Internal Audit Testing and Sampling Techniques. Chartered Institute of Internal Auditors May 2014
|
|
- Delilah Francis
- 8 years ago
- Views:
Transcription
1 Internal Audit Testing and Sampling Techniques Chartered Institute of Internal Auditors May 2014
2 Controls Testing Slide 1
3 Testing Priorities Risk B1 Risk A1 Risk B2 Risk A2 Risk C2 Risk C1
4 Controls testing Testing techniques Inquiry Observation Inspection/ Examination Re-performance Slide 3
5 Controls testing Control testing Tests of controls are designed to obtain evidence to assess their operating effectiveness. Operating effectiveness means that the controls are functioning as designed on a consistent basis over the period under examination. - Inquiry consists of seeking information of knowledgeable people within the client - Observation consists of looking at a process being performed by others - Examination inspection of information or data walkthrough confirming our understanding of a process by tracing individual transactions from beginning to end - Re-performance independent execution of procedures that were originally performed as part of management s internal controls Slide 4
6 Controls testing Determining which Testing technique to use Re-performance Level of Comfort Inspection/ Examination Observation Inquiry Slide 5
7 Controls testing Determining which testing technique to use Considerations: The susceptibility of the control to change. The frequency and extent of the control. Our initial view of the likelihood of control weakness. Significance of the control to the control environment and how much reliance is being placed on it. Slide 6
8 Value Protection - execute Sampling Sampling is the application of auditing procedures to a representative group of less than 100% of the items within a homogenous population We use non-statistical sampling 3 Steps to follow: 1. Determine the control test objective, population and sampling unit 2. Determining the sample size 3. Selecting the sample for testing Slide 7
9 Value protection Execute Sampling Manual Controls Depends on: Frequency of control or population size Level of evidence that is judged to be necessary The table below, can be used as a general rule; however, we may use a smaller sampling size: Frequency of Control Assumed population size Annual 1 1 Quarterly 4 2 Monthly 12 Sample Size 2 (minimum) to 5 (maximum), Select 3 if you require a mid-range. Weekly 52 5 to 15. Select 10 if you require a mid-range Daily to 40. Select 30 if you require a mid-range Multiple times per day Over to 60. Select 30 or 45 if you require a mid-range Slide 8
10 Value protection Execute Sampling Manual Controls Following factors may indicate that sample sizes should be selected at the higher end of the ranges: - The greater the potential financial loss or adverse event to the company if the control is not effective or fails: - The more complex the control - The greater the degree of judgment in control operation Slide 9
11 Value protection Execute Sampling Automated Controls If IT General Controls have been tested and found to be effective, it may be sufficient to only test one operation of the Automated Control Slide 10
12 Documentation Audit documentation Audit documentation must contain sufficient information to enable an experienced auditor, having no previous connection with the engagement to: - Understand the nature, timing, extent and results of the procedures performed, evidence obtained, and conclusions reached - Determine who performed the work and the date such work was completed, as well as the person who reviewed the work and the date of such review. - Understand the linkage between conclusions and facts Remember: if what you did isn t documented, it s the equivalent of not performed! - Document what you have done and how you reached your conclusions Slide 11
13 Confidential The changing shape of internal audit Increased use of technology Drivers for change (top 3): 1. Complexity increased use of technology within the business higher volume of transactions increased automation businesses driven by data devil is in the detail how do you find a needle in the hay stack? 2. More for less pressure to deliver more with less value quality efficiency insight pressure to deliver with less resource and using samples? 3. Resources skills sets innovation technologically minded team reduced fear factor development opportunities for your people? May CIIA - 14 May 2014
14 Confidential May CIIA - 14 May 2014
15 Confidential What are CAATs? Computer Assisted Audit Techniques A means of accessing large amounts of data in a format that can provide transparency not attainable through other auditing procedures. The results may be used to identify areas of key risk, fraud, errors or misuse; improve business efficiencies; verify process effectiveness; or influence business decisions. (ISACA August 2011) May CIIA - 14 May 2014
16 Confidential Data analytics - methodology May 2014 Extract and upload raw data Map and organise data Analyse and visualise data Finalise audit evidence, identify anomalies and insight 15 CIIA - 14 May 2014
17 Computer Assisted Audit Techniques Advantages How can you ever pick a sample that is representative? 1 Expandable model, allowing tests to be refined, tuned, added, removed 2 Standing still or moving with the times? 3 You can quickly identify and address emerging issues and risks 4 In the future it will allow audit tests to be pushed into the organisation as monitoring controls 5 Increased coverage 100% of transactions Efficiency repeatable and automated Value and insight improve the perception of IA Basis for prioritisation of where to look next in the organisation Climb the maturity curve predictive business enabler May CIIA - 14 May 2014
18 Confidential Data analytics on vendor standing data Identify duplicate vendors based on the same or similar (fuzzy match) vendor name. Identifying and resolving duplicate vendor records is important as otherwise this could lead to loss, error or fraud. For example: loss of purchasing volume discounts available where spend with a specific supplier is recorded across two or more records for the same supplier, error if one vendor record is updated but the duplicate vendor record is not resulting in incorrect and inconsistent records, and fraud for example where duplicate vendor records are used to process payments below a review threshold. 12,253 vendors listed in standing data 1,031 perfect duplicates May fuzzy match with 1 character difference 96 fuzzy match with 2 character difference 231 fuzzy match with 3 character difference 17 CIIA - 14 May 2014
19 Exercise You are the internal auditors to an NHS Trust. You have been asked to undertake a review to assess the accuracy of the information used to support the KPIs that are reported to the Board on a monthly basis and to external regulators quarterly. What would you consider in devising a testing approach? 18
20 Exercise You are the internal auditors to an NHS Trust. You have been asked to undertake a review to assess the accuracy of the information used to support the KPIs that are reported to the Board on a monthly basis and to external regulators quarterly. You are driving to work and hear on the radio that a NHS Trust in another part of the country has got into serious trouble for mis-reporting cancer waiting times data. There seems to be an issue in distinguishing between cancellations and DNAs. Would you do anything differently. May
21 Exercise You are the internal auditors to an NHS Trust. You have been asked to undertake a review to assess the accuracy of the information used to support the KPIs that are reported to the Board on a monthly basis and to external regulators quarterly. You are driving to work and hear on the radio that a NHS Trust in another part of the country has got into serious trouble for mis-reporting cancer waiting times data. There seems to be an issue in distinguishing between cancellations and DNAs. In checking the above with the client you realise that they may have innocently mis-interpreted the above and that this might mean that they have been misreporting data to their external regulators. What would you do? May
22 This publication has been prepared for general guidance on matters of interest only, and does not constitute professional advice. You should not act upon the information contained in this publication without obtaining specific professional advice. No representation or warranty (express or implied) is given as to the accuracy or completeness of the information contained in this publication, and, to the extent permitted by law, PricewaterhouseCoopers LLP, its members, employees and agents do not accept or assume any liability, responsibility or duty of care for any consequences of you or anyone else acting, or refraining to act, in reliance on the information contained in this publication or for any decision based on it PricewaterhouseCoopers LLP. All rights reserved. In this document, refers to PricewaterhouseCoopers LLP (a limited liability partnership in the United Kingdom) which is a member firm of PricewaterhouseCoopers International Limited, each member firm of which is a separate legal entity.
www.pwc.com PwC The Path Forward for Data Analysis and Continuous Auditing May 2011
www.pwc.com The Path Forward for Data Analysis and Continuous Auditing May 2011 Agenda What are we hearing in the market? The CA Maturity Path Where to start? What is the difference between CA & CCM? Best
More informationAGA Kansas City Chapter Data Analytics & Continuous Monitoring
AGA Kansas City Chapter Data Analytics & Continuous Monitoring Agenda Market Overview & Drivers for Change Key challenges that organizations face Data Analytics What is data analytics and how can it help
More information4th Annual ISACA Kettle Moraine Spring Symposium
www.pwc.com 4th Annual ISACA Kettle Moraine Spring Symposium Session 2 Big Data May 14th, 2014 Session Objective Learn about governance, risks, and compliance considerations that become particularly important
More informationBusiness Intelligence in the real-world
www.pwc.com Queens University Business Intelligence in the real-world Pat Beattie Contents 1. Introduction 3 2. What is Business Intelligence and Analytics? 5 3. Why do businesses need BI&A? 13 4. Business
More informationAberdeen City Council
Aberdeen City Council Internal Audit Report Final Contract management arrangements within Social Care & Wellbeing 2013/2014 for Aberdeen City Council January 2014 Internal Audit KPI Targets Target Dates
More informationData analytics Delivering intelligence in the moment
www.pwc.co.uk Data analytics Delivering intelligence in the moment January 2014 Our point of view Extracting insight from an organisation s data and applying it to business decisions has long been a necessary
More informationGetting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP
Getting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP Today's unpredictable business climate and challenging regulatory
More informationCompliance & Internal Audit Collaboration
www.pwc.com Compliance & Internal Collaboration Developing a compliance third line of October 2015 The Society of Corporate Compliance & Ethics 14 th Annual Compliance & Ethics Institute Conference Introductions
More informationUK Corporate Governance Code: Raising the bar on risk management Why this is not business as usual and what you need to do to comply
www.pwc.co.uk/riskassurance UK Corporate Governance Code: Raising the bar on risk management Why this is not business as usual and what you need to do to comply September 2014 The FRC s amendments to the
More informationAuditing Standard 5- Effective and Efficient SOX Compliance
Auditing Standard 5- Effective and Efficient SOX Compliance September 6, 2007 Presented to: The Dallas Chapter of the Institute of Internal Auditors These slides are incomplete without the benefit of the
More informationConsulting in Procurement April 2015
Consulting in Procurement April 2015 Introductions Meet the team Leon Smith Director Shauna Gallagher Manager Mick Davies Senior Manager Chris Croisdale Manager 2 Background & context Objectives of the
More informationHow to gather and evaluate information
09 May 2016 How to gather and evaluate information Chartered Institute of Internal Auditors Information is central to the role of an internal auditor. Gathering and evaluating information is the basic
More informationwww.pwc.com ERM006 ERM and Business Continuity Management: Together at Last RIMS Annual Conference April 13, 2016
www.pwc.com ERM006 ERM and Business Continuity Management: Together at Last RIMS Annual Conference April 13, 2016 Your presenters Phil Samson Principal PricewaterhouseCoopers, Dallas Leads s Risk Management
More informationSafety Risk Predictive Analytics to improve safety performance
Safety Risk Predictive Analytics to improve safety performance How we can help you with your safety challenges July 2014 Safety: At the heart of it Improving health and safety Operational safety risk management
More informationCIIA South West Analytics in Internal Audit - Tackling Fraud
CIIA South West Analytics in Internal Audit - Tackling Fraud 10 December 2014 Agenda Intro to Analytics When to use analytics and how to get started Risk Monitoring and Control Automation Common Pitfalls
More informationwww.pwc.co.uk Beyond Sport Online Learning Session Toolkit: Making Best Use of Your People
www.pwc.co.uk Beyond Sport Online Learning Session Toolkit: Making Best Use of Your People What topics does this toolkit address? How to organise your people and structure your team How to performance
More informationReporting on Control Procedures at Outsourcing Entities
Auditing Guidance Statement AGS 1042 (July 2002) Reporting on Control Procedures at Outsourcing Entities Prepared by the Auditing & Assurance Standards Board of the Australian Accounting Research Foundation
More informationModule 2 IS Assurance Services
Module 2 IS Assurance Services Chapter 2: IS Audit In Phases Phase 2: Part: 2 of 3 CA A.Rafeq 1 Chapter 2: Agenda Chapter 2: IS Audit in Phases Phase1: Plan Phase 2: Execute Phase 3: Report 2 Phase 2:
More informationAre CAATs keeping you awake at night?
Are CAATs keeping you awake at night? SUMMARY: The importance of using Computer-Assisted Audit Techniques is discussed. A challenge is made regarding the audit profession s traditional methodology. The
More informationAberdeen City Council IT Asset Management
Aberdeen City Council IT Asset Management Internal Audit Report 2014/2015 for Aberdeen City Council January 2015 Terms or reference agreed 4 weeks prior to fieldwork Target Dates per agreed Actual Dates
More informationAberdeen City Council IT Security (Network and perimeter)
Aberdeen City Council IT Security (Network and perimeter) Internal Audit Report 2014/2015 for Aberdeen City Council August 2014 Internal Audit KPIs Target Dates Actual Dates Red/Amber/Green Commentary
More informationPerforming Audit Procedures in Response to Assessed Risks and Evaluating the Audit Evidence Obtained
Performing Audit Procedures in Response to Assessed Risks 1781 AU Section 318 Performing Audit Procedures in Response to Assessed Risks and Evaluating the Audit Evidence Obtained (Supersedes SAS No. 55.)
More informationFinance Effectiveness Efficiency
Business Unit Finance Effectiveness Efficiency An overview Agenda Page 1 Efficiency - An overview 1 2 Our services 7 3 Case study 14 Section 1 Efficiency - An overview 1 Section 1 Efficiency - An overview
More informationAdding up or adding value?
Get up to speed Building Better Finance Functions Adding up or adding value? Making business partnering work whatwouldyouliketochange.com Contents Adding up or adding value? 3 The strategic value of business
More informationOBSERVATIONS FROM 2010 INSPECTIONS OF DOMESTIC ANNUALLY INSPECTED FIRMS REGARDING DEFICIENCIES IN AUDITS OF INTERNAL CONTROL OVER FINANCIAL REPORTING
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8430 www.pcaobus.org OBSERVATIONS FROM 2010 INSPECTIONS OF DOMESTIC ANNUALLY INSPECTED FIRMS REGARDING DEFICIENCIES
More informationUnderstanding the Entity and Its Environment and Assessing the Risks of Material Misstatement
Understanding the Entity and Its Environment 1667 AU Section 314 Understanding the Entity and Its Environment and Assessing the Risks of Material Misstatement (Supersedes SAS No. 55.) Source: SAS No. 109.
More informationTECHNOLOGY RISK ASSURANCE DATA ANALYTICS/DATA MINING IN RETAIL. By Graham Ward
TECHNOLOGY RISK ASSURANCE DATA ANALYTICS/DATA MINING IN RETAIL By Graham Ward INTRODUCTION Who am I Graham Ward Graham.Ward@bdo.co.uk Employer & Role BDO Data Analytics Director Experience ACA & CISA with
More informationAberdeen City Council IT Disaster Recovery
Aberdeen City Council IT Disaster Recovery Internal Audit Report 2014/2015 for Aberdeen City Council January 2015 Terms or reference agreed 4 weeks prior to fieldwork Target Dates per agreed Actual Dates
More informationAccess Governance. Delivering value. What you gain. Putting a project back on track for success
What you gain Risk-managed access Having a second line of defence to identify what needs to be controlled and who owns it lowers your operational costs, while taking a risk-based approach ensures greater
More informationGetting More From Your Actuarial Analysis
Getting More From Your Actuarial Analysis For Companies Retaining Property/Casualty Insurance Risks PwC 1 Introduction Many companies retain property/casualty insurance (P&C) risks, such as workers' compensation,
More informationNavigating to tomorrow: Serving clients and creating value PwC, Global Private Banking and Wealth Management Report 2013 PMAC Canada 26 November 2013
Navigating to tomorrow: Serving clients and creating value, Global Private Banking and Wealth Management Report 2013 PMAC Canada 26 November 2013 Key themes and strategic priorities 1 2 3 Pervasive regulatory
More informationAuditing Applications. ISACA Seminar: February 10, 2012
Auditing Applications ISACA Seminar: February 10, 2012 Planning Objectives Mapping Controls Functionality Tests Complications Financial Assertions Tools Reporting AGENDA 2 PLANNING Consideration / understanding
More informationFunding sources throughout business lifecycle
www.pwc.ru/debt-advisory Funding sources throughout business lifecycle Dmitry Kovalev Director, Advisory Deals, Russia 18 October 2012 You have plenty of opportunities and they keep evolving as you grow
More informationINTERNAL AUDIT CHARTER AND TERMS OF REFERENCE
INTERNAL AUDIT CHARTER AND TERMS OF REFERENCE CHARTERED INSTITUTE OF INTERNAL AUDIT DEFINITION OF INTERNAL AUDIT Internal auditing is an independent, objective assurance and consulting activity designed
More informationCFIR - Finance IT 2015 Cyber security September 2015
www.pwc.dk Cyber security Audit. Tax. Consulting. Our global team and credentials Our team helps organisations understand dynamic cyber challenges, adapt and respond to risks inherent to their business
More information19/10/2012. How do you monitor. (...And why should you?) CAS Annual Meeting - Henry Jupe
www.pwc.com How do you monitor data quality? (...And why should you?) CAS Annual Meeting - November 2012 Henry Jupe Antitrust notice The Casualty Actuarial Society is committed to adhering strictly to
More informationFeature. A Higher Level of Governance Monitoring IT Internal Controls. Controls tend to degrade over time and between audits.
Feature A Higher Level of Governance Monitoring IT Internal Controls Mike Garber, CGEIT, CIA, CITP, CPA, has many years experience as both director for IT governance and as IT audit director for Motorola
More informationfor supporting and growing their business. You have to create your CRM strategy. How to get a successful CRM implementation By Marianne Broeng
How to get a successful CRM implementation By Marianne Broeng Many CRM implementations fail or do not give the organisation the benefits they need. This situation can be prevented. Too often CRM implementations
More informationINTERNATIONAL STANDARD ON AUDITING 330 THE AUDITOR S RESPONSES TO ASSESSED RISKS CONTENTS
INTERNATIONAL STANDARD ON AUDITING 330 THE AUDITOR S RESPONSES TO ASSESSED RISKS (Effective for audits of financial statements for periods beginning on or after December 15, 2009) CONTENTS Paragraph Introduction
More informationINTERNATIONAL STANDARD ON AUDITING (UK AND IRELAND) 530 AUDIT SAMPLING AND OTHER MEANS OF TESTING CONTENTS
INTERNATIONAL STANDARD ON AUDITING (UK AND IRELAND) 530 AUDIT SAMPLING AND OTHER MEANS OF TESTING CONTENTS Paragraph Introduction... 1-2 Definitions... 3-12 Audit Evidence... 13-17 Risk Considerations
More informationJanuary 2016. Sizing the UK Near Prime Credit Card Market
January 2016 Sizing the UK Near Prime Credit Card Market Introduction and purpose of this document Last year PwC was commissioned by NewDay to complete a consumer survey to estimate the size of the UK
More informationHot Topic: Employers liability insurance registers meeting the FSA s requirements FS Regulatory Centre of Excellence 23 March 2012
www.pwc.co.uk Hot Topic: Employers liability insurance registers meeting the FSA s requirements FS Regulatory Centre of Excellence 23 March 2012 Summary On 25 February 2011 the Financial Services Authority
More informationFollowing up recommendations/management actions
09 May 2016 Following up recommendations/management actions Chartered Institute of Internal Auditors At the conclusion of an audit, findings and proposed recommendations are discussed with management and
More informationAberdeen City Council IT Governance
Aberdeen City Council IT Governance Internal Audit Report 2013/2014 for Aberdeen City Council May 2014 Internal Audit KPIs Target Dates Actual Dates Red/Amber/Green Commentary where applicable Terms or
More informationChapter 15 Auditing the Expenditure Cycle
Chapter 15 Auditing the Expenditure Cycle Expenditure cycle consists of activities related to the acquisition of and payment for plant assets and goods and services. Two major transaction classes: 1 purchases
More informationMANAGING INFORMATION CDP ROADMAP GUIDE CLIMATE CHANGE REPORTING:
MANAGING INFORMATION FOR CLIMATE CHANGE REPORTING: A CDP ROADMAP GUIDE Using advanced software tools to enhance data quality and tackle climate change challenges Professional software is becoming increasingly
More informationwww.pwc.com/modelrisk New supervisory guidance on model Overview, analysis, and next steps
www.pwc.com/modelrisk New supervisory guidance on model risk management: Overview, analysis, and next steps Features of new guidance Issued as supervisory guidance (21 pages) not as a risk bulletin. This
More informationApplication of SFC License in Hong Kong
www.pwchk.com Application of SFC License in Hong Kong Highlights of the Regulatory Requirements Updated as of January 2012 1. Introduction Under the Hong Kong regulatory regime, companies which intend
More informationwww.pwc.co.uk Cyber security Building confidence in your digital future
www.pwc.co.uk Cyber security Building confidence in your digital future November 2013 Contents 1 Confidence in your digital future 2 Our point of view 3 Building confidence 4 Our services Confidence in
More informationConstruction Accounting
Engineering & Construction Engineering & Construction Construction Accounting The application of revenue recognition models in the engineering and construction industry May 2010 0 Contents Executive summary
More information[300] Accounting and internal control systems and audit risk assessments
[300] Accounting and internal control systems and audit risk assessments (Issued March 1995) Contents Paragraphs Introduction 1 12 Inherent risk 13 15 Accounting system and control environment 16 23 Internal
More informationwww.pwc.com Understanding ERP Architectures, Security and Risk Brandon Sprankle PwC Partner March 2015
www.pwc.com Understanding ERP Architectures, Security and Risk Brandon Sprankle Partner Agenda 1. Introduction 2. Overview of ERP security architecture 3. Key ERP security models 4. Building and executing
More informationTHE ABC S OF DATA ANALYTICS
THE ABC S OF DATA ANALYTICS ANGEL BUTLER MAY 23, 2013 HOUSTON AREA SCHOOL DISTRICT INTERNAL AUDITORS (HASDIA) AGENDA Data Analytics Overview Data Analytics Examples Compliance Purchasing and Accounts Payable
More informationReal life experiences with Continuous Controls Monitoring (CCM) on Master Data. Pat Culpan Jeet Kadam
Real life experiences with Continuous Controls Monitoring (CCM) on Master Data Pat Culpan Jeet Kadam What is Master Data? Master data is the core data that is essential for operating an industry. The kind
More informationwww.pwc.co.uk/corporatesustainability PwC Online Learning Session Toolkit: Digital Media
www.pwc.co.uk/corporatesustainability Online Learning Session Toolkit: Digital Media Overview of content Develop a plan to improve your digital marketing strategy Review and improve your use of digital
More informationwww.pwc.com/uk/careers Making successful applications and online testing Skills session
www.pwc.com/uk/careers Making successful applications and online testing Skills session Who we are Our objective is to build long-term relationships with our clients and invest in delivering high quality
More informationINTERNATIONAL STANDARD ON AUDITING 530 AUDIT SAMPLING AND OTHER MEANS OF TESTING CONTENTS
INTERNATIONAL STANDARD ON AUDITING 530 AUDIT SAMPLING AND OTHER MEANS OF TESTING (Effective for audits of financial statements for periods beginning on or after December 15, 2004) CONTENTS Paragraph Introduction...
More informationENTERPRISE RISK MANAGEMENT FRAMEWORK
ROCKHAMPTON REGIONAL COUNCIL ENTERPRISE RISK MANAGEMENT FRAMEWORK 2013 Adopted 25 June 2013 Reviewed: October 2015 TABLE OF CONTENTS 1. Introduction... 3 1.1 Council s Mission... 3 1.2 Council s Values...
More informationDRAFT. Report to Governors on the Quality Report 2015/16. Royal United Hospitals Bath NHS Foundation Trust] Year ended 31 March 2016 16 May 2016
Report to Governors on the Quality Report 2015/16 This version of the report is a draft. Its contents and subject matter remain under review and its contents may change and be expanded as part of the finalisation
More informationOF CPAB INSPECTION FINDINGS
PROTOCOL FOR AUDIT FIRM COMMUNICATION OF CPAB INSPECTION FINDINGS WITH AUDIT COMMITTEES CONSULTATION PAPER NOVEMBER 2013 The Canadian Public Accountability Board ( CPAB ) is requesting comments on the
More informationHow To Audit A Financial Statement
INTERNATIONAL STANDARD ON 400 RISK ASSESSMENTS AND INTERNAL CONTROL (This Standard is effective, but will be withdrawn when ISA 315 and 330 become effective) * CONTENTS Paragraph Introduction... 1-10 Inherent
More informationAutomating the Audit July 2010
Jamie Williams PwC, Systems & Process Assurance PwC Agenda 1. Technology and PwC State of Internal Audit Survey 2. Technology/Data Analytics 3. Continuous Monitoring 4. Common Software 5. ACL Scripts 6.
More informationD&B Data Manager Your Data Management process in the Cloud. Transparent, Complete & Up-To-Date Master Data
Your Data Management process in the Cloud Transparent, Complete & Up-To-Date Master Data What is D&B Data Manager The whole Master Data Management process within one online platform with five modules providing
More informationThe Audit Plan for West Mercia Energy Joint Committee
The Audit Plan for West Mercia Energy Joint Committee Year ended 31 March 2015 16th February 2015 Jon Roberts Partner T 0121 232 5410 E jon.roberts@uk.gt.com Andrew Davies Manager T 0121 232 5417 E andrew.davies@uk.gt.com
More informationTHE AUDITOR S RESPONSES TO ASSESSED RISKS
SINGAPORE STANDARD ON AUDITING SSA 330 THE AUDITOR S RESPONSES TO ASSESSED RISKS This revised Singapore Standard on Auditing (SSA) 330 supersedes SSA 330 The Auditor s Procedures in Response to Assessed
More informationHow Do You Audit an Elephant? (Learning Management and Student Information Systems)
How Do You Audit an Elephant? (Learning Management and Student Information Systems) DAVID MAGGARD & KIM RUTLEDGE Texas A&M University System Internal Audit Very simple answer. Texas A&M University System
More information10-1. Auditing Business Process. Objectives Understand the Auditing of the Enteties Business. Process
10-1 Auditing Business Process Auditing Business Process Objectives Understand the Auditing of the Enteties Business Process Identify the types of transactions in different Business Process Asses Control
More informationFinance and Accounting Control, Record Keeping and Reporting Services
Position Title: Finance Officer Job Description Department: Reports To: Finance Financial Analyst Purpose The Finance Officer is responsible for the maintenance of finance and accounting transactions and
More information4 Testing General and Automated Controls
4 Testing General and Automated Controls Learning Objectives To understand the reasons for testing; To have an idea about Audit Planning and Testing; To discuss testing critical control points; To learn
More informationDepartment of Health INFORMATION ASSURANCE SUMMARY REPORTS. The purpose and scope of this review
INFORMATION ASSURANCE SUMMARY REPORTS Department of Health The purpose and scope of this review 1 During the period September to December 2011, the National Audit Office (NAO) carried out an examination
More informationManaging risk in construction projects how to achieve a successful outcome*
how to achieve a successful outcome* Project risk and controls Slaying the dragon Scott Jardine *connectedthinking PwC Contents Background to the dragon Project risk management Project controls Background
More informationBig Data Analytics: 14 November 2013
www.pwc.com CSM-ACE 2013 Big Data Analytics: Take it to the next level in building innovation, differentiation and growth 14 About me Data analytics in the UK Forensic technology and data analytics in
More informationFIRST CITIZENS BANCSHARES, INC. FIRST-CITIZENS BANK & TRUST COMPANY CHARTER OF THE JOINT AUDIT COMMITTEE
FIRST CITIZENS BANCSHARES, INC. FIRST-CITIZENS BANK & TRUST COMPANY CHARTER OF THE JOINT AUDIT COMMITTEE As amended, restated, and approved by the Boards of Directors on July 28, 2015 This Charter sets
More informationSRI LANKA AUDITING PRACTICE STATEMENT 1013 ELECTRONIC COMMERCE EFFECT ON THE AUDIT OF FINANCIAL STATEMENTS
SRI LANKA AUDITING PRACTICE STATEMENT 1013 ELECTRONIC COMMERCE EFFECT ON THE AUDIT OF FINANCIAL STATEMENTS (This Statement is effective for all the audits commencing on or after 01 April 2010) CONTENTS
More informationAUDIT EFFICIENCIES: IS YOUR RELIANCE STRATEGY WORKING FOR YOU? Kyleen Wissell, CRISC, PHR, RCC
AUDIT EFFICIENCIES: IS YOUR RELIANCE STRATEGY WORKING FOR YOU? Kyleen Wissell, CRISC, PHR, RCC Today s Agenda Background: Audit Standard #5 adopted by PCAOB and approved by the SEC in 2007 was intended
More informationAntifraud program and controls assessment grid*
Advisory Services Antifraud program and * Fraud risks & controls February 2008 *connectedthinking 2008 PricewaterhouseCoopers LLP. All rights reserved. PricewaterhouseCoopers refers to PricewaterhouseCoopers
More informationOVERVIEW OF THE ISSUE
Feature Automated Audit Testing for Sap Data Benefit or Just Another Black Box? Stefan Wenig is chief executive officer (CEO) of the dab:group, a company that specializes in data extraction, analysis of
More informationINTERNATIONAL AUDITING PRACTICE STATEMENT 1013 ELECTRONIC COMMERCE EFFECT ON THE AUDIT OF FINANCIAL STATEMENTS
INTERNATIONAL PRACTICE STATEMENT 1013 ELECTRONIC COMMERCE EFFECT ON THE AUDIT OF FINANCIAL STATEMENTS (This Statement is effective) CONTENTS Paragraph Introduction... 1 5 Skills and Knowledge... 6 7 Knowledge
More informationCorporate performance: What do investors want to know? Reporting adjusted performance measures
www.pwc.com Corporate performance: What do investors want to know? Reporting adjusted performance measures July 2014 PwC I Reporting adjusted performance measures t 1 u Contents Introduction 3 Executive
More informationThe end of SAS70 what next for Performance Assurance?
Enhancing Trust and Transparency The end of SAS70 what next for Performance Assurance? A perspective on transitioning from SAS 70 to ISAE 3402 pwc Enhancing Trust and Transparency 1 Contents What you need
More informationApplication of Insurer Authorisation in Hong Kong
www.pwchk.com Application of Insurer Authorisation in Hong Kong Highlights of the Regulatory Requirements Updated as of January 2012 1. Introduction Under the Hong Kong regulatory regime, institutions
More informationBusiness Continuity Business Impact Analysis arrangements
Aberdeen City Council Internal Audit Report 2012/2013 for Aberdeen City Council May 2013 Business Continuity Business Impact Analysis arrangements Final Report Contents Section Page 1. Executive Summary
More informationAudit and Risk Committee Charter. Knosys Limited ACN 604 777 862 (Company)
Audit and Risk Committee Charter Knosys Limited ACN 604 777 862 (Company) Audit and Risk Committee Charter 1. Introduction 1.1 The Audit and Risk Committee is a committee established by the board of directors
More informationProcess Control Optimisation with SAP
Process Control Optimisation with SAP The procure-to-pay cycle, which includes all activities from the procurement of goods and services to receiving invoices and paying vendors, is a basic business process.
More informationbuilding a business case for governance, risk and compliance
building a business case for governance, risk and compliance contents introduction...3 assurance: THe last major business function To be integrated...3 current state of grc: THe challenges... 4 building
More informationHow To Audit A Company
1666 K Street, NW Washington, D.C. 20006 Telephone: (202) 207-9100 Facsimile: (202)862-8430 www.pcaobus.org STAFF AUDIT PRACTICE ALERT NO. 11 CONSIDERATIONS FOR AUDITS OF INTERNAL CONTROL OVER FINANCIAL
More informationwww.pwc.com Shared Service Center Mehr als eine Standortbestimmung Tag der Beratung 7. Juni 2011
www.pwc.com Shared Service Center Mehr als eine Standortbestimmung Tag der Beratung 7. Juni 2011 Agenda 1 2 3 4 5 Survey Statistics Current Status Implementation Lessons Learnt Outlook 2 1 Survey statistics
More informationPwC Luxembourg. Models for the governance of your investments with Portfolio Management September 2009
PwC Luxembourg Models for the governance of your investments with Portfolio Management Agenda Welcome The Portfolio Management Concept Portfolio Management in PMI Portfolio Management in Val IT Portfolio
More informationwww.pwc.co.uk Making payroll pay Managing risk and compliance in an unprecedented era of change
www.pwc.co.uk Making payroll pay Managing risk and compliance in an unprecedented era of change Global megatrends Demographic and social change Shift in global economic power Rapid urbanisation Climate
More informationMoving your enterprise systems to the cloud? What do you need to know to manage the risks? Jamie Levitt, Director
www.pwc.com Moving your enterprise systems to the cloud? What do you need to know to manage the risks? November 2015 Jamie Levitt, Director Disclaimer Certain matters reviewed today may represent services
More informationData Analytics in Internal Audit. Elizabeth Dunkerley
Data Analytics in Internal Audit Elizabeth Dunkerley Who Am I? Born in Bermuda Master s degree at King s College London Joined KPMG 2014 Technology Risk Data group 1 What is Data Analytics? Why is Data
More informationFile Number S7-13-15, SEC Concept Release: Possible Revisions to Audit Committee Disclosures
Office of the Secretary Securities and Exchange Commission 100 F Street, NE Washington, DC 20549-1090 September 4, 2015 RE: File Number S7-13-15, SEC Concept Release: Possible Revisions to Audit Committee
More informationStrategic Supply Chain Management. Medical Device Supply Chain Council 1 October 2013
Strategic Supply Chain Management Medical Device Supply Chain Council 1 October 2013 Section 1 Why is strategic supply chain management important? Section 1 Introduction Strategic supply chain management
More informationTransforming Internal Audit: A Maturity Model from Data Analytics to Continuous Assurance
ADVISORY SERVICES Transforming Internal Audit: A Model from Data Analytics to Assurance kpmg.com Contents Executive summary 1 Making the journey 2 The value of identifying maturity levels 4 Internal audit
More informationAudit Quality Thematic Review
Thematic Review Professional discipline Financial Reporting Council January 2014 Audit Quality Thematic Review Fraud risks and laws and regulations The FRC is responsible for promoting high quality corporate
More informationPartner With Your Auditor on Controls
WHITE PAPER Partner With Your Auditor on Controls How management can help its auditors address PCAOB inspections findings on internal control Written by Thomas Ray, Distinguished Lecturer at Baruch College
More informationThere s no such thing as a free lunch Why fees are the future for current accounts
www.pwc.co.uk/financial-services There s no such thing as a free lunch Why fees are the future for current accounts January 2015 Introduction PwC s research into what customers think about their bank suggests
More informationACL WHITEPAPER. Automating Fraud Detection: The Essential Guide. John Verver, CA, CISA, CMC, Vice President, Product Strategy & Alliances
ACL WHITEPAPER Automating Fraud Detection: The Essential Guide John Verver, CA, CISA, CMC, Vice President, Product Strategy & Alliances Contents EXECUTIVE SUMMARY..................................................................3
More informationNavigating the Regulatory Maze. AIFMD Impact on Service Providers
www.pwc.com Navigating the Regulatory Maze Navigating the Regulatory Maze AIFMD Impact on Service Providers January 2011 AIFMD Impact on Service Providers The Alternative Investment Fund Managers Directive
More information