SlideShare uma empresa Scribd logo

Internal Control

Salih Islam
Salih Islam

Internal Control

Negócios
1 de 32
Baixar para ler offline
Internal Control
Summary of Internal Control Definition A process, effected by the entity’s board of directors, management, and other personnel, designed to provide reasonable assurance regarding, achievement of (the entity’s) objectives on: –Effectiveness and efficiency of operations –Reliability of financial reporting –Compliance with applicable laws and regulations
Control Objectives •In each area of internal control (financial reporting, operations and compliance) –Control objectives and –Sub objectives exist •Example: Area of financial reporting –Top level objective – prepare and issue reliable financial information –Detailed level applied to A/R sub objectives •All goods shipped are accurately billed in the proper period •Invoices are accurately recorded for all authorized shipments and only for such shipments •Authorized and only authorized sales returns and allowances are accurately recorded •The continued completeness and accuracy of A/R is ensured •Accounts receivable records are safeguarded
Foreign Corrupt Practices Act •Passed in 1977 in response to American corporation practice of paying bribes and kickbacks to officials in foreign countries to obtain business •The Act –Requires an effective system of internal control –Makes illegal payment of bribes to foreign officials
Controls over Financial Reporting •Preventive –Aimed at avoiding the occurrence of misstatements in the financial statements –Example: Segregation of duties •Detective –Designed to discover misstatements after they have occurred –Example: Monthly bank reconciliations •Corrective –Needed to remedy the situation uncovered by detective controls –Example: Backups of master file •Controls overlap –Complementary – function together –Redundant – address same assertion or control objective –Compensating – reduces risk existing weakness will result in misstatement
Components of Internal Control •The Control Environment •Risk Assessment •The Accounting Information and Communication System •Control Activities •Monitoring
Control Environment Factors •Integrity and ethical values •Commitment to competence •Board of directors or audit committee •Management philosophy and operating style •Organizational structure •Human resource policies and practices •Assignment of authority and responsibility
Risk Assessment--Factors Indicative of Increased Financial Reporting Risk •Changes in the regulatory or operating environment •Changes in personnel •Implementation of a new or modified information system •Rapid growth of the organization •Changes in technology affecting production processes or information systems •Introduction of new lines of business, products, or processes
Control Activities •Performance reviews •Information processing –General control activities –Application control activities •Physical controls •Segregation of duties –Segregate authorization, recording and custody of assets
Segregation of Duties
Objectives of an Accounting System •Identify and record valid transactions •Describe on a timely basis the transactions in sufficient detail to permit proper classification of transactions •Measure the value of transactions appropriately •Determine the time period in which the transactions occurred to permit recording in the proper period •Present properly the transactions and related disclosures in the financial statements
Monitoring •Ongoing monitoring activities –Regularly performed supervisory and management activities –Example: Continuous monitoring of customer complaints •Separate evaluations –Performed on nonroutine basis –Example: Periodic audits by internal audit
Limitations of Internal Control •Errors may arise from misunderstandings of instructions, mistakes of judgment, fatigue, etc. •Controls that depend on the segregation of duties may be circumvented by collusion •Management may override the structure •Compliance may deteriorate over time
Enterprise Risk Management (ERM) •COSO issued a new internal control framework in 2004 on enterprise risk management. It does not replace the original COSO internal control framework. •It goes beyond internal control to focus on how organizations can effectively manage risks and opportunities. •The auditing standards are still structured around the original COSO internal control framework.
Auditors’ Overall Approach with Internal Control •Overall approach of an audit 1. Plan the audit 2. Obtain an understanding of the client and its environment, including internal control 3. Assess the risks of material misstatement and design further audit procedures 4. Perform further audit procedures 5. Complete the audit 6. Form an opinion and issue the audit report •Steps 2-4 relate most directly to the role of internal control in financial statement audits
2. Obtain an understanding of the client and its environment, including internal control •The understanding of internal control is used to help the auditor to –Identify types of potential misstatements –Consider factors that affect the risks of material misstatement. –Design tests of controls (when applicable) and substantive procedures. •Auditors must consider all five internal control components –Control environment –Accounting information system –Risk assessment –Control activities –Monitoring •Also consider areas difficult to control like nonroutine transactions
Obtaining the Understanding •Procedures include –Inquiring of entity personnel –Observing the application of specific controls –Inspecting documents and reports –Tracing transactions through the information system relevant to financial reporting •May also obtain evidence on operating effectiveness of various controls
Documenting the Understanding of Internal Control •Questionnaires –Typically standardized by firm •Written Narratives –Memos that describe flow of transactions •Flowcharts –Systems flowcharts •Walk-through –Trace one or two transaction through cycle
3. Assess the risks of material misstatement General approach –Identify risks while obtaining an understanding of the client and its environment, including its internal control –Relate the identified risks to what can go wrong at the relevant assertion level –Consider whether the risks are of a magnitude that could result in a material misstatement –Consider the likelihood that the risks could result in a material misstatement
The nature of transactions •Consider the nature of the transactions –Routine transactions—e.g., revenue, purchases, and cash receipts and disbursements –Nonroutine transactions—e.g., taking of inventory, calculating depreciation expense –Estimation transactions—e.g., determining the allowance for doubtful accounts •Generally routine transactions have the strongest controls
Assessing Risks at the Financial Statement Level •Examples –Preparing the period-end financial statements, including the development of significant accounting estimate and preparation of the notes –The selection and application of significant accounting policies –IT general controls –The control environment •Responses to high risks –Assigning more experience staff or those with specialized skills –Providing more supervision and emphasizing the need to maintain professional skepticism –Incorporating additional elements of unpredictability in the selection of further audit procedures to be performed –Increasing the overall scope of audit procedures, including the nature, timing or extent
Assessing Risks at the Assertion Level •Examples –Failure to recognize an impairment loss on a long- lived asset affects only the valuation assertion –Inaccurate counting of inventory at year-end affect the valuation of inventory and the accuracy of cost of goods sold •Responses –Decisions are made here as to the appropriate combination of tests of controls and substantive procedures
4. Perform Further Audit Procedures – Test of Controls (1/2) •Approach: –Identify controls likely to prevent or detect material misstatements –Perform tests of controls to determine whether they are operating effectively •Tests of controls address: –How controls were applied –The consistency with which controls were applied –By whom or by what means (e.g., electronically) the controls were applied
4. Perform Further Audit Procedures – Test of Controls (1/2) •Tests of controls include: –Inquiries of appropriate client personnel –Inspection of documents and reports –Observation of the application of controls –Reperformance of the controls •The results of the tests of controls are used to determine the nature, timing and extent of substantive procedures
Diagram of the Auditors’ Consideration of Internal Control
Other Considerations •Audit decision aids –Checklist, standard form or computer program that helps auditors make a decision by ensuring that they have all relevant information or by assisting them in combining the information. •Use of the work of internal auditors –Must assess internal audit competence and objectivity and test work –Can rely on work of internal audit to reduce amount of testing done by independent auditors
Relationships Among Deficiencies Deficiency in Internal Control Less than Significant Material Significant Deficiency Weakness
Management’s Report on Internal Control under Section 404a •Acknowledgment of responsibility for internal control •An assessment of internal control effectiveness as of the last day of the company’s fiscal yearn using suitable criteria •Support the evaluation with sufficient evidence
Approach to Audit of Internal Control under Section 404b •This section applies to public companies with a market capitalization of $75 million or more. For those companies, the auditors audit internal control as a part of an integrated audit as follows: –Plan the engagement –Use a top-down approach to identify the controls to test –Test and evaluate design effectiveness of internal control –Test and evaluate operating effectiveness of internal control –Form an opinion on effectiveness of internal control over financial reporting
Internal Control in the Small Company •Due to lack of employees, internal control is seldom strong in small businesses •Specific practices for small businesses –Record all cash receipts immediately –Deposit all cash receipts intact daily –Make all payments by serially numbered checks, with exception of petty cash disbursements –Reconcile bank accounts monthly and retain copies –Use serially numbered invoices, Pos, and receiving reports –Issue checks to vendors only in payment of approved invoices that have been matched with purchase orders and receiving reports –Balance subsidiary ledger with control accounts –Prepare comparative financial statements monthly to disclose significant variations in any category of revenue or expense

Recomendados

Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal controlRadhika Gohel
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditingHardik Shah
 
Internal controls
Internal controlsInternal controls
Internal controlsGeetali Tare
 
Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Sazzad Hossain, ITP, MBA, CSCA™
 
Internal control system
Internal control systemInternal control system
Internal control systemHina Varshney
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal controlDr Manu H Natesh
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal AuditArmeniaFED
 

Recomendados

Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal controlRadhika Gohel
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditingHardik Shah
 
Internal controls
Internal controlsInternal controls
Internal controlsGeetali Tare
 
Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Sazzad Hossain, ITP, MBA, CSCA™
 
Internal control system
Internal control systemInternal control system
Internal control systemHina Varshney
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal controlDr Manu H Natesh
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal AuditArmeniaFED
 
Internal control system
Internal control systemInternal control system
Internal control systemMadiha Hassan
 
Ppt on risk based internal audit
Ppt on risk based internal auditPpt on risk based internal audit
Ppt on risk based internal auditAmitaMistry2
 
Internal Control
Internal ControlInternal Control
Internal Controlravalhimani
 
Internal control & compliance of bank
Internal control & compliance of bankInternal control & compliance of bank
Internal control & compliance of bankMohammad Robiul
 
8. internal control new
8. internal control new8. internal control new
8. internal control newSyed Osama Rizvi
 
Ch 9. Internal Audit
Ch 9. Internal AuditCh 9. Internal Audit
Ch 9. Internal AuditSazzad Hossain, ITP, MBA, CSCA™
 
IFC - Internal Financial Control
IFC - Internal Financial Control IFC - Internal Financial Control
IFC - Internal Financial Control Dr. Dhirendra Gautam
 
Lecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of AuditingLecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of AuditingSazzad Hossain, ITP, MBA, CSCA™
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bankMohammad Halim Stanikzai
 
INTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxINTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxHeldaMaryA
 
Chapter 3
Chapter 3Chapter 3
Chapter 3EasyStudy3
 
Financial Statements Audit
Financial Statements AuditFinancial Statements Audit
Financial Statements AuditSalih Islam
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit pptIbrahim Jimalle
 
Coso framework
Coso frameworkCoso framework
Coso frameworkDarryl Woolley
 
Internal audit department
Internal audit departmentInternal audit department
Internal audit departmentPopun
 
Chapter 11, Tests of Controls
Chapter 11, Tests of ControlsChapter 11, Tests of Controls
Chapter 11, Tests of ControlsSazzad Hossain, ITP, MBA, CSCA™
 
Compliance audit
Compliance auditCompliance audit
Compliance auditEmma Yaks
 
Auditing Standard and Practice
Auditing Standard and Practice Auditing Standard and Practice
Auditing Standard and Practice Bikash Kumar
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit pptLetzconsult.com
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditorsminkhollow
 
Ijarah
IjarahIjarah
IjarahAtika Anuar
 
Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Conceptsspschandel
 

Mais conteúdo relacionado

Mais procurados

Internal control system
Internal control systemInternal control system
Internal control systemMadiha Hassan
 
Ppt on risk based internal audit
Ppt on risk based internal auditPpt on risk based internal audit
Ppt on risk based internal auditAmitaMistry2
 
Internal Control
Internal ControlInternal Control
Internal Controlravalhimani
 
Internal control & compliance of bank
Internal control & compliance of bankInternal control & compliance of bank
Internal control & compliance of bankMohammad Robiul
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bankMohammad Halim Stanikzai
 
INTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxINTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxHeldaMaryA
 
Financial Statements Audit
Financial Statements AuditFinancial Statements Audit
Financial Statements AuditSalih Islam
 
Internal audit department
Internal audit departmentInternal audit department
Internal audit departmentPopun
 
Compliance audit
Compliance auditCompliance audit
Compliance auditEmma Yaks
 
Auditing Standard and Practice
Auditing Standard and Practice Auditing Standard and Practice
Auditing Standard and Practice Bikash Kumar
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditorsminkhollow
 

Mais procurados (20)

Internal control system
Internal control systemInternal control system
Internal control system
 
Ppt on risk based internal audit
Ppt on risk based internal auditPpt on risk based internal audit
Ppt on risk based internal audit
 
Internal Control
Internal ControlInternal Control
Internal Control
 
Internal control & compliance of bank
Internal control & compliance of bankInternal control & compliance of bank
Internal control & compliance of bank
 
8. internal control new
8. internal control new8. internal control new
8. internal control new
 
Ch 9. Internal Audit
Ch 9. Internal AuditCh 9. Internal Audit
Ch 9. Internal Audit
 
IFC - Internal Financial Control
IFC - Internal Financial Control IFC - Internal Financial Control
IFC - Internal Financial Control
 
Lecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of AuditingLecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of Auditing
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bank
 
INTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxINTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptx
 
Chapter 3
Chapter 3Chapter 3
Chapter 3
 
Financial Statements Audit
Financial Statements AuditFinancial Statements Audit
Financial Statements Audit
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
 
Coso framework
Coso frameworkCoso framework
Coso framework
 
Internal audit department
Internal audit departmentInternal audit department
Internal audit department
 
Chapter 11, Tests of Controls
Chapter 11, Tests of ControlsChapter 11, Tests of Controls
Chapter 11, Tests of Controls
 
Compliance audit
Compliance auditCompliance audit
Compliance audit
 
Auditing Standard and Practice
Auditing Standard and Practice Auditing Standard and Practice
Auditing Standard and Practice
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditors
 

Destaque

Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Conceptsspschandel
 
Organisational innovation
Organisational innovationOrganisational innovation
Organisational innovationCharanya Naidu
 
Factors affecting organizational design
Factors affecting organizational designFactors affecting organizational design
Factors affecting organizational designrishikant555
 
Strategic Plan & Change Management
Strategic Plan & Change ManagementStrategic Plan & Change Management
Strategic Plan & Change ManagementTriune Global
 
Power and politics in organization
Power and politics in organizationPower and politics in organization
Power and politics in organizationlearner_j
 
Organizational Design And Change
Organizational Design And ChangeOrganizational Design And Change
Organizational Design And ChangeKing Julian
 
Chapter 11 Managing Change and Innovation
Chapter 11 Managing Change and InnovationChapter 11 Managing Change and Innovation
Chapter 11 Managing Change and InnovationRayman Soe
 
Power & politics in organizations
Power & politics in organizationsPower & politics in organizations
Power & politics in organizationsmdfaizan
 

Destaque (11)

Ijarah
IjarahIjarah
Ijarah
 
Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Concepts
 
Organisational innovation
Organisational innovationOrganisational innovation
Organisational innovation
 
Factors affecting organizational design
Factors affecting organizational designFactors affecting organizational design
Factors affecting organizational design
 
Strategic Plan & Change Management
Strategic Plan & Change ManagementStrategic Plan & Change Management
Strategic Plan & Change Management
 
Power and politics in organization
Power and politics in organizationPower and politics in organization
Power and politics in organization
 
ORGANIZATIONAL INNOVATION MODEL
ORGANIZATIONAL INNOVATION MODELORGANIZATIONAL INNOVATION MODEL
ORGANIZATIONAL INNOVATION MODEL
 
Organizational Design And Change
Organizational Design And ChangeOrganizational Design And Change
Organizational Design And Change
 
Chapter 11 Managing Change and Innovation
Chapter 11 Managing Change and InnovationChapter 11 Managing Change and Innovation
Chapter 11 Managing Change and Innovation
 
Power & politics in organizations
Power & politics in organizationsPower & politics in organizations
Power & politics in organizations
 
Audit presentation
Audit presentationAudit presentation
Audit presentation
 

Semelhante a Internal Control

Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)bagarza
 
Red Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level ControlsRed Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level ControlsSmith-Howard
 
Ch 7 controlling
Ch 7 controllingCh 7 controlling
Ch 7 controllingwaqole
 
Principles of Management Controlling
Principles of Management ControllingPrinciples of Management Controlling
Principles of Management ControllingDr. John V. Padua
 
F & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals PerspectiveF & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals PerspectiveGary Pennington
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptxSiraj332397
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptxSiraj332397
 
10.CONTROLLING.pptx
10.CONTROLLING.pptx10.CONTROLLING.pptx
10.CONTROLLING.pptxRISHIPJAIN
 
Internal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptxInternal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptxkamallochanpalei
 
El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007Danial Khan
 
AUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTESAUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTESGina Brown
 

Semelhante a Internal Control (20)

Internal control
Internal controlInternal control
Internal control
 
Chapter 7
Chapter 7Chapter 7
Chapter 7
 
Chapter 7
Chapter 7Chapter 7
Chapter 7
 
Internal controls in an IT environment
Internal controls in an IT environment Internal controls in an IT environment
Internal controls in an IT environment
 
Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)
 
Ebbpa3 b ch 9
Ebbpa3 b ch 9Ebbpa3 b ch 9
Ebbpa3 b ch 9
 
SFC Plan of engagement
SFC Plan of engagementSFC Plan of engagement
SFC Plan of engagement
 
Red Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level ControlsRed Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level Controls
 
Ch 7 controlling
Ch 7 controllingCh 7 controlling
Ch 7 controlling
 
Monitoring
MonitoringMonitoring
Monitoring
 
Advance audit
Advance auditAdvance audit
Advance audit
 
Principles of Management Controlling
Principles of Management ControllingPrinciples of Management Controlling
Principles of Management Controlling
 
F & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals PerspectiveF & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals Perspective
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptx
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptx
 
10.CONTROLLING.pptx
10.CONTROLLING.pptx10.CONTROLLING.pptx
10.CONTROLLING.pptx
 
Internal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptxInternal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptx
 
Compliance
ComplianceCompliance
Compliance
 
El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007
 
AUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTESAUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTES
 

Mais de Salih Islam

Denetim - Güncel Yaklaşımlar
Denetim - Güncel YaklaşımlarDenetim - Güncel Yaklaşımlar
Denetim - Güncel YaklaşımlarSalih Islam
 
Internal audits role in compliance
Internal audits role in complianceInternal audits role in compliance
Internal audits role in complianceSalih Islam
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IASalih Islam
 
Evolving Risk Management
Evolving Risk ManagementEvolving Risk Management
Evolving Risk ManagementSalih Islam
 
Corporate Governance
Corporate GovernanceCorporate Governance
Corporate GovernanceSalih Islam
 
It audit methodologies
It audit methodologiesIt audit methodologies
It audit methodologiesSalih Islam
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit MethodologySalih Islam
 
Fraud Investigation
Fraud InvestigationFraud Investigation
Fraud InvestigationSalih Islam
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal auditSalih Islam
 
Assessing Strengths and Weaknesses
Assessing Strengths and WeaknessesAssessing Strengths and Weaknesses
Assessing Strengths and WeaknessesSalih Islam
 
The role of auditing in the erm process
The role of auditing in the erm processThe role of auditing in the erm process
The role of auditing in the erm processSalih Islam
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit departmentSalih Islam
 
Risk Based Audit Approach
Risk Based Audit ApproachRisk Based Audit Approach
Risk Based Audit ApproachSalih Islam
 
Internal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilitiesInternal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilitiesSalih Islam
 
Internal Audit Primary Mission
Internal Audit Primary MissionInternal Audit Primary Mission
Internal Audit Primary MissionSalih Islam
 
Summary of work experience
Summary of work experienceSummary of work experience
Summary of work experienceSalih Islam
 
Summary of Work Experience
Summary of Work ExperienceSummary of Work Experience
Summary of Work ExperienceSalih Islam
 

Mais de Salih Islam (20)

Denetim - Güncel Yaklaşımlar
Denetim - Güncel YaklaşımlarDenetim - Güncel Yaklaşımlar
Denetim - Güncel Yaklaşımlar
 
Internal audits role in compliance
Internal audits role in complianceInternal audits role in compliance
Internal audits role in compliance
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IA
 
Evolving Risk Management
Evolving Risk ManagementEvolving Risk Management
Evolving Risk Management
 
Corporate Governance
Corporate GovernanceCorporate Governance
Corporate Governance
 
It audit methodologies
It audit methodologiesIt audit methodologies
It audit methodologies
 
Independency
IndependencyIndependency
Independency
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit Methodology
 
Audit Fields
Audit FieldsAudit Fields
Audit Fields
 
Fraud Investigation
Fraud InvestigationFraud Investigation
Fraud Investigation
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal audit
 
Assessing Strengths and Weaknesses
Assessing Strengths and WeaknessesAssessing Strengths and Weaknesses
Assessing Strengths and Weaknesses
 
The role of auditing in the erm process
The role of auditing in the erm processThe role of auditing in the erm process
The role of auditing in the erm process
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit department
 
Risk Based Audit Approach
Risk Based Audit ApproachRisk Based Audit Approach
Risk Based Audit Approach
 
Internal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilitiesInternal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilities
 
Internal Audit Primary Mission
Internal Audit Primary MissionInternal Audit Primary Mission
Internal Audit Primary Mission
 
Audit Cycle
Audit CycleAudit Cycle
Audit Cycle
 
Summary of work experience
Summary of work experienceSummary of work experience
Summary of work experience
 
Summary of Work Experience
Summary of Work ExperienceSummary of Work Experience
Summary of Work Experience
 

Último

Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRegression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRavindra Nath Shukla
 
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
0183760ssssssssssssssssssssssssssss00101011 (27).pdf0183760ssssssssssssssssssssssssssss00101011 (27).pdf
0183760ssssssssssssssssssssssssssss00101011 (27).pdfRenandantas16
 
Understanding the Pakistan Budgeting Process: Basics and Key Insights
Understanding the Pakistan Budgeting Process: Basics and Key InsightsUnderstanding the Pakistan Budgeting Process: Basics and Key Insights
Understanding the Pakistan Budgeting Process: Basics and Key Insightsseri bangash
 
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...Any kyc Account
 
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...Dipal Arora
 
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...Lviv Startup Club
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Centuryrwgiffor
 
Monthly Social Media Update April 2024 pptx.pptx
Monthly Social Media Update April 2024 pptx.pptxMonthly Social Media Update April 2024 pptx.pptx
Monthly Social Media Update April 2024 pptx.pptxAndy Lambert
 
Insurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageInsurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageMatteo Carbone
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Serviceritikaroy0888
 
The Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case studyThe Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case studyEthan lee
 
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...lizamodels9
 
Unlocking the Secrets of Affiliate Marketing.pdf
Unlocking the Secrets of Affiliate Marketing.pdfUnlocking the Secrets of Affiliate Marketing.pdf
Unlocking the Secrets of Affiliate Marketing.pdfOnline Income Engine
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayNZSG
 
Cracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxCracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxWorkforce Group
 
Event mailer assignment progress report .pdf
Event mailer assignment progress report .pdfEvent mailer assignment progress report .pdf
Event mailer assignment progress report .pdftbatkhuu1
 
Call Girls in Gomti Nagar - 7388211116 - With room Service
Call Girls in Gomti Nagar - 7388211116 - With room ServiceCall Girls in Gomti Nagar - 7388211116 - With room Service
Call Girls in Gomti Nagar - 7388211116 - With room Servicediscovermytutordmt
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsP&CO
 

Último (20)

Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRegression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear Regression
 
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
0183760ssssssssssssssssssssssssssss00101011 (27).pdf0183760ssssssssssssssssssssssssssss00101011 (27).pdf
0183760ssssssssssssssssssssssssssss00101011 (27).pdf
 
Understanding the Pakistan Budgeting Process: Basics and Key Insights
Understanding the Pakistan Budgeting Process: Basics and Key InsightsUnderstanding the Pakistan Budgeting Process: Basics and Key Insights
Understanding the Pakistan Budgeting Process: Basics and Key Insights
 
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
 
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
 
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
Call Girls Navi Mumbai Just Call 9907093804 Top Class Call Girl Service Avail...
 
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
Yaroslav Rozhankivskyy: Три складові і три передумови максимальної продуктивн...
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
Monthly Social Media Update April 2024 pptx.pptx
Monthly Social Media Update April 2024 pptx.pptxMonthly Social Media Update April 2024 pptx.pptx
Monthly Social Media Update April 2024 pptx.pptx
 
Insurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageInsurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usage
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 
The Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case studyThe Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case study
 
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
 
Unlocking the Secrets of Affiliate Marketing.pdf
Unlocking the Secrets of Affiliate Marketing.pdfUnlocking the Secrets of Affiliate Marketing.pdf
Unlocking the Secrets of Affiliate Marketing.pdf
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
Cracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxCracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptx
 
Event mailer assignment progress report .pdf
Event mailer assignment progress report .pdfEvent mailer assignment progress report .pdf
Event mailer assignment progress report .pdf
 
Call Girls in Gomti Nagar - 7388211116 - With room Service
Call Girls in Gomti Nagar - 7388211116 - With room ServiceCall Girls in Gomti Nagar - 7388211116 - With room Service
Call Girls in Gomti Nagar - 7388211116 - With room Service
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 

Internal Control

  • 1.
  • 3. Summary of Internal Control Definition A process, effected by the entity’s board of directors, management, and other personnel, designed to provide reasonable assurance regarding, achievement of (the entity’s) objectives on: –Effectiveness and efficiency of operations –Reliability of financial reporting –Compliance with applicable laws and regulations
  • 4. Control Objectives •In each area of internal control (financial reporting, operations and compliance) –Control objectives and –Sub objectives exist •Example: Area of financial reporting –Top level objective – prepare and issue reliable financial information –Detailed level applied to A/R sub objectives •All goods shipped are accurately billed in the proper period •Invoices are accurately recorded for all authorized shipments and only for such shipments •Authorized and only authorized sales returns and allowances are accurately recorded •The continued completeness and accuracy of A/R is ensured •Accounts receivable records are safeguarded
  • 5. Foreign Corrupt Practices Act •Passed in 1977 in response to American corporation practice of paying bribes and kickbacks to officials in foreign countries to obtain business •The Act –Requires an effective system of internal control –Makes illegal payment of bribes to foreign officials
  • 6. Controls over Financial Reporting •Preventive –Aimed at avoiding the occurrence of misstatements in the financial statements –Example: Segregation of duties •Detective –Designed to discover misstatements after they have occurred –Example: Monthly bank reconciliations •Corrective –Needed to remedy the situation uncovered by detective controls –Example: Backups of master file •Controls overlap –Complementary – function together –Redundant – address same assertion or control objective –Compensating – reduces risk existing weakness will result in misstatement
  • 7. Components of Internal Control •The Control Environment •Risk Assessment •The Accounting Information and Communication System •Control Activities •Monitoring
  • 8. Control Environment Factors •Integrity and ethical values •Commitment to competence •Board of directors or audit committee •Management philosophy and operating style •Organizational structure •Human resource policies and practices •Assignment of authority and responsibility
  • 9. Risk Assessment--Factors Indicative of Increased Financial Reporting Risk •Changes in the regulatory or operating environment •Changes in personnel •Implementation of a new or modified information system •Rapid growth of the organization •Changes in technology affecting production processes or information systems •Introduction of new lines of business, products, or processes
  • 10. Control Activities •Performance reviews •Information processing –General control activities –Application control activities •Physical controls •Segregation of duties –Segregate authorization, recording and custody of assets
  • 12. Objectives of an Accounting System •Identify and record valid transactions •Describe on a timely basis the transactions in sufficient detail to permit proper classification of transactions •Measure the value of transactions appropriately •Determine the time period in which the transactions occurred to permit recording in the proper period •Present properly the transactions and related disclosures in the financial statements
  • 13. Monitoring •Ongoing monitoring activities –Regularly performed supervisory and management activities –Example: Continuous monitoring of customer complaints •Separate evaluations –Performed on nonroutine basis –Example: Periodic audits by internal audit
  • 14. Limitations of Internal Control •Errors may arise from misunderstandings of instructions, mistakes of judgment, fatigue, etc. •Controls that depend on the segregation of duties may be circumvented by collusion •Management may override the structure •Compliance may deteriorate over time
  • 15. Enterprise Risk Management (ERM) •COSO issued a new internal control framework in 2004 on enterprise risk management. It does not replace the original COSO internal control framework. •It goes beyond internal control to focus on how organizations can effectively manage risks and opportunities. •The auditing standards are still structured around the original COSO internal control framework.
  • 16. Auditors’ Overall Approach with Internal Control •Overall approach of an audit 1. Plan the audit 2. Obtain an understanding of the client and its environment, including internal control 3. Assess the risks of material misstatement and design further audit procedures 4. Perform further audit procedures 5. Complete the audit 6. Form an opinion and issue the audit report •Steps 2-4 relate most directly to the role of internal control in financial statement audits
  • 17. 2. Obtain an understanding of the client and its environment, including internal control •The understanding of internal control is used to help the auditor to –Identify types of potential misstatements –Consider factors that affect the risks of material misstatement. –Design tests of controls (when applicable) and substantive procedures. •Auditors must consider all five internal control components –Control environment –Accounting information system –Risk assessment –Control activities –Monitoring •Also consider areas difficult to control like nonroutine transactions
  • 18. Obtaining the Understanding •Procedures include –Inquiring of entity personnel –Observing the application of specific controls –Inspecting documents and reports –Tracing transactions through the information system relevant to financial reporting •May also obtain evidence on operating effectiveness of various controls
  • 19. Documenting the Understanding of Internal Control •Questionnaires –Typically standardized by firm •Written Narratives –Memos that describe flow of transactions •Flowcharts –Systems flowcharts •Walk-through –Trace one or two transaction through cycle
  • 20.
  • 21. 3. Assess the risks of material misstatement General approach –Identify risks while obtaining an understanding of the client and its environment, including its internal control –Relate the identified risks to what can go wrong at the relevant assertion level –Consider whether the risks are of a magnitude that could result in a material misstatement –Consider the likelihood that the risks could result in a material misstatement
  • 22. The nature of transactions •Consider the nature of the transactions –Routine transactions—e.g., revenue, purchases, and cash receipts and disbursements –Nonroutine transactions—e.g., taking of inventory, calculating depreciation expense –Estimation transactions—e.g., determining the allowance for doubtful accounts •Generally routine transactions have the strongest controls
  • 23. Assessing Risks at the Financial Statement Level •Examples –Preparing the period-end financial statements, including the development of significant accounting estimate and preparation of the notes –The selection and application of significant accounting policies –IT general controls –The control environment •Responses to high risks –Assigning more experience staff or those with specialized skills –Providing more supervision and emphasizing the need to maintain professional skepticism –Incorporating additional elements of unpredictability in the selection of further audit procedures to be performed –Increasing the overall scope of audit procedures, including the nature, timing or extent
  • 24. Assessing Risks at the Assertion Level •Examples –Failure to recognize an impairment loss on a long- lived asset affects only the valuation assertion –Inaccurate counting of inventory at year-end affect the valuation of inventory and the accuracy of cost of goods sold •Responses –Decisions are made here as to the appropriate combination of tests of controls and substantive procedures
  • 25. 4. Perform Further Audit Procedures – Test of Controls (1/2) •Approach: –Identify controls likely to prevent or detect material misstatements –Perform tests of controls to determine whether they are operating effectively •Tests of controls address: –How controls were applied –The consistency with which controls were applied –By whom or by what means (e.g., electronically) the controls were applied
  • 26. 4. Perform Further Audit Procedures – Test of Controls (1/2) •Tests of controls include: –Inquiries of appropriate client personnel –Inspection of documents and reports –Observation of the application of controls –Reperformance of the controls •The results of the tests of controls are used to determine the nature, timing and extent of substantive procedures
  • 27. Diagram of the Auditors’ Consideration of Internal Control
  • 28. Other Considerations •Audit decision aids –Checklist, standard form or computer program that helps auditors make a decision by ensuring that they have all relevant information or by assisting them in combining the information. •Use of the work of internal auditors –Must assess internal audit competence and objectivity and test work –Can rely on work of internal audit to reduce amount of testing done by independent auditors
  • 29. Relationships Among Deficiencies Deficiency in Internal Control Less than Significant Material Significant Deficiency Weakness
  • 30. Management’s Report on Internal Control under Section 404a •Acknowledgment of responsibility for internal control •An assessment of internal control effectiveness as of the last day of the company’s fiscal yearn using suitable criteria •Support the evaluation with sufficient evidence
  • 31. Approach to Audit of Internal Control under Section 404b •This section applies to public companies with a market capitalization of $75 million or more. For those companies, the auditors audit internal control as a part of an integrated audit as follows: –Plan the engagement –Use a top-down approach to identify the controls to test –Test and evaluate design effectiveness of internal control –Test and evaluate operating effectiveness of internal control –Form an opinion on effectiveness of internal control over financial reporting
  • 32. Internal Control in the Small Company •Due to lack of employees, internal control is seldom strong in small businesses •Specific practices for small businesses –Record all cash receipts immediately –Deposit all cash receipts intact daily –Make all payments by serially numbered checks, with exception of petty cash disbursements –Reconcile bank accounts monthly and retain copies –Use serially numbered invoices, Pos, and receiving reports –Issue checks to vendors only in payment of approved invoices that have been matched with purchase orders and receiving reports –Balance subsidiary ledger with control accounts –Prepare comparative financial statements monthly to disclose significant variations in any category of revenue or expense