SUMMARY: PCAOB Auditing Standard No. 5 prescribes assessing internal controls over financial reporting using a “top-down” approach. This paper describes a method for documenting internal controls that aligns the documentation for application controls to the overall top-down audit approach. This method identifies critical data flow paths by beginning with the general ledger and tracing data backward (down) through the system to its origin, effectively focusing on the critical data repositories in the financial reporting process. It also directs attention to the processes that affect critical financial data and to where controls related to those processes should exist based on management assertions about financial statement account balances. The approach is both more efficient and effective than traditional bottom-up documentation approaches.

American Institute of Certified Public Accountants
(
AICPA
).
2002
. Consideration of Fraud in a Financial Statement Audit.
Statement on Auditing Standards (SAS) No. 99. New York, NY: AICPA
.
Bradford
M.
,
Richtermeyer
S.
, and
Roberts
D.
2007
.
System diagramming techniques: An analysis of methods used in accounting education and practice
.
Journal of Information Systems
21
(
1
),
173
212
Google Scholar
Crossref
Search ADS
 
Louwers
T.
,
Ramsay
R.
,
Sinason
D.
, and
Strawser
J.
2007
. Auditing & Assurance Services.
Second edition
.
New York, NY: McGraw-Hill
.
Mock
T.
, and
Willingham
J.
1983
.
An improved method of documenting and evaluating a system of internal accounting controls
.
Auditing: A Journal of Practice & Theory
2
(
2
),
91
99
.
Google Scholar
 
.
1999
. Internal Accounting Control Evaluation and Auditor Judgment: An Anthology.
New York, NY: Garland Publishing
.
Public Company Accounting Oversight Board
(
PCAOB
).
2004
. Audit Documentation.
Auditing Standard No. 3. Available at:
http://www.pcaobus.org/Rules/Rules_of_the_Board/Auditing_Standard_3.pdf
.
.
2007
. An Audit of Internal Control over Financial Reporting that is Integrated with an Audit of Financial Statements.
Auditing Standard No. 5. Available at:
http://www.pcaobus.org/Rules/Docket_021/2007-05-24_Release_No_2007-005.pdf
.
U.S. House of Representatives
.
2002
.
The Sarbanes-Oxley Act of 2002. Public Law 107–204 [H. R. 3763]. Washington, D.C.: Government Printing Office. Available at:
http://www.pcaobus.com/About_the_PCAOB/Sarbanes_Oxley_Act_of_2002.pdf
.
Willingham
J.
, and
Parks
J.
1982
.
Internal control analysis—A solution
.
The CPA Journal
52
(
5
)
:
24
33
.
Google Scholar
 
This content is only available via PDF.
American Accounting Association
2007