Presentation is loading. Please wait.

Presentation is loading. Please wait.

Richard Maggs Bucharest December 2014.

Published byCatherine Singleton Modified over 6 years ago

Similar presentations

Presentation on theme: "Richard Maggs Bucharest December 2014."— Presentation transcript:

1 Richard Maggs Bucharest December 2014

2 What I will cover Why did we write the guide Whats in the guide
Where to next? The Risk Assessment working group has finished his work

3 Why did we write the guide
Because confusion about the terms risk, risk assessment and risk management Because auditors need to understand what risk is and how this impacts both management and audit To help IA units plan their audit work more effectively To help Central units (e.g. CHUs) who have to prepare guidance for IA on how to do risk based planning

4 What’s in the guide Determining and categorising the audit universe
Chapter 2 Determining and categorising the audit universe Chapter 3 Part I Identifying individual events that may give rise to risks and opportunities across the audit universe Chapter 3 Part II Scoring events in terms of probability and impact Chapter 4 Building risk-based audit plans with generic risk factors Chapter 5 Writing risk-based strategic and annual plans

5 Understanding Risk People have problem identifying risks. But everyone knows what an event is. Something that may happen in future that has a positive or a negative impact on achieving objectives Positive impacts are opportunities Negative impacts are risks Managers and auditors examine risk for different reasons

6 Categorising the audit universe
Breaking the Audit Universe into smaller elements helps in planning the audit. There is usually a need to cut the universe vertically (e.g. by organizational structure) and horizontally (by theme or function)

7 Best Practice - Audit Universe
Follow the crowd - but limit the factors used

8 Warning: This is what management should be doing
Identifying events Where possible use risks assessments done by management If these are not available consider a workshop with management to identify risks Use documentary sources to identify risks - operation plans other audit reports, etc. Warning: This is what management should be doing

9 Example of type of events

10 Warning: This is what management should be doing
Scoring events Events are scored in terms of likelihood and impact Use simple scales and processes All risk-scoring systems by definition produce exact numbers. This can add a false level of accuracy to the assessment process. Remember than the numbers are based on Judgement. Have clear definitions for what an impact means. Warning: This is what management should be doing

11 Using risk factors for planning
Generic risk factors are used to select amongst a large number of potential audits Think of these as selection factors Remember that most auditors use the same risk factors Materiality; complexity, time since last audit; etc

12 Best Practice - Risk factors
Follow the crowd - but limit the factors used

13 Example scoring risk factors

14 Example - weighting risk factors

15 Developing strategic and annual plans
A comprehensive strategic and annual plan of IA activity is crucial to the success of internal audit The plans should document – the internal auditor’s judgement of the systems, activities and programmes that should be subject to audit. The guide provides advice on what should be in the strategic and annual plans The plan is a shop window - make it attractive to shoppers

16 Lets use the guide not leave it on the shelf to gather dust
Where to next How can we PEMPAL best promote the risk audit guide? How can Internal Auditors best use it? How can the CHU best use it? What other materials can be used e.g training case study? Lets use the guide not leave it on the shelf to gather dust

17 Thankyou For the opportunity to talk For listenting For questions

Download ppt "Richard Maggs Bucharest December 2014."

Similar presentations

Progress on Risk Assessment......continued Ms. Albana Gjinopulli, MPA Mr. Stanislav Buchkov.

Progress on Risk Assessment......continued Ms. Albana Gjinopulli, MPA Mr. Stanislav Buchkov.
Www.marsh.com Member Training ALARM South East - November 2007 Abigail Simpson and Bob Ellison.

Member Training ALARM South East - November 2007 Abigail Simpson and Bob Ellison.
Audit Commission Hertfordshire Housing Conference Housing Inspectorate Developments in inspection and assessment Roy Irwin Chief Inspector of Housing.

Audit Commission Hertfordshire Housing Conference Housing Inspectorate Developments in inspection and assessment Roy Irwin Chief Inspector of Housing.
TAKING CONTROL OF YOUR PERFORMANCE MANAGEMENT/APPRAISAL 1 NASUWT Member Seminar July 2014.

TAKING CONTROL OF YOUR PERFORMANCE MANAGEMENT/APPRAISAL 1 NASUWT Member Seminar July 2014.
Office of Inspector General (OIG) Internal Audit

Office of Inspector General (OIG) Internal Audit
Health and Safety Risk Assessment (RA) End presentation Risk Assessment (RA)

Health and Safety Risk Assessment (RA) End presentation Risk Assessment (RA)
Equity Housing Group Risk Management. 05 August 2002 © MazarsEquity Housing Group: Risk Management 2 Agenda Introduction: what is Risk Management? The.

Equity Housing Group Risk Management. 05 August 2002 © MazarsEquity Housing Group: Risk Management 2 Agenda Introduction: what is Risk Management? The.
Results of Pre-event survey on Risk Assessment Ms. Edit Németh – RA WG – Budva, Montenegro.

Results of Pre-event survey on Risk Assessment Ms. Edit Németh – RA WG – Budva, Montenegro.
From risk to planning Making the bridge from risks to audit plans Richard Maggs Astana September 2014.

From risk to planning Making the bridge from risks to audit plans Richard Maggs Astana September 2014.
IOPS Toolkit for Risk-based Supervision Module 4: Risk Mitigation and Scoring.

IOPS Toolkit for Risk-based Supervision Module 4: Risk Mitigation and Scoring.
1 Designing Effective Programs: –Introduction to Program Design Steps –Organizational Strategic Planning –Approaches and Models –Evaluation, scheduling,

1 Designing Effective Programs: –Introduction to Program Design Steps –Organizational Strategic Planning –Approaches and Models –Evaluation, scheduling,
Engin Ali ARTAN Industrial Engineering

Engin Ali ARTAN Industrial Engineering
Chapter(3) Qualitative Risk Analysis. Risk Model.

Chapter(3) Qualitative Risk Analysis. Risk Model.
Hazard Identification

Hazard Identification
Evaluating Development of Internal Audit in Transition Countries Two Assessment Frameworks By Gareth Evans and Pascale Kervyn World Bank PEM-PAL workshop.

Evaluating Development of Internal Audit in Transition Countries Two Assessment Frameworks By Gareth Evans and Pascale Kervyn World Bank PEM-PAL workshop.
Workshop on Implementing Audit Quality Practices Working Group on Audit Manuals and Methods 15-17 March 2006 Vilnius (Lithuania) Hungarian Experiences.

Workshop on Implementing Audit Quality Practices Working Group on Audit Manuals and Methods March 2006 Vilnius (Lithuania) Hungarian Experiences.
June 2011. Objectives To explain the training system under PFM project; To share existing training syllabus and guides on internal audit and financial.

June Objectives To explain the training system under PFM project; To share existing training syllabus and guides on internal audit and financial.
Purchasing Forum – May 2011. The integration of the activities, plans, attitudes, policies, and efforts of the people of an organization working together.

Purchasing Forum – May The integration of the activities, plans, attitudes, policies, and efforts of the people of an organization working together.
Self Assessment SELF ASSESSMENT FOR YOU Ann Pike 30 th September 2010.

Self Assessment SELF ASSESSMENT FOR YOU Ann Pike 30 th September 2010.
Prepared By: Razif Razali 1 TMK 264: COMPUTER SECURITY CHAPTER SIX : ADMINISTERING SECURITY.

Prepared By: Razif Razali 1 TMK 264: COMPUTER SECURITY CHAPTER SIX : ADMINISTERING SECURITY.

Similar presentations

Ads by Google