A Look at the Varied Responsibilities of Internal Auditors. internal auditing: All in a days work



Similar documents
Internal Auditing: Assurance, Insight, and Objectivity

Professionalism does not occur overnight. Rather, it is a process that evolves out of focused commitment and dedication, ongoing study and

IIA Position Paper: THE THREE LINES OF DEFENSE IN EFFECTIVE RISK MANAGEMENT AND CONTROL

The Institute of Internal Auditors 247 Maitland Avenue Altamonte Springs, FL USA

Internal Auditing Guidelines

Standards for the Professional Practice of Internal Auditing

Qualification in Internal Audit Leadership (QIAL ) Exam Syllabus

INTERNAL AUDITING S ROLE IN SECTIONS 302 AND 404

Effective Internal Audit in the Financial Services Sector

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)

BOARD OF EDUCATION OF BALTIMORE COUNTY OFFICE OF INTERNAL AUDIT - OPERATIONS MANUAL INTERNAL AUDIT OPERATIONS MANUAL

Developing Tomorrow s Thought Leaders Today

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)

ENHANCING VALUE THROUGH COLLABORATION: A CALL TO ACTION GLOBAL REPORT JULY 2014

Co-sourcing and External Auditors Reliance on the Internal Audit Function

The IIA Global Internal Audit Competency Framework

How quality assurance reviews can strengthen the strategic value of internal auditing*

OCC 98-3 OCC BULLETIN

The rise of third party relationships means rise in risk and regulation. Non-compliance is risky business for financial institutions

Fraud Prevention and Deterrence

Practice Guide COORDINATING RISK MANAGEMENT AND ASSURANCE

ASAE s Job Task Analysis Strategic Level Competencies

Healthcare Internal Audit: In a Time of Transition

Competency Requirements for Executive Director Candidates

Accountants and Auditors

Data Analysis: The Cornerstone of Effective Internal Auditing. A CaseWare Analytics Research Report

How To Understand The Role Of An Internal Audit

Information Paper The Roles and Domain of the Professional Accountant in Business

MAKING INTERNAL AUDIT MORE CREDIBLE AND RELEVANT AUGUST 2011

strategic workforce planning: building blocks to success

Insurance Industry Expertise

LEVERAGING COSO ACROSS THE THREE LINES OF DEFENSE

ACL WHITEPAPER. Automating Fraud Detection: The Essential Guide. John Verver, CA, CISA, CMC, Vice President, Product Strategy & Alliances

RISK BASED AUDITING: A VALUE ADD PROPOSITION. Participant Guide

SAP Overview Brochure. Confidence Powers Success. SAP Solutions for Governance, Risk, and Compliance.

2016-AP-0001 Fiscal Year 2016 Annual Risk Assessment and Audit Plan

Getting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP

RESEARCH REPORT. Internal Audit Capabilities and Performance Levels in the Public Sector

ACNB CORPORATION & SUBSIDIARIES BOARD AUDIT COMMITTEE CHARTER

Your asset is your business. The more challenging the economy, the more valuable the asset becomes. Decisions are magnified. Risk is amplified.

MISSION VALUES. The guide has been printed by:

APPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014

Establishing a Quality Assurance and Improvement Program

Northern California East Bay Chapter (NCEB) of the Institute of Internal Auditors (IIA)

Five-Year Strategic Plan

Internal Audit Practice Guide

Audit Quality Assurance Policies. Auditor-Controller/Treasurer-Tax Collector. Financial Reporting and Audits Division. Audit Unit

INTERNAL AUDIT MANUAL

Internal Audit Reporting Relationships: Serving Two Masters. The IIA Research Foundation

Governance, Risk, and Compliance (GRC) White Paper

Cybersecurity Credentials Collaborative (C3) cybersecuritycc.org

Successfully identifying, assessing and managing risks for stakeholders

Internal Audit Standards

Detroit School District Office of Talent Management

AICPA Discussion Paper - Enhancing Audit Quality, Plans and Perspectives for the U.S. CPA Profession

The Framework for Quality Assurance

TOOLBOX. ABA Financial Privacy

Integrity Continuity: Avoiding and Surviving (Un)Ethical Disasters. Robert C. Chandler, Ph.D., Pepperdine University Malibu, California USA

Accountants and Auditors

Practice guide. quality assurance and IMProVeMeNt PrograM

Dedicated to Protecting Your Reputation BKD NATIONAL HIGHER EDUCATION GROUP

THE FRAUD PREVENTION CHECK-UP 1 HOW COMPLETING THIS CHECK-UP CAN BENEFIT YOUR ORGANIZATION

Internal Audit and Advisory Services DRAFT

Audit Plan Update. Percentage of Total Budgeted Hours. Adjusted Budgeted Hours. Actual YTD. Audit & MAS 8,066 8,366 38% 7, % 2012 Carry Over

Introduction. More time to run their business, Less HR cost to reinvest back to their organization and

WHITE PAPER Third-Party Risk Management Lifecycle Guide

Masters of Philosophy (MPhil) (INTERNAL AUDITING) Enhance your career and become a World-Class Internal Auditor at a Centre of Excellence

KPMG. kpmgcampus.com

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

AT&T s Code of Business Conduct

Managing data security and privacy risk of third-party vendors

Managing Risk Beyond a Plan's Direct Control: Improving Oversight of a Health Plan's First Tier, Downstream, and Related (FDR) Entities

INTEGRITY IN ACTION - HEALTH CARE COMPLIANCE

Project Management Institute STRATEGIC PLAN. Prepared by: PMI Board of Directors

IIA POSITION PAPER: THE ROLE OF INTERNAL AUDITING

Internal Audit Capability Model (IA-CM)

Business Ethics Policy

Code of Business Conduct

CANDIDATE GUIDE TO PREPARING FOR THE QIAL

JOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc.

Guide to Internal Audit

DEFINING OUR ROLE IN A CHANGING LANDSCAPE

DATA ANALYSIS: THE CORNERSTONE OF EFFECTIVE INTERNAL AUDITING. A CaseWare IDEA Research Report

Convercent Predictive Analytics

OAC Presentation to UNESCO Member States

Internet Reputation Management Guidelines Building a Roadmap for Continued Success

Best Practices for Managing Bank Transaction Risk Using a Continuous Data Analytics Approach

Managing Multiple Outsourcing Relationships

Talent Management Recruiting, Developing, Motivating, and Retaining Great Team Members

Remaining Secure in an Evolving Industry. White Paper

Clarifying what it takes to be responsible, knowledgeable, and effective...

Using Data Mining to Detect Insurance Fraud

ISO 27001: Information Security and the Road to Certification

CODE OF BUSINESS CONDUCT AND ETHICS

JSE Accredited to Audit JSE Listed Companies

Establishing a Mature Identity and Access Management Program for a Financial Services Provider

Accenture Risk Management. Industry Report. Life Sciences

Copyright 2012, General Dynamics Information Technology. All Rights Reserved.

Successful Application Design: Auditing the Process Development Life Cycle

3 rd Party Vendor Risk Management

Transcription:

ALL IN A DAY S WORK A Look at the Varied Responsibilities of Internal Auditors internal auditing: All in a days work

The Institute of Internal Auditors

Achieving Objectives For the most part, companies are in business to make money. Schools, charities, and other nonprofit organizations may have the goal of educating, influencing behavior, or helping those less fortunate. And then there are government organizations, which exist to protect and serve the citizens in their jurisdiction. Regardless of what drives them, private businesses, nonprofits, and public-sector organizations all aim to achieve their specific organization s objectives with the greatest efficiency and effectiveness possible. To do this, many organizations enlist the aid of governing bodies such as boards of directors an assembly of experienced business professionals who represent the organization s stakeholders to provide oversight and strategic direction. For the board to steer the organization effectively, board members must receive timely, accurate information about the organization s many strategic, operational, financial, and compliance risks as well as assurance that the risks are being well managed. Enter the internal auditors. www.theiia.org www.globaliia.org 01

What Is Internal Auditing? Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization s operations. At its simplest, internal auditing involves identifying the risks that could keep an organization from achieving its goals, making sure the organization s leaders know about these risks, and proactively recommending improvements to help reduce the risks. For internal auditing to be effective, the organization s leaders must be open to discussing tough issues and seizing opportunities to make necessary changes for improvement. And the internal auditors must have an independent reporting line to the highest governing body (e.g., the audit committee of the board of directors), ensuring them the requisite authority to access all areas of the organization and know that they will be supported if and when their views differ from those of management. Internal audit functions provide a number of important services and are often the catalyst for improving organizational governance and risk management. Leon Sheffield IIA member since 2008 02 The Institute of Internal Auditors

Internal auditors independence and broad perspective of the organization make them a valuable resource to executive management and the board of directors. They ensure that the organization is held accountable to its stakeholders, whether those stakeholders are investors (as in the case of a publicly traded company) or the general public, served by a government organization. Ultimately, internal auditors add value to their organizations by providing assurance, insight, and objectivity. Internal auditors can save their organization substantial amounts of money and protect its reputation in the marketplace by identifying operating inefficiencies, wasteful spending, employee theft, fraud, and cases of noncompliance with laws or regulations, for example. They keep an eye on the corporate climate and perform a variety of activities such as assessing risks, analyzing opportunities, suggesting improvements, promoting ethics, ensuring accuracy of records and financial statements, educating senior management and the board on critical issues, investigating fraud, detecting wasteful spending, raising red flags, recommending stronger controls, monitoring compliance with rules and regulations, and much more! Seems like a lot to ask from one resource? Maybe for some, but for internal auditors, it s all in a day s work. INTERNAL AUDITING = ASSURANCE, INSIGHT, AND OBJECTIVITY Governing bodies and senior management rely on internal auditing for insight and objective assurance that existing internal controls are adequate to mitigate the organization s risks, governance and risk management processes are effective and efficient, and organizational goals and strategic objectives are met. www.theiia.org www.globaliia.org 03

Who Are Internal Auditors? Internal auditors are explorers, analysts, problem-solvers, reporters, and trusted advisors. They bring objectivity and a variety of skills and expertise to the organization. They come from diverse areas such as finance, operations, IT, and engineering. Today s internal audit professionals are revered for their critical thinking and communication skills, as well as their general IT and industry-specific business knowledge. Still, people often confuse internal auditors with accountants or external auditors (entities the organization engages to provide an annual review of the financial statements). The differences are significant: Internal Auditors Typically employed by the organization (unless the function is outsourced or co-sourced) though independent of the activities they audit External Auditors Hired by the organization to provide a specific service Broad focus: Risk management Corporate governance Organizational objectives Operational efficiency and effectiveness Compliance with laws and policies Accurate financial statements And more! More specific focus: Accurate financial statements Diverse backgrounds & skill sets: Communication skills Information technology Data mining & analytics Business & industry-specific knowledge Accounting skills Primarily accounting background & skills Backward-looking & forward-looking Backward-looking 04 The Institute of Internal Auditors

Internal auditors are, to a great extent, key to an organization s success. They review the organization s processes, operations, and goals. They provide objective, professional advice to all levels of management and pave the path toward continuous improvement. Competent internal auditors follow the profession s internationally accepted code of ethics and standards for professional practice. They identify the organization s greatest risks and plan audit coverage accordingly. To demonstrate their professionalism and competence, some internal audit practitioners choose to obtain professional certifications such as the globally recognized Certified Internal Auditor or Certification in Risk Management Assurance. The most valuable and effective internal auditors stay abreast of business trends, constantly cast their eyes to the horizon to scan for signs of trouble, and are able to anticipate future challenges and risks. The IIA sets the bar for internal audit integrity and professionalism around the world with its International Professional Practices Framework (IPPF), a collection of guidance that includes the International Standards for the Professional Practice of Internal Auditing and Code of Ethics. www.theiia.org www.globaliia.org 05

Internal Audit Responsibilities Internal auditors have a very important job to do one with varied roles and responsibilities. The internal audit function itself can vary greatly depending on the organization s size and industry. Some departments have hundreds of staff members working around the globe. Others have just one or two internal auditors. And some organizations outsource or co-source the internal audit function. Depending on the structure, maturity, and resources of the function, internal auditors may perform some or all of the following tasks. Offer Insight and Advice There are times when internal auditors expertise, knowledge of controls, and broad perspective of the organization make them ideal candidates for consulting on a project to ensure that risks are considered and controls are built into a process on the front-end (e.g., mergers and acquisitions, new technology implementation). Internal auditors may offer insight regarding strategic risks and advice, though management must maintain ultimate responsibility for the processes in their area. Evaluate Risks Risks are everywhere (natural disasters, loss of key suppliers, reputation damage, inefficient operations, fraud, lawsuits, policy violations, regulatory compliance, theft, etc.). It s the internal auditor s job to assess the significance of the organization s many risks and the effectiveness of risk management efforts, communicate these to management and the board, and develop recommendations to improve risk management. Assess Controls Internal auditors evaluate control efficiency and effectiveness and provide management and the board assurance that the controls in place are adequate to respond to the risks that threaten the organization. Ensure Accuracy Internal auditors ensure financial statement accuracy. They examine the reliability and integrity of financial and operational information. Improve Operations With a solid understanding of the organization s objectives, internal auditors examine operations to determine whether they are efficient and effective. Promote Ethics Professional internal auditors agree to abide by a Code of Ethics that upholds the principles of integrity, objectivity, confidentiality, and competency. They raise red flags when they discover improper conduct. 06 The Institute of Internal Auditors

Review processes and Procedures Internal auditors review operations closely and assess whether existing processes are well designed to help the organization achieve its goals. Monitor Compliance Internal auditors assess the organization s compliance with applicable laws, regulations, and contracts to ensure that management is addressing these requirements adequately. They also offer insight into the impact that noncompliance would have on an organization and inform senior management and the board of noncompliance. Assure Safeguards The organization s tangible property, human resources, and intellectual property are valuable and must be guarded against potential damage. Internal auditors evaluate the procedures used to safeguard assets from theft, fire, illegal activities, or other types of loss. They bring deficiencies to light and make recommendations for enhanced protection. Investigate Fraud Because fraud can affect any level of the organization, it s important that the board of directors grants the internal audit function access to all records and authority to conduct audits and investigate possible fraudulent behavior throughout the organization. communicate results After auditing a particular area, internal auditors report their findings and recommend appropriate courses of action. www.theiia.org www.globaliia.org 07

True Professionals Internal auditors are well-disciplined in their craft, and they are committed to growing and enhancing their skills through continuing professional education. To fulfill all of their roles effectively, internal auditors must be accomplished in anticipating emerging issues and creating solutions. They must also have business acumen, critical thinking skills, and be excellent communicators who listen attentively, speak effectively, and write clearly. Through their varied roles and responsibilities, internal auditors provide the organization tremendous value. They serve as the eyes and ears of senior management and the board. They are coaches, internal and external stakeholder advocates, risk and control experts, efficiency specialists, fact-checkers, and problem-solvers. They identify both risks and opportunities, and they tell it like it is. It s certainly not easy, but for these skilled and competent professionals, it s all in a day s work. Internal auditors provide value to the organization through their firsthand knowledge of people and processes and the risks associated with these. Ofelia Tamayo, CIA IIA member since 2006 08 The Institute of Internal Auditors

www.theiia.org www.global.theiia.org 09

The Institute of Internal Auditors The IIA is a global professional association and standard-setting body for internal auditors worldwide. Established in 1941, The IIA serves as the world s leader in professional certification, education, research, and technical guidance for internal auditors. The IIA is dedicated to providing extensive support and services to its 180,000 members, so they can continue to add value across the board. For additional information about the profession or The IIA, visit www.globaliia.org or contact PR@theiia.org. Global Headquarters 247 Maitland Avenue Altamonte Springs, Florida 32701-4201 USA T +1-407-937-1111 F +1-407-937-1101 W www.globaliia.org www.theiia.org The Institute of Internal Auditors 10/130468/md/CW

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information