AICPA Issues Two Final Standards on Internal Control


The AICPA’s Auditing Standards Board issued two final standards on internal control.

 

Statement on Standards for Attestation Engagements (SSAE) no. 15, An Examination of an Entity’s Internal Control Over Financial Reporting That Is Integrated With an Audit of Its Financial Statements , converges the standards practitioners use for reporting on a nonissuer’s internal control with the PCAOB’s Auditing Standard no. 5, An Audit of Internal Control That is Integrated With an Audit of Financial Statements. The SSAE supersedes AT section 501, Reporting on an Entity’s Internal Control Over Financial Reporting. It is effective for integrated audits for periods ending on or after Dec. 15, 2008. Earlier implementation is permitted. The SSAE is available at http://tinyurl.com/56jxmf .

 

Statement on Auditing Standards (SAS) no. 115, Communicating Internal Control Related Matters Identified in an Audit , was issued to eliminate definitional differences within the AICPA’s audit and attest standards resulting from the issuance of SSAE no. 15. The SAS supersedes AU section 325, Communicating Internal Control Related Matters Identified in an Audit.

 

The SAS contains revised definitions of the terms material weakness and significant deficiency ; revises the list of deficiencies in internal control that are indicators of material weaknesses; removes a list of deficiencies that ordinarily would be considered at least significant deficiencies; and contains a revised illustrative written communication to management and those charged with governance of material weaknesses and significant deficiencies

 

The SAS is effective for audits of financial statements for periods ending on or after Dec. 15, 2009. Earlier implementation is permitted. It is available at http://tinyurl.com/59gm78 .

 

The ASB also issued the first clarified auditing standard resulting from its clarity project—Statement on Auditing Standards The Auditor’s Communication With Those Charged With Governance (Redrafted), which supersedes AU Section 380, The Auditor’s Communication With Those Charged With Governance.

SPONSORED REPORT

Why cybercriminals are targeting CPAs

This free report expands on the most commonly found scams, why education and specialized IT knowledge help to lessen security vulnerabilities, and why every firm should plan carefully for how it would respond to a breach.

PODCAST

How tax reform — and Excel — are changing the CPA Exam

Mike Decker, the vice president of examinations at the AICPA, discusses changes being made to the exam as a result of tax reform — and about how Excel will now be available for use on the test.