Back to Basics. Managing the Audit Department: Resource Management



Similar documents
Outsourcing. Knowledge Summary

Outsourcing. Definitions. Outsourcing Strategy. Potential Advantages of an Outsourced Service. Procurement Process

Internal Audit Quality Assessment Framework

BEST PRACTICE GUIDE 6: ESTABLISHING CONTRACTS. RDTL MINISTRY OF FINANCE Procurement Service

How To Get A Contract From The Taxman

An Introduction to Moorepayhr. A cloud-based integrated HR and Payroll solution specifically designed for small and medium sized businesses.

Management and Leadership. Level 5 NVQ Diploma in Management and Leadership (QCF)

Step by Step Project Planning

Contract management: renewal and transition. Report to Parliament 10 :

How are companies currently changing their facilities management delivery model...?

Operations. Group Standard. Business Operations process forms the core of all our business activities

Marketing Plan Proforma

Contract management - what to think about?

DRAFT SERVICE LEVEL AGREEMENT FOR THE PROVISION OF TEMPORARY AGENCY WORKERS

The SME Engagement Handbook

Performance objectives

PROCUREMENT MANAGER Support Services. Salary range 30,843 to 33,315 (Subject to Job Evaluation)

06. Create a feedback loop. 01. Create a plan. 02. Improve People skills. 07. Get a tool that supports the workflow. 03. Keep your promises

Prudential Practice Guide

Rekoop Limited Standard Terms of Business

Job Description. Supply Chain Development Manager

Project Assessment Framework Establish service capability

Performance Management Framework

IIA South West Event. A look at key supply chain risks and why contracting is a key step 14 January 2015

Focusing on you. Focusing on the future.

ARGYLL AND BUTE COUNCIL SUPPORT SERVICES REVIEW HR & PAYROLL EXECUTIVE SUMMARY- 2 NOVEMBER 2011

Achieve. Performance objectives

Minimise Your Top 5 Operating Risks with CRM

Specialist Cloud Services Lot 4 Cloud EDRM Consultancy Services

INFORMATION TECHNOLOGY & MEDIA SERVICES

Specialist Cloud Services Lot 4 Cloud Printing and Imaging Consultancy Services

SERVICE DEFINITION CYBER SECURITY SERVICES CONTENTS

20 March Name Surname One Peter Wainman

Shared services. Getting IT right. A report by Eduserv

How to write a great CV

Time for change in facilities management. Interserve, Sheffield Hallam and i-fm facilities management research 2013

Questions and Answers

Data Analysis Officer - Service Development Team

Job Description and Person Specification. Post Number: HCI.C24 JE Ref: JE028

Government has set an aspiration of 25% of expenditure to flow through SMEs either directly or indirectly through the supply chain.

MARKETING THAT S MEASURABLE REDUCE SALES COSTS THROUGH EFFICIENT MARKETING

e-colt Services Recruitment Process Outsourcing (RPO)

Best Practices of the Most Effective Workforce Management Solutions

Better Practice Contract Management Framework

The. DO S AND DON TS of Outsourcing Back-Office Services: Advice for Today s Trade and Professional Associations

Position Profile. Council s Mission. Organisation Chart

NFON Whitepaper: Integrating Microsoft Lync (Skype for Business) with Telephony

Update on CRS upgrade. FOR: Information Assurance Discussion and input Decision/approval Sponsor (Executive Lead):

APPENDIX A (CFO/263/09) Merseyside Fire & Rescue Service ICT Outsourcing Procurement Support. Final Report

Procurement, Contracting and Contract Management Policy

Marketing Strategy Guide NewZapp.co.uk Introduction. Where are you now?

Capital Works Management Framework

How To Manage An In House Legal Team

CONTRACT MANAGEMENT POLICY

Business risk, personal protection and insurances... Are you covered?

Supplier s Guide. A guide for identifying business opportunities

Council is committed to achieving the three key outcomes identified by our local community:

ICT (INFORMATION AND COMMUNICATION TECHNOLOGY) HELP DESK SUPPORT OFFICER

Contract and Vendor Management Guide

Guidelines for CRM Implementation

mybpos are a leading provider of business support services based in the UK

Guideline. Records Management Strategy. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.0. Issue Date: 19/07/2010

UoD IT Job Description

Procurement guidance Managing and monitoring suppliers performance

WHITE PAPER. The extensive outsourcing checklist

The Power to Take Control of Software Assets

Managing Outsourcing Arrangements

DIGITAL STRATEGY

How to Choose a CRM System

Procuring Penetration Testing Services

White Paper. Selecting the most suitable project management software tips from a vendor

Performance Management Appraisal Scheme

Vendor Relationship Management Unlocking value from your outsourcing vendors. Deloitte Consulting

Managed Services. Business Intelligence Solutions

An RCG White Paper Ten Criteria for Offshore Outsourcing

Self-Assessment A Product Audit Are You Happy with Your Product Results

Mapping the Technical Dependencies of Information Assets

Engineering Innovation

What to consider before investing in Recruitment Software

Briefing Paper. How to Compete on Customer Experience: Six Strategic Steps. gro.c om SynGro SynGro Tel: +44 (0 )

Best Practice Implementation is Changing ERP. CPiO White Paper. T E marketing@cpio.co.uk. CPiO. Part of the Waterdale Group of Companies

2006

How Do I Find. the Right CRM. for My Business? a guide by

CONTRACT MANAGEMENT FRAMEWORK

Gateway review guidebook. for project owners and review teams

JOB PROFILE. Deputy Finance Manager

Te Papa National Services. Deciding on Digital Tools for Collection Management

Position Profile. GDC s Mission. Organisation Chart

PROJECT MANAGEMENT FRAMEWORK

Setting Standards Achieving Success

10 top tips to reviewing recruitment software (0)

CHAPTER 11 THE GOVERNMENT OF THE HONG KONG SPECIAL ADMINISTRATIVE REGION GENERAL REVENUE ACCOUNT. Information Technology Services Department

Expert Reference Series of White Papers. Successfully Managing Remote Teams COURSES.

Essentials to Building a Winning Business Case for Tax Technology

Lhasa Limited Software - Codes of Practice

CRM. Booklet. How to Choose a CRM System

2. Ease of sharing and dissemination through the internet makes collaboration with off-site parties (including your clients) much easier;

Job Description Payments Service Centre Specialist Band 7

Process Outsourcing. Knowledge Insight

10 Steps Process to your LMS

Transcription:

Back to Basics Managing the Audit Department: Resource Management In her article in the last newsletter, Bev Cole provided an overview and roadmap for managing the audit department and also provided more information on Steps 1 and 2 of that roadmap on Governance and Strategy and Key Performance Indicators (KPIs). In this next article in the series she will provide you with more detail on Step 3 Audit Resource Management, which will then be followed by a final article on Step 4 Process Management in the next newsletter. Bev is an independent consultant on Internal Audit and Risk Management, and has worked in these areas within Financial Services for over 20 years. Welcome back to the second of three articles on Managing the Audit Department. Let s start with a reminder of 6 fundamental building blocks in the roadmap from the last article. *covered in separate articles Diagram A: Roadmap for Managing the Audit Department 1. Audit Governance & Strategy 2. Assurance Plan* / KPIs 3. Resource Management 4. Process Management People Budget Quality Procedures 3 RD Parties IT Relationships* Risk Knowledge MI Delivery 5. Working with Other Assurance Providers* 6. Audit & Assurance Reports*

Step 3 - Resource Management Performance Standard** 2030 states The chief audit executive must ensure that internal audit resources are appropriate, sufficient, and effectively deployed to achieve the approved plan. The management of audit resources is a very big subject, so we ll just cover the basics in this article and do so by asking some key questions and using bullet point prompts to keep it reasonably brief. Please also read Attribute Standard** 1200 and related standards on Proficiency and Due Professional Care. a) People Management: Key Question - Do you have the right number of people in the audit team with the right skills for current and anticipated requirements? The audit universe should be used to identify what audits need to be undertaken, together with an average manday budget and an approximate average frequency. This will give you an estimated overall annual manday requirement. This figure together with your target efficiency percentage (audit work charged to actual time at work), average leave (including bank holidays, annual leave and sick leave), and work to be outsourced or co-sourced should give you your headcount required. Don t forget to adjust this figure for the management overhead required. The specialist knowledge required (IT, Treasury, Risk etc), business knowledge and level of audit skill required can also be assessed from the audit universe. A current skills assessment should be undertaken covering audit skill level, business knowledge level and specialist knowledge level. From all of this information you should be able to put together a picture of the size, skill levels and structure of the department and a gap analysis. It is always useful to benchmark the size of the department as a sense check. A succession plan is also a useful tool for planning. Key Question - Are you maximising your team s performance? There should be agreed performance targets that are regularly reviewed so everyone knows what is expected of them and how they are performing. These targets should flow from the annual departmental KPIs. All audit colleagues should have a training plan and ideally a career plan so that they can address weaknesses, learn new skills and acquire knowledge to enable progression. They should also know where they are on their career path.

There should be communication about departmental goals and progress and the team should be consulted about changes within the department to get their ideas and to ensure they feel included. All of us wish to be treated as an individual and not just a resource. Do you know what their aspirations and goals are? Do you know what motivates them and about them as a person? Are you making assumptions about them? Feedback should be 360 degree, with open and honest discussion encouraged. See also the article on Assignment Team Management on the ACCA VLC and I also encourage you to look at some of the excellent books on the subject. b) Budget: Key Question - Is your budget sufficient to provide the tools and resources you need to provide reasonable assurance and are you managing within it? If you don t pay your team appropriately, you risk losing the skills, knowledge and experience you have and being unable to acquire this in the market-place as well. Consider periodic benchmarking of salaries. In addition you need to ensure you invest in training and with limited resources use it address the issues in the skills and knowledge gap analysis. It is common these days to use external companies to provide technical resource, either through having a co-sourcing arrangement in place or outsourcing specific assignments. Ensure you have sufficient budget to cover this and re-tender periodically to maintain the best service and price. Audit automation software is often used nowadays, so ensure you have the budget for software licences and for upgrades. Travel and subsistence can be a material part of the budget and good planning and flexibility can keep costs down. Encourage video conferencing to reduce visits between offices, and car sharing where unavoidable. Phase your budget appropriately, particularly if operating a co-sourcing arrangement. If all your technically complex audits fall in the second half of the year, it is all too easy to have spent too much of the budget too soon. Monitor your budget on a monthly basis to identify problems early and address them. Remember, if you feel that you do not have the budget necessary to provide reasonable assurance, then it is your duty to request the budget you need and justify it. If necessary, escalate the issue to the Audit Committee. c) Third Party Management:

Key Question - Are you maximising the benefit of any co-sourcing or outsourcing arrangements whilst minimising the cost? How do you know this? Periodically return to the market-place to re-tender for specialist work you feel is inappropriate to resource internally. Produce a specification of requirements, review bids and interview prospective partners. Ensure appropriate partners are approached for tender and that a robust contract is put in place at a negotiated price. Use the expertise of your Procurement and Legal departments. Be clear on what you don t expect to pay for, for example relationship management meetings with the supplier. Be clear on dispute resolution, exit terms, confidentiality agreements, data security and ownership of intellectual copyright. Ensure an appropriate level of professional indemnity insurance is in place. Set and monitor a Service Level Agreement. Hold regular meetings to discuss how the contract is working for both parties. Agree a specification of work for each assignment. Be clear on what is required and when. Discuss performance after each assignment and follow this up with written feedback. Address any problems that arise quickly. If you are not happy with the quality of service provided, you should expect this to be addressed at no cost to you. Remember, co-sourcing works best when you work in partnership and where each party is clear on the expectations and deliverables of the other party. Performance Standard** 2070 states When an external service provider serves as the internal audit activity, the provider must make the organization aware that the organization has the responsibility for maintaining an effective internal audit activity. d) IT: Key Question - Are you working efficiently by making the best use of IT? For small audit departments, the use of desktops, word processing and spreadsheet applications will probably be sufficient. However, medium to large audit departments and ones with audit colleagues working remotely or with large volumes of data should consider using laptops and evaluate the costs and benefits of investing in audit automation software and audit interrogation tools. Audit automation software provides a single database for audit working papers and aims to improve efficiency in several ways. It can improve workflow though sending documents automatically for review and then maintaining a record of review comments and responses. It can greatly improve issue tracking and issue analysis. Some software supports audit universe planning, risk assessment and scheduling. But from my experience one of the biggest benefits is in the speed and flexibility of production of Management Information (MI), both for reporting to the business and for audit performance monitoring. It gives you better control.

Audit automation does come at a cost, not just on licences, but the investment in maintaining the software, the technical knowledge required to run it and revision of procedures and training of colleagues. It may also be advisable to pick and choose which elements within the software to use. Audit interrogation tools can be used to analyse large volumes of data and can therefore be a very efficient way of working. They can produce intelligence to support audit findings which would have been impossible to generate manually. Bear in mind, however, that findings must be put in context as you seek out errors rather than identify them through random selection of transactions to test. Ideally the data for interrogation should be extracted by the Audit Department rather than be provided by the business, as this avoids potential amendment of the data. e) Knowledge Management: Key Question - Are you acquiring the knowledge you need to provide reasonable assurance and are you managing it effectively across the audit department? Knowledge is a key asset in any audit department, yet little structure is applied to its acquisition and management. In a broad sense such as knowledge of specific regulation or business area, identify the knowledge you require and undertake a gap analysis to knowledge held. Plan to rectify any gaps. Find out about business targets, performance, changes and acknowledged issues in the business from attendance at key committees and relationship meetings with senior management. Find out about what is really happening, emerging issues, unreported issues and about internal politics by having effective management of relationships at all levels across the business, built up across the entire audit department. Work effectively and efficiently by managing and sharing this knowledge within and across the various teams in the department and both up and down through the audit hierarchy. This doesn t mean writing everything down and sharing every bit of information. It does mean trying to avoid making assumptions about what is known and working together and pooling knowledge on assignments, business areas and subjects. It also means using it for the benefit of the department as a whole and not keeping it to yourself whatever your level in the team! So that was a very brief run through Audit Resource Management. In the final article in the series on Managing the Audit Department, we will look at Step 4 Audit Process Management.

** For more information on all the standards, please refer to http://www.iia.org/

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information