What is Audit Planning and Risk Assessment?
Audit planning is the phase where the auditor understands the client's business, identifies where financial statements are most likely to contain material misstatements, and designs an efficient audit strategy around those risks.
Audit planning is the process of understanding the entity, assessing the risks of material misstatement, setting materiality, and designing audit procedures that respond directly to the risks identified — required under ISA 300 and ISA 315.
- 1↓Understand the entityLearn the business, industry, and internal controls (ISA 315).
- 2↓Perform risk assessmentAnalytical procedures, inquiry, and observation to spot risk areas.
- 3↓Assess risk of material misstatementCombine inherent risk and control risk at the assertion level.
- 4↓Set materialityChoose a benchmark and percentage to define what is 'material'.
- 5Design the audit strategyBuild the audit plan and detailed programs that respond to the risks.
Try it: interactive calculator
Step-by-step worked examples
A company has pre-tax income of $2,000,000. The auditor uses 5% of pre-tax income for materiality. What is overall materiality?
Materiality = Benchmark × Percentage Materiality = $2,000,000 × 5% = $100,000
During risk assessment, the auditor learns the client just implemented a new ERP system with no prior audit history. How does this affect planning?
New, untested IT system → higher inherent and control risk at the assertion level Auditor lowers detection risk by planning more extensive substantive testing around system-generated balances
Revenue is $8,000,000 and total assets are $15,000,000. The firm's policy uses 1% of the larger benchmark (total assets) since the company is asset-heavy. What is materiality?
Benchmark = Total assets = $15,000,000 (larger, and asset-heavy per policy) Materiality = $15,000,000 × 1% = $150,000
Flashcards
Quick quiz
Q1.What is the primary purpose of audit planning?
Q2.Pre-tax income is $500,000 and the firm applies 4% materiality. What is overall materiality?
Q3.Risk of material misstatement is a combination of which two risks?
Q4.Which of these is performed FIRST in the audit planning process?
The full card deck, worked steps and AI-tutor support for “What is Audit Planning and Risk Assessment?” are in Notek — study by hand before your exam.
Common mistakes
Treating materiality as a fixed universal percentage for every client. — Correct: Materiality depends on the benchmark and the entity's circumstances — percentages are a starting point, not a rule.
Skipping planning for 'low-risk' repeat clients. — Correct: Every audit requires updated risk assessment — prior-year risks can change materially year to year.
Confusing inherent risk with control risk. — Correct: Inherent risk exists regardless of controls; control risk is the chance controls fail to prevent or detect a misstatement.
Setting materiality after fieldwork is complete. — Correct: Materiality must be set during planning so it can guide the nature, timing, and extent of procedures.
FAQ
What is audit planning?
Audit planning is the process of understanding an entity, assessing risks of material misstatement, and designing a strategy and procedures that respond to those risks.
What is the formula for materiality in audit planning?
Materiality = Benchmark × Percentage, where the benchmark is typically pre-tax income, revenue, or total assets.
What are examples of audit risk assessment procedures?
Inquiry of management, analytical procedures, observation, and inspection of documents are the main risk assessment procedures under ISA 315.
How is audit planning risk assessment calculated?
Auditors assess inherent risk and control risk at the assertion level, then combine them into the risk of material misstatement, which drives the nature and extent of further procedures.




