Accounting Information Systems
9th Edition
ISBN: 9781133934400
Author: James A. Hall
Publisher: Cengage Learning
expand_more
expand_more
format_list_bulleted
Question
Chapter 17, Problem 3P
To determine
Explain the importance of an audit plan in specifying the objectives of audit. Also, explain the procedure for test the controls in the areas of concern.
Expert Solution & Answer
Want to see the full answer?
Check out a sample textbook solution
Students have asked these similar questions
Which of the following expressions best describes a situation under which the issuance of a report that concludes on the condition of the internal controls of an organization that provides technological services to one of our audit clients (SOC report) is required? It is that situation in which a CPA has been hired to evaluate
a.
the projected financial statements prepared by the client, to see if the expected results comply with hypothetical assumptions or not.
b.
the information systems and technologies subcontracted by the client, specifically in what corresponds to criteria of security, availability, integrity, confidentiality and privacy.
c.
any assertion or area that the client has asked to intervene (subject matter), and do so in accordance with compliance or not, with criteria or principles (against criteria).
d.
services that help the client maintain their financial independence.
The Committee of Sponsoring Organizations of the Treadway Commission's (COSO's) Internal Control—Integrated Framework provides a model for organizations to design and implement an entity-wide system of controls. Which of the following BEST (select one) describes the purpose of the COSO model?
a) To provide a tool to perform risk assessments
b) To motivate employees to maintain a culture of compliance
c) To provide auditors with a detailed work pogram to perform audits
d) To provide a model to help organizations better design, implement, and assess internal contreol thereby supporting governance objectives
Internal auditors would most appropriately perform which of the following activities during a review of systems development activity?a. Serve on the MIS steering committee that determines what new systems are to be developed.b. Review the methodology used to monitor and control the system development function. c. Recommend specific automated procedures to be incorporated into new systems that will provide reasonable assurance that all data submitted to an application are converted to machine-readable form.d. Recommend specific operational procedures that will ensure that all data submitted for processing are converted to machine-readable form.
Chapter 17 Solutions
Accounting Information Systems
Ch. 17 - Prob. 1RQCh. 17 - Prob. 2RQCh. 17 - Prob. 3RQCh. 17 - Prob. 4RQCh. 17 - Prob. 5RQCh. 17 - Prob. 6RQCh. 17 - Prob. 7RQCh. 17 - What is the importance of the SPL?Ch. 17 - Prob. 9RQCh. 17 - Prob. 10RQ
Ch. 17 - Prob. 11RQCh. 17 - Prob. 12RQCh. 17 - What tests may be conducted for identifying...Ch. 17 - Prob. 14RQCh. 17 - Prob. 15RQCh. 17 - Prob. 16RQCh. 17 - Prob. 17RQCh. 17 - Prob. 18RQCh. 17 - Prob. 19RQCh. 17 - Prob. 20RQCh. 17 - Prob. 1DQCh. 17 - Prob. 2DQCh. 17 - Prob. 3DQCh. 17 - What are rounding error routines, and why are they...Ch. 17 - Prob. 5DQCh. 17 - Prob. 6DQCh. 17 - Prob. 7DQCh. 17 - Prob. 8DQCh. 17 - The systems development life cycle is a...Ch. 17 - Prob. 10DQCh. 17 - Prob. 11DQCh. 17 - Compare and contrast the following techniques...Ch. 17 - Prob. 13DQCh. 17 - Prob. 1MCQCh. 17 - Prob. 2MCQCh. 17 - Prob. 3MCQCh. 17 - Prob. 4MCQCh. 17 - Prob. 5MCQCh. 17 - Prob. 6MCQCh. 17 - Prob. 7MCQCh. 17 - Prob. 8MCQCh. 17 - Prob. 9MCQCh. 17 - Prob. 10MCQCh. 17 - Prob. 1PCh. 17 - Prob. 2PCh. 17 - Prob. 3PCh. 17 - Prob. 4PCh. 17 - Prob. 5PCh. 17 - Prob. 6PCh. 17 - Prob. 7PCh. 17 - Prob. 8PCh. 17 - Prob. 9PCh. 17 - Prob. 10PCh. 17 - The Balcar Companys external auditors are...Ch. 17 - Prob. 12PCh. 17 - Prob. 13PCh. 17 - Prob. 14PCh. 17 - Prob. 15P
Knowledge Booster
Similar questions
- Refer to Exhibit 2.5 and answer the following questions. a. (Sections 101, 104, and 105) How does the establishment and operation of the PCAOB help to ensure quality external audits? How will audit firm inspections and investigations by the PCAOB help ensure high audit quality? b. (Sections 201-203) How do Sections 201-203 address audit ()r independence concerns? c. (Section 206) What is a cooling-off period, and how does it address auditor independence concerns? d. (Section 301) How do the audit committee requirements help ensure effective corporate governance? e. (Sections 302 and 906) How do the officer certification requirements help to address the risk of fraud in publicly traded organizations? What is the likelihood that a CFO who is committing fraudulent financial reporting would sign the certification falsely, and what are your reactions to that possibility? f. (Section 401) How does this section relate to the Enron fraud? g. (Section 404) How do the management assessment and audit or attestation of internal controls contained in this section help to address the risk of fraud in publicly traded organizations? h. (Section 407) Why is it important that at least one member of the audit committee be a financial expert? What are the financial reporting implications if the audit committee does not have any individuals serving on it who possess financial expertise? i. (Section 802) How does this section relate to the Enron fraud?arrow_forwardThe internal audit risk assessment process: [SELECT ALL THAT APPLY] a) Provides the Internal Audit function with an ability to prioritize risk areas based on objective and subjective evaluation criteria. b) Should be considered the foundation of the audit function. c) Leads to the creation of the annual audit plan and audit budget. d) Should leverage management's enterprise risk management assessment process, if appropriate.arrow_forward1. List three reasons management may ask for an operational audit to be performed and explain how the audit program would be impacted by each of them. 2. Explain the importance of identifying risk factors and using them during the planning phase. 3. Give two examples where document inspection is a useful technique to examine operational risks and related controls. 4. Explain professional skepticism and why it is important for all auditors. 5. Explain the acronym CCCER. 6. What are the defining characteristics of persuasive audit evidence? 7. What are the key characteristics of well prepared working papers? 8. What do internal auditors mean when they refer to the nature, extent, and timing of audit procedures? 9. What information should be included in a well designed final assurance engagement communication? 10. What actions regarding assurance engagement observations must the internal audit function take after the final engagement communication is disseminated?arrow_forward
- Internal Control Audit Standards. Auditors are required to obtain a sufficient understanding of each component of a client’s internal control. This understanding is used toassess control risk and plan the audit of the client’s financial statements.Required:a. For what purposes should an auditors’ understanding of the internal control componentsbe used in planning an audit?b. What is required for an audit team to assess control risk below the maximum level?c. What should an audit team consider when seeking to reduce the planned assessed level ofcontrol risk below the maximum?d. What are the documentation requirements concerning a client’s internal control components and the assessed level of control risk?arrow_forwardWhich of the following documents or/ and procedures should be used by the auditor to gain a better understanding of the client ? 1 .Discussion with management 2. Communications with certain entities working in the same industry sector 3. Predecessor auditor assessment of the internal control 4. All answers are correctarrow_forwardA service organizations has an auditor issue one of two types of reports on their operations: 1) Type 1 and 2) Type 2. Which of the following is true? Type 2 Report describes and assess the design of the internal controls and also provides assurance about the operating effectiveness Type 2 report only provide assurance on the operating effectiveness of the service organization's controls. Type 1 report provide assurance on the operating effectiveness of the service organization's controls Type 2 does not describes and assess the design of the internal controls 0000arrow_forward
- When testing IT controls, which of the following BEST (select one) describes the IT auditor's objective: a) Evaluating the need for post-audit substantive testing. b) Assessing the design and operating effectiveness of the controls to express an opinion on whether or not the IT controls adequately mitigate the identified risks. c) Assessing the alignment of the IT controls, in relation to an industry framework. d) Evaluating the scope and objectives of the IT controls.arrow_forwardPlease access PCAOB Auditing Standard No. 12 "Identifying and Assessing Risks of Material Misstatements" (pcaobus.org). Use this standard to answer each of the questions below. For each answer, document the paragraph(s) in AS No. 12 supporting your answer. a. What types of information does AS No. 12 suggest the auditor should consider when obtaining an understanding of the company and its environment? b. What types of performance measurements might affect the risk of material misstatement? c. What specific issues should be included in the discussion among engagement team members regarding the risk of material misstatement? d. What factors should the auditor consider to determine if a risk is a "significant risk"? e. What guidance is provided about revising the risk assessment as the audit continues?arrow_forwardAuditors’ understanding of the internal control in an entity provides information fora. Determining whether members of the audit team have the required competence and capabilities to perform the audit.b. Ascertaining the independence in mental attitude of members of the audit team.c. Planning the professional development courses the audit staff needs to keep up to datewith new auditing standards.d. Planning the nature, timing, and extent of substantive procedures on an auditarrow_forward
- 1.) The Information Systems Audit and Control Association (ISACA) developed guidelines and procedures on how to follow the standards that apply specifically to the specialized nature of the IS Audit. The guidelines serve as guidance the IS auditor should normally follow. However, there may be situations where the auditor will not follow that guidance. In this case, what happens now to the work done by the IS auditor? 2.) Audits are conducted for various reasons. It can help an organization ensure effective operations, affirm its compliance with various regulations, and confirm that the business is functioning well and is prepared to meet potential challenges. There are three typical phases in an Audit, explain each phase and its relation to the other.arrow_forward1.) The Information Systems Audit and Control Association (ISACA) developed guidelines and procedures on how to follow the standards that apply specifically to the specialized nature of the IS Audit. The guidelines serve as guidance the IS auditor should normally follow. However, there may be situations where the auditor will not follow that guidance. In this case, what happens now to the work done by the IS auditor? 2.) Audits are conducted for various reasons. It can help an organization ensure effective operations, affirm its compliance with various regulations, and confirm that the business is functioning well and is prepared to meet potential challenges. There are three typical phases in an Audit, explain each phase and its relation to the other. 3.) Every organization has controls in place. Such controls must be effective. They are effective if they prevent, detect, or contain incidents and enable recovery from events that cause risks. Enumerate those three types of control…arrow_forwardDescribe the procedures typically performed when conducting an IT audit related to: a. Systems Development b. Business Continuity Planning/Disaster Recovery Planningarrow_forward
arrow_back_ios
arrow_forward_ios
Recommended textbooks for you
Auditing: A Risk Based-Approach to Conducting a Q...AccountingISBN:9781305080577Author:Karla M Johnstone, Audrey A. Gramling, Larry E. RittenbergPublisher:South-Western College Pub
Auditing: A Risk Based-Approach (MindTap Course L...AccountingISBN:9781337619455Author:Karla M Johnstone, Audrey A. Gramling, Larry E. RittenbergPublisher:Cengage Learning
Accounting Information SystemsAccountingISBN:9781337619202Author:Hall, James A.Publisher:Cengage Learning,
Auditing: A Risk Based-Approach to Conducting a Q...
Accounting
ISBN:9781305080577
Author:Karla M Johnstone, Audrey A. Gramling, Larry E. Rittenberg
Publisher:South-Western College Pub
Auditing: A Risk Based-Approach (MindTap Course L...
Accounting
ISBN:9781337619455
Author:Karla M Johnstone, Audrey A. Gramling, Larry E. Rittenberg
Publisher:Cengage Learning
Accounting Information Systems
Accounting
ISBN:9781337619202
Author:Hall, James A.
Publisher:Cengage Learning,