Generating a(n) ________ indicates a companys financial position on a particular date.
Amendments to paragraphs .53 and .61 have been adopted by the PCAOB and approved by the U.S. Securities and Exchange Commission. The standard as amended will be effective for audits of financial statements for fiscal years ending on or after December 15, 2024. See PCAOB Release No. 2022-002, SEC Release No. 34-95488. View the standard as amended. Show
Amendments: Amending releases and related SEC approval orders Summary Table of Contents
Introduction and Overview.01 Paragraph .02 of AS 1001, Responsibilities and Functions of the Independent Auditor, states, "The auditor has a responsibility to plan and perform the audit to obtain reasonable assurance about whether the financial statements are free of material misstatement, whether caused by error or fraud. [footnote omitted]"1 This section establishes requirements and provides direction relevant to fulfilling that responsibility, as it relates to fraud, in an audit of financial statements.2 Note: When performing an integrated audit of financial statements and internal control over financial reporting, refer to paragraphs .14-.15 of AS 2201, An Audit of Internal Control Over Financial Reporting That Is Integrated with An Audit of Financial Statements, regarding fraud considerations, in addition to the fraud consideration set forth in this section. .01A AS 2110, Identifying and Assessing Risks of Material Misstatement, establishes requirements regarding the process of identifying and assessing risks of material misstatement of the financial statements. AS 2301, The Auditor's Responses to the Risks of Material Misstatement, establishes requirements regarding designing and implementing appropriate responses to the risks of material misstatement. AS 2810, Evaluating Audit Results, establishes requirements regarding the auditor's evaluation of audit results and determination of whether he or she has obtained sufficient appropriate audit evidence. .02 The following is an overview of the organization and content of this section:
[.03] [Paragraph deleted.] .04 Although this section focuses on the auditor's consideration of fraud in an audit of financial statements, it is management's responsibility to design and implement programs and controls to prevent, deter, and detect fraud.3 That responsibility is described in AS 1001.03, which states, "Management is responsible for adopting sound accounting policies and for establishing and maintaining internal control that will, among other things, initiate, record, process, and report transactions (as well as events and conditions) consistent with management's assertions embodied in the financial statements." Management, along with those who have responsibility for oversight of the financial reporting process (such as the audit committee, board of trustees, board of directors, or the owner in owner-managed entities), should set the proper tone; create and maintain a culture of honesty and high ethical standards; and establish appropriate controls to prevent, deter, and detect fraud. When management and those responsible for the oversight of the financial reporting process fulfill those responsibilities, the opportunities to commit fraud can be reduced significantly. Description and Characteristics of Fraud.05 Fraud is a broad legal concept and auditors do not make legal determinations of whether fraud has occurred. Rather, the auditor's interest specifically relates to acts that result in a material misstatement of the financial statements. The primary factor that distinguishes fraud from error is whether the underlying action that results in the misstatement of the financial statements is intentional or unintentional. For purposes of the section, fraud is an intentional act that results in a material misstatement in financial statements that are the subject of an audit.4 .06 Two types of misstatements are relevant to the auditor's consideration of fraud—misstatements arising from fraudulent financial reporting and misstatements arising from misappropriation of assets.
.07 Three conditions generally are present when fraud occurs. First, management or other employees have an incentive or are under pressure, which provides a reason to commit fraud. Second, circumstances exist—for example, the absence of controls, ineffective controls, or the ability of management to override controls—that provide an opportunity for a fraud to be perpetrated. Third, those involved are able to rationalize committing a fraudulent act. Some individuals possess an attitude, character, or set of ethical values that allow them to knowingly and intentionally commit a dishonest act. However, even otherwise honest individuals can commit fraud in an environment that imposes sufficient pressure on them. The greater the incentive or pressure, the more likely an individual will be able to rationalize the acceptability of committing fraud. .08 Management has a unique ability to perpetrate fraud because it frequently is in a position to directly or indirectly manipulate accounting records and present fraudulent financial information. Fraudulent financial reporting often involves management override of controls that otherwise may appear to be operating effectively.6 Management can either direct employees to perpetrate fraud or solicit their help in carrying it out. In addition, management personnel at a component of the entity may be in a position to manipulate the accounting records of the component in a manner that causes a material misstatement in the consolidated financial statements of the entity. Management override of controls can occur in unpredictable ways. .09 Typically, management and employees engaged in fraud will take steps to conceal the fraud from the auditors and others within and outside the organization. Fraud may be concealed by withholding evidence or misrepresenting information in response to inquiries or by falsifying documentation. For example, management that engages in fraudulent financial reporting might alter shipping documents. Employees or members of management who misappropriate cash might try to conceal their thefts by forging signatures or falsifying electronic approvals on disbursement authorizations. An audit conducted in accordance with the standards of the PCAOB rarely involves the authentication of such documentation, nor are auditors trained as or expected to be experts in such authentication. In addition, an auditor may not discover the existence of a modification of documentation through a side agreement that management or a third party has not disclosed. .10 Fraud also may be concealed through collusion among management, employees, or third parties. Collusion may cause the auditor who has properly performed the audit to conclude that evidence provided is persuasive when it is, in fact, false. For example, through collusion, false evidence that controls have been operating effectively may be presented to the auditor, or consistent misleading explanations may be given to the auditor by more than one individual within the entity to explain an unexpected result of an analytical procedure. As another example, the auditor may receive a false confirmation from a third party that is in collusion with management. .11 Although fraud usually is concealed and management's intent is difficult to determine, the presence of certain conditions may suggest to the auditor the possibility that fraud may exist. For example, an important contract may be missing, a subsidiary ledger may not be satisfactorily reconciled to its control account, or the results of an analytical procedure performed during the audit may not be consistent with expectations. However, these conditions may be the result of circumstances other than fraud. Documents may legitimately have been lost or misfiled; the subsidiary ledger may be out of balance with its control account because of an unintentional accounting error; and unexpected analytical relationships may be the result of unanticipated changes in underlying economic factors. Even reports of alleged fraud may not always be reliable because an employee or outsider may be mistaken or may be motivated for unknown reasons to make a false allegation. .12 As indicated in paragraph .01, the auditor has a responsibility to plan and perform the audit to obtain reasonable assurance about whether the financial statements are free of material misstatement, whether caused by fraud or error.7 However, absolute assurance is not attainable and thus even a properly planned and performed audit may not detect a material misstatement resulting from fraud. A material misstatement may not be detected because of the nature of audit evidence or because the characteristics of fraud as discussed above may cause the auditor to rely unknowingly on audit evidence that appears to be valid, but is, in fact, false and fraudulent. Furthermore, audit procedures that are effective for detecting an error may be ineffective for detecting fraud. The Importance of Exercising Professional Skepticism.13 Due professional care requires the auditor to exercise professional skepticism. See AS 1015.07 through .09. Because of the characteristics of fraud, the auditor's exercise of professional skepticism is important when considering the fraud risks. Professional skepticism is an attitude that includes a questioning mind and a critical assessment of audit evidence. The auditor should conduct the engagement with a mindset that recognizes the possibility that a material misstatement due to fraud could be present, regardless of any past experience with the entity and regardless of the auditor's belief about management's honesty and integrity. Furthermore, professional skepticism requires an ongoing questioning of whether the information and evidence obtained suggests that a material misstatement due to fraud has occurred. In exercising professional skepticism in gathering and evaluating evidence, the auditor should not be satisfied with less-than-persuasive evidence because of a belief that management is honest. [.14-.45] [Paragraphs deleted.] Responding to Assessed Fraud Risks[.46-.50] [Paragraphs deleted.] Responses Involving the Nature, Timing, and Extent of Procedures to Be Performed[.51] [Paragraph deleted.] .52 AS 2301.08 states that "[t]he auditor should design and perform audit procedures in a manner that addresses the assessed risks of material misstatement due to error or fraud for each relevant assertion of each significant account and disclosure." AS 2301.12 states that "the audit procedures that are necessary to address the assessed fraud risks depend upon the types of risks and the relevant assertions that might be affected." Note: AS 2110.71b states that a fraud risk is a significant risk. Accordingly, the requirement for responding to significant risks also applies to fraud risks. .53 The following are examples of responses to assessed fraud risks involving the nature, timing, and extent of audit procedures:
Additional Examples of Audit Procedures Performed to Respond to Assessed Fraud Risks Relating to Fraudulent Financial Reporting.54 The following are additional examples of audit procedures that might be performed in response to assessed fraud risks relating to fraudulent financial reporting:
Examples of Audit Procedures Performed to Respond to Fraud Risks Relating to Misappropriations of Assets.55 The auditor may have identified a fraud risk relating to misappropriation of assets. For example, the auditor may conclude that the risk of asset misappropriation at a particular operating location is significant because a large amount of easily accessible cash is maintained at that location, or there are inventory items such as laptop computers at that location that can easily be moved and sold. .56 The audit procedures performed in response to a fraud risk relating to misappropriation of assets usually will be directed toward certain account balances. Although some of the audit procedures noted in paragraphs .53 and .54 and in AS 2301.08 through .15 may apply in such circumstances, such as the procedures directed at inventory quantities, the scope of the work should be linked to the specific information about the misappropriation risk that has been identified. For example, if a particular asset is highly susceptible to misappropriation and a potential misstatement would be material to the financial statements, obtaining an understanding of the controls related to the prevention and detection of such misappropriation and testing the design and operating effectiveness of such controls may be warranted. In certain circumstances, physical inspection of such assets (for example, counting cash or securities) at or near the end of the reporting period may be appropriate. In addition, the use of substantive analytical procedures, such as the development by the auditor of an expected dollar amount at a high level of precision, to be compared with a recorded amount, may be effective in certain circumstances. Audit Procedures Performed to Specifically Address the Risk of Management Override of Controls.57 As noted in paragraph .08, management is in a unique position to perpetrate fraud because of its ability to directly or indirectly manipulate accounting records and prepare fraudulent financial statements by overriding established controls that otherwise appear to be operating effectively. By its nature, management override of controls can occur in unpredictable ways. Accordingly, as part of the auditor's responses that address fraud risks, the procedures described in paragraphs .58 through .67 should be performed to specifically address the risk of management override of controls. .58 Examining journal entries and other adjustments for evidence of possible material misstatement due to fraud. Material misstatements of financial statements due to fraud often involve the manipulation of the financial reporting process by (a) recording inappropriate or unauthorized journal entries throughout the year or at period end, or (b) making adjustments to amounts reported in the financial statements that are not reflected in formal journal entries, such as through consolidating adjustments, report combinations, and reclassifications. Accordingly, the auditor should design procedures to test the appropriateness of journal entries recorded in the general ledger and other adjustments (for example, entries posted directly to financial statement drafts) made in the preparation of the financial statements. More specifically, the auditor should:
.59 The auditor's understanding of the entity's financial reporting process may help in identifying the type, number, and monetary value of journal entries and other adjustments that typically are made in preparing the financial statements. For example, the auditor's understanding may include the sources of significant debits and credits to an account, who can initiate entries to the general ledger or transaction processing systems, what approvals are required for such entries, and how journal entries are recorded (for example, entries may be initiated and recorded online with no physical evidence, or may be created in paper form and entered in batch mode). .60 An entity may have implemented specific controls over journal entries and other adjustments. For example, an entity may use journal entries that are preformatted with account numbers and specific user approval criteria, and may have automated controls to generate an exception report for any entries that were unsuccessfully proposed for recording or entries that were recorded and processed outside of established parameters. The auditor should obtain an understanding of the design of such controls over journal entries and other adjustments and determine whether they are suitably designed and have been placed in operation. .61 The auditor should use professional judgment in determining the nature, timing, and extent of the testing of journal entries and other adjustments. For purposes of identifying and selecting specific entries and other adjustments for testing, and determining the appropriate method of examining the underlying support for the items selected, the auditor should consider:
.62 Because fraudulent journal entries often are made at the end of a reporting period, the auditor's testing ordinarily should focus on the journal entries and other adjustments made at that time. However, because material misstatements in financial statements due to fraud can occur throughout the period and may involve extensive efforts to conceal how it is accomplished, the auditor should consider whether there also is a need to test journal entries throughout the period under audit. .63 Reviewing accounting estimates for biases that could result in material misstatement due to fraud. In preparing financial statements, management is responsible for making a number of judgments or assumptions that affect accounting estimates and for monitoring the reasonableness of such estimates on an ongoing basis. Fraudulent financial reporting often is accomplished through intentional misstatement of accounting estimates. AS 2810.24–.27 discuss the auditor's responsibilities for assessing bias in accounting estimates and the effect of bias on the financial statements. .64 The auditor should perform a retrospective review of accounting estimates in significant accounts and disclosures24 by comparing the prior year's estimates to actual results, if any, to determine whether management's judgments and assumptions relating to the estimates indicate a possible bias on the part of management. The accounting estimates selected for testing should be those for which there is an assessed fraud risk. With the benefit of hindsight, a retrospective review should provide the auditor with additional information about whether there may be a possible bias on the part of management in making the current-year estimates. This review, however, is not intended to call into question the auditor's professional judgments made in the prior year that were based on information available at the time. .65 If the auditor identifies a possible bias on the part of management in making accounting estimates, the auditor should evaluate whether circumstances producing such a bias represent a risk of a material misstatement due to fraud. For example, information coming to the auditor's attention may indicate a risk that adjustments to the current-year estimates might be recorded at the instruction of management to arbitrarily achieve a specified earnings target. .66 Evaluating whether the business purpose for significant unusual transactions indicates that the transactions may have been entered into to engage in fraud. Significant transactions that are outside the normal course of business for the company or that otherwise appear to be unusual due to their timing, size, or nature ("significant unusual transactions") may be used to engage in fraudulent financial reporting or conceal misappropriation of assets. Note: The auditor's identification of significant unusual transactions should take into account information obtained from: (a) the risk assessment procedures required by AS 2110 (e.g., inquiring of management and others, obtaining an understanding of the methods used to account for significant unusual transactions, and obtaining an understanding of internal control over financial reporting) and (b) other procedures performed during the audit (e.g., reading minutes of the board of directors meetings and performing journal entry testing). Note: The auditor should take into account information that indicates that related parties or relationships or transactions with related parties previously undisclosed to the auditor might exist when identifying significant unusual transactions. See paragraphs .14-.16 of AS 2410, Related Parties. Appendix A of AS 2410, includes examples of such information and examples of sources of such information. .66A The auditor should design and perform procedures to obtain an understanding of the business purpose (or the lack thereof) of each significant unusual transaction that the auditor has identified. The procedures should include:
Note: AS 2301.11A requires the auditor to take into account the types of potential misstatements that could result from significant unusual transactions in designing and performing further audit procedures. .67 The auditor should evaluate whether the business purpose (or the lack thereof) indicates that the significant unusual transaction may have been entered into to engage in fraudulent financial reporting or conceal misappropriation of assets. In making that evaluation, the auditor should evaluate whether:
Note: AS 2810.20—.23 provide requirements regarding the auditor's evaluation of whether identified misstatements might be indicative of fraud. .67A The auditor must evaluate whether significant unusual transactions that the auditor has identified have been properly accounted for and disclosed in the financial statements. This includes evaluating whether the financial statements contain the information regarding significant unusual transactions essential for a fair presentation of the financial statements in conformity with the applicable financial reporting framework.25B Note: The auditor considers management's disclosure regarding significant unusual transactions in other parts of the company's Securities and Exchange Commission filing containing the audited financial statements in accordance with AS 2710, Other Information in Documents Containing Audited Financial Statements. [.68-.78] [Paragraphs deleted.] Communicating About Possible Fraud to Management, the Audit Committee, the Securities and Exchange Commission, and Others37.79 Whenever the auditor has determined that there is evidence that fraud may exist, that matter should be brought to the attention of an appropriate level of management. This is appropriate even if the matter might be considered inconsequential, such as a minor defalcation by an employee at a low level in the entity's organization. Fraud involving senior management and fraud (whether caused by senior management or other employees) that causes a material misstatement of the financial statements should be reported directly to the audit committee in a timely manner and prior to the issuance of the auditor's report. In addition, the auditor should reach an understanding with the audit committee regarding the nature and extent of communications with the committee about misappropriations perpetrated by lower-level employees. .80 If the auditor, as a result of the assessment of the risks of material misstatement, has identified fraud risks that have continuing control implications (whether or not transactions or adjustments that could be the result of fraud have been detected), the auditor should consider whether these risks represent significant deficiencies that must be communicated to senior management and the audit committee. 38 (See paragraph .04 of AS 1305, Communications About Control Deficiencies in an Audit of Financial Statements). The auditor also should evaluate whether the absence of or deficiencies in controls that address fraud risks or otherwise help prevent, deter, and detect fraud (see AS 2110.72-.73) represent significant deficiencies or material weaknesses that should be communicated to senior management and the audit committee. .81 The auditor also should consider communicating other fraud risks, if any, identified by the auditor. Such a communication may be a part of an overall communication to the audit committee of business and financial statement risks affecting the entity and/or in conjunction with the auditor communication about the qualitative aspects of the entity's accounting policies and practices (see paragraphs .12-.13 of AS 1301, Communications with Audit Committees). The auditor should communicate these matters to the audit committee in a timely manner and prior to the issuance of the auditor's report. .81A The auditor has a responsibility, under certain conditions, to disclose possible fraud to the Securities and Exchange Commission to comply with certain legal and regulatory requirements. These requirements include reports in connection with the termination of the engagement, such as when the entity reports an auditor change and the fraud or related risk factors constitute a reportable event or are the source of a disagreement, as these terms are defined in Item 304 of Regulation S-K and Item 16F of Form 20-F. These requirements also include reports that may be required pursuant to Section 10A(b) of the Securities Exchange Act of 1934 relating to an illegal act that the auditor concludes has a material effect on the financial statements. .82 The auditor also may have a duty to disclose the existence of possible fraud to parties outside the entity in the following circumstances:
Documenting the Auditor's Consideration of Fraud.83 The auditor should document the following:
[.84] [Paragraph deleted.] AppendixExamples of Fraud Risk Factors.85 A.1 This appendix contains examples of risk factors discussed in AS 2110.65 through .69. Separately presented are examples relating to the two types of fraud relevant to the auditor's consideration—that is, fraudulent financial reporting and misappropriation of assets. For each of these types of fraud, the risk factors are further classified based on the three conditions generally present when material misstatements due to fraud occur: (a) incentives/pressures, (b) opportunities, and (c) attitudes/rationalizations. Although the risk factors cover a broad range of situations, they are only examples and, accordingly, the auditor may wish to consider additional or different risk factors. Not all of these examples are relevant in all circumstances, and some may be of greater or lesser significance in entities of different size or with different ownership characteristics or circumstances. Also, the order of the examples of risk factors provided is not intended to reflect their relative importance or frequency of occurrence. Risk Factors Relating to Misstatements Arising From Fraudulent Financial ReportingA.2 The following are examples of risk factors relating to misstatements arising from fraudulent financial reporting. Incentives/Pressures
Opportunities
Attitudes/RationalizationsRisk factors reflective of attitudes/rationalizations by board members, management, or employees, that allow them to engage in and/or justify fraudulent financial reporting, may not be susceptible to observation by the auditor. Nevertheless, the auditor who becomes aware of the existence of such information should consider it in identifying the risks of material misstatement arising from fraudulent financial reporting. For example, auditors may become aware of the following information that may indicate a risk factor:
Risk Factors Relating to Misstatements Arising From Misappropriation of AssetsA.3 Risk factors that relate to misstatements arising from misappropriation of assets are also classified according to the three conditions generally present when fraud exists: incentives/pressures, opportunities, and attitudes/rationalizations. Some of the risk factors related to misstatements arising from fraudulent financial reporting also may be present when misstatements arising from misappropriation of assets occur. For example, ineffective monitoring of management and weaknesses in internal control may be present when misstatements due to either fraudulent financial reporting or misappropriation of assets exist. The following are examples of risk factors related to misstatements arising from misappropriation of assets. Incentives/Pressures
Opportunities
Attitudes/RationalizationsRisk factors reflective of employee attitudes/rationalizations that allow them to justify misappropriations of assets, are generally not susceptible to observation by the auditor. Nevertheless, the auditor who becomes aware of the existence of such information should consider it in identifying the risks of material misstatement arising from misappropriation of assets. For example, auditors may become aware of the following attitudes or behavior of employees who have access to assets susceptible to misappropriation:
Amendment to Section 230, Due Professional Care in the Performance of Work[.86] [Paragraph deleted.] Amendment to Section 333, Management Representations, paragraph .06 and Appendix A [paragraph .16][.87] [Paragraph deleted.] Exhibit - Management Antifraud Programs and Controls[.88] [Paragraph deleted.] What indicates a company's financial position on a particular date?The statement of financial position is another term for the balance sheet. The statement lists the assets, liabilities, and equity of an organization as of the report date. As such, it provides a snapshot of the financial condition of a business as of a specific date.
Which financial statement shows the company's finances on a specific date in time?Key Takeaways. A balance sheet reports a company's assets, liabilities and shareholder equity at a specific point in time. A balance sheet provides both investors and creditors with a snapshot as to how effectively a company's management uses its resources.
|