SlideShare a Scribd company logo

Internal Control

Salih Islam
Salih Islam

Internal Control

Business
1 of 32
Download to read offline
Internal Control
Summary of Internal Control Definition A process, effected by the entity’s board of directors, management, and other personnel, designed to provide reasonable assurance regarding, achievement of (the entity’s) objectives on: –Effectiveness and efficiency of operations –Reliability of financial reporting –Compliance with applicable laws and regulations
Control Objectives •In each area of internal control (financial reporting, operations and compliance) –Control objectives and –Sub objectives exist •Example: Area of financial reporting –Top level objective – prepare and issue reliable financial information –Detailed level applied to A/R sub objectives •All goods shipped are accurately billed in the proper period •Invoices are accurately recorded for all authorized shipments and only for such shipments •Authorized and only authorized sales returns and allowances are accurately recorded •The continued completeness and accuracy of A/R is ensured •Accounts receivable records are safeguarded
Foreign Corrupt Practices Act •Passed in 1977 in response to American corporation practice of paying bribes and kickbacks to officials in foreign countries to obtain business •The Act –Requires an effective system of internal control –Makes illegal payment of bribes to foreign officials
Controls over Financial Reporting •Preventive –Aimed at avoiding the occurrence of misstatements in the financial statements –Example: Segregation of duties •Detective –Designed to discover misstatements after they have occurred –Example: Monthly bank reconciliations •Corrective –Needed to remedy the situation uncovered by detective controls –Example: Backups of master file •Controls overlap –Complementary – function together –Redundant – address same assertion or control objective –Compensating – reduces risk existing weakness will result in misstatement
Components of Internal Control •The Control Environment •Risk Assessment •The Accounting Information and Communication System •Control Activities •Monitoring
Control Environment Factors •Integrity and ethical values •Commitment to competence •Board of directors or audit committee •Management philosophy and operating style •Organizational structure •Human resource policies and practices •Assignment of authority and responsibility
Risk Assessment--Factors Indicative of Increased Financial Reporting Risk •Changes in the regulatory or operating environment •Changes in personnel •Implementation of a new or modified information system •Rapid growth of the organization •Changes in technology affecting production processes or information systems •Introduction of new lines of business, products, or processes
Control Activities •Performance reviews •Information processing –General control activities –Application control activities •Physical controls •Segregation of duties –Segregate authorization, recording and custody of assets
Segregation of Duties
Objectives of an Accounting System •Identify and record valid transactions •Describe on a timely basis the transactions in sufficient detail to permit proper classification of transactions •Measure the value of transactions appropriately •Determine the time period in which the transactions occurred to permit recording in the proper period •Present properly the transactions and related disclosures in the financial statements
Monitoring •Ongoing monitoring activities –Regularly performed supervisory and management activities –Example: Continuous monitoring of customer complaints •Separate evaluations –Performed on nonroutine basis –Example: Periodic audits by internal audit
Limitations of Internal Control •Errors may arise from misunderstandings of instructions, mistakes of judgment, fatigue, etc. •Controls that depend on the segregation of duties may be circumvented by collusion •Management may override the structure •Compliance may deteriorate over time
Enterprise Risk Management (ERM) •COSO issued a new internal control framework in 2004 on enterprise risk management. It does not replace the original COSO internal control framework. •It goes beyond internal control to focus on how organizations can effectively manage risks and opportunities. •The auditing standards are still structured around the original COSO internal control framework.
Auditors’ Overall Approach with Internal Control •Overall approach of an audit 1. Plan the audit 2. Obtain an understanding of the client and its environment, including internal control 3. Assess the risks of material misstatement and design further audit procedures 4. Perform further audit procedures 5. Complete the audit 6. Form an opinion and issue the audit report •Steps 2-4 relate most directly to the role of internal control in financial statement audits
2. Obtain an understanding of the client and its environment, including internal control •The understanding of internal control is used to help the auditor to –Identify types of potential misstatements –Consider factors that affect the risks of material misstatement. –Design tests of controls (when applicable) and substantive procedures. •Auditors must consider all five internal control components –Control environment –Accounting information system –Risk assessment –Control activities –Monitoring •Also consider areas difficult to control like nonroutine transactions
Obtaining the Understanding •Procedures include –Inquiring of entity personnel –Observing the application of specific controls –Inspecting documents and reports –Tracing transactions through the information system relevant to financial reporting •May also obtain evidence on operating effectiveness of various controls
Documenting the Understanding of Internal Control •Questionnaires –Typically standardized by firm •Written Narratives –Memos that describe flow of transactions •Flowcharts –Systems flowcharts •Walk-through –Trace one or two transaction through cycle
3. Assess the risks of material misstatement General approach –Identify risks while obtaining an understanding of the client and its environment, including its internal control –Relate the identified risks to what can go wrong at the relevant assertion level –Consider whether the risks are of a magnitude that could result in a material misstatement –Consider the likelihood that the risks could result in a material misstatement
The nature of transactions •Consider the nature of the transactions –Routine transactions—e.g., revenue, purchases, and cash receipts and disbursements –Nonroutine transactions—e.g., taking of inventory, calculating depreciation expense –Estimation transactions—e.g., determining the allowance for doubtful accounts •Generally routine transactions have the strongest controls
Assessing Risks at the Financial Statement Level •Examples –Preparing the period-end financial statements, including the development of significant accounting estimate and preparation of the notes –The selection and application of significant accounting policies –IT general controls –The control environment •Responses to high risks –Assigning more experience staff or those with specialized skills –Providing more supervision and emphasizing the need to maintain professional skepticism –Incorporating additional elements of unpredictability in the selection of further audit procedures to be performed –Increasing the overall scope of audit procedures, including the nature, timing or extent
Assessing Risks at the Assertion Level •Examples –Failure to recognize an impairment loss on a long- lived asset affects only the valuation assertion –Inaccurate counting of inventory at year-end affect the valuation of inventory and the accuracy of cost of goods sold •Responses –Decisions are made here as to the appropriate combination of tests of controls and substantive procedures
4. Perform Further Audit Procedures – Test of Controls (1/2) •Approach: –Identify controls likely to prevent or detect material misstatements –Perform tests of controls to determine whether they are operating effectively •Tests of controls address: –How controls were applied –The consistency with which controls were applied –By whom or by what means (e.g., electronically) the controls were applied
4. Perform Further Audit Procedures – Test of Controls (1/2) •Tests of controls include: –Inquiries of appropriate client personnel –Inspection of documents and reports –Observation of the application of controls –Reperformance of the controls •The results of the tests of controls are used to determine the nature, timing and extent of substantive procedures
Diagram of the Auditors’ Consideration of Internal Control
Other Considerations •Audit decision aids –Checklist, standard form or computer program that helps auditors make a decision by ensuring that they have all relevant information or by assisting them in combining the information. •Use of the work of internal auditors –Must assess internal audit competence and objectivity and test work –Can rely on work of internal audit to reduce amount of testing done by independent auditors
Relationships Among Deficiencies Deficiency in Internal Control Less than Significant Material Significant Deficiency Weakness
Management’s Report on Internal Control under Section 404a •Acknowledgment of responsibility for internal control •An assessment of internal control effectiveness as of the last day of the company’s fiscal yearn using suitable criteria •Support the evaluation with sufficient evidence
Approach to Audit of Internal Control under Section 404b •This section applies to public companies with a market capitalization of $75 million or more. For those companies, the auditors audit internal control as a part of an integrated audit as follows: –Plan the engagement –Use a top-down approach to identify the controls to test –Test and evaluate design effectiveness of internal control –Test and evaluate operating effectiveness of internal control –Form an opinion on effectiveness of internal control over financial reporting
Internal Control in the Small Company •Due to lack of employees, internal control is seldom strong in small businesses •Specific practices for small businesses –Record all cash receipts immediately –Deposit all cash receipts intact daily –Make all payments by serially numbered checks, with exception of petty cash disbursements –Reconcile bank accounts monthly and retain copies –Use serially numbered invoices, Pos, and receiving reports –Issue checks to vendors only in payment of approved invoices that have been matched with purchase orders and receiving reports –Balance subsidiary ledger with control accounts –Prepare comparative financial statements monthly to disclose significant variations in any category of revenue or expense

Recommended

Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal controlRadhika Gohel
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bankMohammad Halim Stanikzai
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal controlDr Manu H Natesh
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Internal controls
Internal controlsInternal controls
Internal controlsGeetali Tare
 
Financial Statements Audit
Financial Statements AuditFinancial Statements Audit
Financial Statements AuditSalih Islam
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditingHardik Shah
 
Internal control system
Internal control systemInternal control system
Internal control systemHina Varshney
 

Recommended

Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal controlRadhika Gohel
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bankMohammad Halim Stanikzai
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal controlDr Manu H Natesh
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Internal controls
Internal controlsInternal controls
Internal controlsGeetali Tare
 
Financial Statements Audit
Financial Statements AuditFinancial Statements Audit
Financial Statements AuditSalih Islam
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditingHardik Shah
 
Internal control system
Internal control systemInternal control system
Internal control systemHina Varshney
 
Audit working-papers
Audit working-papersAudit working-papers
Audit working-papersNext Generation Security Agency
 
Unit 1 Introduction to Audit
Unit 1 Introduction to AuditUnit 1 Introduction to Audit
Unit 1 Introduction to AuditAjay Nazarene
 
Internal control & compliance of bank
Internal control & compliance of bankInternal control & compliance of bank
Internal control & compliance of bankMohammad Robiul
 
Internal check internal audit internal control
Internal check internal audit internal controlInternal check internal audit internal control
Internal check internal audit internal controlSriramPurnaKotla
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal AuditArmeniaFED
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit pptLetzconsult.com
 
Audit procedures
Audit proceduresAudit procedures
Audit proceduresBilal Ahmed Bhatti
 
Internal audit
Internal auditInternal audit
Internal auditRahul Mithia
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit departmentSalih Islam
 
9. audit evidence
9. audit evidence9. audit evidence
9. audit evidenceSyed Osama Rizvi
 
6. audit techniques
6. audit techniques6. audit techniques
6. audit techniquesSyed Osama Rizvi
 
Auditing Chapter 2
Auditing Chapter 2Auditing Chapter 2
Auditing Chapter 2aaykhan
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit pptIbrahim Jimalle
 
11. materiality and audit risk
11. materiality and audit risk11. materiality and audit risk
11. materiality and audit riskSyed Osama Rizvi
 
Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Hisyam
 
Audit report
Audit reportAudit report
Audit reportReal Estate Services
 
Lecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of AuditingLecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of AuditingSazzad Hossain, ITP, MBA, CSCA™
 
Internal audit
Internal auditInternal audit
Internal auditiPleaders - Re-engineering Legal education, New Delhi
 
8. internal control new
8. internal control new8. internal control new
8. internal control newSyed Osama Rizvi
 
Audit planning and risk assessment
Audit planning and risk assessmentAudit planning and risk assessment
Audit planning and risk assessmentcasahiljain1992
 
Ijarah
IjarahIjarah
IjarahAtika Anuar
 
Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Conceptsspschandel
 

More Related Content

What's hot

Unit 1 Introduction to Audit
Unit 1 Introduction to AuditUnit 1 Introduction to Audit
Unit 1 Introduction to AuditAjay Nazarene
 
Internal control & compliance of bank
Internal control & compliance of bankInternal control & compliance of bank
Internal control & compliance of bankMohammad Robiul
 
Internal check internal audit internal control
Internal check internal audit internal controlInternal check internal audit internal control
Internal check internal audit internal controlSriramPurnaKotla
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal AuditArmeniaFED
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit departmentSalih Islam
 
Auditing Chapter 2
Auditing Chapter 2Auditing Chapter 2
Auditing Chapter 2aaykhan
 
11. materiality and audit risk
11. materiality and audit risk11. materiality and audit risk
11. materiality and audit riskSyed Osama Rizvi
 
Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Hisyam
 
Audit planning and risk assessment
Audit planning and risk assessmentAudit planning and risk assessment
Audit planning and risk assessmentcasahiljain1992
 

What's hot (20)

Audit working-papers
Audit working-papersAudit working-papers
Audit working-papers
 
Unit 1 Introduction to Audit
Unit 1 Introduction to AuditUnit 1 Introduction to Audit
Unit 1 Introduction to Audit
 
Internal control & compliance of bank
Internal control & compliance of bankInternal control & compliance of bank
Internal control & compliance of bank
 
Internal check internal audit internal control
Internal check internal audit internal controlInternal check internal audit internal control
Internal check internal audit internal control
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal Audit
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
 
Audit procedures
Audit proceduresAudit procedures
Audit procedures
 
Internal audit
Internal auditInternal audit
Internal audit
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit department
 
9. audit evidence
9. audit evidence9. audit evidence
9. audit evidence
 
6. audit techniques
6. audit techniques6. audit techniques
6. audit techniques
 
Auditing Chapter 2
Auditing Chapter 2Auditing Chapter 2
Auditing Chapter 2
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
 
11. materiality and audit risk
11. materiality and audit risk11. materiality and audit risk
11. materiality and audit risk
 
Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)
 
Audit report
Audit reportAudit report
Audit report
 
Lecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of AuditingLecture slide, chapter 1, An Overview of Auditing
Lecture slide, chapter 1, An Overview of Auditing
 
Internal audit
Internal auditInternal audit
Internal audit
 
8. internal control new
8. internal control new8. internal control new
8. internal control new
 
Audit planning and risk assessment
Audit planning and risk assessmentAudit planning and risk assessment
Audit planning and risk assessment
 

Viewers also liked

Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Conceptsspschandel
 
Organisational innovation
Organisational innovationOrganisational innovation
Organisational innovationCharanya Naidu
 
Factors affecting organizational design
Factors affecting organizational designFactors affecting organizational design
Factors affecting organizational designrishikant555
 
Strategic Plan & Change Management
Strategic Plan & Change ManagementStrategic Plan & Change Management
Strategic Plan & Change ManagementTriune Global
 
Power and politics in organization
Power and politics in organizationPower and politics in organization
Power and politics in organizationlearner_j
 
Organizational Design And Change
Organizational Design And ChangeOrganizational Design And Change
Organizational Design And ChangeKing Julian
 
Chapter 11 Managing Change and Innovation
Chapter 11 Managing Change and InnovationChapter 11 Managing Change and Innovation
Chapter 11 Managing Change and InnovationRayman Soe
 
Power & politics in organizations
Power & politics in organizationsPower & politics in organizations
Power & politics in organizationsmdfaizan
 

Viewers also liked (11)

Ijarah
IjarahIjarah
Ijarah
 
Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Concepts
 
Organisational innovation
Organisational innovationOrganisational innovation
Organisational innovation
 
Factors affecting organizational design
Factors affecting organizational designFactors affecting organizational design
Factors affecting organizational design
 
Strategic Plan & Change Management
Strategic Plan & Change ManagementStrategic Plan & Change Management
Strategic Plan & Change Management
 
Power and politics in organization
Power and politics in organizationPower and politics in organization
Power and politics in organization
 
ORGANIZATIONAL INNOVATION MODEL
ORGANIZATIONAL INNOVATION MODELORGANIZATIONAL INNOVATION MODEL
ORGANIZATIONAL INNOVATION MODEL
 
Organizational Design And Change
Organizational Design And ChangeOrganizational Design And Change
Organizational Design And Change
 
Chapter 11 Managing Change and Innovation
Chapter 11 Managing Change and InnovationChapter 11 Managing Change and Innovation
Chapter 11 Managing Change and Innovation
 
Power & politics in organizations
Power & politics in organizationsPower & politics in organizations
Power & politics in organizations
 
Audit presentation
Audit presentationAudit presentation
Audit presentation
 

Similar to Internal Control

Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)bagarza
 
Red Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level ControlsRed Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level ControlsSmith-Howard
 
Ch 7 controlling
Ch 7 controllingCh 7 controlling
Ch 7 controllingwaqole
 
Principles of Management Controlling
Principles of Management ControllingPrinciples of Management Controlling
Principles of Management ControllingDr. John V. Padua
 
F & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals PerspectiveF & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals PerspectiveGary Pennington
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptxSiraj332397
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptxSiraj332397
 
10.CONTROLLING.pptx
10.CONTROLLING.pptx10.CONTROLLING.pptx
10.CONTROLLING.pptxRISHIPJAIN
 
Internal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptxInternal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptxkamallochanpalei
 
El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007Danial Khan
 
AUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTESAUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTESGina Brown
 

Similar to Internal Control (20)

Internal control
Internal controlInternal control
Internal control
 
Chapter 7
Chapter 7Chapter 7
Chapter 7
 
Chapter 7
Chapter 7Chapter 7
Chapter 7
 
Internal controls in an IT environment
Internal controls in an IT environment Internal controls in an IT environment
Internal controls in an IT environment
 
Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)Audit evidence a framework (ppt ch7[1].pdf)
Audit evidence a framework (ppt ch7[1].pdf)
 
Ebbpa3 b ch 9
Ebbpa3 b ch 9Ebbpa3 b ch 9
Ebbpa3 b ch 9
 
SFC Plan of engagement
SFC Plan of engagementSFC Plan of engagement
SFC Plan of engagement
 
Red Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level ControlsRed Flag Reporting - Organizational Level Controls
Red Flag Reporting - Organizational Level Controls
 
Ch 7 controlling
Ch 7 controllingCh 7 controlling
Ch 7 controlling
 
Monitoring
MonitoringMonitoring
Monitoring
 
Advance audit
Advance auditAdvance audit
Advance audit
 
Principles of Management Controlling
Principles of Management ControllingPrinciples of Management Controlling
Principles of Management Controlling
 
F & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals PerspectiveF & I Administration Processing Controls- An SSAE 16 Professionals Perspective
F & I Administration Processing Controls- An SSAE 16 Professionals Perspective
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptx
 
Risk-Assessment-.pptx
Risk-Assessment-.pptxRisk-Assessment-.pptx
Risk-Assessment-.pptx
 
10.CONTROLLING.pptx
10.CONTROLLING.pptx10.CONTROLLING.pptx
10.CONTROLLING.pptx
 
Internal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptxInternal_Audit_Presentation.pptx
Internal_Audit_Presentation.pptx
 
Compliance
ComplianceCompliance
Compliance
 
El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007El-Paso SOX TestingTraining- June 2007
El-Paso SOX TestingTraining- June 2007
 
AUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTESAUDITING EXAM REVISION NOTES
AUDITING EXAM REVISION NOTES
 

More from Salih Islam

Denetim - Güncel Yaklaşımlar
Denetim - Güncel YaklaşımlarDenetim - Güncel Yaklaşımlar
Denetim - Güncel YaklaşımlarSalih Islam
 
Internal audits role in compliance
Internal audits role in complianceInternal audits role in compliance
Internal audits role in complianceSalih Islam
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IASalih Islam
 
Evolving Risk Management
Evolving Risk ManagementEvolving Risk Management
Evolving Risk ManagementSalih Islam
 
Corporate Governance
Corporate GovernanceCorporate Governance
Corporate GovernanceSalih Islam
 
It audit methodologies
It audit methodologiesIt audit methodologies
It audit methodologiesSalih Islam
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit MethodologySalih Islam
 
Fraud Investigation
Fraud InvestigationFraud Investigation
Fraud InvestigationSalih Islam
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal auditSalih Islam
 
Assessing Strengths and Weaknesses
Assessing Strengths and WeaknessesAssessing Strengths and Weaknesses
Assessing Strengths and WeaknessesSalih Islam
 
The role of auditing in the erm process
The role of auditing in the erm processThe role of auditing in the erm process
The role of auditing in the erm processSalih Islam
 
Risk Based Audit Approach
Risk Based Audit ApproachRisk Based Audit Approach
Risk Based Audit ApproachSalih Islam
 
Internal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilitiesInternal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilitiesSalih Islam
 
Internal Audit Primary Mission
Internal Audit Primary MissionInternal Audit Primary Mission
Internal Audit Primary MissionSalih Islam
 
Summary of work experience
Summary of work experienceSummary of work experience
Summary of work experienceSalih Islam
 
Summary of Work Experience
Summary of Work ExperienceSummary of Work Experience
Summary of Work ExperienceSalih Islam
 

More from Salih Islam (20)

Denetim - Güncel Yaklaşımlar
Denetim - Güncel YaklaşımlarDenetim - Güncel Yaklaşımlar
Denetim - Güncel Yaklaşımlar
 
Internal audits role in compliance
Internal audits role in complianceInternal audits role in compliance
Internal audits role in compliance
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IA
 
Evolving Risk Management
Evolving Risk ManagementEvolving Risk Management
Evolving Risk Management
 
Corporate Governance
Corporate GovernanceCorporate Governance
Corporate Governance
 
It audit methodologies
It audit methodologiesIt audit methodologies
It audit methodologies
 
Independency
IndependencyIndependency
Independency
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit Methodology
 
Audit Fields
Audit FieldsAudit Fields
Audit Fields
 
Fraud Investigation
Fraud InvestigationFraud Investigation
Fraud Investigation
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal audit
 
Assessing Strengths and Weaknesses
Assessing Strengths and WeaknessesAssessing Strengths and Weaknesses
Assessing Strengths and Weaknesses
 
The role of auditing in the erm process
The role of auditing in the erm processThe role of auditing in the erm process
The role of auditing in the erm process
 
Risk Based Audit Approach
Risk Based Audit ApproachRisk Based Audit Approach
Risk Based Audit Approach
 
Internal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilitiesInternal auditors’ roles and responsibilities
Internal auditors’ roles and responsibilities
 
Internal Audit Primary Mission
Internal Audit Primary MissionInternal Audit Primary Mission
Internal Audit Primary Mission
 
Audit Cycle
Audit CycleAudit Cycle
Audit Cycle
 
Summary of work experience
Summary of work experienceSummary of work experience
Summary of work experience
 
Summary of Work Experience
Summary of Work ExperienceSummary of Work Experience
Summary of Work Experience
 
COSO
COSOCOSO
COSO
 

Recently uploaded

TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024Adnet Communications
 
Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...Americas Got Grants
 
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!Doge Mining Website
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03DallasHaselhorst
 
Darshan Hiranandani [News About Next CEO].pdf
Darshan Hiranandani [News About Next CEO].pdfDarshan Hiranandani [News About Next CEO].pdf
Darshan Hiranandani [News About Next CEO].pdfShashank Mehta
 
8447779800, Low rate Call girls in Dwarka mor Delhi NCR
8447779800, Low rate Call girls in Dwarka mor Delhi NCR8447779800, Low rate Call girls in Dwarka mor Delhi NCR
8447779800, Low rate Call girls in Dwarka mor Delhi NCRashishs7044
 
Chapter 9 PPT 4th edition.pdf internal audit
Chapter 9 PPT 4th edition.pdf internal auditChapter 9 PPT 4th edition.pdf internal audit
Chapter 9 PPT 4th edition.pdf internal auditNhtLNguyn9
 
Call Girls Contact Number Andheri 9920874524
Call Girls Contact Number Andheri 9920874524Call Girls Contact Number Andheri 9920874524
Call Girls Contact Number Andheri 9920874524najka9823
 
Financial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptxFinancial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptxsaniyaimamuddin
 
Guide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFGuide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFChandresh Chudasama
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCRashishs7044
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesKeppelCorporation
 
Fordham -How effective decision-making is within the IT department - Analysis...
Fordham -How effective decision-making is within the IT department - Analysis...Fordham -How effective decision-making is within the IT department - Analysis...
Fordham -How effective decision-making is within the IT department - Analysis...Peter Ward
 
International Business Environments and Operations 16th Global Edition test b...
International Business Environments and Operations 16th Global Edition test b...International Business Environments and Operations 16th Global Edition test b...
International Business Environments and Operations 16th Global Edition test b...ssuserf63bd7
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfKhaled Al Awadi
 
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City GurgaonCall Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaoncallgirls2057
 
Entrepreneurship lessons in Philippines
Entrepreneurship lessons in PhilippinesEntrepreneurship lessons in Philippines
Entrepreneurship lessons in PhilippinesDavidSamuel525586
 

Recently uploaded (20)

TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024TriStar Gold Corporate Presentation - April 2024
TriStar Gold Corporate Presentation - April 2024
 
Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...
 
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03
 
Darshan Hiranandani [News About Next CEO].pdf
Darshan Hiranandani [News About Next CEO].pdfDarshan Hiranandani [News About Next CEO].pdf
Darshan Hiranandani [News About Next CEO].pdf
 
Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)
 
8447779800, Low rate Call girls in Dwarka mor Delhi NCR
8447779800, Low rate Call girls in Dwarka mor Delhi NCR8447779800, Low rate Call girls in Dwarka mor Delhi NCR
8447779800, Low rate Call girls in Dwarka mor Delhi NCR
 
Chapter 9 PPT 4th edition.pdf internal audit
Chapter 9 PPT 4th edition.pdf internal auditChapter 9 PPT 4th edition.pdf internal audit
Chapter 9 PPT 4th edition.pdf internal audit
 
Call Girls Contact Number Andheri 9920874524
Call Girls Contact Number Andheri 9920874524Call Girls Contact Number Andheri 9920874524
Call Girls Contact Number Andheri 9920874524
 
Call Us ➥9319373153▻Call Girls In North Goa
Call Us ➥9319373153▻Call Girls In North GoaCall Us ➥9319373153▻Call Girls In North Goa
Call Us ➥9319373153▻Call Girls In North Goa
 
Financial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptxFinancial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptx
 
Guide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFGuide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDF
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation Slides
 
Fordham -How effective decision-making is within the IT department - Analysis...
Fordham -How effective decision-making is within the IT department - Analysis...Fordham -How effective decision-making is within the IT department - Analysis...
Fordham -How effective decision-making is within the IT department - Analysis...
 
International Business Environments and Operations 16th Global Edition test b...
International Business Environments and Operations 16th Global Edition test b...International Business Environments and Operations 16th Global Edition test b...
International Business Environments and Operations 16th Global Edition test b...
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
 
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City GurgaonCall Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaon
 
Entrepreneurship lessons in Philippines
Entrepreneurship lessons in PhilippinesEntrepreneurship lessons in Philippines
Entrepreneurship lessons in Philippines
 
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
 

Internal Control

  • 1.
  • 3. Summary of Internal Control Definition A process, effected by the entity’s board of directors, management, and other personnel, designed to provide reasonable assurance regarding, achievement of (the entity’s) objectives on: –Effectiveness and efficiency of operations –Reliability of financial reporting –Compliance with applicable laws and regulations
  • 4. Control Objectives •In each area of internal control (financial reporting, operations and compliance) –Control objectives and –Sub objectives exist •Example: Area of financial reporting –Top level objective – prepare and issue reliable financial information –Detailed level applied to A/R sub objectives •All goods shipped are accurately billed in the proper period •Invoices are accurately recorded for all authorized shipments and only for such shipments •Authorized and only authorized sales returns and allowances are accurately recorded •The continued completeness and accuracy of A/R is ensured •Accounts receivable records are safeguarded
  • 5. Foreign Corrupt Practices Act •Passed in 1977 in response to American corporation practice of paying bribes and kickbacks to officials in foreign countries to obtain business •The Act –Requires an effective system of internal control –Makes illegal payment of bribes to foreign officials
  • 6. Controls over Financial Reporting •Preventive –Aimed at avoiding the occurrence of misstatements in the financial statements –Example: Segregation of duties •Detective –Designed to discover misstatements after they have occurred –Example: Monthly bank reconciliations •Corrective –Needed to remedy the situation uncovered by detective controls –Example: Backups of master file •Controls overlap –Complementary – function together –Redundant – address same assertion or control objective –Compensating – reduces risk existing weakness will result in misstatement
  • 7. Components of Internal Control •The Control Environment •Risk Assessment •The Accounting Information and Communication System •Control Activities •Monitoring
  • 8. Control Environment Factors •Integrity and ethical values •Commitment to competence •Board of directors or audit committee •Management philosophy and operating style •Organizational structure •Human resource policies and practices •Assignment of authority and responsibility
  • 9. Risk Assessment--Factors Indicative of Increased Financial Reporting Risk •Changes in the regulatory or operating environment •Changes in personnel •Implementation of a new or modified information system •Rapid growth of the organization •Changes in technology affecting production processes or information systems •Introduction of new lines of business, products, or processes
  • 10. Control Activities •Performance reviews •Information processing –General control activities –Application control activities •Physical controls •Segregation of duties –Segregate authorization, recording and custody of assets
  • 12. Objectives of an Accounting System •Identify and record valid transactions •Describe on a timely basis the transactions in sufficient detail to permit proper classification of transactions •Measure the value of transactions appropriately •Determine the time period in which the transactions occurred to permit recording in the proper period •Present properly the transactions and related disclosures in the financial statements
  • 13. Monitoring •Ongoing monitoring activities –Regularly performed supervisory and management activities –Example: Continuous monitoring of customer complaints •Separate evaluations –Performed on nonroutine basis –Example: Periodic audits by internal audit
  • 14. Limitations of Internal Control •Errors may arise from misunderstandings of instructions, mistakes of judgment, fatigue, etc. •Controls that depend on the segregation of duties may be circumvented by collusion •Management may override the structure •Compliance may deteriorate over time
  • 15. Enterprise Risk Management (ERM) •COSO issued a new internal control framework in 2004 on enterprise risk management. It does not replace the original COSO internal control framework. •It goes beyond internal control to focus on how organizations can effectively manage risks and opportunities. •The auditing standards are still structured around the original COSO internal control framework.
  • 16. Auditors’ Overall Approach with Internal Control •Overall approach of an audit 1. Plan the audit 2. Obtain an understanding of the client and its environment, including internal control 3. Assess the risks of material misstatement and design further audit procedures 4. Perform further audit procedures 5. Complete the audit 6. Form an opinion and issue the audit report •Steps 2-4 relate most directly to the role of internal control in financial statement audits
  • 17. 2. Obtain an understanding of the client and its environment, including internal control •The understanding of internal control is used to help the auditor to –Identify types of potential misstatements –Consider factors that affect the risks of material misstatement. –Design tests of controls (when applicable) and substantive procedures. •Auditors must consider all five internal control components –Control environment –Accounting information system –Risk assessment –Control activities –Monitoring •Also consider areas difficult to control like nonroutine transactions
  • 18. Obtaining the Understanding •Procedures include –Inquiring of entity personnel –Observing the application of specific controls –Inspecting documents and reports –Tracing transactions through the information system relevant to financial reporting •May also obtain evidence on operating effectiveness of various controls
  • 19. Documenting the Understanding of Internal Control •Questionnaires –Typically standardized by firm •Written Narratives –Memos that describe flow of transactions •Flowcharts –Systems flowcharts •Walk-through –Trace one or two transaction through cycle
  • 20.
  • 21. 3. Assess the risks of material misstatement General approach –Identify risks while obtaining an understanding of the client and its environment, including its internal control –Relate the identified risks to what can go wrong at the relevant assertion level –Consider whether the risks are of a magnitude that could result in a material misstatement –Consider the likelihood that the risks could result in a material misstatement
  • 22. The nature of transactions •Consider the nature of the transactions –Routine transactions—e.g., revenue, purchases, and cash receipts and disbursements –Nonroutine transactions—e.g., taking of inventory, calculating depreciation expense –Estimation transactions—e.g., determining the allowance for doubtful accounts •Generally routine transactions have the strongest controls
  • 23. Assessing Risks at the Financial Statement Level •Examples –Preparing the period-end financial statements, including the development of significant accounting estimate and preparation of the notes –The selection and application of significant accounting policies –IT general controls –The control environment •Responses to high risks –Assigning more experience staff or those with specialized skills –Providing more supervision and emphasizing the need to maintain professional skepticism –Incorporating additional elements of unpredictability in the selection of further audit procedures to be performed –Increasing the overall scope of audit procedures, including the nature, timing or extent
  • 24. Assessing Risks at the Assertion Level •Examples –Failure to recognize an impairment loss on a long- lived asset affects only the valuation assertion –Inaccurate counting of inventory at year-end affect the valuation of inventory and the accuracy of cost of goods sold •Responses –Decisions are made here as to the appropriate combination of tests of controls and substantive procedures
  • 25. 4. Perform Further Audit Procedures – Test of Controls (1/2) •Approach: –Identify controls likely to prevent or detect material misstatements –Perform tests of controls to determine whether they are operating effectively •Tests of controls address: –How controls were applied –The consistency with which controls were applied –By whom or by what means (e.g., electronically) the controls were applied
  • 26. 4. Perform Further Audit Procedures – Test of Controls (1/2) •Tests of controls include: –Inquiries of appropriate client personnel –Inspection of documents and reports –Observation of the application of controls –Reperformance of the controls •The results of the tests of controls are used to determine the nature, timing and extent of substantive procedures
  • 27. Diagram of the Auditors’ Consideration of Internal Control
  • 28. Other Considerations •Audit decision aids –Checklist, standard form or computer program that helps auditors make a decision by ensuring that they have all relevant information or by assisting them in combining the information. •Use of the work of internal auditors –Must assess internal audit competence and objectivity and test work –Can rely on work of internal audit to reduce amount of testing done by independent auditors
  • 29. Relationships Among Deficiencies Deficiency in Internal Control Less than Significant Material Significant Deficiency Weakness
  • 30. Management’s Report on Internal Control under Section 404a •Acknowledgment of responsibility for internal control •An assessment of internal control effectiveness as of the last day of the company’s fiscal yearn using suitable criteria •Support the evaluation with sufficient evidence
  • 31. Approach to Audit of Internal Control under Section 404b •This section applies to public companies with a market capitalization of $75 million or more. For those companies, the auditors audit internal control as a part of an integrated audit as follows: –Plan the engagement –Use a top-down approach to identify the controls to test –Test and evaluate design effectiveness of internal control –Test and evaluate operating effectiveness of internal control –Form an opinion on effectiveness of internal control over financial reporting
  • 32. Internal Control in the Small Company •Due to lack of employees, internal control is seldom strong in small businesses •Specific practices for small businesses –Record all cash receipts immediately –Deposit all cash receipts intact daily –Make all payments by serially numbered checks, with exception of petty cash disbursements –Reconcile bank accounts monthly and retain copies –Use serially numbered invoices, Pos, and receiving reports –Issue checks to vendors only in payment of approved invoices that have been matched with purchase orders and receiving reports –Balance subsidiary ledger with control accounts –Prepare comparative financial statements monthly to disclose significant variations in any category of revenue or expense