Professional Documents
Culture Documents
Chapter 3 - Internal Control
Chapter 3 - Internal Control
INTERNAL CONTROL
CHAPTER 3
Prescribed textbook
AUDITING & ASSURANCE SERVICES IN AUSTRALIA 7TH -
Grant Gay& Roger Simnett
Chapter 7, 8
KIỂM TOÁN (2017), 7th - Bộ môn Kiểm toán
Chương 2
Relevant guidance
LEARNING OBJECTIVES
CONTENT
AIMS AT
• Reliability of financial statements.
• Compliance with laws and regulations
• Effectiveness and Efficiency of operations.
A process,
Internal
Management Reporting
control
Other
Compliance OBJECTIVES
PEOPLE personel
REASONABLE
ASSURANCE
1
• Control environment
2
• Risk Assessment
3
• Control Activities
4
• Information & Communication
5
• Monitoring Activities
Auditing Department - School of
10
Accounting - UEH
CONTROL ENVIRONMENT
CONTROL ENVIRONMENT:
1. Demonstrate Commitment to
Integrity and ethical values
5. Enforces
accountability
2. Exercises
oversight
responsibility
CONTROL
ENVIRONMENT
4. Demonstrates 3. Establishes
commitment to structure,
competence authority and
responsibility
RISK ASSESSMENT
Management’s process for identifying, analyzing and
responding to a variety of risks from external and
internal sources threatening an entity’s ability to
meet its objectives
RISK ASSESSMENT
RISK ASSESSMENT
Objectives
Risk response
Risk assessment
RISK ASSESSMENT
Investors
Regulatory framework
Competitors
Suppliers Customers
Employees
Government
Associates
Auditing Department - School of
16
Accounting - UEH
CONTROL ACTIVIES
CONTROL ACTIVIES
Segregation of duties
Physical controls
Physical counts
Installation of cameras,
sensors, alarm system, …
Information protection
MONITORING ACTIVITIES
Obtain an understanding of IC
No Yes
Is control risk assessed as
HIGH?
HOW:
• Inspect documented policies and procedures
• Observe entity activities and operations
• Make inquiries of key management personnel
• Review the previous years’ audit files
Walk-through
Auditing Department - School of
30
Accounting - UEH
WHEN: HOW:
• Control risk assessed at • Inquiry
less than high and cost
effective; or • Inspection
• Substantive procedures • Observation
alone cannot provide • Reperformance
sufficient appropriate
audit evidence at the
assertion level
• All sales recorded are “real” • Policy of authorisation of • Select a sample of sales
transactions for credit and terms transactions from sales
merchandise actually • Evidence to quantities journal (daily activity
shipped to customers shipped reconciled to report), check for
(Occurrence assertion) quantities invoiced appropriate authorisation
• Monthly statements mailed and trace to shipping
to customers and queries document file
followed up • Inspect reconciliation of
shipments to invoices
• Observe mailing of
monthly statements, and
inquiry about the follow-up
actions