Data Analytics in Internal Audit. Elizabeth Dunkerley

Similar documents
Using data analytics and continuous auditing for effective risk management

Leveraging Continuous Auditing / Continuous Monitoring in internal audit April 10, 2012

CIIA South West Analytics in Internal Audit - Tackling Fraud

PwC The Path Forward for Data Analysis and Continuous Auditing May 2011

Leveraging data analytics and continuous auditing processes for improved audit planning, effectiveness, and efficiency. kpmg.com

Data & Analytics in Internal Audit. January 13, 2015

Transforming Internal Audit: A Maturity Model from Data Analytics to Continuous Assurance

Beyond risk identification Evolving provider ERM programs

Data analytics the changing use of data within Internal Audit

Leveraging Data Analytics and Continuous Auditing. Internal Audit. January 9, 2014

Sample Reporting. Analytics and Evaluation

Continuous Controls Monitoring ISACA, Houston Chapter. August 17, 2006

IT Audit Perspective on Continuous Auditing/ Continuous Monitoring KPMG LLP

Challenges of Analytics

Maximising internal audit value

Addressing Cyber Risk Building robust cyber governance

Internal Audit Landscape 2014

RSA ARCHER OPERATIONAL RISK MANAGEMENT

An Auditor s Guide to Data Analytics

AGA Kansas City Chapter Data Analytics & Continuous Monitoring

Internal Audit Testing and Sampling Techniques. Chartered Institute of Internal Auditors May 2014

Oracle Financial Services Broker Compliance

Continuous Auditing / Continuous Monitoring

Continuous Controls Monitoring. Virginia ISACA January Meeting 19 January 2010

Session 7: Leverage Business Intelligence to Gain Insight

Adding insight to audit Transforming internal audit through data analytics

RSA ARCHER AUDIT MANAGEMENT

Talousjohto muutosagenttina ja informaatiotulvan tulkkina

Transforming Internal Audit Through Critical Thinking. kpmg.com

London Business Interruption Association Technology new risks and opportunities for the Insurance industry

Simplifying the audit through innovation

Governance, Risk, Compliance and Beyond: The Emergence of Strategic IT Risk Management

Integrating Data Analytics into Internal Audit

Transform to the power of digital. Digital transformation to empower CFOs

Chief Risk Officers in the Mutual Fund Industry: Who Are They and What Is Their Role Within the Organization?

ACL WHITEPAPER. Automating Fraud Detection: The Essential Guide. John Verver, CA, CISA, CMC, Vice President, Product Strategy & Alliances

Metrics by design A practical approach to measuring internal audit performance

Portfolio Company Performance Analysis and Reporting Automation

Achieving Control: The Four Critical Success Factors of Change Management. Technology Concepts & Business Considerations

Integrating CA and CM into Audit, Risk and Compliance processes

REALIZING MAXIMUM BENEFITS FROM GOVERNANCE, RISKS AND COMPLIANCE (GRC) TOOLS

Business Data Authority: A data organization for strategic advantage

Continuous Monitoring: Match Your Business Needs with the Right Technique

Cybersecurity The role of Internal Audit

Application Control Effectiveness for SAP. December 2007

Digital Asset Management. Delivering greater value from your assets by using better asset information to improve investment decisions

SAP Overview Brochure. Confidence Powers Success. SAP Solutions for Governance, Risk, and Compliance.

Practice Guide. Selecting, Using, and Creating Maturity Models: A Tool for Assurance and Consulting Engagements

IT audit updates. Current hot topics and key considerations. IT risk assessment leading practices

The what, why, when and how of Strategic Workforce Planning

Applying Risk Assessment to Your Audit Plan Break-out Session T3, Tuesday, October 26 2:00-2:50pm

<Insert Picture Here> Financial Audit Scoping Tool Blueprint for Oracle GRC Applications

Getting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP

Digital Strategy. How to create a successful business strategy for the digital world.

Transform Audit Practices and Move Beyond Assurance

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

Using CAATs for Risk Reduction and Project Efficiencies

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

Implementing Oracle BI Applications during an ERP Upgrade

How to gather and evaluate information

Auditing Application User Account Security and Identity Management with Data Analytics

Regulatory and Economic Capital

Transforming risk management into a competitive advantage kpmg.com

Information Security Management System for Microsoft s Cloud Infrastructure

RC & CREATING DATA PRIVACY OPPORTUNITIES USING BIG IN EUROPE DATA AND ANALYTICS. risk compliance RISK & COMPLIANCE MAGAZINE.

Mastering Risk with Data-Driven GRC

IDC MaturityScape Benchmark: Big Data and Analytics in Government. Adelaide O Brien Research Director IDC Government Insights June 20, 2014

Self-Service Data Assurance for BI and Analytics

The Advantages and Disadvantages of Collections 3.0

An Introduction to Continuous Controls Monitoring

the role of the head of internal audit in public service organisations 2010

Application controls testing in an integrated audit

Sopra Steria - A Leader in the Insurance Industry

Integrated Financial Management Information Systems (IFMIS)

Chief Data Officer Center of Excellence. Develop an Enterprise CoE to Drive Business Decision Making and Growth

Data Mining/Fraud Detection. April 28, 2014 Jonathan Meyer, CPA KPMG, LLP

IBM Business Analytics and Optimization The Path to Breakaway Performance

ORACLE SUPPLY CHAIN AND ORDER MANAGEMENT ANALYTICS

Information Architecture at the Enterprise Level Results of the 2013 DATAVERSITY Survey

Risk Considerations for Internal Audit

OVERVIEW OF THE ISSUE

U S I N G D A T A A N A L Y S I S T O M E E T T H E R E Q U I R E M E N T S O F R I S K B A S E D A U D I T I N G S T A N D A R D S

Big Data: How can it enhance your strategy?

Data Warehouse Management Final Audit Report Report Nr. 8/13 November 12, 2013

Understand the impact the POA & ASN has on the Perfect PO Kevin Wilson Q Data USA SESSION CODE: SC163

ERP & Performance. Introduction. Years of financial control focus

SYNTASA's Personalization Maturity Index by Kirk Borne, Advisor to SYNTASA TM July 2014

Transcription:

Data Analytics in Internal Audit Elizabeth Dunkerley

Who Am I? Born in Bermuda Master s degree at King s College London Joined KPMG 2014 Technology Risk Data group 1

What is Data Analytics? Why is Data Analytics important? Where are you now? 2

What is Data Analytics? - Information in raw or unorganized form - Big Data - Metadata - Qualitative vs. Quantitative - Volume, Variety, Velocity and Veracity - Examining raw data with the purpose of drawing conclusions from the information. 3

4 Box Model Ad-hoc Repeatable Data Analytics Mature Predictive 4

Why Should my Business Care? - Catches risks - Encourages compliance - Develops insights and knowledge Adds value to business 5

A Management Perspective Source: KPMG international survey: Going beyond the data: turning data from insights into value 2015. A survey based on data collected from 830 senior business executives across more than 15 countries. 6

How Relevant is Data Analytics for Internal Audit? But Data Analytics is not just a focus area itself, it is also a capability that can support all of the other 9 areas! 7

Benefits of Using Data Analytics for Internal Audits Benefits to IA: More robust and focused audit evidence and more insight by analysing full populations Pressure to be lean Enhance audit quality Risk assessments and dynamic audit plans Create efficiencies - and consistencies through automation (less manual testing) Audit efficiency and consistency Quality of audit evidence A more focused audit Providing better coverage Identifying large or unusual transactions and items more accurately for further investigation Insight to Management Increased relevance to Management Insight into internal control deficiencies and actual financial impact Combine data to create new insights Identifying trends, exceptions and potential areas for improvement 8

Maturity Framework Data Analytics aspects Ad-hoc Repeatable Mature Predictive Type DA DA DA DA Basic use of DA to execute audit procedures Increased use of DA, e.g. dynamic risk assessments, audit planning, dynamic visualisation, etc. Advanced use of DA throughout the IA process cycle Scope DA DA DA DA Basic use of DA, e.g. controls, payroll, SoD Increased use of DA, e.g. P2P, O2C, R2R, Intangibles - controls as well as substantive Advanced use of DA and continuous monitoring/ auditing Audit integration DA DA DA DA Basic use of DA to automate certain aspects of existing audit programmes Increased use of DA through re-designing existing audit approaches and audit programmes Advanced use of DA through a DA-tailored IA strategy and by using end-to-end DA enabled audit programmes Frequency DA DA DA DA DA extracts and analysis once a year DA based on regular, e.g. quarterly, extracts and analyses Maturity of the D&A enabled audit approach Continuous auditing using CMM and (close to) realtime DA procedures 9

Are you Ready for Data Analytics? Management is embracing data analytics across the different business areas. Are you as IA function with them on that same journey? 1. Are you providing assurance over such business initiatives and e.g. over reliability of DA solutions? 2. Are you clear on how IA can benefit from DA? Are you able to articulate your requirements to your IT/ BI function? 3. Are you participating - or leading - in the conversations about using a single DA capability across all three lines of defence? Or do you prefer your own capability? 4. Do you have what you need to integrate DA in to your audit strategy, methodology and approach on all business areas? 5. Do you have the skills in your teams to build the right capability, to get DA truly embedded, to execute, and to turn DA results in to insight? 10

The Data Process Data strategy Data quality Data management Data remediation / assurance Information strategy Decision and planning modelling Tactical solutions and work arounds Data governance and controls Technology programme assurance Information protection, business resilience and data security 11

Payroll - Data Quality 12

Payroll - Fraud Risk 13

Payroll - Legal Employment 14

Stock Analysis For an outdoor goods retailer, we performed analysis of their stock at year end, to understand the stock days for each product. We used a simple tool such as MS Excel PowerView as a stepping stone for developing their data analytics capability. 15

Who are the Key Players? 16

What are the Challenges of Data Analytics for Internal Audit? A varied business and IT landscape/ mixed maturity Integration, e.g. with business analytics and CCM* Data Security Assurance over DA and CCM* solutions Data extraction Dynamic Stakeholder expectations Knowing where to focus/ to start Alignment between 3 lines of defence Cost of IT solution to the auditor Overload of DA results/ exceptions Interpreting/ Making sense of DA results Skills / combination of skills Quality and Flexibility of DA solutions/ routines Blurring the line between audit and advisor *: CCM; continuous control monitoring, i.e. technology to monitor controls through system settings (General IT and automated controls) 17

What causes global warming? 18

Correlation vs. Causation http://d1m3qhodv9fjlf.cloudfront.net/wp-content/uploads/2014/09/pirates-480x359.png 19

Without data you re just another person with an opinion W. Edwards Dening 20

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information