In the United States, the Auditing Standards Board (ASB) is the senior technical committee designated by the American Institute of Certified Public Accountants (AICPA) to issue auditing, attestation, and quality control statements, standards and guidance to certified public accountants (CPAs) for non-public company audits. [1] [2] Created in October 1978, it is composed of 19 members representing various industries and sectors, including public accountants and private, educational, and governmental entities. It issues pronouncements in the form of statements, interpretations, and guidelines, which all CPAs must adhere to when performing audits and attestations. [3]
The American Institute of Certified Public Accountants has issued guidance to accountants and auditors since 1917, when, at the behest of the U.S. Federal Trade Commission and auspices of the Federal Reserve Board, it issued a series of pamphlets to the accounting community in regard to preparing financial statements and auditing (then referred to as "verification" and later "examination"). [4] Verification of Financial Statements, the first pamphlet dedicated exclusively to providing guidance for audits, was issued in 1929. [5] With its opening paragraph, the guidance provided one of the most fundamental principles in auditing, stating that "the responsibility for the extent of the (audit) work required must be assumed by the auditor." [6] In 1936 the AICPA revised its prior pronouncements and issued Examination of Financial Statements by Independent Public Accountants, which contained more detailed guidance on performing audit procedures for audits of small and mid-sized companies, while still emphasizing the need to perform the audit based on the nature of the client, its size, and its internal control structure, among other attributes. [7]
On January 30, 1939, the Committee on Auditing Procedure was formed by the AICPA to evaluate, discuss, and issue guidance exclusively on auditing-related matters. [8] This Committee is considered the antecessor of the Auditing Standards Board, and was the first to issue Statements on auditing standards and principles to the public accounting community. [8] In 1941 it issued a pamphlet titled Statements on Auditing Procedure, which discussed the auditor’s responsibility in applying judgment in audits. It was followed by a series of numbered pronouncements called Statements on Auditing Procedures, or SAP (the antecessors of Statements on Auditing Standards), issued between 1939 up to the early 1970s for a total of 54 SAP pronouncements. [8] During that time, the Securities Exchange Commission required public accountants to include a representation in their independent audit reports that the audit was performed in compliance with generally accepted auditing standards, and the Committee issued a booklet titled Generally Accepted Auditing Standards—Their Significance and Scope to adopt the SEC’s requirement. [8] In 1963, the Committee issued Statement on Auditing Procedure No. 33 to consolidate and replace various pronouncements issued between 1949 and 1963, including pamphlets and statements. [8]
In 1972, the AICPA implemented significant changes to its standard-setting practices by consolidating all auditing pronouncements up to that date under Statements on Auditing Standards (SAS), and gave the Committee the title of senior technical committee on auditing matters while changing its name to Auditing Standards Executive Committee. From 1972 through 1978 the Executive Committee issued SAS as the authoritative guidelines and rules for auditing, issuing a total of 23 SAS. [9]
In October 1978, following extensive studies by the AICPA and its sub-committees, its governing council established the Auditing Standards Board as the maximum authoritative body in establishing GAAS, thereby consolidating and replacing all previous senior technical committees. [3] It required all AICPA members and public accountants to adhere to the ASB’s pronouncements in relation to audit, attestation, and quality control. The ASB would now define auditor responsibilities and provide guidance to allow them to accomplish work and emit a report, among others. [3]
The Sarbanes–Oxley Act of 2002, as amended by the Dodd–Frank Act, changed the hierarchy of generally accepted auditing principles and standards. The legislation established that the new Public Company Accounting Oversight Board (PCAOB) and the Securities Exchange Commission (SEC) now had final authority over auditing regulation and public-auditor professional-practices standards for audits of public companies, also referred to as "issuers". [10] Public accountants and firms who audit public companies were required to register with the PCAOB and follow all standards, principles, rules, and interpretations issued by the PCAOB in regard to public company audits and audit reports, as well as attestation and quality control. The PCAOB adopted the ASB's auditing and attest standards as its temporary auditing rules in 2003. [10]
The AICPA subsequently changed the designation of the leading GAAS-setting authority in February 2004. It designated the PCAOB as the authoritative body for GAAS related to public companies, while the ASB was designated for non-public companies. [10]
Board member | Representing industry |
---|---|
Sara Lord (Chair) | RSM US LLP |
Maxene Bardwell | Washington Suburban Sanitary Commission (WSSC) |
Michael Barton | Petrow Kane Leemhuis, PC |
Samantha Bowling | Garbelman Winslow CPAs |
Sherry Chesser | Landmark PLC |
Halie Creps | KPMG |
Horace Emery | Suttle & Stalnaker, PLLC |
Diane Hardesty | Ernst & Young LLP |
Robert Harris | Rehmann Robson |
Kathleen Healy | PricewaterhouseCoopers LLP |
Clay Huffman | Frazier & Deeter, LLC |
Greg Jenkins | Auburn University |
Maria Manasses | Grant Thornton LLP |
Andrew Prather | Clark Nuber P.S. |
Renee Rampulla | Rampulla Advisory Services, LLC |
Jeffrey Rapaglia | FORVIS LLP |
Chris Rogers | Infragistics |
Michael Schmitz | Schmitz-Holmstrom, LLP |
Tania Sergott | Deloitte & Touche LLP |
The Auditing Standards Board consists of 19 members (see table for current Board members), [11] each nominated by the Director of the AICPA Audit and Attest Standards Staff and approved by the AICPA Board of Directors. [12] The Board has a Chairman to direct Board meetings and to establish procedures, sub-committees, and perform other similar tasks in conjunction with the Director. To assure that the different industries and sectors are represented, the AICPA has reserved nominations for different industry segments as part of its operating policies: [12]
Board members serve a one-year term, after which they are evaluated by the AICPA for their performance, and can then be re-appointed for up to 3 one-year terms, or dismissed by the AICPA. The AICPA may extend the term of service if, for example, the member is working on a long-term project and the AICPA believes that such participation is crucial for the completion of the project. [12]
ASB proposed pronouncements are discussed within the ASB membership, the AICPA and with the general public. The ASB meets periodically to discuss auditing issues and prepare and draft pronouncement proposals, and occasionally holds public hearings. The meetings are considered informal (no set of formal rules) to encourage open deliberation between its members,. [13] Matters which affect public interest, such as proposals of new SAS, are open to the public. [13] The meetings and hearings are established by the ASB Chair, with public notices and meeting highlights and summaries printed in The CPA Letter, and on the AICPA website. [13] A quorum comprises the majority of ASB members or their representatives, and other members of the AICPA are usually invited also. [13]
Proposed pronouncements are discussed in the ASB meetings, and the board members must vote before to issuing a draft proposal (called an "exposure draft") or the final version to the public with two-thirds of ASB members in favor. [14] The voting results are included in the meeting highlights published, and any ASB member who dissents from issuing a pronouncement may request that the reasons for dissenting be included in the exposure draft or final pronouncement. [14]
Accounting, also known as accountancy, is the processing of information about economic entities, such as businesses and corporations. Accounting measures the results of an organization's economic activities and conveys this information to a variety of stakeholders, including investors, creditors, management, and regulators. Practitioners of accounting are known as accountants. The terms "accounting" and "financial reporting" are often used as synonyms.
The American Institute of Certified Public Accountants (AICPA) is the national professional organization of Certified Public Accountants (CPAs) in the United States, with more than 428,000 members in 130 countries. Founded in 1887 as the American Association of Public Accountants (AAPA), the organization sets ethical standards and U.S. auditing standards. It also develops and grades the Uniform CPA Examination. The AICPA maintains offices in New York City; Washington, DC; Durham, NC; and Ewing, NJ.
Generally Accepted Accounting Principles is the accounting standard adopted by the U.S. Securities and Exchange Commission (SEC) and is the default accounting standard used by companies based in the United States.
Certified Public Accountant (CPA) is the title of qualified accountants in numerous countries in the English-speaking world. It is generally equivalent to the title of chartered accountant in other English-speaking countries. In the United States, the CPA is a license to provide accounting services to the public. It is awarded by each of the 50 states for practice in that state. Additionally, all states except Hawaii have passed mobility laws to allow CPAs from other states to practice in their state. State licensing requirements vary, but the minimum standard requirements include passing the Uniform Certified Public Accountant Examination, 150 semester units of college education, and one year of accounting-related experience.
An audit is an "independent examination of financial information of any entity, whether profit oriented or not, irrespective of its size or legal form when such an examination is conducted with a view to express an opinion thereon." Auditing also attempts to ensure that the books of accounts are properly maintained by the concern as required by law. Auditors consider the propositions before them, obtain evidence, and evaluate the propositions in their auditing report.
The Public Company Accounting Oversight Board (PCAOB) is a nonprofit corporation created by the Sarbanes–Oxley Act of 2002 to oversee the audits of public companies and other issuers in order to protect the interests of investors and further the public interest in the preparation of informative, accurate and independent audit reports. The PCAOB also oversees the audits of broker-dealers, including compliance reports filed pursuant to federal securities laws, to promote investor protection. All PCAOB rules and standards must be approved by the U.S. Securities and Exchange Commission (SEC).
Generally Accepted Auditing Standards, or GAAS are sets of standards against which the quality of audits are performed and may be judged. Several organizations have developed such sets of principles, which vary by territory. In the United States, the standards are promulgated by the Auditing Standards Board, a division of the American Institute of Certified Public Accountants (AICPA).
In the United States, Statements on Auditing Standards provide guidance to external auditors on generally accepted auditing standards in regards to auditing a non-public company and issuing a report. They are promulgated by the Auditing Standards Board of the American Institute of Certified Public Accountants (AICPA), which holds all copyright on the Standards. They are commonly abbreviated as "SAS" followed by their respective number and title.
A going concern is an accounting term for a business that is assumed will meet its financial obligations when they become due. It functions without the threat of liquidation for the foreseeable future, which is usually regarded as at least the next 12 months or the specified accounting period. The presumption of going concern for the business implies the basic declaration of intention to keep operating its activities at least for the next year, which is a basic assumption for preparing financial statements that comprehend the conceptual framework of the IFRS. Hence, a declaration of going concern means that the business has neither the intention nor the need to liquidate or to materially curtail the scale of its operations.
Audit evidence is evidence obtained by auditors during a financial audit and recorded in the audit working papers.
Internal control, as defined by accounting and auditing, is a process for assuring of an organization's objectives in operational effectiveness and efficiency, reliable financial reporting, and compliance with laws, regulations and policies. A broad concept, internal control involves everything that controls risks to an organization.
Management assertions or financial statement assertions are the implicit or explicit assertions that the preparer of financial statements (management) is making to its users. These assertions are relevant to auditors performing a financial statement audit in two ways. First, the objective of a financial statement audit is to obtain sufficient appropriate audit evidence to conclude on whether the financial statements present fairly, in all material respects, the financial position of a company and the results of its operations and cash flows. In developing that conclusion, the auditor evaluates whether audit evidence corroborates or contradicts financial statement assertions. Second, auditors are required to consider the risk of material misstatement through understanding the entity and its environment, including the entity's internal control. Financial statement assertions provide a framework to assess the risk of material misstatement in each significant account balance or class of transactions.
Entity-level controls are controls that help to ensure that management directives pertaining to the entire entity are carried out. They are the second level of a to understanding the risks of an organization. Generally, entity refers to the entire company.
Regulation S-X is a prescribed regulation in the United States of America that lays out the specific form and content of financial reports, specifically the financial statements of public companies. It is cited as 17 C.F.R. Part 210; the name of the part is "Form and Content of and Requirements for Financial Statements, Securities Act of 1933, Securities Exchange Act of 1934, Public Utility Holding Company Act of 1935, Investment Company Act of 1940, Investment Advisers Act of 1940, and Energy Policy and Conservation Act of 1975".
The AICPA Code of Professional Conduct is a collection of codified statements issued by the American Institute of Certified Public Accountants that outline a CPA's ethical and professional responsibilities. The code establishes standards for auditor independence, integrity and objectivity, responsibilities to clients and colleagues and acts discreditable to the accounting profession. The AICPA is responsible for drafting, revising and reissuing the code annually, on June 1. The current Code is available at the AICPA Web site. For older versions of the Code, see the links below.
Statement on Standards for Attestation Engagements no. 16 is an auditing standard for service organizations, produced by the American Institute of Certified Public Accountants (AICPA) Auditing Standards Board, which supersedes Statement on Auditing Standards no. 70 and has been superseded by SSAE No. 18.
Statement on Standards for Attestation Engagements no. 18 is a Generally Accepted Auditing Standard produced and published by the American Institute of Certified Public Accountants (AICPA) Auditing Standards Board. Though it states that it could be applied to almost any subject matter, its focus is reporting on the quality of financial reporting. It pays particular attention to internal control, extending into the controls over information systems involved in financial reporting. It is intended for use by Certified Public Accountants performing attestation engagements, the preparation of a written opinion about a subject, and the client organizations preparing the reports that are the subject of the attestation engagement. It prescribes three levels of service: examination, review, and agreed-upon procedures. It also prescribes two types of reports: Type 1, which includes an assessment of internal control design, and Type 2, which additionally includes an assessment of the operating effectiveness of controls. Published April 2016, SSAE 18 and all previous standards it supersedes are represented in section AT-C of the AICPA Professional Standards, with most sections becoming effective on May 1, 2017.
System and Organization Controls (SOC), as defined by the American Institute of Certified Public Accountants (AICPA), is the name of a suite of reports produced during an audit. It is intended for use by service organizations to issue validated reports of internal controls over those information systems to the users of those services. The reports focus on controls grouped into five categories called Trust Service Criteria. The Trust Services Criteria were established by The AICPA through its Assurance Services Executive Committee (ASEC) in 2017. These control criteria are to be used by the practitioner/examiner in attestation or consulting engagements to evaluate and report on controls of information systems offered as a service. The engagements can be done on an entity wide, subsidiary, division, operating unit, product line or functional area basis. The Trust Services Criteria were modeled in conformity to The Committee of Sponsoring Organizations of the Treadway Commission (COSO) Internal Control - Integrated Framework. In addition, the Trust Services Criteria can be mapped to NIST SP 800 - 53 criteria and to EU General Data Protection Regulation (GDPR) Articles. The AICPA auditing standard Statement on Standards for Attestation Engagements no. 18, section 320, "Reporting on an Examination of Controls at a Service Organization Relevant to User Entities' Internal Control Over Financial Reporting", defines two levels of reporting, type 1 and type 2. Additional AICPA guidance materials specify three types of reporting: SOC 1, SOC 2, and SOC 3.