In the operation of the business, functional test, control always plays an important role in the management process and is done mainly by the internal control systems in the enterprise. Managers use internal control system as a tool to be able to ensure the objectives set out can be done efficiently, effective and economic. Therefore, the internal control system greatly affected the information presented in the financial statements. An internal control system is designed and operating effectively will reduce a lot of fraud and errors may occur. According to the International Federation of Accountants (IFAC): "The system of internal control is a system of policies and procedures designed to achieve four goals: protecting the assets of the unit; ensure the reliability of the information; ensure the implementation of the legal regime and ensuring the effectiveness of the operation. "From there, can confirm that the nature of the assessment of control risk is the auditors find out about us customer control.
the auditor will assess control risk as low, medium or high corresponds to the relevance and effective operation of internal control systems. An internal control system works effectively, of course, he must ensure that the system is four goals of the business activity, and then do that fraud and error unwanted businesses will fall.
in terms of financial reporting: the evidence relating to the assessment of control risk is considered to be the best evidence to consider the nature of the control environment that may affect the accounting information system. Control environment to ensure that the control policy is designed for enterprises is properly implemented. Understanding the other way, the environment control system is like a control policies to restrict and minimize potential risks most probable. Conversely, if only a few policy settings to control a discrete, separately, the risk control will be appreciated. Factors affecting the assessment of control risk that the auditor should consider:
* Characteristics of management: Managers have different views, the design of policies, regulations and how the test will also be very different. If the management concept that the control environment is an important factor in achieving business efficiency, then they will not hesitate to take the time and cost to the design of policies, procedures and regulations so that reasonable, effective and best execution for their business activities.
* the establishment of policies on the organizational structure: for example, a customer can audit when setting is a chain of responsibilities between departments, namely the departments independent of each other, or the responsibilities of this department for senior managers in the role of detecting, reporting and adjustment of fraud and errors, the control environment is more effective than an audit client can not establish such a structure.
the authorization policy is defined correctly: the establishment of the books related to the construction authorization management is also considered a positive factor to affect the control environment, for ensuring proper authorization of transactions and activities in the unit are made according to regulations already in place.
* the presence of the internal audit department in the enterprise: internal audit is an independent department within the enterprise is designed to carry out the inspection and evaluation the service requires internal governance. Therefore, the internal audit department provides an observation, regular evaluation of the entire operation of the business, including the effectiveness of the design and operation of policies and procedures internal control. Internal audit department will effectively help enterprises obtain timely information and authentication of business activities or quality control activities to promptly adjust, additional testing regulations appropriate and effective control.
* system policies on information technology was designed right: today, with the development of science and technology, the control of corporate information has become easier better, just saves time, reduces costs, while ensuring the accuracy and timeliness.
* the human resources policy: When the human resource policies designed towards improving improve management capacity and competence of staff, as well as policies relating to the recruitment and training of staff, the internal control of the business will be more efficient. Since the development of the business is always associated with the staff. Staff are qualified and trustworthy, the process control may not be done while ensuring achievement of the objectives of the internal control system.
The process of risk assessment
đang được dịch, vui lòng đợi..