It’s Time to Talk About Risk and Control

Slides:



Advertisements
Similar presentations
Organizational Governance
Advertisements

VALUE OF INTERNAL AUDITING: ASSURANCE, INSIGHT, OBJECTIVITY A PRESENTATION TO STAKEHOLDERS ABOUT THE VALUE OF INTERNAL AUDITING.
Internal Control–Integrated Framework
Alignment of COBIT to Botswana IT Audit Methodology
IMFO Audit & Risk Indaba June 2012
Continuous Auditing Global Technology Auditing Guide 3 Twelfth Continuous Auditing and Reporting Symposium Rutgers Business School November.
Agency Risk Management and Internal Control Standards Presentation to the Board of Visitors November 14, 2014.
Internal Audit Awareness
Introduction to Enterprise Risk Management (ERM)
Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.
Welcome! Internal Auditing CHAPTER 1. Definition Internal auditing is an independent, objective, assurance and consulting activity designed to add value.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,
Eliot M. Stenzel, CPA,CIA IIA Instructor for many years Risk Based Auditing.
Governance Risk and Compliance It’s Time to Talk About Control.
6/2/20151 Enterprise Risk & Assurance Management in Zurich North America Brian Selby MA (Audit), FIIA, QiCA, MBCS, CISA.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
PwC Role of Internal Audit in Corporate Governance September 2010 Tumin Gültekin, Partner.
Operational Auditing--Fall Operational Auditing Fall 2009 Professor Bill O’Brien.
Operational Auditing--Spring Operational Auditing Spring 2011 Professor Bill O’Brien.
Applying COSO’s Enterprise Risk Management — Integrated Framework
Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.
By Saurabh Sardesai October 2014.
The Internal Audit Function in the Public Sector
Purpose of the Standards
Trinidad & Tobago Corporate Governance Code 2013
PAINTING THE FULL PICTURE
Corporate Governance: Beyond Compliance at a time of Recession Prof. Ashley G. Frank BA(Econ)[Magna Cum Laude], MDPA (Cum Laude], MBA, MCom [Cum Laude],
Information Technology Audit
Internal Auditing and Outsourcing
Challenges Faced in Developing Audit Plans and Programs 21 st March, 2013.
Central Piedmont Community College Internal Audit.
The role of internal audit in enterprise-wide risk management (ERM)
D-1 McGraw-Hill/Irwin ©2005 by the McGraw-Hill Companies, Inc. All rights reserved. Module D Internal, Governmental, and Fraud Audits “I predict that audit.
1 Bölgesel Rekabet Edebilirlik Operasyonel Programı’nın Uygulanması için Kurumsal Kapasitenin Oluşturulmasına Yönelik Teknik Yardım Technical Assistance.
OECD Guidelines on Insurer Governance
IT Risk Management, Planning and Mitigation TCOM 5253 / MSIS 4253
Chapter 5 Internal Control over Financial Reporting
CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.
Internal Control in a Financial Statement Audit
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.
Roles and Responsibilities
Implementing and Auditing Ethics Programs
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
The Connection between Risk Management and Internal Control in Organizations Mag. Norbert Wagner Budapest,
Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.
1 The Auditor’s Role in Governance: Emulate, Evaluate, Educate Lori Cox, CIA, CGAP IIA Tucson Chapter President Director – Internal Audit, Pima Community.
IT Controls Global Technology Auditing Guide 1.
Board Leadership Seminar: The Corporation & Its Board September 15, 2015.
Chapter 3 Governance.
DAY 1: OVERVIEW The nature of internal auditing
1 “Good Practices in Managing for Results” Workshop Santiago, Chile October 27 th and 28 th, 2010 Benjamin Nelson Managing Director for Quality Office.
Organizations of all types and sizes face a range of risks that can affect the achievement of their objectives. Organization's activities Strategic initiatives.
CHB Conference 2007 Planning for and Promoting Healthy Communities Roles and Responsibilities of Community Health Boards Presented by Carla Anglehart Director,
Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.
The International Professional Practices Framework
Hans Nieuwlands CIA CGAP CCSA CEO IIA Netherlands
Getting to Know Internal Auditing
Getting to Know Internal Auditing
Getting to Know Internal Auditing
2010 IIA Standards Update Andrew J. Dahle, CIA, CPA, CISA, CFE
Alignment of COBIT to Botswana IT Audit Methodology
Getting to Know Internal Auditing
2017 Administration and Finance Conference
Adding Value Across the Board
Quality Assurance and Improvement Program
Taking the STANDARDS Seriously
An overview of Internal Controls Structure & Mechanism
Presentation transcript:

It’s Time to Talk About Risk and Control Internal Audit It’s Time to Talk About Risk and Control

Demands/Expectations of Internal Audit’s Stakeholders Have Changed The Audit Committee and Board: Execution of a comprehensive “risk based audit plan” Expertise and assurance on risks and controls Assistance in executing governance responsibilities Resident “eyes and ears” within the enterprise A “trusted advisor” Management: Expertise and assurance on internal controls Insight, advice, and assurance on enterprise risks Timely and relevant information to facilitate risk management and business decisions Additional financial related coverage The Audit Committee and Board: Execution of a comprehensive “risk based audit plan” Expertise and assurance on risks and controls Assistance in executing governance responsibilities Resident “eyes and ears” within the enterprise A “trusted advisor” External Auditors: Insight into the adequacy of financial controls Execution of a “risk-based audit plan” addressing financial risks – including relevant IT controls

Demands/Expectations of Internal Audit’s Stakeholders Have Changed The Audit Committee and Board: Execution of a comprehensive “risk based audit plan” Expertise and assurance on risks and controls Assistance in executing governance responsibilities Resident “eyes and ears” within the enterprise A “trusted advisor” Management: Expertise and assurance on internal controls Insight, advice, and assurance on enterprise risks Timely and relevant information to facilitate risk management and business decisions Additional financial related coverage External Auditors: Insight into the adequacy of financial controls Execution of a “risk-based audit plan” addressing financial risks – including relevant IT controls

Demands/Expectations of Internal Audit’s Stakeholders Have Changed The Audit Committee and Board: Execution of a comprehensive “risk based audit plan” Expertise and assurance on risks and controls Assistance in executing governance responsibilities Resident “eyes and ears” within the enterprise A “trusted advisor” Management: Expertise and assurance on internal controls Insight, advice, and assurance on enterprise risks Timely and relevant information to facilitate risk management and business decisions Additional financial related coverage External Auditors: Insight into the adequacy of financial controls Execution of a “risk-based audit plan” addressing financial risks – including relevant IT controls External Auditors: Insight into the adequacy of financial controls Execution of a “risk-based audit plan” addressing financial risks – including relevant IT controls

Attributes of High Performing Internal Audit Functions: “The Top 10” Prominent Stature of Internal Audit Within the Organization A Formal Strategic Plan for Internal Audit Continuous Communications with Key Stakeholders An HR Strategy Focused on Stakeholder and Enterprise Needs A Risk Assessment Process that Produces Current Risk Profiles Integrated IT Audit Coverage as a Component of an Overall IT Audit Strategy Integration of Technology Solutions Into Multiple Aspects of Internal Audit Operations A Knowledge Management Strategy A Comprehensive Quality Assurance and Improvement Program Performance Measures Linked to Strategic Goals

Governance Internal auditing provides assurance to management and the audit committee that risks are understood and managed properly.

Internal Auditing’s Role in ERM © The Institute of Internal Auditors at guidance@theiia.org

Risk Management Internal auditors identify all auditable activities and relevant risk factors, and assess their significance. Investigating Evaluating Identifying potential trouble spots Communicating Anticipating emerging issues Identifying opportunities

Internal Auditors’ Roles • Risk management, control, & governance processes Financial analysts Risk evaluators Improving operations Supplying analyses, suggestions, & recommendations Adding Value

A Risk Assessment Process that Produces Current Risk Profiles Beyond an annual risk assessment process – risk assessment should have a continuous component Continuous risk assessment process is formalized within internal audit and aligned with business units Risk assessments are transparent and interactive – involving senior management, external auditors, and the audit committee Emerging risks are identified and addressed through flexible internal audit coverage

Essential Services Internal auditing reviews the reliability and integrity of information, compliance with policies and regulations, the safeguarding of assets, the economical and efficient use of resources, and established operational goals and objectives. Internal audits encompass financial activities and operations including systems, production, engineering, marketing, and human resources. Can you afford to be without it?

IPPF – Standards Mandatory Guidance 2120-Risk Management The internal audit activity must evaluate the effectiveness and contribute to the improvement of risk management processes. Interpretation: Determining whether risk management processes are effective is a judgment resulting from the internal auditor's assessment that: Organizational objectives support and align with the organization's mission; Significant risks are identified and assessed; Appropriate risk responses are selected that align risks with the organization's risk appetite; and Relevant risk information is captured and communicated in a timely manner across the organization, enabling staff, management, and the board to carry out their responsibilities.   The internal audit activity may gather the information to support this assessment during multiple engagements. The results of these engagements, when viewed together, provide an understanding of the organization’s risk management processes and their effectiveness. Risk management processes are monitored through ongoing management activities, separate evaluations, or both.

Outsourced Internal Audit Perform Risk Assessment Interview key management Identify & evaluate risks Develop internal Audit plan Review results with management Present to the Audit Committee Internal Audits Plan individual internal audits Execute each internal audit No surprises approach Findings, rationale and recommendations Final reporting Audit Committee Continuous feedback Reports for all audits Follow up and feedback

VACO Can Help You For additional information, please contact Heriot Prentice Director, Governance Risk and Compliance Vaco Orlando, LLC 485 N. Keller Road, Suite 451 Maitland, FL 32751 www.vaco.com (407) 712-7878 Office hprentice@vaco.com

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.