INTERNAL AUDIT SOFTWARE BUYER S GUIDE



Similar documents
FULLY INTEGRATED GOVERNANCE, RISK MANAGEMENT, COMPLIANCE AND AUDIT SOFTWARE

REALIZING MAXIMUM BENEFITS FROM GOVERNANCE, RISKS AND COMPLIANCE (GRC) TOOLS

Enterprise Risk Management in Compliance 360

Case Study: ICICI BANK INTERNAL AUDIT DEPARTMENT PENTANA AUDIT WORK SYSTEM IMPLEMENTATION

Audit & Inspection Management. Enterprise Cloud Audit & Inspection Management Solution

Paisley Enterprise GRC Audit Profile. Linda Bergs

How To Use Haccp 4.1.1

Audit & Inspection Management. Enterprise Cloud Audit & Inspection Management Solution

PERFORMANCE MANAGEMENT

White Paper: The Seven Elements of an Effective Compliance and Ethics Program

Achieve Service Excellence with VivaDesk

LEVERAGE TECHNOLOGY TO EMPOWER INTERNAL AUDIT

Case Management. itouch Vision. This document gives an overview of Case management and discusses the different features and functionality.

Reduce risk. Reduce cost. Raise performance.

CRM for Business Intelligence

Functional and technical specifications. Background

Risk & Hazard Management

TECHNOLOGY SOLUTIONS FOR THE INTERNAL AUDITOR

How To Improve Your Business

RSA ARCHER BUSINESS CONTINUITY MANAGEMENT AND OPERATIONS Solution Brief

Request for Information Integrated Portfolio, Project & Management Information System Technical Assistance Unit RFI: TAU/01

Compare versions with Maximizer CRM 12: Summer 2013

MAGENTA KEYLINE IS A CUTTER GUIDE, DO NOT PRINT. PLEASE SET TRAPPING THROUGHOUT

Maximizer CRM Group Edition

MONSTER ONBOARDING GET YOUR NEW HIRES WORKING

Third Party Approval & Risk Management

ACCELUS COMPLIANCE MANAGER FOR FINANCIAL SERVICES

Incident Reporting & Management

Practice guide. quality assurance and IMProVeMeNt PrograM

Sage CRM. Communicate, Collaborate, Compete with Sage CRM

Policy Management Compliance 360 GRC Software Suite

Microsoft Technology Practice Capability document. MOSS / WSS Building Portal based Information Worker Solutions. Overview

Effective Internal Audit in the Financial Services Sector

Sage CRM Focused Sales Management

Organise Your Business

Governance, Risk, and Compliance (GRC) White Paper

Service Asset & Configuration Management PinkVERIFY

The Paperless QMS March 2012

Service Management Simplified

DNBi Risk Management. Use Unparalleled Data to Boost Performance

Decision Maker's Guide - Evaluation Checklist for ITSM Solutions High Level Requirements

SECTION B DEFINITION, PURPOSE, INDEPENDENCE AND NATURE OF WORK OF INTERNAL AUDIT

Integrated Governance, Risk and Compliance (igrc) Approach

Reduce risk. Reduce cost. Raise performance.

Organise Your Business

Action/Task Management

InfraStruxure TM Management Software

Reduce risk. Reduce cost. Raise performance.

Risk M Guide N anagement Sof ot twes are Benchmarker

Enhancing Productivity. Enabling Success. Sage CRM

Vendor Risk Management

PROTEUS Enterprise - IT Governance, Risk and Compliance Management Solution

Risk Management in Role-based Applications Segregation of Duties in Oracle

Compare versions with Maximizer CRM 12: Winter 2012

Moving from ISO 9001:2008 to ISO 9001:2015

Risk-Based Assessment of User Access Controls and Segregation of Duties for Companies Running Oracle Applications

February 8, Analysis of Consulting-Portal s 5th Annual ITSM Industry Survey

<Insert Picture Here> Financial Audit Scoping Tool Blueprint for Oracle GRC Applications

Web access for real-time convenience online

Module 1 Diploma of Project Management

IT Audit Perspective on Continuous Auditing/ Continuous Monitoring KPMG LLP

Maximizer CRM Enterprise Edition

Directory of. Advertising Supplement

Totara LMS. Key benefits. Key Features

setup and provide drill-down capabilities to view further details on metrics and dynamic updates for a real-time view of your business conditions.

Second CRM CRM Solution for Small Companies

Audit of NSERC Award Management Information System

Personalised view of metrics for an instant snapshot of your business. Wizard-Driven Dashboards

SeeSOR.NET. Quality Management Approach and Technology of SeeSOR.NET.

A fresh approach to accelerating the Financial Close

What is Piilo software?

Customer Relationship Management

Manager Domain Experts. Delivery Team. C h ic a g o

CIVICUS is seeking proposals from consultants to implement this solution between August and October 2011.

Riverview Law The Instruction & Triage and the In-house Virtual Assistants

Islamic Relief Worldwide AX Reports Developer

ethic Audit Solution

With Windows, Web and Mobile clients Richmond SupportDesk is accessible to Service Desk operators wherever they are.

The No.1 most configurable software to manage your Governance, Risk and Compliance

Mothernode CRM SALES & MARKETING EDITION

Governance, Risk and Compliance (GRC) software Business needs and market trends

Focused Sales Management

{Businesss. Intelligence. Overview. Dashboard Manager

Personalised view of metrics for an instant snapshot of your business. Wizard-Driven Dashboards

Customer Timeline - New in Summer Web Lead Capture - New in Summer Built-In Dashboards - New in Summer 2012

Totara LMS. Key benefits. Key Features

Department of Finance and Deregulation 2011/004 Portfolio Panels for IT Services ATTACHMENT A

TOPdesk Professional. Service Management Simplified

An Introduction to Continuous Controls Monitoring

Sage CRM Contract Manager Gain full control over contract lifecycles with Sage CRM

NEIAF June 18, IS Auditing 101

ASSET ARENA PROCESS MANAGEMENT. Frequently Asked Questions

Risk committee performance evaluation

CMTRAC. Application Overview APPLICATION DATASHEET

Contract Management The Mavericks Won t Like This!

Using COBiT For Sarbanes Oxley. Japan November 18 th 2006 Gary A Bannister

How To Write An Impactful Audit Report

SAP Audit Management A Preview

WHITE PAPER. Media Planning and Collaboration Platform

KMS TM Operational Risk Management Solution

Transcription:

BarnOwl Solutions INTERNAL AUDIT SOFTWARE BUYER S GUIDE CONTENTS 1. The need for internal audit 2. What do the standards say? 3. Why implement internal audit software 4. Steps to the successful implementation of internal audit software 5. Considerations and key questions when buying internal audit software 6. Key feature comparison checklist 7. About BarnOwl

The need for internal audit Internal audit provides a number of important services to company management including detecting and preventing fraud, testing internal control, and monitoring compliance with company policy and government regulation. The law in many countries requires publicly-owned companies and public sector departments to have internal audit activities. Many privately-owned companies have internal audit activities as well. Some of the benefits derived from the internal audit activities are as follows: Assess the effectiveness of the design and execution of the system of internal control and risk management. Assist management in the effective discharge of their duties. Evaluate compliance with laws and regulations. Evaluate the reliability and integrity of financial and operational information. Provide recommendation for the improvement of operations. Help in safeguarding company assets and utilization of its resources. Reduce the exposure to unpleasant surprises. Having an internal audit activity is a good corporate governance practice. The cost of preventive actions is much less than those of corrective actions.

What do the standards say? The International Professional Practice Framework (IPPF) states that the Mission of Internal Audit is: To enhance and protect organizational value by providing risk-based and objective assurance, advice, and insight. The Definition of Internal Auditing as per the IPPF framework is: Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization s operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes. Why implement internal audit software Besides being general best practice, Internal Audit Software provides an organisation with a systematic and disciplined approach to the audit process. Using Internal Audit software can boost efficiency for internal audit departments creating greater cost savings and they can boost the overall capacity of understaffed departments. Other benefits of using internal audit software include: Creating a central and secure repository for all audit documentation Giving access to audit information and documentation regardless of location, or stage of audit process Providing a highly structured format to support the audit process of planning, execution, reporting, follow-up and document management Increasing coordination and integration with other organisational risk management activities Risk & Control based auditing ensuring that risks that matter to the organisation are audited and aligned back to the business Improving the ability to create reports and information for management Providing live updating and monitoring of action plans as well as follow-up audits

Steps to the successful implementation of internal audit software Software implementation: 1. Setup groups (departments or business units) within your organization 2. Document your existing processes / sub processes / system descriptions including risks, controls and tests 3. Document your audit methodology including types of audit, project file organiser structure per type of audit, template documents, findings structure (e.g. standard, finding, impact, root cause, management comment, action plan), findings and project rating scale etc. 4. Identify your audit users, their permissions (preparer, reviewer etc.) and software training requirements 5. Ensure the software is able to generate final audit reports / audit committee reports as per your requirements 6. Take-on: software must be able to import existing findings from Excel into the database Now you are ready to use the software: 1. Audit planning (where, when, who): based on high risk areas, site rating, repeat findings 2. Perform audit execution: Perform testing, risk & control assessment and raise findings 3. Finalise Audit Process: Review audit results, produce audit report, remediation plan (living action plans), and executive summary 4. Follow up audits to check for resolution of findings

Considerations and key questions when buying internal audit software Define your system requirements in enough detail to provide basis for evaluation How flexible is the software to support your audit methodology Does the software support best practice standards (risk & control based auditing) and is it integrated with risk management Apart from the software having the standard features, what are the differentiators / value adds Take into account the benefit of local support and responsiveness of the vendor to your requirements What is the setup process and estimated timelines; be aware of the box-dropper approach versus a hand s on approach ensuring project success Are there any hidden fees or costs (e.g. hosting, support, additional implementation, other required 3rd party software licenses, online action plan licenses etc?) Check the reporting capability of the software Ensure the upgrade of the software is non-intrusive, simple and that there are regular updates Check the ability / stability to work offline Request client references / testimonials Don t: just select the software based on cost and ease of use just buy the most popular software assuming it will be best for your company buy basic software which meets your current requirements but won t meet your future requirements

Key feature comparison checklist Use this comparison checklist to compare important feature sets from competing software solutions: Important features BarnOwl Software B Software C Does the software support risk and control based auditing. i.e. is it a fully integrated GRC solution Flexible take-on / import functionality Hand holding throughout the implementation process ensuring project success Ability to maintain a central library of process / working paper tests, not just as Excel attachments but within the database as fields User-defined fields available anywhere in audit module and ability to report on user-defined fields User / Group security restricting unit and project access Facilitation of the typical audit process including planning, execution, reporting and follow-up Facilitation of execution with business logic to create standard findings based on failed tests including the automatic identification of repeat findings Ability to automate the distribution of findings to management for comment and automatic import / capture of management comments back into the system Check in / check out functionality allowing multiple auditors to work on the same audit project without conflicts Resource management and Timesheets

Important features BarnOwl Software B Software C Review notes are stored in the database with preparer / reviewer audit trail history. Review notes can be captured anywhere in the system including directly against findings and / or Excel / Word working papers Customisable reports with MS Word integration Combined assurance reporting Management and Auditor Dashboards Graphical slice and dice reporting: e.g. root cause analysis, risk ranking, findings analysis, trends etc. Automated risk and control self-assessments without any licensing or cost implications Online questionnaires and surveys without any licensing or cost implications Online action plans with email notifications to all auditees without any licensing or cost implications Offline and online synchronisation enabling auditors to work offline Ease of use End user support process, support portal Ability and willingness of the vendor to respond to software enhancement requests Online help, FAQs, up-to-date system documentation Regular and seamless software upgrades including automated upgrading of offline users Regular user groups, refresher training etc. Client references and track record of the vendor

About BarnOwl BarnOwl is a fully integrated governance, enterprise risk management, compliance and audit software solution used by over 200 organisations in Africa, Europe and the UK. BarnOwl supports best practice risk management, compliance and audit frameworks (e.g. COSO, ISO31000, Compliance Institute s handbook, International Professional Practice Framework), whilst offering a highly flexible and configurable parameter-driven system allowing you to configure BarnOwl to meet your specific requirements. www.barnowl.co.za

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information