Documente Academic
Documente Profesional
Documente Cultură
responsibilities and challenges The processes that it uses to assess risk, plan its activities and to deliver its results
on a regular, on going basis though out the year. Leverage prior Audit results learn from past audits and reach out to key players within the company to strengthen the risk assessment process.
assessment
Conduct a preliminary risk assessment at the
Audit Plan
Carryover
On-Hold
Cancelled
Deferred
Audit Plan
Quickly Increase Management Support Capability Use of Specialist/Experts Develop In-House Skill Sets
Management Empowers Auditors to Define the Scope of Work More efficient utilization of Resources IA can be of Greater assistance to Management
information than Quantitative Audit Plan is more in line with the Needs of the Organization The Audit Plan is an Evolving Process Monitoring and Assessing auditor performance is Critical
Audit Reporting
Auditing Reporting Process Is it Timely and Efficient?
Audit Reporting
Challenges:
Lengthy Cycle Times
Audit Reporting
Consequences of Lengthy Audit Cycles
Audit results are not timely
Stakeholders dissatisfaction
Audit Reporting
Reporting Issues Ineffective communication with auditee Delays in writing draft report Editing process Quality Control Delays by Management in Responding
Audit Reporting
A survey of CAEs have reported that it takes on average more than a quarter of the audit cycle time to process an audit report.
Delays in getting audit responses Repetitive re-editing
Audit Reporting
Possible Considerations:
Issue reports without management comments Use power-point presentations instead of a report Use a standardized report format Issue audit findings on a piecemeal basis while the
audit is in progress. Advise senior management and the Audit Committee of only high risk audit results with all findings communicated to the auditee.
Audit Reporting
Exception Reporting Most Relevant findings and issues up
front Recommendations
Audit Reporting
Use of Audit Ratings More IA departments are using audit ratings to communicate the significance of audit findings and overall results.
Why?
Audit Reporting
Audit Report Ratings
Keys Rating scheme should fit organization Develop and communicate the criteria for assigning audit ratings Communicate the basis and rational of the scheme to Senior Management and the Audit Committee Have appropriate report distribution and follow up process
Surveys
Performance Agreement Results to Audit Committee
Assurance
Consultative
Cost Savings
Efficiency
Effectiveness
Contract Audit
Contract Audit
Why Audit Contracts?
So you know you got what you paid for! Strengthen contract terms & conditions
Contract Audit
Contracting Activities
3 Major Phases
Pre Award
Contract Performance Completion & Closeout
Contract Audit
Pre-Award
Approved and Authorized Terms and scope is clear
Funding is ok
Contract Audit
Contract Performance
Work performed = Scope in contract
Contract Audit
Completion and Closeout
Scope of work, payments, deliverables comply with terms of contract
User acceptance
Post performance obligations manuals, warranties, testing and training
Claims resolved
Liquidated damages collected
Contract Audit
Examples of Findings & Results
Consultants charged at higher than actual rate Adding fringe benefit cost to independent contractors Failure to get allowance for material discounts
inflation indexes $13.7 million reduction to a claim due to overstated labor and material cost $2.1 million saved for material cost charged but not incurred
external QAR Know the next level of IA management team for succession planning
Training
Work Paper Review (ongoing) QA Review Action Plan
Internal Audit
At this level Internal Audit is not considered a valued resource to the Organization
Internal Audit
As the Quality of Internal Audit increases the acceptance at the Executive Level gets Internal Audit closer
Once Quality is achieved Internal Audit is embraced by the Executive Level as a valuable resource within the Organization
2) 3)
4)
Assess the efficiency and effectiveness of the IA activity in light of its Charter and the Board and managements expectations. Provide an opinion on IAs conformance to the spirit and intent of the Standards. Benchmarking and industry comparisons for internal auditing practices Identify and offer recommendations to improve IAs performance and increase the value added to the Audit Committee and management.
Professional credibility Organizational credibility Legal liability Compliance with Standards Continuous improvement Audit Committee oversight
Best Practice
Make sure you learn something from the QAR process
Embrace the process as a way to move towards
continuous improvement Ask for suggestions to improve the IA department as a whole Be open-minded
Summary
A Best Practice Internal Audit function should be:
Risk focused