OverviewISA 315 (Revised) deals with the auditor’s responsibility to identify and assess the risks of material misstatement in the financial statements, through understanding the entity and its environment, including the entity’s internal control. In July 2018, the IAASB issued for public comment an Exposure Draft of proposed revisions to ISA 315 (Revised), Identifying and Assessing the Risks of Material Misstatement, in order to advance audit quality. The IAASB is proposing more robust requirements and improved guidance to: (i) drive consistent and effective identification and assessment of risks of material misstatement; (ii) modernize ISA 315 to meet evolving business needs, including information technology, and how auditors use automated tools and techniques, including data analytics, to perform audit procedures; (iii) improve the standard’s applicability to entities across a wide spectrum of circumstances and complexities; and (iv) focus auditors on exercising professional skepticism throughout the risk identification and assessment process. In December 2019, the IAASB finalized and issued its revisions to ISA 315. Subsequently, the AASB approved the corresponding changes to CSA 315 and issued these revisions to the CPA Canada Handbook – Assurance in May 2020. The revisions to CAS 315: (i) distinguish the nature and extent of work needed for indirect and direct controls in the system of internal control; (ii) clarify which controls need to be identified for evaluating the design of a control, and determining whether the control has been implemented; (iii) highlight scalability of the standard by keeping the principles-based requirements focused on what needs to be done, and using separate headings in the application material to illustrate scaling up for more complex situations and scaling down for less complex situations; (iv) clarify the definition of "significant risk" and explicitly introduce the concept of spectrum of inherent risk to assist the auditor in making a judgment, based on the likelihood and magnitude of a possible misstatement, on a range from higher to lower, when assessing risks of material misstatement; (v) introduce the concept of inherent risk factors, including complexity, subjectivity, change, uncertainty or susceptibility to misstatement due to management bias or other fraud risk factors insofar as they affect inherent risk; (vi) introduce the concepts of "significant classes of transactions, account balances and disclosures" and relevant assertions" to assist with the identification and assessment of the risk of material misstatement; (vii) separate the assessment of inherent and control risk; (viii) enhance the auditor's considerations in relation to the entity's use of information technology and how it affects the audit, and include considerations for using automated tools and techniques in the application material; (ix) introduce a requirement to "stand back" to evaluate the completeness of the significant classes of transactions, account balances and disclosures at the end of the risk assessment process; (x) use more explicit language and enhance requirements and application material to reinforce the importance of exercising professional skepticism when performing risk assessment procedures; and (xi) clarify the threshold for identifying possible risks of material misstatement in CAS 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance with Canadian Auditing Standards. Revised CAS 315 is effective for audits of financial statements for periods beginning on or after December 15, 2021. Earlier application is permitted. As a result of issuing revised CAS 315, requirements in the following standards have been amended to articulate more clearly the auditor's responsibilities regarding identifying and assessing the risks of material misstatement:
Other developmentsMay 2020On May 4, 2020, the AASB released the Basis for Conclusions, which summarizes the process the AASB followed in revising CAS 315, Identifying and Assessing the Risks of Material Misstatement. On May 1, 2020, the AASB issued to revisions to CSA 315 to the CPA Canada Handbook – Assurance. December 2019On December 19, 2019, the IAASB released International Standard on Auditing (ISA) 315 (Revised 2019), its revised standard for identifying and assessing risks of material misstatement. July 2019In July 2019, the AASB staff updated this project to note that the Board expects to finalize the Handbook material in Q1/2020. January 2019On January 31, 2019, the AASB issued a supplement to the September 2018 Exposure Draft, “Identifying and Assessing the Risks of Material Misstatement” (ED-CAS 315), to explain and illustrate the proposed conforming amendments to revised CAS 540, and paragraph A42 of CAS 200, arising from ED-CAS 315. Comments are requested by May 1, 2019. September 2018On September 6, 2018, the AASB issued an Exposure Draft proposing the adoption of ISA 315 (Revised), with appropriate Canadian amendments, if any. Stakeholders are invited to comment until November 2, 2018. July 2018On July 16, 2018, the IAASB issued for public comment an Exposure Draft of proposed revisions to ISA 315 (Revised). Comments are requested by November 2, 2018. June 2018In June 2018, the AASB staff updated this project to indicate that the AASB expects to issue an exposure draft in Q4/2018. November 2017In November 2017, the AASB staff updated this project to indicate that the AASB expects to issue an Exposure Draft for comment in Q3/2018. October 2016In October 2016, the AASB staff updated this project to advise that the AASB expects to issue an Exposure Draft in respect of this project in Q1/2018. July 2016On July 21, 2016, CPA Canada issued an article written by Eric Turner, Director, Auditing and Assurance Standards of CPA Canada, alerting readers to the fact that the IAASB is currently reviewing ISA 315 and the audit risk model with a view to making a number of improvements. Why is it important for an auditor to obtain an understanding internal control?The auditor should obtain an understanding of how IT affects control activities that are relevant to planning the audit. Some entities and auditors may view the IT control activities in terms of application controls and general controls.
Why is it important for the auditor to obtain sufficient level of knowledge of the entity's business?Obtaining an understanding of the entity's perfor- mance measures assists the auditor in considering whether such pressures result in management actions that may have increased the risks of material misstatement.
What is the importance of risk assessment for internal controls?A proper risk assessment can help an organization to manage risks and improve decision-making. It assures that efforts have been made to identify risk, implement preventative controls where possible, and mitigate damages.
Why is it important for you to know the importance of internal control?Internal controls minimize risks and protect assets, ensure accuracy of records, promote operational efficiency, and encourage adherence to policies, rules, regulations, and laws.
|