SlideShare a Scribd company logo

Mf0013 – internal audit and control

Download as DOCX, PDF
A
ak007420

smu mba sem 3 assingments 2013

EducationBusinessTechnology
1 of 8
Page 1 of 8 MF0013 – Internal Audit and Control Q1. Discuss, in brief, the advantages and limitations of auditing. Ans. Advantages of Financial Audit 1. Statutory financial audit gives the owners of a company and other stakeholders the assurance that annual financial reports give true and rational view about the company’s financial performance. 2. Tax audit viz., the audit of financials of the company based on which taxable income is determined and tax paid is mandatory. Tax auditor’s report has to be filed with the tax return. 3. Internal financial audit assists the CEO and his team of operating managers regularly and much more frequently in understanding the financial performance of the company and taking corrective actions necessary. 4. Financial audit is an invaluable tool for prevention and early detection of fraud and errors. 5. Audited financial report together with the auditors’ report is necessary for a company in sourcing funds from banks and other financial institutions. 6. The audited balance sheet of a company read with the auditor’s report is often the base document for valuation of companies in case mergers, acquisitions or outright sales. Limitations of Financial Audit 1. It is a post-mortem: The annual statutory audit is not a concurrent activity, but starts only after the year is over. Naturally, the auditor has to rely on explanations given to him by the accountant for activities that happened quite a while ago. The essential truth behind some of the figures may therefore still remain undiscovered. 2. It is a test check: The auditor cannot examine all the transactions given the time and cost constraints. He applies test checks using statistical sampling techniques. The inherent weaknesses of such methods carry an element of uncertainty or risk. Thus, auditing only reduces and does not eliminate the possibilities of erroror fraud. 3. Inherent limitations of internal control system: An auditor largely relies on the internal controls of the enterprise as he cannot check everything. Internal controls are the inbuilt checks and balances in the company’s accounting and administration. (a) Certain levels of management may override control and make exceptions to procedures. (b) Persons operating the internal control and employees or outside parties may collude and render the controls ineffective.
Page 2 of 8 Q2. Explain the key objectives of a good internal audit system. Write down the essentials for effective internal auditing. Ans. The key objectives of a good internal audit system are: 1. Evaluation of accounting controls: Ensuring that the checks and balances in the accounting processes are effective and provide the required accounting controls. 2. Compliance with policies and procedures: Verifying compliance with the policies and procedures laid down for key activities and reporting acts of omission and commission. For example, if a purchase order for capital equipment of any value requires the Purchase department to get at least 3 quotes, internal audit have to check if this rule has been followed in all cases, and report exceptions. 3. Protection and optimal utilisation of business assets: Ensuring physical availability and usefulness of fixed assets as per company’s records, and checking utilisation of major assets vis-à-vis plan. For example, a piece of equipment purchased has not been installed within a reasonable period of time. The auditor will check and report on the justification for the asset not having been put to use. 4. Testing the reliability of Management Information Systems (MIS): Reviewing the management reporting structure and the utility of reports flowing out of the system. Essentials for Effective Internal Auditing  Appropriate organisational status: The internal auditor should ideally report to the CEO and the Board of the company, and should not be brought under a Functional Head like the CFO.  Independence: Internal auditors must have independence at work. This facilitates them to offer impartial and unbiased opinion and advice.  Technical competence: The internal audit team should be professionally qualified, well-experienced and adequately trained.  Professional approach: The internal auditor should exercise due professional care in fulfilling his responsibilities. His professionalism should be evidenced by the existence of audit manuals, clear audit programs and neatly filed working papers for each job.  Reporting and follow-up: Audit findings must first be reported to the auditee and together with the auditee’s response the findings should be reported to top management, preferably with a recommended solution. Action agreed by the auditee should be followed up and its closure duly.
Page 3 of 8 Q3. List the required qualifications of an internal auditor. Describe the role of internal auditor in the company’s management. Ans. Qualifications of Internal Auditor When appointing an internal auditor, the management of a company looks for the following attributes: a. Necessary expertise to evaluate business control systems, especially financial and accounting controls: This is the crux of the internal audit function as the focus is always on financial performance and viability of the enterprise. b. Basic knowledge of the technology and commercial practices adopted by the business, since he is expected to evaluate the operational performance of the enterprise. c. Thorough knowledge of management theories and best-in-class practices. d. Excellent interpersonal skills: The auditors may at times have to comment adversely on the work of their own colleagues. They should be able to do this in an acceptable manner and yet produce the intended result. e. Unbiased reporting and strong professional approach. f. Unimpeachable integrity and the highest ethical standards. Role of Internal Auditor in the Company’s Management 1. Review of internal control systems: The internal auditor should review the internal control systems of the organisation. He should determine whether the existing control systems are appropriate and commensurate with the objectives, size, etc. of the organisation. For example a small company cannot afford a separate credit control department and so it will need strong controls in the sales accounting process to minimise customer payment default. 2. Review of safeguards for assets: The auditor should regularly review the adequacy of insurance covers for fixed assets and complete accounting of all transactions relating to fixed assets, etc. 3. Review of compliance with policies, plans, procedures and regulations: The internal auditor should include a regular checklist of compliances by different functions of laid down procedural requirements. When a non-observance is spotted, he should inquire and ascertain the reason for the deviation, and report the event together with the proposed solution. 4. Review of organisation structure: A well-designed organisation structure is the basic requirement for the smooth functioning of any organisation. Organisation structure defines the authorities and responsibilities of executives. The internal auditor should evaluate the organisation structure from the following dimensions: a. Simplicity and lack of ambiguity.
Page 4 of 8 b. Clear definition of authority and responsibility at each level. c. Balance of power, to ensure there is no undue dominance of any function. d. Balance of responsibility, to ensure proper unity of command and span of control. e. Effective communication of the organisation chart to all concerned. 5. Review of deployment of resources: The internal auditor reviews utilisation of resources deployed for the business – men, machines, money, materials and management – to identify deviations both by way of excessive use of resources and resources that are under-utilised. He would be able to do this vis-à-vis the planned capacities and resources, and should include in his report significant trends and happenings. 6. Review of reliability of information: The Management Reporting and Information System (MRIS) of the company is an important aspect to be reviewed by the internal auditor. The content, format, frequency and timeliness of key management reports should be evaluated by discussions with the functional mangers receiving the reports as well as with the finance manager who is usually the provider of the reports. The objective of this review is to see to what extent the information flow has helped in taking good decisions. 7. Review of achievement of company objectives: While the reviews in the foregoing paragraphs are centred on the management processes, the managers are essentially hired to deliver results and achieve the targets set for them. The internal auditor therefore reviews the final results achieved vis-à-vis planned results. As they say, the proof of the pudding is in the eating, and if for instance the company has under-performed, audit can make it clear whether the failure to achieve was for internal reasons or external factors beyond management’s control.
Page 5 of 8 Q4. Explain the basic principles of governing internal control. Ans. Basic Principles Governing Internal Control The basic principles governing internal control are as follows: 1. A proper system, preferably in writing, must be implemented so that origination, recording and accounting of business transactions take place in a standardised way. 2. The authority and responsibility of every official should be fixed. 3. Accounting entries should not be allowed without a supporting document. 4. No person should handle a transaction end to end: the work of a person should be checked automatically by another person in the same or another department. 5. Responsibility for the custody and control of assets should be segregated from the responsibility of accounting for the assets. 6. As far as possible controls should be built into the functions themselves. For example the objective of reducing credit risk and minimising collection period can be met through controls in the accounting and sales system instead of having a separate credit control function. 7. Every internal control should be established after a cost-benefit analysis. 8. Books of accounts should be maintained up to date. 9. The entity must have a system of rotation of duties among employees. Employees should be encouraged to take leave as per their roster, especially employees handling cash. 10. The system should have inbuilt verification system from independent records. For example verification of bank balances from bank statement, comparison of purchase ledger account with supplier statement, etc. 11. The system should facilitate cross-functional physical verification of assets: for example cash verification by Purchase official or inventory test-check by Accounts staff. 12. A reliable and accurate Management Information System (MIS) should be in place.
Page 6 of 8 Q5. Discuss the specific problems of Electronic Data Processing (EDP) relating to internal control. Ans. The implementation of internal control in an EDP system, give rise to the following problems: (a) Separation of duties: The responsibility for initiating transactions, recording transactions and custody of assets, lies with separate individuals in a manual system. This is a basic control necessity for any organisation. (b) Delegation of authority and responsibility: An essential characteristic of internal control is a clear line of authority and responsibility. However, in a computer system the delegation of authority and responsibility in a clear way may be difficult because multiple users may share some resources. (c) Competent and trustworthy personnel: Data processing technology is much more complex today as compared to the days of manual systems. Personnel who are highly skilled are required to develop, modify, operate and maintain computer systems today. (d) System of authorisations: There are two types of authorisations to execute transactions, issued by management. Policies that an organisation follows are established by general authorisations. In a manual system, auditors evaluate the adequacy of procedures for authorisation by examining the work of employees. However, in a computer system, a particular program may often have authorisation procedures embedded within. For example, the order entry module in a sales system may determine the price to be charged to a customer. (e) Adequate documents and records: A manual system requires adequate documents and records if it is to provide an audit trail of activities within the system. On the other hand, in computer systems, documents may not be used to support the initiation, execution and recording of certain transactions. (f) Physical control over assets and records: It is critical for internal control to have physical control over assets and access to records. Computer systems differ from manual systems in the way they concentrate the data processing assets and records at one location. For example in a manual system records are at their locations of origin, but in an EDP system they may be maintained at the data processing installation and a person does not have to coordinate different locations to execute a fraud. (g) Adequate management supervision: Management supervision of employee activities is relatively straightforward in a manual system. This is because employees and managers are often at the same physical location. (h) Comparing recorded accountability with assets: To assess if shortages in the assets have occurred or inaccuracies or incompleteness exist, a periodical comparison between assets and the data that is a record of those assets must be
Page 7 of 8 done. Q6. Explain the factors for having the effective internal control system for a bank. Ans. Internal control system in banks Different factors influence the internal control structure of any organisation: size, complexity and risk profile of its operations. In this regard an effective internal control system for a bank should consider the following aspects: 1. Control environment: Control environment is the foundation of an internal control system. It includes and reflects the factors that influence the control consciousness of its people. As per Auditing and Assurance Standard 6 issued by ICAI (AAS6), control environment is the overall attitude, awareness and actions of directors and management about the internal control system and its importance in the entity. Factors reflected in the control environment include: a) Organisational structure of the entity and means of assigning authority and responsibility (including segregation of duties and supervisory functions) b) The function performed by the board of directors and its committees in any company or any similar governing body in any other entity. c) The philosophy of management. d) Systems of management control that includes internal audit, personnel policies, etc. 2. Risk recognition and assessment: To be effective, an internal control system should recognise and continually assess all material risks –internal and external, controllable and uncontrollable–that could affect the achievement of the bank’s objectives. The bank faces various risks at different levels – credit risk, country and transfer risk, market risk, interest rate risk, liquidity risk, operational risk, legal risk, etc. The management must identify, measure and analyse these risks. 3. Control activities: Control activities are management actions to ensure that the personnel are following the bank’s established policies and procedures. Specific control procedures include: e) Reporting and reviewing reconciliations. f) Checking arithmetical accuracy of the records. g) Controlling applications and environment of computer information environment systems. h) Maintaining and reviewing control accounts and related subsidiary ledgers. i) Ensuring approval and control of documents. j) Comparing internal data with relevant external information.
Page 8 of 8 k) Comparing the results of physical verification of cash, fixed assets, investments and inventory with corresponding accounting records. l) Restricting access to assets, records and information. m) Comparing and analysing results with corresponding budgets 4. Segregation and rotation of duties: Authorities and responsibilities of every department should be clearly defined based on the policies of the management, preferably in writing. There should not be any scope of duplication of jobs, duties and assignments. The entity must have a system of rotation of duties among employees. 5. Authorisation of transactions: Banks usually prescribe well-set systems of approval and authorisation, both generally applicable and specific to some transactions. As public money is often involved, it is vital that authority levels are not breached. For example an industrial advance sanction may require zonal office clearance, while renewal of the advance may be within the authority of a branch head. 6. Accountability for assets: To ensure accountability and safeguarding of assets, it is important that complete records are maintained and access is limited to the authorised personnel only. Every access and every user should be documented. Periodic checking of actual assets with records and identifying discrepancies must be mandated. 7. Accounting, information and communication systems: A comprehensive system of accounting, financial reporting (both management and statutory) and non-financial analysis and reporting with clear content, format and frequency should be in place. Banks usually adopt the following procedures to meet this need: a) All records are maintained as prescribed with transaction-level details. b) A unique code number is assigned to each branch and that number should be mentioned in all important documents. c) All inter office transactions are reconciled methodically during accounts closing. 8. Monitoring activities: A full-fledged monitoring system should be in place to assess the effectiveness of internal controls continually. Monitoring is done internally as well as externally. For internal monitoring or self-assessment the review functions are delegated to the staff at different levels. Monitoring activities are integrated to the daily activities as well as undertaken as specified periodic evaluations.

Recommended

Mf0013
Mf0013Mf0013
Mf0013Rajesh Kumar Singh
 
Mf0013 summer 2014
Mf0013 summer 2014Mf0013 summer 2014
Mf0013 summer 2014Rajesh Kumar Singh
 
Mf0013 & internal audit & control
Mf0013 & internal audit & controlMf0013 & internal audit & control
Mf0013 & internal audit & controlStudy Stuff
 
Mf0013 internal audit & control
Mf0013 internal audit & controlMf0013 internal audit & control
Mf0013 internal audit & controlconsult4solutions
 
Mf0013 internal audit & control
Mf0013 internal audit & controlMf0013 internal audit & control
Mf0013 internal audit & controlconsult4solutions
 
Mf0011 mergers & acquisitions
Mf0011 mergers & acquisitionsMf0011 mergers & acquisitions
Mf0011 mergers & acquisitionsconsult4solutions
 
Applicability of internal audit capsule on ia program good
Applicability of internal audit capsule on ia program goodApplicability of internal audit capsule on ia program good
Applicability of internal audit capsule on ia program goodSARVJEET KAUSHAL
 
Managemant audit
Managemant auditManagemant audit
Managemant auditNeetu Ps
 

Recommended

Mf0013
Mf0013Mf0013
Mf0013Rajesh Kumar Singh
 
Mf0013 summer 2014
Mf0013 summer 2014Mf0013 summer 2014
Mf0013 summer 2014Rajesh Kumar Singh
 
Mf0013 & internal audit & control
Mf0013 & internal audit & controlMf0013 & internal audit & control
Mf0013 & internal audit & controlStudy Stuff
 
Mf0013 internal audit & control
Mf0013 internal audit & controlMf0013 internal audit & control
Mf0013 internal audit & controlconsult4solutions
 
Mf0013 internal audit & control
Mf0013 internal audit & controlMf0013 internal audit & control
Mf0013 internal audit & controlconsult4solutions
 
Mf0011 mergers & acquisitions
Mf0011 mergers & acquisitionsMf0011 mergers & acquisitions
Mf0011 mergers & acquisitionsconsult4solutions
 
Applicability of internal audit capsule on ia program good
Applicability of internal audit capsule on ia program goodApplicability of internal audit capsule on ia program good
Applicability of internal audit capsule on ia program goodSARVJEET KAUSHAL
 
Managemant audit
Managemant auditManagemant audit
Managemant auditNeetu Ps
 
THE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTS
THE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTSTHE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTS
THE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTSSazzad Hossain, ITP, MBA, CSCA™
 
Controllership - introduction
Controllership - introduction Controllership - introduction
Controllership - introductionAubrey Malacaste
 
Management Audit
Management AuditManagement Audit
Management AuditAugustin Bangalore
 
Management Audit from Auditing
Management Audit from AuditingManagement Audit from Auditing
Management Audit from AuditingMd. Moazzem Hossain
 
Internal financial control
Internal financial controlInternal financial control
Internal financial controlMitesh Katira
 
Slideshow presentation on Cost Auditing
Slideshow presentation on Cost AuditingSlideshow presentation on Cost Auditing
Slideshow presentation on Cost Auditingtawhidul hoque
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit Systemvikasiba
 
Management Control System
Management Control SystemManagement Control System
Management Control SystemManohar Prasad, PgMP®, PMP®, PMI-ACP®, CAL®, ACC®, CSP®
 
Cost audit
Cost auditCost audit
Cost auditDhirendra Kumar Chaudhary
 
perini Charter_Audit_Committee
perini Charter_Audit_Committeeperini Charter_Audit_Committee
perini Charter_Audit_Committeefinance50
 
Financial controller job description
Financial controller job descriptionFinancial controller job description
Financial controller job descriptionfinancemanagement
 
Auditing - presentation on Management Audit
Auditing - presentation on Management AuditAuditing - presentation on Management Audit
Auditing - presentation on Management AuditMd. Moazzem Hossain
 
Insightful Controllership
Insightful ControllershipInsightful Controllership
Insightful ControllershipCapgemini
 
Internal audit and statutory audit
Internal audit and statutory auditInternal audit and statutory audit
Internal audit and statutory auditGirish Sawhney
 
Ch 9. Internal Audit
Ch 9. Internal AuditCh 9. Internal Audit
Ch 9. Internal AuditSazzad Hossain, ITP, MBA, CSCA™
 
Types of audit
Types of auditTypes of audit
Types of auditPooja Soni
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal AuditArmeniaFED
 
What is the difference between financial audit and cost audit
What is the difference between financial audit and cost auditWhat is the difference between financial audit and cost audit
What is the difference between financial audit and cost auditLata Manchekar
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesManoj Agarwal
 
Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Manoj Agarwal
 
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...IJTET Journal
 
Linen control(1)
Linen control(1)Linen control(1)
Linen control(1)nicepreet
 

More Related Content

What's hot

Controllership - introduction
Controllership - introduction Controllership - introduction
Controllership - introductionAubrey Malacaste
 
Internal financial control
Internal financial controlInternal financial control
Internal financial controlMitesh Katira
 
Slideshow presentation on Cost Auditing
Slideshow presentation on Cost AuditingSlideshow presentation on Cost Auditing
Slideshow presentation on Cost Auditingtawhidul hoque
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit Systemvikasiba
 
perini Charter_Audit_Committee
perini Charter_Audit_Committeeperini Charter_Audit_Committee
perini Charter_Audit_Committeefinance50
 
Financial controller job description
Financial controller job descriptionFinancial controller job description
Financial controller job descriptionfinancemanagement
 
Auditing - presentation on Management Audit
Auditing - presentation on Management AuditAuditing - presentation on Management Audit
Auditing - presentation on Management AuditMd. Moazzem Hossain
 
Insightful Controllership
Insightful ControllershipInsightful Controllership
Insightful ControllershipCapgemini
 
Internal audit and statutory audit
Internal audit and statutory auditInternal audit and statutory audit
Internal audit and statutory auditGirish Sawhney
 
Types of audit
Types of auditTypes of audit
Types of auditPooja Soni
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal AuditArmeniaFED
 
What is the difference between financial audit and cost audit
What is the difference between financial audit and cost auditWhat is the difference between financial audit and cost audit
What is the difference between financial audit and cost auditLata Manchekar
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesManoj Agarwal
 
Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Manoj Agarwal
 

What's hot (20)

THE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTS
THE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTSTHE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTS
THE FUNDAMENTAL OF COSTING and CALCULATION OF UNIT COSTS
 
Controllership - introduction
Controllership - introduction Controllership - introduction
Controllership - introduction
 
Management Audit
Management AuditManagement Audit
Management Audit
 
Management Audit from Auditing
Management Audit from AuditingManagement Audit from Auditing
Management Audit from Auditing
 
Internal financial control
Internal financial controlInternal financial control
Internal financial control
 
Slideshow presentation on Cost Auditing
Slideshow presentation on Cost AuditingSlideshow presentation on Cost Auditing
Slideshow presentation on Cost Auditing
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit System
 
Management Control System
Management Control SystemManagement Control System
Management Control System
 
Cost audit
Cost auditCost audit
Cost audit
 
perini Charter_Audit_Committee
perini Charter_Audit_Committeeperini Charter_Audit_Committee
perini Charter_Audit_Committee
 
Financial controller job description
Financial controller job descriptionFinancial controller job description
Financial controller job description
 
Auditing - presentation on Management Audit
Auditing - presentation on Management AuditAuditing - presentation on Management Audit
Auditing - presentation on Management Audit
 
Insightful Controllership
Insightful ControllershipInsightful Controllership
Insightful Controllership
 
Internal audit and statutory audit
Internal audit and statutory auditInternal audit and statutory audit
Internal audit and statutory audit
 
Ch 9. Internal Audit
Ch 9. Internal AuditCh 9. Internal Audit
Ch 9. Internal Audit
 
Types of audit
Types of auditTypes of audit
Types of audit
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal Audit
 
What is the difference between financial audit and cost audit
What is the difference between financial audit and cost auditWhat is the difference between financial audit and cost audit
What is the difference between financial audit and cost audit
 
Risk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling TechniquesRisk Based Internal Audit and Sampling Techniques
Risk Based Internal Audit and Sampling Techniques
 
Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013
 

Viewers also liked

Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...IJTET Journal
 
Linen control(1)
Linen control(1)Linen control(1)
Linen control(1)nicepreet
 
Human Resource Accounting and Auditing PPT
Human Resource Accounting and Auditing PPTHuman Resource Accounting and Auditing PPT
Human Resource Accounting and Auditing PPTSWATI PRASAD
 
Type of auditing
Type of auditingType of auditing
Type of auditingDharmik
 
Definition of audit programme
Definition of audit programmeDefinition of audit programme
Definition of audit programmestudent
 
Audit working papers
Audit working papersAudit working papers
Audit working papersstudent
 

Viewers also liked (6)

Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
Checking Performance Test for Fresh Sub Assembly Inspection Facility (FSIF) E...
 
Linen control(1)
Linen control(1)Linen control(1)
Linen control(1)
 
Human Resource Accounting and Auditing PPT
Human Resource Accounting and Auditing PPTHuman Resource Accounting and Auditing PPT
Human Resource Accounting and Auditing PPT
 
Type of auditing
Type of auditingType of auditing
Type of auditing
 
Definition of audit programme
Definition of audit programmeDefinition of audit programme
Definition of audit programme
 
Audit working papers
Audit working papersAudit working papers
Audit working papers
 

Similar to Mf0013 – internal audit and control

24201843 studdy-note-8
24201843 studdy-note-824201843 studdy-note-8
24201843 studdy-note-8Akash Saxena
 
Chapter 4-Internal Control, Internal Check and Internal Audit.pptx
Chapter 4-Internal Control, Internal Check and Internal Audit.pptxChapter 4-Internal Control, Internal Check and Internal Audit.pptx
Chapter 4-Internal Control, Internal Check and Internal Audit.pptxAbrarAhmed932553
 
Auditing procedure & internal control system
Auditing procedure & internal control systemAuditing procedure & internal control system
Auditing procedure & internal control systemRadhikaGupta215
 
Principles of Audit
Principles of AuditPrinciples of Audit
Principles of AuditVadivelM9
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal controlTommy Zul Hidayat
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal controljayussuryawan
 
ISO 19001ISO 19001Student’s NameUniversity Name.docx
ISO 19001ISO 19001Student’s NameUniversity Name.docxISO 19001ISO 19001Student’s NameUniversity Name.docx
ISO 19001ISO 19001Student’s NameUniversity Name.docxpriestmanmable
 
internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relationArgentinaMorata
 
What is the procedure for financial statement audit.pdf
What is the procedure for financial statement audit.pdfWhat is the procedure for financial statement audit.pdf
What is the procedure for financial statement audit.pdfRathnakarReddy17
 
PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...
PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...
PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...ssuser0e5863
 
Advanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxAdvanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxseidIbrahim2
 
Introduction to cooperative auditing
Introduction to cooperative auditingIntroduction to cooperative auditing
Introduction to cooperative auditingefferson ramirez
 
Audits introduction presentation
Audits introduction presentationAudits introduction presentation
Audits introduction presentationJitendra Sonawane
 
FUNCTIONS OF AUDIT - Following are the most important functions o.pdf
FUNCTIONS OF AUDIT - Following are the most important functions o.pdfFUNCTIONS OF AUDIT - Following are the most important functions o.pdf
FUNCTIONS OF AUDIT - Following are the most important functions o.pdfanupamele
 
Audits and Regulatory Compliance
Audits and Regulatory ComplianceAudits and Regulatory Compliance
Audits and Regulatory Compliancesomeshwar mankar
 

Similar to Mf0013 – internal audit and control (20)

477 10 (5)
477 10 (5)477 10 (5)
477 10 (5)
 
Internal audit
Internal auditInternal audit
Internal audit
 
24201843 studdy-note-8
24201843 studdy-note-824201843 studdy-note-8
24201843 studdy-note-8
 
Chapter 4-Internal Control, Internal Check and Internal Audit.pptx
Chapter 4-Internal Control, Internal Check and Internal Audit.pptxChapter 4-Internal Control, Internal Check and Internal Audit.pptx
Chapter 4-Internal Control, Internal Check and Internal Audit.pptx
 
Auditing procedure & internal control system
Auditing procedure & internal control systemAuditing procedure & internal control system
Auditing procedure & internal control system
 
Principles of Audit
Principles of AuditPrinciples of Audit
Principles of Audit
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal control
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal control
 
ISO 19001ISO 19001Student’s NameUniversity Name.docx
ISO 19001ISO 19001Student’s NameUniversity Name.docxISO 19001ISO 19001Student’s NameUniversity Name.docx
ISO 19001ISO 19001Student’s NameUniversity Name.docx
 
internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation
 
What is the procedure for financial statement audit.pdf
What is the procedure for financial statement audit.pdfWhat is the procedure for financial statement audit.pdf
What is the procedure for financial statement audit.pdf
 
PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...
PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...
PPT_on_Practical_Intricacies_in_Internal_Audit_of_Manufacturing_Companies_by_...
 
Audit
AuditAudit
Audit
 
8. internal control new
8. internal control new8. internal control new
8. internal control new
 
Advanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxAdvanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptx
 
Introduction to cooperative auditing
Introduction to cooperative auditingIntroduction to cooperative auditing
Introduction to cooperative auditing
 
Audits introduction presentation
Audits introduction presentationAudits introduction presentation
Audits introduction presentation
 
FUNCTIONS OF AUDIT - Following are the most important functions o.pdf
FUNCTIONS OF AUDIT - Following are the most important functions o.pdfFUNCTIONS OF AUDIT - Following are the most important functions o.pdf
FUNCTIONS OF AUDIT - Following are the most important functions o.pdf
 
Audits and Regulatory Compliance
Audits and Regulatory ComplianceAudits and Regulatory Compliance
Audits and Regulatory Compliance
 
Interview Question for Manager
Interview Question for ManagerInterview Question for Manager
Interview Question for Manager
 

Recently uploaded

Dust Of Snow By Robert Frost Class-X English CBSE
Dust Of Snow By Robert Frost Class-X English CBSEDust Of Snow By Robert Frost Class-X English CBSE
Dust Of Snow By Robert Frost Class-X English CBSEaurabinda banchhor
 
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfInclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfTechSoup
 
Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4JOYLYNSAMANIEGO
 
Expanded definition: technical and operational
Expanded definition: technical and operationalExpanded definition: technical and operational
Expanded definition: technical and operationalssuser3e220a
 
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...Nguyen Thanh Tu Collection
 
Oppenheimer Film Discussion for Philosophy and Film
Oppenheimer Film Discussion for Philosophy and FilmOppenheimer Film Discussion for Philosophy and Film
Oppenheimer Film Discussion for Philosophy and FilmStan Meyer
 
ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4MiaBumagat1
 
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptxQ4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptxlancelewisportillo
 
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17Celine George
 
Choosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for ParentsChoosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for Parentsnavabharathschool99
 
ROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptxROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptxVanesaIglesias10
 
Presentation Activity 2. Unit 3 transv.pptx
Presentation Activity 2. Unit 3 transv.pptxPresentation Activity 2. Unit 3 transv.pptx
Presentation Activity 2. Unit 3 transv.pptxRosabel UA
 
AUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptx
AUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptxAUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptx
AUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptxiammrhaywood
 
Concurrency Control in Database Management system
Concurrency Control in Database Management systemConcurrency Control in Database Management system
Concurrency Control in Database Management systemChristalin Nelson
 
Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...Seán Kennedy
 
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptxINTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptxHumphrey A Beña
 
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONTHEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONHumphrey A Beña
 
ClimART Action | eTwinning Project
ClimART Action | eTwinning ProjectClimART Action | eTwinning Project
ClimART Action | eTwinning Projectjordimapav
 

Recently uploaded (20)

Dust Of Snow By Robert Frost Class-X English CBSE
Dust Of Snow By Robert Frost Class-X English CBSEDust Of Snow By Robert Frost Class-X English CBSE
Dust Of Snow By Robert Frost Class-X English CBSE
 
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfInclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
 
INCLUSIVE EDUCATION PRACTICES FOR TEACHERS AND TRAINERS.pptx
INCLUSIVE EDUCATION PRACTICES FOR TEACHERS AND TRAINERS.pptxINCLUSIVE EDUCATION PRACTICES FOR TEACHERS AND TRAINERS.pptx
INCLUSIVE EDUCATION PRACTICES FOR TEACHERS AND TRAINERS.pptx
 
Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4
 
Expanded definition: technical and operational
Expanded definition: technical and operationalExpanded definition: technical and operational
Expanded definition: technical and operational
 
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
 
Oppenheimer Film Discussion for Philosophy and Film
Oppenheimer Film Discussion for Philosophy and FilmOppenheimer Film Discussion for Philosophy and Film
Oppenheimer Film Discussion for Philosophy and Film
 
ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4
 
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptxQ4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
 
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
 
Choosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for ParentsChoosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for Parents
 
ROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptxROLES IN A STAGE PRODUCTION in arts.pptx
ROLES IN A STAGE PRODUCTION in arts.pptx
 
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptxYOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
 
Presentation Activity 2. Unit 3 transv.pptx
Presentation Activity 2. Unit 3 transv.pptxPresentation Activity 2. Unit 3 transv.pptx
Presentation Activity 2. Unit 3 transv.pptx
 
AUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptx
AUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptxAUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptx
AUDIENCE THEORY -CULTIVATION THEORY - GERBNER.pptx
 
Concurrency Control in Database Management system
Concurrency Control in Database Management systemConcurrency Control in Database Management system
Concurrency Control in Database Management system
 
Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...Student Profile Sample - We help schools to connect the data they have, with ...
Student Profile Sample - We help schools to connect the data they have, with ...
 
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptxINTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
 
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONTHEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
 
ClimART Action | eTwinning Project
ClimART Action | eTwinning ProjectClimART Action | eTwinning Project
ClimART Action | eTwinning Project
 

Mf0013 – internal audit and control

  • 1. Page 1 of 8 MF0013 – Internal Audit and Control Q1. Discuss, in brief, the advantages and limitations of auditing. Ans. Advantages of Financial Audit 1. Statutory financial audit gives the owners of a company and other stakeholders the assurance that annual financial reports give true and rational view about the company’s financial performance. 2. Tax audit viz., the audit of financials of the company based on which taxable income is determined and tax paid is mandatory. Tax auditor’s report has to be filed with the tax return. 3. Internal financial audit assists the CEO and his team of operating managers regularly and much more frequently in understanding the financial performance of the company and taking corrective actions necessary. 4. Financial audit is an invaluable tool for prevention and early detection of fraud and errors. 5. Audited financial report together with the auditors’ report is necessary for a company in sourcing funds from banks and other financial institutions. 6. The audited balance sheet of a company read with the auditor’s report is often the base document for valuation of companies in case mergers, acquisitions or outright sales. Limitations of Financial Audit 1. It is a post-mortem: The annual statutory audit is not a concurrent activity, but starts only after the year is over. Naturally, the auditor has to rely on explanations given to him by the accountant for activities that happened quite a while ago. The essential truth behind some of the figures may therefore still remain undiscovered. 2. It is a test check: The auditor cannot examine all the transactions given the time and cost constraints. He applies test checks using statistical sampling techniques. The inherent weaknesses of such methods carry an element of uncertainty or risk. Thus, auditing only reduces and does not eliminate the possibilities of erroror fraud. 3. Inherent limitations of internal control system: An auditor largely relies on the internal controls of the enterprise as he cannot check everything. Internal controls are the inbuilt checks and balances in the company’s accounting and administration. (a) Certain levels of management may override control and make exceptions to procedures. (b) Persons operating the internal control and employees or outside parties may collude and render the controls ineffective.
  • 2. Page 2 of 8 Q2. Explain the key objectives of a good internal audit system. Write down the essentials for effective internal auditing. Ans. The key objectives of a good internal audit system are: 1. Evaluation of accounting controls: Ensuring that the checks and balances in the accounting processes are effective and provide the required accounting controls. 2. Compliance with policies and procedures: Verifying compliance with the policies and procedures laid down for key activities and reporting acts of omission and commission. For example, if a purchase order for capital equipment of any value requires the Purchase department to get at least 3 quotes, internal audit have to check if this rule has been followed in all cases, and report exceptions. 3. Protection and optimal utilisation of business assets: Ensuring physical availability and usefulness of fixed assets as per company’s records, and checking utilisation of major assets vis-à-vis plan. For example, a piece of equipment purchased has not been installed within a reasonable period of time. The auditor will check and report on the justification for the asset not having been put to use. 4. Testing the reliability of Management Information Systems (MIS): Reviewing the management reporting structure and the utility of reports flowing out of the system. Essentials for Effective Internal Auditing  Appropriate organisational status: The internal auditor should ideally report to the CEO and the Board of the company, and should not be brought under a Functional Head like the CFO.  Independence: Internal auditors must have independence at work. This facilitates them to offer impartial and unbiased opinion and advice.  Technical competence: The internal audit team should be professionally qualified, well-experienced and adequately trained.  Professional approach: The internal auditor should exercise due professional care in fulfilling his responsibilities. His professionalism should be evidenced by the existence of audit manuals, clear audit programs and neatly filed working papers for each job.  Reporting and follow-up: Audit findings must first be reported to the auditee and together with the auditee’s response the findings should be reported to top management, preferably with a recommended solution. Action agreed by the auditee should be followed up and its closure duly.
  • 3. Page 3 of 8 Q3. List the required qualifications of an internal auditor. Describe the role of internal auditor in the company’s management. Ans. Qualifications of Internal Auditor When appointing an internal auditor, the management of a company looks for the following attributes: a. Necessary expertise to evaluate business control systems, especially financial and accounting controls: This is the crux of the internal audit function as the focus is always on financial performance and viability of the enterprise. b. Basic knowledge of the technology and commercial practices adopted by the business, since he is expected to evaluate the operational performance of the enterprise. c. Thorough knowledge of management theories and best-in-class practices. d. Excellent interpersonal skills: The auditors may at times have to comment adversely on the work of their own colleagues. They should be able to do this in an acceptable manner and yet produce the intended result. e. Unbiased reporting and strong professional approach. f. Unimpeachable integrity and the highest ethical standards. Role of Internal Auditor in the Company’s Management 1. Review of internal control systems: The internal auditor should review the internal control systems of the organisation. He should determine whether the existing control systems are appropriate and commensurate with the objectives, size, etc. of the organisation. For example a small company cannot afford a separate credit control department and so it will need strong controls in the sales accounting process to minimise customer payment default. 2. Review of safeguards for assets: The auditor should regularly review the adequacy of insurance covers for fixed assets and complete accounting of all transactions relating to fixed assets, etc. 3. Review of compliance with policies, plans, procedures and regulations: The internal auditor should include a regular checklist of compliances by different functions of laid down procedural requirements. When a non-observance is spotted, he should inquire and ascertain the reason for the deviation, and report the event together with the proposed solution. 4. Review of organisation structure: A well-designed organisation structure is the basic requirement for the smooth functioning of any organisation. Organisation structure defines the authorities and responsibilities of executives. The internal auditor should evaluate the organisation structure from the following dimensions: a. Simplicity and lack of ambiguity.
  • 4. Page 4 of 8 b. Clear definition of authority and responsibility at each level. c. Balance of power, to ensure there is no undue dominance of any function. d. Balance of responsibility, to ensure proper unity of command and span of control. e. Effective communication of the organisation chart to all concerned. 5. Review of deployment of resources: The internal auditor reviews utilisation of resources deployed for the business – men, machines, money, materials and management – to identify deviations both by way of excessive use of resources and resources that are under-utilised. He would be able to do this vis-à-vis the planned capacities and resources, and should include in his report significant trends and happenings. 6. Review of reliability of information: The Management Reporting and Information System (MRIS) of the company is an important aspect to be reviewed by the internal auditor. The content, format, frequency and timeliness of key management reports should be evaluated by discussions with the functional mangers receiving the reports as well as with the finance manager who is usually the provider of the reports. The objective of this review is to see to what extent the information flow has helped in taking good decisions. 7. Review of achievement of company objectives: While the reviews in the foregoing paragraphs are centred on the management processes, the managers are essentially hired to deliver results and achieve the targets set for them. The internal auditor therefore reviews the final results achieved vis-à-vis planned results. As they say, the proof of the pudding is in the eating, and if for instance the company has under-performed, audit can make it clear whether the failure to achieve was for internal reasons or external factors beyond management’s control.
  • 5. Page 5 of 8 Q4. Explain the basic principles of governing internal control. Ans. Basic Principles Governing Internal Control The basic principles governing internal control are as follows: 1. A proper system, preferably in writing, must be implemented so that origination, recording and accounting of business transactions take place in a standardised way. 2. The authority and responsibility of every official should be fixed. 3. Accounting entries should not be allowed without a supporting document. 4. No person should handle a transaction end to end: the work of a person should be checked automatically by another person in the same or another department. 5. Responsibility for the custody and control of assets should be segregated from the responsibility of accounting for the assets. 6. As far as possible controls should be built into the functions themselves. For example the objective of reducing credit risk and minimising collection period can be met through controls in the accounting and sales system instead of having a separate credit control function. 7. Every internal control should be established after a cost-benefit analysis. 8. Books of accounts should be maintained up to date. 9. The entity must have a system of rotation of duties among employees. Employees should be encouraged to take leave as per their roster, especially employees handling cash. 10. The system should have inbuilt verification system from independent records. For example verification of bank balances from bank statement, comparison of purchase ledger account with supplier statement, etc. 11. The system should facilitate cross-functional physical verification of assets: for example cash verification by Purchase official or inventory test-check by Accounts staff. 12. A reliable and accurate Management Information System (MIS) should be in place.
  • 6. Page 6 of 8 Q5. Discuss the specific problems of Electronic Data Processing (EDP) relating to internal control. Ans. The implementation of internal control in an EDP system, give rise to the following problems: (a) Separation of duties: The responsibility for initiating transactions, recording transactions and custody of assets, lies with separate individuals in a manual system. This is a basic control necessity for any organisation. (b) Delegation of authority and responsibility: An essential characteristic of internal control is a clear line of authority and responsibility. However, in a computer system the delegation of authority and responsibility in a clear way may be difficult because multiple users may share some resources. (c) Competent and trustworthy personnel: Data processing technology is much more complex today as compared to the days of manual systems. Personnel who are highly skilled are required to develop, modify, operate and maintain computer systems today. (d) System of authorisations: There are two types of authorisations to execute transactions, issued by management. Policies that an organisation follows are established by general authorisations. In a manual system, auditors evaluate the adequacy of procedures for authorisation by examining the work of employees. However, in a computer system, a particular program may often have authorisation procedures embedded within. For example, the order entry module in a sales system may determine the price to be charged to a customer. (e) Adequate documents and records: A manual system requires adequate documents and records if it is to provide an audit trail of activities within the system. On the other hand, in computer systems, documents may not be used to support the initiation, execution and recording of certain transactions. (f) Physical control over assets and records: It is critical for internal control to have physical control over assets and access to records. Computer systems differ from manual systems in the way they concentrate the data processing assets and records at one location. For example in a manual system records are at their locations of origin, but in an EDP system they may be maintained at the data processing installation and a person does not have to coordinate different locations to execute a fraud. (g) Adequate management supervision: Management supervision of employee activities is relatively straightforward in a manual system. This is because employees and managers are often at the same physical location. (h) Comparing recorded accountability with assets: To assess if shortages in the assets have occurred or inaccuracies or incompleteness exist, a periodical comparison between assets and the data that is a record of those assets must be
  • 7. Page 7 of 8 done. Q6. Explain the factors for having the effective internal control system for a bank. Ans. Internal control system in banks Different factors influence the internal control structure of any organisation: size, complexity and risk profile of its operations. In this regard an effective internal control system for a bank should consider the following aspects: 1. Control environment: Control environment is the foundation of an internal control system. It includes and reflects the factors that influence the control consciousness of its people. As per Auditing and Assurance Standard 6 issued by ICAI (AAS6), control environment is the overall attitude, awareness and actions of directors and management about the internal control system and its importance in the entity. Factors reflected in the control environment include: a) Organisational structure of the entity and means of assigning authority and responsibility (including segregation of duties and supervisory functions) b) The function performed by the board of directors and its committees in any company or any similar governing body in any other entity. c) The philosophy of management. d) Systems of management control that includes internal audit, personnel policies, etc. 2. Risk recognition and assessment: To be effective, an internal control system should recognise and continually assess all material risks –internal and external, controllable and uncontrollable–that could affect the achievement of the bank’s objectives. The bank faces various risks at different levels – credit risk, country and transfer risk, market risk, interest rate risk, liquidity risk, operational risk, legal risk, etc. The management must identify, measure and analyse these risks. 3. Control activities: Control activities are management actions to ensure that the personnel are following the bank’s established policies and procedures. Specific control procedures include: e) Reporting and reviewing reconciliations. f) Checking arithmetical accuracy of the records. g) Controlling applications and environment of computer information environment systems. h) Maintaining and reviewing control accounts and related subsidiary ledgers. i) Ensuring approval and control of documents. j) Comparing internal data with relevant external information.
  • 8. Page 8 of 8 k) Comparing the results of physical verification of cash, fixed assets, investments and inventory with corresponding accounting records. l) Restricting access to assets, records and information. m) Comparing and analysing results with corresponding budgets 4. Segregation and rotation of duties: Authorities and responsibilities of every department should be clearly defined based on the policies of the management, preferably in writing. There should not be any scope of duplication of jobs, duties and assignments. The entity must have a system of rotation of duties among employees. 5. Authorisation of transactions: Banks usually prescribe well-set systems of approval and authorisation, both generally applicable and specific to some transactions. As public money is often involved, it is vital that authority levels are not breached. For example an industrial advance sanction may require zonal office clearance, while renewal of the advance may be within the authority of a branch head. 6. Accountability for assets: To ensure accountability and safeguarding of assets, it is important that complete records are maintained and access is limited to the authorised personnel only. Every access and every user should be documented. Periodic checking of actual assets with records and identifying discrepancies must be mandated. 7. Accounting, information and communication systems: A comprehensive system of accounting, financial reporting (both management and statutory) and non-financial analysis and reporting with clear content, format and frequency should be in place. Banks usually adopt the following procedures to meet this need: a) All records are maintained as prescribed with transaction-level details. b) A unique code number is assigned to each branch and that number should be mentioned in all important documents. c) All inter office transactions are reconciled methodically during accounts closing. 8. Monitoring activities: A full-fledged monitoring system should be in place to assess the effectiveness of internal controls continually. Monitoring is done internally as well as externally. For internal monitoring or self-assessment the review functions are delegated to the staff at different levels. Monitoring activities are integrated to the daily activities as well as undertaken as specified periodic evaluations.