Professional Documents
Culture Documents
Auditing and Assurance Services: Seventeenth Edition, Global Edition
Auditing and Assurance Services: Seventeenth Edition, Global Edition
Chapter 11
Assessing Control Risk and
Reporting on Internal Controls
– Client has good internal control Auditors have lower audit effort (vice versa)
Source: Michael Ramos, “Section 404 Compliance in the Annual Report,” Journal of Accountancy, October 2004,
pp. 43–48. Copyright by American Institute of CPAs. All rights reserved. Used with permission.
• The auditor is likely to use four types of procedures to support the operating
effectiveness of internal controls: (example: imagine an internal control policy
which requires the supervisor to check the invoice before sending out)
– Make inquiries of appropriate client personnel
Ask the supervisor what he does with the invoice
– Examine documents, records, and reports
Any check marks/ signs on those invoices
– Observe control-related activities
– Re-perform client procedures