Guidance for audit standards for nonissuers that took effect on or after December 15, 2006.

EXECUTIVE SUMMARY

* The Auditing Standards Board In the United States, the Auditing Standards Board (ASB) is the senior technical committee designated by the American Institute of Certified Public Accountants (AICPA) to issue auditing, attestation, and quality control statements, standards and guidance to certified public issued eight standards with new guidance for auditors assessing risks and controls in financial statement audits. Auditors must consider risk and also determine a materiality MATERIALITY. That which is important; that which is not merely of form but of substance.
2. When a bill for discovery has been filed, for example, the defendant must answer every material fact which is charged in the bill, and the test in these cases seems to level for the financial statements taken as a whole.

* Auditors are required to obtain a sufficient understanding of the entity and its environment, including its internal control, to assess the risk of material misstatement mis·state
tr.v. mis·stat·ed, mis·stat·ing, mis·states
To state wrongly or falsely.

mis·statement n. .

* Auditors must develop audit plans in which they document the audit procedures that are expected to reduce the audit risks to acceptably low levels.

* To rely on the effectiveness of company internal controls, the auditor should test the controls, but only after assessing that the design is effective.

* The auditor may rely on control tests and other evidence from prior audits when the audit evidence and related subject matter have not changed.

* At the end of an audit, the auditor must evaluate whether the financial statements taken as a whole are free of material misstatements. The auditor must accumulate Accumulate

Broker/analyst recommendation that could mean slightly different things depending on the broker/analyst. In general, it means to increase the number of shares of a particular security over the near term, but not to liquidate other parts of the portfolio to buy a security all the known and likely misstatements, other than trivial TRIVIAL. Of small importance. It is a rule in equity that a demurrer will lie to a bill on the ground of the triviality of the matter in dispute, as being below the dignity of the court. 4 Bouv. Inst. n. 4237. See Hopk. R. 112; 4 John. Ch. 183; 4 Paige, 364. ones, and communicate them to the appropriate level of management.

* In assessing deficiencies of internal controls to identify the severity, the auditor should focus on issues such as inadequate documentation and unqualified employees who lack the skills to make the required GAAP GAAP

See: Generally Accepted Accounting Principles

GAAP

See generally accepted accounting principles (GAAP). accounting computations, accruals Accruals

Accounts on a balance sheet that represent liabilities and non-cash-based assets used in accrual-based accounting. These accounts include, among many others, accounts payable, accounts receivable, goodwill, future tax liability and future interest expense. or estimates, or to prepare the company financial statements.

**********

This is the second of two articles describing the requirements of new guidance from the Auditing Standards Board (ASB ASB Asbestos
ASB Arbeiter Samariter Bund (German medical help organisation)
ASB Anti-Social Behaviour
ASB Accounting Standards Board (UK FRC)
ASB Aarhus School of Business ). The first article discussed the process of assessing risks and controls leading to the concept of the risk of material misstatement (see "Assessing and Responding to Risks in a Financial Statement Audit," JofA, Jul. 06, page 43). This article discusses how the auditor responds to the risk of material misstatement in designing and performing audit procedures.

The eight standards listed here are designed to help auditors plan and perform audit procedures that will address assessed risks, enhance the auditor's response to audit risk and materiality, facilitate planning and supervision and clarify the concept of audit evidence.

As noted in the new standards, "auditors must consider audit risk and must determine a materiality level for the financial statements taken as a whole." Auditors also "must obtain a sufficient understanding of the entity and its environment, including its internal control, to assess the risk of material misstatement."

DESIGNING FURTHER AUDIT PROCEDURES

Once the risk of material misstatement has been assessed for major accounts, transaction streams and disclosures, the auditor must develop an audit plan in which he or she documents the audit procedures that, when performed, are expected to reduce audit risk to an acceptably low level. As the auditor is assessing risk and the design and implementation of internal controls, he or she should determine any overall responses to address risks of material misstatement at the financial statement level, and tailor audit plans (that is, audit programs) to be responsive to the identified risks of material misstatement at the relevant assertion level. The application of a "standard" audit program of procedures on all engagements will generally not be responsive to the risks of material misstatement, and is not an appropriate response under the new standards.

Because the auditor should document the linkage linkage

In mechanical engineering, a system of solid, usually metallic, links (bars) connected to two or more other links by pin joints (hinges), sliding joints, or ball-and-socket joints to form a closed chain or a series of closed chains. of the risks, controls and further audit procedures by assertion, the audit plan also should consider the risk of material misstatement at the assertion level. The auditor should design auditing procedures to achieve the objective of a high level of assurance that the financial statements are free of material misstatement. Those further auditing procedures consist of either tests of controls or substantive procedures.

For example, say the auditor identifies a moderate risk of inventory obsolescence ob·so·les·cent
adj.
1. Being in the process of passing out of use or usefulness; becoming obsolete.

2. Biology Gradually disappearing; imperfectly or only slightly developed. (valuation) and the company monitors this risk through two procedures: one control that performs monthly analyses of inventory turnover by inventory line item looking for Looking for

In the context of general equities, this describing a buy interest in which a dealer is asked to offer stock, often involving a capital commitment. Antithesis of in touch with. risks of obsolescence and another that monitors market price fluctuations. In addition, the company takes periodic inventories to ensure the accuracy of its perpetual inventory Perpetual Inventory

An accounting method of maintaining up-to-date property records that accurately reflect the level of goods on hand.

Notes:
The current balance of inventory is sustained daily by the addition of inventory to the account when goods are received and the records. In this circumstance Circumstance or circumstances can refer to:

Legal terms:
Aggravating circumstances
Attendant circumstance

the auditor may assess the risk of material misstatement as low. If the client controls are tested and found effective, the auditor may need to design only a low level of independent lower-of-cost or market tests on the slower-moving and specific inventory items that have a high volatility in cost, and design some independent analytical procedures Analytical Procedures is one of financial audit skill which help an auditor understand the client's business and changes in the business, to identify potential risk areas and to plan other audit procedures. to address the obsolescence (valuation) risk. That may be enough to satisfy the auditor that risk of financial statement misstatement is low for this assertion as it relates to inventory

TESTING INTERNAL CONTROLS

To rely on the effectiveness of company internal controls, the auditor should test the controls--but only after assessing that the design is effective; otherwise there is no sense in testing it. If the auditor's strategy is to rely on the control, its operating effectiveness is assessed through appropriate levels of testing. Tests of implementation may provide some minimal evidence of operating effectiveness. The auditor's reliance on the control is a continuum Continuum (pl. -tinua or -tinuums) can refer to:

Continuum (theory), anything that goes through a gradual transition from one condition, to a different condition, without any abrupt changes or "discontinuities"

from "no" reliance (for example, the design may be ineffective or there may be no control) to "high" reliance on the control.

The basic principles of the testing controls in the current section AU 319 are not changed:

* Automated au·to·mate
v. au·to·mat·ed, au·to·mat·ing, au·to·mates

v.tr.
1. To convert to automatic operation: automate a factory.

2. controls can be tested once or a few times to conclude they operated effectively throughout the period when information technology (IT) general controls were assessed as effective.

* Manual controls tests should cover the period of the examination. The extent of testing should respond to the desired level of reliance on the control.

Additional guidance on establishing sample sizes is contained in the revised AICPA AICPA

See American Institute of Certified Public Accountants (AICPA). Audit Guide, Audit Sampling, (CPA (Computer Press Association, Landing, NJ) An earlier membership organization founded in 1983 that promoted excellence in computer journalism. Its annual awards honored outstanding examples in print, broadcast and electronic media. The CPA disbanded in 2000. 2 Bir.com product no. 012536JA) released in January.

Auditors should test controls when sufficient evidence may not be obtainable from traditional substantive procedures, such as when the business makes extensive use of IT in its sales or purchases interfaces such as Internet or EDI (Electronic Data Interchange) The electronic communication of business transactions, such as orders, confirmations and invoices, between organizations. Third parties provide EDI services that enable organizations with different equipment to connect. (electronic data in terchange) transactions, and the systems do not create paper trails and historical documents supporting the transactions.

EVIDENCE FROM PRIOR AUDITS

The new standards clarify when control tests and other evidence from a prior audit may be used in the current engagement. For the auditor to place reliance on that evidence, the audit evidence and the related subject matter must not fundamentally change. The auditor confirms that changes have not occurred by annual inquiry and performing another procedure that confirms the control remains implemented and is effective, such as a walkthrough, observation or examination of some evidence. In any case, the controls should be retested at least every third year, even when there have been no perceived changes in them.

An exception to this guidance on evidence from prior audits is in the case of significant risks. One or more significant risks generally are found on most audit engagements. For these risks

* Substantive procedures, or substantive and controls procedures, specifically directed at the risk should be applied.

* Analytics alone are insufficient to provide the needed assurance.

* Controls assurance from prior engagements cannot be considered in the current engagement; the controls need to be tested every year to rely on them.

PERFORMING AUDITING PROCEDURES

In performing audit procedures, auditors should apply certain substantive audit procedures on each engagement. They should

* Apply substantive procedures for all relevant assertions related to each material class of transactions, account balance and disclosure, regardless of the assessed risk of material misstatement.

* Examine material journal entries and other adjustments.

* Agree the financial statements to the underlying accounting records (this is also noted in SAS (1) (SAS Institute Inc., Cary, NC, www.sas.com) A software company that specializes in data warehousing and decision support software based on the SAS System. Founded in 1976, SAS is one of the world's largest privately held software companies. See SAS System. no. 103, Audit Documentation, which is effective for audits of financial statements for periods ending on or after December 15, 2006).

While some auditors already use audit methodologies that integrate assertions into identifying risks, assessing controls and performing procedures, some do not. The appendix to SAS no. 110 (see "Official Releases," JofA, May 06, page 152) provides a helpful list of account balances, related assertions and common auditing procedures that address these assertions for a manufacturing company.

SAS no. 110 also provides significantly more guidance than past standards in designing the nature, timing and extent of audit procedures. In determining sample sizes, SAS no. 111 amends AMENDS. A satisfaction, given by a wrong doer to the party injured for a wrong committed. 1 Lilly's Reg. 81.
     2. By statute 24 Geo. II. c. 44, in England, and by similar statutes in some of the United States, justices of the peace, upon being notified of an SAS no. 39, Audit Sampling, by adding a concept from a previous AICPA Audit Guide:

"An auditor who applies statistical sampling uses tables or formulas to compute To perform mathematical operations or general computer processing. For an explanation of "The 3 C's," or how the computer processes data, see computer. sample size based on these judgments. An auditor who applies nonstatistical sampling uses professional judgment to relate these factors in determining the appropriate sample size. Ordinarily or·di·nar·i·ly
adv.
1. As a general rule; usually: ordinarily home by six.

2. In the commonplace or usual manner: ordinarily dressed pedestrians on the street. , this would result in a sample size comparable to the sample size resulting from an efficient and effectively designed statistical sample considering the same sampling parameters."

While this guidance shows a relationship between nonstatistical and statistical sample sizes, the auditor is not required to compute or document a comparable statistical sample size. However, familiarity with sampling concepts of the level of assurance obtainable from certain size samples can help auditors make more informed judgments regarding appropriate sample sizes. The AICPA Audit Guide, Audit Sampling, provides illustrations of designing appropriate sample sizes using tables and simple formulas. Some commercial computer-assisted audit technique programs such as IDEA and ACL See access control list.

1. ACL - Access Control List.
2. ACL - Association for Computational Linguistics.
3. ACL - A Coroutine Language.

A Pascal-based implementation of coroutines.

["Coroutines", C.D. also include easy-to-use statistical sample-size-determination programs.

SUMMARIZING THE RESULTS OF AUDITING PROCEDURES

The auditor must accumulate all known and likely misstatements other than those he or she believes to be trivial. Consistent with prior standards, differences between auditor and company estimates are treated as likely misstatements only if the company estimate is considered unreasonable. In such a case the amount of likely misstatement is measured by the difference between the company estimate and the closest auditor estimate that is considered to be reasonable.

Auditors should propose known misstatements to management for adjustment. If they are not adjusted, the auditor should be alert to the risk there may be an underlying reason behind the lack of management response, such as might occur if the correction would trigger the violation of a loan covenant A loan covenant is a condition in a commercial loan or bond issue that requires the borrower to fulfill certain conditions or forbids the borrower from undertaking certain actions, or possibly restricts certain activities to circumstances when other conditions are met. or change the direction of an important trend measure.

Known and likely misstatements that remain unadjusted, including the effects of prior-period misstatements, should be compared individually and in the aggregate with various totals or subtotals (or key relationships) in the financial statement to ensure they do not misstate mis·state
tr.v. mis·stat·ed, mis·stat·ing, mis·states
To state wrongly or falsely.

mis·statement n. the financial statements as a whole. Be aware that offsetting material misstatements could show failed internal controls as well as show that careful estimation estimation

In mathematics, use of a function or formula to derive a solution or make a prediction. Unlike approximation, it has precise connotations. In statistics, for example, it connotes the careful selection and testing of a function called an estimator. of these amounts (beyond the tests performed thus far) is necessary to be able to conclude on the amounts to be adjusted in the financial statements.

If the financial statement and other information available to the auditor as the audit progresses and at the end of the engagement differ from what was anticipated when materiality was first assessed, a change in materiality may be appropriate. The auditor should be careful if the materiality measure at yearend declines, as this may have implications for concluding on the adequacy of the procedures performed to achieve a high assurance that the financial statements are free of material misstatement. The auditor should document the materiality levels and the basis for any changes as the audit progresses.

When assessing the implications of known and likely misstatements, auditors also should consider qualitative factors. For example, a fraud of less-than-a-material amount still may have significant implications for assessing the adequacy of the procedures performed and the risk assessment that directed the nature, timing and extent of audit procedures. An illegal payment might also give rise to concerns about a contingent liability Contingent Liability

1. The possibility of an obligation to pay certain sums dependent on future events.

2. Defined obligations by a company that must be met, but the probability of payment is minimal.

Notes:
1. , and permitting a misstatement to remain unadjusted may alter user perceptions about a trend or important measure.

CONSIDERING THE EFFECTS OF PRIOR-PERIOD WAIVED ADJUSTMENTS

SAS no. 107 says the auditor should consider the effects of misstatements related to prior periods that were not previously corrected. Such amounts could affect the income in a period in which they were reflected in income or could accumulate on the balance sheet and aggregate to significant amounts. Three basic methods are used regarding these items. In the first method, the income effect of all current and prior-period misstatements flowing through current income is considered. In the second, auditors focus on the aggregate of the misstatements remaining in the ending balance sheet. In the third method, auditors apply both perspectives and require an adjustment if either method shows one is necessary.

The ASB did not intend to change audit practice in this area in SAS no. 107. Any of the methods for considering prior-period uncorrected misstatements are considered appropriate under the current wording of SAS no. 107. However, in September 2006 the SEC released Staff Accounting Bulletin (SAB SAB Spontaneous abortion. See Abortion. ) no. 108, showing that for public companies both the income statement and balance sheet methods should be applied, and an adjustment made, if either method shows that an adjustment is needed to avoid a misstatement of the income statement or the cumulative balance sheet. The SAB also provided accounting guidance necessary for companies to transition to the new approach. The SEC position is similar to the one proposed in the ED version of SAS no. 107, and auditors should be alert to possible changes in SAS no. 107 in this area.

BRINGING IT ALL TOGETHER

At the end of the audit, the auditor must evaluate whether the financial statements taken as a whole are free of material misstatement. Auditors seek a high (but not absolute) level of assurance concerning this before they issue a clean opinion.

If unadjusted misstatements remain, the auditor compares them with materiality. Even if the unadjusted misstatements do not exceed materiality, there is a risk that misstatements might exist in the company financial statements undetected by the audit procedures.

The auditor considers the relationship of individual and aggregate unadjusted misstatements and materiality, and considers whether the audit procedures applied still provide a high level of assurance that the financial statements are not materially misstated. For example, suppose that materiality is determined to be $40,000 and $1,000 of unadjusted misstatement remains at the end of the audit. The auditor knows the tolerable tol·er·a·ble
adj.
1. Capable of being tolerated; endurable.

2. Fairly good; passable. See Synonyms at average.

tol misstatement was set below materiality in each of the audit areas for determining the nature and extent of audit procedures to be performed, and may well conclude that a cushion Cushion

In the context of project financing, the extra amount of net cash flow remaining after expected debt service.

cushion

See call protection. of $39,000 is sufficient to provide a high level of assurance that material misstatement does not exist in the financial statements. In contrast, if $39,000 of unadjusted misstatement were to remain, the auditor might not be able to conclude with a high level of assurance that the audit procedures were sufficient to ensure that only $1,000 of misstatement might remain undetected. When the auditor is unable to conclude with a high level of assurance, he or she should plan additional procedures to gain additional evidence regarding the true extent of the misstatements and/or propose a further adjustment of the misstated amounts.

COMMUNICATING WITH THOSE CHARGED WITH GOVERNANCE Governance makes decisions that define expectations, grant power, or verify performance. It consists either of a separate process or of a specific part of management or leadership processes. Sometimes people set up a government to administer these processes and systems.

The auditor must accumulate all the known and likely misstatements, other than those the auditor believes to be trivial, and communicate them to the appropriate level of management.

When significant or material misstatements are identified during the audit, such misstatements may imply a deficiency in controls. In determining the seventy of the deficiency, the auditors should consider not just the misstatement amounts found, but also the potential misstatement that could result from the deficiency Even a small misstatement could lead to an assessment that a material misstatement exists if it's because of a missing or ineffective control.

SAS no. 112, Communicating Internal Control Related Matters Identified in an Audit, is effective for audits ending after December 15, 2006. While SAS no. 112 is not one of the standards included in the group of "audit risk standards," it is closely associated with them.

Under SAS no. 112, the auditor must evaluate control deficiencies which he or she has detected while performing the audit of the financial statements, and determine whether they, individually or in combination, are significant deficiencies (SD) or material weaknesses (MW). If SDs or MWs are identified, they must be communicated in writing to management and those charged with governance. Unless remediated, these deficiencies are repeated in written communications every year. SAS no. 112 does not require auditors to discover internal control deficiencies. Whether they are remediated or not, these deficiencies should be reported in the year they are identified.

The appendix to SAS no. 112 provides additional examples of conditions and circumstances CIRCUMSTANCES, evidence. The particulars which accompany a fact.
2. The facts proved are either possible or impossible, ordinary and probable, or extraordinary and improbable, recent or ancient; they may have happened near us, or afar off; they are public or showing deficiencies of internal controls (see "Official Releases," JofA, Jul. 06, page 102). Auditors need to become familiar with this standard and prepare to implement it for calendar year 2006 audits.

Some sensitive issues that require the auditor to assess the severity of any deficiency include

* Inadequate documentation of the components of internal control.

* Employees who lack the qualifications to fulfill ful·fill also ful·fil
tr.v. ful·filled, ful·fill·ing, ful·fills also ful·fils
1. To bring into actuality; effect: fulfilled their promises.

2. their assigned as·sign
tr.v. as·signed, as·sign·ing, as·signs
1. To set apart for a particular purpose; designate: assigned a day for the inspection.

2. functions, which includes

* Making the required GAAP accounting computations, accruals or estimates.

* Preparing the company financial statements.

While auditors may be engaged to prepare the tax accrual accrual,
n continually recurring short-term liabilities. Examples are accrued wages, taxes, and interest. or draft the financial statements under current AICPA independence guidelines guidelines,
n.pl a set of standards, criteria, or specifications to be used or followed in the performance of certain tasks. , they still assess the severity of any deficiency in the company's ability to perform these functions. For example, if the auditor evaluated that company personnel could not prepare the financial statements and the accompanying notes, a material weakness might be assessed.

IMPLEMENTATION ISSUES In the Business world, companies frequently set-up a connection between which they transfer data. When the connection is being set-up, it is referred to as implementation. When issues occur during this phase, they are known as implementation issues. AND CONCLUSION

Few of the concepts articulated ar·tic·u·la·ted
adj.
Characterized by or having articulations; jointed. in the audit risk standards are new to audit practice. How these standards will affect a firm's audit approach and engagement costs will depend on the current approach and how efficiently the standards are implemented. Clearly, there are more "musts" and "shoulds" in the standards, but these requirements will help standardize stan·dard·ize
v.
1. To cause to conform to a standard.

2. To evaluate by comparing with a standard. audit practice and create greater consistency in audit performance. Users have expectations of what an audit delivers, and the auditor's performance to better meet such expectations will continue to enhance the profession's image.

Costs of implementation will vary, depending on the audit firm's or practitioner's current practices. The tasks associated with a more robust assessment of risk and controls design will account for significant elements of cost for some in the first year of implementation. Considering these requirements early in the process can help ease the implementation "crunch (1) To process data. See number crunching.

(2) To compress data. See data compression.

1. (jargon) crunch - To process, usually in a time-consuming or complicated way. ." Some audit firms already have begun their planning and education in order to make the transition to the new requirements as smooth and efficient as possible. For example, some auditors took a more structured approach to gathering known key client risk characteristics in 2006, and will expand the number of factors assessed this year. Some auditors looked more closely at the controls surrounding sur·round
tr.v. sur·round·ed, sur·round·ing, sur·rounds
1. To extend on all sides of simultaneously; encircle.

2. To enclose or confine on all sides so as to bar escape or outside communication.

n. key accounts such as sales or payments, and thus suggested controls changes where they had identified gaps. A quality implementation of the new requirements will pay back benefits in future years if the appropriate base has been established.

Current engagements may fall under the new requirements of SAS no. 103 and SAS no. 112. Auditors will need to gain an understanding of these requirements and implement them as required. The AICPA has a variety of products and educational programs to help you understand the new requirements and to help you with the implementation issues.

Practical Tips

* Because new auditing standards are effective in both 2006 and 2007, it is advisable ad·vis·a·ble
adj.
Worthy of being recommended or suggested; prudent.

ad·visa·bil that companies and auditors discuss in advance the nature of the changes and ways to cost effectively implement the requirements.

* Because a more robust assessment of controls design and implementation may be performed under the new standards, and because the additional guidance permits prior audit tests of controls to be considered in the current engagement, it may be more efficient than before to use a controls-based audit strategy for some clients.

* Most engagements have at least one significant risk. If a large number of your engagements do not appear to have significant risks associated with them, then revisit re·vis·it
tr.v. re·vis·it·ed, re·vis·it·ing, re·vis·its
To visit again.

n.
A second or repeated visit.

re the concept in SAS no. 109 and the guidance in the AICPA Audit Guide. Assessing and Responding to Audit Risk in a Financial Statement Audit. If your engagements appear to have many significant risks, reconsider re·con·sid·er
v. re·con·sid·ered, re·con·sid·er·ing, re·con·sid·ers

v.tr.
1. To consider again, especially with intent to alter or modify a previous decision.

2. the criteria you used in making these determinations. If many of your engagements still have numerous significant risks, you may want to reconsider your client acceptance and retention procedures.

* If SAS no. 107 is modified to reflect the guidance in Staff Accounting Bulletin no. 108, auditors following an income-focused ("rollover A graphic element in an application or on a Web page that changes its color or shape when the pointer is moved (rolled) over it. See JavaScript rollover. See also n-key rollover. ") method of evaluating unadjusted misstatements may find that some client balance sheet items may need a one-time adjustment to transition to the new guidance. Auditors might wish to assess this issue for individual clients and request adjustments in the current year. if that would avoid the further accumulation of misstatements in the aggregate balance sheet.

* When proposing adjustments based on projections from samples or estimates, let the nature and extent of evidence leading to the proposed adjustment guide the auditor as to whether there is sufficient information to be comfortable adjusting some or all of the difference.

* When communicating significant deficiencies and material weakness to management and those charged with governance, practitioners may find it helpful to refer to prior written communications rather than repeat the details of any uncorrected deficiencies every year.

The Audit Risk Standards

* SAS no. 104, Amendment to Statement on Auditing Standards No. 1, Codification The collection and systematic arrangement, usually by subject, of the laws of a state or country, or the statutory provisions, rules, and regulations that govern a specific area or subject of law or practice. of Auditing Standards and Procedures ("Due Professional Care in the Performance of Work")

* SAS no. 105, Amendment to Statement on Auditing Standards No. 95. Generally Accepted Auditing Standards Generally Accepted Auditing Standards, or GAAS, are ten auditing standards, developed by the AICPA, consisting of general standards, standards of field work, and standards of reporting, along with interpretations.

* SAS no. 106. Audit Evidence

* SAS no. 107, Audit Risk and Materiality in Conducting an Audit

* SAS no. 108. Planning and Supervision

* SAS no. 109, Understanding the Entity and Its Environment and Assessing the Risks of Material Misstatement

* SAS no. 110, Performing Audit Procedures in Response to Assessed Risks and Evaluating the Audit Evidence Obtained

* SAS no. 111, Amendment to Statement on Auditing Standards No. 39, Audit Sampling

AICPA RESOURCES

CPE (Customer Premises Equipment) Communications equipment that resides on the customer's premises.

CPE - Customer Premises Equipment

Auditor's Risk Assessment Process: Tackling the New Risk Assessment SASs (text, # 732990JA; DVD/manual, #182990JA).

Publications

* AICPA Audit Guide, Assessing and Responding to Audit Risk in a Financial Statement Audit (# 012456JA).

* AICPA Audit Guide, Audit Sampling (# 012536JA).

* Audit Risk Alert, Understanding the New Auditing Standards Related to Risk Assessment (paperback, # 022526JA).

* Codification of Statements on Auditing Standards Statements on Auditing Standards, commonly abbreviated as SAS, provide guidance to external auditors on generally accepted auditing standards (abbreviated as GAAS) in regards to auditing an entity and issuing a report. (paperback, # 057200JA).

* COSO COSO Committee of Sponsoring Organizations of the Treadway Commission
COSO Church of Spiral Oak
COSO Corporate South
COSO Class of Service Override
COSO Combat Oriented Supply Operations (USAF) : Internal Control-Integrated Framework (1992) (print, # 990012JA; PDF download PDF Download is an extension for the Mozilla Firefox web browsers which allows to choose if you want to view a PDF file inside the browser (as PDF or HTML), if you want to view it outside Firefox with your default or custom PDF reader, or if you want to download it. , # 990012PDFJA).

* COSO: Internal Control over Financial Reporting: Guidance for Smaller Public Companies (2006) (print, # 990017JA; PDF download, # 990017PDFJA).

* Risk Assessment Standards & Guidance Set (paperback, # 990103HIJA).

* Risk Assessment Suite of Standards (paperback, # 060704JA).

For more information go to www.cpa2biz biz
n. Informal
Business.

biz
Noun

Informal business

Noun 1. . corn or call the Institute at 888-777-7077.

Web sites

* AICPA Roundtable Webcast, September 13, 2006: The New CQSO Report: Guidance for Smaller Companies, www.aicpa.org/news/2006/Free_COSO_Webcast.htm.

* AICPA Roundtable Webcast, December 5, 2006: Implementing the Risk Assessment Standards: An Advanced Analysis for Smaller Clients (CD-ROM CD-ROM: see compact disc.

CD-ROM
in full compact disc read-only memory

Type of computer storage medium that is read optically (e.g., by a laser). , # 780091HSJA HSJA HoofBeats Show Jumping Association ). To order go to www.cpa2biz.com.

* Summary of the eight audit risk assessment standards, SAS nos. 104-111, www.aicpa.org/risk.

An Illustration of Prior-Year Uncorrected Misstatements

As a simple example, a school district may not accrue To increase; to augment; to come to by way of increase; to be added as an increase, profit, or damage. Acquired; falling due; made or executed; matured; occurred; received; vested; was created; was incurred. $20,000 of unused sick pay each year. That sick pay will accumulate until it is paid or used at or near the employee's retirement date, as determined by an employment contract. Assume materiality to be $40,000. The misstatement of annual income is $20,000, which may not require an adjustment when viewed solely from an income perspective. However, the balance sheet is missing an annual accrual for $20,000 each year. By year two and beyond, some companies and auditors, focusing on the year-end balance sheet, would cap the balance sheet misstatement at or below $40,000 and require the accrual be recognized each year thereafter. Those focusing only on the income statement might not require any adjustment in year two or beyond, since the income statement is not materially misstated in any one year. Because some types of uncorrected misstatements will predictably "reverse" in future periods (that is, misstatements of ending inventory) and some may continue to accrue on the balance sheet for many periods (that is, as in this example), a careful analysis of the nature of the uncorrected misstatement is necessary.

Year      Income       Balance (liability)
       misstatement        underaccrual

1         $20,000           $20,000
2          20,000            40,000
3          20,000            60,000

John A. Fogarty, CPA, is a partner of Deloitte and Touche, LLP LLP - Lower Layer Protocol , a past chairman of the Auditing Standards Board (ASB.) and a member of the International Auditing and Assurance Standards Board. His e-mail address See Internet address.

e-mail address - electronic mail address is jfogarty@deloitte. com. Lynford Graham, CPA, PhD, CFE CFE Conventional Forces in Europe (treaty)
CFE Cash Flow to Equity (finance/accounting)
CFE Comisión Federal de Electricidad (México)
CFE Certified Fraud Examiner , is a consultant, recent former member of the ASB and Risk Assessment Standards Task Force and chair of the Risk Assessment and Risk Response Audit Guide Task Force. His e-mail address is Igrahamcpa@verizon.net. Darrel R. Schubert, CPA, current member of the ASB, is a partner in Ernst & Young LLP's national professional practice and risk management group and was chair of the Risk Assessment Standards Task Force. His e-mail address is darrel. schubert@ey.com.

COPYRIGHT 2007 American Institute of CPA's
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:	Assessing and Responding to Risks a Financial Statement Audit, part
Author:	Schubert, Darrel R.
Publication:	Journal of Accountancy
Date:	Jan 1, 2007
Words:	4132
Previous Article:	Navigate speedily in excel data: click on a button to get to target information.
Next Article:	Improving CEO-speak: the CPA as communications adviser.
Topics:	Auditing Standards Financial statements Standards Risk assessment Management

Related Articles
Reviews of financial statements - SAS 71 vs. SSARSs.
What the 1994 yellow book means for auditors.
Auditing standards board addresses fraud.
The auditor and fraud.
The CPA as fraud-buster.
So long, traditional audit: no more "same as last year" with risk-based approach.
Taking a bite outta fraud. (Fraud Standards).
Stay out of trouble: observe fundamentals; know the standards; select clients carefully; communicate often.
Assessing and responding to risks in a financial statement audit: auditors must leave a clear record in private company audits.
Assessing risk: AICPA's new risk assessment standards present a sea change for auditors.