52 paragraphs found
If the service auditor’s testing period is completely outside the user entity’s financial reporting period, the user auditor will be unable to rely on such tests for the user auditor to conclude that the user entity’s controls are operating effectively …
In determining the nature and extent of audit evidence to be obtained in relation to balances representing assets held or transactions undertaken by a service organisation on behalf of the user entity, the following procedures may be considered by the …
The user auditor shall not refer to the work of a service auditor in the user auditor’s report containing an unmodified opinion unless required by law or regulation to do so. If such reference is required by law or regulation, the user auditor’s report …
Information on the nature of the services provided by a service organisation may be available from a wide variety of sources, such as: User manuals. System overviews. Technical manuals. The contract or service level agreement between the user entity and …
When obtaining an understanding of internal control relevant to the audit in accordance with ASA 315, [4] the user auditor shall evaluate the design and implementation of relevant controls at the user entity that relate to the services provided by the …
In determining the sufficiency and appropriateness of the audit evidence provided by a type 1 or type 2 report, the user auditor shall be satisfied as to: The service auditor’s professional competence and independence from the service organisation; and …
The user auditor shall enquire of management of the user entity whether the service organisation has reported to the user entity, or whether the user entity is otherwise aware of, any fraud, non‑compliance with laws and regulations or uncorrected …
… of controls at a service organisation (referred to in this Auditing Standard as a type 1 report) means a report that …
Services provided by a service organisation are relevant to the audit of a user entity’s financial report when those services, and the controls over them, are part of the user entity’s information system, including related business processes, relevant to …
Another auditor may be used to perform procedures that will provide the necessary information about the relevant controls at the service organisation. If a type 1 or type 2 report has been issued, the user auditor may use the service auditor to perform …