Guide to Using International Standards on Auditing in - IFAC
Guide to Using International Standards on Auditing in - IFAC Guide to Using International Standards on Auditing in - IFAC
34
35
- Page 1 and 2: Guide to</
- Page 3 and 4: 3 Guide to
- Page 5 and 6: 5 Guide to
- Page 7 and 8: Disclaimer This Guide</stro
- Page 9 and 10: 9 Guide to
- Page 11 and 12: 11 Guide t
- Page 13 and 14: 13 2. Clarified ISAs In March 2009,
- Page 15 and 16: 15 Guide t
- Page 17 and 18: 17 Guide t
- Page 19 and 20: Volume 1 Core Concepts
- Page 21 and 22: 21 Guide t
- Page 23 and 24: 23 Guide t
- Page 25 and 26: 25 Guide t
- Page 27 and 28: 27 Guide t
- Page 29 and 30: 29 Guide t
- Page 31 and 32: 31 Guide t
- Page 33: 33 Guide t
- Page 37 and 38: 37 Guide t
- Page 39 and 40: 39 Guide t
- Page 41 and 42: 41 Guide t
- Page 43 and 44: 43 Guide t
- Page 45 and 46: 45 Guide t
- Page 47 and 48: 47 Guide t
- Page 49 and 50: 49 Guide t
- Page 51 and 52: 51 5. Internal Control — Purpose
- Page 53 and 54: 53 Guide t
- Page 55 and 56: 55 Guide t
- Page 57 and 58: 57 Guide t
- Page 59 and 60: 59 Guide t
- Page 61 and 62: 61 Guide t
- Page 63 and 64: 63 Guide t
- Page 65 and 66: 65 Guide t
- Page 67 and 68: 67 Guide t
- Page 69 and 70: 69 Guide t
- Page 71 and 72: 71 Guide t
- Page 73 and 74: 73 Guide t
- Page 75 and 76: 75 Guide t
- Page 77 and 78: 77 6. Financial Statement Assertion
- Page 79 and 80: 79 Guide t
- Page 81 and 82: 81 Guide t
- Page 83 and 84: 83 Guide t
35<br />
<str<strong>on</strong>g>Guide</str<strong>on</strong>g> <str<strong>on</strong>g>to</str<strong>on</strong>g> <str<strong>on</strong>g>Us<strong>in</strong>g</str<strong>on</strong>g> <str<strong>on</strong>g>Internati<strong>on</strong>al</str<strong>on</strong>g> <str<strong>on</strong>g>Standards</str<strong>on</strong>g> <strong>on</strong> <strong>Audit<strong>in</strong>g</strong> <strong>in</strong> the Audits of Small- and Medium-Sized Entities Volume 1—Core C<strong>on</strong>cepts<br />
ISAs do not dist<strong>in</strong>guish the audit approach required for a <strong>on</strong>e-pers<strong>on</strong> entity from that required for a nati<strong>on</strong>al<br />
entity employ<strong>in</strong>g thousands of people. An audit is an audit. C<strong>on</strong>sequently, the basic approach <str<strong>on</strong>g>to</str<strong>on</strong>g> an audit<br />
does not change just because the entity is small.<br />
The word “audit” is <strong>in</strong>tended <str<strong>on</strong>g>to</str<strong>on</strong>g> c<strong>on</strong>vey a clear message <str<strong>on</strong>g>to</str<strong>on</strong>g> users of f<strong>in</strong>ancial statements. That message is<br />
that the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r has obta<strong>in</strong>ed reas<strong>on</strong>able assurance that the f<strong>in</strong>ancial statements are free from material<br />
misstatements, regardless of the size or type of the entity that has been audited.<br />
This issue of proporti<strong>on</strong>ality was addressed by IAASB staff <strong>in</strong> a Staff Questi<strong>on</strong>s and Answers document,<br />
entitled Apply<strong>in</strong>g ISAs Proporti<strong>on</strong>ately with the Size and Complexity of an Entity, 1 issued <strong>in</strong> August 2009. Its<br />
purpose is <str<strong>on</strong>g>to</str<strong>on</strong>g> assist audi<str<strong>on</strong>g>to</str<strong>on</strong>g>rs <strong>in</strong> apply<strong>in</strong>g the clarified ISAs <strong>in</strong> a cost-effective manner. The resp<strong>on</strong>se <str<strong>on</strong>g>to</str<strong>on</strong>g> the<br />
questi<strong>on</strong> “How do ISAs address the different characteristics of a small entity from a larger, more complex<br />
entity” was as follows:<br />
“The audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r’s objectives are the same for audits of entities of different sizes and complexities. This,<br />
however, does not mean that every audit will be planned and performed <strong>in</strong> exactly the same way.<br />
The ISAs recognize that the specific audit procedures <str<strong>on</strong>g>to</str<strong>on</strong>g> be undertaken <str<strong>on</strong>g>to</str<strong>on</strong>g> achieve the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r’s<br />
objectives and <str<strong>on</strong>g>to</str<strong>on</strong>g> comply with the requirements of the ISAs may vary c<strong>on</strong>siderably depend<strong>in</strong>g <strong>on</strong><br />
whether the entity be<strong>in</strong>g audited is large or small and whether it is complex or relatively simple. The<br />
requirements of the ISAs, therefore, focus <strong>on</strong> matters that the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r needs <str<strong>on</strong>g>to</str<strong>on</strong>g> address <strong>in</strong> an audit<br />
and do not ord<strong>in</strong>arily detail the specific procedures that the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r should perform.<br />
The ISAs also expla<strong>in</strong> that the appropriate audit approach for design<strong>in</strong>g and perform<strong>in</strong>g further<br />
audit procedures depends <strong>on</strong> the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r’s risk assessment. For example, based <strong>on</strong> the required<br />
understand<strong>in</strong>g of the entity and its envir<strong>on</strong>ment, <strong>in</strong>clud<strong>in</strong>g its <strong>in</strong>ternal c<strong>on</strong>trol and the assessed risks<br />
of material misstatement, the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r may determ<strong>in</strong>e that a comb<strong>in</strong>ed approach us<strong>in</strong>g both tests<br />
of c<strong>on</strong>trols and substantive procedures is an effective approach <strong>in</strong> the circumstances <strong>in</strong> resp<strong>on</strong>d<strong>in</strong>g<br />
<str<strong>on</strong>g>to</str<strong>on</strong>g> the assessed risks. In other cases, for example, <strong>in</strong> the c<strong>on</strong>text of an SME audit where there are not<br />
many c<strong>on</strong>trol activities <strong>in</strong> the SME that can be identified by the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r, the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r may decide that<br />
it is efficient <str<strong>on</strong>g>to</str<strong>on</strong>g> perform further audit procedures that are primarily substantive procedures.<br />
It is also important <str<strong>on</strong>g>to</str<strong>on</strong>g> note that the ISAs acknowledge that the appropriate exercise of professi<strong>on</strong>al<br />
judgment is essential <str<strong>on</strong>g>to</str<strong>on</strong>g> the proper c<strong>on</strong>duct of an audit. Professi<strong>on</strong>al judgment is necessary, <strong>in</strong><br />
particular, regard<strong>in</strong>g decisi<strong>on</strong>s about the nature, tim<strong>in</strong>g, and extent of audit procedures used <str<strong>on</strong>g>to</str<strong>on</strong>g><br />
meet the requirements of the ISAs and gather audit evidence. However, while the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r of an<br />
SME needs <str<strong>on</strong>g>to</str<strong>on</strong>g> exercise professi<strong>on</strong>al judgment, this does not mean that the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r can decide not<br />
<str<strong>on</strong>g>to</str<strong>on</strong>g> apply a requirement of an ISA except <strong>in</strong> excepti<strong>on</strong>al circumstances and provided that the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r<br />
performs alternative audit procedures <str<strong>on</strong>g>to</str<strong>on</strong>g> achieve the aim of the requirement.”<br />
The key po<strong>in</strong>ts <strong>in</strong> the excerpt above can be summarized as follows:<br />
• Audit objectives are the same for any size of audit;<br />
• The specific audit procedures required may vary c<strong>on</strong>siderably depend<strong>in</strong>g <strong>on</strong> the size of entity and<br />
the assessed risks;<br />
• The ISAs focus <strong>on</strong> matters the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r needs <str<strong>on</strong>g>to</str<strong>on</strong>g> address—not <strong>on</strong> the details of specific procedures;<br />
• The design of further audit procedures depends <strong>on</strong> the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r’s risk assessment;<br />
1 Apply<strong>in</strong>g ISAs Proporti<strong>on</strong>ately with the Size and Complexity of an Entity is at:<br />
http://web.ifac.org/publicati<strong>on</strong>s/<strong>in</strong>ternati<strong>on</strong>al-audit<strong>in</strong>g-and-assurance-standards-board/practice-alerts-and-q-as#apply<strong>in</strong>g-isas-proporti<strong>on</strong>ate