Redefining financial audits with AI: MindBridge’s verification journey

October 23, 2023 by Coleman Howard

Discover insights from MindBridge Edge 2023 with Adriano Koshiyama of Holistic AI. Learn about the intensive audit of MindBridge’s AI algorithms, our SOC2 & SOC3 attestations, and our dedication to responsible AI.

Learn about the intensive audit of MindBridge’s AI algorithms, our SOC2 & SOC3 attestations, and our dedication to responsible AI.

KPMG and MindBridge forge global alliance to transform digital audits

April 24, 2023April 23, 2023 by MindBridge

KPMG and MindBridge form global alliance, transforming digital audits with enhanced risk detection and next-gen AI audit technology

Will DAS (the Dynamic Audit Solution) change the audit industry?

September 21, 2024February 5, 2021 by John Colthart

A paper boat on paper water, symbolizing whether or not programs like the AICPA Dynamic Audit Solution will hold water.

The audit industry has seen a bit of a shakeup in the past few years. New technologies, regulator crackdowns, big firms acquiring and merging, and a general push for improved processes and a review of age-old standards are all signs of new things on the horizon for our industry. But while there was a lot of talking, we didn’t see much walking.

But, all that changed, at least for auditors, with an announcement from the AICPA in 2018.

Nearly three years ago, the “Dynamic Audit Solution Initiative” was announced. Projected to release in 2021, the Dynamic Audit Solution, or “DAS,” as many in the industry affectionately call it, is a “multiyear initiative to create a new, innovative process for auditing using technology.”

As the beta release approaches, we wanted to take a look at the Dynamic Audit Solution in more detail. As a pioneer in AI-powered risk assessment, MindBridge is highly invested and interested in any and all innovations in our space. When it comes to DAS, we want to know what it is and what it means for us and our industry.

In this article, we’ll answer those questions and consider what the impact of a Dynamic Audit Solution might be, for better or for worse.

What is DAS (the Dynamic Audit Solution)?

We don’t know a lot about the Dynamic Audit Solution, but what we do know is exciting. The AICPA sees DAS as the next step toward the future of audit and assessment by leveraging technologies never before seen on a large scale. That, obviously, has a lot of people excited.

There aren’t a ton of details on what exactly the AICPA’s DAS will look like. We haven’t seen any product screenshots, and the core functionality hasn’t been mentioned in any major press coverage.

But, there are a few key aspects of the technology that have been announced, as well as some information on what the team behind the product are considering as they are building it.

AI, automation, data, and AICPA

At its core, the Dynamic Audit Solution will be an AI-powered product. In an interview with AccountingToday, Matt Dodds, CEO of CaseWare, one of the organizations involved in the project, made a point to note that “the solution is driven by data analytics and AI.” The idea here is that artificial intelligence capabilities will allow auditors to process more data more efficiently, allowing them to create higher quality audits in a fraction of the time.

It isn’t quite clear what areas of the audit solution will include artificial intelligence, or how the AICPA auditing standards will regulate and legitimize control points, risk assessments, and other key factors to a quality audit. But, the need for AI to process increasingly complex and large data sets is clearly at the top of the priority list for the AICPA. As are data analytics.

According to the AICPA, the Dynamic Audit Solution will require “audit professionals become conversant in data science, data integration and analytics.” Essentially, artificial intelligence and automation will allow auditors to become experts in the data that they spend so much time analyzing. Once that data has been processed, though, auditors will be able to better understand and communicate the results of an audit to clients.

As the traditionally manual tasks of an audit are automated, audit professionals will be afforded more time to converse with clients. This will allow auditors to offer clients a true assessment of the audit findings, while also expanding into a more continuous audit through advisory and consulting services, avoiding independence issues wherever possible.

All of that being said, what does the Dynamic Audit Solution mean for auditors themselves, and for the industry largely?

What does the release of DAS mean for the industry?

The Dynamic Audit Solution is going to mean different things to different people. For auditors, it means a potentially new technology to help them create more efficient and quality audits. In theory, that is. As well the automation of certain audit tasks will allow auditors to become data science professionals, consultants, and any range of financial experts to help their clients better understand their data and assist them in their endeavors.

But, such a large scale release of an AI-powered solution has industry-wide effects as well, which the AICPA have outlined.

Technology is considered to be one of the four “key drivers” of the DAS project, according to the AICPA. The other three are Methodology, Standards, and New Skills. Artificial intelligence is at the heart of the Technology driver, but is also the reason that the three other drivers are mentioned at all.

As the AICPA introductory document to DAS notes, audit methodologies, standards, and skills will need to be reevaluated and evolved to meet the demands of artificial intelligence. This means that, as an industry, we are potentially looking at a large-scale overhaul of the AICPA auditing standards, regulations, and methodologies that we’ve come to know over the past 100 years. In fact, some of these revisions are already in motion.

While it might be scary to some, this evolution was all but inevitable, hence the push by the AICPA to introduce DAS in the first place. In fact, in many parts of the world, organizations like the AICPA are being pressured to revise regulations and standards to meet the needs of today and tomorrow’s audit professionals.

While many have feared the advent of new technologies in the face of storied regulations and standards, large organizations like the AICPA are helping to fix that by entering a new age of tech-driven audits and accounting services.

The question is, can it be made to work?

The Dynamic Audit Solution: A new hope?

Everyone seems to have a different opinion on the Dynamic Audit Solution. Whether or not you think it will work depends on your perspective, and what outcomes you want to see from it. But, as the development process continues and feedback is given, ultimately, the Dynamic Audit Solution can be made to work, even if some of our fears come to fruition.

We’ve outlined what the AICPA and their collaborators hope to achieve with DAS, including automation of rote tasks, expansion of service offerings from auditors and firms, and a revision of AICPA auditing standards and methodologies. What these achievements mean for various auditors and firms will surely vary, so it’s hard to say whether or not the DAS will “work” for everyone, so let’s talk about whether or not it can achieve what the AICPA hopes it will.

The AICPA is an important and storied institution in our industry. It has been a stalwart of standards, regulations, and a representative for CPAs everywhere since its founding in 1887. But, that might be exactly the problem.

Old dog, new tricks?

While the Dynamic Audit Solution is a great sign of evolution in our industry, it’s a little late to the party.

MindBridge, along with many other innovators in the audit and accounting industry, have worked on this for a long time. We know the market, we know the challenges, and we know what it takes to create a robust product that services not only the auditors on the front lines, but the larger firms, businesses, and stakeholders that invest in technology.

We had a running start, while DAS is still at the starting line. We understand that agility and flexibility are necessary to address user needs, and delight our evolving industry with a tight feedback loop, among other considerations that come with time, practice, and experience.

Companies like MindBridge are ultimately closer to the needs of enterprises and stakeholders in the audit industry. These are the people pushing firms to do more with less, and produce more effective and high quality work with less resources. We understand the struggle in the market in a way that the AICPA and other organizations may not.

Part of the challenge will be to establish systems of review in order to meet the needs of an ever-evolving industry. The AICPA is a storied organization that may find it challenging to balance procedure with market need.

Even still, it may be even more difficult than that.

As a standard setter in the audit industry, the AICPA may find themselves in an awkward position with regulators and other standards enforcement agencies.

Audit Standards vs. Innovation

Comparatively, standards setters have been historically less agile than innovative and tech-forward firms. Large organizations have enough hurdles to jump over as is, without being the literal standard setter pushing back on these technological developments.

The AICPA’s involvement with regulators and imposing audit standards poses a unique challenge to the development, release, and review of a Dynamic Audit Solution. As they mention in their own Introductory Document for DAS, the AICPA anticipates an upheaval of standards and regulations that have inhibited the use of AI-powered technologies for audit in the past.

It will be interesting to see how a standard setter like the AICPA can build a tool and roll out their procedural recommendations at the same time. This brings to light questions around feedback and updates, and whether or not large organizations are flexible enough to meet the needs of our ever-evolving industry in a timely manner.

At the heart of this is the ability for tech firms to move quickly, update and adjust to new risk factors, changes to normal business processes, and therefore stay ahead of the standards curve.

Can the standard setter balance that need for speed and agility to enhance client satisfaction while also delivering on software changes needed for a dynamic business environment?

DAS will bring us a long way with standards that embrace technology. However, we will want to make sure that the AICPA focuses more on standards agility to help their members impact and delight the outcomes for the entities they audit.

We will have to wait and see what becomes of DAS in light of current or amended standards, but it’s more than valid to suspect that the industry-wide perspective shift may take some time.

DAS, and the future of audit

Ultimately, the AICPA’s investment in AI and data analytics, and the development of the Dynamic Audit Solution as a result, is exactly the type of thing our industry needs. Big players like the AICPA need to step up and embrace technology, and look to the future of audit and accounting more generally.

At MindBridge, innovations like these make us hopeful for the future of our industry, and have convinced us that we, and our peers in the industry, are having a marked impact on the present and future of audit and accounting.

As our Founder, Solon Angel, notes in his own article on the Dynamic Audit Solution:

“The bottom line is that artificial intelligence is being considered by all players, and this is something that I welcome with open arms. No matter how small or large the investment, every hour or dollar spent works to improve our industry. In light of recent fraud cases around the world, there is a clear need for as many initiatives as the Dynamic Audit Solution as possible, using different AI approaches is better than the status quo.”

We couldn’t agree more. We’re looking forward to the release of the Dynamic Audit Solution to make us better and challenge us to continually improve, evolve, and engage with our expanding client base. For more articles on the audit and accounting industry, visit our blog here.

MindBridge is performing tomorrow’s audits, today.

Find out how AI empowers the financial leaders of the future.

ISA 315 revised: What it means for risk assessment procedures, and data analytics

May 26, 2022January 19, 2021 by Rachel Kirkham

Two characters discuss the benefits of data analytics in light of ISA 315 revisions.

ISA 315 (revised) and Data Analytics: Risk assessment procedures reimagined

The revised standard has been published as of December 2020, and you might be wondering what impact it has on your firm’s risk assessment procedures and how you can address the requirements. There are many useful sources of information on the changes, notably the IAASB’s Introduction to ISA 315. IFAC also published a helpful flowchart for ISA 315 during the work programme, which walks through the various steps required to assess risk of material misstatement.

There are a number of improvements to the standard, including an enhanced focus on controls (particularly IT controls), stronger requirements on exercising professional scepticism and documentation, and considerations around the use of data analytics for risk assessment. The new standard comes into effect from 15th December 2021, so now is the time to start planning how you will address the changes in your audit. Below we discuss some key considerations on how analytics can support a strong risk assessment.

Credit: https://www.ifac.org/system/files/publications/files/IAASB-Introduction-to-ISA-315.pdf

So how can data analytics support your risk assessment according to ISA 315? The areas identified above in red show the different procedures that can be supported by the use of these techniques. A key element of the revised standard is that this should be an iterative process conducted throughout the audit. This means using data analytics tools that can be easily refreshed with the latest information will better support this requirement than more traditional approaches.

Identifying risks of material misstatement at the financial statement level

Data analytics can support the risk assessment procedures laid out in ISA 315 by analysing previous and current accounting data to the financial statement level. This allows the auditor to see the material balances in the accounts, and if machine learning is applied, where the concentration of risky transactions lies. This is where the knowledge gained in the blue boxes above can be brought to bear. Comparing understanding gained through observation to the data is a powerful way to sense check and identify areas for further investigation.

Identifying risks of material misstatement at the assertion level

Specific analyses can target assertion risks and show where there are particular problems with an assertion. To do so effectively, several different analytics tests can be applied and combined to develop a good indicator of an assertion risk, for example accuracy. These can then be applied in an automatic way to give the auditor the information needed for their risk assessment.

Determine significant classes of transactions, account balances or disclosures (COTABD)

Combining assertion analytics with the ability to profile similar transactions can help auditors identify significant classes of transactions or balances. Analytics can help to produce similarity scores, but also to identify sets of transactions that are unusual. This can indicate previously unknown business processes that may require a separate assessment of their control environment.

Assess inherent risk by assessing likelihood and magnitude

Following identification of risk, the audit can guide their assessment by understanding the level of unusualness. Data analytics can provide finer grain evaluations of risk rather than simply risky or not. This can help support assessments aligned with the spectrum of inherent risk as defined in the standard.

Assess control risk

Data analytics such as process mining or automated testing of segregation of duties can help to inform or test control risk. These analytics can provide more comfort around the controls risk assessment and help to identify deviations in the control environment that require further examination.

Material but not significant COTABD

Where COTABD has been determined as material but not significant, recurring analytics can ensure that this assessment remains valid. Anomaly detection methods can be particularly helpful here, allowing the auditor to regularly check that nothing unusual has occurred since the initial assessment was undertaken.

Next Steps: ISA 315 and Data Analytics

Audit methodologies will need to reflect the revised workflow, with particular emphasis on the iterative nature of the risk assessment and ensuring that auditors are prompted to exercise professional scepticism and document it at every stage. Data analytics can help to ensure that the information used to continuously conduct risk assessment is timely, appropriate and relevant.

These improvements to the standard will result in a stronger audit approach and an advancement towards industry adaption data and analytics technologies. With AI audit software, accountants and auditors can gain deeper insights into their client’s financial data, in less time. Overall, the audit software can increase the efficiency of their processes, so they can focus on delivering better results, in time for the ISA 315 (revised) December 15th, 2021 deadline.

Want to learn more about the benefits of AI auditing software? Read our article on “Assessing audit risk during engagements” to learn more.

Want to learn more about how auditors are using AI?

From person to machine: The role of audit data analysis

May 26, 2022December 16, 2020 by Stuart Cobbe, ACA

An auditor can view themselves as many different personas, but up until recently ‘audit data analyst’ was not one of those personas. The truth is, I’ve always thought that this was a bit of an unfair position for auditors.

For as long as I have been involved in the accounting and finance industries, auditors have been drawing conclusions about large populations of data by using random sampling or a particular strategic lens. What has always impressed me is how a seasoned partner can spot an error deep in the numbers just by looking at the primary statements.

While strong audit data analysts are still applying their incredible talents, many auditors are beginning to leverage new audit technologies to streamline their analysis methods.

Embracing new data analysis techniques during audits

What’s most interesting today is how professional data analytics techniques from other fields are being combined with traditional audit approaches. This has enabled new ways for auditors to interrogate, understand, and gain assurance during data journal entry analysis or general ledger analysis. This ranges from basic aggregation techniques such as calculating proof in totals and creating moderately complex data visualizations to machine learning techniques designed to spot unusual patterns.

Using AI-powered technology such as Ai Auditor, audit data analysis appears to be entering a new phase of progression. AI audit solutions leverage machine learning to analyze general ledgers and deliver automated risk scores across all transactions and financial data.

How the role of the data analyst is evolving with AI technology

Learning how to properly implement these technologies to evolve auditing processes and general ledger analysis requires consideration. However, I have seen many instances where these cutting-edge audit analysis technologies were able to flag truly interesting items such as the purchase of a Porsche for a company director. When one experiences these types of results with AI audit software, it’s easy to believe that the future is here for journal entry analysis. And, long gone is the day of manual data segmentation in Excel.

Many of these AI audit solutions work by building some expectation of normal within a specific pool of data. The many breakthroughs that are still occurring in data science and artificial intelligence will likely improve the machine’s sense of nuance. As more accurate models involve higher levels of complex analysis, we must, as an industry, weigh this fact against our need for explainable results.

This is not the end for analyzing audit data. Some auditors will always carry the persona of data analysts because they are inherently great at decoding data. However, perhaps that role is evolving alongside new AI audit technology. And perhaps, that’s a good thing.

Want to learn more about how auditors are using AI?

Tools and tips for the audit busy season

September 22, 2022December 8, 2020 by Solon Angel

For most auditors, surviving another audit busy season can be a rough ride. Between the 60-80-hour workweeks and the constant pressure to meet deadlines, there’s little time to rest, gather with family or friends, or enjoy personal hobbies. The reality is that stress is at an all-time high during the audit busy season, and many auditors can reach the brink of burnout.

The COVID-19 pandemic and work-from-home mandates have made things harder for some. Auditors not only have to work extra-long days, but there are fewer chances to break away from the desk and get some much-needed downtime. As the lines between work and home become even more blurred, there’s a serious risk for increased mental health crises.

Auditors are also having to juggle the inherent challenges of remote audits. Everything from trying to figure how to securely access client information and ensuring cybersecurity best practices, to scouring financial data to detect rising cases of fraud put even more pressure on auditors.

Below, we share some tips and best practices that can help auditors prioritize self-care and ease the stresses of the busy audit season.

Top 5 best practices for the audit busy season

1 – Choose the right auditing tools

Conducting effective remote audits begins with selecting the right audit tools. Everything must be considered, from how an audit team will communicate with clients to how files will be shared.

For instance, using a cloud-based AI auditing platform can simplify the sharing of financial data. Clients can quickly upload files into the secure AI platform, allowing the audit team to remotely access and analyze information. With AI power at hand, auditors can also run multiple algorithms across all client transactions simultaneously and cross-correlate data using dozens of testing criteria. This gives them a clearer picture of potential risks.

2 – Prioritize your personal wellbeing during audit busy season

Working from home for long periods of time can wreak havoc on anyone’s mental and physical health. Coupling this with the added stresses of the audit busy season, and auditors become highly susceptible to burnout.

Scheduling short bouts of exercise, yoga, or meditation each day can make a big difference. According to the Anxiety and Depression Association of America, even taking five minutes for light physical movement can reduce stress and stimulate anti-anxiety effects. Auditors who take time to prioritize self-care, get outside for walks, and use meditation apps will be able to better manage the stresses of the busy audit season. Plus, you may even produce better work.

3 – Ease the wake-up-and-work rush of the busy season

Before getting to the at-home workspace, auditors can plan some time for a burst of exercise and home-cooked breakfast or jump in the car to snag a latte at their favorite drive-through coffee shop. These small tasks bring some level of normalcy and variety to what can feel like endless days of remote auditing.

As well, setting firm boundaries around when a workday begins and ends will help auditors delineate work from quality time with family or simple relaxation. Working from home doesn’t have to mean that you’re “always on” or “always available.” This mindset is a one-way ticket to Burnout City.

4 – Re-evaluate auditing best practices

Auditing methodologies and best practices evolve constantly. This is especially true as new technologies become more widely accepted and used in auditing practices. To minimize stress and ensure the highest quality audits and risk assessments, auditors should always take some time to review any updates on audit methodologies and standards. This allows audit teams to better plan for audit engagements and ensures they’re using the most current information to handle their remote audits.

For example, check out our recent blog titled ‘How the new SAS-142 audit evidence standard embraces technology and automation.’

5 – Keep up with developing cyber risks

Working on remote audits while trying to meet looming deadlines is hard enough. But today, it’s become even more imperative for auditors to stay informed about the latest cyber risks and take action to prevent data breaches. The best way to do this is by partnering with transparent and trustworthy technology partners. Auditing firms should vet technology providers by asking about their cybersecurity policies and initiatives, their accreditations and certifications, and any accessible tools that ensure the highest level of resilience to cyber attacks.

Delivering quality work efficiently during the audit busy season

As another busy audit season approaches and remote audits become the new norm, auditors need to rethink how they’re going to manage the current and upcoming stresses and challenges. By implementing the right strategies and tools, auditors can better navigate the audit busy season without reaching a state of complete exhaustion. More than that, they can retain the highest quality of audits and assessments, without compromising data privacy and security.

Wondering how you can streamline your remote audits? Contact our team to schedule a quick demo of our AI auditing platform.

Want to learn how AI can empower finance leaders of the future? Watch the on-demand webinar now.

Want to learn how AI can empower finance leaders of the future?

Leveraging AI for your substantive procedures for Accounts Receivable and Accounts Payable

May 26, 2022September 20, 2020 by Stefano Colaiacovo, CPA, CA

abstract lines up showing ar-ap procedures

Artificial intelligence (AI) and machine learning (ML) technologies can streamline traditional audit procedures for Accounts Receivable (AR) and Accounts Payable (AP) in audits of financial statements.

This blog will consider applications of AI and ML technologies using the MindBridge platform for both substantive analytical procedures as well as detailed testing of specific items.

What does the MindBridge platform do?

MindBridge Ai Auditor, in addition to core general ledger analysis, includes dedicated AR and AP modules that automatically analyze subledger data and, without any scripting, provide high-value visualizations and transaction-level analysis of data.

These capabilities allow you to leverage subledger-level insights and anomalies as critical inputs to your audit procedures and identify risks of material misstatement.

How MindBridge empowers you to perform effective and substantive analytical procedures for AR and AP

Substantive analytical procedures can be a powerful complement to traditional sampling and external confirmations. That is, provided that the auditor is comfortable with the internal controls in place regarding purchasing and sales cycles and has validated the accuracy and completeness of the subledger data.

Trends and patterns

Ai Auditor allows you to visualize how monthly AR and AP balances or net monthly activity track over multiple years at customer vendor levels, and in aggregate. Consistent patterns in these trends in the face of consistent sales and purchasing patterns (respectively) may provide audit evidence that subledger information is not materially misstated.

Vendors and customers related to the entity subject to audit are flagged directly in the summary detail as well.

Key performance indicators

Days Outstanding and Turnover Ratios are calculated at the customer and vendor level and are visualized on a monthly basis, allowing you to identify where there are periods of potential distress or deteriorating quality (e.g. is the volume of cash receipts slowing?). Similar to ending balances and activity, you are also able to compare certain customers or vendors against each other along the lines of these metrics to expose patterns of interest.

Aging

Aging at the customer and vendor level is automatically calculated and captured across respective buckets of days outstanding (0-30 days, 31-60 days, etc.). Consistent breakdown in the relative proportion of these aging buckets across multiple years of subledgers may provide audit evidence that subledger information is not materially misstated at the balance sheet date.

For certain entries that are significantly aged or stale, you’re able to drill-in to all the transactions with a particular customer or vendor and ascertain which invoice(s) are contributing to those totals and whether they could be at risk of bad debt.

How MindBridge streamlines detailed testing of AR & AP subledger data

Navigating and querying transactional level data via the Data Table in Ai Auditor is a powerful and effective way to explore and validate subledger activity.

Control Points, which are various statistical, rules-based, and machine learning tests, are run against every transaction. The results are summarized on a dashboard that supports interactions like filtering and drill-through.

Combining the query building capabilities of the Data Table with Control Point tests, you can efficiently identify relevant populations for sampling and have selections for external confirmation requests or alternative procedures testing (like subsequent receipts, for example) automatically identified on a risk-stratified basis. These selections can then be exported to Excel in one click to populate confirmation requests and/or to be included in supporting documentation.

The results of the transactional risk analysis may also be of particular interest to large entities and small businesses alike to provide insight into where there may be process improvements or gaps to consider in internal controls.

Take the first step towards AI-driven audit procedures on the AR and AP subledgers

To learn more, contact sales@mindbridge.ai.

Want to learn how AI can empower finance leaders of the future?

A better approach to journal entry testing: Audit analytics automation

May 26, 2022September 7, 2020 by Solon Angel

Internet companies have been driven by data for decades. For instance, Amazon was using basic AI systems over 20 years ago. Netflix, Microsoft, Google and many others have dominated their categories by using a data and algorithms-first approach. Yet when we look at the accounting world, many still believe that data and analytics are a novelty, optional, or separate from the work that they do.

When it comes specifically to journal entry testing, most auditors today have been using antiquated approaches and sampling techniques. Many justify the use of these limited audit risk methods by saying they comply with existing standards. But these standards such as SAS 99, Consideration of Fraud, actually only require auditors to gain an understanding of the business and focus on identifying items that warrant further auditor considerations.

According to SAS 99 or other international standards, there is nothing to discredit the use of advanced methodology and latest AI-powered technologies. In fact, almost 20 years ago, the American Institute of CPAs published the 2003-02 Practice Alert with guidance for the use of analytics. Today, recent advancements in auditing software allow accountants to better evaluate audit risks and deliver pertinent insights to various stakeholders.

The challenges with traditional journal entry testing

Traditionally, accountants had a lot of groundwork to do during an audit risk assessment. First, they would spend a considerable amount of time doing data preparation on usually limited data columns and file sizes. Then, they would try to determine which analytics to apply to the data.

As Enterprise resource planning (ERP) systems grow more complex, not all audit procedures can keep up. Data clipping or manually converting a GL report into an Excel file is known to exclude data or cause errors during the audit process.

Existing script-based data analytics engines are exclusionary based, meaning they extract data as an auditor applies various procedures. This decreases the chance of detecting anomalies and doesn’t allow for a truly comprehensive audit risk assessment. This is why many leading accounting firms, including the Big Four, are moving away from these outdated auditing procedures. These more traditional methods for risk-based journal entry testing cause inherent liability and poor quality.

Using more advanced AI-powered auditing software, an audit team can gain more far-reaching insight. By pinpointing control points, the AI auditing software can identify and learn what’s normal or not and then analyze a wider range of data without inherent exclusions.

3 ways to automate risk-based journal entry testing

1. Start with a data-first approach

Before thinking about which audit tests or procedures to apply, you need to start with the data. This is called a bottom-up approach to audit risk assessment, instead of top-down. The idea is to let the data speak first. Then, you can look for standard procedures and identify any underlying risks.

Seek to get as much information on the system available as possible from your client: GL reports, Charts of Accounts, opening and closing balances, bank statements, as well as the previous year’s data.

With this modern approach, you can leverage historical data in new ways. This can include automatically doing pre-emptive calculations and forecasts to better understand potential audit risks.

For example, MindBridge Ai Auditor automatically generates ratios and forecasts that you can annotate and add to your audit plan, seamlessly.

2. Leverage the community effect

Try to avoid reinventing the wheel and be curious of what automation can accomplish. It is not just about using new auditing technology. Try to understand the definition of risk that is built into the automation. A few AI or cloud accounting software vendors like MindBridge have spent countless hours with industry partners embedding specific risk analysis into their software packages.

Auditors are required to “test the appropriateness of journal entries recorded in the general ledger and other adjustments”. In the past, you would have had to define the procedures yourself. But today, with everyone connected online, communities have emerged around your choice of tools. These communities include other accountants that might have implemented fully automated procedures into their methodology and are eager to contribute best practices and tips with others.

During the Influence 2020 conference, some MindBridge Ai Auditor customers such as Baldwin CPAs and GRF CPAs shared their first-hand experience of using our AI accounting software as well as practical advice for other users.

3. Pay attention to complex transactions

Your clients are not in the business of ensuring the right controls or worrying about anything else other than running their business. They simply don’t anticipate bad behavior, bad actors, or white-collar criminals. It is not enough to just design procedures or automate the classic CAATs-style audit tests. Instead, you can leverage the full power of advanced audit risk assessment techniques such as “Rare Flows” and “Expert score” using powerful AI auditing software. These improve your ability to detect high-risk transactions or the sidestepping of the company’s internal controls.

Some employees, including senior management learn ways to work around a specific control. For example, employees can post numerous smaller journal entries to various departmental general ledgers to circumvent approval processes. This also makes it more difficult for auditors to detect the fraud.

This is where AI can excel and really help you. Rare flows and unusual transaction analysis can help you quickly identify audit risks and conduct a more thorough journal entry testing. After saving time on the previous tasks, you will be able to dig into the data and ask the right questions.

Evolving audit risk assessments and your business

Accountants and auditors are not here just to perform repetitive tasks or follow outdated procedures. The core principle of the profession is to be business advisors to their clients.

By using advanced technology for risk-based journal entry testing, auditors can streamline the auditing process and avoid spending billable hours digging for issues in only one area. Instead of limiting themselves to simply extracting data from a general ledger, they can ask for more reports and more data. This allows them to get a deeper understanding of all the anomalies in client files to perform a more thorough audit risk assessment.

With greater automation in journal entry testing, auditors will be able to get more insights from a larger dataset in minutes, and their clients will notice. That’s because after using AI accounting software in the auditing process, the audit team will be able to ask more relevant questions that lead to smarter business outcomes.

Want to learn more about the benefits of AI auditing software? Read how K·Coe Isom embraces AI accounting technology to gain new insights into their clients’ businesses.

How the new SAS-142 audit evidence standard embraces technology and automation

September 28, 2021July 29, 2020 by Stefano Colaiacovo, CPA, CA

A new audit evidence standard has been released by the American Institute of Certified Public Accountants (AICPA) that includes significant updates around how technology and automation can be leveraged throughout the audit process. Here, we’ll examine this standard and some of the most significant examples of how the AICPA has explicitly considered the applicability of analytics and automation to how audit evidence is gathered and concluded upon.

The Statement on Auditing Standards (SAS) No. 142 Audit Evidence is relevant for private company audits and takes effect for periods ending on or after December 15, 2022.

While the effective date of the guidance allows for lead time for the appropriate methodology changes and technology investment to be contemplated and implemented by firms ahead of calendar 2022 audits, the updates reflect the massive tailwinds of how data analytics and automated tools and techniques are well-positioned as catalysts for the reimagining of the audit life cycle. Furthermore, the potential afforded by these technologies to drive monumental improvements in both quality and effectiveness is only amplified further in today’s remote work environment.

Key concepts around audit evidence

It’s worth revisiting some of the basic principles around audit evidence and the responsibilities of the auditor before discussing how data analytics and automation can be transformative to how evidence is collected and generated.

The new standard clearly defines the auditor’s objective around audit evidence as follows:

“The objective of the auditor is to evaluate information to be used as audit evidence, including the results of audit procedures, to inform the auditor’s overall conclusion about whether sufficient appropriate audit evidence has been obtained.” (SAS No. 142, par 5)

The term audit evidence may conjure up images of stacks of source documents (invoices, purchase orders, cheque stubs, etc.) and detailed documentation of ticking and tying them all together in an Excel spreadsheet. But audit evidence isn’t just the outcome of detailed transaction-level testing, it’s more broad and includes the results of your risk assessment procedures and inquiry, any testing of controls, and the results of both detailed and analytical-based substantive testing (SAS-142, par A44).

In other words, the auditor, in exercising their professional judgement as to whether identified risks are properly responded to, has a wide net of support to consider on balance and weighed together to make that conclusion effectively.

So what type of things influence whether evidence is sufficient and appropriate? This comes down to how much evidence is required to respond to the identified risks of material misstatement, and how relevant and reliable that evidence is. The appendix to the standard specifically includes a number of examples and contemplation of what these key terms mean in practice and some of our takeaways (not exhaustive) include:

What types of factors impact the reliability of audit evidence?
- Source
  - Is the information from an external source, and therefore less susceptible to management bias (SAS-142, par A22)?
- Nature
  - Is the evidence “documentary” vs. provided orally through inquiry?
- The controls over the information and how it’s produced
  - How automated is the process by which data is generated and what is the relative strength of controls that the entity has in place? How is the accuracy and completeness of the information ensured?
- Authenticity
  - Has a specialist been involved in validating certain assumptions?

What types of factors impact the relevance of audit evidence?
- The accounts and assertions it relates to
  - Does the evidence tie directly to identified risks at the assertion level of an account? For example, purchase documents matched to payable transactions right before balance sheet date provides evidence against an early-cutoff risk but not a late-cutoff risk.
- The time period it pertains to
  - Does the evidence relate to the period under audit or specific subsets of that period where risk is relevant?
- Susceptibility to bias
  - How much influence over the information does management have?

These concepts are critical to keep top of mind as we consider the role of data analytics and automation because introducing technology to the audit process doesn’t diminish the auditor’s overall objective and requirement to obtain sufficient and appropriate evidence to support their opinion. Rather, the tests and techniques that we’ll review enable the auditor to more efficiently gather, interpret, and perhaps even generate the evidence that satisfy these criteria.

Facilitating high-quality and data-rich analytical procedures and risk assessment

Let’s consider the following excerpt from the new standard:

A59. Analytical procedures consist of evaluations of financial information through analysis of plausible relationships among both financial and nonfinancial data. Analytical procedures also encompass investigation as necessary of identified fluctuations or relationships that are inconsistent with other relevant information or that differ from expected values by a significant amount. Audit data analytics are techniques that the auditor may use to perform risk assessment procedures…

A60. Use of audit data analytics may enable auditors to identify areas that might represent specific risks relevant to the audit, including the existence of unusual transactions and events, and amounts, ratios, and trends that warrant investigation. An analytical procedure performed using audit data analytics may be used to produce a visualization of transactional detail to assist the auditor in performing risk assessment procedures….

Automated techniques such as the ones described in the guidance can be a very powerful and efficient method to assess relationships across the financial ledger. Having this type of analysis “out-of-the-box” at your fingertips, without detailed scripting or manual data wrangling, promotes efficiencies as well.

Here are a few examples of how the capabilities of MindBridge Ai Auditor align with a technology and data-driven analytical review and risk assessment that the standard explains.

Trend analysis

Our Trending analysis allows you to visually compare how one or more accounts moves over time. This allows you to assess how accounts or financial statement areas that you expect to be correlated (accounts receivable and revenue, revenue and costs of sales, etc.) are indeed tracking consistently. It’s important to note that this analysis is available on a monthly basis and is not just a simple year-over-year comparison. This empowers you to have a more nuanced view of what these relationships look like seasonally and more broadly.

You are also able to layer in filtering of the trends you are seeing, across additional operational dimensions of the financial ledger. For example, if an organization manages it’s P&L by department or region, you can examine how revenue breaks down across one or more of these dimensions with one click.

Ratios

Over 30 critical ratios are automatically calculated by Ai Auditor and the results are visualized on a monthly basis throughout the audit period. How each ratio trends in the current period against prior periods is readily apparent and points of deviation can be flagged for further investigation with your client.

With an appropriate amount of prior period data available, Ai Auditor performs a regression analysis called seasonal autoregressive integrated moving average (SARIMA) to graphically visualize the expected ranges for the ratio in the current period in addition to the trend lines. This is extremely valuable in identifying algorithmic outliers for further audit procedures and input to risk assessment.

Transaction-level analysis

The new standard specifically contemplates how unusual transactions or events in the financial ledger impact risk assessment and this aligns perfectly with Ai Auditor’s core competency of an ensemble-based AI algorithm that runs against every transaction and tags it with a single risk score:

A61. Analytical procedures involve the auditor’s exercise of professional judgment and may be performed manually or by using automated tools and techniques. For example, the auditor may manually scan data to identify significant or unusual items to test, which may include the identification of unusual individual items within account balances or other data through the reading or analysis of entries in transaction listings, subsidiary ledgers, general ledger control accounts, adjusting entries, suspense accounts, reconciliations, and other detailed reports for indications of misstatements that have occurred. The auditor also might use automated tools and techniques to scan an entire population of transactions and identify those transactions meeting the auditor’s criteria for a transaction being unusual…

In Ai Auditor, the ensemble-based algorithm includes over 30 different tests, termed Control Points, which range across rules-based, statistical methods, and machine learning-based techniques. The ensemble specifically includes tests for Unusual Amounts posted to an account, Rare Flows of money between accounts that don’t normally interact, and Outlier Anomalies.

With Ai Auditor, you can visualize the results of these tests in aggregate via dashboarding and drill down to the most granular level of a particular entry to see which Control Points are contributing to a certain score.

Techniques that facilitate highly efficient “dual-purpose” procedures

The new standard includes an illustrative example where a series of audit data analytical techniques are used as both a risk assessment procedure and a substantive procedure:

A46. An auditor may use automated tools and techniques to perform both a risk assessment procedure and a substantive procedure concurrently. As illustrated by the concepts in exhibit A, a properly designed audit data analytic may be used to perform risk assessment procedures and may also provide sufficient appropriate audit evidence to address a risk of material misstatement.

The exhibit being referred to in the passage above is quite compelling and certainly worth a detailed review (beginning at page 42 here). As an extension of the previous discussion around transaction-level risk scoring, assuming that additional considerations are satisfied, such as the effectiveness of controls over how the information is produced and the auditor’s confidence as to the accuracy and completeness of the information, the ability to “profile” transactions into relative risk buckets using an audit data analytic (ADA) routine is explicitly contemplated here.

If the results of that “profiling” can be used to not only to inform risk but also the nature, timing, and extent of further substantive audit procedures, the investment into building and integrating these types of techniques into your methodology could provide significant ROI in terms of execution efficiencies.

Take the first step towards a modern, data-driven technological approach to audit, contact sales@mindbridge.ai.

Assessing audit risk during engagements

May 26, 2022July 22, 2020 by Michael Bottala, CPA

Man using MindBridge to access financial risk

Three ways Ai Auditor strengthens your audit planning

The determination of where audit risks of material misstatement lie is a critical output of the audit planning process. Usually, identifying those risks is based on the auditors understanding of their client and the client’s operating environment. Auditors can now rely on a data-driven approach to better understand that environment. And this will positively impact the nature, timing, and extent of the audit procedures which respond to the identified risks.

Below, we’re exploring three ways that our Ai Auditor solution helps you streamline your audit planning, from start to finish.

How to enhance your audit planning using Ai Auditor:

1. Conduct thorough assessments for better audit planning

Just looking at a balance sheet or income statement at one point in time isn’t enough. Analyzing more financial data during the planning phase allows for a deeper understanding of the client’s operations.

Auditors have long used analytics to help assess a client’s operations. These tools help them gain insights and identify aspects of the entity that were either unknown or unfamiliar to the auditors. These data analytics essentially help them to better assess the risk of material misstatement, as well as provide a basis for designing and implementing responses to the assessed risk.

Working with Ai Auditor, the auditor can select a view of the ending balance or monthly activity. They can also analyze different transactional relationships within the general ledger to ask better questions and make more precise judgement calls.

For example, let’s say an auditor finds out the accounts receivable (AR) has a 10% change from the prior year to this year. The auditor can explore the AR activity and find out if this change was a normal increase or if there was any unusual activity that could indicate a new large customer or purchase at year end.

Another example would be if there was an account that had no significant change from the prior year ending numbers, but the activity was much different. Having more data would provide the auditor with better insight into the client’s operations.

Using Ai Auditor, an audit team can also look at relationships between accounts to identify if there are any unusual patterns. For example, perhaps they’ll notice that the cost of goods sold (COGS) and inventory trends appear to not follow consistent patterns. The auditor can then include a very specific and strategic task in the audit plan — to pinpoint the time when the trend does not follow expectations and investigate further.

2. Quickly identify unusual transactions across all data

The MindBridge Ai auditor solution automatically scores the risk of each transaction using Control Points. These Control Points include tests based on business rules, statistical models, and machine learning to identify the most uncommon and unusual items in the data set.

The machine learning engine in Ai Auditor looks at each unique data set and analyzes the frequency and amounts of the transaction. The engine also explores relationships between the account’s transactions that are being recorded.

Ai Auditor helps automate the analysis by flagging items that just don’t fit typical transaction patterns. It’s then up to the accountant to focus on the most uncommon and unusual items and dig deeper.

For example, Ai Auditor might flag the write-off of inventory because insurance-related payments seem uncommon or unusual. During the audit, the auditor might learn that this was due to a warehouse fire.

Essentially, the platform gives auditors better visibility on these unique circumstances right from the start of the audit. The auditor can then focus on these higher risk transactions, consider the ramifications of the transactions, and understand how those riskier items might impact the financial statements.

3. Retrieve and view transactional breakdown by audit area

Using Ai Auditor, an accountant can filter risks by category. This allows them to breakdown risk by account, branch, program, type of transaction, time, monetary value and more.

With this breakdown, the auditor will gain a better understanding of where relative risk lies across operations. They will also be able to see which control points are being triggered within a specific area and consider how that impacts the overall audit risk.

For example, let’s assume an auditor notices that the accounts payable (AP) entries are triggering a significant amount of risky transactions at year end, specifically in the Southwest branch of the operations. This might indicate cutoff issues. Or, if the sequence gap control point is triggered, perhaps the auditor will assume there are completeness issues.

During audit planning, auditors who think critically about how these control points might factor into the assertions for the various accounts will drive stronger results.

A stronger audit plan leads to stronger audits

A deeper level of critical thinking in the audit planning stage ensures a more efficient and effective audit. Auditors can leverage our MindBridge Ai Auditor solution as a feedback loop to further their understanding of the client’s operations.

Using the AI auditing platform, accountants can then uncover valuable insights to supplement their discussions with management and existing knowledge of the client. Those insights might include uncommon patterns in transactions, abnormal stratifications, unusual relationships between accounts, and breakdowns of trends or ratios. With this information at hand, auditors can ensure a well-planned and successful audit.

Do you think audit analytics make auditors even more relevant? We do. Read this next blog to find out more.

Don’t get left behind: A case for adopting accounting software

December 18, 2020July 14, 2020 by Shaye Thyer, CA

Accounting software trends have impacted the accounting profession in big ways. And in my view, one of the greatest analogies of this impact, and even of the way our team at MindBridge delivers value to our clients, comes from Sam Daish, Head of AI and Data Science at Qrious.

A story of three types of businesses

In his previous role as General Manager of Data Innovation at Xero, Sam addressed a room full of very traditional big-firm accounting partners. During this talk, he described the evolution of manufacturing in the time when electricity was new. He summarized the journeys of three business types:

Those who thought electricity was some strange wizardry and continued on as they always had
Those who tried to adapt their processes around electricity to make things work
Brand new businesses that sprung up native to electricity

Sam continued to tell the story of how manufacturing evolved in the 1880s. Businesses in the first category simply could not compete. They buried their heads in the sand. Their refusal to adapt was largely due to long-held pride in traditional expertise. The second group worked really hard to re-invent efficient processes—to make electricity bend and work around the way they’d always done things. The third set of businesses built operations with electricity at the heart. What happened to them?

The ‘ostriches’ were completely obliterated by the rest of the market
The ‘adapters’ really tried, but many businesses did not survive
The ‘electricity natives’ absolutely consumed the market. They shifted customer expectations and quickly devoured customer relationships that were long-held by large, big-brand traditional businesses that once dominated the industry

The parallels with the accounting industry’s state of flux surrounding technology adoption are profound.

First comes cloud accounting software, then AI accounting software

At one point, there was so much fear, worry, and apprehension about cloud accounting software. Many believed the accounting software would steal jobs from bookkeepers, graduates, and accountants in general. Yet the only ones who have experienced any negative outcome have been those who failed to adopt and adapt. Accounting firms who have embraced cloud accounting software and the client-centricity of the single ledger, and who have assisted their clients in doing the same, are dominating the market. It is not accounting technology replacing accountants – it’s accountants adopting technology that are replacing those accountants who are not.

So what about AI now?

Most would agree that diversification into advisory services is the key to modernizing accounting firms and aligning with client expectations. During Covid-19 times, we have seen a reversion back to the bread-and-butter of compliance for many accountants. What we will see moving forward is the evolution of compliance; it will feel less like putting numbers in a box and filling out forms (as this becomes more and more automated over time) and more like compliance risk mitigation, or ‘compliance advisory’. So for the future-fit compliance and advisory firm, AI accounting software comes to the fore when we ask ourselves: “So you have access to all this real-time data via cloud—what are you doing with it?”

When we look at accounting software trends, the message to support the adoption of AI is like that of cloud: “AI—it’s about task replacement, not human replacement”. The automation and ‘task replacement’ we now enjoy with cloud accounting software is similar to AI accounting software—these technologies are just doing parts of the job which no one likes anyway. For example, we love presenting insights to clients, showcasing our deep expertise of industry, and offering fancy visualizations that break down the complex into a simple picture. But we don’t like entering or churning through the data to get to the insights. So for this, we have AI. In a recent Accounting Today article titled ‘What AI does for accountants’, the author describes three areas in which accountants can leverage AI accounting technology right now:

Invisible accounting to automate reconciliations for clean, timely data
Active insight to drive better decisions
Continuous audit to build trust through better financial protection and control

Stepping towards success with AI

No matter where accounting firms are in their journey towards adopting new accounting software, one thing is clear—businesses need to, at the very least, start looking at the latest advancements in AI and all the advantages it offers, or risk being left behind. Some may be just jumping onto the cloud accounting software train. Others may begin courageously diving into AI. Regardless, there is a necessity for our established industry of accounting professionals to be deliberate about their re-learning journeys when it comes to accounting software. Those who seek to not only survive, but thrive, must ensure that data literacy and conceptual knowledge of what both cloud and AI accounting software can deliver are key to their business strategy moving forward.

How AI and data can power an effective audit plan

September 29, 2024July 2, 2020 by Gena Song, CPA, CA

An effective audit starts with a solid audit plan. While the overall audit strategy and plan can vary between clients, an auditor will usually establish risk assessment procedures and a how-to response for the risk of material misstatement.

The challenge is that sometimes, even the most thorough and comprehensive audit plans can still have gaps. In fact, every auditor understands there will likely always be some degree of uncertainty and unidentified risks before an audit begins. It’s in the initial audit planning stages that an audit team will often ask:

How can we lessen those unknown risks?
Is there an opportunity to confirm initial assessments about the industry or company?
Are there blind spots that we haven’t considered?

This is where machine learning (ML) and artificial intelligence (AI) can help. In this blog, you’ll learn how you can use MindBridge AI to spot risks and shift resources during preliminary engagement activities through each phase of the audit planning process.

Pinpointing audit risks using a data-driven method

Identifying the inherent business risks associated with the company is an important first step in the audit planning process. An auditor must analyze key risk factors such as understanding the industry risks, the company’s business, and any recent changes within the company to determine if and how these considerations will impact the audit plan.

Using Ai Auditor, an audit team can enhance the risk assessment process by retrieving powerful risk insights. That’s because Ai Auditor examines 100% of the company’s transaction data and alerts the team to any anomalies or underlying risks associated with the entity. With detailed data at-hand, the audit team can then move forward with greater confidence in the audit engagement, trusting that the risk assessment is comprehensive and complete.

Ai Auditor can also help the team to identify new risk areas that have might not been flagged in previous audits and include them in their audit plan. Not only does this ensure a well-planned audit, but it also minimizes the potential for duplicating audit procedures later on.

Evaluating the effectiveness of the company’s internal control over financial reporting is another area where using Ai Auditor can be a benefit. Much like traditional testing, the platform automatically identifies control points to spot high-risks transaction data. The auditing team can also adjust these control points and use other capabilities within the platform to recreate traditional control testing models. This data-driven audit method saves the team time while ensuring high levels of accuracy and diligence.

Building an effective audit strategy with Ai Auditor

After initial risk assessments and tests, the auditors will be able to establish an overall audit strategy. This sets the scope, timing, and direction of the audit and guides the development of the audit plan.

For instance, the audit team will derive important conclusions after evaluating the effectiveness of internal control over financial reporting. These will help them decide whether to use control testing, substantive testing, or a combination of both in their audit plan.

When planning the timing of the audit, the team might also consider using Ai Auditor during interim analysis and take advantage of roll-forward capabilities at year-end to ensure a more effective audit.

Considering how much time and resources go into an audit, Ai Auditor can become a force-multiplier for an audit team. The platform provides insights that help them become more efficient as they move through audit planning to engagement completion.

Developing an audit plan with data at your fingertips

As an auditor begins developing and documenting the audit plan, the reporting features within Ai Auditor can help. An auditing team can export powerful graphs and data to support the audit plan regarding details such as the planned nature, timing, and extent of the risk assessment procedures; the planned nature, timing, and extent of tests of controls and substantive procedures; and other planned audit procedures.

The team can also use Ai Auditor to download a single report that details any flagged items and automatically add this report to the audit plan. This ensures the team conducts deeper investigations on those transactions or simply helps to justify why certain samples were selected.

Completing the audit engagement with success

Ai Auditor helps to simplify auditing planning. The platform offers valuable insights and data that help an auditing team streamline risk assessments, build an effective strategy, and outline a comprehensive audit plan. And since an audit team will be able to conduct investigations easier and faster through every phase of the plan’s process, they’ll have more time to offer clients valuable insights and guidance.

Looking for more? Register to access our on-demand webinar titled ‘Riding the Waves of Transformation’ with Tom Hood, CPA.