Académique Documents
Professionnel Documents
Culture Documents
sampling
Introduction
Recall:
- An auditor will develop an audit strategy based on their inherent
and control risk assessment
- Strategy will help determine the extent of tests of controls and
substantive procedures to be undertaken by the audit team
- Once strategy is developed, audit program is written detailing
the nature, timing and extent of audit procedures to be
conducted by audit staff.
6.1 Tests of Controls and Substantive Procedures
Audit Strategy: sets the scope, timing and direction of the audit and
provides a basis for developing a detailed audit plan
- Audit plan includes the audit procedures to be used when testing
controls and when conducting detailed substantive audit
procedures.
- Gain a minimum knowledge of the clients system of
internal control, conduct limited or no tests of controls
(controls testing) and conduct extensive detailed
substantive procedures.
Substantive Audit Procedures
- Auditor plans to get a minimum knowledge of the clients control
and conducts extensive substantive procedures that involve
intensive testing of year end account balance and transactions
from throughout the year
- When control risk is assessed as high (there are no tests of
control within the organization)
If control risk is medium to low
- Combined audit strategy
- Audit strategy is to gain a detailed understanding of the clients
system of internal controls, conduct extensive tests of controls,
and if those controls prove effective, then conduct less detailed
substantive procedures.
6.1.1 Test of Controls
- Auditor is interested in assessing the effectiveness of internal
controls identified when gaining an understanding of the clients
system of internal controls during the planning stage of the audit
- Auditor has to test the controls to check their effectiveness
before concluding whether the control risk is high or low.
Inherent Risk
Low
Control Risk
Low
Detection Risk
High