Professional Documents
Culture Documents
Summary Note of Assurance - Chap 5 - 7
Summary Note of Assurance - Chap 5 - 7
Internal control
- Process designed, implemented, maintained to mitigate risks to the business and ensure that the business
operates effectively efficiently
- Human element
- Collusion
- Unusual transactions
- Control environment
- Control activities
- Information system
- Risk assessment
- Monitoring of controls
Control environment:
- Definition: governance and management functions and awareness, attitude and actions of those charged
with governance, management to internal controls and its importance.
- Identify relevant business risks. Business risks are risks that could affect an entity’s ability to achieve its
objectives, strategies or wrong objectives, strategies (remember the primary objective of n profit-oriented
organization is maximizing profit and shareholders’ wealth)
- Estimate significance (impact)
- Assess the likelihood
- Decide actions
Information system
- Process of initiate, record, process and report entity transactions and maintain accountability of assets,
liabilities and equity
- Auditor will be interested in
+ Classes of transactions that are significant to financial statements
+ Procedures that transactions are initiated, recorded, processed, corrected and reported
+ Related accounting records and supporting information
+ How information system captures events other than transactions, but significant to the FSs
+ Process of preparing FSs
- Authorisation
+ Approval of transactions/documents
- Performance review
+ Actual vs budget
+ Relating different sets of data
+ Internal data vs external data
+ Review of functional and activity performance
- Information processing
+ Controls to check accuracy, completeness and authorization of transactions. Include: general controls,
application controls
- Physical controls
+ Physical security
+ Authorisation for access
+ Periodic counting
- Segregation of duties
+ Assigning different individual the responsibilities of:
Authorising transactions
Recording transactions
Custody of assets
- Human threats
- Fraud
- Deliberate sabotage
- Viruses and other corruptions
- Malware
- DoS attack
Monitoring of controls
Recording of controls
Ordering
Recording
Cash collection
Ordering
Payment
- Risk
+ False invoices are paid in error
+ Invoices are paid too soon
+ Payments is not correctly recorded
+ Credits are not correctly recorded
+ Payments are not recorded in the correct period
- Objectives
+ All expenditure is for goods that are received
+ All expenditure is authorized
+ All expenditure that is made is recorded correctly in the nominal ledger
+ Payments are not made twice for the same liability
- For controls and test of control related to cash, as there are various controls and test of controls over cash
(because this is a sensitive item), kindly refer to tables within pages 141-143. It is not necessary to remember
everything but remember as much keywords as possible. And through practicing QB, you will remember
those easier and even automatically remembered.