Different Types Of Different Risks In An IT Audition

The safety aspect for risk management will evaluate the potential for human loss of life and or injury. The potential for major incident or accident, such as fire, explosion, or spill, including environmental damage. The necessity for security within the company is a highly need aspect of safety that can lead to risk. The revenues aspect for risk management will evaluate the loss of customer base, recovering of capital loss and recognizing uncoverable capital loss, and loss of opportunity in marketing of the product. The necessity for revenue risk management is key. The costs aspect for risk management will evaluate the costs that were incurred due to preventable problems. Also, costs due to increased warehouse space, vendor changes, and discount changes. A significant risk in cost for this company is the cost of legal defense. The legal aspect for risk management will evaluate regulatory compliance failures and actions that could result

Audit Risk Assessment can be done by this Audit Risk Model. This model consists of 3 types of risks i.e., inherent risk, control risk and detection risk. Eventually, audit risk is a product of these 3 types of risks (Griffiths, 2012).

Business risk evaluation – possible and moderate = medium business risk. The threat of new entrants and substitute products are very high, in addition to the high level of competition in the industry. Therefore, the business risk that MTI faces – losing customers due to lack of product differentiation, profit decrease due to increase in competition in the industry are likely possible to occur. In addition, the effects from new companies entering the industry will have a moderate effect on MTI’s revenue stream. As a conclusion, MTI faces medium business risk.

Audit risk is the risk that the auditor gives the wrong opinion – this can either be stating errors when there are none or when there are errors stating that there are none. This risk cannot be eliminated as auditors can only provide a reasonable assurance and not absolute, but instead this can only be managed and reduced to a minimum.

CAS 300 requires auditors to their audit using a risk based model where the nature, timing and extent of audit procedures are based on the assessed risk of material misstatement. Pickett (2006) argues that for audits to be effective and efficient, much of the audit effort should be focused on areas that are considered to pose the highest audit risk. Additional audit procedures should be linked to individual audit assertions whereas other audit procedures need to be performed as and when needed. Thus, for an audit plan to be put in place, it is necessary for an auditor to come up with a risk profile of the client comprising an understanding of the business operating by the audit client, assess business risk and also perform its preliminary analytical review.

#3. Inherent Risk Factors; audit planning decisions. Businesses that face extreme competition are susceptible to many inherent risk factors – the measurement of the auditor’s assessment of the likelihood that there are material misstatements in an account balance before considering the effectiveness of internal control. Complex valuation issues and related party transactions are two such factors that would affect audit planning decisions. Valuation issues may lead the audit team to request more evidence, if they choose to accept the audit at all. Risks such as inventory turnover leading to potential misstatements of inventory, costs of goods sold, or obsolescence of inventory may influence the audit firm’s decision to hire outside specialists to assist in the audit. Another inherent risk factor, client business risk (competitive

3.4 Summarise the types of risks that may be involved in assessment in own area of responsibility

Risk refers to any potential problems that would threaten the likelihood of success for or any project. These potential problems might prevent a project from achieving some or all of its objectives by increasing time and cost. Risk factors can even

Auditing in general, is necessary because of the existence of Information risk or the risk of unreliable information.

There are four stages in this audit. The first stage is the planning and risk assessment. This stage of the audit is completed during the initial planning. The risks for Smackey Dog Foods, Inc. can be better identified by understanding the business, its industry, environment, management culture, the type of accounting used, and the competition. The auditors should be able to understand why Smackey’s sales are steadily increasing and its competitors sales are declining. To be more specific, the implementation and design of Smackey’s internal control procedures, processes, and systems are studied and analyzed for the audit team to be able to assess the control risk for each of the transaction related audit objectives, which are accuracy, occurrence, classification, completeness, summarization, and timing and posting.

c. Identify inherent risks for the audit of Pinnacle using the information from Parts I and II. For each inherent risk, identify the account or accounts that may be affected.

In the three maintained products the threats and risks are to be identified. Such as the data base securing, user identification, authorizing proper managers, protections from hackers and updated firewalls and less vulnerable software.

Rittenburg, Larry. Johnstone, Karla. Gramling, Audrey. (2012) Auditing: A Business Risk Approach 8e. Mason: South-Western, Cengage Learning.

The objective risk is the relative variation of actual loss from expected loss. As the number of exposure units under observation increases, objective risk declines.

Strategic objectives- pertain to value creation management makes on behalf of shareholders. Longterm strategies look