Summary of audit work

Summary

In April 2019, after ending the audit of the listed company's 10-year financial annual report, I was filled with emotion! Immediately began to brew a summary of his two years of practice. With continuous analysis and understanding, some summaries are not only related to the projects they are engaged in, but also reflect many phenomena in the entire auditing industry. Therefore, with the spirit of summing up and reflection, with the idea of bold reform, starting from the knowledge development of the industry, the quality control of the firm, and the application of risk assessment programs. Combining theory with practical work, I found that the unreasonable and acquired experience is in this article. In particular, the recommendations for the development of the country, salary-oriented audit, the author believes that there is a certain reference.

Due to the rush of time, this article is not new, and the content is relatively new. But for those who are not involved and the content is too broad and omissions, forget to forgive.

table of Contents

I. Current status, prospects and recommendations for the development of domestic industries

1. Prospects for the development of domestic firms

2. The author considers and responds to the factors that restrict domestic firms from becoming bigger and stronger.

3. Some suggestions for making bigger and stronger domestic

Second, I see the quality control of the firm

1. The impact of business control concepts on business quality

2. Talent competition concept - salary oriented audit

3. Impact of sampling risk on business quality control

4. Pay attention to the impact of erp on audit risk

3. Some difficulties and countermeasures applied in risk-oriented auditing in actual work

1. The nature of risk

2. Assess risk

3. Risk assessment process record

4. How to conduct substantive and enjoyable communication

Soon after, some naive experiences and embarrassment, naturally rendered between black and white, how many ridiculous things and glimpses of forgiveness and forgiveness.

I. Prospects and recommendations for the development of domestic firms' industry

The quickest way to "bigger and stronger" is to merge. However, in the same way, different firms have made different effects. This article is mainly aimed at domestic firms with securities qualifications.

1. Looking at the development prospects of domestic firms from the perspective of national security secrets and capital market expansion

First, look at the development of the firm from national security secrets. Here, regardless of the overall industry growth of the firm, the author only talks about the development of domestic firms, so the natural opposite is definitely the international four accounting firms. To talk about the bigger and stronger local institutions, it is necessary to challenge the international four majors. If it is not, then it does not matter. According to the statistics of the Chinese Institute of Certified Public Accountants, the accounting share of the top four accounting firms in the national top 100 accounting firms in 2007-09 was 53.00%, 54.78% and 52.81% respectively. For the time being, a rough assumption is that income and quantity are proportional to each other. This means that nearly half of the listed companies in China are under the responsibility of the Big Four accounting firms. From another huge economic data analysis, nearly 1,600 listed companies in the 10-year a-share market accounted for 37.67% of China's 10-year gdp. The combination of the two information and the quality control of the four international businesses meets the requirements, which means that China has nearly 18.84%. The gdp information flow is transparent. At present, the risk-oriented auditing concept implements an understanding of the company's comprehensive three-dimensional information, including internal control, supplier and customer environment, technology and research and development capabilities, corporate development strategies and tactics, core competitiveness, etc. It symbolizes the past, present and future of the company.

In short, the financial and corporate environmental information of a large number of mature machinery manufacturing, people's livelihood, financial real estate, high-tech enterprises, steel industry and even military industry in China is basically unregulated. Judging from the Rio Tinto spy door incident that broke out in July 2019, we will not consider the political and group interest factors for the time being. We only need to consider the operational procedures of this spy door incident to find out what kind of trade secrets are. The author does not know the data analysis ability and professional ethics of most auditors, but the results of relevant data analysis are state secrets.

Therefore, starting from the consideration of state secret security, the author believes that the bigger and stronger domestic firms are the trend and the inevitable. However, this is not the growth of destructive growth, but to make the local firm itself scientific, reasonable and healthy development, and improve its core competitiveness. As the saying goes, how many meters under the pot, the current size of the "pot" in China's domestic firms is really small, and it is impossible to smash the beam. At present, the development of the domestic firm's industry is an indispensable branch of China's economic construction.

Second, from the perspective of capital market expansion. In September 2019, according to the Ministry of Commerce, in the meantime, in 2019, qualified overseas companies were listed on the China Stock Exchange by issuing stocks or depositary receipts, that is, the a-share market is about to launch an international board. This has injected new concepts and vitality into the international business of domestic firms. However, the problems of the firm's talent pool, risk control, business skills, etc., which are generated for this purpose, will soon be placed in front of the domestic market. Faced with these attractive opportunities and challenges, if the domestic strategic merger and development and reserve talents, it will determine the future survival space of the local.

2. The author considers and responds to the factors that restrict the domestic office from becoming bigger and stronger.

First of all, there is a problem with the core competitiveness of domestic firms becoming bigger and stronger. The social resources that our domestic firms currently rely on for development. Within its capabilities, the richness of social resources determines the breadth of the business. However, the so-called scope of China Petroleum, Sinopec, China Construction Bank, Industrial and Commercial Bank, Agricultural Bank, China Mobile, etc., has shown their lack of core competitiveness. This is also a serious constraint on the development of a firm with a healthy core competitiveness. Some people have attributed this problem to the corruption caused by the system, and some have been rooted in the traditional habits of the Chinese people and the problem of quick success, and more people are rooted in the nature of the industry itself. In fact, this series of questions is not clear here in three or two sentences. Therefore, this problem is attributed to the issue of audit risk awareness for the time being.

That is to say, domestic firms lack the awareness of operational risk. Insofar as some partners have no audit risk, they believe that any problem can be solved. But when some risks can't be solved, they say that they don't have that business ability, but they don't have that social resource. It is precisely because of this kind of vicious competition in the industry, how many ambitions of the audit industry have to faintly withdraw from this stage.

Secondly, the sustainable management ability of domestic firms is also a problem that cannot be ignored. The resignation of the chief chief accountant of most of the firms is definitely a catastrophe for the firm. From the decomposition of the original Tianjian Group and the current organizational structure and business structure of the major accounting firms, we can easily see that the unsustainability of the firm’s development has seriously restricted this issue. Industry development.

The development of an open, transparent and competitive business engagement model, the formation of a holistic structure that diversifies risks and the decision-making system based on collective participation are the way to enhance domestic sustainable management capabilities.

In the end, the combination of sacredness and stagnation can not take into account the interests of all parties. The merger of domestic companies is currently only a merger of financial statements, and it is impossible to form a merger in the true sense. What I want to strongly point out here is that merger is an inevitable trend, and this is also the fastest way to become bigger and stronger. The reason is:

First: From the business module, the biggest gap between the domestic and international four is the strong back-end service. The so-called back-end services include the development of the system audit talent and system of erp, the development and application of the audit system, and the asset evaluation. Comprehensive utilization of model calculations, identification of special stocks, etc. The role of this powerful back-end technology service for effective business risk assessment and control is self-evident. However, can the merger generate such a powerful background service? The answer is yes, because at present there is no such powerful back-end technical service as the international four, but many domestic companies have also spent considerable manpower and resources to invest in the formation of these modules. However, the disparity in strength has created a dwarf in the background service. But if China can squash a series of back-office service investments together to create a back-end technical service that can serve each other against the international four, I think this can be done.

Second: the merger itself cannot increase the increase in domestic audited business, but it can improve the competitiveness of large-scale state-owned assets, large-scale red and blue-chip ipo projects, h-share projects and international auditing operations. At present, some cakes may not be able to eat even if they are given to us. This is the embarrassing situation that has developed in China at present. But through the merger, for the time being, whether or not we have this ability, but at least qualified to participate.

Third: through mergers can relatively reduce competition in the industry. Of course, this reduction of horizontal competition is based on having a good sustainable management capability, relying on collective decision-making and comprehensive consideration of the interests of all parties.

"One goal, the same dream", I think the development of the country can fully draw on this long-term development model. In other words, from a distance, the country is either merging or being merged. The merger of the firm must have a long-term development concept and a general situation. The interests cannot be absolutely balanced, and unfairness is absolute. Firms with localist ideas may still have some substantial benefits in the short term, but in the long run they will eventually be eliminated or exit the securities sector.

3. Some suggestions for making bigger and stronger domestic

This topic is the author's least dare to speak, and is also the most want to speak. There are too many extravagances and passions to see.

First, reform and unify the reasonable employee compensation system, improve and plan the shareholder interest distribution system. Here, unity is not a big pot of rice, but a system of unity.

Second, carry out multi-level management of domestic audited businesses. At present, domestic companies only restrict small institutions, and only those with securities qualifications can undertake large-scale projects such as auditing and ipo of listed companies. However, there are no large institutions that regulate the qualifications of some securities and participate in some small firms to compete in business. The temptation of the survival and interests of enterprises has led some small firms to start relying on the domestic large-scale securities auditing business to make such restrictions exist and die. Nevertheless, the author fully agrees that this is a one-way restriction that small domestic firms are not allowed to engage in the securities industry. The difference is that the author also believes that some domestic large-scale businesses should be tiered and restricted, and the industry can be managed at multiple levels. Relatively effective to curb the current vicious competition in this industry. Giving small firms the right to survive and grow stronger is also to create a healthy auditing environment for the development of domestic institutions, and it is relatively safe to make the word audit a little cleaner.

Third, increase supervision, improve the content of supervision, not stay in the form, and increase the cost of violations. To some extent, the vicious competition in the industry has a lot to do with regulation. If the domestic large-scale implementation of the audit business in strict accordance with industry standards, it will inevitably lead to a lack of competitiveness in audit fees and employee compensation. Driven by the principle of cost-effectiveness, this has led some domestic companies to lower their standards of practice in order to enhance their competitiveness. Therefore, the direction of the industry and the supervision of the regulatory level are closely related. It is necessary to enlarge and strengthen the National Institute, but it is not far from the support of the peasant and the palliative care, and it is also not international.

Finally, the audit is analyzed from the audit concept and the reform is proposed. As we all know, the audit business belongs to the attestation business, but all the forensic services are the five elements of the attestation, including the tripartite relationship, the object of attestation, the standards, the evidence, and the attestation report. Among them, the tripartite relationship reports the CPA, the responsible party, and the intended users. Here, the author believes that the tripartite relationship among the five elements of the forensic should be reformed into a fourth party and become a four-party relationship. This fourth-party relationship, her functions should include obtaining the right to choose an accounting firm from the original responsible party, and charging the responsible party every year according to industry standards, in accordance with the industry's rating standards, the scale of hierarchical management. The quality of the business is subject to bidding. This fourth party should not be formed by a corporate entity for profit, but should be formed by a professional team led by the government. And subject to strict supervision by the regulatory authorities. The advantages of such reforms are obvious. The non-independence of economic interests will be a major obstacle to the development of the auditing industry, and such reforms can effectively get rid of the current embarrassing situation. Similarly, this kind of reform will lead to another problem, that is, the fourth party’s corruption problem, how to supervise the fourth party has become a problem. Moreover, the separation of China's external audit from the Audit Commission is a successful reform. If the fourth-party government guidance is introduced, will it lead to the return of the original problem. This series of problems is not something that the author can solve. The introduction of corresponding supporting measures should be able to perfect the concept of such reform. The author can only make bold guesses from the ideas.

Bank's first half of the fund plan management work summary School financial work summary financial standard self-examination self-correction work summary Rural credit cooperative credit department work summary Bank third quarter work summary 2019 party school financial work summary City Credit Union 2019 financial management work summary Accounting Department Annual Financial Work Summary
View More>> Financial Work Summary

Second, the firm's business quality control

1. The impact of business control concepts on business quality

Strengthening business quality is the core competitiveness of future firm development, and quality control is the core driving force of business quality. At present, there is a considerable distance between the four countries in this respect. The author understands that a large part of the domestic quality control is left in the form, the implementation under the new auditing standards, and the brain drain caused by the compensation mechanism is relatively serious compared to the international four.

The enhancement of business quality, from a certain point of view, is to detail the audit. However, the details of any transaction will eventually attract the resentment and disgust of most employees. Therefore, the corresponding leadership promotion is particularly important, and the promotion of leadership must inevitably consider the basis of cost-benefit. The loss of interest will ultimately fall on the determination of leadership. To this end, the author conducted a relative analysis based on the concept of business control quality.

The business quality concept is divided into business control concepts and talent competition concepts. The concept of business control and the concept of talent competition are two sides of a business, the former is outward and the latter is inward.

The so-called business control concept is a culture of strict risk control, effective business processes, and a strong leadership promotion mechanism. A good business process determines the level of business quality, and it is an inevitable trend to actively implement the business requirements of the new auditing standards. The relevant training and implementation of the new audit system and subsequent enhancement and discussion will inevitably affect the resentment of some old employees and the distribution of interests of some leaders. The audit itself is essentially a process of stylizing with thought. Temporarily divesting the participation of ideas, the stylized process defects alone may lead to fatal legal liability risks. The risk-oriented audit of the new auditing standards fully mobilized the entire project team to think about the entire audit. It has a positive effect on controlling risks and evading legal responsibilities, and is full of opportunities and challenges for a new generation of auditors and accounting firms. Whether it is domestic or international, I think that in China, everyone is at the same starting line. Therefore, behind the business control concept, it will be a devastating end!

2. Talent competition concept - salary oriented audit

In terms of the concept of talent competition, the firm must create a sound and effective competition system, which accumulates talent reserves for the long-term development of the firm. The firm's competitiveness comes from the business layer and leadership. Leadership, we can't decide. However, the two are absolutely interacting and restricting. The concept of competition established by the firm must divest personal feelings based on objective substance. The audit risk is mainly concentrated in the firm and the signatory accountant, and the risk of the business executive is negligible to some extent. Therefore, in the business execution stage, we not only need to implement the requirements of the practice standards for risk-oriented auditing, but also a "pay-oriented audit" worthy of attention. "Remuneration-oriented auditing" has not been defined in China. It is purely my personal summary. If there is something wrong, I will forget it.

“Remuneration-oriented auditing” mainly exists in some domestic firms that conduct business commissions based on fees, but these firms are not “reward-oriented audits” in the true sense. They only complete the audit work, according to the proportion of income or individuals. The emotional distribution of the pay. The consequences of such a result will be very significant.

Take the author's experience from several years as an example. In many junior colleges and middle-level employees and some experienced auditors. In the business execution stage, even if they misrepresented the misstatement, they concealed it and then rationalized it and masked it. The reason is simple: do the most projects in the shortest time, the most commissions, and ignore a lot of risks that may be hidden. This has greatly increased the risk of practicing in the firm. This risk is not controlled, but is deliberately concealed. The reason for this situation is very simple, the concept of talent competition is backward!

The "pay-oriented audit" can greatly overcome this risk. Here, I only talk about the "pay-oriented auditing" framework structure, and the specific refinement alone cannot be perfected by me. “Remuneration-oriented auditing” must establish a sound evaluation system, which is a key indicator for assessment. It is adapted to establish a “pay-oriented audit coefficient table”.

This risk factor table constitutes a coefficient table with the size of the misstatement found, the difficulty of the subject draft, the degree of completion of the draft, and the complexity of the organizational structure of the group. Finally, according to the weight multiplier of the risk coefficient table, the salary is allocated, and these tasks are all completed during the planning audit work phase.

Table 1 This table is the initialization form designed by the author.

Risk category risk breakdown basic risk coefficient check program misreporting coefficient response misreporting coefficient analysis program misreporting coefficient coping with misreporting coefficient coefficient

Subject Risk Currency Fund 10 2 2 2 2 18

Subject risk accounts receivable 10 2 2 2 2 18

Subject risk inventory 20 5 5 5 5 40

Subject Risk Accounts Payable 10 2 2 2 2 18

Subject risk should be taxed 15 2 2 2 2 23

Subject risk income 20 5 5 5 5 40

Subject risk cost 5 2 2 2 2 13

Special Risk Related Party Transaction Combination 30 -- -- -- -- 30

Special risk long-term equity investment merger 50 -- -- -- -- 50

Special Risk Special Project Audit 50 2 2 2 2 58

Review risk first-level review 30 -- -- -- -- 30

Review risk secondary review 30 -- -- -- -- 30

Review risk three-level review 30 -- -- -- -- 30

*1 Corresponding discovery and misreporting coefficient in the risk of reviewing deducts the basic coefficient of the relevant subject according to the corresponding system

*2 Salary calculation: commission = project commission amount * sum of coefficient/coefficient of members' responsibility

The advantage of this is that one can control the audit risk of being “hidden or ignored” to a certain extent. The other can effectively improve the ability of business people to practice, to proactively discover and solve problems, and to constantly improve themselves in the process. Only employees who are truly comprehensible and have good learning ability, strong ability to discover, and who are responsible and responsible can get high salary, and these talents are the talents needed by the real office, and they are also the necessary reserves for the core competitiveness of the firm. Talent. This is also a "risk"-oriented audit in the true sense.

1 2 3 4 5 6

Perhaps the "pay-oriented audit" reflects the embarrassment and helplessness of our industry. However, only monopoly industries do not need competition for interests. And our competition needs to be oriented, and any market competition economics theory can be explained!

3. Impact of sampling risk on business quality control

Regarding the risk of business quality control and control of the firm, the author believes that one of the controls that should be strengthened by firms across the country is about sampling risk. The author is deeply impressed by the fact that the CPA examination organized by the Chinese Institute of Certified Public Accountants - the auditing course in the audit course is very numerous, detailed and logical, and the application of this knowledge point in the practice process is For the sake of being stretched. And the control of sampling risk determines the size of the audit risk. This theory and the actual serious decoupling people have to strengthen their use!

The necessity of auditing the use of the sample, the author can not use more to say, in fact, can not say too much. You can only do some analysis and self-response to the difficulties of using the module by discussing and discovering with some friends.

For those who hold objections, think: 1. Is it useful? How much, how to pump, and the fraud of the company will be reflected in the vouchers you can see. Fortunately, you will find the wrong report, but at most it is just the wrong report caused by the company's negligence and mistakes? 2. How to keep the trajectory of the sample, how to judge whether I am random sampling or random sampling, and how to judge whether the sample size is correct? These problems have indeed made the current use of this module to the help of the card.

The author believes that the solution to both problems can be solved with a computer audit system. First of all, we must be sure that the auditing practice requires some inspection procedures that we must do. It doesn't matter if we don't use it for the time being. This is a program. Auditing is to look at the most basic is a stylized process. Therefore, it is absolutely useful to stand in the perspective of standards, circumvent legal risks and respond to industry regulation, but this usefulness is limited to form. The real effect is really dependent on effective pumping. Audit work If all the procedures are implemented in accordance with the auditing standards, the author believes that the auditors are basically in a state of no living, and the audit work can only be carried on the tip of the knife. A large company involves more than 20 subjects, large and small, and at least 4 of each subject are identified. Counting the control points of the control test, it is estimated that at least 200 samples will be calculated. It is impossible to rely on computers, so the development of excellent computer auditing systems and the perfect background services are also problems to be solved.

Secondly, as to whether the company will leave the clues of fraud in the corresponding files or whether it is checked by us. This question, I think, may be in terms of the integrity of the subject. Here, the author emphasizes the use of the analysis program by 10,000, and leaves all the financial and non- financial information used in the analysis program and the final conclusions. Sampling still needs to be drawn because we are implementing the guidelines, even though we are tens of thousands. If you want the peace of mind in this bowl of rice, take a voucher!

Furthermore, the author believes that the sampling method in actual work should adopt the systematic sampling method. It is not because this method has its advanced science, just because it is also a method suitable for statistical sampling principle from the statistical point of view. The lower track can be calculated repeatedly and is simple to use.

4. Pay attention to the impact of erp on audit risk

At present, the erp software used by some large domestic group companies mainly includes oracle, sap, mas. These erp involve the integration of human resources, information storage, sales, procurement, production and warehousing management, financial processing, etc. . The audit risks caused by these applications are risks that cannot be dealt with by the substantive procedures alone. The domestic response to this risk is basically zero. The author has no knowledge of this piece, but knows that it has a profound impact on audit risk. However, strengthening this control can only hope to improve the back-office service capabilities after the substantial mergers of the major offices.

III. Some difficulties and corresponding views on risk-oriented auditing in actual application

The author's audit is not long before, because the experience of the new auditing standards is only on the surface, and the understanding of the old auditing standards is even more limited. Therefore, in this article, we must not distinguish between a new and old auditing standards and right or wrong, I do not have this qualification, and there is no such thing. Therefore, the author only has some important problems encountered in the current audit work, and the author's views on these issues and how to deal with them are simply described. In addition, they are limited to the middle and senior employees in the early stage of learning. discuss.

When I started this article, I was working for a domestic university with a relatively high quality of business. Other domestic situations are also known a little. Therefore, the author temporarily fixed the situation described in the domestic office. At the same time, I also confidently believe that this situation should also apply to other domestic institutions.

1. The nature of risk

When writing a risk assessment control file, the most important thing is to locate the nature of the risk. Differentiating the risk is the level of the financial statement or the level of recognition, and whether the risk cannot be dealt with only by the substantive program. When the internal control is not taken into account, It determines the nature, timing, and scope of some or all of the programs we are implementing.

The difficulty of distinguishing the nature of the actual work is mainly reflected in how we identify the risk from the environment of the audited entity and its related information and properly locate it so as to take the correct response.

1) How to distinguish the risk of misstatement of the financial statement hierarchy and the recognition level.

When we distinguish the problem, we first have two main foundations. 1. It cannot be generalized because the risks that different companies can bear are different. Therefore, we will discuss this issue for the time being without considering the importance. 2. We do not consider internal control for the time being, because internal control has a countervailing effect on risk. We consider internal control in the risk assessment stage of risk assessment. So at this time, we temporarily think that internal control is a "streaking state."

The auditing standard defines the risk at the level of the financial statements as “the risk is broadly related to the financial statements as a whole and may affect multiple determinations...”. The definition of the risk of misstatement at the level of recognition is “for each transaction or event, ending balance, presentation”. The specific identification of the risk of impact." One of the problems that we often have is that most of the risks will affect multiple determinations, and how many decisions can be judged as the so-called "wide" in the financial statement hierarchy? The author's judgment is "I don't know!". That is, it is impossible to judge how many determinations he will affect. As long as you can calculate the specific identification of the risk “may affect”, then the risk is the level of recognition. Of course, if the entire statement is included, it is the financial statement level risk. It's time. My judgment may be somewhat helpless, but it is effective to a certain extent. Of course, the final “assessment risk phase” judges that we have to consider the two project factors – the level of importance and the internal control offset!

2) Risks that cannot be dealt with only by substantive procedures

In actual work, the risks we face that cannot be dealt with by the substantive procedures are absolute. The simplest ones are the general kid and UF financial software, complex erp systems, automated invoicing control programs used in supermarkets and stores, as well as special trading software for the financial industry and processing software for power systems. But these are basically special risks that the substantive program cannot cope with. And how to evaluate these winds based on internal control, and designate an effective further auditing program is a gap in the country. How to solve the problem is how to build a diversified talent pool, which depends on the firm's Backstage service strength. On the whole, it is better to integrate the firm's human resources than to control the risk that cannot be dealt with by the substantive program at an acceptable low level. Because in a certain program, this has no substantive relationship with our business level. The risk of automated control, the problem that can be solved at the business level is only whether it is implemented if the control is "correct".

2. Assess risk

How to assess risk is the hardest thing in practical work, and this is the job that best reflects the value of the project manager.

How to summarize the environmental information of the audited organizations that they know is the key to guiding the development of the program. The author believes that this process is organized by two closely related processes. They are *1, the assessment of the risks we initially identified. *2. Understand that internal control itself is the risk that we may estimate for internal control defects.

In the actual work, we have evaluated some initial risks when we have compiled the information of the audited units we have learned from the internal information, industry information and the overall economic environment of the company. However, these risks do not necessarily occur in the enterprise. Because companies have their own immune system - internal control. When we conduct the final risk assessment, we must consider and judge whether the immune system designed by the company can resist the risk of the initial assessment. The difficulty often encountered at this time is how to identify control and self-confidence to judge whether its control is properly designed and implemented. This kind of work can't be done without certain experience. To this end, the author summarizes some measures that can be learned by combining some difficulties and experiences encountered in actual work.

First, how to identify controls that can offset the risk we initially assess. The author believes that 1, you can think backwards. That is to say, once this risk occurs, which link, which department, which control, and which person will be discovered at the first time, because most unreasonable operations will eventually be discovered. Then the control that finds the wrong person is the identifiable control, and his corresponding work is the work we think can offset the risk. In theory, this control is also called inspection control. 2. Considering from the source, thinking about divergence. This method is the most common method for me, but it is also a difficult method. Because this requires us to judge from the perspective of the enterprise, how to design and control to prevent such risks. Then look for the preventive control of the corresponding match from the actual internal control of the enterprise. This method is difficult to accomplish without certain management experience.

Second: How do we assess the risks that can result from internal control deficiencies when understanding internal controls themselves. In general, this will be understood in our links to the company's important transaction categories that may be misreported. For example, we usually take the sales and collection cycle and the production and storage cycle as more important, and it is easy to misunderstand the link to understand and test. Then, in these links, we should dig the corresponding internal control one by one according to the business process and the misstatement that may be issued at each level. This method can also be called authentication one by one.

For the work of this link, the actual operation is very difficult. It is necessary to have considerable experience in auditing work. It must also have the understanding of business management, strategic risks, capital market rules and basic application, the grasp of the giant economy and the sensitivity. The requirements of the project manager can be imagined. Those who really have these abilities may not stay in the auditing industry where the wage system is too unreasonable. Therefore, this is one of the reasons why the author puts forward the “pay-oriented audit”.

3. Risk assessment process record

The risk assessment program belongs to the audit work at the planning stage, and a good plan audit work must leave a clear idea. In actual work, most of the risk assessment program files are only the final approved version. The author believes that such a defect is that the three-level review personnel cannot comprehensively consider the rationality of the previous data, so it is necessary for the risk assessment file to retain its original data version. The reasons are as follows:

First of all: from the primary data version to the first-level review version to the second-level review version to the third-level review version. The writing and judgment of the risk assessment program file has a wide relationship with the personal knowledge. Not every project manager can accurately judge the right and wrong. Therefore, the author believes that all versions should be collected together. The judgment of the third-level review can refer to the previous basic data and the judgment of the previous review. This consideration is a relatively comprehensive consideration.

Second: Some people may question if it is too difficult to open too many documents if this is done. Otherwise, I believe that it is perfectly possible to fill all versions of the information record in different columns in the same worksheet in an excel file. This is relatively clear at a glance.

Finally: the handling of the regulatory review is simple, we can just print and turn over the final validation version. Because, the purpose of our doing this is only to allow the reviewers to consider them comprehensively during the risk assessment.

Therefore, keep any records that are needed and not needed, as risk assessment is part of the project's audit work. The risk assessment file does not have to be void.

4. How to make substantive and pleasant communication

How to let the management and employees clearly understand the meaning we need to express and communicate cheerfully, which determines the further development of our work, and reflects the display of our personal charm and the accumulation of social resources.

First of all: For most of the personnel engaged in the auditing industry, it can basically be regarded as a professional. The usual conversation and work content determine that our thinking mode is too "professional and rigorous", so it will inevitably appear when communicating with enterprises. Obstacles, because we are not all financial staff, most of them may be non- financial communication. So how to let the company's personnel clearly understand the ideas we want to express, how to let the company understand the information we want to obtain, the proportion of our work is absolutely more effective.

For example, we understand the sales and collection cycle in internal control in the execution of the risk assessment program. If you ask the other party: "Do you have internal control over sales? How do you do the sales deadline? How did your business happen? Do you reconcile every month? Do you understand the customer's credit situation? How to do it? Pricing control? When is it convenient, can we do the walk-through test?" Some junior sales people may be in the fog, and then the cautious people say they don't know, and those who are not careful will talk about us indiscriminately. The test is inconsistent. In fact, many of these financial personnel understand what we mean, but not everyone has financial knowledge. In the face of these communication problems, the author believes that auditors should stand in the business perspective of the other party and ask from the daily economic business program we understand. Some of the technical terms of the above questions can be simplified as: "Internal control is the workbook, the sales deadline is how the relevant sales records are sent to the finances in time , the pricing control is how the sales price is formulated, and the passing test means that we want to further experience the company's business processing. "The actual process, etc.", some similar words can achieve our intended purpose.

Second, it is pleasant communication. Our job site and information are placed in the enterprise, the food and clothing parents come from the enterprise, and our work content is to face the enterprise in a questioning spirit, which is somewhat embarrassing. The author's point of view is that respecting your own work can make customers respect you, and take your work seriously so that customers can understand the value of your work. Professional and rigorous handling of problems will eventually let customers know your value and even hire you again. Of course, what I said must be based on maintaining a harmonious customer relationship and work environment. Adherence to one's own principles must be reflected to a certain extent, and this principle is the moral and legal bottom line of "iron bottom", so that customers can respect and appreciate, and the "harmonious" working atmosphere at the expense of audit risk will only In the back, let the customers scorn and let their peers abandon. This is the case, and so is the person.

First, let each other's work go smoothly and effectively. Enterprises must be based on production and operation, so work efficiency is the first priority, and the information that our auditors need is very complicated. The author believes that our auditors should use our solid professional knowledge and skilled office software to process the initial data that the company can provide to reduce the pressure on the financial staff of the company and promote the effective work of each other. data.

Second, on the basis of adhering to the professional ethics of the auditors and the legal bottom line, the respect of the winning enterprises. In order to win the respect of the company, we should treat our profession without being humble. Only by profoundly understanding the value of this profession can the company understand the meaning of auditing.

Third, on the basis of not violating the standards of practice, enhance the awareness and practice ability of providing value-added services to enterprises. This is also the only "in vitro" advantage that exists when the domestic competition with the international four major competitions. For the enterprise, the audit report is the “product” that the purchaser produces. The more "product" additional functions in this broad sense, the more value-added services, the stronger their competitiveness. Naturally, communication will also be enjoyable.

Summary of audit work

recommended article

popular articles