Planning and Developing a Financial Statement Audit

Audit Risk Model

Steps in the Audit Process

1. Client acceptance and retention

2. Planning and understanding the client

Understand client strategies and business processes (strategic and process analyses)

Risk Assessments

Planning analytics

3. Plan tests of financial statement assertions

4. Perform tests of financial statement assertions

Tests of control operating effectiveness and substantive tests

5. Wrapping up the audit

6. Audit reporting

2

Why is Risk Management So Critical to Auditors?

Fundamental to Client Acceptance:

Auditors only accept clients that have effectively managed risks unless willing to share in the costs associated with poor client risk management

Fundamental to Resource Allocation:

Auditors perform more tests related to aspects of the client presenting the highest risk exposure to the fair presentation of the financial statements

客户接受的基础：审计师只接受有效管理风险的客户，除非愿意分担与客户风险管理不良相关的成本

资源分配的基础：审计师执行更多与客户方面相关的测试，这些客户对财务报表的公允列报具有最高风险

3

Audit Risk Model

AR = IR × CR × DR

AR: Audit Risk

IR: Inherent Risk

CR: Control Risk

DR: Detection Risk

RMM: Risk of Material Misstatement

RMM

Inherent Risk: the risk of a MATERIAL misstatement assuming no internal controls.

Control Risk: the risk of the internal control failing to detect a MATERIAL misstatement.

Detection Risk: the risk of the audit procedures failing to detect a MATERIAL misstatement

Audit Risk Model

内在风险:假设没有内部控制，重大错报的风险。

控制风险:内部控制未能发现重大错报的风险。

发现风险:审计程序未能发现重大错报的风险

5

Audit Risk (AR)

Risk the auditor expresses an inappropriate opinion

The auditor determines what level of AR is acceptable for a given client

Distribution of ownership

Business risk to audit firm

Client size

Litigation environment

AR = IR × CR × DR

RMM

审核员确定给定客户可接受的AR级别

所有权分配

审计公司的业务风险

客户规模

诉讼环境

6

What is Appropriate Audit Risk?

Due Professional Care: Methods for Minimizing Audit Risk

There is a trade-off: Maximum such that opinion can be issued without much risk that financial statements are materially misstated.

AR   Evidence

Relationship between audit risk and the need for evidence is inverse

Risk of Material Misstatement (RMM)

Not directly influenced by auditor

Assessed by the auditors

Risk that financial statements are materially misstated prior to audit

AR = IR × CR × DR

RMM

不直接受审计师的影响

由审计员评估

在审计之前财务报表存在重大错报的风险

8

Inherent Risk (IR)

Susceptibility of an assertion to material misstatement (individually or in aggregate)

Assumes no related internal controls

Important factors

Client’s business

Management’s integrity

Client competence

Rush to produce financial statements

Pressure to hit key metrics

Number and nature of related parties

Routineness of transactions

AR = IR × CR × DR

RMM

声明对重大错报的敏感性（单独或合计）

假设没有相关的内部控制

重要因素

客户的业务

管理层的诚信

客户能力

急于编制财务报表

达到关键指标的压力

关联方的数量和性质

交易的常规性

9

Control Risk (CR)

Risk that internal control won’t prevent or detect and correct a material misstatement (individually or in aggregate)

Assessment based on understanding of client and testing of internal control

Auditor may choose to assess control risk at maximum and forgo testing for private clients

Important factors

Control environment (tone at the top)

Board of directors and audit committee

Internal audit

Effectiveness of accounting system

Strength of internal control system

AR = IR × CR × DR

RMM

内部控制不会阻止或发现和纠正重大错报的风险（单独或汇总）

基于对客户的理解和内部控制测试的评估

审计员可以选择最大限度地评估控制风险，并为私人客户进行放弃测试

重要因素

控制环境（顶部音调）

董事会和审计委员会

内部审计

会计制度的有效性

内部控制系统的优势

10

Detection Risk (DR)

Risk that auditor fails to detect a material misstatement (individually or in aggregate)

Directly influenced by the auditor

Auditors reduce DR by increasing the quantity and quality of their testing

Two primary components

Substantive analytical procedures

Tests of details

Auditors control AR through DR

AR = IR × CR × DR

RMM

实质性分析程序

测试细节

11