| During 2005 and 2006, the American Institute of | | | | SAS No. 107 - Audit Risk and Materiality in Conducting |
| Certified Public Accountants issued several new | | | | and Audit |
| standards to improve and clarify auditing standards in | | | | SAS No. 108 - Planning and Supervision |
| general. | | | | SAS No. 109 - Understanding the Entity and Its |
| There were two statements that were issued and | | | | Environment and Assessing the Risks of Material |
| became effective upon issuance: | | | | Misstatement |
| Statement on Auditing Standards (SAS) Numbers 102 | | | | SAS No. 110 - Performing Audit Procedures in |
| and 103. | | | | Response to Assessed Risks and Evaluating the Audit |
| SAS No.102, Defining Professional Requirements in | | | | Evidence Obtained |
| Statement on Auditing Standards, clarifies steps in | | | | SAS No. 111- Amendment to SAS No. 39 - Audit |
| auditing standards that are "unconditional requirements" | | | | Sampling |
| defined by works such as "must" and "is required to"; | | | | A greater understanding of the entity is required. |
| and steps that are "presumptively mandatory | | | | Auditors are no longer able to assess control risk at |
| requirements" defined by words such as "should". | | | | maximum without a basis for that determination. |
| SAS No. 103, Audit Documentation, provides guidance | | | | There are several steps auditors must take in applying |
| on audit documentation as an essential element of | | | | the Risk Assessment Standards. |
| audit quality. This standard also gives guidance on the | | | | Gathering Information - The auditors must begin with |
| date of the audit report which cannot be earlier than | | | | gathering information about the entity and its |
| the date on which the auditor has obtained sufficient | | | | environment, including its internal control. Information |
| appropriate audit evidence to support the opinion. As a | | | | gathering should include at minimum information |
| result, the audit report date will need to be close to the | | | | obtained from external factors; information about the |
| date the reports are released | | | | nature of the client; information in connection with the |
| The American Institute of Certified Public Accountants | | | | objectives and strategies and related business risks of |
| also issued the Risk Assessment standard in March | | | | the client; information regarding the client's |
| 2006. The project originated as a joint project with | | | | measurement parameters including a review of the |
| SAS No. 99, Consideration of Fraud in a Financial | | | | client's financial performance; and information in |
| Statement Audit. These standards were issued | | | | connection with the client's internal controls. |
| because the Accounting Standards Board believes | | | | Understand the Entity - The auditor must also |
| that they will strengthen auditing standards and provide | | | | understand the entity and its environment, including its |
| a more in depth understanding of the entity and its | | | | internal control. The auditor must anticipate and |
| environment, a more rigorous assessment of material | | | | evaluate what could go wrong, and be able to |
| misstatements and improved linkage between | | | | synthesize the information gathered to determine how |
| assessed risk and the nature, timing and extent of | | | | it might affect the financial statements. The auditor |
| audit procedures performed. | | | | must also evaluate the design of the client's controls |
| The following standards are in the suite of SASs | | | | and determine if those controls have been |
| issued in connection with the Risk Assessment | | | | implemented (which is different than test of controls). In |
| standards: | | | | evaluating whether controls have been implemented, |
| SAS No. 104 - Amendment to SAS No.1- Codification | | | | the auditor should determine if there is an awareness |
| of Auditing Standards and Procedures | | | | of the existence of the procedure in question and if |
| SAS No. 105 - Amendment to SAS No.95 - Generally | | | | the staff implementing the control have a working |
| Accepted Auditing Standards | | | | knowledge of how the procedure should be |
| SAS No. 106 - Audit Evidence | | | | performed. |