CA Inter FM + SM — Question Paper — January 2021

The following statements are analysed for correctness:

(a) INCORRECT. A more automated business environment does not necessarily mean it is less complex. On the contrary, increased automation often introduces IT-related complexities such as system interdependencies, automated journal entries, access controls, and data integrity risks. As per SA 315 (Identifying and Assessing the Risks of Material Misstatement Through Understanding the Entity and Its Environment), the auditor must understand the entity's use of IT, which itself adds layers of complexity — including risks of system failures, unauthorised access, and change management issues. Thus, automation may increase, rather than decrease, the complexity of the business environment.

(b) INCORRECT. As per SA 200 (Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance with Standards on Auditing), the auditor aims to reduce audit risk to an acceptably low level, not to zero. Absolute assurance is impossible due to inherent limitations of an audit — use of sampling, reliance on management representations, and professional judgment. Audit risk can never be eliminated entirely; therefore, the auditor provides reasonable assurance, not absolute assurance.

(c) CORRECT. As per SA 320 (Materiality in Planning and Performing an Audit), determining materiality requires the exercise of professional judgment. There is no single formula; the auditor considers both quantitative benchmarks (e.g., a percentage of profit before tax, turnover, or total assets) and qualitative factors (nature of the item, user needs). Different auditors may reach different but equally valid conclusions on materiality for the same entity.

(d) INCORRECT. The scope of the internal audit function is not restricted solely to the evaluation of internal controls. As per SA 610 (Using the Work of Internal Auditors), the internal audit function may cover a wide range of activities including: (i) evaluation of risk management processes; (ii) review of governance mechanisms; (iii) review of compliance with laws and regulations; (iv) assessment of operational efficiency and economy; and (v) investigation of fraud. The objectives and scope are determined by management and those charged with governance and are far broader than internal control evaluation alone.

(e) INCORRECT. For accounts payable (a liability), the primary assertion at risk is completeness (i.e., are all payables recorded?), not existence. Testing *recorded* accounts payable traces from the ledger to source documents, which addresses the existence/valuation assertions — confirming that recorded payables are genuine. However, this direction of testing does not address unrecorded liabilities. To test completeness, the auditor should trace from source documents (invoices, goods received notes, supplier statements) *to* the ledger. Focusing only on recorded payables creates a significant audit gap regarding omitted liabilities.

(f) INCORRECT. As per Section 139(8) of the Companies Act, 2013, any casual vacancy in the office of an auditor of a company (other than a company whose accounts are subject to audit by the Comptroller and Auditor General of India) shall be filled by the Board of Directors within thirty days. If such vacancy is caused by the resignation of an auditor, such appointment shall also be approved by the company at a general meeting convened within three months. The statement incorrectly attributes this power to the Audit Committee instead of the Board of Directors.

(g) CORRECT. As per SA 500 (Audit Evidence), sufficiency is the measure of the quantity of audit evidence, while appropriateness is the measure of the quality (i.e., relevance and reliability) of audit evidence. The quantity of evidence needed is affected by the auditor's assessment of risks of material misstatement and the quality of evidence obtained. Both sufficiency and appropriateness are interrelated and together determine the adequacy of audit evidence.

(h) INCORRECT. As per SA 701 (Communicating Key Audit Matters in the Independent Auditor's Report), communication of Key Audit Matters (KAM) is a requirement for audits of listed entities, irrespective of whether the audit opinion is modified or unmodified. It is not triggered solely by a modified opinion. In fact, when the auditor expresses a modified opinion under SA 705 (Modifications to the Opinion in the Independent Auditor's Report), the matters giving rise to modification are discussed in a separate 'Basis for Modification' paragraph and are not repeated as KAM. KAM are those matters that, in the auditor's professional judgment, were of most significance in the audit of the financial statements of the current period.

Part (a): Fundamental Principles of Professional Ethics

As per the Code of Ethics issued by ICAI (aligned with IESBA Code), an auditor must adhere to the following five fundamental principles:

1. Integrity: An auditor shall be straightforward and honest in all professional and business relationships. Integrity also implies fair dealing and truthfulness. The auditor must not be associated with information that is false, misleading, or furnished recklessly.

2. Objectivity: The auditor must not allow bias, conflict of interest, or undue influence of others to override professional or business judgements. Objectivity is the state of mind that has regard to all considerations relevant to the task and no other.

3. Professional Competence and Due Care: The auditor has a continuing duty to maintain professional knowledge and skill at the level required to ensure that clients receive competent professional service. This principle has two aspects: (i) *Attainment* of professional competence, and (ii) *Maintenance* of professional competence through continuing professional development (CPD). The auditor must act diligently in accordance with applicable technical and professional standards.

4. Confidentiality: The auditor must respect the confidentiality of information acquired as a result of professional and business relationships and must not disclose any such information to third parties without proper and specific authority, unless there is a legal or professional right or duty to disclose. Confidentiality also prohibits using information acquired during audit for personal advantage.

5. Professional Behaviour: The auditor must comply with relevant laws and regulations and avoid any action that discredits the profession. This includes not making exaggerated claims about services offered or denigrating the work of other members.

These five principles are not merely aspirational — they impose a positive duty on the auditor and are the bedrock of the entire audit function.

---

Part (b): Procedure for Removal of Auditor before Expiry of Term — Section 140 of the Companies Act, 2013

As per Section 140(1) of the Companies Act, 2013, the removal of an auditor before the expiry of the term requires the following procedure:

Step 1 — Special Notice: A special notice is required for a resolution at an Annual General Meeting (AGM) or Extraordinary General Meeting (EGM) for removing the auditor before expiry of term.

Step 2 — Prior Approval of the Central Government: Before passing any resolution for removal, PQR Ltd. must make an application to the Central Government for prior approval. The auditor cannot be removed without this approval.

Step 3 — Notice to Auditor: The company must give the auditor (CA Raj) a copy of the application made to the Central Government and also give him an opportunity to be heard. The auditor has the right to make representations.

Step 4 — Resolution at General Meeting: Once approval is received from the Central Government, the resolution for removal can be passed at the general meeting of the company.

Step 5 — Filing with ROC: The company must file a statement with the Registrar of Companies (ROC) within 30 days of the meeting, informing them of the removal.

Important Note: Any auditor so removed shall not be re-appointed in that company. This procedure is designed to prevent arbitrary removal of auditors and to safeguard their independence.

---

Part (c): Ways in which Theft of Entity's Assets can be Accomplished

As per SA 240 — The Auditor's Responsibilities Relating to Fraud in an Audit of Financial Statements, misappropriation of assets (including theft) can be accomplished in the following ways:

1. Embezzlement of Receipts: Stealing cash receipts before they are recorded — e.g., stealing cash collected from customers and not entering it into the books at all (also called *lapping*).

2. Stealing Physical Assets or Intellectual Property: Physically stealing inventory, raw materials, scrap, equipment, or even confidential data and customer information for personal use or to sell outside.

3. Causing Entity to Pay for Goods/Services not Received: Creating fictitious vendors or inflating invoices — payments made to non-existent suppliers or for goods never delivered.

4. Using Entity's Assets for Personal Use: Employees using company vehicles, equipment, or other resources for personal benefit without authorisation.

5. Payroll Fraud: Adding fictitious employees (*ghost employees*) to the payroll, or continuing payments after an employee's resignation or termination.

6. Theft through Falsification of Records: Manipulating records to conceal theft — e.g., writing off valid receivables, raising fake credit notes, or understating inventory counts.

These amounts are often small and individually immaterial, making detection difficult without proper analytical and substantive procedures.

---

Part (d): Objectives of the Auditor Regarding Written Representations

As per SA 580 — Written Representations, the objectives of the auditor in obtaining written representations are:

1. To obtain written representations from management and, where appropriate, those charged with governance (TCWG) that they believe they have fulfilled their responsibility for the preparation of financial statements in accordance with the applicable financial reporting framework.

2. To support other audit evidence: Written representations serve to support other audit evidence relevant to the financial statements or to specific assertions in the financial statements when the auditor determines that such representations are necessary.

3. To respond appropriately to written representations provided by management and, where appropriate, TCWG, or if management or TCWG do not provide the representations requested by the auditor.

It is important to note that written representations do not substitute for other audit evidence. They are a form of audit evidence but are considered less reliable than documentary or external evidence. If management refuses to provide the required written representations, the auditor must disclaim or qualify the audit opinion under SA 705 — Modifications to the Opinion in the Independent Auditor's Report.

India's transition from traditional payment methods to newer digital systems reflects the government's push towards a cashless economy. Two significant newer methods are:

BHIM (Bharat Interface for Money): Launched by NPCI (National Payments Corporation of India) in 2016, BHIM is a mobile application built on the UPI (Unified Payments Interface) framework. It enables peer-to-peer money transfers and merchant payments directly from bank accounts without requiring card details or net banking. Key features include: (a) zero charges for transactions; (b) works on smartphones with 2G internet connectivity; (c) uses mobile number, Aadhaar, or bank account as identifier; (d) simple, user-friendly interface designed for mass adoption. BHIM represents a significant step in financial inclusion as it facilitates digital payments across all income groups and reduces reliance on cards or cheques.

USSD (Unstructured Supplementary Service Data): This is a mobile banking protocol that operates through basic telephony without requiring internet connectivity. Customers dial **code *99# on their mobile phones to access banking services. Key features include: (a) works on all mobile phones, including feature phones without internet; (b) provides account balance inquiry, fund transfers, mini statements, and bill payments; (c) particularly effective in areas with limited broadband penetration; (d) minimal data consumption, making it cost-effective for rural and semi-urban populations. USSD-based mobile banking is instrumental in bringing banking services to underserved populations.

Both methods strengthen India's digital payment infrastructure by addressing the digital divide and promoting financial inclusion** across demographics. While BHIM leverages smartphone technology for the tech-savvy population, USSD ensures basic banking access for all mobile users, complementing each other in the broader vision of a digitally-empowered economy.

Definition of Mortgage Loan: A mortgage loan is a loan secured by a mortgage on real property. The borrower (mortgagor) pledges the property (land and buildings) as collateral to the lender (mortgagee), granting the lender a security interest that allows the lender to take possession and sell the property if the borrower defaults on loan obligations.

Types of Mortgage Loans:

1. Fixed Rate Mortgage: The interest rate remains constant throughout the loan term. This provides certainty and stability to the borrower regarding monthly payment amounts, though the initial rate may be higher than adjustable alternatives. The borrower is protected against interest rate increases.

2. Adjustable Rate Mortgage (ARM): The interest rate varies based on market conditions and is adjusted at predetermined intervals (quarterly, annually, etc.). While initial rates are typically lower than fixed mortgages, payments increase as interest rates rise, creating uncertainty. ARMs are useful for borrowers planning to sell or refinance before rates adjust significantly.

3. Interest-Only Mortgage: The borrower pays only interest for an initial period (typically 5-10 years), with principal repayment commencing in subsequent years. This results in lower initial payments but higher payments later when principal repayment begins.

4. Balloon Mortgage: Regular equal payments are made throughout the loan term, but a large lump-sum payment (balloon payment) becomes due at maturity. This allows lower initial payments but requires the borrower to have sufficient funds at the end of the term or refinance the remaining balance.

Benefits of Automating Business Processes

Business Process Automation (BPA) refers to the use of technology to perform repetitive tasks or processes in a business where manual effort can be replaced. Automation, particularly in supply chain and customer-oriented operations, leads to significant improvements in efficiency, quality, and customer satisfaction.

List of Benefits of Automating Business Processes:

1. Cost Reduction
2. Increased Productivity
3. Improved Accuracy and Quality
4. Enhanced Customer Satisfaction
5. Better Compliance and Audit Trail
6. Faster Processing / Reduced Turnaround Time
7. Improved Employee Morale
8. Better Resource Utilisation
9. Scalability
10. Real-time Monitoring and Reporting

Explanation of Any Four Benefits:

1. Cost Reduction: Automation significantly reduces operational costs by minimising the need for manual labour in repetitive tasks. Once automated systems are deployed, they operate continuously without incurring overtime costs, leave pay, or human error-related rework costs. For example, automated invoicing eliminates manual data entry costs and reduces errors that lead to costly corrections. In supply chain management, automated procurement and inventory replenishment reduce carrying costs and stockout situations, directly improving the bottom line.

2. Increased Productivity: Automated systems can process large volumes of transactions and data far faster than human employees. They operate 24×7 without breaks, enabling organisations to handle higher workloads within the same time frame. For instance, an automated order management system in a supply chain can process thousands of customer orders simultaneously, drastically reducing fulfilment time. Employees, freed from repetitive tasks, can focus on higher-value, strategic activities that require human judgement, thereby further enhancing overall organisational productivity.

3. Improved Accuracy and Quality: Human involvement in repetitive tasks is prone to errors due to fatigue, oversight, or data entry mistakes. Automation ensures that predefined rules are followed consistently every time, eliminating manual errors. In a supply chain context, automated quality checks and data validation ensure that orders are accurately processed, inventory records are correctly maintained, and customer deliveries meet the expected standards. This leads to a consistent and high-quality output, which directly enhances customer satisfaction and reduces the cost of error correction.

4. Enhanced Customer Satisfaction: Automation enables businesses to respond to customer needs faster and more accurately. Automated customer service tools (such as chatbots, automated order tracking, and real-time notifications) provide customers with instant responses and updates, improving their experience. In a customer-oriented supply chain, automation ensures timely delivery, accurate order fulfilment, and proactive communication about delays or changes. This responsiveness builds customer trust and loyalty, giving the business a competitive edge in the market.

Conclusion: Automating business processes is a strategic imperative in the modern business environment. It not only streamlines internal operations but also strengthens the supply chain and elevates the customer experience, leading to sustainable business growth.

Digital Library is a collection of digital resources including e-books, e-journals, online databases, and multimedia materials made available through internet connectivity. It eliminates physical space constraints and enables 24/7 access to information from anywhere globally. Key features include: (1) organized cataloguing and indexing for easy search and retrieval, (2) multiple format support (PDF, HTML, video, audio), (3) metadata management for effective information organization, and (4) user-friendly interfaces for seamless navigation. Benefits include cost-effectiveness compared to physical libraries, reduced preservation and maintenance burden, simultaneous access by multiple users, enhanced search capabilities, and support for remote learning. Digital libraries are instrumental in knowledge management, academic research, and professional development, particularly relevant for CA students accessing accounting standards, audit standards, and professional literature.

Payment Gateway is a technology platform that facilitates secure electronic transfer of funds between customers and merchants during online transactions. It acts as an intermediary connecting consumers, merchants, banks, and payment processors. Key functions include: (1) encryption and secure transmission of payment information, (2) authorization and authentication of transactions, (3) fraud detection and prevention mechanisms, (4) real-time transaction processing, and (5) settlement and reconciliation of funds. Payment gateways support multiple payment modes including credit/debit cards, digital wallets, net banking, and UPI. Security features encompass SSL encryption, tokenization, PCI-DSS compliance, and multi-factor authentication to protect sensitive financial data. Types include hosted gateways (third-party hosted payment pages), self-hosted gateways (merchant-hosted), and API-based gateways. Payment gateways are critical infrastructure for e-commerce, enabling trust, reducing transaction failures, and supporting seamless customer experience. They also generate valuable transaction data for business analytics and fraud management.

Cloud-based applications and installed applications differ significantly across several key dimensions:

Installation and Accessibility: Cloud-based applications require no installation on user devices and are accessed through web browsers via internet connectivity, enabling users to work from any location and device. In contrast, installed applications must be downloaded and installed on specific devices, restricting access to those machines and limiting portability.

Cost Structure: Cloud applications typically operate on a subscription or usage-based pricing model, classifying costs as operating expenses (OpEx) where users pay recurring fees based on subscription plans or actual usage metrics. Installed applications demand significant upfront capital expenditure (CapEx) for purchase or licensing with relatively fixed costs regardless of usage intensity, offering more predictable budgeting but less flexibility.

Maintenance and Updates: Cloud providers automatically manage system maintenance, security patches, and software updates without user intervention, ensuring users always access the latest features and security improvements. For installed applications, users or IT departments must manually handle all updates and patches, creating operational overhead, potential compatibility issues, and system downtime during the update process.

Scalability and Resource Management: Cloud applications provide dynamic scalability allowing organizations to adjust computing resources, storage, and concurrent users based on immediate requirements without physical infrastructure modifications. Installed applications are constrained by local hardware capacity limitations and require substantial capital investment and physical hardware installation to scale capacity, making expansion both expensive and time-consuming.

Resources and Capabilities for Sustaining Competitive Advantage — XYZ Corporation

For Mohan to build XYZ Corporation into a dominant technology company, the resources and capabilities it develops must possess four major characteristics to sustain competitive advantage and generate superior profits. These are derived from the Resource-Based View (RBV) of strategy and are commonly referred to as the VRIN framework.

(a) Valuable
A resource or capability must be valuable — it must enable XYZ Corporation to exploit market opportunities or neutralize competitive threats. For example, proprietary technology, superior R&D capability, or a highly skilled workforce is valuable if it allows XYZ to deliver products that customers willingly pay a premium for. If a resource does not improve efficiency, effectiveness, or customer value, it cannot generate a competitive advantage regardless of how unique it is. Mohan must therefore identify and invest in capabilities that have a direct bearing on customer satisfaction and market positioning.

(b) Rare (Scarcity)
A valuable resource must also be rare — i.e., not widely possessed by competing firms in the technology sector. If every competitor has access to the same technology platform or the same pool of talent, no single firm gains an edge. XYZ Corporation must develop or acquire resources such as exclusive patents, unique algorithms, or specialised managerial talent that are scarce in the industry. Rarity alone is insufficient but, combined with value, it creates a temporary competitive advantage.

(c) Imperfectly Imitable (Difficult to Copy)
For competitive advantage to be sustained — not just temporary — resources must be difficult for rivals to imitate. Imitability is imperfect due to three reasons:
- Historical path dependence: XYZ's advantage may stem from early investments or decisions that competitors cannot replicate overnight.
- Causal ambiguity: Competitors may not be able to identify exactly which resources or combinations of capabilities are driving XYZ's success.
- Social complexity: Organisational culture, trust-based relationships, and managerial routines are complex and cannot simply be purchased or copied.

Mohan should foster a strong innovation culture and deep institutional knowledge within XYZ, making it structurally hard for rivals to replicate.

(d) Non-Substitutable
Even if a resource cannot be imitated exactly, competitors may find strategic substitutes — different resources that achieve the same result. For sustained advantage, XYZ Corporation's capabilities must have no equivalent substitute that rivals can deploy. For instance, if XYZ's advantage lies in a unique AI-driven customer analytics platform, competitors should not be able to achieve a similar outcome through alternative means (such as outsourcing analytics or using a generic cloud solution). Mohan must ensure XYZ's core capabilities are so embedded and distinctive that substitution is not feasible.

Conclusion: Only when a resource or capability is simultaneously Valuable, Rare, Imperfectly Imitable, and Non-Substitutable (VRIN) can XYZ Corporation build a sustainable competitive advantage and earn above-average profits over the five-year horizon Mohan envisions.

Strategy Execution is the process of translating formulated strategies into concrete actions and results. It is an operations-oriented activity requiring a good fit between strategy and the organization's capabilities, structure, climate, and culture.

The principal aspects of the strategy execution process used in most situations are as follows:

1. Building an Organization Capable of Executing the Strategy:
This involves developing competencies and capabilities needed to execute the strategy effectively, selecting people for key positions, and structuring the organization and work effort to perform strategy-critical activities efficiently.

2. Allocating Sufficient Budgetary Resources to Strategy-Critical Activities:
Managers must allocate adequate resources — financial, physical, and human — to business units and functions critical to successful strategy execution. Under-funding of strategy-critical departments can derail execution.

3. Establishing Strategy-Supportive Policies and Procedures:
Policies and procedures must guide day-to-day operations in a manner consistent with strategy. Well-crafted policies channel individual actions and behavior in directions that support the strategy, while eliminating dysfunctional practices.

4. Adopting Best Practices and Pushing for Continuous Improvement:
Organizations must adopt best practices, install business process management techniques, and pursue continuous improvement (Total Quality Management, Six Sigma, Business Process Reengineering, etc.) to build operating excellence in executing strategy-critical value chain activities.

5. Installing Information and Operating Systems:
Strategy execution requires real-time information systems and dashboards to track performance indicators, identify deviations, and enable timely corrective action. IT systems must support strategy-critical functions and enable efficient operations.

6. Tying Rewards and Incentives to the Achievement of Strategic Targets:
Motivating people to execute strategy well requires linking rewards (monetary and non-monetary) to strategy-supportive performance outcomes. Incentive systems must align employee behavior with strategic objectives.

7. Creating a Strategy-Supportive Organizational Culture:
Culture — shared values, beliefs, ethical standards, traditions, and work practices — must be aligned with strategy. A strong, strategy-supportive culture makes employees committed to executing the strategy enthusiastically and helps bind the organization together.

8. Exercising Strong Leadership to Drive Execution:
Top management must champion the strategy execution effort, resolve conflicts, set the ethical tone, and build consensus. Leaders must stay close to the process, exert strong influence, and keep the organization focused on strategic objectives.

These eight aspects are interlinked — weakness in any one aspect can undermine the entire execution effort. Successful strategy execution requires attending to all these aspects simultaneously, though priorities may differ depending on the organization's situation.

Suggested Strategy: Retrenchment Strategy — Specifically, Divestment

X Pvt. Ltd. should adopt a Retrenchment Strategy, and more specifically, pursue Divestment of its co-working space business.

What is Divestment?
Divestment involves selling off, spinning off, or otherwise disposing of a business unit or product line that is no longer contributing positively to the organisation. It is a form of retrenchment where a company strategically withdraws from an unprofitable or non-core segment to conserve and redirect resources.

Reasons Justifying Divestment for X Pvt. Ltd.:

(i) Business has become Unprofitable and Unstable: The co-working space segment has turned loss-making and operationally unstable as a direct consequence of the pandemic. With remote work becoming mainstream, occupancy rates collapsed. Continued investment in this segment would drain the company's overall financial health.

(ii) Recent Venture with Limited Sunk Cost: Since the co-working space was a recent venture, X Pvt. Ltd. has not yet invested years of capital and resources into it. This makes it strategically and financially easier to exit before losses deepen further.

(iii) Other Business Lines are Relatively Stable: The fact that X Pvt. Ltd.'s other businesses are relatively less affected by the pandemic indicates these segments are more resilient and worthy of focused management attention and capital allocation. Divestment enables the company to redirect resources — financial, human, and managerial — toward these stronger units.

(iv) Risk Reduction: Holding an unstable and loss-making business unit increases the overall risk profile of the company. Divestment eliminates this exposure and shields the healthier businesses from cross-contamination of losses.

(v) Recovery of Capital: By selling the co-working assets (physical spaces, leases, equipment, or even the business unit as a going concern to a competitor or specialised operator), X Pvt. Ltd. can recover a portion of the invested capital, which can be deployed productively elsewhere.

(vi) Sector Uncertainty: The co-working industry faces structural uncertainty in the post-pandemic world. While some recovery may occur, the market dynamics (hybrid working, oversupply of spaces) make a full turnaround uncertain. A Turnaround Strategy is not advisable here since the instability is systemic and externally driven rather than due to internal inefficiencies alone.

Conclusion: X Pvt. Ltd. should pursue Divestment of its co-working space business as part of a broader retrenchment plan. This will protect the company's core profitable operations, reduce risk exposure, and allow strategic refocusing on stable, growing business lines.