AICPA Issues Two Final Standards on Internal Control


The AICPA’s Auditing Standards Board issued two final standards on internal control.

 

Statement on Standards for Attestation Engagements (SSAE) no. 15, An Examination of an Entity’s Internal Control Over Financial Reporting That Is Integrated With an Audit of Its Financial Statements , converges the standards practitioners use for reporting on a nonissuer’s internal control with the PCAOB’s Auditing Standard no. 5, An Audit of Internal Control That is Integrated With an Audit of Financial Statements. The SSAE supersedes AT section 501, Reporting on an Entity’s Internal Control Over Financial Reporting. It is effective for integrated audits for periods ending on or after Dec. 15, 2008. Earlier implementation is permitted. The SSAE is available at http://tinyurl.com/56jxmf .

 

Statement on Auditing Standards (SAS) no. 115, Communicating Internal Control Related Matters Identified in an Audit , was issued to eliminate definitional differences within the AICPA’s audit and attest standards resulting from the issuance of SSAE no. 15. The SAS supersedes AU section 325, Communicating Internal Control Related Matters Identified in an Audit.

 

The SAS contains revised definitions of the terms material weakness and significant deficiency ; revises the list of deficiencies in internal control that are indicators of material weaknesses; removes a list of deficiencies that ordinarily would be considered at least significant deficiencies; and contains a revised illustrative written communication to management and those charged with governance of material weaknesses and significant deficiencies

 

The SAS is effective for audits of financial statements for periods ending on or after Dec. 15, 2009. Earlier implementation is permitted. It is available at http://tinyurl.com/59gm78 .

 

The ASB also issued the first clarified auditing standard resulting from its clarity project—Statement on Auditing Standards The Auditor’s Communication With Those Charged With Governance (Redrafted), which supersedes AU Section 380, The Auditor’s Communication With Those Charged With Governance.

SPONSORED REPORT

Cybersecurity threats proliferating for midsize and smaller businesses

This report details how SMBs can properly protect private information from breaches, design and implement a cybersecurity policy, and create safeguards for training and education.

QUIZ

News quiz: Senate health care bill in the spotlight

Reports related to the Republican bill to repeal many provisions of the PPACA, other tax issues, and the giant AICPA ENGAGE Conference offered a diverse reading list for June. See how much you know about recent news with this short quiz.