Scenario

W&S Partners is a U.S.-based accounting firm with offices located in most major cities. W&S Partners will be conducting the January 31, 2026, audit for Cloud 9 Inc., a publicly traded company. The firm has begun the planning phase of the external audit for Cloud9 and has assigned you the task of preparing for the audit. As part of the risk assessment phase of the audit, you will gain an understanding of Cloud9s internal control structure, financial accounts, business environment, materiality, and any inherent risks that may impact the company. You will also review external and other factors as well as interview data that could impact the audit. This understanding will assist you in developing an audit program and in designing the nature, extent, and timing of an audit program.

Directions

For this project, you will review the Cloud9 Case Study and use select data provided in the Supporting Materials section to perform an analysis of the company data. Areas covered will include internal controls of the company, IT controls, external and other factors that may impact the company, interview transcripts from company staff and other personnel, as well as Cloud9s financial data. Through your analysis, you will identify a minimum of two internal control deficiencies or anomalies (risks) for each of the following: accounts receivable, accounts payable, inventory, and information technology. Next, you will determine audit tests to be performed and internal control recommendations to remediate any risks. You will then research Cloud9s industry and related risks to determine what other controls over financial reporting you would recommend. Finally, you will add any information gathered through your analysis to your Cloud9 Audit Program Template found in the What to Submit area.

Specifically, you must address the following rubric criteria:

1. Analyze financial accounting internal controls to identify risk. Include the following:
   1. Lines of business Cloud9 deals with
   2. Types of Cloud9 customers
   3. Types of Cloud9 suppliers
   4. Associated general ledger accounts, including materiality
2. Analyze information technology controls to identify risk. Include the following:
   1. IT general controls
   2. Company-level and application controls
   3. Cloud9s ability to adapt to changing technology
3. Analyze external and other factors to identify risk. Include the following:
   1. Laws and regulations that may affect Cloud9
   2. Economy and its impact on Cloud9
   3. Cloud9s industry
4. Analyze financial data gathered through data analytics to identify risk. Include the following:
   1. Validated notes payable balances
   2. Validated inventory balances
   3. Timing of revenues to ensure proper period
   4. Allowance for doubtful accounts
      1. Is it reasonable?
      2. How to confirm?
   5. Liquidity risk based on ratios
   6. Inventory moving based on ratios
   7. Customers paying on time based on ratios
5. Create an audit program to address identified risks. Include the following:
   1. Recommended audit tests for the audit team to perform

Directions: Complete this template by replacing the bracketed text with the relevant information.

Accounts Receivable

Deficiency / Risk #1

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Deficiency / Risk #2

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Accounts Payable

Deficiency / Risk #1

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Deficiency / Risk #2

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Inventory

Deficiency / Risk #1

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Deficiency / Risk #2

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Information Technologies

Deficiency / Risk #1

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Deficiency / Risk #2

• [Assertion]
• [Audit Test to be performed]
• [Internal Control Recommendations to minimize risk identified]

Financial Data Analysis

Based on your analysis, answer questions from the ACC 411 Project Two Guidelines and Rubric.

[Add content here.]

External Factors

Based on your research of Cloud9s industry and related risks, what other controls over financial reporting would you recommend?

[Add content here.]