What Is Audit Risk?

Audit risk is the risk that financial statements are materially incorrect, even though the audit opinion states that the financial reports are free of any material misstatements.

Understanding Audit Risk

The purpose of an audit is to reduce the audit risk to an appropriately low level through adequate testing and sufficient evidence. Because creditors, investors, and other stakeholders rely on the financial statements, audit risk may carry legal liability for a certified public accountancy (CPA) firm performing audit work.

Over the course of an audit, an auditor makes inquiries and performs tests on the general ledger and supporting documentation. If any errors are caught during the testing, the auditor requests that management propose correcting journal entries.

At the conclusion of an audit, after any corrections are posted, an auditor provides a written opinion as to whether the financial statements are free of material misstatement. Auditing firms carry malpractice insurance to manage audit risk and the potential legal liability.

Types of Audit Risk

The two components of audit risk are the risk of material misstatement and detection risk. Assume, for example, that a large sporting goods store needs an audit performed, and that a CPA firm is assessing the risk of auditing the store’s inventory.

Risk of Material Misstatement

Material misstatement risk is the risk that the financial reports are materially incorrect before the audit is performed. In this case, the word “material” refers to a dollar amount that is large enough to change the opinion of a financial statement reader, and the percentage or dollar amount is subjective. If the sporting goods store’s inventory balance of $1 million is incorrect by $100,000, a stakeholder reading the financial statements may consider that a material amount. The risk of material misstatement is even higher if there is believed to be insufficient internal controls, which is also a fraud risk.

Detection Risk

Detection risk is the risk that the auditor’s procedures do not detect a material misstatement. For example, an auditor needs to perform a physical count of inventory and compare the results to the accounting records. This work is performed to prove the existence of inventory. If the auditor’s test sample for the inventory count is insufficient to extrapolate out to the entire inventory, the detection risk is higher.

What Is an Auditor’s Opinion?

An auditor’s opinion is a certification that accompanies financial statements. It is based on an audit of the procedures and records used to produce the statements and delivers an opinion as to whether material misstatements exist in the financial statements. An auditor’s opinion may also be called an accountant’s opinion.

Understanding Auditor’s Opinions

An auditor’s opinion is presented in an auditor’s report. The audit report begins with an introductory section outlining the responsibility of management and the responsibility of the audit firm. The second section identifies the financial statements on which the auditor’s opinion is given. A third section outlines the auditor’s opinion on the financial statements. Although it is not found in all audit reports, a fourth section may be presented as a further explanation regarding a qualified opinion or an adverse opinion.

For audits of companies in the United States, the opinion may be an unqualified opinion in accordance with generally accepted accounting principles (GAAP), a qualified opinion, or an adverse opinion. The audit is performed by an accountant who is independent of the company being audited.

Unqualified Opinion Audit

An unqualified opinion is also known as a clean opinion. The auditor reports an unqualified opinion if the financial statements are presumed to be free from material misstatements. In addition, an unqualified opinion is given over the internal controls of an entity if management has claimed responsibility for its establishment and maintenance, and the auditor has performed fieldwork to test its effectiveness.

Qualified Audit

A qualified opinion is given when a company’s financial records have not followed GAAP in all financial transactions. Although the wording of a qualified opinion is very similar to an unqualified opinion, the auditor provides an additional paragraph including deviations from GAAP in the financial statements and points out why the auditor report is not unqualified.

A qualified opinion may be given due to either a limitation in the scope of the audit or an accounting method that did not follow GAAP. However, the deviation from GAAP is not pervasive and does not misstate the financial position of the company as a whole.

Adverse Opinion

The most unfavorable opinion a business may receive is an adverse opinion. An adverse opinion indicates financial records are not in accordance with GAAP and contain grossly material and pervasive misstatements. An adverse opinion may be an indicator of fraud. Investors, lenders, and other financial institutions do not typically accept financial statements with adverse opinions as part of their debt covenants.

Disclaimer of Opinion

In the event that the auditor is unable to complete the audit report due to the absence of financial records or insufficient cooperation from management, the auditor issues a disclaimer of opinion. This is referred to as a scope limitation and is an indication that no opinion over the financial statements was able to be determined. A disclaimer of opinion is not an opinion itself.

What Is an Auditor?

An auditor is a person authorized to review and verify the accuracy of financial records and ensure that companies comply with tax laws. They protect businesses from fraud, point out discrepancies in accounting methods and, on occasion, work on a consultancy basis, helping organizations to spot ways to boost operational efficiency. Auditors work in various capacities within different industries.

Understanding an Auditor

Auditors assess financial operations and ensure that organizations are run efficiently. They are tasked with tracking cash flow from beginning to end and verifying that an organization’s funds are properly accounted for.

In the case of public companies, the main duty of an auditor is to determine whether financial statements follow generally accepted accounting principles (GAAP). To meet this requirement, auditors inspect accounting data, financial records, and operational aspects of a business and take detailed notes on each step of the process, known as an audit trail.

Once complete, the auditor’s findings are presented in a report that appears as a preface in financial statements. Separate, private reports may also be issued to company management and regulatory authorities as well.

The Securities and Exchange Commission (SEC) demands that the books of all public companies are regularly examined by external, independent auditors, in compliance with official auditing procedures. Official procedures are established by the International Auditing and Assurance Standards Board (IAASB), a committee of the International Federation of Accountants (IFAC).

Unqualified Opinion vs. Qualified Opinion

Auditor reports are usually accompanied by an unqualified opinion. These statements confirm that the company’s financial statements conform to GAAP, without providing judgment or an interpretation.

When an auditor is unable to give an unqualified opinion, they will issue a qualified opinion, a statement suggesting that the information provided is limited in scope and/or the company being audited has not maintained GAAP accounting principles.

Auditors assure potential investors that a company’s finances are in order and accurate, as well as provide a clear picture of a company’s worth to help investors make informed decisions.

Types of Auditors

• Internal auditors are hired by organizations to provide in-house, independent, and objective evaluations of financial and operational business activities, including corporate governance. They report their findings, including tips on how to better run the business, back to senior management.
• External auditors usually work in conjunction with government agencies. They are tasked with providing an objective, public opinion concerning the organization’s financial statements and whether they fairly and accurately represent the organization’s financial position.
• Government auditors maintain and examine records of government agencies and of private businesses or individuals performing activities subject to government regulations or taxation. Auditors employed through the government ensure revenues are received and spent according to laws and regulations. They detect embezzlement and fraud, analyze agency accounting controls, and evaluate risk management.
• Forensic auditors specialize in crime and are used by law enforcement organizations.

Auditor Qualifications

External auditors working for public accounting firms require a Certified Public Accountant (CPA) license, a professional certification awarded by the American Institute of Certified Public Accountants. In addition to this certification, these auditors also need to obtain state CPA certification. Requirements vary, although most states do demand a CPA designation and two years of professional work experience in public accounting.

Qualifications for internal auditors are less rigorous. Internal auditors are encouraged to get CPA accreditation, although it is not always mandatory. Instead, a bachelor’s degree in subjects such as finance and other business disciplines, together with appropriate experience and skills, are often acceptable.

Special Considerations

Auditors are not responsible for transactions that occur after the date of their reports. Moreover, they are not necessarily required to detect all instances of fraud or financial misrepresentation; that responsibility primarily lies with an organization’s management team.

Audits are mainly designed to determine whether a company’s financial statements are “reasonably stated.” In other words, this means that audits do not always cover enough ground to identify cases of fraud. In short, a clean audit offers no guarantee that an organization’s accounting is completely above board.

What Is an Auditor’s Report?

An auditor’s report is a written letter from the auditor containing their opinion on whether a company’s financial statements comply with generally accepted accounting principles (GAAP) and are free from material misstatement.

The independent and external audit report is typically published with the company’s annual report. The auditor’s report is important because banks and creditors require an audit of a company’s financial statements before lending to them.

How an Auditor’s Report Works

An auditor’s report is a written letter attached to a company’s financial statements that expresses its opinion on a company’s compliance with standard accounting practices. The auditor’s report is required to be filed with a public company’s financial statements when reporting earnings to the Securities and Exchange Commission (SEC).

However, an auditor’s report is not an evaluation of whether a company is a good investment. Also, the audit report is not an analysis of the company’s earnings performance for the period. Instead, the report is merely a measure of the reliability of the financial statements.

The Components of an Auditor’s Report

The auditor’s letter follows a standard format, as established by generally accepted auditing standards (GAAS). A report usually consists of three paragraphs.

• The first paragraph states the responsibilities of the auditor and directors.
• The second paragraph contains the scope, stating that a set of standard accounting practices was the guide.
• The third paragraph contains the auditor’s opinion.

An additional paragraph may inform the investor of the results of a separate audit on another function of the entity. The investor will key in on the third paragraph, where the opinion is stated.

The type of report issued will be dependent on the findings by the auditor. Below are the most common types of reports issued for companies.

Clean or Unqualified Report

A clean report means that the company’s financial records are free from material misstatement and conform to the guidelines set by GAAP. A majority of audits end in unqualified, or clean, opinions.

Qualified Opinion

A qualified opinion may be issued in one of two situations: first, if the financial statements contain material misstatements that are not pervasive; or second, if the auditor is unable to obtain sufficient appropriate audit evidence on which to base an opinion, but the possible effects of any material misstatements are not pervasive. For example, a mistake might have been made in calculating operating expenses or profit. Auditors typically state the specific reasons and areas where the issues are present so that the company can fix them.

Adverse Opinion

An adverse opinion means that the auditor has obtained sufficient audit evidence and concludes that misstatements in the financial statements are both material and pervasive. An adverse opinion is the worst possible outcome for a company and can have a lasting impact and legal ramifications if not corrected.

Disclaimer of Opinion

A disclaimer of opinion means that, for some reason, the auditor is unable to obtain sufficient audit evidence on which to base the opinion, and the possible effects on the financial statements of undetected misstatements, if any, could be both material and pervasive. Examples can include when an auditor can’t be impartial or wasn’t allowed access to certain financial information.

Example of an Auditor’s Report

Excerpts from the audit report by Deloitte & Touche LLP for Starbucks Corporation, dated Nov. 15, 2019, follow.

Paragraph 1: Opinion on the Financial Statements

“We have audited the accompanying consolidated balance sheets of Starbucks Corporation and subsidiaries (the ‘Company’) as of September 29, 2019, and September 30, 2018, the related consolidated statements of earnings, comprehensive income, equity, and cash flows, for each of the three years in the period ended September 29, 2019, and the related notes (collectively referred to as the ‘financial statements’).

In our opinion, the financial statements present fairly, in all material respects, the financial position of the Company as of September 29, 2019, and September 30, 2018, and the results of its operations and its cash flows for each of the three years in the period ended September 29, 2019, in conformity with accounting principles generally accepted in the United States of America.”

Paragraph 2: Basis for Opinion

“We conducted our audits in accordance with the standards of the Public Company Accounting Oversight Board (PCAOB). Those standards require that we plan and perform the audit to obtain reasonable assurance about whether the financial statements are free of material misstatement, whether due to error or fraud. Our audits included performing procedures to assess the risks of material misstatement of the financial statements, whether due to error or fraud, and performing procedures that respond to those risks.

Such procedures included examining, on a test basis, evidence regarding the amounts and disclosures in the financial statements. Our audits also included evaluating the accounting principles used and significant estimates made by management, as well as evaluating the overall presentation of the financial statements. We believe that our audits provide a reasonable basis for our opinion.”