Hanrick Curran Audit Training - Internal Controls - March 2013


Published on

Training delivered to assisting audit staff as part of their continuing professional development/education (CPE/CPD). Provided in a 60 minute session with substantial discussion and interaction.

Published in: Business, Technology
1 Like
  • Be the first to comment

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Hanrick Curran Audit Training - Internal Controls - March 2013

  1. 1. Audit Team Training26 March 2013System NotesandInternal Controls
  2. 2. This document contains information in summary form and is therefore intendedfor general guidance only. It is not intended to be a substitute for detailedresearch or the exercise of professional judgement. It does not purport to becomprehensive or to render professional advice. The reader should not act onthe basis of any matter contained in this publication without first obtainingspecific professional advice.We believe that the statements made by us in this document are accurate but nowarranty of accuracy or reliability is given. Our conclusions are based oninterpretations of accounting standards and other relevant professionalpronouncements and legislation current as at the date of this document. Shouldthe interpretations, accounting standards, other relevant professionalpronouncements or legislation change, our conclusions may not be valid. We areunder no obligation to update the matters considered in this document after itspublication.© Hanrick Curran, February 2013All rights reservedDisclaimerLiability limited by a scheme approved underprofessional Standards Legislation
  3. 3. Your PresentersMatthew Green CAContact details:matthew.green@hanrickcurran.com.au(+61)(0) 447 724 595(+61)(0) 7 3218 3900Twitter: @matthewjgreencaLinkedIn: http://au.linkedin.com/in/matthewjgreencaWendy Low CAContact details:wendy.low@hanrickcurran.com.au(+61)(0) 7 3218 3900Topic Date
  4. 4. About Hanrick CurranOur client base is mainly located in South EastQueensland, but also extends to Northern NewSouth Wales, Western Queensland, Sydney,Melbourne, Darwin, Townsville and Mackay as wellas other regional areas.We have a strong position with clients in PapuaNew Guinea and we also serve a growing Asianbusiness sector. While these internationalconnections may not be of immediate interest butwe believe they are important in enabling us toeffectively serve our clients.Hanrick Curran’s Client Base
  5. 5. Agenda1) Purpose and Component of Internal controls2) System notes3) Fun time…4) Angela Winton
  6. 6. Aim of this trainingObjectiveA brief understanding of internal controls.Audit team members should have an understanding on the questions toask and the ability to write up on system notesWhy?Effective internal controls are important for financial reporting.System notes will assist with risk assessments and planning for the job.At the end of the sessionAudit team members will have basic understanding of internal controlsand will be able to efficiently prepare system notes.
  7. 7. Purpose and Components ofInternal ControlsASA 315: Identifying and Assessing the Risks ofMaterial Misstatement through Understanding theEntity and its Environment.Internal control objectives – 4 broad categories:- Strategic, high level goals- Financial Reporting- Operations- Compliance with laws and regulations
  8. 8. ControlEnvironmentRiskAssessmentInformationSystemControlActivitiesMonitoring5 components of Internal ControlsInternalControl
  9. 9. Component 1: Control EnvironmentWhat is the control environment?• Foundation for effective internal control• Addresses the governance and management functions• Controls are usually pervasive in natureQuestion: What does pervasive mean?Why is it important for auditors?• Influences the evaluation of effectiveness of specific areas
  10. 10. Component 1: Control Environment(cont.)Key Elements• Communication and enforcement of integrity• Commitment to competence• Participation by those charged with governance• Management’s philosophy and operating style• Organisational structure• Assignment of authority and responsibility• Human resources policies and practices
  11. 11. Component 2: Risk AssessmentWhat is the Risk Assessment?• Provides management with the information needed todetermine what business/fraud risks should bemanaged and action to be takenWhy is it important for auditors?• An absence of a documented risk assessment processmay represent a significant deficiency in internalcontrol
  12. 12. Component 2: Risk Assessment(cont.)Possible conditions and events that may indicaterisk of material misstatement• Volatile markets• Going concern and liquidity issues• Constraints on availability of capital and credit• Lack of accounting personnel• Changes in key personnel (departure)• Litigation
  13. 13. Component 3: Information System“ASA 315.18-19”What is information system?• Identifies, captures, processes and distributesinformation supporting the achievement of financialreporting and internal control objectives• Communication of financial reporting roles andresponsibilitiesWhy is it important for auditors?• Business processes and the links to accountingsystems captures financial information which isrelevant to financial reporting
  14. 14. Component 3: Information System(cont.)Understanding the information system• Sources of information used?• How information is captured and processed?• How the information produced is used?Communication• Key component for successful information system• Information needed for decision making needs to becommunicated in a timely manner• Can be done verbally or through policies
  15. 15. Component 4: Control Activities“ASA 315.20-21”What are control activities?• Policies and procedures that help ensure thatmanagement’s directives are carried out• It is designed to mitigate risks involved in everydayactivities such as transactional processingQuestion: What is transactional processing?
  16. 16. Component 4: Control Activities(cont.)“Business Processes : set of activities designedto produce a specific output”Controls Classification DescriptionPreventive controls Avoid errors or irregularitiesDetective controls Identify errors or irregularitiesCompensating controls Provide some assurance whereresource limitations perpreclude other more directcontrolsSteering controls Guide action towards desiredobjectives
  17. 17. Component 4: Control Activities(cont.)Typical controls will include the following:1. Segregation of duties2. Authorisation controls3. Account reconciliations4. IT Application Controls5. Actual results review6. Physical controls
  18. 18. Component 5: Monitoring“ASA 315: 22-24”What is monitoring?- Assesses the effectiveness of internal control’s performance overtime.- To ensure that controls are working properlySources of Information used for monitoring- Periodic monitoring (Internal audit)- Hiring external consultants- Complaints from customers- External auditors
  19. 19. Audit Training - Materiality - April 2013Thank youwww.hanrickcurran.com.auHanrick Currant. (07) 3218 3900f. (07) 3218 3901Level 11307 Queen StreetBrisbane Qld 4000GPO Box 2268Brisbane Qld 4001