Example: stock market

IIA Standards Changes

Changes in the IIA Standards : Changes in the IIA Standards :New Requirements for New Requirements for Internal Audit Functions Internal Audit Functions 1 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third of ChangesSummary of Changes Effective January 1, 2009, the IIA made Changes to the IIA Standards : Changed from should to must throughout most of the Standards Added five new Standards Added new verbiage to existing Standards The change from should to must" has created a requirement for action to be taken. For some IA departments, only minimal Changes will be needed but for others there are many additional actions, some substantial, to be taken in order to comply with the revised Standards .

Changes in the IIA Standards: New Requirements for Internal Audit Functions

Fullscreen Download

Information

Domain:

Source:

Link to this page:

Please notify us if you found a problem with this document:

Other abuse

Transcription of IIA Standards Changes

1 Changes in the IIA Standards : Changes in the IIA Standards :New Requirements for New Requirements for Internal Audit Functions Internal Audit Functions 1 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third of ChangesSummary of Changes Effective January 1, 2009, the IIA made Changes to the IIA Standards : Changed from should to must throughout most of the Standards Added five new Standards Added new verbiage to existing Standards The change from should to must" has created a requirement for action to be taken. For some IA departments, only minimal Changes will be needed but for others there are many additional actions, some substantial, to be taken in order to comply with the revised Standards .

2 We have summarized the most common areas which we believe will have an impact on IA functions based on our knowledge and experience from working with organizations around the globe. However, your IA function should compare its individual practices to the Standardsto see whether there are additional items that require 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third of ChangesSummary of Changes The Changes create new requirements around: IT Governance Technology Based Audit and Other Data Analysis Techniques Fraud Risk Management Ethics Programs Limitation and Adequacy of Resources Records Retention Quality Assurance Reviews Modifications to the IA Charter Communication with the Board ALL INTERNAL AUDIT FUNCTIONS SHOULD BE DISCUSSING THESE Changes AS WELL AS THE INCREMENTAL AND REQUIRED ACTIONS TO BE TAKEN WITHTHEIR MANAGEMENT AND AUDIT COMMITTEES NOW This presentation is not intended to be an exhaustive analysis of the IIA Standards and as such.

3 Each organization should makes it own analysis of the Standards and Changes required to comply with those Standards as of January 1, 2009. 3 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third GovernanceIT Governance Assess IT governance and determine appropriate reporting Potentially increase IT auditing to be able to adequately report on IT Governance Perform enhanced IT risk assessment Use IT SMEs or outside resources as needed and re-evaluate capability of existing resources Consider adopting a recognized IT Governance model The internal audit activity mustassess whether the information technology governance of the organization sustains and supports the organization s strategies and Standard4 2009 Protiviti Inc.

4 An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third Based Audit and Other Technology Based Audit and Other Data Analysis TechniquesData Analysis Techniques Train personnel on data analysis tools such as ACL, Excel, Access and other appropriate tools. Consider designating individuals as SME s. Revise audit methodology and expand audit assignment budgets to allow time to incorporate appropriate data analysis techniques Purchase and utilize third-party applications and use outside resources as needed Coordinate with your CIO organization as needed Consider continuous auditing and monitoring programs In exercising due professional care internal auditors mustconsider the use of technology-based audit and other data analysis IA functions make good use of data analysis tools and techniques already.

5 Few have implemented continuous auditing/monitoring. 5 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third party. Perform a fraud risk management assessment, by either: Assisting management in performing one, Leveraging an existing assessment performed as part of SOX, or Performing an independent assessment Utilize outside resources as needed Utilize data analysis and continuous auditing and monitoring to enhance detection Determine style and scope of reporting Coordinate with legal counsel as appropriateFraud Risk ManagementFraud Risk The internal audit activity mustevaluate the potential for the occurrence of fraud and how the organization manages fraud Standard6 2009 Protiviti Inc.

6 An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third party. Perform an ethics program assessment Determine scope and reporting style Coordinate with Human Resources and legal as neededEthics ProgramsEthics The internal audit activity mustevaluate the design, implementation and effectiveness of the organization s ethics-related objectives, programs and a should standard, many internal audit functions have done limited auditing of their organization s ethics programs to date. This primarily relates to verifying the code of conduct circularization 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third party.

7 Report resource limitations in Audit Committee presentations, including open positions and deferred work due to these constraints. Consider getting additional help from guest auditors or outside parties to fill the gap while waiting to fill open positions Resource limitations should consider key skill shortages and expertise levels, not just quantity of resources Resource skill needs will change over time Critically evaluate which skills are needed in residence and which ones can be contractedLimitation and Adequacy of Limitation and Adequacy of ResourcesResources2020 Communication and ApprovalThe chief audit executive mustcommunicate the internal audit activity s plans and resource requirements, including significant interim Changes .

8 To senior management and the board for review and approval. The chief audit executive mustalso communicate the impact of resource IA functions already report this as part of their KPI statistics and quarterly plan status 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third party. Determine audit retention requirements. Assess cost and benefit of purchasing a work paper tool to facilitate the administration of records retention requirements. Leverage this technology to do more than just retain documents Enhance review process efficiency and approval Facilitate risk assessment Document the annual audit plan House other tools and documents Allow access by other stakeholdersRecords RetentionRecords The chief audit executive must develop retention requirements for engagement records, regardless of the medium in which each record is stored.

9 These retention requirements mustbe consistent with the organization s guidelines and any pertinent regulatory or other of IA functions do not have a work paper tool9 2009 Protiviti Inc. An Equal Opportunity : This document is for your company s internal use only and may not be copied nor distributed to any other third party. Establish, execute and improve a Quality Assurance and Improvement Program (QAIP). For organizations that have not had one done yet, have an external Quality Assurance Review (QAR) performed. Discuss with the board the: Frequency of performing QAR s (every 5 years or more frequently). Qualifications and independence of the external QAR provider.

10 Results of your internal and external Assurance ReviewsQuality Assurance Reviews1312 External AssessmentsExternal assessments mustbe conducted at least once every five years by a qualified, independent reviewer or review team from outside the organization. The chief audit executive mustdiscuss with the board: The need for more frequent external assessments; and The qualifications and independence of the external reviewer or review team, including any potential conflict of Reporting on the Quality Assurance and Improvement ProgramThe chief audit executive mustcommunicate the results of the quality assurance and improvement program to senior management and the of IA functions have not had an external QAR10 2009 Protiviti Inc.

Show more

Documents from same domain

PG Eng Plan Obj and Scope Final - IIA

PG Eng Plan Obj and Scope Final - IIA

www.iia.nl

4 Practice Guide / Engagement Planning: Establishing Objectives and Scope can use a risk and control matrix and heat map to prioritize the risks, then use the results to

  Engagement, Planning, Engagement planning

Guide to Internal Audit - IIA

Guide to Internal Audit - IIA

www.iia.nl

Guide to Internal Audit Frequently Asked Questions About Developing and Maintaining an Effective Internal Audit Function Second Edition

  Guide, Internal, Functions, Audit, Internal audit function, Guide to internal audit

The Value of Internal Audit - IIA

The Value of Internal Audit - IIA

www.iia.nl

The Value of Internal Audit (*) Today, more than ever, the question of Value has taken on critical importance in every organisation. In an increasingly global economy with increasingly tougher

  Internal, Value, Audit, Value of internal audit

Appendix C - IIA

Appendix C - IIA

www.iia.nl

instructiOns fOr using the interview guides During the planning stage, the organization provides an organization chart from which the assessor selects individuals to interview. The organization then schedules the interviews.

  Appendix

Model verslag interne audit - iia.nl

Model verslag interne audit - iia.nl

www.iia.nl

Model verslag interne audit 1. Algemene gegevens Afdeling Auditteam Onderwerp audit Datum audit Auditee Audit nummer 2. Gebruikte documenten, registraties en overige informatiebronnen

The Role of Internal Auditing During Mergers ...

The Role of Internal Auditing During Mergers ...

www.iia.nl

Describe and analyze the preferred role internal auditors would like to play in European Union mergers and acquisitions. 4. Develop a normative model based on the extensive literature review. 5. Identify and analyze the gaps between the current, preferred, and ideal situation.

  Internal, Roles, The role of internal, Role internal

Guide to Internal Audit - IIA

Guide to Internal Audit - IIA

www.iia.nl

Guide to Internal Audit Frequently Asked Questions About Developing and Maintaining an Effective Internal Audit Function Second Edition

  Guide, Internal, Audit, Guide to internal audit

AUDITING ANTI-BRIBERY AND ANTI-CORRUPTION …

AUDITING ANTI-BRIBERY AND ANTI-CORRUPTION

www.iia.nl

– practice guide › auditing › anti-bribery and › anti-corruption programs › june 2014

  Programs, Corruption, Anti, Bribery, Anti bribery and anti corruption, Anti bribery and anti corruption programs

GUIDELINES FOR THE COMPLIANCE FUNCTION

GUIDELINES FOR THE COMPLIANCE FUNCTION

www.iia.nl

Introduction Guidelines for the Compliance function 1 By external laws and regulations is meant first and foremost laws, statutory instruments, and decisions made by public ... contractual commitments in sales or supplier contracts. 2 By internal laws and regulations is often meant policy guidelines and instructions from the Board and executive ...

  Guidelines, Compliance, Supplier

Implementation Guides - IIA

Implementation Guides - IIA

www.iia.nl

Auditing, the Code of Ethics, the Standards, and the Definition of Internal Auditing must be recognized in the internal audit charter. The chief audit executive should discuss the Mission of Internal Audit and the mandatory elements of the International Professional Practices Framework with senior management and the board.

  Implementation, Auditing

Related documents

Model Question PaperIIA

Model Question PaperIIA

bieap.gov.in

BOARD OF INTERMEDIATE EDUCATION, A.P. Mathematics – IIA Model Question Paper (w.e.f. 2013-14) Note : This Question paper consists of three sections A. B and Time: 3 Hrs Max .Marks:75

  Question, Model, Model question, Iia model question

MEMBERSHIP FORM

MEMBERSHIP FORM

iia-p.org

MEMBERSHIP FORM (PLS. FILL UP COMPLETELY) Mailing Address: Institute of Internal Auditors Philippines U702 Corporate Center 139 Valero St., Makati City

  Form, Internal, Institute, Membership, Auditors, Institute of internal auditors, Membership form

IIa Exercise some, any, a, an - kfrclasses / FrontPage

IIa Exercise some, any, a, an - kfrclasses / FrontPage

kfrclasses.pbworks.com

a Write a, an, or some + a food drink word. 9B GRAMMAR BANK b Complete the dialogue with a, an, some, or any. A What can we cook for your brother and his girlfriend?

  Exercise, Some, Iia exercise some

Pre IIA ISACA Auditing Project Management Controls

Pre IIA ISACA Auditing Project Management Controls

www.dallasiia.org

Tuesday, October 20, 2009 Dallas IIA Chapter / ISACA N. Texas Chapter Auditing Project Management Controls January 7, 2010

  Project, Management, Control, Auditing, Auditing project management controls

“Audit Sampling 101” - Dallas Chapter of the IIA

Audit Sampling 101” - Dallas Chapter of the IIA

www.dallasiia.org

Audit Sampling 101” BY: Christopher L. Mitchell, MBA, CIA, CISA, CCSA Cmitchell@KBAGroupLLP.com

  Audit, Sampling, Audit sampling 101

GM Audit Services (GMAS) Presentation: IIA F b 09 …

GM Audit Services (GMAS) Presentation: IIA F b 09 …

www.detroitiia.org

AUDIT SERVICES Auditing the Management of Large Capital Projects in GM GM Audit Services (GMAS) Presentation: IIA F b 09 2010IIA February 09, 2010

  Services, Presentation, Audit, Gm audit services, Gmas

Detroit Chapter of the IIA in Partnership with …

Detroit Chapter of the IIA in Partnership with

www.detroitiia.org

Experis Finance 1 Key Aspects of Spreadsheet Controls Key Aspects of Spreadsheet Controls April 25, 2012 Detroit Chapter of the IIA in Partnership with

  With, Control, Aspects, Partnership, Spreadsheets, The iia in partnership with, Key aspects of spreadsheet controls key aspects of spreadsheet controls

Water Quality Standards Class IIA by Constituent

Water Quality Standards Class IIA by Constituent

www.nj.gov

Ground Water Quality Standards ‐ Class IIA by Constituent Constituents Name CasGround N Waterum Quality Practical Quantitation Level (PQL) Higher of (PQL) ‐

  Standards, Quality, Water, Class, Constituent, Water quality standards class iia by constituent

Related search queries

Model Question, IIA Model Question, MEMBERSHIP FORM, Institute of Internal Auditors, IIa Exercise some, any, a, an, Auditing Project Management Controls, Audit Sampling 101, GM Audit Services (GMAS) Presentation: IIA, The IIA in Partnership with, Key Aspects of Spreadsheet Controls Key Aspects of Spreadsheet Controls, Water Quality Standards Class IIA by Constituent, Water Quality Standards ‐ Class IIA by Constituent