News & Tech Tips

What is your external auditor’s responsibility for cybersecurity?

Jacob Courtright on January 2, 2024

Data breaches can be costly. The average total cost of a data breach has risen to roughly $4.45 million, according to a 2023 survey of information technology (IT) security professionals by the Ponemon Institute (a research center dedicated to privacy, data protection, and information security policy). That figure has grown 15% overall in the last three years. Notably, data breach costs have increased 53% in the health care sector since 2020.

Auditors consider all kinds of risks when they prepare financial statements. Here’s how they specifically tackle the issue of IT security in an audit.

Audit scope

When it comes to evaluating cybersecurity risks, auditing standards require auditors to:

  • Learn how businesses use IT and the impact of IT on the financial statements,
  • Understand the extent of the companies’ automated controls as they relate to financial reporting, and
  • Use their understanding of business IT systems and controls in assessing the risks of material misstatement of financial statements, including IT risks resulting from unauthorized access.

The auditor’s role is limited to the audit of the financial statements and, if applicable, the internal control over financial reporting (ICFR).

Primary focus

An auditor’s primary focus is on controls and systems that are in closest proximity to the application data of interest to the audit. This includes enterprise resource planning (ERP) systems, single-purpose applications (such as fixed asset systems), and any connected systems that house data related to the financial statements.

Companies must continuously update their controls and systems to stay atop the latest hacking techniques. Increasingly, companies are using artificial intelligence (AI) and automation to detect and contain breaches. According to the 2023 Ponemon Institute report, organizations that fully deploy cybersecurity AI and automation on average saw 108-day shorter breach lifecycles than organizations without these technologies in place. In addition, organizations that extensively use cybersecurity AI and automation to identify breaches experienced $1.76 million lower average loss than those without these technologies. In fact, these technologies were the biggest cost-savers identified in the report.

An auditor’s responsibilities don’t encompass an evaluation of cybersecurity risks across a company’s entire IT platform. But, if auditors learn of material breaches while performing audit procedures, they consider the impact on financial reporting (including disclosures) and ICFR.

Fortifying your defenses

Data breaches have become increasingly common and costly. It’s critical for business owners and managers to understand the scope of the external auditor’s responsibilities in this area and develop a cybersecurity program that mitigates the risks.

 

Tips for QuickBooks users: 5 mistakes to avoid during bank reconciliation

Jacob Courtright on December 27, 2023

Reconciling bank accounts is critical to ensuring the accuracy of your company’s accounting records. The primary purpose of a bank reconciliation is to confirm that the transactions recorded in your bank statement match those shown in your accounting records.

Generally, bank accounts should be reconciled at least monthly. However, conducting weekly or daily reconciliations for accounts with a high volume of transactions can help uncover accounting errors and fraud quickly. Here’s a list of five common mistakes to avoid when reconciling bank accounts in QuickBooks® software:

  1. Reconciling infrequently. When too much time elapses between reconciliations, it can complicate the process. Stale, undetected errors can create significant weaknesses in your financial records. It may also be harder to investigate discrepancies as memories fade regarding the specifics of unreconciled transactions.
  2. Not reviewing every transaction. It can be tempting to skip smaller transactions to expedite the reconciliation process. Reconciling every transaction, however small, ensures the accuracy and integrity of your accounting records.
  3. Relying exclusively on bank records. While QuickBooks allows users to import bank transactions, assuming every transaction is legitimate and accurate can be a mistake. For example, check payments issued to suppliers should match their invoices. Reconciling payments to source documents and bank records can uncover errors by financial institutions that processed the payments or alterations of the checks by the recipients, for higher amounts.
  4. Routinely creating accounting entries to adjust for differences. Differences may arise despite your best efforts to reconcile transactions in QuickBooks with those shown on your bank statement. The software can create an entry to adjust for the difference. Use caution, as adjusting unreconciled balances can mask errors and fraud.
  5. Not accounting for outstanding checks and deposits. Failure to keep track of checks and deposits that haven’t cleared or been posted to your account can complicate the reconciliation process. To avoid unreconciled items and the need to adjust for differences, gather unpaid and uncleared transactions before beginning a reconciliation and refer to them during the process.

Reconciling bank and credit card accounts can be time-consuming and tedious, especially if an account includes many transactions or your business operates many accounts. However, allowing accounts to be unreconciled can cause errors to multiply, impacting the accuracy of your financial records. Contact us for guidance on how to reconcile your accounts and how QuickBooks can help make the process more efficient.

Using QuickBooks to prepare 2024 budgets and forecasts

Jacob Courtright on December 7, 2023

As year-end nears, many businesses and nonprofits are planning for 2024. QuickBooks® provides budget and forecast features to help management make financial predictions, as well as assess “what if” scenarios to help make more-informed business decisions. Here’s how you can use these tools for your year-end financial planning.

Budgets vs. forecasts

The budget function in QuickBooks is typically used to manage expenditures during the year to ensure that departments and locations spend according to authorized levels. QuickBooks allows you to create a new budget from scratch. However, budgeted amounts often are based on the prior year with adjustments for new projects and expected growth.

For example, your marketing department’s salaries might be based on the prior year with adjustments for raises (if any). Suppose the department hired a new team member in October 2023. When preparing the department’s 2024 budget, you’d make an adjustment for that individual’s full-year salary based on the prorated amount from the prior year.

The forecast function is used to make projections and perform “what if” analysis. To illustrate, you might run worst, most-likely and best-case scenarios for revenue and expenses for the coming year.

For example, suppose your company plans to build a new facility in the third quarter of 2024, and you plan to finance a significant portion of the cost. Because it’s unclear whether the Federal Reserve Bank will raise or lower interest rates in the coming months, you might run multiple financing scenarios with varying interest rates. You also might vary other inputs, such as expected construction costs and revenue and expenses related to opening the new facility, when you perform your scenario analysis.

How QuickBooks features work

To access these tools in QuickBooks, select “planning & budgeting” from the company menu. A budget or forecast can be created for both the profit and loss statement (also known as the income statement) and the balance sheet. You can increase the detail of a budget or forecast by adding figures at the customer/job or class level (or both).

Each budget and forecast created is saved in a unique file and managed separately. If your organization has multiple departments or locations, you can budget and forecast using QuickBooks classes. If you track job costs, you can even prepare forecasts and budgets for individual jobs.

QuickBooks also allows you to view different sets of reports for budgets and forecasts. You can use these reports to review your entries. In addition, you can view comparisons of how the company’s budget or forecast compares to actual results for income and expenses, classes, jobs or balance sheet account balances.

There are two advanced options to consider when using QuickBooks. One is the cash flow projector; this tool also allows you to determine sources and uses of cash to plan ways to avert projected shortfalls in cash. The second is the business plan tool, which allows you to develop a complete master plan for your business.

Planning in uncertain times

Many businesses are currently facing rising costs, uncertain demand, and labor shortages. In today’s volatile marketplace, preparing reports that plan for the financial future is critical to survival. It’s also important to monitor progress throughout the year — not just at year-end. The hard part is creating the underlying assumptions that will drive your budget or forecast. The easy part is entering the information into QuickBooks. Contact us to help you plan for 2024 and beyond.

 

Other uses for QuickBooks.

© 2023

Tailored Consulting Service Announcement

Jacob Courtright on April 20, 2023

We are excited to announce that Whalen CPAs is expanding its services and is now offering Dental & Healthcare Practice Consulting. We believe this new addition will help us provide our clients with comprehensive solutions that will improve their practice’s overall health and maximize profits.

 

We understand that managing a dental or healthcare practice can be complex and time-consuming. With our new consulting service, we aim to simplify the process and provide our clients with the tools and resources they need to make informed decisions. Our team of experts, led by Laurie Morgan, a dentist and instructional designer, has firsthand experience dealing with the intricacies of practice management.

 

We prioritize collaboration and transparency, and our team will work closely with you to understand your unique needs and goals. We offer a range of services, including data analysis, market research, and strategic planning, to help you make informed decisions and achieve your internal goals.

 

At Whalen CPAs, we’re committed to providing our clients with the highest quality of service. We believe this new offering will help us better serve your needs and provide you with a more efficient and streamlined practice. We’re excited about this new service and look forward to working with you.

 

If you have any questions or want to learn more about our new consulting services, please don’t hesitate to contact us. We’re always here to help.

Dig deeper! Find hidden treasure in financial statement footnotes

Greencrest on June 3, 2022

Numbers tell only part of the story. Comprehensive footnote disclosures, which are found at the end of reviewed and audited financial statements, provide valuable insight into a company’s operations. Unfortunately, most people don’t take the time to read footnotes in full, causing them to overlook key details. Here are some examples of hidden risk factors that may be unearthed by reading footnote disclosures.

Related-party transactions

Companies may give preferential treatment to, or receive it from, related parties. Footnotes are supposed to disclose related parties with whom the company conducts business.

For example, say a tool and die shop rents space from the owner’s parents at a below-market rate, saving roughly $120,000 each year. Because the shop doesn’t disclose that this favorable related-party deal exists, the business appears more profitable on the face of its income statement than it really is. If the owner’s parents unexpectedly die — and the owner’s brother, who inherits the real estate, raises the rent to the current market rate — the business could fall on hard times, and the stakeholders could be blindsided by the undisclosed related-party risk.

Accounting changes

Footnotes disclose the nature and justification for a change in accounting principle, as well as that change’s effect on the financial statements. Valid reasons exist to change an accounting method, such as a regulatory mandate. But dishonest managers can use accounting changes in, say, depreciation or inventory reporting methods to manipulate financial results.

Unreported and contingent liabilities

A company’s balance sheet might not reflect all future obligations. Detailed footnotes may reveal, for example, a potentially damaging lawsuit, an IRS inquiry or an environmental claim. Footnotes also spell out the details of loan terms, warranties, contingent liabilities and leases.

Significant events

Outside stakeholders appreciate a forewarning of impending problems, such as the recent loss of a major customer or stricter regulations in effect for the coming year. Footnotes disclose significant events that could materially impact future earnings or impair business value.

Transparency is key

In today’s uncertain marketplace, it’s common for investors, lenders and other stakeholders to ask questions about your disclosures and request supporting documentation to help them make better-informed decisions. We can help you draft clear, concise footnotes and address stakeholder concerns. On the flip side, we can also discuss concerns that arise when reviewing disclosures made by publicly traded competitors and potential M&A targets. Contact us for more information.

© 2022

Whalen CPAs
655 Metro Place South, Suite 450
Dublin, Ohio 43017
(614) 396-4200

© 2026 Whalen CPAs. All Rights Reserved.

The content provided on whalencpa.com is intended for informational purposes only. Before any action is taken based on this information, personalized advice should be obtained from a Whalen CPAs professional. Information obtained on whalencpa.com does not constitute professional advice or create a professional relationship with Whalen CPAs. Learn more.