The audit will assess each function of the business and how it would affect the company overall if the function were unavailable, interrupted, or changed. The types of events that may significantly impact the business function, the advantages and disadvantages of failure for each function, and alternatives for each risk if it fails. The following aspects of the business will be considered: Safety, Revenue, Costs, Legal, Related Exposure, and Security Breaches.
The objectives of an auditor is to plan an audit so that it is conducted effectively. The objective of an audit is to provide assurance on the financial statements of the company. The engagement is responsible for the planning and performance of the audit. He selects the team accordingly so that the audit is completed effectively and efficiently. The audit strategy sets out the procedures, sets the scope, timing and direction of the audit. ISA 300 requires the auditor to consider specific matters when establishing the audit strategy, and provides a list of typical matters to be considered. The auditor is responsible to correctly set the strategy so that the audit objectives is achieved. The audit strategy contains the general audit plan, risk
The objective is to ensure that auditors obtain sufficient knowledge of the business of the entity to enable them to identify and understand the events, transactions or practice that may have a significant effect on the financial statements or the audit. This knowledge of the business helps to assess the levels of control and inherent risk and to determine audit procedures.
The purpose and responsibility of an audit is to provide reasonable assurance that the financial statements are free from material misstatements whether due to fraud or error. The audit will follow the authoritative guidance provided by the PCAOB and AICPA auditing standards. In relation to Johnson & Johnson Company, it would be a plus if the auditor had experience with the Consumer, Pharmaceutical and Medical Devices, but not necessary since a firm would be able to hire an expert to consult on the audit. The test will cover risk assessment procedures, tests of controls and substantive procedures.
Risk management is the term applied to a logical and systematic method of establishing the context, identifying, analyzing, evaluating, treating, monitoring and communicating risks associated with any activity, function or process in a way that will enable organizations to minimize losses and maximize opportunities. (Lecture notes)Risk Management is also described as 'all the things you need to do to make the future sufficiently certain'. (The NZ Society for Risk Management, 2001)
Internal auditors cannot effectively provide an analysis on the company’s internal dealings as they are part of the company. External auditors, however, can observe these processes from the outside and then determine where the funds of the company and whether the dealings adhere to the regulations. Using external auditors in a company prevents conflict of interest from happening. Conflict of interest is a situation where an individual or organization has multiple interests and of those multiple interests, one could possible corrupt the motivation for an act on the other when the auditor has any kind of beneficial interest in their client’s performance. In other circumstances, there is also the threat of familiarity where auditors become
Risk management is an activity which integrates recognition of risk, risk assessment, developing strategies to manage it, and mitigation of risk using managerial resources. Some traditional risk managements are focused on risks stemming from physical or legal causes (e.g. natural disasters or fires, accidents, death). Financial risk management, on the other hand, focuses on risks that can be managed using traded financial instruments. Objective of risk management is
The role of internal audit is to provide independent declaration that an organization’s threatadministration, governance and internal control processes are functioning effectively. Internal auditors deal with concerns that are essentially important to the existence and success of any organization. Unlike external auditors, they aspect beyond financial possibilities and statements to reflect wider problems such as the organization’s reputation, development, its power on the location and the approach it treats its organizations.In summary, internal accountantssupport organizations to thrive.