Public
Company Accounting Oversight Board
Identifying
Entity-Level Controls
Identifying Significant
Accounts and Disclosures and Their Relevant Assertions
Understanding Likely
Sources of Misstatement
Specific
Procedures Related to Spreadsheets to Comply with Section 404 and PCAOB AS 2201
Determine how current
spreadsheets are being used
Determine the risk
factors of the spreadsheet
Evaluate compensating
controls for risk factors
Access to the
spreadsheet is limited to authorized users – Passwords
Controls to validate
user input – data validation
Spreadsheets protected
against unauthorized changes – Cell protection
Spreadsheets protected
against unauthorized changes –Workbook Protection
Spreadsheet
Documentation is Adequate – Comments
A Logic inspection by
an independent party is performed – Formula Auditing
Highlighting all cells
containing formulas
Trace Precedent and
Dependent Cells
Logic Inspection –
Inspect Document
Controls
not supported by Excel