Audit &
Assurance
Complete Notes
১৪টি Chapter-এর বিস্তারিত study notes — বাংলা ব্যাখ্যা, ISA references, exam tips সহ।
"An engagement in which a practitioner expresses a conclusion designed to enhance the degree of confidence of the intended users, other than the responsible party, about the outcome of the evaluation or measurement of a subject matter against criteria."
- Responsible Party — যে party দায়িত্বে আছে (management)
- Practitioner — যিনি কাজ করবেন (auditor)
- User — যাদের জন্য opinion (shareholders)
- Subject Matter — কী examine হচ্ছে (financial statements)
- Criteria — কীসের বিপরীতে (IFRS, ISAs)
- Sufficient Appropriate Evidence
- Written Report with Conclusion
- Financial statements-এর credibility বাড়ায়
- Bank loan / finance পাওয়া সহজ হয়
- Fraud deterrent হিসেবে কাজ করে
- NBR (Tax Authority)-এর কাছে গ্রহণযোগ্য
- Business valuation-এ সাহায্য করে
- Management-এর জন্য internal assurance
| বিষয় | Reasonable Assurance | Limited Assurance |
|---|---|---|
| Level | High | Moderate |
| Conclusion type | Positive opinion | Negative opinion |
| Wording | "gives a true and fair view" | "nothing has come to our attention…" |
| Work done | Extensive testing | Mainly inquiry & analytical |
| Example | Statutory audit (ISAs) | Review engagement (ISRE 2400) |
Assurance মানে একজন independent professional examine করে confidence বাড়ান। Reasonable = doctor full checkup করে "সুস্থ" বললেন। Limited = শুধু দেখে "কিছু চোখে পড়েনি" বললেন। Negative opinion মানে খারাপ opinion না — এটা statement-এর grammatical form।
"Elements of assurance engagement" — ৭টা point লিখলে full marks। "Compare reasonable and limited" — table format-এ লিখলে সবচেয়ে ভালো।
Reasonable assurance = doctor full body checkup করে বললেন "আপনি সুস্থ।" Limited assurance = শুধু দেখে বললেন "কিছু চোখে পড়েনি।" দুটোই assurance — কিন্তু level আলাদা।
তুমি একটা company-তে invest করতে চাও। Financial statements দেখলে — কিন্তু কীভাবে বিশ্বাস করবে? Auditor-এর opinion সেই বিশ্বাসটা দেয়।
"Negative opinion" মানে খারাপ opinion না! এটা statement-এর grammatical form। "Nothing has come to our attention..." — এটাই negative form।
An assurance engagement is one in which a practitioner expresses a conclusion designed to enhance the degree of confidence of the intended users, other than the responsible party, about the outcome of the evaluation or measurement of a subject matter against criteria. Assurance engagements include audits, reports on internal control and review of business plans.
| Element | মানে কী? | Example |
|---|---|---|
| Responsible Party | Subject matter-এর জন্য দায়ী যে party | Company management |
| Practitioner | Assurance কাজ করেন যিনি | External auditor, ICAB member |
| User | Report ব্যবহার করবেন যারা | Shareholders, banks, investors |
| Subject Matter | কী examine হচ্ছে | Financial statements, internal controls |
| Criteria | কীসের বিপরীতে মাপা হচ্ছে | IFRS, ISAs, company policies |
| Evidence | Sufficient এবং appropriate হতে হবে | Invoices, bank statements, confirmations |
| Written Report | Conclusion লিখিতভাবে দিতে হবে | Auditor's report, review report |
IFAC দুটো ধরনের assurance engagement recognise করে। কোনো assurance engagement-ই absolute assurance দিতে পারে না — কারণ evidence-এর inherent limitations থাকে।
"In our opinion, the financial statements give a true and fair view of the state of affairs of the company as at 31 December 20X5..."
→ High level, positive form, extensive work done
"Nothing has come to our attention that indicates material internal control weakness."
→ Moderate level, negative form, mainly inquiry & analytical procedures
| Benefit | কীভাবে? |
|---|---|
| Credibility বাড়ায় | Independent auditor-এর opinion থাকলে financial statements বেশি বিশ্বাসযোগ্য হয় |
| Finance পাওয়া সহজ | Banks এবং investors audited accounts দেখতে চায় — loan approval সহজ হয় |
| Fraud deterrent | Audit হবে জানলে staff সাবধানে থাকে — fraud-এর সুযোগ কমে |
| NBR-এর আস্থা | Tax authority (NBR) audited accounts বেশি trust করে |
| Business valuation | Company কিনতে/বেচতে গেলে audited accounts দরকার |
| Management benefit | Auditor-এর management letter-এ weaknesses জানা যায়, improvement হয় |
| Going concern signal | Company-র financial health নিয়ে assurance পাওয়া যায় |
ISA 200 অনুযায়ী auditor-এর দুটো overall objectives:
- Reasonable assurance obtain করা যে financial statements as a whole-এ material misstatement নেই — whether due to fraud or error
- Findings-এর উপর ভিত্তি করে auditor's report issue করা
- Business manage করা এবং objectives achieve করা
- Business risks assess করা
- Company assets safeguard করা
- Proper accounting records রাখা
- Financial statements prepare এবং RJSC-তে file করা
- সব applicable laws মেনে চলা
- ✅ Financial statements audit করেন
- ✅ Material misstatements identify করার চেষ্টা করেন
- ✅ Audit opinion দেন
- ❌ Financial statements prepare করেন না
- ❌ Fraud prevent করার দায়িত্ব নেই
- ❌ সব fraud ধরার guarantee নেই
| বিষয় | Error | Fraud |
|---|---|---|
| Intent | Unintentional | Intentional |
| Example | Calculation mistake | Revenue inflation |
| Types | — | Fraudulent reporting / Misappropriation |
| ISA | — | ISA 240 |
"Auditors are NOT responsible for preventing fraud, but must plan and perform their audit to obtain reasonable assurance that material misstatements, whether due to fraud or error, are detected."
- Direct effect: সরাসরি FS affect করে — auditor সরাসরি verify করেন (Companies Act, Tax laws)
- Indirect effect: Operations affect করতে পারে — auditor শুধু aware থাকেন (Labor law, Environmental law)
- Bangladesh relevant: Companies Act 1994, SEC Regulations, Income Tax Ordinance, VAT Act, Labor Act
- Placement: Illegal cash financial system-এ ঢোকানো
- Layering: Multiple transactions দিয়ে source লুকানো
- Integration: Clean money হিসেবে ফেরত আনা
- ⚠️ Tipping off = ILLEGAL — client-কে বলা যাবে না!
- MLRO-কে report করতে হবে
Public মনে করে auditor সব fraud ধরবে, company দেউলিয়া হবে না guarantee দেবে — কিন্তু এটা সত্যি না। Auditor শুধু reasonable assurance দেন। এই দুটোর মধ্যে পার্থক্যই হলো expectations gap।
অনেকে মনে করে auditor-এর কাজ হলো fraud ধরা। এটা সম্পূর্ণ ভুল। Auditor fraud prevent করার দায়িত্ব নেন না — তবে material misstatement due to fraud খোঁজার চেষ্টা করেন।
Purchase ledger clerk Tk 10,000 নিজের account-এ transfer করেছে = Misappropriation of assets। Revenue inflate করে দেখানো = Fraudulent financial reporting।
Money laundering suspect করলে MLRO-কে জানাও। Client-কে কখনো বলবে না — এটা "tipping off" যা legally prohibited। Client evidence নষ্ট করতে পারে।
Companies Act 1994-এ directors-দের statutory duties clearly defined। এগুলো ঠিকমতো না করলে criminal consequences হতে পারে।
- Managing the company: Business এমনভাবে manage করা যাতে objectives achieve হয় এবং shareholders-দের সুবিধা হয়
- Safeguarding assets: Company-র assets রক্ষার জন্য reasonable steps নেওয়া — fraud prevention systems implement করা
- Books and records: Cash payments/receipts, assets, liabilities সব properly record করা
- Financial statements preparation: True and fair view দেখানো FS prepare করে RJSC-তে submit করা
- Accounting policies: Suitable policies select করে consistently apply করা, prudent estimates করা
- Going concern basis: FS going concern basis-এ prepare করা যদি না inappropriate হয়
| বিষয় | Management-এর কাজ | Auditor-এর কাজ |
|---|---|---|
| Financial Statements | Prepare করা | Audit করা, opinion দেওয়া |
| Internal Controls | Design এবং implement করা | Understand এবং test করা |
| Fraud | Prevent এবং detect করার responsibility | Material misstatement due to fraud খোঁজার চেষ্টা |
| Laws | Comply করার responsibility | Awareness রাখা, significant non-compliance report করা |
| Business operations | Run করা | Understand করা, risk assess করা |
Revenue inflate করে দেখানো, expenses understated করা, liabilities conceeal করা। Example: Enron scandal — off-balance-sheet liabilities hide করা হয়েছিল।
Cash চুরি, inventory আত্মসাৎ, fictitious suppliers-এ payment। Example: Purchase ledger clerk Tk 10,000 নিজের account-এ transfer করেছে।
ISA 240 বলে auditor-কে professional scepticism maintain করতে হবে — মানে সবকিছু একটু সন্দেহের চোখে দেখা, management-এর explanations blindly accept না করা।
| Type | Definition | Auditor-এর Role | Bangladesh Examples |
|---|---|---|---|
| Direct Effect | সরাসরি FS figures affect করে | Specifically verify করেন | Companies Act 1994, Income Tax Ordinance, VAT Act |
| Indirect Effect | Operations affect করতে পারে → FS-কে indirectly affect | Awareness রাখেন, specific compliance verify করেন না | Labor Act, Environmental laws, Health & Safety |
| Stage | কী হয়? | Example |
|---|---|---|
| Placement | Illegal cash কোনো financial system-এ ঢোকানো | Bank-এ cash deposit করা, real estate কেনা |
| Layering | Multiple transactions দিয়ে illegal source লুকানো | বিভিন্ন দেশে wire transfers, shell companies ব্যবহার |
| Integration | Clean money হিসেবে economy-তে ফেরত আনা | Business-এ investment, luxury goods কেনা |
⚠️ Tipping Off: Client-কে money laundering investigation সম্পর্কে জানালে তারা evidence নষ্ট করতে পারে। তাই tipping off করা legally prohibited। MLRO (Money Laundering Reporting Officer)-এ report করতে হবে।
আজকের companies-দের ESG (Environmental, Social, Governance) issues-ও consider করতে হচ্ছে। UN Sustainable Development Goals (2016), TCFD (Task Force on Climate-related Financial Disclosures), এবং ISSB Standards management-দের এই বিষয়গুলো report করতে encourage করছে।
- IFAC — Global body (130+ countries)
- IAASB — IFAC-এর subsidiary, ISAs তৈরি করে
- ICAB — Bangladesh-এর local regulator
- ICAB ISAs adopt করে Bangladesh-এ apply করে
- FRC (UK) — ISAs (UK) এবং Ethical Standard issue করে
- ISA — Audits of historical financial information
- ISRE — Review engagements
- ISRS — Related services (AUP, Compilation)
- ISAE — Other assurance engagements
- ISQM 1 & 2 — Quality management
- Control Environment — "Tone at the top" — management-এর attitude এবং values
- Risk Assessment — Risks identify এবং assess করা
- Control Activities — Actual controls: authorization, segregation of duties, reconciliation
- Information & Communication — সঠিক তথ্য সঠিক সময়ে পৌঁছানো
- Monitoring — Controls কাজ করছে কিনা দেখা
ধরো দুটো company-র audit দুটো আলাদা firm করলো — কিন্তু সম্পূর্ণ আলাদা পদ্ধতিতে। তাহলে কি দুটো FS compare করা যাবে? না! Standards-ই comparability নিশ্চিত করে।
ICAB = IFAC-এর member → IAASB-র ISAs follow করতে হয়। সব statutory audit Bangladesh-এ ISAs অনুযায়ী হতে হবে।
Control Environment (tone at top) → Risk Assessment → Control Activities (authorisation, segregation) → Information & Communication → Monitoring। Top to bottom — C-R-A-I-M।
| Body | Role | Bangladesh Link |
|---|---|---|
| IFAC | Global accounting body (130+ countries) | ICAB is a member |
| IAASB | IFAC subsidiary — creates ISAs | ISAs adopted via ICAB |
| IESBA | IFAC subsidiary — creates ethics code | ICAB Code of Ethics based on this |
| ICAB | Bangladesh local regulator | Adapts and enforces standards locally |
| FRC (UK) | Issues ISAs (UK) & Ethical Standard | Referenced for guidance |
| Standard | Full Name | কী বিষয়ে? |
|---|---|---|
| ISA | International Standards on Auditing | Historical financial info-র audit |
| ISRE | International Standards on Review Engagements | Review engagements |
| ISRS | International Standards on Related Services | AUP, Compilation |
| ISAE | International Standards on Assurance Engagements | Non-historical assurance |
| ISQM 1&2 | International Standards on Quality Management | Firm & engagement quality |
| Component | কী করে? | Example |
|---|---|---|
| Control Environment | "Tone at the top" — management-এর ethics, values, attitude | Ethics policy, integrity of directors |
| Risk Assessment | Business risks identify এবং assess করা | Annual risk register, fraud risk assessment |
| Control Activities | Actual controls implement করা | Authorization, segregation of duties, reconciliation |
| Information & Communication | সঠিক তথ্য সঠিক সময়ে সঠিক জায়গায় | Management reporting, ERP systems |
| Monitoring | Controls কাজ করছে কিনা দেখা | Internal audit, management review |
- Independence of Mind (Real): Auditor নিজে বিশ্বাস করেন তিনি independent
- Independence in Appearance (Perceived): Outside world-ও মনে করে auditor independent
- Fee dependency: >15% (non-listed) বা >10% (listed) = threat
- Legal duty: Court order, money laundering reporting
- Public interest: Major fraud যা দেশের ক্ষতিকর
- Client permission: Client নিজেই জানাতে বলেছে
- এই তিনটার বাইরে confidentiality ভাঙা যাবে না
Step 1: Threat টা identify করো (SSAMFI-এর কোনটা?) → Step 2: কোন principle at risk সেটা বলো (IOPCC) → Step 3: Safeguard কী হবে সেটা বলো। সবশেষে conclusion দাও।
Company ESG report-এ নিজেদের "সবুজ" দেখালেও আসলে না হলে সেটা unethical। ISSB Standards এবং TCFD এই area regulate করছে। Auditors-দের এখানেও integrity maintain করতে হবে।
Integrity, Objectivity, Professional Competence, Confidentiality, Professional Behaviour — মনে রাখো: "I Often Put Careful Consideration"
Self-interest: client-এর shares hold করা। Self-review: নিজের কাজ নিজে audit। Advocacy: court case লড়া। Management: MD-র কাজ করা। Familiarity: ১০ বছরের same client। Intimidation: "clean opinion না দিলে change করব।"
Firm-এর total annual fee = Tk 1 crore। ABC Ltd থেকে fee = Tk 20 lakh (20%) → Listed company হলে threshold exceed (>10%) → Threat! Safeguard দরকার।
Accounting profession-এর income-এর বড় অংশ আসে audit এবং assurance services থেকে। Users এই services-এ তখনই আস্থা রাখেন যখন তারা জানেন accountants ethical। তাই profession-এর survival নিজেই ethical behaviour-এর উপর নির্ভরশীল।
| Principle | মানে | Violation Example | Exam Context |
|---|---|---|---|
| Integrity | Straightforward এবং honest — কোনো false/misleading statement না | Client-এর চাপে ভুল figures accept করা | সবচেয়ে basic — সব situation-এ apply |
| Objectivity | Bias, conflict of interest বা undue influence থেকে মুক্ত | Client-এর shares hold করে audit করা | Independence-এর core |
| Professional Competence | Current knowledge maintain করা, diligently কাজ করা | নতুন IFRS না জেনেই opinion দেওয়া | CPD requirement-এর basis |
| Confidentiality | Client info third party-কে unauthorised disclosure না করা | Party-তে client-এর financial difficulties নিয়ে কথা বলা | 3 exceptions মনে রাখতে হবে |
| Professional Behaviour | Laws মানা, profession-এর reputation নষ্ট না করা | Social media-তে client নিয়ে বাজে comment | Broad principle — catch-all |
| Threat | কখন হয়? | Bangladesh Example | Safeguard |
|---|---|---|---|
| Self-Interest | Auditor-এর financial interest client-এর সাথে connected | Client-এর Grameen Bank shares hold করছেন | Shares dispose করুন বা engagement ছেড়ে দিন |
| Self-Review | নিজের কাজ নিজে review করা হচ্ছে | Firm client-এর accounts prepare করেছে, এখন audit করছে | Different team বা different firm |
| Advocacy | Client-এর পক্ষে অতিরিক্ত advocate করা | Client-এর tax case court-এ লড়া | Engagement থেকে বের হওয়া |
| Management | Auditor management role নিয়েছেন | Client-এর MD absent — auditor business decisions নিচ্ছেন | Management role নেওয়া বন্ধ করুন |
| Familiarity | Client-এর সাথে অতিরিক্ত ঘনিষ্ঠতা | ১৫ বছর ধরে same partner same client audit করছেন | Partner rotation (7 years for listed) |
| Intimidation | Client হুমকি বা চাপ দিচ্ছে | "Clean opinion না দিলে আমরা firm change করব" | Report করুন, যদি দরকার হয় resign করুন |
Non-listed client: একটা client থেকে firm-এর total fees-এর >15% হলে threat।
Listed client: >10% হলে threat।
Solution: Client-কে জানাতে হবে, independent review করতে হবে।
কোনো gifts বা hospitality accept করা যাবে যদি এটা trivial and inconsequential হয়। বড় gifts self-interest threat তৈরি করে। কোনো reasonable person যদি এটা inappropriate মনে করেন, নেওয়া যাবে না।
| Exception | কখন? | Example |
|---|---|---|
| Legal duty | Court order, money laundering report করতে বাধ্য | MLRO-তে suspicious transaction report |
| Public interest | Major fraud যা দেশের/জনগণের ক্ষতি করছে | Massive Ponzi scheme discover হলে |
| Client permission | Client নিজেই জানাতে বলেছে | Bank-এর জন্য reference letter দেওয়া |
Companies ESG reports-এ নিজেদের "সবুজ" বা "sustainable" দেখালেও আসলে সেটা না হলে এটা integrity এবং objectivity-র violation। TCFD framework এখন এই reporting-কে structure দিচ্ছে, কিন্তু assurance mandatory না। তবে professional ethics সবসময়ই apply হয়।
- Governance & Leadership — Quality-তে commitment, tone at the top
- Relevant Ethical Requirements — IESBA Code সহ সব ethics মানা
- Acceptance & Continuance — কোন clients নেওয়া হবে সেই criteria
- Engagement Performance — Audit কীভাবে করতে হবে
- Resources — Human, tech, intellectual resources
- Information & Communication — তথ্য সঠিকভাবে flow হচ্ছে কিনা
- High-risk engagements-এ EQR mandatory
- Listed companies-এর audit-এ always required
- EQR = engagement team-এর বাইরের senior person
- Hot review = report issue-এর আগে ✅ (ISQM 2 requires this)
- Cold review = report issue-এর পরে
- EQR refuse করলে report issue করা যাবে না
একটা factory-তে সব workers আলাদা quality-র product বানালে brand damage হয়। Audit firm-এও same — ISQM 1 নিশ্চিত করে সব audit একই standard-এ হয়।
Tk 500 crore turnover-এর listed company-র audit — EQR mandatory। Engagement partner-এর বাইরের senior partner রিপোর্ট issue-এর আগে পুরো file review করবেন।
| Component | কী করে? | Example Objective |
|---|---|---|
| Governance & Leadership | Quality-র প্রতি firm-এর commitment প্রতিষ্ঠা করা | Ethics policy, tone at the top |
| Ethical Requirements | IESBA Code সহ সব ethical requirements মানা | Independence checks, conflict screening |
| Acceptance & Continuance | Appropriate clients নেওয়া এবং রাখার criteria | Client integrity assessment |
| Engagement Performance | Audit কীভাবে direction, supervision, review হবে | Review procedures, consultation policy |
| Resources | Competent staff, technology, intellectual resources | Training programs, audit software |
| Information & Communication | তথ্য সঠিকভাবে flow হচ্ছে কিনা | Engagement management system |
| Monitoring & Remediation | SoQM কাজ করছে কিনা দেখা, deficiencies fix করা | Annual quality inspections |
ISQM 2 অনুযায়ী Engagement Quality Review (EQR) mandatory যখন: (1) Listed companies-এর statutory audit, (2) Firm নিজেই high-risk হিসেবে designate করেছে, (3) Laws বা regulations require করে। EQR-কে engagement team-এর বাইরের কেউ হতে হবে এবং report issue করার আগে (hot review) review complete করতে হবে।
- Independence: কোনো threat আছে কিনা
- Competence: Firm-এর প্রয়োজনীয় expertise আছে কিনা
- Resources: Enough staff এবং time আছে কিনা
- Integrity: Management কেমন? কোনো previous issues?
- Predecessor contact: আগের auditor-এর কাছ থেকে কোনো problem ছিল কিনা
- Audit-এর objective এবং scope
- Auditor-এর responsibilities
- Management-এর responsibilities
- Financial reporting framework (IFRS/BAS)
- Expected form of audit report
- Fee arrangement
- Materiality-র mention
- Records এবং personnel-এ access
- First auditor: Board of Directors appoint করে
- Subsequently: AGM-এ shareholders appoint করে
- Removal: AGM-এ proper notice দিয়ে shareholders remove করতে পারে, ICAB-কে জানাতে হবে
- Resignation: Resignation statement দিতে হবে — কেন resign করছেন তা explain করতে হবে
- Change in appointment: নতুন auditor predecessor-এর সাথে communicate করবে
Tender process-এ অনেক কম fee quote করে bid জেতা। Ethically wrong না, কিন্তু safeguards দরকার। অতিরিক্ত কম fee-তে proper quality বজায় রাখা কঠিন হয়।
Firm A bids Tk 5 lakh, Firm B bids Tk 50 lakh। Company chooses Firm A। কিন্তু Tk 5 lakh-এ proper audit কি সম্ভব? Lowballing-এ quality compromise হওয়ার risk — তাই safeguards দরকার।
Verbal agreement নয় — সব লিখিতভাবে। Engagement letter ছাড়া audit শুরু করলে later দুটো party-র মধ্যে dispute হলে কোনো proof নেই। ISA 210 এজন্যই written letter require করে।
Tender-এ firms জানায়: (1) Team-এর qualifications ও experience, (2) Proposed audit approach ও timeline, (3) Fee proposal। Fee শুধু একমাত্র criterion না — quality, experience, industry knowledge সব বিবেচনা করা হয়।
| Item | Details |
|---|---|
| Objective & scope | কী audit হবে, কোন financial reporting framework |
| Auditor responsibilities | ISAs অনুযায়ী audit করা, opinion দেওয়া |
| Management responsibilities | FS prepare করা, records access দেওয়া |
| Report form | Expected auditor's report format |
| Fee arrangement | Billing basis, payment terms |
| Other services | Tax, advisory — যদি থাকে |
নতুন auditor-কে client-এর permission নিয়ে predecessor-এর সাথে communicate করতে হবে। জিজ্ঞেস করতে হবে: কোনো fee outstanding আছে কিনা, কোনো professional disagreement ছিল কিনা, management integrity নিয়ে কোনো concern আছে কিনা। যদি predecessor কোনো concern জানায়, নতুন auditor carefully consider করবেন।
| বিষয় | Audit Strategy | Audit Plan |
|---|---|---|
| Level | High-level, general | Detailed, specific |
| Contents | Scope, timing, direction, team size | Specific tests, who does what, when |
| Analogy | War strategy — কোথায় আক্রমণ | Battle plan — কে কোথায় যাবে |
- Planning Materiality: Overall threshold — 5-10% of PBT, or 1-2% of Revenue, or 1-2% of Total Assets
- Performance Materiality: Individual item threshold — 50-75% of planning materiality — কারণ ছোট errors মিলে বড় হতে পারে
- Trivial/Clearly Inconsequential: 5% of planning materiality — এর নিচে document-ই করা হয় না
Company PBT = ১ কোটি টাকা
Planning Materiality = ১ কোটি × ৭% = ৭ লাখ
Performance Materiality = ৭ লাখ × ৬০% = ৪.২ লাখ
Trivial = ৭ লাখ × ৫% = ৩৫ হাজার
৫ লাখ-এর misstatement পাওয়া গেলে → Material! (৪.২ লাখের বেশি)
Exam-এ materiality calculate করতে বললে: (১) basis choose করো (PBT/Revenue/Assets), (২) % apply করো, (৩) justify করো কেন এই basis বেছেছ। Performance materiality আলাদা calculate করো।
Strategy হলো যুদ্ধের plan — কোথায় আক্রমণ করবো। Audit plan হলো সেই যুদ্ধে কোন সৈনিক কোথায় যাবে, কী করবে। Strategy general, plan specific।
Company PBT = Tk 1 crore → Planning materiality = Tk 1cr × 7% = Tk 7 lakh → Performance materiality = Tk 7L × 60% = Tk 4.2 lakh → Tk 5 lakh misstatement পেলে? Material! (4.2 লাখ ছাড়িয়ে গেছে)
Audit সব কিছু 100% verify করে না। Material items-এ বেশি attention, immaterial-এ কম। এটাই audit cost-effective রাখে।
Planning আগে হওয়া দরকার কারণ: efficient audit নিশ্চিত করে, significant risk areas-এ focus করা যায়, appropriate team assign করা যায়, সময়মতো শেষ হয়।
| Basis | % Range | কখন Use করবে? |
|---|---|---|
| Profit Before Tax (PBT) | 5–10% | Profit-making companies-এর জন্য সবচেয়ে common |
| Revenue/Turnover | 0.5–1% | যখন PBT negligible বা loss হচ্ছে |
| Total Assets | 1–2% | Asset-heavy companies (banks, property) |
| Net Assets/Equity | 1–5% | Not-for-profit entities, balance sheet focus |
Company PBT = Tk 50 lakh
Planning Materiality = Tk 50L × 7% = Tk 3.5 lakh
Performance Materiality = Tk 3.5L × 60% = Tk 2.1 lakh
Trivial threshold = Tk 3.5L × 5% = Tk 17,500
→ Tk 2.5 lakh misstatement = material (performance materiality ছাড়িয়ে গেছে)
কিছু items quantitatively ছোট হলেও qualitatively material হতে পারে। Example: Directors' remuneration, related party transactions, regulatory compliance items — এগুলো ছোট amount হলেও users-দের কাছে sensitive।
- Internal: Client personnel, management accounts, board minutes, policy manuals, prior year files, contracts
- External: Credit reference agencies, industry trade journals, RJSC filings, economic reports, competitor analysis
- ISA 315: inquiry, analytical procedures, observation, inspection
- P — Political/Legal: Government policy, regulatory changes, Companies Act 1994
- E — Economic: Inflation, exchange rates, industry trends, RMG sector
- S — Social: Demographics, consumer behavior, workforce
- T — Technological: IT systems, bKash, automation, cyber risks
ISA 315 require করে auditor-কে entity, environment আর internal controls বুঝতে হবে। না বুঝলে key risks miss হবে, audit plan ভুল হবে এবং negligence claims হতে পারে। বিশেষত Bangladesh-এ garments, banking, NGO sector-এর specific risks জানা দরকার।
একজন doctor যদি patient-এর medical history না জেনেই prescription দেন — বিপজ্জনক। Auditor-ও client-এর business না বুঝে audit করলে key risks miss হবে।
P: Companies Act 1994, BSEC regulations। E: Garments sector (80%+ exports), remittance। S: bKash/Nagad revolution। T: NBR online tax filing, cyber risks।
| Procedure | কী করা হয়? | Example |
|---|---|---|
| Inquiries | Management ও staff-কে জিজ্ঞেস করা | CFO-কে major risks সম্পর্কে জিজ্ঞেস করা |
| Analytical procedures | Data analyse করে unusual patterns খোঁজা | Revenue growth ratio analysis |
| Observation | Processes দেখা | Warehouse operations observe করা |
| Inspection | Documents দেখা | Board minutes, contracts পড়া |
| Factor | Bangladesh-Specific Considerations |
|---|---|
| Political | Political stability, election cycles, regulatory changes (BSEC, BB), Export policy |
| Economic | Garments sector dominance (80%+ exports), remittance flows, inflation, BDT exchange rate |
| Social | Young workforce, urbanisation, mobile banking (bKash/Nagad) adoption |
| Technological | NBR online tax filing, digital banking, e-commerce growth, cyber security risks |
- Inherent Risk (IR): Controls ছাড়া account balance-এ misstatement হওয়ার chance। Nature-এর উপর depend করে। Auditor control করতে পারেন না।
- Control Risk (CR): Company-র internal controls fail করার risk। Client-এর উপর depend করে। Auditor control করতে পারেন না।
- Detection Risk (DR): Auditor নিজে material misstatement miss করার risk। শুধু এটা auditor কমাতে পারেন — বেশি testing করে।
- Complex transactions (derivatives, leases)
- Judgment-based estimates (provisions, fair values)
- Cash transactions (easily misappropriated)
- Related party transactions
- New accounting standards apply হচ্ছে
- Management override সম্ভব এমন areas
- Financial Risk: Cash flow problems, overtrading, high debt, forex risk
- Operational Risk: Key customer loss, IT failure, supply chain, key staff departure
- Compliance Risk: Regulatory fines, license loss, legal proceedings
- Financial: Negative cash flow, loan covenant breach, current liabilities > current assets, operating losses
- Operating: Key management left, major customer lost, loss of license
- Other: Legal proceedings, pending legislation, uninsured disasters
- Auditor ≥12 months forward দেখেন
যদি IR এবং CR বেশি হয় → DR কমাতে হবে → বেশি substantive testing করতে হবে। "Inverse relationship between DR and (IR×CR)" — এটা exam-এ লিখলে marks পাবে।
Garments company: Complex export transactions (High IR) + Weak payroll controls (High CR) → DR must be very LOW → Extensive substantive testing on payroll & revenue required।
IR আর CR auditor control করতে পারেন না — এগুলো client-এর। কিন্তু DR auditor নিজের testing-এর মাধ্যমে কমাতে পারেন। High IR+CR → DR কমাও → বেশি test করো।
Indicators: Negative cash flow, loan covenant breach, current liabilities > current assets, major customer lost, legal proceedings। Auditor 12 months forward দেখেন।
| Risk Component | কে Control করে? | High Risk কখন? | Auditor-এর Response |
|---|---|---|---|
| Inherent Risk (IR) | Client (nature of business) | Complex transactions, high estimates, fraud-prone areas | Increase substantive testing |
| Control Risk (CR) | Client (internal controls) | Weak controls, override possible, no reconciliations | Do not rely on controls, more substantive |
| Detection Risk (DR) | Auditor (testing) | Less testing, poor sampling, inexperienced staff | More testing, better sampling, senior staff |
Client: A garments company with complex export transactions (High IR), weak controls over payroll (High CR).
→ Therefore DR must be set very LOW
→ Auditor must do extensive substantive testing on payroll and export revenue
→ Senior staff should be assigned to these areas
| Category | Indicators of Going Concern Doubt |
|---|---|
| Financial | Net liability position, negative operating cash flows, fixed-term borrowings maturing, loan covenant breach, substantial operating losses, overdue payables |
| Operating | Key management departure, loss of major franchise/market, labour difficulties, shortage of important supplies, loss of principal customer |
| Other | Legal proceedings, regulatory non-compliance, pending legislation, uninsured catastrophes, political/economic changes (e.g. war, disaster) |
- Inspection: Authorization signatures, reconciliations দেখা
- Observation: Cash count, stock take observe করা
- Inquiry: Controls সম্পর্কে staff-কে জিজ্ঞেস করা
- Re-performance: Control নিজে করে দেখা (reconciliation নিজে করা)
- Tests of Details: Physical verification, third-party confirmation, vouching, tracing, recalculation
- Analytical Procedures: Reasonableness checks, prior year comparison, ratio analysis, budget vs actual
- কিছু substantive procedures ALWAYS করতে হবে (শুধু controls-এ rely করা যাবে না)
| Area | Assertion | Audit Procedure |
|---|---|---|
| Inventory — Existence | Existence | Year-end inventory count-এ attend করো (ISA 501), নিজে কিছু items count করো |
| Inventory — Valuation | Valuation | NRV calculate করো, post year-end sales price দেখো, slow-moving items identify করো |
| Receivables — Existence | Existence | Positive circularization — debtors-দের directly confirm করতে বলো |
| Receivables — Valuation | Valuation | Aged receivables list analyse, post year-end cash receipts check, provision review |
| Payables — Completeness | Completeness | Supplier statement reconciliation, post year-end payments check, negative circularization |
| Revenue — Occurrence | Occurrence | Sales invoices vouch to orders/despatch, IFRS 15 criteria check |
| Cut-off — All areas | Allocation | Year-end-এর আশেপাশের GRNs, dispatch notes, invoices examine করো |
Positive: "Please confirm you owed us Tk X as of [date]" — response না পেলে follow up করতে হয়। More reliable.
Negative: "Please inform us only if you do NOT agree with balance Tk X" — no response = agreement। Less reliable, used for payables.
Year-end inventory count-এ attend করো (ISA 501) → নিজে কিছু items count করো → NRV calculate করো → Post year-end sales দেখো → GRN cut-off check করো।
Positive (receivables): "Please confirm you owed us Tk X" — response না পেলে follow up। Negative (payables): "Only reply if you disagree with Tk X" — no reply = agreement।
Completeness: কিছু missing? | Accuracy: amount ঠিক? | Valuation: IFRS মতো valued? | Allocation/Cut-off: right period? | Transactions: actually happened/exists?
| Assertion | Meaning | Typical Test |
|---|---|---|
| Completeness | সব recorded হয়েছে? | Search for unrecorded liabilities, GRN trace |
| Accuracy/Valuation | Correct amount-এ recorded? | Recalculation, reperformance, NRV check |
| Valuation (Assets) | IFRS basis-এ properly valued? | Impairment test review, fair value check |
| Allocation/Cut-off | Correct period-এ recorded? | Pre/post year-end invoices & GRNs inspect |
| Occurrence/Existence | Actually happened? Actually exists? | Physical verification, positive circularisation |
| Rights & Obligations | Company-র? Company-র দায়? | Title deeds, loan agreements inspect |
| Presentation & Disclosure | Properly disclosed? | IAS 1 disclosure checklist |
- Occurrence: Sample sales invoices vouch to customer orders, dispatch notes, and proof of delivery
- Completeness: Analytical procedures — compare monthly revenue, check dispatch notes are invoiced
- Accuracy: Recalculate invoice amounts, check credit notes
- Cut-off: Last week of year GRNs and invoices — match to correct period
- IFRS 15: Verify 5-step model applied — contract, performance obligations, transaction price, allocation, recognition
Modern auditors use data analytics tools to: analyse 100% of transactions (not samples), identify unusual transactions automatically, compare current year vs prior year patterns, test journal entries for fraud indicators. ISA 315 now recognises technology-based audit evidence.
- Foreign Donations (Voluntary Activities) Regulation Act, 2016
- NGO Affairs Bureau-এর requirements
- Funds সঠিক purpose-এ ব্যবহার হয়েছে কিনা
- Donor restrictions মানা হয়েছে কিনা
- Standard ISA 700 report format ব্যবহার হয়
- Charitable purpose-এর compliance check
- Comptroller & Auditor General (C&AG) audit করেন
- Value for Money (VFM) audit: Economy, Efficiency, Effectiveness (3 E's)
- Objective: accountability, not profit
- Parliament-এ report করা হয়
- Group auditor: পুরো group-এর responsible — overall strategy, instructions দেওয়া, component work review করা, final opinion দেওয়া
- Component auditor: Individual subsidiary audit করে, group auditor-এর instructions follow করে
- Component auditor-এর independence এবং competence verify করতে হবে
- Significant components-এ group auditor নিজে visit করতে পারেন
Government hospital: Economy = medicines কম দামে কেনা হয়েছে কিনা। Efficiency = doctors-per-patient ratio। Effectiveness = রোগী সুস্থ হওয়ার rate। Profit না — service quality measured।
ABC Group: Parent in Dhaka + 5 subsidiaries (2 in Chittagong, 1 in Sylhet, 2 abroad)। Group auditor (Dhaka) overall responsible। Component auditors subsidiary-র audit করে। Group materiality < component materiality।
| Requirement | Details |
|---|---|
| Foreign Donations Act 2016 | Foreign donations receive করতে NGO Affairs Bureau registration দরকার |
| Fund utilisation | Funds কি stated purpose-এ ব্যবহার হয়েছে সেটা verify করতে হবে |
| Donor restrictions | Restricted funds আলাদাভাবে account করা হয়েছে কিনা |
| Reporting | NGO Affairs Bureau-তে annual return জমা |
| Charitable purpose | Education, health, poverty relief — ISA 700 report format |
- Group engagement partner পুরো group audit-এর responsible — component auditors-দের work-এর জন্যও
- Component auditor-এর independence, competence, এবং regulatory environment verify করতে হবে
- Significant components-এ group auditor নিজে specific procedures করতে পারেন
- Inter-company transactions এবং eliminations verify করতে হবে
- Group materiality vs component materiality — component-এ কম materiality use করা হয়
- Assumption: company আগামী ≥12 months চলবে
- Financial indicators: Negative cash flow, loan covenant breach, current liabilities > current assets
- Operating indicators: Key management departure, major customer lost
- Other: Legal proceedings, uninsured disasters
- Going concern doubt → audit report modify হতে পারে
- Adjusting Events: Year-end-এ existing condition-এর প্রমাণ → FS adjust করতে হবে। Example: Year-end-এর customer পরে bankrupt হলে receivable write-off করো।
- Non-Adjusting Events: Year-end-এর পরে নতুন condition → adjust নয়, কিন্তু disclose করো। Example: Post year-end factory fire।
- Management লিখিতভাবে confirm করেন
- FS give true and fair view
- সব relevant information দেওয়া হয়েছে
- সব fraud/potential fraud disclosed
- সব related party transactions disclosed
- Written reps refuse = scope limitation = modified opinion
- Significant Deficiency: Management-এর attention দরকার এমন weakness — TCWG-কে written communication
- Material Weakness: Material misstatement-এর reasonable possibility — serious!
- Report করা হয় audit committee / board-কে
"Year-end-এ কি এই condition-এর evidence ছিল?" — YES = Adjusting (FS adjust করো)। NO = Non-Adjusting (শুধু disclose করো)।
Quick test: "Year-end-এ কি এই condition-এর evidence ছিল?" YES → Adjusting (FS adjust করো)। NO → Non-adjusting (শুধু disclose করো)।
Year-end debtor Tk 50 lakh। Post year-end সে bankrupt হলো। Year-end-এ তার financial difficulty ছিল → Adjusting → Receivable write-off করো।
Year-end এর পরে factory-তে fire লাগলো। এটা year-end-এ ছিল না → Non-adjusting → Notes-এ disclose করো।
- Management-এর going concern assessment review করা — কী assumptions used?
- Budget, cash flow projections review করা — realistic কিনা
- Board minutes review — going concern নিয়ে কোনো discussion আছে কিনা
- Post year-end events consider করা — কোনো positive বা negative development?
- Bank/lender-এর সাথে loan facilities সম্পর্কে inquire করা
- At least 12 months from the date of the financial statements forward দেখতে হবে
| Type | Example | Treatment |
|---|---|---|
| Adjusting | Year-end debtor পরে bankrupt হলো (দেনা year-end-এও ছিল) | Receivable write-off করো, provision adjust করো |
| Adjusting | Year-end inventory NRV এর নিচে sold হলো | Inventory write-down করো |
| Non-Adjusting | Major flood factory destroy করল (year-end-এর পরে) | Notes-এ disclose করো, amount estimate করো |
| Non-Adjusting | Acquisition announcement হলো post year-end | Notes-এ disclose করো |
Audit-এর সময় পাওয়া misstatements দুটো ভাগ: Corrected (management ঠিক করে দিয়েছে) এবং Uncorrected (management ঠিক করেনি)। Auditor সব uncorrected misstatements accumulate করেন। যদি total materiality ছাড়িয়ে যায় → modified opinion consider করতে হবে। Management-কে correcting journal entries দেওয়ার সুযোগ দিতে হবে।
| Opinion Type | কখন? | Report Wording |
|---|---|---|
| Unmodified (Clean) | No problems | "give a true and fair view" |
| Qualified ("Except for") | Material কিন্তু NOT pervasive | "Except for [matter], …true and fair view" |
| Adverse | Material AND pervasive (misstatement) | "do NOT give a true and fair view" |
| Disclaimer | Material AND pervasive (scope limitation) | "We do not express an opinion" |
- Title: "Independent Auditor's Report"
- Addressee: "To the Shareholders of…"
- Auditor's Opinion
- Basis for Opinion
- Key Audit Matters (listed only)
- Going Concern (if applicable)
- Other Information (Directors' Report)
- Responsibilities of Management
- Responsibilities of Auditor
- Other Reporting Responsibilities
- Signature, Date, Address
- Opinion modify করার দরকার নেই
- কিন্তু users-দের attention দরকার এমন matter
- Example: Going concern material uncertainty but properly disclosed
- Other Matter paragraph: FS-এ disclosed নেই কিন্তু users-দের জানা দরকার
- Listed companies ONLY
- Most significant matters in auditor's judgement
- Report করা হয়: কী, কেন significant, কীভাবে addressed
Pervasive = misstatement এত ব্যাপক যে financial statements-এর অনেক elements affected, বা fundamental element affected। Isolated problem = Qualified। Widespread/fundamental problem = Adverse বা Disclaimer।
Problem আছে? → Material? → Pervasive? → Yes misstatement = Adverse। Yes scope = Disclaimer। Not pervasive = Qualified।
Inventory-র একটা category-র valuation নিয়ে disagreement (Tk 5 lakh) — material কিন্তু rest of FS ঠিক আছে → "Except for inventory valuation, FS give a TFV।"
Revenue recognition policy সম্পূর্ণ ভুল — profit, assets, equity সব affect করে = Pervasive → Adverse: "FS do NOT give a true and fair view।"
KAM (ISA 701): Listed companies only, most significant audit matters। EOM (ISA 706): All entities, draw attention to properly disclosed matter।
| Situation | Material? | Pervasive? | Opinion |
|---|---|---|---|
| Misstatement (auditor disagrees) | No | N/A | Unmodified (clean) |
| Misstatement | Yes | No | Qualified ("Except for...") |
| Misstatement | Yes | Yes | Adverse ("Do not give TFV") |
| Scope limitation (can't get evidence) | Yes | No | Qualified ("Except for...") |
| Scope limitation | Yes | Yes | Disclaimer of opinion |
ISA 705 অনুযায়ী effects are pervasive যখন:
- Financial statements-এর অনেক elements affected — এবং isolated না
- Limited specific elements-এ সীমাবদ্ধ হলেও এগুলো financial statements-এর fundamental part
- Undisclosed হলে financial statements-কে wholly misleading করে
Qualified: একটা subsidiary-র inventory Tk 5 lakh overstated — material কিন্তু rest of FS ঠিক আছে.
Adverse: Revenue recognition policy সম্পূর্ণ wrong — এটা profit, assets, equity সব affect করে = pervasive.
| Emphasis of Matter (ISA 706) | Key Audit Matters (ISA 701) | |
|---|---|---|
| Who? | All entities | Listed entities only |
| Purpose | Draw attention to properly disclosed matter | Most significant audit judgements |
| Example | Going concern uncertainty | Revenue recognition complexity, impairment |
| Effect on opinion | No modification | No modification |
| Type | Standard | Assurance Level | Output |
|---|---|---|---|
| Statutory Audit | ISAs | Reasonable (High) | Positive opinion |
| Review | ISRE 2400 / 2410 | Limited (Moderate) | Negative conclusion |
| Agreed-Upon Procedures | ISRS 4400 | None | Findings only |
| Compilation | ISRS 4410 | None at all | No conclusion |
- Subject matter = NOT historical financial information
- Examples: ESG/sustainability reports, internal control reports, compliance reports
- Same principles as audit — can be reasonable or limited
- Emerging area: ESG assurance growing rapidly
- Prospective Financial Information (forecasts/projections)
- Forecast: Management-এর best estimate (expected to happen)
- Projection: "What if" scenarios (hypothetical)
- Maximum = Limited assurance only (কারণ future uncertain)
- Reasonable assurance on future = impossible
"Nothing has come to our attention that causes us to believe that these financial statements do not give a true and fair view in accordance with [framework]."
Statutory Audit → highest assurance (reasonable)। Review → moderate (limited)। Agreed-Upon Procedures → no assurance, just findings। Compilation → no assurance at all। নিচে নামলে কাজ কমে, assurance কমে।
Bank বলল "চেক করো receivables aging analysis কীভাবে করা হয়েছে।" Auditor সেটা check করে শুধু findings বলবে — "aging যেভাবে calculate হয়েছে সেটা হলো X।" কোনো conclusion দেবে না।
Companies ESG reports publish করছে — carbon emissions, diversity data। ISAE 3000 framework exist করে। Mandatory না বেশিরভাগ দেশে, কিন্তু investors demand করছে।
| Engagement Type | Standard | Assurance | Procedures | Conclusion Wording |
|---|---|---|---|---|
| Statutory Audit | ISAs | Reasonable (High) | Extensive testing | "Gives a true and fair view" |
| Review (ISRE 2400) | ISRE 2400 | Limited (Moderate) | Mainly inquiry & analytical | "Nothing has come to our attention..." |
| Agreed-upon Procedures | ISRS 4400 | None | Specific agreed procedures | Factual findings only |
| Compilation | ISRS 4410 | None | Prepare using client data | "We have not audited these statements" |
ISAE 3000 apply হয় যখন subject matter historical financial information না। Examples:
- ESG/sustainability reports (carbon emissions, diversity metrics)
- Internal control effectiveness reports
- Compliance with grant conditions বা contracts
- Corporate governance processes
- Information systems security
- Financial health: assets, liabilities, working capital, cash flows
- Legal issues: ongoing litigation, regulatory violations
- Contracts: major customer/supplier contracts, expiry dates
- Tax: contingent tax liabilities, tax compliance history
- Operational: key employees, systems, processes
- Output: report of findings — no assurance opinion given
| ISA | Title | Chapter |
|---|---|---|
| ISA 200 | Overall Objectives of the Independent Auditor | Ch 1 |
| ISA 210 | Agreeing the Terms of Audit Engagements | Ch 6 |
| ISA 230 | Audit Documentation | Ch 9 |
| ISA 240 | The Auditor's Responsibilities Relating to Fraud | Ch 2 |
| ISA 250 | Consideration of Laws and Regulations | Ch 2 |
| ISA 260 | Communication with Those Charged with Governance | Ch 13 |
| ISA 265 | Communicating Deficiencies in Internal Control | Ch 12 |
| ISA 300 | Planning an Audit of Financial Statements | Ch 7 |
| ISA 315 | Identifying and Assessing Risks of Material Misstatement | Ch 8, 9 |
| ISA 320 | Materiality in Planning and Performance | Ch 7 |
| ISA 330 | The Auditor's Responses to Assessed Risks | Ch 10 |
| ISA 501 | Audit Evidence — Specific Considerations (Inventory) | Ch 10 |
| ISA 505 | External Confirmations (Circularization) | Ch 10 |
| ISA 520 | Analytical Procedures | Ch 12 |
| ISA 550 | Related Parties | Ch 9 |
| ISA 560 | Subsequent Events | Ch 12 |
| ISA 570 | Going Concern | Ch 9, 12 |
| ISA 580 | Written Representations | Ch 12 |
| ISA 600 | Special Considerations — Group Audits | Ch 11 |
| ISA 610 | Using the Work of Internal Auditors | Ch 10 |
| ISA 620 | Using the Work of an Auditor's Expert | Ch 10 |
| ISA 700 | Forming an Opinion and Reporting | Ch 13 |
| ISA 701 | Communicating Key Audit Matters | Ch 13 |
| ISA 705 | Modifications to the Opinion in the Auditor's Report | Ch 13 |
| ISA 706 | Emphasis of Matter and Other Matter Paragraphs | Ch 13 |
| ISQM 1 | Quality Management for Firms (SoQM) | Ch 5 |
| ISQM 2 | Engagement Quality Reviews | Ch 5 |
| ISAE 3000 | Assurance Engagements Other than Audits | Ch 14 |
| ISRE 2400 | Review of Historical Financial Statements | Ch 14 |
| ISRS 4400 | Agreed-Upon Procedures | Ch 14 |
| ISRS 4410 | Compilation Engagements | Ch 14 |
Admin Access
Password দিয়ে admin panel খুলুন