Presentation is loading. Please wait.

Presentation is loading. Please wait.

Internal Audit Agency Integrity + Professionalism INTERNAL AUDIT AGENCY ISACA Presentation 15 July, 2013 Alisa Hotel, ACCRA.

Published bySimon Booth Modified over 8 years ago

Similar presentations

Presentation on theme: "Internal Audit Agency Integrity + Professionalism INTERNAL AUDIT AGENCY ISACA Presentation 15 July, 2013 Alisa Hotel, ACCRA."— Presentation transcript:

1 Internal Audit Agency Integrity + Professionalism INTERNAL AUDIT AGENCY ISACA Presentation 15 July, 2013 Alisa Hotel, ACCRA

2 Internal Audit Agency Integrity + Professionalism AUDIT and RISK Building IS Audit Capacity

3 Internal Audit Agency Integrity + Professionalism System of Internal Control

4 Internal Audit Agency Integrity + Professionalism System of Internal Control The system of internal control comprises the policies, procedures and operations established to ensure the achievement of objectives, the appropriate assessment of risk, the reliability of internal and external reporting and accountability process, compliance with applicable laws and regulations, and compliance with behavioral and ethical standards set for the organization

5 Internal Audit Agency Integrity + Professionalism Responsibility for Effective Internal Controls - Senior Management is responsible for the design of effective internal control procedures - Internal Audit is responsible for reviewing the design and effectiveness of internal control procedures and making recommendations

6 Internal Audit Agency Integrity + Professionalism Internal Auditing

7 Internal Audit Agency Integrity + Professionalism Internal Audit Unit Section 16(1) of Act 658 provides for the establishment of IAU in all MDAs and MMDAs Section 120(1) of the Local Government Act requires each Assembly to have an IAU At the end of 2012: 303 IAUs established. (There 82 IAUs yet to be established).

8 Internal Audit Agency Integrity + Professionalism IIA Definition Internal Auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization’s operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control and governance processes

9 Internal Audit Agency Integrity + Professionalism RISK RISK may simply be defined as anything that prevents you from achieving your objective the UNCERTAINTY of an event occurring that could have an impact on the achievement of objectives – IIA May be POSITIVE (opportunity) or NEGATIVE (threat)

10 Internal Audit Agency Integrity + Professionalism Risk Management A dynamic process for taking all reasonable steps to find out and deal with risks that impact on our objectives “Although organizations use the term “risk management” frequently it is misleading, because risk is never actually managed. It is the organization that is managed in anticipation of the uncertainty (and opportunities) presented by risk in the environment”

11 Internal Audit Agency Integrity + Professionalism Internal audit activity should evaluate risk exposures relating to the organization’s information systems regarding the reliability and integrity of financial and operational information Internal Audit & ICT

12 Internal Audit Agency Integrity + Professionalism Information Systems Risk Theft of information Eavesdropping Abuse of internet access Denial of service Viruses Sabotage of data System penetration Fraud

13 Internal Audit Agency Integrity + Professionalism Auditing around the box Traditional approach to auditing computer based systems –Still relevant for auditing computer systems –Does not address issues around the information system itself – a specialist area Transition to full IS Audit requires extensive capacity building and infrastructure

14 Internal Audit Agency Integrity + Professionalism Approaches to IS Audit Use consultants/specialists Train general auditors in IS audit techniques Use consultants and general auditors

15 Internal Audit Agency Integrity + Professionalism Areas of Expertise Systems Development and Projects Computerized Applications IS Security Standards CAATs Systems Project Management Disaster Recovery and Contingency Planning Internet Design and Security

16 Internal Audit Agency Integrity + Professionalism Areas of Expertise cont’d Overall IS Strategy Data Protection and Legal Requirements Network Management Database Management

17 Internal Audit Agency Integrity + Professionalism Computer Audit General Internal Auditors –Review of Management Information System Input Controls Process Controls Output Controls Specialized Computer Audit Hardware Controls Software Controls

18 Internal Audit Agency Integrity + Professionalism Building IS Audit Capacity GIFMIS functionality training for 500 internal auditors in MDAs CAATs Training/User Manual to be published under GIFMIS project CAATs training for 100 internal auditors Setting up of Computer Labs under GIFMIS project Dedicated 20-seater computer lab at IAA for training internal auditors in CAATs (in the pipeline).

19 Internal Audit Agency Integrity + Professionalism CHALLENGES

20 Internal Audit Agency Integrity + Professionalism Challenges Integrated Management Information System –GIFMIS –IPPD –HRMIS (Planned) Budget for –Hardware –Software –Training

21 Internal Audit Agency Integrity + Professionalism Challenges cont’d Encouraging Staff to obtain CISA certification –Arranging practical exposure –Course Material –Funding Retaining trained IS Audit Staff Top Leadership Support

22 Internal Audit Agency Integrity + Professionalism How ISACA can Help

23 Internal Audit Agency Integrity + Professionalism ISACA Interventions ISACA workshops & seminars for Public Service IS Auditors CISA certification Collaboration with IAA to promote IS Audit in the Public Service DP Funded Programs (as part of IAA/ISACA collaboration)? ?

24 Internal Audit Agency Integrity + Professionalism Thank You

Download ppt "Internal Audit Agency Integrity + Professionalism INTERNAL AUDIT AGENCY ISACA Presentation 15 July, 2013 Alisa Hotel, ACCRA."

Similar presentations

Vision: A strong and capable civil society, cooperating and responsive to Cambodias development challenges 1.

Vision: A strong and capable civil society, cooperating and responsive to Cambodias development challenges 1.
New IA IA Clinic March 30, 2013. Definition of Internal Auditing Internal auditing is an independent, objective assurance and consulting activity designed.

New IA IA Clinic March 30, Definition of Internal Auditing Internal auditing is an independent, objective assurance and consulting activity designed.
PRESENTATION ON MONDAY 7 TH AUGUST, 2006 BY SUDHIR VARMA FCA; CIA(USA) FOR THE INSTITUTE OF INTERNAL AUDITORS – INDIA, DELHI CHAPTER.

PRESENTATION ON MONDAY 7 TH AUGUST, 2006 BY SUDHIR VARMA FCA; CIA(USA) FOR THE INSTITUTE OF INTERNAL AUDITORS – INDIA, DELHI CHAPTER.
All Rights Reserved, Duke Medicine 2007 IT Security Presented by: Trisha Craig and Don Elsner Principal Auditors – IT Audit Duke University 1.

All Rights Reserved, Duke Medicine 2007 IT Security Presented by: Trisha Craig and Don Elsner Principal Auditors – IT Audit Duke University 1.
IMFO Audit & Risk Indaba June 2012

IMFO Audit & Risk Indaba June 2012
Internal Audit Awareness

Internal Audit Awareness
Development of internal control: methodology and responsibility

Development of internal control: methodology and responsibility
Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.

Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.
Welcome! Internal Auditing CHAPTER 1. Definition Internal auditing is an independent, objective, assurance and consulting activity designed to add value.

Welcome! Internal Auditing CHAPTER 1. Definition Internal auditing is an independent, objective, assurance and consulting activity designed to add value.
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
Chapter 5 5-1 © 2009 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
Chapter 5 5-1 © 2009 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
Institute of Municipal Finance Officers & Related Professions

Institute of Municipal Finance Officers & Related Professions
The Role of the Internal Audit Department

The Role of the Internal Audit Department
1 Pertemuan 5 Internal Control System Matakuliah:A0274/Pengelolaan Fungsi Audit Sistem Informasi Tahun: 2005 Versi: 1/1.

1 Pertemuan 5 Internal Control System Matakuliah:A0274/Pengelolaan Fungsi Audit Sistem Informasi Tahun: 2005 Versi: 1/1.
Purpose of the Standards

Purpose of the Standards
Achieving our mission Presented to Line Staff. INTERNAL CONTROLS What are they?

Achieving our mission Presented to Line Staff. INTERNAL CONTROLS What are they?
Board responsibility for internal control and risk management by Kiattisak Jelatianranat Chairman, The Institute of Internal Auditors of Thailand Director,

Board responsibility for internal control and risk management by Kiattisak Jelatianranat Chairman, The Institute of Internal Auditors of Thailand Director,
Internal Audit. Session objectives Define Internal Audit To understand functions of Internal Audit To assess effectiveness of Internal Audit and reliance.

Internal Audit. Session objectives Define Internal Audit To understand functions of Internal Audit To assess effectiveness of Internal Audit and reliance.
Effort Reporting: A Departmental Approach to Meeting Audit Requirements Dianne Valdez, MBA, CIA, CISA, CCSA Enrique Valdez Jr., MBA.

Effort Reporting: A Departmental Approach to Meeting Audit Requirements Dianne Valdez, MBA, CIA, CISA, CCSA Enrique Valdez Jr., MBA.

Similar presentations

Ads by Google