PCAOB Releases Expanded Details on Priorities for Audit Inspections
The PCAOB recently released a resource document including expanded details about its priorities for 2023 audit inspections, most notably risk of fraud, risk assessment and internal controls, and auditing and accounting risks.
The document, Spotlight: Audit Committee Resource, contains questions "that may be of interest to audit committee members to consider amongst themselves or in discussions with their independent auditors."
Questions related to fraud risk include:
- Did the auditor identify any new risks of fraud in the current year audit?
- Did the auditor identify any significant unusual transactions?
- What procedures did the auditor perform to identify potential related party transactions?
- Did the auditor's inquiries of management include whether possible illegal acts, such as potential noncompliance with sanctions and other laws or regulations, have occurred?
- What procedures were performed by the auditor to address whether management perpetrated or concealed fraud by presenting incomplete or inaccurate financial statement disclosures or by omitting unnecessary disclosures?
Questions related to risk assessment and internal controls include:
- How did the auditor gain a sufficient understanding of the business and management's strategy?
- What has the auditor done to understand and/or select and test relevant controls?
- How did the auditor modify their audit approach in response to identified control deficiencies, if any?
- How has the auditor contemplated relevant economic factors, such as inflation, rising interest rates, supply chain risks and ability to access capital as part of its risk assessment procedures?
- How has the auditor considered relevant economic factors that could affect the public company's ability to continue as a going concern?
Questions related to auditing and accounting risks include:
- How has the auditor considered the economic environment, including recent significant economic, accounting or other developments, in its determination of whether an identified risk is a significant risk?
- For areas where a significant risk was identified, has the auditor considered whether the public company's selection and application of accounting principles, including related financial statement disclosure requirements, were consistent with the applicable financial reporting framework?
- Did the auditor propose any significant modifications to the disclosure on critical accounting policies and practices that management did not make?
- When a restatement exists in the public company's disclosures, what were the auditor's procedures to assess the sufficiency of management's materiality conclusion?
The document also includes questions about digital assets, merger and acquisition activities, use of the work of other auditors, talent and its impact on audit quality, independence, critical audit matters, and cybersecurity.