...Internal Control and Risk Evaluation Lola Knaff ACC 542 April 22, 2013 Anita Rodriguez Internal Control and Risk Evaluation The internal control and risk evaluation aspect of accounting is crucial to protect the business’ assets and resources. In addition, for publically traded companies it is mandatory for there to be internal control procedures. “Internal control describes the policies, plans, and procedures implemented by a firm to protect its assets” (Bagranoff, 2008, p. 240). The necessary procedures are in place to ensure the validity and efficiency of the data that the users input into the Accounting Information Software (AIS). The flowcharts reveal the pattern for the accounts receivable, accounts payable, inventory process, and payroll processes. Each process will generate many levels of risk factors that can be reduced by several internal control procedures. According to Hunton, Bryant, and Bagranoff (2004), the assessment of IT risks are by the managers and auditors to determine how to apply resources (p. 51). The cost-benefit analysis is crucial to ensure that the cost of the internal control to reduce the risk does not increase the monetary value of the control. The purpose of the internal control application is to create a smooth operating procedure that does not deter effectiveness and efficiency of the data. Along with the AIS internal controls, there are other controls that will assist in creating a trustworthy working environment...
Words: 1131 - Pages: 5
...Real McCoy – Lower 6 Alpha 1 Accounting Internal controls Literature Review Internal control is the process designed to ensure reliable financial reporting, effective and efficient operations, and compliance with applicable laws and regulations. The internal controls safeguard assets against theft and unauthorized use, acquisition, or disposal is also part of internal control (www.cliffnotes.com). Why are internal controls important? Internal controls help to provide reliable data by ensuring that information is recorded in a consistent way that will allow for useful financial reports. They also help prevent fraud and loss by safeguarding assets and essential records. Internal controls promote operational efficiency by reducing unnecessary duplication of effort and guarding against misallocation of resources. In addition they encourage adherence to management policies and funding source requirements. Examples of controls sourced from www.mango.org.uk Delegated authority The Board of Trustees delegates authority through the Chief Executive for the day-to-day running of the organization. In a large and busy organization it is not practical to expect one person to make all the decisions and authorize all transactions. The Chief Executive will, therefore, further delegate authority to members of the staff team to relieve the load and to ensure smooth operation during absences of key staff (compasspoint.org). Every organization should decide in advance who should do what...
Words: 2345 - Pages: 10
...Chapter 1 Auditing and Internal Control Review Questions 1. What is the purpose of an IT audit? Response: The purpose of an IT audit is to provide an independent assessment of some technology- or systems-related object, such as proper IT implementation, or controls over computer resources. Because most modern accounting information systems use IT, IT plays a significant role in a financial (external audit), where the purpose is to determine the fairness and accuracy of the financial statements. 2. Discuss the concept of independence within the context of a financial audit. How is independence different for internal auditors? Response: The auditor cannot be an advocate of the client, but must independently attest to whether GAAP and other appropriate guidelines have been adequately met. Independence for internal auditors is different because they are employed by the organization, and cannot be as independent as the external auditor. Thus internal auditors must use professional judgment and independent minds in performing IA activities. 3. What are the conceptual phases of an audit? How do they differ between general auditing and IT auditing? Response: The three conceptual phases of auditing are: i. Audit planning, ii. Tests of internal controls, and iii. Substantive...
Words: 8859 - Pages: 36
...Internal Controls Internal controls are a necessary part of any company. They are comprised of all the methods and measures used by a company to one of two things. (Wetland, Kieso, & Kimmel, 2003,) They either safeguard a companies assets from things such as theft or unauthorized use, or they help to enhance the accuracy and dependability of a companies accounts and records. This second use helps to ensure that fewer errors are made wither intentional or unintentional. Without internal controls, there would be a lot of room for mistakes that could potentially destroy a company. For example, accounts could be stolen from and manipulated or a simple calculation could be missed, upsetting the entire balance of the accounts. These internal controls help to ensure that these things do not happen. In 2002, congress passed the Sarbanes-Oxley act due to the rising amount of corporate scandals in the previous years. This act is often said to be one of the most important acts passed in decades because it allows companies to focus more on internal controls and give them more attention. The act is often calls SOX for short and it puts more pressure on the executives and directors to ensure that their internal controls are reliable and are working to the best of their ability. The act requires companies to have internal controls specifically for financial accounting including auditors and frequent assessments. This act also established the Public Company Accounting Oversight Board or...
Words: 1001 - Pages: 5
...statements are prepared, in all material aspects, in accordance with an applicable financial reporting framework * To report on the financial statements and communicate in accordance with the auditor’s findings Audit Process Overview: * Step 1: Client Acceptance and Retention * Step 2: Risk Assessment (Through understanding client business environment and operations Assess risks of material misstatement Assess Audit Risk) * Step 3: Audit Procedures Planning * Step 4: Test of controls (IF reliance on controls) * Step 5: Perform substantive tests * Step 6: Audit Completion and Reporting Financial Statement Assertions: * Assertions are representations made by management, explicit or otherwise, that are embodied in F/S, as used by auditor to consider the different types of potential misstatements that may occur * Focus on assertions as: * Different risks result in different risks of misstatements affect different assertions (transactions and account balances can be misstated in different ways with different assertions being affected, eg. Fictitious credit sales Occurrence) * Depending on...
Words: 7274 - Pages: 30
...Management's attitude toward aggressive financial reporting and its emphasis on meeting projected profit goals most likely would significantly influence an entity's control environment when [pic][pic] A. The audit committee is active in overseeing the entity’s financial reporting policies. Answer A is incorrect. An active audit committee tends to temper management's aggressive stance. [pic] B. External policies established by parties outside the entity affect its accounting practices. Answer B is incorrect. External policies tend to moderate such management tendencies. [pic] C. Management is dominated by one individual who is also a shareholder. Answer C is correct because these noted factors tend to have an especially significant influence on the control environment when management is dominated by one or a few individuals. Such a circumstance allows management to effectively implement aggressive financial reporting and emphasize meeting profit goals. [pic] D. Internal auditors have direct access to the board of directors and entity management. Answer D is incorrect. Internal auditors tend to mitigate management's aggressive attitude. close Control environment. The control environment factors set the tone of an organization, influencing the control consciousness of its people. The seven control environment factors, which you may remember using the mnemonic IC HAMBO, are |I |- |Integrity and ethical values ...
Words: 26520 - Pages: 107
...Chapter 7 – Internal Controls • Key topics: • Know the broad definition of internal control and its purposes, including the objective that is particularly relevant to an audit (i.e. reliability of financial reporting) A process, effected by the entity's board of directors, management, and other personnel, designed to provide reasonable assurance regarding the achievement of objectives relating to operations (effective and efficient operations), reporting (accurate financial reporting) and compliance (compliance with laws and regulations) • Describe the 5 components of internal control, related examples of each, and how each contributes to the overall control system within an entity (CRIME) 1. Control Environment: The foundation for the other internal control components; it is defined by the standards, processes, and structures that guide individuals in carrying out their duties. Basic principles include: Commitment to integrity and ethical values, Board of directors demonstrates independence from management and exercises effective oversight of internal control, Establishment of effective structure, including reporting lines, and appropriate authorities and responsibilities, Commitment to attract, develop, and retain competent employees, and Holding employees accountable for internal control responsibilities. 2. Risk Assessment: Risk assessment is management's process for identifying, analyzing, and responding to risks from internal and external sources that threaten...
Words: 7297 - Pages: 30
...Running head: Internal Control and Risk Evaluation Internal Control and Risk Evaluation The purpose of this brief is to identify and analyze possible risks, internal control points, design internal controls, evaluate the application of internal controls and discuss other outside controls, that Kudler Fine Foods may need to upgrade the computer systems. Analysis of Risks of Computer Systems After reviewing the previous flowcharts it is recommended that Kudler Fine Foods automate more of its accounts payable, accounts receivable, inventory, and payroll processes and standardize these processes across all Kudler locations. Therefore, increased computer controls will be needed to ensure the security of data. Computer data could be compromised if proper computer controls are not in place. Risks include theft of confidential and sensitive information stored on computer servers such as company bank account information or personnel records of Kudler clientele and staff. If proper internal controls are not implemented breaches of sensitive data stored in folders that are accessible through the Internet will be exposed through file sharing software with the other Kudler locations. Identify risks and internal control points Identifying risks and internal controls are imperative when information systems are used extensively throughout the fundamental business processes. Information systems general controls are the policies and procedures that apply to all...
Words: 1267 - Pages: 6
...Internal Control and Risk Evaluation – Kudler Fine Foods Lisa Cook University of Phoenix ACC/542 August 15, 2011 Internal Control and Risk Evaluation Internal controls and risk assessments are an integral part for a company to be successful. Management at Kudler Fine Foods has reviewed the flowcharts prepared and is requesting information on controls that will be required. Risks are none to be a negative event occurring in a company’s productivity. Internal controls are the policies and procedures put in place to reduce unforeseen occurrences associated with the risks. This brief will discuss the risks of Kudler Fine Food’s current Accounting Information System (AIS) evaluated by Team B and incorporate the controls into the flowcharts, design internal controls to mitigate risks to the systems, evaluate the application of internal controls to the systems, and discuss other controls, outside the system, that Kudler Fine Foods may need. Risks in the Systems According to Hunton, Bryant, & Bagranoff (2004), “business enterprises face a variety of risks, including business, audit, security, and continuity risks” (pg. 48). When analyzing Kudler Fine Foods current information system the team found that Kudler lacked internal controls and risk evaluations required to run their information system. Several concerns were brought up as major potential risks. The three risks focused on are those of business, security, and continuity. Several of Kudler’s risks within the...
Words: 923 - Pages: 4
...Executive Officer (CEO), Michael J. Koss, the founder’s son, and his family directly or indirectly own in excess of 70 percent of the company’s 851,000 shares. A $34 million embezzlement of cash from the Koss Corp. occurred over a 12 year period from 1997 through December 2009. June 30, 2009 10-K Report Excerpts The Koss Corp. received an unqualified opinion on its financial statements as of June 30, 2009 and 2008 (as well as in prior years) by a Big Five auditing firm. However, in accordance with SOX, the audit firm was not required to have, nor was it engaged to perform an audit of Koss’s internal control over financial reporting. The audit did include consideration of internal control over financial reporting as a basis for designing audit procedures that were appropriate in the circumstances, but not for the purpose of expressing an opinion on the effectiveness of Koss’s internal control over financial reporting. The following excerpts are...
Words: 3373 - Pages: 14
...Internal control, as its name implies, involves everything that controls risks to a business. With enterprise strategic management theory continuing to develop, the actual meaning of internal controls is of increasingly focused. “Internal controls are an important step to help safeguard assets against the unauthorized acquisition, use, or disposition.” Fabiano (2012) explains that “Internal controls can help minimize the risk of employee theft or fraud occurring in your organization.” While according to Thain (1969), who developed criteria for differentiating among small, medium and large firms, because small firms might face much more different kinds of problems than others, they would find that it would be difficult to implement the internal control procedures in their firms. This literature review sets out to explicate the significant impact of internal controls in small businesses in term of improving the efficiency of auditing. It would also take account of the extension of it, using internal controls to reduce employee theft in small businesses. It is clear in the literature that effective internal controls have contributed to small businesses to shorten the time spent on auditing, which would also provide a savings in audit fees. Different economists propose a similar attitude to the impact of internal controls on auditing. Hicks and Chenok (1957) put forward a theory to suggest auditors use internal control questionnaires to assist them to characterize a properly coordinated...
Words: 929 - Pages: 4
...would work as it is intended. Because of this, I have laid out a variety of internal controls to put into place to curb the risks that could be associated with using such a system. The risks will not only be evaluated, but solutions will be given to mitigate the risks associated with the different areas the new software is intended to help. Overall, the recommended course of action for KFF is to put in place multiple internal control elements to ensure the systems not only work efficiently to maximize profits, but work to guard against fraudulent activities. A big focus for this brief is making sure that Sarbanes-Oxley Act of 2002 is followed, specifically section 404, which states management’s responsibility for establishing and maintaining the internal controls and for management to reevaluate the internal control structure at the end of each year. In addition to this, it is recommended that the control environment is enhanced to better give credibility to the new internal controls. With the control environment changing, KFF will likely change some of their messaging to employees, including but not limited to the areas that deal with ethical values, integrity, overall management philosophy, and the way authority and responsibility is organized within KFF. Being so early on in the implementation of the new system, the majority of the brief presented will serve as preventive corrective controls....
Words: 1072 - Pages: 5
...Slide 1 The objective in the audit of the acquisition and payment cycle is to evaluate whether the accounts affected by the acquisitions of goods and services and the cash disbursements for those acquisitions are fairly presented in accordance with accounting standards. There are three classes of transactions included in the cycle: 1. Acquisitions of goods and services 2. Cash disbursements 3. Purchase returns and allowances and purchase discounts Slide 2 And all three transactions are either debited or credited to accounts payable. Ten typical accounts involved in the acquisition and payment cycle are shown by T accounts. Slide 3 For simplicity, we show only the control accounts for the three major categories of expenses used by most companies. For each control account, examples of the subsidiary expense accounts are also given. Slide 4 There are four business functions that occur in every business and the first three functions are for recording the acquisition of goods and services on account, and the fourth function is for recording cash disbursements. Processing purchase orders includes documents of purchase requisition which is used to request goods and services by an authorized employee. Such as, materials by production staff or the storeroom supervisor. And second document is purchase order. Receiving goods and services include documents of receiving report which is a paper or electronic document prepared at the time goods are received. Recognizing...
Words: 461 - Pages: 2
... Course No. ACC 650M (Auditing Principles) Submitted: 05 Feb, 2012 Module I: Assessment of Inherent Risk Requirement 1. Biltrite bicycles Inc. was incorporated in 1970 and since then it has successfully added many bikes to its production line. The company has experienced steady growth in sales and profitability of all product lines from the date of its incorporation. The following strengths in the organizations structure can be attributed to this success. The company follows segregation of duties in the accounts and the finance department. The audit staff consists of well experienced and trained personnel. The CEO is aware of the importance of risk assessment procedures and is in the process of establishing of risk assessment team. The description shows adequate separation within the CBIS function, i.e. systems analysis and programming are separate from data processing and control. There are areas where the reporting procedures are very strong and carried out very efficiently. The weaknesses consist of the dominant role played by the CEO, Mr. Trevor Lawton who is very aggressive and wants that the staff should focus on what he thinks is important. His philosophy is that the financial statements should look good. The controller of the company was at one time an employee of the auditing firm. So he is familiar with the firm’s auditing procedures and on that basis he can cover intentional misstatements The answers to requirements...
Words: 3316 - Pages: 14
...IP Shante Patterson ACCT205 AIU Online December 1, 2013 The internal control system should be intended to distinguish and prevent deception, mistakes and oversights, and material misstatements; then again it can only provide sensible assurance that the financial statements are at liberty from material misstatements. The best designed internal control system will not avert management override or collusion. The internal controls system is only as good as the management backing behind the system; this comprises training employees and dynamically observing the controls. The cost of applying a specific control should not surpass the probable benefit of the control. On occasion there are no out-of-pocket costs to institute an acceptable control. Internal control procedures are the duty of the management. Every single control must be assessed based on risk and a cost/benefit inquiry. Several operational low cost procedures can be applied. These control procedures, when in service effectively, will arrange for a sensible assurance that mistakes will be either prohibited or identified. Instances of controls that would have make sure that the prepaid tunings were made would be to gather a check-list of cyclical monthly journal records, than as a part of the financial report evaluation procedure, this check-list ought to be looked over by the management. At each financial statement date, each balance sheet account is resolved; this will guarantee that every single balance is sustained...
Words: 532 - Pages: 3
