Which of the following would be least likely to be included in an auditors tests of control?

After obtaining an understanding of internal control and arriving at a preliminary assessed level of control risk, an auditor decided to perform tests of controls. The auditor most likely decided that:

A.

Additional evidence to support a reduction in the assessed level of control risk is not available.

B.

An increase in the assessed level of control risk is justified for certain financial statement assertions.

C.

It would be efficient to perform tests of controls that would result in a reduction in planned substantive procedures.

D.

There were many internal control deficiencies that would allow misstatements to enter the accounting system.

C.

It would be efficient to perform tests of controls that would result in a reduction in planned substantive procedures.

Which of the following is not ordinarily a procedure for documenting an auditor's understanding of internal control for planning purposes?

A.

Checklist.

B.

Flowchart.

C.

Questionnaire.

D.

Confirmation.

20.

A client's internal control appears strong, but the CPA has elected not to perform any tests of controls. The planned assessed level of control risk is at what level?

A.

Zero.

B.

Low.

C.

Moderate.

D.

Maximum.

Which of the following is not considered one of the five major components of internal control?

A.

Risk assessment.

B.

Segregation of duties.

C.

Control activities.

D.

Monitoring.

B.

Segregation of duties.

Which of the following statements is correct concerning the understanding of internal control needed by auditors?

A.

The auditors must understand the information system, not the accounting system.

B.

The auditors must understand monitoring and all preliminary accounting controls.

C.

The auditors must have a sufficient understanding to assess the risks of material misstatement.

D.

The auditors must understand the control environment, risk assessment, and all control activities.

C.

The auditors must have a sufficient understanding to assess the risks of material misstatement.

On financial statement audits, it is required that the auditors obtain an understanding of internal control, including:

A.

Its operating effectiveness.

B.

Whether it has been implemented (placed in operation).

C.

Performing tests of controls for all material controls.

D.

Its ability to provide reasonable assurance.

B.

Whether it has been implemented (placed in operation).

A significant deficiency:

A.

Differs from a material weakness in that it involves internal control over operations rather than internal control over financial reporting.

B.

Involves an amount of discovered misstatements greater than the amount used as the planning measure of materiality.

C.

Is identical to a material weakness except that it need not be communicated to those responsible for oversight of the company's financial reporting.

D.

Is less severe than a material weakness.

D.

Is less severe than a material weakness

Which of the following is most likely to be considered a risk assessment procedure relating to internal control?

A.

Confirm accounts receivable.

B.

Perform a test of a control relating to payroll.

C.

Take test counts of the year-end inventory.

D.

Trace a transaction through the information system relevant to financial reporting.

D.

Trace a transaction through the information system relevant to financial reporting.

Which statement is correct concerning the definition of internal control developed by the Committee of Sponsoring Organizations (COSO)?

A.

Its applicability is largely limited to internal auditing applications.

B.

It is recognized in the Statements on Auditing Standards.

C.

It emphasizes the effectiveness and efficiency of operations over the reliability of financial reporting.

D.

It suggests that it is important to view internal control as an end product as contrasted to a process or means to obtain an end.

B.

It is recognized in the Statements on Auditing Standards

The definition of internal control developed by the Committee of Sponsoring Organizations (COSO) includes controls related to the reliability of financial reporting, the effectiveness and efficiency of operations, and:

A.

Compliance with applicable laws and regulations.

B.

Effectiveness of prevention of fraudulent occurrences.

C.

Safeguarding of entity equity.

D.

Incorporation of ethical business practice standards.

A.

Compliance with applicable laws and regulations

39.

During financial statement audits, the auditors' consideration of their clients' internal control is integral to both assess the risk of material misstatement and to:

A.

Assess inherent risk.

B.

Design further audit procedures.

C.

Assess compliance with the Foreign Corrupt Practices Act.

D.

Provide a reasonable basis for an opinion on compliance with applicable laws.

B.

Design further audit procedures.

Which of the following comes closest to outlining the auditors' responsibility for considering internal control in all financial statement audits?

A.

An understanding of the control environment, information and communication, risk assessment and monitoring is necessary; an understanding of control activities is only necessary for areas in which the auditor is performing tests of controls.

B.

The auditor must obtain an understanding of each of the five internal control components sufficient to assess the risks of material misstatement for the audit.

C.

When tests of controls have been performed, control risk must be assessed at a level less than the maximum.

D.

An understanding of the control environment is necessary, but no understanding of the other components is necessary unless control risk is to be assessed at a level less than the maximum.

B.

The auditor must obtain an understanding of each of the five internal control components sufficient to assess the risks of material misstatement for the audit.

For effective internal control, which of the following functions should not be assigned to the company's accounting department?

A.

Reconciling accounting records with existing assets.

B.

Recording financial transactions.

C.

Signing payroll checks.

D.

Preparing financial reports.

C.

Signing payroll checks

Which of the following is not a responsibility that should be assigned to a company's internal audit department?

A.

Evaluating internal control.

B.

Approving disbursements.

C.

Reporting on the effectiveness of operating segments.

D.

Investigating potential merger candidates.

B.

Approving disbursements

Which of the following is true about the auditors' consideration of internal control in a financial statement audit?

A.

The auditors must assess control risk at a level lower than the maximum.

B.

The auditors must prepare a flowchart description of internal control for their working papers.

C.

The auditors must obtain an understanding of the steps in processing major types of transactions.

D.

The auditors must perform tests of controls.

C.

The auditors must obtain an understanding of the steps in processing major types of transactions

Which of the following is an advantage of describing internal control through the use of a standardized questionnaire?

A.

Questionnaires highlight weaknesses in the system.

B.

Questionnaires are more flexible than other methods of describing internal control.

C.

Questionnaires usually identify situations in which internal control weaknesses are compensated for by other strengths in the system.

D.

Questionnaires provide a clearer and more specific portrayal of a client's system than other methods of describing internal control.

A.

Questionnaires highlight weaknesses in the system

Which of the following is least likely to be considered a risk assessment procedure relating to internal control?

A.

Counting marketable securities at year-end.

B.

Inquiries of client personnel.

C.

Inspecting documents and reports.

D.

Observing the application of specific controls.

A.

Counting marketable securities at year-end.

Which of the following would be least likely to be considered a benefit of effective internal control?

A.

Eliminating all employee fraud.

B.

Restricting access to assets.

C.

Detecting ineffectiveness.

D.

Ensuring authorization of transactions.

A.

Eliminating all employee fraud

After documenting the client's prescribed internal control, the auditors will often perform a walk-through of each transaction cycle. An objective of a walk-through is to:

A.

Verify that the controls have been implemented (placed in operation).

B.

Replace tests of controls.

C.

Evaluate the major strengths and weaknesses in the client's internal control.

D.

Identify weaknesses to be communicated to management in the management letter.

A.

Verify that the controls have been implemented (placed in operation).

The major components of internal control include all of the following, except:

A.

Risk assessment.

B.

The control environment.

C.

Internal auditing.

D.

Control activities.

Which of the following is correct with respect to control deficiencies discovered during an audit?

A.

Auditors must communicate and recommend corrections relating to all material weaknesses in internal control to management.

B.

All material weaknesses in internal control should be reported to the audit committee.

C.

All such matters must be communicated to the audit committee and regulatory agencies.

D.

All control deficiencies are also significant deficiencies.

B.

All material weaknesses in internal control should be reported to the audit committee

54.

A service auditor's report on a service center should include a(n)

A.

Detailed description of the service center's internal control.

B.

Statement that the user of the report may assess control risk at the minimum level.

C.

Indication that no assurance is provided.

D.

Opinion on the operating effectiveness of the service center's internal control.

A.

Detailed description of the service center's internal control

After considering the client's internal control the auditors have concluded that it is well designed and is functioning as anticipated. Under these circumstances the auditors would most likely:

A.

Cease to perform further substantive procedures.

B.

Reduce substantive procedures in areas where the internal control was found to be effective.

C.

Increase the extent of anticipated analytical procedures.

D.

Perform all tests of controls to the extent outlined in the preplanned audit program.

B.

Reduce substantive procedures in areas where the internal control was found to be effective.

The use of fidelity bonds protects a company from embezzlement loses and also:

A.

Minimizes the possibility of employing persons with dubious records in positions of trust.

B.

Reduces the company's need to obtain expensive business interruption insurance.

C.

Allows the company to substitute the fidelity bonds for various parts of internal control.

D.

Protects employees who made unintentional errors from possible monetary damages resulting from such errors.

A.

Minimizes the possibility of employing persons with dubious records in positions of trust

In the consideration of internal control, the operating effectiveness of controls is tested by:

A.

Flowcharts verification.

B.

Tests of controls.

C.

Substantive procedures.

D.

Decision tables.

The auditors who become aware of an internal control significant deficiency are required to communicate this to the:

A.

Client's legal counsel.

B.

Compensation committee.

C.

Audit committee.

D.

Internal auditors.

66.

Well-designed internal control that is functioning effectively is most likely to detect a fraud arising from:

A.

The fraudulent action of several employees.

B.

The fraudulent action of an individual employee.

C.

Informal deviations from the official organization chart.

D.

Management fraud.

B.

The fraudulent action of an individual employee

In the consideration of internal control, the auditor is basically concerned that it provides reasonable assurance that:

A.

Management can not override the system.

B.

Operational efficiency has been achieved in accordance with management plans.

C.

Misstatements have been prevented or detected.

D.

Controls have not been circumvented by collusion.

C.

Misstatements have been prevented or detected.

Which of the following factors would most likely be considered an inherent limitation to an entity's internal control?

A.

The complexity of the information processing system.

B.

Human judgment in the decision making process.

C.

The ineffectiveness of the board of directors.

D.

The lack of management incentives to improve the control environment.

B.

Human judgment in the decision making process

Proper segregation of duties reduces the opportunities to allow any employee to be in a position to both

A.

Journalize cash receipts and disbursements and prepare the financial statements.

B.

Monitor internal controls and evaluate whether the controls are operating as intended.

C.

Adopt new accounting pronouncements and authorize the recording of transactions.

D.

Record and conceal fraudulent transactions in the normal course of assigned tasks.

D.

Record and conceal fraudulent transactions in the normal course of assigned tasks.

Of the following statements about internal control, which one is not valid?

A.

No one person should be responsible for the custodial responsibility and the recording responsibility for an asset.

B.

Transactions must be properly authorized before such transactions are processed.

C.

Because of the cost/benefit relationship, a client may apply control procedures on a test basis.

D.

Control activities reasonably insure that collusion among employees cannot occur.

D.

Control activities reasonably insure that collusion among employees cannot occur.

The internal control provisions of the Sarbanes-Oxley Act of 2002 apply to which companies in the United States:

A.

All companies.

B.

SEC registrants.

C.

Only those companies included in the Fortune 500.

D.

All nonpublic companies.

An integrated audit performed under Section 404b of the Sarbanes-Oxley Act addresses financial statements and:

A.

Compliance with laws.

B.

Internal control over asset safeguarding.

C.

Internal control over financial reporting.

D.

Suitable criteria.

C.

Internal control over financial reporting.

A report on internal control performed in accordance with PCAOB Standard No. 5 includes an opinion on internal control for:

A.

The entire year.

B.

The prior quarter.

C.

The "as of date."

D.

The end of each quarter.

When performing an audit of internal control under PCAOB requirements, auditors evaluate control:

A.

Option A

B.

Option B

C.

Option C

D.

Option D

When performing an internal control audit under PCAOB requirements, one or more material weaknesses in internal control that exist at year-end may result in what type of report(s):

A.

Option A

B.

Option B

C.

Option C

D.

Option D

When performing an internal control audit under PCAOB standards, one or more material weaknesses in internal control that exist at year-end may result in what type of report(s):

A.

Option A

B.

Option B

C.

Option C

D.

Option D

Which of the following is not a component of the control environment?

A.

Integrity and ethical values.

B.

Risk assessment.

C.

Commitment to competence.

D.

Organizational structure.

Which of the following is not a factor that is considered a part of the client's overall control environment?

A.

The organizational structure.

B.

The information system.

C.

Management philosophy and operating style.

D.

Board of directors.

B.

The information system

Tests of controls are most likely to be performed when:

A.

Controls seem weak and must be properly documented.

B.

Inadequate substantive procedures exist to restrict audit risk to an acceptable level.

C.

The auditor wishes to assess control risk at the maximum.

D.

The client's control environment appears weak.

B.

Inadequate substantive procedures exist to restrict audit risk to an acceptable level.

33.

Which of the following is not ordinarily considered a factor indicative of increased financial reporting risk when an auditor is considering a client's risk assessment policies?

A.

Salaried sales personnel.

B.

Implementation of a new information system.

C.

Rapid growth of the organization.

D.

Corporate restructuring.

A.

Salaried sales personnel

Which of the following is least likely to be considered a risk assessment procedure?

A.

Analytical procedures.

B.

Inspection of documents.

C.

Observation of the counting of inventory.

D.

Observation of the performance of certain accounting procedures.

C.

Observation of the counting of inventory.

The Sarbanes-Oxley Act of 2002 requires that the audit committee:

A.

Annually reassess control risk using information from the CPA firm.

B.

Be directly responsible for the appointment, compensation and oversight of the work of the CPA firm.

C.

Require that the company's CPA firm rotate the partner in charge of the audit.

D.

Review the level of management compensation.

B.

Be directly responsible for the appointment, compensation and oversight of the work of the CPA firm.

When a client uses a service organization to process certain transactions (e.g., its employee benefit plan), the auditor is least likely to obtain an understanding relating to these transactions by

A.

Contacting the service organization to obtain specific information.

B.

Visiting the service organization and performing procedures.

C.

Sending a confirmation request to the service organization

D.

Obtaining and reading a type 1 or type 2 report from the service organization.

C.

Sending a confirmation request to the service organization

Which statement is correct concerning the relevance of various types of controls to a financial statement audit?

A.

An auditor may ordinarily ignore the consideration of controls when a substantive audit approach is used.

B.

Controls over the reliability of financial reporting are ordinarily most directly relevant to an audit, but other controls may also be relevant.

C.

Controls over safeguarding assets and liabilities are of primary importance, while controls over the reliability of financial reporting may also be relevant.

D.

All controls are ordinarily relevant to an audit.

B.

Controls over the reliability of financial reporting are ordinarily most directly relevant to an audit, but other controls may also be relevant.

Which of the following is least likely to be a factor that might indicate to an auditor that an identified risk of misstatement requires special audit consideration?

A.

Complex calculations are involved.

B.

The rate of technological change is moderate in the industry.

C.

The potential for fraud seems high.

D.

Various subjective methods of application of a key accounting policy exist.

B.

The rate of technological change is moderate in the industry

The independent auditors might consider the procedures performed by the internal auditors because:

A.

They are employees whose work must be reviewed during substantive testing.

B.

They are employees whose work might affect the independent auditors' work.

C.

Their work impacts upon the cost/benefit tradeoff in evaluating inherent limitations.

D.

Their degree of independence may be inferred by the nature of their work.

B.

They are employees whose work might affect the independent auditors' work

The effectiveness of controls is not generally tested by:

A.

Inspection of documents and reports.

B.

Performance of analytical procedures.

C.

Observation of the application of accounting policies and procedures.

D.

Inquiries of appropriate client personnel.

B.

Performance of analytical procedures

Which of the following is intended to detect deviations from prescribed controls?

A.

Substantive procedures specified by a standardized audit program.

B.

Tests of controls designed specifically for the client.

C.

Analytical procedures as set forth in an industry audit guide.

D.

Computerized analytical procedures tailored for the configuration of the computer equipment in use.

B.

Tests of controls designed specifically for the client

Which of the following would be least likely to be included in an auditor's tests of controls?

A.

Inspection.

B.

Observation.

C.

Inquiry.

D.

Analytical procedures.

Which of the following would be least likely to be included in an auditors tests of controls?

Which of the following is least likely to be a test of control?

What are the five types of audit tests?

What type of audit would be considered the weakest type?