1 K P M G L L P A D V I S O R Y Changes in the IT Audit Profession Stephen G. Hasty, Jr. National Partner in Charge IT Advisory Savannah, GA January 4,

Slides:



Advertisements
Similar presentations
Conducting your own Data Life Cycle Audit
Advertisements

Accountancy as a Profession
Cost Management ACCOUNTING AND CONTROL
CHIEF FINANCIAL OFFICER
Els Hostyn Partner Internal Audit, Risk & Compliance Services Forensic 13 October 2009 FORENSIC ADVISORY Internal Audit and other assurance providers.
Building on Our Core Values Building on Our Core Values © 2003 by the AICPA The Sarbanes-Oxley Act.
IBM Corporate Environmental Affairs and Product Safety
Vision: A strong and capable civil society, cooperating and responsive to Cambodias development challenges 1.
Rob Kella - Chief Risk Officer
Strategic Meetings Management 101
Professional Services Overview
Additional Assurance Services: Other Information
CONTROLLER/ BACK OFFICE Roles Qualifications Success Metrics years working experience in similar positions CPA or equivalent Knowledge of BPO industry.
© 2005 KPMG IFRG Limited, a UK registered company, limited by guarantee, and a member firm of KPMG International, a Swiss cooperative. All rights reserved.
How to commence the IT Modernization Process?
Internal Control–Integrated Framework
Auditing Governance Functions
Chapter 14 Fraud Risk Assessment.
1 ACI Annual Audit Committee Survey - Global M A R K E T I N G & C O M M U N I C A T I O N S R E S E A R C H Charles Garbowski Research February 21, 2006.
A Consultative Approach to Auditing
Chapter 10 Accounting Information Systems and Internal Controls
“High Performing Financial Institutions and the Keys to Success in an Uncertain Environment”
How well is the Life Insurance Industry keeping pace with rapidly changing technology? International Insurance Society 23 June 2014 London.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
Institute of Operational Risk Breakout Session - Operational Risk Nirvana KPMG Giles Triffitt Peter Watson Peter Docherty 1 November 2013.
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Privacy Management for a Global Enterprise.
Increasing customer value through effective security risk management
ACTUARIAL SERVICES ADVISORY Other Balance Sheet Reserves: SAO & Reinsurer Concerns Las Vegas September 2004.
PwC Role of Internal Audit in Corporate Governance September 2010 Tumin Gültekin, Partner.
External auditors’ perspective
IS Audit Function Knowledge
MIS350 Accounting Information Systems Course Context.
WHAT ARE MY AUDITORS DOING?. Your Presenter Dianne Batistoni, CPA –EisnerAmper Insurance Group Audit Partner – Bridgewater, NJ – , ext
“The Impact of Sarbanes Oxley, An Evolving Best Practice” Ellen C. Wolf Senior Vice President & Chief Financial Officer American Water National Association.
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
How can projects be controlled?
V. Conferencia Internacional Antilavado de dinero y Contra el Financiamiento al Terrorismo Anti-Money Laundering Compliance for Broker/Dealers Current.
TRANSACTION SERVICES ADVISORY Romania conference – IPO process Victor Kevehazi, Senior Partner 18 October 2005.
Internal Auditing and Outsourcing
Tax Transformation: What does it mean to you?
OMB Circular A-123 Lessons Learned OMB Circular A-123 Lessons Learned FEDERAL ADVISORY Sean Hoffman Partner KPMG LLP.
Kpmg All information provided is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although.
AUDIT FEI Career Management Group Qualifications for a Successful CFO/Controller in Today's Market December 3, 2009.
Marc Vael Chief Security Officer KPMG Brussels June 2 nd 2004 ICT ADVISORY eID usage within KPMG.
ADVISORY What do CIOs need for Career Progression? 18 th May 2005 Kumar Parakala, Global Chief Operating Officer, IT Advisory, KPMG 8 May 2007, Sydney,
© 2007 KPMG, the Malaysian member firm of KPMG International, a Swiss cooperative. All rights reserved. 1 Differing Roles of Internal Auditor and Risk.
September 30, 2008 BIBA ROUNDTABLE Regulatory Panel.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
+ Regulation and Compliance Summary “ Making Great Ideas Become Reality”
WAISC September 19, 2012 The Evolution of and Industry.
Factors Associated with IT Audits by the Internal Audit Function Discussant Comments October 2, 2009 INFORMATION RISK MANAGEMENT ADVISORY.
GLOBAL SERVICE/ INDUSTRY AUDIT / TAX / ADVISORY / LINE OF BUSINESS Current Topics in Global Trade Management John Patrick O’Shea Senior Manager Trade and.
Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
Pharmaceutical Regulatory and Compliance Congress and Best Practices Forum Special Program for Internal/Compliance Audit Professionals: Enterprise Risk.
Eversheds Digital Banking Seminar Obtaining the right technology 30 September 2015 Eve England Principal Associate.
From cost to value: 2010 Global Survey on the CIO Agenda June 15 th, 2010 IT ADVISORY KPMG INTERNATIONAL.
FINANCIAL SERVICES ADVISORY SERVICES 13 March 2007 Challenges faced by consultants whilst consulting on Basel II.
Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
KPMG GOVERNMENT INSTITUTE The Future of Government Financial Reporting: Where Do We Go From Here? AGA Baltimore Chapter AUDIT Andrew C. Lewis, CPA, CGFM,
Linkage of Risk, Capital and Financial Management CAS Annual Meeting Aaron Halpert, ACAS, MAAA Leslie R. Marlo, FCAS, MAAA November 12, 2007 INSURANCE.
Trade Compliance Considerations April 13, © 2016 KPMG LLP, a Delaware limited liability partnership and the U.S. member firm of the KPMG network.
Organizations of all types and sizes face a range of risks that can affect the achievement of their objectives. Organization's activities Strategic initiatives.
1Third Party Assurance Optimization and Control RationalizationCopyright © 2016 Deloitte Development LLC. All rights reserved. Third-Party Assurance (TPA)
PricewaterhouseCoopers LLP  South Tyneside Council Use of Resources - Value for Money 30 th July 2007.
COSO Internal Control s Framework
Rethinking classroom design
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
Professional services in papua new guinea
Presentation transcript:

1 K P M G L L P A D V I S O R Y Changes in the IT Audit Profession Stephen G. Hasty, Jr. National Partner in Charge IT Advisory Savannah, GA January 4, 2007

2 Changes in the IT Audit Profession Current Business and Regulatory Issues that Impact IT Auditors Skills Needed by Todays IT Audit Professional

3 Changes in the IT Audit Profession Current Business and Regulatory Issues that Impact IT Auditors

4 Perception of the IT organizations value Performance Almost 60% of organizations have either no process or only an informal process to measure realization of business benefits For 50% of companies, IT Governance was not an integral part of their organizations corporate governance COBIT and ITIL frameworks are used effectively by less than 20% of organizations Almost 50% of respondents had experienced at least one project failure in the past 12 months

5 Current Business and Regulatory Issues that Impact IT Auditors Current Business and Regulatory Issues that Impact IT Auditors, cont. Perception of the IT organizations value Cost Over 60% of organizations felt that the emphasis on cost targets & financial success criteria were about right in their IT outsourcing contracts, however, only 41% include financial measures in assessing overall benefits delivered by the outsourcing contract at the board level. IT Outsourcing is being selectively and partially reversed by some organizations – especially in the areas of IT architecture, planning, and project management Well over a majority of IT projects deliver on less than 75% of their business case benefits Almost 50% of respondents reported project failure costs ranging from $500k to over $5M

6 Current Business and Regulatory Issues that Impact IT Auditors Current Business and Regulatory Issues that Impact IT Auditors, cont. Business risks and regulatory pressures Fortune 1000 companies expressed key Privacy related concerns: Reputation damage64% Customer loss44% Privacy issues to grow in scope and scale87% High profile lawsuits expected55% Non-IT senior management involvement Non-IT senior management involvement Over 75% of senior executives say that they are not prepared to address new technologies, and over 80% are not prepared to address the manual workarounds produced by legacy systems The finance function is involved in IT investment decisions about 90% of the time

7 Current Business and Regulatory Issues that Impact IT Auditors Current Business and Regulatory Issues that Impact IT Auditors, cont. Post – SOX control misalignment Over-specification, lack of automation and controls IT controls posed the greatest challenge to 2005 SOX compliance efforts Over 70% estimated that more than 60% of their controls were manual Disparate underlying systems and processes Over 60 % of companies surveyed globally were using dissimilar systems and spreadsheets/manual processes in their financial reporting process Over 50% of the companies plan to implement a new IT system within the next 2 years

8 Current Business and Regulatory Issues that Impact IT Auditors Current Business and Regulatory Issues that Impact IT Auditors, cont. Sarbanes Oxley Impact Greater scrutiny of financial accounting and reporting processes Significantly Increased Focus on the IT controls impacting external financial reporting – general controls and application controls More focus on the end-to-end business cycles, such as order to cash, purchase to pay, customer relationship management, supply chain management Significantly increased focus on compliance and ethics

9 Current Business and Regulatory Issues that Impact IT Auditors Current Business and Regulatory Issues that Impact IT Auditors, cont. Changing Business Models Many different models – shared services, outsourcing and off- shoring. Significantly increased use of third parties for core functions Technology Changes ERP new releases; Business Intelligence; Service Oriented Architectures are delivering increased functionality and reporting capabilities. The way business processes function and the embedded control features are changing.

10 Changes in the IT Audit Profession Skills Needed by Todays IT Audit Professional

11 Skills Needed by Todays IT Audit Professional Sarbanes Oxley / Regulations Increased Knowledge of external financial reporting, accounting / audit requirements and financial reporting processes so that IT controls can be prioritized and evaluated in a manner that can be understood by key constituents – external auditors, CFOs and key finance managers. Increased understanding of compliance and ethics programs. Increased Understanding of legal and regulatory requirements – contractual responsibilities relative to Third Parties, data protection and privacy laws.

12 Skills Needed by Todays IT Audit Professional, cont. Changing Business Strategies and New Business Models Increased Knowledge of Business Objectives and Strategies so IT functions, capabilities and controls can be considered within a Business context and prioritized based on business impact. Increased understanding of alternative business models – e.g. outsourcing, off-shoring and shared services so that IT controls are understood and evaluated as the business model changes and relative to third party business relationships. Increased Knowledge of global business issues – population shifts, use of global business models, cultural and regulatory differences.

13 Skills Needed by Todays IT Audit Professional, cont. Technology Changes As technologies provide enhanced end-to-end solutions, an increased understanding of business cycles and concepts, such as order to cash, purchase to pay, customer relationship management, supply chain management – so that IT controls are considered and evaluated at the process level across the enterprise. Increased understanding of evolving technology trends – Service Oriented Architecture, Business Intelligence – so that IT control concepts are considered.

14 Skills Needed by Todays IT Audit Professional, cont. Audit Integration Increased Knowledge of IT Management and Control frameworks – ITIL, COBIT so that IT management and controls are understood from all dimensions and can be evaluated holistically. Knowledge of non-IT audit requirements, so that IT audits can be integrated with audits that have operational, financial or regulatory objectives. Communication skills to relate to a more varied set of constituents – Financial officers, legal counsel, third party relationships.

15 Presenters contact details Stephen G. Hasty, Jr. KPMG LLP (704) The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future. No one should act on such information without appropriate professional advice after a thorough examination of the particular situation. ©2006 KPMG LLP, the U.S. member firm of KPMG International, a Swiss cooperative. All rights reserved.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.