AUDIT ANALYTICS AUDIT

More documents

Recommendations

Info

ESSAY 6: MANAGING RISK AND THE AUDIT PROCESS instance, if historical findings suggest that a product specifications conformity rate of 99.999 percent is minimally acceptable from both product quality and customer satisfaction standpoints, then this might be perceived as a legitimate threshold value. Performing this type of analysis for each risk indicator will help ensure that functional threshold values are structured so that management, internal auditors, and external auditors are all able to proactively monitor and respond to the changing risk environment. Once KRIs and associated thresholds have been created and compiled by the project team and relevant stakeholders, auditors begin linking each KRI with the related subset of accounts and assertions to be tested (Moon 2014b). Objectives in this phase pertain mainly to understanding KRI impacts on financial statement information and, consequently, how audit activities should be modified in response to changing KRI levels when significant business risks are detected. As an example, one important audit assertion relates to valuation of assets. In an embedded component of testing this assertion, the auditor will seek to determine the reasonableness of any pertinent estimates such as depreciation, amortization, and allowances. For instance, imagine that a KRI and related set of tolerance limits based upon historical experience are implemented to monitor depreciation levels on fixed assets. When the KRI moves near or outside the acceptable boundary, auditors are alerted about an emerging risk relative to the valuation assertion for fixed assets. The accounts primarily affected in this case are non-current assets of a depreciable nature. In addition, an income statement account (that is, depreciation expense) is also affected, thus impacting net income in a potentially questionable manner. In response to increasing risk in this area, auditors would adjust the audit plan and testing activities so as to more heavily emphasize examination of depreciable assets as well as the reasonableness of depreciation amounts currently being recognized. If problems of a material nature are unearthed, then timely remedies can be proposed and implemented. In so doing, the auditor is positioned to productively modify the audit plan and related testing routines dynamically as changes in the risk landscape are reported by the CRMA system. The final step in figure 6-4 encapsulates the implementation phase for CRMA. In the auditing domain, the entire set of KRIs are continuously measured and reported by the CRMA system. When emerging risks are detected, auditors use this information to adjust the audit plan so that appropriate emphasis is placed on examining and testing the assertions, accounts, and controls that are most likely to be impacted. To ensure ongoing system relevance and reliability, KRIs are regularly maintained so that new measures are created, existing metrics are modified, and obsolete KRIs are eliminated as the risk profile dictates. 141
AUDIT ANALYTICS AND CONTINUOUS AUDIT:LOOKING TOWARD THE FUTURE Furthermore, associated threshold values and tolerance limits are addressed in a comparable manner. This requires continuous communication and vigilance by process owners, subject matter experts, management, and auditors, and is key to the long-run success of risk monitoring and assessment. Given that the risk landscape is dynamic, an effective monitoring system must be agile, and the CRMA approach can provide for this capability. CONCLUSION We live in an interconnected world where the risk landscape and business circumstances can and do change abruptly and unexpectedly. The traditional risk identification setting, wherein risk assessment is done as a discrete task and the risk landscape is not comprehensively monitored in an ongoing manner, is increasingly untenable in our evolving real-time global economy. Instead, a more fluid approach is necessary to monitor risks and facilitate modification of audit procedures and testing routines, thus resulting in higher quality audits with assurances that optimize the value added to corresponding information. Although CRMA is admittedly in a formative stage, it offers genuine promise in helping to achieving this vision. REFERENCES CEB Risk Management Leadership Council. "Develop SMART KRIs: Unlock the Potential of Predictive Analytics." The Corporate Executive Board Company. (2013). Financial Times. Black Swan. (2014). Retrieved from http://lexicon.ft.com/ Term?term=black-swan. Hill, C. W. L., and G. R. Jones. Strategic Management: An Integrated Approach (8th ed.). Boston MA: Houghton Mifflin Company, 2008. Institute of Operational Risk. "Operational Risk Sound Practice Guidance: Key Risk Indicators." (2010). Retrieved September 2014, from https://subscriber .riskbusiness.com/ComponentFiles/Website/InterestingReading_Filename_ 95.pdf. Institute of Operational Risk. "Key Risk Indicators." (2014). Retrieved September 2014, from https://www.ior-institute.org/sound-practice-guidance/key-riskindicators. Kuenkaikaew, S., and M. A. Vasarhelyi. "The Predictive Audit Framework." The International Journal of Digital Accounting Research 13 (2013): 37–71. Kuenkaikaew, S. Predictive Audit Analytics: Evolving to a New Era. Ph.D. Dissertation, Rutgers Business School, Rutgers University. (2013). Moon, D. "Continuous Risk Monitoring and Assessment (CRMA): New Component of Continuous Auditing Systems." PhD dissertation (working paper). Rutgers Business School, Rutgers University. (2014a) 142
Page 1 and 2:
AUDIT ANALYTICS and CONTINUOUS AUDI
Page 3 and 4:
Notice to Readers Audit Analytics a
Page 6 and 7:
TABLE OF CONTENTS Preface Acknowled
Page 8 and 9:
CONTENTS 3 Evolution of Auditing: F
Page 10:
CONTENTS B Page Implementing Contin
Page 13 and 14:
AUDIT ANALYTICS AND CONTINUOUS AUDI
Page 16 and 17:
AUTHOR BIOGRAPHIES Abdullah Alawadh
Page 18 and 19:
AUTHOR BIOGRAPHIES He is a passiona
Page 20 and 21:
AUTHOR BIOGRAPHIES AICPA Assurance
Page 22 and 23:
AUTHOR BIOGRAPHIES management. Prio
Page 24 and 25:
AUTHOR BIOGRAPHIES Trevor R. Stewar
Page 26:
PART I Essays 1
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53 and 54:
Page 55 and 56:
Page 57 and 58:
Page 59 and 60:
Page 61 and 62:
Page 63 and 64:
Page 65 and 66:
Page 67 and 68:
Page 69 and 70:
Page 71 and 72:
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
Page 85 and 86:
Page 87 and 88:
Page 89 and 90:
Page 91 and 92:
Page 93 and 94:
Page 95 and 96:
Page 97 and 98:
Page 99 and 100:
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
Page 112 and 113:
ESSAY 4 Reimagining Auditing in a W
Page 114 and 115:
ESSAY 4: REIMAGINING AUDITING IN A
Page 116 and 117: ESSAY 4: REIMAGINING AUDITING IN A
Page 128: ESSAY 4: REIMAGINING AUDITING IN A
Page 131 and 132: AUDIT ANALYTICS AND CONTINUOUS AUDI
Page 165: AUDIT ANALYTICS AND CONTINUOUS AUDI
Page 170: PART II Case Studies 145
Page 182 and 183: CASE STUDY B Implementing Continuou
Page 184 and 185: CASE STUDY B: IMPLEMENTING CONTINUO
Page 192: CASE STUDY B: IMPLEMENTING CONTINUO
Page 200 and 201: CASE STUDY D Implementing Continuou
Page 202 and 203: CASE STUDY D: IMPLEMENTING CONTINUO
Page 210: AICPA Assurance Services Executive
show all

AUDIT ANALYTICS AUDIT

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?