Information Is Necessary For Businesses And Auditors

CAS 300 requires auditors to their audit using a risk based model where the nature, timing and extent of audit procedures are based on the assessed risk of material misstatement. Pickett (2006) argues that for audits to be effective and efficient, much of the audit effort should be focused on areas that are considered to pose the highest audit risk. Additional audit procedures should be linked to individual audit assertions whereas other audit procedures need to be performed as and when needed. Thus, for an audit plan to be put in place, it is necessary for an auditor to come up with a risk profile of the client comprising an understanding of the business operating by the audit client, assess business risk and also perform its preliminary analytical review.

The following provides high-level information about auditing a fictional entity, called Sofitec Computers, created for this case study. This case does not include a complete description of the entity or the industry, nor does it provide comprehensive information on auditing; it is only intended to provide the information that will be necessary and helpful in completing this case study and answering discussion questions.

Kudler Fine Food has expanded business and updated their computer systems to meet demands. As IT information is adopted within the organization, automation control processes has become more virtualized. To ensure that Kudler’s computerize systems function properly an audit must be performed on an annual basis. Management at Kudler Fine Foods wants to see the proposed audit schedules for all systems. Management wants to know the types of audit and how they will be conducted. In addition, management would like to know about events that might prevent reliance on auditing through the computer.

Elder, A. A., Beasley, M., & Elder, R. J. (2014). Auditing and assurance services (15th ed.). Upper Saddle River, NJ: Pearson.

In order to conduct these services, we at AWO have certain requirements that need to be met in order to conduct a successful audit and assurance service. Our company requires that our auditors be given access to all functions of the company from the financial statements, internal control systems, compliance guides, and etc. We also require that our auditors be able to function in an environment that they are free from outside influence, which means their work is not to be disrupted. The last requirement that we ask for is access to managers, directors, and other personnel that have access to the secured information. This will allow us to conduct an audit that will guarantee a high level of assurance, and provide the company with confidence in its business functions. We look forward in working with you.

This research paper is being submitted on March 10, 2013, for Tiffany Krogman, A340/ACG3085 Section 03, Advanced Auditing Concepts & Standards.

Arens, A. A., Elder, R. J., & Beasley, M. S. (2013). Auditing and Assurance Services. Old Tappan, NJ: Pearson Education.

The Auditing Standards Board (ASB) redrafted the standards for clarity and reorganized all of the auditing sections (AU) into new one adding C after (AU-C), bringing both significant and subtle changes. For some of the standards only the format changed but others significantly impacted the auditor’s work. This project was very important for the globalization

These businesses realize that maintaining the public’s trust is one of the keys to commercial success, so they employ investigative accountants to strategically manage the complexities of risks and threats. Investigative accountants scrutinize fraudulent activities, assist senior management with risk management and strive to mitigate potential vulnerabilities. Investigate accountants often respond to fraud allegations and reported financial irregularities. They adopt a strategic threat management approach that enables them to anticipate and respond to risks. They apply advanced technology approaches to help internal customers track and manage data activities. They employ information management principles, data analytics techniques and sophisticated technology tools to help management make well-informed

Furthermore, it is our goal to ensure that all of the necessary visibility and metrics currently being used by each department remains as transparent as possible. The ability to manage and view the general ledger, accounts payable and receivable, inventories for each manufacturing vertical and project, and provide these through customized reports that should be not only tailored to each group but they should provide for greater control of the enterprise as a whole without the reliance on individual accounting teams to maintain accuracy and performance of their business units.

Do you have formal authorizations against workers who neglect to agree to security strategies and methods? (R)

Over the last several weeks, there have been several recommendations made to update and replace the current software of Kudler Fine Foods IT audit systems. These recommendations have been made in hopes of making the company more efficient and profitable. According to most recent research, there are several audit systems that seem to best suit all audit functions of Kudler Fine Foods. Having said that, it is important that Kudler’s management consider the legitimacy of data and integrity within their auditing system. This analysis describes how Kudler Fine Foods is able to benefit from the use of new audit software. It also explains how the Computer Assisted Auditing Techniques confirms the company’s system data integrity.

Audit planning details change from client to client, no matter the complications presented. Each evolution of society’s business world prompts rule makers to update authoritative accounting standards in order to allow for changes, auditors are then responsible to certify their client’s financial reports adhere within compliance according to current authoritative standards. Many cite the Sarbanes-Oxley Act (SOX) of 2002 as being legislation that has had the most profound impact on the auditing profession; incidentally, an auditor’s job is to certify financial statements are a fair representation of a company’s financial position, at a given point in time, using current acceptable standards. Society deems auditors as gatekeepers and expects the auditing profession to find and report fraud, prevent fraud, and make certain financial statements are true, fair representation of a company’s financial position. Even though the rules, regulations, and generally accepted accounting principles can sometimes be difficult to find and translate, the public expects auditors to prevent events such as those that sparked SOX. The Financial Accounting Standards Board (FASB) developed the Accounting Standards Codification (ASC) that became the authoritative source July 2009 (FASB, 2009). Perhaps the hardest impact auditors experience with FASB ASC is attempting to ascertain clients’ FASB ASC references in disclosures on financial statements; “management cannot delegate this function to the

Auditors will enter a much expanded arena of procedures to detect fraud as they implement SAS no. 99. The new standard aims to have the auditor’s consideration of fraud seamlessly blended into the audit process and continually updated until the audit’s completion. SAS no. 99 describes a process in which the auditor gather information needed to identify risks of material misstatement due to fraud, assesses these risks after taking into account an evaluation of the entity’s programs and controls and responds to the results. Under SAS no. 99, you will gather and consider much more information to assess fraud risks, than you have in the past (Ramos, 2003).

This research paper focuses on how IT audits are done and how they can help in assisting an organization in its regulatory compliance effort by identifying information security weaknesses prior to an external audit. The key players and their roles are defined, as well as organizational, results-based, point-in-time systems and extended-period audits. This leads to a natural question. In this new world of connected GRC, what is the role of internal audit compared to compliance? Where do these roles remain separate and where do they share responsibilities? How can these professionals work together to drive business value?