Direct assistance means the use of internal auditors to perform audit procedures under the direction, supervision and review of the external auditor. …

For the purposes of this Auditing Standard, the following terms have the meanings attributed below: …

Those charged with governance – The person(s) or organisation(s) (e.g., a corporate trustee) with responsibility for overseeing the strategic direction of the entity and obligations related to the accountability of the entity.  This includes overseeing …

Management – The person(s) with executive responsibility for the conduct of the entity’s operations.  For some entities in some jurisdictions, management includes some or all of those charged with governance, for example, executive members of a governance …

For the purposes of this Auditing Standard, the following terms have the meanings attributed below: …

Assertions – Representations, explicit or otherwise, with respect to the recognition, measurement, presentation and disclosure of information in the financial report which are inherent in management representing that the financial report is prepared in …

Business risk – A risk resulting from significant conditions, events, circumstances, actions or inactions that could adversely affect an entity’s ability to achieve its objectives and execute its strategies, or from the setting of inappropriate objectives …

Controls – Policies or procedures that an entity establishes to achieve the control objectives of management or those charged with governance.  In this context: (Ref: Para. A2–A5) Policies are statements of what should, or should not, be done within the …

General information technology (IT) controls – Controls over the entity’s IT processes that support the continued proper operation of the IT environment, including the continued effective functioning of information processing controls and the integrity of …

Information processing controls – Controls relating to the processing of information in IT applications or manual information processes in the entity’s information system that directly address risks to the integrity of information (i.e., the completeness, …