New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

AICPA CPA-Auditing Exam - Topic 3 Question 60 Discussion

Actual exam question for AICPA's CPA-Auditing exam
Question #: 60
Topic #: 3
[All CPA-Auditing Questions]

For a nonissuer, a previously communicated significant deficiency that has not been corrected, ordinarily should be communicated again:

Show Suggested Answer Hide Answer
Suggested Answer: D

Choice 'd' is correct. A previously communicated significant deficiency that has not been corrected ordinarily should be communicated again in writing, during the current audit.

Choices 'a' and 'c' are incorrect. The auditor is required to communicate significant deficiencies each year, regardless of whether the deficiency has a material effect on the auditor's assessment of control risk or the deficiency is considered a material weakness.

Choice 'b' is incorrect. The auditor is required to communicate significant deficiencies each year, even if the entity accepts that degree of risk because of cost-benefit considerations.


by Dottie at Oct 26, 2022, 01:47 AM

Limited Time Offer

25%

Off

Get Premium CPA-Auditing Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Phuong
4 months ago
Not sure about D, seems like overkill for a deficiency.
upvoted 0 times
...
Margery
4 months ago
B makes sense too, cost-benefit is a real factor.
upvoted 0 times
...
Chau
4 months ago
Wait, isn't it only if there's a material weakness?
upvoted 0 times
...
Leatha
4 months ago
Agree with D, communication is key!
upvoted 0 times
...
Teresita
4 months ago
I think it's D, definitely needs to be in writing.
upvoted 0 times
...
Noble
5 months ago
I’m confused about whether a significant deficiency needs to be communicated again if it’s not a material weakness. I wish I could remember the exact guidelines!
upvoted 0 times
...
Ettie
5 months ago
I’m leaning towards option D because I recall that significant deficiencies should be documented in writing during the audit process.
upvoted 0 times
...
Charlena
5 months ago
I feel like there was a practice question about this, and it mentioned something about cost-benefit considerations. Maybe that's relevant here?
upvoted 0 times
...
Lizette
5 months ago
I think I remember that we need to communicate significant deficiencies again if they impact control risk, but I'm not entirely sure if that's the only condition.
upvoted 0 times
...
Beatriz
5 months ago
Ah, this is a good one. The information security manager needs to balance the risk of a breach with the proper classification of data. I think I know the right approach, but I'll double-check my reasoning before selecting an answer.
upvoted 0 times
...
Maira
5 months ago
Okay, let's see. The CISO has implemented a risk management capability, so it's likely a program or portfolio-level function, not just a single service. I'm leaning towards "Program" or "Portfolio" as the best answer.
upvoted 0 times
...
Xuan
5 months ago
Alright, time to put my AWS knowledge to the test. I believe the correct answers are A and B - we can upgrade or downgrade the instance configuration.
upvoted 0 times
...
Miesha
5 months ago
Hmm, I'm not sure about this. I know the auditors have some role in detecting fraud, but I can't remember the specifics. I'll have to think this through carefully.
upvoted 0 times
...

Save Cancel