5.63 a. In planning an audit, an auditor's understanding of the internal control components should be used to identify the types of potential misstatements that could occur, to consider the factors affecting the risk of material misstatement, and to influence the design of substantive procedures. b. An auditor obtains an understanding of the design of relevant internal control procedures (policies and procedures) and whether they have been implemented. Assessing control risk below the maximum level further involves identifying specific control procedures (policies and procedures) relevant to specific assertions that are likely to prevent or detect material misstatements in those assertions. It also involves performing tests of controls to evaluate the operating design and effectiveness of the client's control procedures. c. When seeking a further reduction in the assessed level of control risk, an auditor should consider whether additional audit evidence sufficient to support a further
This is the end of the preview.
access the rest of the document.