SlideShare a Scribd company logo

LTE_IIA Prof Stds 2009

Lee T. Emmenderfer, Jr., MBA, CPA
Lee T. Emmenderfer, Jr., MBA, CPA
1 of 9
Download to read offline
' Background - IIA New or Changed Professional Standards o Consequences of Non-Compliance o New llA Standards o Cha nged llA Sta nda rds ' ESI lA s Current Practices vs. New lchanged !!A Standards
round - llA New r Chan ed Professional a rds Effective January t,2OO9, the lnstitute of !nternal Auditors (llA) made changes to the lnternal Standards for the Professional Practice of lnternal Auditing (Sto nda rdsl were previously part of the Practice Advisories 1 Source: 5/2L/O9 Protiviti Presentation, "Changes in the llA Standards: New Requirements for lnternal Audit Functions"
Consequences of Non-Compliance -: 1) Any company listed on the New York Stock Exchange (NYSE) must have an interna! audit function. Since the llA is the global leader for the profession (including promulgation of guidelines and leading practices for lA functions), NYSE-Iisted companies that are not in compliance with the Sfandords could be out of compliance with the NYSE requirements. 2l Higher likelihood that the external auditor will discount/dismiss ll(s work to support the attestation of the year-end financial statements and financial reporting internal controls - resulting in more time required by the external auditor to perform the attestation and hieher audit fees. 3) Less than optimal effectiveness of the lA activity - particularlv in areas of fraud risk assessment and management. 2 Source: September 2009 Protiviti, "Changes to the llA Standards: What Board Members and Executive Management Need to Know"
New llA Standards: 1010 LLLL 2tL0.A2 2L20.42 2L20.C3 2430 The mandatory nature of the Definition of lnternal Auditing, the Code of Ethics, and the Stondords must be recognized in the internal audit charter. The chief audit executive should discuss the Definition of lnternal Auditing, the Code of Ethics, and the Standards, with senior management and the board. The chief audit executive must communicate and interact directly with the board. The internal audit activity must assess whether the information technology governance of the organization sustains and supports the organization's strategies and objectives. The internal audit activity must evaluate the potential for the occurrence of fraud and how the organization manages fraud risk. When assisting management in establishing or improving risk management processes, internal auditors must refrain from assuming any management responsibility by actually managing risks Internal auditors may report that their engagements are "conducted in conformance with the International Standards for the Professional Practice of lnternal Auditing", only if the results of the quality assurance and improvement program support the statement.
Chaneed !lA Standards: 1000, 1000.A1 & 1000.c1 L3L2 L320 The purpose, authority, and responsibility of the internal audit activity must be formally defined in an internal audit charter; consistent with the Definition of lnternal Auditing, the Code of Ethics, and the Standords. The chief audit executive must periodically review the internal audit charter and present it to senior management and the board for approval. The nature of the assurance services provided to the organization must be defined in the internal audit charter. lf assurances are to be provided to parties outside the organization, the nature of these assurances must also be defined in the internal audit charter. The nature of consulting services must be defined in the internal audit charter. External assessments must be conducted at least once every five years by a qualified, independent reviewer or review team from outside the organization. The chief audit executive must discusswith the board:The need for more frequent external assessments; and the qualifications and independence of the external reviewer or review team, including any potential conflict of interest. The chief audit executive must communicate the results of the quality assurance and improvement program to senior management and the board. ln exercising due professional care, internal auditors must consider the use of technology-based audit and other data analysis techniques. L220.A2
Chaneed llA Standards: 2020 2LLO.AL 2330.42 LL10 & 1110.AL The chief audit executive must communicate the internal audit activity's plans and resource requirements, including significant interim changes, to senior managernent and the board for review and approval. The chief audit executive must also communicaLe the impact of resource !imitations. The internalaudit activity must evaluate the design, implementation, and effectiveness of the organization's ethics-related objectives, programs, and activities. The chief audit executive must develop retention requirements for engagement records, regardless of the medium in which each record is stored. These record retention requirements must be consistent with the organization's guidelines and any pertinent regulatory or other requirements. The chief audit executive must report to a level within the organization that allows the internal audit activity to fulfill its responsibilities. The chief audit executive must confirm to the board, at least annually, the organizational independence of the internal audit activity. The internal audit activity must be free from interference in determining the scope of internal auditing, performing work, and communicating results.
ESI IAs Current Practices vs. New/Changed llA Standards (lnitial Gaps Only): . L L000 & , Purpose, Authority, and 1010 r Responsibility Recognition of the Definition of : !nternal Auditing, the Code of , Ethics, and the Standards in the ' !A Charter 2 1220.A2 , Due Professional Care - ; : Consideration of Use of i r Computer-Aided Audit Techniques (CAAT) i 3 | 2L20.A2 ' Fraud Risk Managementt!j While the , Revised/included in lA i December 2006 lA , Charter and approved , Charter mentions by Audit Cmte. in 2009. Code of Ethics, it does not appear to cite the llA Standards. CAATs have been . Step #11 added to ', ,i on audits. , . ACL training ongoing I r Long-term - consider l implementation of continuous ;monitoring/au!itin-s- j At the engagement i Added inquiry of Ievel, a fraud , pot*ntial/actual fraud brainstorming . to opening meeting memo is required to agenda template be completed.
ES! !ffs Current Practices vs. New/Changed llA Standards (lnitial Gaps Only):
ESI lAs Current Practices vs. New/Changed llA Standards (lnitia! Gaps Only):

Recommended

International Professional Practices Framework Mandatory Guidance
International Professional Practices Framework Mandatory GuidanceInternational Professional Practices Framework Mandatory Guidance
International Professional Practices Framework Mandatory GuidanceAziz Fataliyev, Internal Audit Practitioner
 
Quality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsQuality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsDr. Soheli Ghose Banerjee
 
Audit Quality
Audit QualityAudit Quality
Audit QualityNik Hasyudeen
 
Auditing and assurance standards
Auditing and assurance standardsAuditing and assurance standards
Auditing and assurance standardsSri Ramakrishna College of Arts and Science
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit pptLetzconsult.com
 
PPA - Unit 8 - Auditing Standards and Procedures
PPA - Unit 8 - Auditing Standards and ProceduresPPA - Unit 8 - Auditing Standards and Procedures
PPA - Unit 8 - Auditing Standards and ProceduresAjay Nazarene
 
Resume : "Internal audit quality : developing a quality assurance and improve...
Resume : "Internal audit quality : developing a quality assurance and improve...Resume : "Internal audit quality : developing a quality assurance and improve...
Resume : "Internal audit quality : developing a quality assurance and improve...asvary asvary
 
Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Conceptsspschandel
 

Recommended

International Professional Practices Framework Mandatory Guidance
International Professional Practices Framework Mandatory GuidanceInternational Professional Practices Framework Mandatory Guidance
International Professional Practices Framework Mandatory GuidanceAziz Fataliyev, Internal Audit Practitioner
 
Quality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsQuality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsDr. Soheli Ghose Banerjee
 
Audit Quality
Audit QualityAudit Quality
Audit QualityNik Hasyudeen
 
Auditing and assurance standards
Auditing and assurance standardsAuditing and assurance standards
Auditing and assurance standardsSri Ramakrishna College of Arts and Science
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit pptLetzconsult.com
 
PPA - Unit 8 - Auditing Standards and Procedures
PPA - Unit 8 - Auditing Standards and ProceduresPPA - Unit 8 - Auditing Standards and Procedures
PPA - Unit 8 - Auditing Standards and ProceduresAjay Nazarene
 
Resume : "Internal audit quality : developing a quality assurance and improve...
Resume : "Internal audit quality : developing a quality assurance and improve...Resume : "Internal audit quality : developing a quality assurance and improve...
Resume : "Internal audit quality : developing a quality assurance and improve...asvary asvary
 
Audit Principles & Concepts
Audit Principles & ConceptsAudit Principles & Concepts
Audit Principles & Conceptsspschandel
 
Basics of internal audit
Basics of internal auditBasics of internal audit
Basics of internal auditcomplianceonline123
 
International Standards on Auditing - Summarized
International Standards on Auditing - SummarizedInternational Standards on Auditing - Summarized
International Standards on Auditing - SummarizedFawad Hassan
 
Documentation
Documentation Documentation
Documentation Dr. Soheli Ghose Banerjee
 
Effective internal audit planning
Effective internal audit planningEffective internal audit planning
Effective internal audit planningShailesh Tiwari
 
Certified Internal Auditor certification manual
Certified Internal Auditor certification manualCertified Internal Auditor certification manual
Certified Internal Auditor certification manualJoel C. Font
 
Internal audit ( pdf drive )
Internal audit ( pdf drive )Internal audit ( pdf drive )
Internal audit ( pdf drive )TaDo8
 
International auditing overview(modified 1)
International auditing overview(modified 1) International auditing overview(modified 1)
International auditing overview(modified 1) Dr.Mohamed ElDeeb
 
Internal audit of manufacturing co
Internal audit of manufacturing coInternal audit of manufacturing co
Internal audit of manufacturing comaheshr254
 
International standards for the professional practice of internal auditing (s...
International standards for the professional practice of internal auditing (s...International standards for the professional practice of internal auditing (s...
International standards for the professional practice of internal auditing (s...Jason Sookram
 
01 internal audit 101 principles and techniques
01 internal audit 101 principles and techniques01 internal audit 101 principles and techniques
01 internal audit 101 principles and techniquesFrederick Altum Pokoo-Aikins
 
How to prepare for and pass the CIA exam?
How to prepare for and pass the CIA exam? How to prepare for and pass the CIA exam?
How to prepare for and pass the CIA exam? Iyad Mourtada, CMA, CIA, CFE, CCSA, CRMA, CPLP
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Support for Improvement in Governance and Management SIGMA
 
Internal audit report writing
Internal audit report writingInternal audit report writing
Internal audit report writingNeha Kothari
 
internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relationArgentinaMorata
 
How to prepare for and pass the CIA exam based on the 2011 IPPF?
How to prepare for and pass the CIA exam based on the 2011 IPPF?How to prepare for and pass the CIA exam based on the 2011 IPPF?
How to prepare for and pass the CIA exam based on the 2011 IPPF?Iyad Mourtada, CMA, CIA, CFE, CCSA, CRMA, CPLP
 
Internal audit department
Internal audit departmentInternal audit department
Internal audit departmentPopun
 
Foundation of Internal Auditing | Sana Baqai
Foundation of Internal Auditing | Sana BaqaiFoundation of Internal Auditing | Sana Baqai
Foundation of Internal Auditing | Sana BaqaiSana Baqai
 
Audit practice manual
Audit practice manualAudit practice manual
Audit practice manualMuhammad asif fareedi
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit Systemvikasiba
 
Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Manoj Agarwal
 
vdocuments.mx_cia-part-1-slides.ppt
vdocuments.mx_cia-part-1-slides.pptvdocuments.mx_cia-part-1-slides.ppt
vdocuments.mx_cia-part-1-slides.pptFraterne1
 
Auditing Standard and Practice
Auditing Standard and Practice Auditing Standard and Practice
Auditing Standard and Practice Bikash Kumar
 

More Related Content

What's hot

International Standards on Auditing - Summarized
International Standards on Auditing - SummarizedInternational Standards on Auditing - Summarized
International Standards on Auditing - SummarizedFawad Hassan
 
Effective internal audit planning
Effective internal audit planningEffective internal audit planning
Effective internal audit planningShailesh Tiwari
 
Certified Internal Auditor certification manual
Certified Internal Auditor certification manualCertified Internal Auditor certification manual
Certified Internal Auditor certification manualJoel C. Font
 
Internal audit ( pdf drive )
Internal audit ( pdf drive )Internal audit ( pdf drive )
Internal audit ( pdf drive )TaDo8
 
International auditing overview(modified 1)
International auditing overview(modified 1) International auditing overview(modified 1)
International auditing overview(modified 1) Dr.Mohamed ElDeeb
 
Internal audit of manufacturing co
Internal audit of manufacturing coInternal audit of manufacturing co
Internal audit of manufacturing comaheshr254
 
International standards for the professional practice of internal auditing (s...
International standards for the professional practice of internal auditing (s...International standards for the professional practice of internal auditing (s...
International standards for the professional practice of internal auditing (s...Jason Sookram
 
Internal audit report writing
Internal audit report writingInternal audit report writing
Internal audit report writingNeha Kothari
 
internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relationArgentinaMorata
 
Internal audit department
Internal audit departmentInternal audit department
Internal audit departmentPopun
 
Foundation of Internal Auditing | Sana Baqai
Foundation of Internal Auditing | Sana BaqaiFoundation of Internal Auditing | Sana Baqai
Foundation of Internal Auditing | Sana BaqaiSana Baqai
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit Systemvikasiba
 
Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Manoj Agarwal
 

What's hot (20)

Basics of internal audit
Basics of internal auditBasics of internal audit
Basics of internal audit
 
International Standards on Auditing - Summarized
International Standards on Auditing - SummarizedInternational Standards on Auditing - Summarized
International Standards on Auditing - Summarized
 
Documentation
Documentation Documentation
Documentation
 
Effective internal audit planning
Effective internal audit planningEffective internal audit planning
Effective internal audit planning
 
Certified Internal Auditor certification manual
Certified Internal Auditor certification manualCertified Internal Auditor certification manual
Certified Internal Auditor certification manual
 
Internal audit ( pdf drive )
Internal audit ( pdf drive )Internal audit ( pdf drive )
Internal audit ( pdf drive )
 
International auditing overview(modified 1)
International auditing overview(modified 1) International auditing overview(modified 1)
International auditing overview(modified 1)
 
Internal audit of manufacturing co
Internal audit of manufacturing coInternal audit of manufacturing co
Internal audit of manufacturing co
 
International standards for the professional practice of internal auditing (s...
International standards for the professional practice of internal auditing (s...International standards for the professional practice of internal auditing (s...
International standards for the professional practice of internal auditing (s...
 
01 internal audit 101 principles and techniques
01 internal audit 101 principles and techniques01 internal audit 101 principles and techniques
01 internal audit 101 principles and techniques
 
How to prepare for and pass the CIA exam?
How to prepare for and pass the CIA exam? How to prepare for and pass the CIA exam?
How to prepare for and pass the CIA exam?
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...
 
Internal audit report writing
Internal audit report writingInternal audit report writing
Internal audit report writing
 
internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation internal audit function ans controller's role in investors relation
internal audit function ans controller's role in investors relation
 
How to prepare for and pass the CIA exam based on the 2011 IPPF?
How to prepare for and pass the CIA exam based on the 2011 IPPF?How to prepare for and pass the CIA exam based on the 2011 IPPF?
How to prepare for and pass the CIA exam based on the 2011 IPPF?
 
Internal audit department
Internal audit departmentInternal audit department
Internal audit department
 
Foundation of Internal Auditing | Sana Baqai
Foundation of Internal Auditing | Sana BaqaiFoundation of Internal Auditing | Sana Baqai
Foundation of Internal Auditing | Sana Baqai
 
Audit practice manual
Audit practice manualAudit practice manual
Audit practice manual
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit System
 
Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013Role and responsibility of Internal Audit under new Companies Act 2013
Role and responsibility of Internal Audit under new Companies Act 2013
 

Similar to LTE_IIA Prof Stds 2009

vdocuments.mx_cia-part-1-slides.ppt
vdocuments.mx_cia-part-1-slides.pptvdocuments.mx_cia-part-1-slides.ppt
vdocuments.mx_cia-part-1-slides.pptFraterne1
 
Auditing Standard and Practice
Auditing Standard and Practice Auditing Standard and Practice
Auditing Standard and Practice Bikash Kumar
 
International Professional Practices Framework (IPPF)pdf
International Professional Practices Framework (IPPF)pdfInternational Professional Practices Framework (IPPF)pdf
International Professional Practices Framework (IPPF)pdfAavyaSidhu
 
External quality assessment presentation august 29 2013
External quality assessment presentation august 29 2013External quality assessment presentation august 29 2013
External quality assessment presentation august 29 2013Jerry Montes
 
Sri lanka auditing standard
Sri lanka auditing standardSri lanka auditing standard
Sri lanka auditing standardVinthuja Murukes
 
Frequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiFrequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiManeesha35
 
Nicc 1 Normas Internacionales Sobre Control De Calidad 1 En Ingles
Nicc 1 Normas Internacionales Sobre Control De Calidad 1 En InglesNicc 1 Normas Internacionales Sobre Control De Calidad 1 En Ingles
Nicc 1 Normas Internacionales Sobre Control De Calidad 1 En Inglesguest4a971d
 
Auditing activities of microfinance institutions
Auditing activities of microfinance institutionsAuditing activities of microfinance institutions
Auditing activities of microfinance institutionsFrank Kabuye, CPA
 
Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015Tim Leech
 
Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015Tim Leech
 
PART II INTERNAL AUDITING in local government.ppt
PART II INTERNAL AUDITING in local government.pptPART II INTERNAL AUDITING in local government.ppt
PART II INTERNAL AUDITING in local government.pptCamellaCandon
 
Overview of Internal Audit
Overview of Internal AuditOverview of Internal Audit
Overview of Internal Auditseanpizzy
 
Topic 4 internal control system (ics)
Topic 4 internal control system (ics)Topic 4 internal control system (ics)
Topic 4 internal control system (ics)sakura rena
 
The “internal audit” versus “external audit” in details
The “internal audit” versus “external audit” in detailsThe “internal audit” versus “external audit” in details
The “internal audit” versus “external audit” in detailsMohammad Wahid Abdullah Khan
 

Similar to LTE_IIA Prof Stds 2009 (20)

vdocuments.mx_cia-part-1-slides.ppt
vdocuments.mx_cia-part-1-slides.pptvdocuments.mx_cia-part-1-slides.ppt
vdocuments.mx_cia-part-1-slides.ppt
 
Auditing Standard and Practice
Auditing Standard and Practice Auditing Standard and Practice
Auditing Standard and Practice
 
International Professional Practices Framework (IPPF)pdf
International Professional Practices Framework (IPPF)pdfInternational Professional Practices Framework (IPPF)pdf
International Professional Practices Framework (IPPF)pdf
 
The iia s 2017 international professional practices framework
The iia s 2017 international professional practices frameworkThe iia s 2017 international professional practices framework
The iia s 2017 international professional practices framework
 
External quality assessment presentation august 29 2013
External quality assessment presentation august 29 2013External quality assessment presentation august 29 2013
External quality assessment presentation august 29 2013
 
IAASB-2020-Handbook-Volume 3
IAASB-2020-Handbook-Volume 3 IAASB-2020-Handbook-Volume 3
IAASB-2020-Handbook-Volume 3
 
Sri lanka auditing standard
Sri lanka auditing standardSri lanka auditing standard
Sri lanka auditing standard
 
Frequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiFrequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubai
 
Nicc 1 Normas Internacionales Sobre Control De Calidad 1 En Ingles
Nicc 1 Normas Internacionales Sobre Control De Calidad 1 En InglesNicc 1 Normas Internacionales Sobre Control De Calidad 1 En Ingles
Nicc 1 Normas Internacionales Sobre Control De Calidad 1 En Ingles
 
The Internal Audit Framework
The Internal Audit FrameworkThe Internal Audit Framework
The Internal Audit Framework
 
Auditing activities of microfinance institutions
Auditing activities of microfinance institutionsAuditing activities of microfinance institutions
Auditing activities of microfinance institutions
 
Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015
 
Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015Reinventing Internal Audit Final April 2015
Reinventing Internal Audit Final April 2015
 
Wiley section.pptx
Wiley section.pptxWiley section.pptx
Wiley section.pptx
 
PART II INTERNAL AUDITING in local government.ppt
PART II INTERNAL AUDITING in local government.pptPART II INTERNAL AUDITING in local government.ppt
PART II INTERNAL AUDITING in local government.ppt
 
Overview of Internal Audit
Overview of Internal AuditOverview of Internal Audit
Overview of Internal Audit
 
Topic 4 internal control system (ics)
Topic 4 internal control system (ics)Topic 4 internal control system (ics)
Topic 4 internal control system (ics)
 
Silabus el5213 internal auditing (audit internal) v021
Silabus el5213 internal auditing (audit internal) v021Silabus el5213 internal auditing (audit internal) v021
Silabus el5213 internal auditing (audit internal) v021
 
How to plan an audit engagement
How to plan an audit engagementHow to plan an audit engagement
How to plan an audit engagement
 
The “internal audit” versus “external audit” in details
The “internal audit” versus “external audit” in detailsThe “internal audit” versus “external audit” in details
The “internal audit” versus “external audit” in details
 

LTE_IIA Prof Stds 2009

  • 1. ' Background - IIA New or Changed Professional Standards o Consequences of Non-Compliance o New llA Standards o Cha nged llA Sta nda rds ' ESI lA s Current Practices vs. New lchanged !!A Standards
  • 2. round - llA New r Chan ed Professional a rds Effective January t,2OO9, the lnstitute of !nternal Auditors (llA) made changes to the lnternal Standards for the Professional Practice of lnternal Auditing (Sto nda rdsl were previously part of the Practice Advisories 1 Source: 5/2L/O9 Protiviti Presentation, "Changes in the llA Standards: New Requirements for lnternal Audit Functions"
  • 3. Consequences of Non-Compliance -: 1) Any company listed on the New York Stock Exchange (NYSE) must have an interna! audit function. Since the llA is the global leader for the profession (including promulgation of guidelines and leading practices for lA functions), NYSE-Iisted companies that are not in compliance with the Sfandords could be out of compliance with the NYSE requirements. 2l Higher likelihood that the external auditor will discount/dismiss ll(s work to support the attestation of the year-end financial statements and financial reporting internal controls - resulting in more time required by the external auditor to perform the attestation and hieher audit fees. 3) Less than optimal effectiveness of the lA activity - particularlv in areas of fraud risk assessment and management. 2 Source: September 2009 Protiviti, "Changes to the llA Standards: What Board Members and Executive Management Need to Know"
  • 4. New llA Standards: 1010 LLLL 2tL0.A2 2L20.42 2L20.C3 2430 The mandatory nature of the Definition of lnternal Auditing, the Code of Ethics, and the Stondords must be recognized in the internal audit charter. The chief audit executive should discuss the Definition of lnternal Auditing, the Code of Ethics, and the Standards, with senior management and the board. The chief audit executive must communicate and interact directly with the board. The internal audit activity must assess whether the information technology governance of the organization sustains and supports the organization's strategies and objectives. The internal audit activity must evaluate the potential for the occurrence of fraud and how the organization manages fraud risk. When assisting management in establishing or improving risk management processes, internal auditors must refrain from assuming any management responsibility by actually managing risks Internal auditors may report that their engagements are "conducted in conformance with the International Standards for the Professional Practice of lnternal Auditing", only if the results of the quality assurance and improvement program support the statement.
  • 5. Chaneed !lA Standards: 1000, 1000.A1 & 1000.c1 L3L2 L320 The purpose, authority, and responsibility of the internal audit activity must be formally defined in an internal audit charter; consistent with the Definition of lnternal Auditing, the Code of Ethics, and the Standords. The chief audit executive must periodically review the internal audit charter and present it to senior management and the board for approval. The nature of the assurance services provided to the organization must be defined in the internal audit charter. lf assurances are to be provided to parties outside the organization, the nature of these assurances must also be defined in the internal audit charter. The nature of consulting services must be defined in the internal audit charter. External assessments must be conducted at least once every five years by a qualified, independent reviewer or review team from outside the organization. The chief audit executive must discusswith the board:The need for more frequent external assessments; and the qualifications and independence of the external reviewer or review team, including any potential conflict of interest. The chief audit executive must communicate the results of the quality assurance and improvement program to senior management and the board. ln exercising due professional care, internal auditors must consider the use of technology-based audit and other data analysis techniques. L220.A2
  • 6. Chaneed llA Standards: 2020 2LLO.AL 2330.42 LL10 & 1110.AL The chief audit executive must communicate the internal audit activity's plans and resource requirements, including significant interim changes, to senior managernent and the board for review and approval. The chief audit executive must also communicaLe the impact of resource !imitations. The internalaudit activity must evaluate the design, implementation, and effectiveness of the organization's ethics-related objectives, programs, and activities. The chief audit executive must develop retention requirements for engagement records, regardless of the medium in which each record is stored. These record retention requirements must be consistent with the organization's guidelines and any pertinent regulatory or other requirements. The chief audit executive must report to a level within the organization that allows the internal audit activity to fulfill its responsibilities. The chief audit executive must confirm to the board, at least annually, the organizational independence of the internal audit activity. The internal audit activity must be free from interference in determining the scope of internal auditing, performing work, and communicating results.
  • 7. ESI IAs Current Practices vs. New/Changed llA Standards (lnitial Gaps Only): . L L000 & , Purpose, Authority, and 1010 r Responsibility Recognition of the Definition of : !nternal Auditing, the Code of , Ethics, and the Standards in the ' !A Charter 2 1220.A2 , Due Professional Care - ; : Consideration of Use of i r Computer-Aided Audit Techniques (CAAT) i 3 | 2L20.A2 ' Fraud Risk Managementt!j While the , Revised/included in lA i December 2006 lA , Charter and approved , Charter mentions by Audit Cmte. in 2009. Code of Ethics, it does not appear to cite the llA Standards. CAATs have been . Step #11 added to ', ,i on audits. , . ACL training ongoing I r Long-term - consider l implementation of continuous ;monitoring/au!itin-s- j At the engagement i Added inquiry of Ievel, a fraud , pot*ntial/actual fraud brainstorming . to opening meeting memo is required to agenda template be completed.
  • 8. ES! !ffs Current Practices vs. New/Changed llA Standards (lnitial Gaps Only):
  • 9. ESI lAs Current Practices vs. New/Changed llA Standards (lnitia! Gaps Only):