Professional Documents
Culture Documents
to Internal Auditing
Welcome to MU1!
Instructor Intro
CERTIFIED
GENERAL
ACCOUNTANTS
Class Poll
Please select your familiarity with Auditing:
a)
b)
c)
d)
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
External Auditing
CERTIFIED
GENERAL
ACCOUNTANTS
M/C Practice
The following represent differences between external and internal
auditing except:
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
CONSULTING
Purpose
Parties
Involved
Three:
1) The Internal Auditor
2) The process owner
3) The user (e.g. board or
audit committee)
Two:
1) The Internal Auditor
2) The process owner
(engagement client)
Direction
Output
Assessment, opinion or
conclusion
Advice/Counsel
CERTIFIED
GENERAL
ACCOUNTANTS
Operational Audits
Evaluates an organizations effectiveness, efficiency, and economy
Comprehensive Audits
Mainly in the public sector and involve three types: financial,
compliance, and performance
CERTIFIED
GENERAL
ACCOUNTANTS
Fraud Audits
Special investigations that determine the existence and extent of detected or
suspected fraud.
Variety of individuals involved in process including internal auditors, lawyers, investigators,
security, and other specialists from inside or outside the organization
Environmental Audits
Compliance-like
Establish the extent to which the organization complies with
legislative and regulatory requirements on environmental matters.
CERTIFIED
GENERAL
ACCOUNTANTS
M/C Practice
Scenario A: The Internal Auditing department has been asked
to review and evalute a proposed organizational restructuring
to reflect the most economical alignment.
Scenario B: The Internal Auditing department is beginning a
review of system access following a recent organizational
restructuring.
Which of the following accurately reflects the scenarios:
a) Scenario A is an assurance activity and Scenario B is a
consulting engagement
b) Both scenarios A and B are assurance activities
c) Both scenarios A and B are consulting engagements
d) Scenario A is a consulting engagement and Scenario
B is an assurance activity
CERTIFIED
GENERAL
ACCOUNTANTS
M/C Practice
Which of the following options accurately lists different types of
audits?
a) Compliance, Investigative, and Operational
b) Investigative, IT, and Operational
c) Fraud, IT, and Operational
d) Process, IT, and Operational
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
Conclusion
Internal Auditing must be defined by a specific methodology
and Auditors accountable for their performance.
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
Governance
CERTIFIED
GENERAL
ACCOUNTANTS
Risk
Assessment
Reliability and
integrity of financial
information
Effectiveness and
efficiency of
operations
Governance
Safeguarding of
assets
Control
Compliance with
laws, regulations,
and contracts
CERTIFIED
GENERAL
ACCOUNTANTS
Organizing
Directing
Controlling
Risk Management
The process of identifying, assessing, managing, and controlling
enterprise risk.
Risk is defined as the possibility of an event occurring that
will have an impact on the achievement of objectives.
Enterprise risk (business risk) is risk as it applies to
businesses or organizations
CERTIFIED
GENERAL
ACCOUNTANTS
Control
Action taken to manage risk, increasing the likelihood that
established objectives and goals will be achieved. (IIA)
Remember:
Only provides reasonable assurance
Managements Responsibility
CERTIFIED
GENERAL
ACCOUNTANTS
Governance
Combination of processes and structures implemented by the
Board to inform, monitor and direct activities of the organization
towards accomplishing objectives. (IIA)
Remember:
Critical relationships
Organizational Structure
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
CERTIFIED
GENERAL
ACCOUNTANTS
a) Internal auditors are responsible for ensuring compliance and enforcement of all an
organizations policies, especially ethical policies relating to a corporate conflict of
interest policy.
b) Internal auditors are expected to carry out fraud investigation assignments as long as
management is willing to support the internal audit function.
c) As with any other employee, internal auditors access to information in the organization
is restricted to their specific area of responsibility; accordingly, internal auditors must
follow the ethical principle of respecting the confidentiality of financial, operational, and
personal information when they seek information from other employees.
d) Internal auditors may be asked by management for an interpretation of relevant ethical
standards, such as conflict of interest rules or corporate and professional codes of ethics.
CERTIFIED
GENERAL
ACCOUNTANTS
Source: CGA
Employment
Referral
Service
CERTIFIED
GENERAL
ACCOUNTANTS
In Summary
Internal Audit describes a variety of assurance and
consulting activities