Inherent risk Computerizing risk Non-routine transactions (Beasley 2010, p268) ‘Transactions that are unusual for the client are more likely than routine transactions to be incorrectly recorded, because of the client often lacks experience in recording them. ’ Why it is risk: Santos use a series of computerizing or IT technology to support their business for increase market competition. IT technology has been used for trade ordering systems between customs and Santos. Customers can order or purchase goods online.
Therefore, non-routine transactions might occur if customers not familiar with the computerizing system. What’s more, Computerizing system would always make the same mistake, if the system has not designed properly. Thus, It might also contain some misstatement of transactions or increase opportunities that the transaction record incorrectly, such as , some of sales transactions might record in ‘other income’ due to computerizing system design mistake. Misstatement of sales account would lead to estimate wrong actual profit at the end of financial year, thus it contain risks to estimate wrong also affect the
Evidence: Make sure that the computerizing system had been designed properly; review the computerizing system to identify whether there are some mistakes. Investigate sales account and other income account, identify whether every transaction has been recorded correctly. Management risk Factors related to fraudulent financial reporting and misappropriation of assets (ASA 240 incentives/pressures) Adverse relationship between the entity and employees with access to cash or other assets susceptible to the theft may motivate those employees to misappropriate those assets, for xample: promotions, compensation, or other rewards inconsistent with expectations. Management and weaknesses in internal control may be present when misstatement due to either fraudulent financial reporting or misappropriation. Why it is risk (ASA240 ) Asset misstatement or been record incorrectly due to motivation that theft could benefit from it. Weak management of internal environment would lead to fraud or misstatement happened by personal motivation.
The opportunities that the misstatement or fraud might happened in Santos when: • Large amount of cash on hand or processed • Inadequate segregation of duties or independent checks • Inadequate physical safeguards over cash, investments, inventory, or fixed assets. Manager’s disregard for the need for monitoring or reducing risks would relate to misappropriations of assets. Evidence: Identify the management weakness, Investigate account receivables, sales revenue, assets, fair value of assets, Check cash flow, annual profit ifferences of Policy and law risk Factors related to fraudulent financial reporting and misappropriation of assets (ASA240) Ineffective monitoring of management and weaknesses in internal control may be present when misstatements due to either fraudulent financial reporting or misappropriation of assets exist. Why it is risk Santos not only trade domestic, it also has international business or cooperating with other company in other countries, such as Asia. However, government policy and law, or even accounting system might different from Australia.
This would lead to increase risk of misstatement, or it might possible that fraud had covered by ‘common understand’. For instance,misstatement of tax payable account ( most of countries tax law are different) , misstatement or fraud of inventory, sales revenue account. Evidence Investigate all doubtful account, such as, sales account, inventory account or profit, Identify any different policy or law between cooperate companies and Australia; investigate accounts due to affect by differentiations. Question 2 |Control risk | |Computerizing |Moderate: ‘“We are now taking our ….. a new level by using a | | |bandwidth and latency generator appliance that will sit between| | |two routers to measure exactly how much bandwidth an | | |application really does need,” Mr Binns said. (Santos Beats | | |“Bandwidth Bracket Creep”, 2010) | | |Santos had an well control of computerizing system, | |Management |Low: regard the management policy which has been states in | | |Santos website.
This policy implied that Santos under a good | | |management control. Therefore, the management control risk | | |considered low. (Business Benefits Series, 2010) | |Policy and law | | | |IR |CR |DR |Likelihood of |Extent of other | | | | |material error |audit tests required| |Computerizing |Moderate |Moderate |Low |Low |Moderate | |Management |High |Low |High |Moderate |Extensive | |Policy and law |High |Moderate |Moderate |Moderate |Moderate | Evidence mix |TOC |STOT |AP |TDB | |Computerizing |Medium |Medium |Small to Medium |Medium | |Management |Extensive |Extensive |Extensive |Extensive | |Policy and law |Extensive |Medium |Medium |Extensive | Reference: 2010, Santos Beats “Bandwidth Bracket Creep”, viewed at 15 April , http://www. turbosoftnetworks. com/case_study_santos. hp, Santos 2010, Management Policy, Viewed at 25 April 2010, http://www. santos. com/library/Santos_Risk_Management. pdf Business Benefits Series, 2010, Viewed at 24 April 2010, http://www. dsssolutions. com/Industries/santos-bbs. pdf Best A, Fiedler S, Beasley 2010, Auditing Assurance Services & Ethics in Australia, Pearson, China Santos 2010, Company profile, Viewed at: 25 April 2010, http://www. santos. com/company-profile. aspx Fiedler B. & Kandunias C. 2010, Study Guide, Auditing and Theory and Practice, University of South Australia