Presentation by SAI Pakistan

Slides:



Advertisements
Similar presentations
1 Revision of ISSAI 30 – Code of Ethics Project proposal to the Steering Committee of the INTOSAI Professional Standards Committee Bahrain, May 2014.
Advertisements

Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.
INTOSAI Compliance Audit Guidelines (ISSAI )
Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.
Commission on Colleges of the Southern Association of Colleges and Schools (SACS) Reaffirmation of Accreditation.
The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.
Development of ISSAI 5300 on IT AUDIT
Conducting the IT Audit
Revision of ISSAI 30 INTOSAI Code of Ethics
1 MBA PROJECT Nasir Afghan/Asad Ilyas. 2 Objective To enable MBA students to execute a client focused challenging assignment and to enhance.
Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Progress Report to the PSC Steering Committee INTOSAI PSC Subcommittee on Internal Control Standards SAI of Poland (NIK) June 2011, Wellington.
Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
Name Position Organisation Date. What is data integration? Dataset A Dataset B Integrated dataset Education data + EMPLOYMENT data = understanding education.
Working Group on Public Debt Progress Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Working Group on the Value and Benefits Chair´s Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge.
Due Process – ISSAIs and INTOSAI GOVs Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt June 14, 2010.
Updating ISSAI Project Proposal SAI India Comptroller and Auditor General of India1.
Progress Report Performance Audit Subcommittee - PAS INTOSAI Governing Board meeting Mexico City, November 2 and 3, 2006.
Agenda Item No. 12 Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
Progress report of the Working Group on the Value and Benefits of SAIs (WGVBS) 5 th meeting of the INTOSAI KSC Steering Committee 16 September 2013.
Agenda Item No. 25 INTOSAI Strategic Plan ( ) Strategic objectives and goals of KSC (Goal 3) SAI-India Comptroller and Auditor General of India1.
Strategic Objectives for Goal 1 Draft Strategic Plan for INTOSAI 2017 – 2022 Provide a strong organizational framework to support INTOSAI’s standard- setting.
25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT.
Comptroller and Auditor General of India
14th CAS meeting Performance reporting Presentation by SAI-SA
Sources for formulation of Work Plan
CAS Annual Meeting New Delhi 20th February 2017.
Presentation by Dilyanka Zhelezarova & Viire Viss
Audit Guideline on Delivering the 2030 Agenda through Environmental Audit WGEA’s Work Plan Goal 1 - Developing guidance materials available.
Prepared by Rand E Winters, Jr. ASR Senior Auditor October 2014
Guidelines International Network
Region’s EUROSAI Strategic Planning Experience
9th KSC meeting Bali, 23rd August 2017
Revision of ISSAI 30 INTOSAI Code of Ethics
THE WGEA WORKPLAN INTOSAI WGEA Secretariat
05 April 2016 Briefing to the Portfolio Committee on review of the draft APP - Department of Arts and Culture.
WGITA Work Plan NOTE: To change the image on this slide, select the picture and delete it. Then click the Pictures icon in the placeholder to.
CBC Steering Committee Meeting
Comptroller and Auditor General of India
the Public Procurement Audit Practical Guide
Progress Report on proposed GUID on Information System Security Audit
of the Russian Federation
Progress Report INTOSAI Working Group on Environmental Auditing
Key Performance Indicators and Risk Register
Performance Audit Subcommittee Project for ISSAI Level 4 review 66th INTOSAI Governing Board Meeting Vienna, November 5-7, 2014.
9th Meeting of KSC Steering Committee
Agenda Item No. 25 KSC Work Plan
9th KSC Steering Committee Meeting
Citizen Participation in Public Audit
Audit Evidence Bob Dohrer, Technology Working Group Chair and Audit Evidence Working Group Chair IAASB CAG Meeting, New York Agenda Item D March 5, 2019.
THE WGEA WORKPLAN INTOSAI WGEA Secretariat
Quality Assurance of non-IFPP documents
Comptroller and Auditor General of India
Presentation by SAI Pakistan
17 April 2018 Progress report ccc General capacity requirements for SAIs for conducting IT audits.
THE INTOSAI WORKING GROUP ON KEY NATIONAL INDICATORS
Agenda Purpose for Project Goals & Objectives Project Process & Status Common Themes Outcomes & Deliverables Next steps.
Reporting Dashboard of WGITA
INTOSAI Strategic Plan & Role of KSC
What is IT audit? An examination of how IT systems where implemented to ensure that they meet the organization’s business needs without compromising.
Progress Report on proposed GUID on Information TECHNOLOGY Audit
Working Group on IT Audit
INTOSAI WORKING GROUP ON KEY NATIONAL INDICATORS
Progress Report GUID on Information System Security Audit
12th annual meeting of the Performance Audit Subcommittee
The Next Strategic Development Plan for IFPP
Draft revision of ISPM 6: National surveillance systems ( )
Progress Report GUID on Information Systems Audit
Technology Bob Dohrer, Technology Working Group Chair
Presentation transcript:

Presentation by SAI Pakistan Final Project Report – “Roadmap for development of future GUIDs in the 5100 Series” Presentation by SAI Pakistan

Sequence of Presentation Project Background Project Team Roadmap Document -- Objectives Project timeline and progress Overview of the Final Roadmap Document Additional Submissions Proposals before WGITA

Abbreviations AI Artificial Intelligence ACFE Association of Certified Fraud Examiners EUROSAI European Organization of Supreme Audit Institutions FIPP Forum for INTOSAI Professional Pronouncements GIS Geographic Information Systems GUID INTOSAI Guidance HR Human Resource IFPP INTOSAI Framework of Professional Pronouncements INTOSAI International Organization of Supreme Audit Institutions IoT Internet of Things ISSAI International Standard of Supreme Audit Institutions IT Information Technology KPI Key Performance Indicators KSC Knowledge Sharing Committee SAI Supreme Audit Institution SDI Spatial Data Infrastructure SDP Strategic Development Plan WGITA   Working Group on Information Technology Audit

1. Project Background During 25th WGITA meeting at Brasilia, Brazil, subject project was approved as part of WGITA Workplan 2017-19 Initially title of project was, “Development of Roadmap for future ISSAIs in the 5300 Series”

1. Project Background …Contd. In December 2016, the INTOSAI Framework of Professional Pronouncements (IFPP) was approved and Strategic development plan (2017-19) for IFPP initiated. The Series (that dealt with the subject of IT auditing) was shifted from ISSAIs to GUIDs or Guidance. New number series allocated to IT Auditing was under 5100

1. Project Background …Contd. Accordingly the project title was modified to its current form: “Roadmap for development of future GUIDs in the 5100 Series”

2. Project team Team Lead: SAI Pakistan Team members: SAI Brazil SAI China SAI India SAI Japan SAI Korea SAI Poland SAI USA

3. Roadmap Document -- Objectives To act as reference document for development of future GUIDs in the domain of IT Auditing. It envisages development of future GUIDs in a logical manner. It identifies significant subjects for development of future GUIDs. The target group for the roadmap document are KSC and PSC of INTOSAI.

4. Project timeline and progress Activity Time frame -- Dates Draft Project Initiation Document (PID) was prepared August 2016 Final PID after Input from team members submitted to WGITA Chair October 2016 PID Approved 23rd Oct. 2016 Draft Project Plan prepared December 2016 Final Project Plan after input from team members prepared & submitted to WGITA Chair March 2017 Project Plan Approved May 2017

4. Project timeline and progress…Contd. Activity Time frame – Dates Data acquisition and review stages: Inputs received from SAI Team members Data Analysis done June to Dec 2017 Initial Draft Roadmap prepared February, 2018 Initial Draft Roadmap circulated amongst Team members and feed back received March, 2018 Initial Draft presented at 27th WGITA meeting Sydney April, 2018

4. Project timeline and progress…Contd. Activity Time frame – Dates Draft Modified: No. of proposed GUIDs titles reduced from 15 to 08 June 2018 Draft revised and prepared based on inputs from team members June to November 2018 Draft circulated amongst team members for final suggestions and scrutiny December 2018 Input on the Draft received from team members and final report prepared December 2018 & January 2019 Final report submitted to WGITA Chair for approval 02 Feb- 2019

5. Overview of the Roadmap document

5. Overview -- Roadmap Document The Roadmap document outlines its objectives and intended purpose. It highlights the need for development of a roadmap. It highlights how the globalized IT environment is effecting Auditing techniques and practices. The “structure” for development of the roadmap is defined (fig on next slide) It is developed as a “live document” to be reviewed periodically.

Structure of the Roadmap 1. Analyzing the IT Landscape Highlighting Specific/New IT Areas/Interventions/Solutions Proposing Suitable GUID to cover audit requirement for a specific IT Area/Intervention/Solution

5. …continued First the “Broad Contours of todays IT landscape” have been defined. Co-relation between different IT areas highlighted. Then a “linkage” is developed between the IT landscape and IT Audit requirements.

Logical Linkage Between an IT Area and Audit Requirements Specific IT Tools/Solutions An IT Area Audit Requirements Analysis & Usage of the IT Area's manifestations

5 … continued 08 Subjects proposed for the development of future GUIDs’ in IT Auditing. Lastly additional submissions for future WGITA work have been added.

5.1 Proposed subjects for future GUIDs

Enhanced-Level Guidance On Audit Of IT Management Functions Including IT Governance, Contract Management And Sustainability – GUID 01 The GUID embodies a more in-depth and dynamic review of IT management functions More enhanced level checklist and guiding techniques Main subjects would be IT governance, IT contract management and IS sustainability requirements

Enhanced-Level Guidance On Audit Of IT Management Functions Including IT Governance, Contract Management And Sustainability – GUID 01 …Contd. The GUID may also be viewed from a long term perspective. As technological solutions evolve, demand for more current IT techniques in subject areas would lead to changing audit assurance requirements Hence this GUID after its initial version could be an apt case for future revisions as well.

Guidelines on Performance Evaluation Of IT Systems – GUID 02 It would enable the auditor to formulate basic KPIs to gauge the overall performance of an Information System (IS) It would enable Quantitative analysis on the performance of an IS It would cover all IS aspects from design, to implementation, HR, economy and outcomes etc. It would facilitate the Performance Audit exercise

Guidance on Cloud Computing Audit – GUID 03 It would deal with the specific subject of Cloud Computing, its various forms and models. Guide the auditor to review the cloud computing solutions along parameters such as, reliability, sustainability, security etc. Would address each model of cloud computing covering the risks and control measures related to each model.

Guidelines on Big Data Audit – GUID 04 It would deal exclusively with the subject of Big Data audit It would highlight the different features of Big Data It would provide guidance on how the auditor may perform Big Data analytics It would provide guidance on how Big Data evidence can be correlated for audit reports

Guidance on Audit Of Smart City Initiatives – GUID 05 Smart city initiatives are the emerging urban reality Smart city initiatives are inherently cross-functional and IT driven SDI, GIS applications and various IoT products are common segments of a smart city solution. The GUID would address the broad topic of audit of smart-cities, define its contours and provide guidance on how to go about auditing a smart- city project.

Guidance on The Use And Review Of Artificial Intelligence Solutions – GUID 06 There are two aspects of AI that concern the work of SAIs: Use of AI tools to augment, enhance and update the auditing activities Review and assessment of AI interventions adapted by auditee AI Solutions likely to be outsourced to multiple third parties

Guidance on The Use And Review Of Artificial Intelligence Solutions – GUID 06 …Contd. Some AI risks include risk of human bias and human error in the embedded / AI technology, risk of inadequate testing, risk of not being able to manage/control the AI product and the risk of harm (financial and non-financial) associated with AI implementation.

Guidance on The Use And Review Of Artificial Intelligence Solutions – GUID 06 …Contd. Use of AI based techniques such as machine learning, deep learning etc. can enhance audit capacity The guide is proposed as a comprehensive document to assist SAIs in both the use and review of AI solutions.

Guidance on Audit Of Blockchain Solutions – GUID 07 Essentially Blockchain is a distributed database solution that maintains a continuously growing list of data records that are confirmed by the nodes participating in it. All the nodes in the blockchain are anonymous Each transaction data is first shared amongst all nodes. Each node verifies whether the new proposed block is valid, i.e was not present before etc.

Guidance on Audit Of Blockchain Solutions – GUID 07… Contd. AI has wide scope for application: cryptocurrency, smart contracts, property licensing, voting etc. From a long term perspective this GUID would facilitate the SAI auditor to effectively review a blockchain implementation Considering the specialized area of blockchain the current subject is proposed as a GUID

Guidance on use of IT for Forensic Audits – GUID 08 The risk of malpractices has increased – IT transaction challenges have added to the traditional set of challenges related to financial transparency and accountability ACFE estimates that occupational fraud losses cost organizations $994 billion annually (ACFE ,2008) Forensic audits are gaining significance & IT audit techniques form a key element of a forensic audit exercise.

Guidance on use of IT for Forensic Audits – GUID 08…Contd. From a long term perspective forensic audit comprising of significant IT areas are expected to materialize. The GUID is proposed to equip the SAI auditor to be able to aptly use IT techniques for specific perspective of forensic audit reports.

6.Additional Submissions 1. Formation of IT Materiality: Q: how to quantify/grade the lapses in the IT system and translate them into overall assessment of the IT solution in place. A: a document, that may help auditors to categorize and rate different controls parameters of an IT solution A: an IT grading matrix could be established and IT materiality benchmark defined for the IT system being reviewed

6.Additional Submissions ….Contd. 2. Another joint IT Audit exercise amongst SAIs may be organized. 3. The IT Audit Handbook could be used in its active form. It would give the possibility to add new areas or topics as plug-ins, and then to work with them in real life audits. The best plug-ins could be upgraded to the core content of the Handbook.

7. Proposals before WGITA To Take note of the final report on the WGITA Project, “ Roadmap for development of future GUIDs in the 5100 Series”. To approve the Final Report of the project.

Thank You!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.