer to the previous modification.
When comparative FS are presented, the auditor’s opinion shall refer to each period
for which FS are presented and on which an audit opinion is expressed.
When reporting on prior period FS in connection with the current period’s audit, if
the auditor’s opinion on such prior period FS differs from the opinion the auditor
previously expressed, the auditor shall disclose the substantive reasons for the
different opinion in an Other Matter paragraph in accordance with ISSAI 1706.
If the prior period FS were not audited, the auditor shall state in an Other Matter
paragraph that the comparative FS are unaudited. Such a statement does not,
however, relieve the auditor of the requirement to obtain sufficient appropriate audit
evidence that the opening balances do not contain misstatements that materially
affect the current period’s FS.
Government entities adopt the PPSAS or PFRS as their FRF. These standards require
that comparative information shall be disclosed in respect of the previous period for
all amounts reported in the FS.
IV. Special Considerations – Audits of Financial Statements Prepared in Accordance with Special
Purpose Frameworks
When forming an opinion and reporting on special purpose FS, the auditor shall apply the
requirements of ISSAI 1700 (Revised). The Auditor’s Report shall describe the purpose for
which the FS are prepared and if necessary, the intended users or refer to a note in the special
purpose FS that contains that information.
If management has a choice of FRFs in the preparation of such FS, the explanation of
management’s responsibility for the FS shall also make reference to its responsibility for
determining that the applicable FRF is acceptable in the circumstances.
The auditor’s report shall include an Emphasis on Matter paragraph (ISSAI 1720) alerting users
that FS are prepared in accordance with a special purpose framework and that, as a result, the
FS may not be suitable for another purpose. The auditor shall include this paragraph under an
appropriate heading.
V. Types of Audit Report
The audit report considers the management’s comments during the exit conference which
should be reduced in writing and formed part of documentation. This may be in the form of:
a. Annual Audit Report (AAR) – a report prepared at year-end on the results of audit on the
accounts and operations of an Agency/Unit/Corporation/Project. It is composed of the
IAR and discussion on observations with corresponding recommendations. In case the
audited agency failed to submit the FS for audit, no IAR can be issued. The auditor instead
will issue ML containing only the observations with corresponding recommendations. For
an Agency/Corporation with regional/branch offices and FOUs, the AAR shall be the
consolidated report on the results of audit of the head office, and the
regional/division/district/field offices of such Agency/Corporation. This report is
transmitted to the Agency Head by the CD/RD. In the case of GOCCs, the AAR is also
transmitted to the governing board.
b. Management Letter (ML) – an audit report on the results of audit of the regional/branch
offices, FOUs, staff bureau and line office with complete set of books of accounts. This is
addressed to the Regional/Branch/Office Head and transmitted by the SA/RSA.
The audit observations and recommendations are reviewed by the SA/RSA and CD/RD to
ensure that the same are based on the results of audit and duly documented, and all material
issues and concerns noted during the audit are included in the report and/or cleared by the
CD/RD.
The guidelines on the preparation of audit report including the transmittal of reports and
requirements for the agency to submit the financial statements and documents are prescribed
under pertinent COA Issuances.
Section 5
Quality control provides reasonable assurance that the audit engagement is performed in
compliance with professional standards and applicable legal and regulatory requirements,
and the audit report is appropriate in the circumstances. (The definition and discussions
are covered by ISSAI 1220).
While Quality Control and Quality Assurance are used interchangeably, there is a clear
difference. Quality control involves policies and procedures through which a SAI ensures
that the audit is carried out in compliance with the SAI auditing standards, rules and
procedures in line with the best international practices while quality assurance is a process
through which a SAI monitors and ensures that quality control is working effectively. Both
Quality Control and Quality Assurance operate within the Quality Management approach
implemented by the SAI to ensure that audit results as well as the means to achieving
them, are within the desired level of quality.
II. Responsibility for Quality Control System and Quality Control Procedures
The SAI has an obligation to establish and maintain a system of quality control to provide
reasonable assurance that: (a) The SAI and its personnel comply with professional
standards and applicable legal and regulatory requirements; and (b) Reports issued by the
Auditors are appropriate in the circumstances. Quality controls are established in all
phases of the audit.
Within the context of the SAI’s system of quality control, the audit teams are responsible
for implementing quality control procedures that are applicable to the audit engagement
and provide the SAI with relevant information to ensure that quality controls relating to
independence are functional. The SA/RSA is responsible for the overall quality of each
audit engagement.
The responsibility for the quality of an audit and resulting Audit Report rests with the
CD/RD and SA/RSA. Following the Revised Guidelines in the Implementation of the
Unified Audit Approach, there are three levels of quality control review implemented in
all the phases of the audit. These are summarized below:
At the first level, ATLs are responsible for the initial review of the working papers
prepared/obtained by the ATMs, namely, results of evaluation and validation of controls
over identified risks, substantive work reducing residual audit risks to acceptable levels,
supporting documents for the audit report, draft audited FS; and other working papers.
At the level of SA/RSA, review should sufficiently satisfy the requirements that the audit
documentation contains adequate evidence of the work done and conclusions reached, and
provide a reasonable basis for an opinion.
a. Determining whether the overall presentation of the FS, including the related
disclosures, is in accordance with the applicable FRF. (This aspect is discussed in
Section 4)
b. Ensuring that all necessary audit procedures have been completed, reviewed, and
sufficiently and appropriately documented.
c. Monitoring compliance by the audit team with auditing standards, laws, regulations
and ethical requirements.
d. Reviewing audit conclusions, recommendations, and professional judgments made by
the audit team.
e. Ensuring that all significant changes made to the audit strategy and audit plan are
justified and appropriately documented and approved.
f. Monitoring Management compliance with the requirements included in the
Engagement Letter, and action on deficiencies requiring corrections in the final FS.
Engagement Planning Memorandum is not only a planning tool but also serves as
supervision and monitoring tool for the SA/RSA and the CD/RD. The progress of work
by the team members, the audit procedures performed and the timing of audit activities
can be kept track through the Plan. Deviations to activities approved in the Plan need to be
approved by the SA/RSA before these are effected. Otherwise, the ATL will be required to
formally explain why certain procedures were skipped, why budgeted time for each
objective was exceeded, among others. This Plan will then serve as a gauge of how well
each member in the team performed.
a. The Audit Team’s performance including that of the SA/RSA will be assessed based
on the Completion Compliance Checklist and the Auditee Feedback Sheet by the
CD/RD with the assessment evaluation to the Assistant Commissioner concerned.
b. This quality control review tool allows the CD/RD and the Assistant Commissioner to
have a reasonable basis for taking appropriate action to ensure the quality of financial
audit performed by the audit teams.
a. This quality control review tool assesses the quality of an Auditee’s financial
management performance using the results of the audit performed, including internal
control review.
b. When necessary, the results may be provided to the Department of Budget and
Management as one of the bases for reviewing the Auditee’s performance.