SlideShare a Scribd company logo

Audit_planning_practice_v1.0.pptx

Download as PPTX, PDF
M
MohamedAbbas157670

audit plan

Education
1 of 17
Internal Audit planning of an audit: EC practices Selection of current practices following EC IAS methodology from audit engagement to kick-off
IAS mission • From IAS audit Charter: "The mission of the Internal Audit Service is to enhance and protect organisational value by providing risk-based and objective assurance, advice and insight. The IAS helps the Commission accomplish its objectives by bringing a systematic, disciplined approach in order to evaluate and improve the effectiveness of risk management, control and governance processes."
3 DG College of Commissioners Audit Progress Committee (APC) Internal Audit Service Executive Agencies Community Agencies The Commission’s governance and internal audit environment DG Directorate-General Executive Agencies Executive Agencies Community Agencies Autonomous Body/ Community Agency Internal Audit Internal Audit First Vice-President Timmermans A.B. Board A.B. Board A.B. Board Internal Audit
4
Practice 1: from Audit Plan to Audit Engagement • The Annual Plan is part of a multi-annual strategic plan, based on an in-depth risk assessment updated annually • Annual audit plan contains indicative audit title, general objective, audit budget, year of completion, Unit responsible – see example 1 • The Unit refer to its capacity planning and matches the availability of auditors with the needed skills and auditors’ interest • Teams of 2-3 auditors, audit budget generally in the range of 90-200 days depending on the scope
Practice 2: audit scheduling • Indicative milestones agreed with HoU in the audit creation form (see example 2) • Take into account: • Average time dedicated to audits • Team or 2/3, experienced/newcomers • In general 25-40% for preliminary survey, 40- 65% for fieldwork, 20% for reporting • IT or other specific expertise needed • Overlapping with other annually recurring activities (RA, SAP, OO, APC reporting)
Practice 3: audit creation in audit software • Audit created in audit software (TeamMate) defining roles, time budget, milestones • This activates the possibility to charge audit hours to this engagement in timesheets (see example 3a) • Consequent monitoring of consumption of audit budget (see example 3b) and of milestones by management (radar screen) • The audit software is key to document and to supervise the audit work
Practice 4: Announcement Letter • Official announcement letter sent at least 1 month in advance of the opening meeting (see example 4) • Request for contact person in the audited entity, who will act as an entry point and facilitator • Sent together with Mutual Expectation paper (see next practice) + annex on personal data, where the IAS asks the DG Management to send to all staff concerned a notification of the possible use of "personal data" during the audit
Practice 5: Mutual Expectations paper • “What you should expect from the IAS, What the IAS expects from you” • See example 5– it contains a.o.: • timing to be expected for main audit communication/steps • Rights and obligations of auditors and auditees
Practice 6: Opening Meeting • The opening meeting is organised with the contact person and/or other representatives of the Director General to: • Provide more details about the audit objectives, the scope, and the audit methodology to be followed; • Have an exchange of views on the audit and its timing and the issues of interest and expectations of the Directorate or Unit; • Identify the main contact points and how and with whom the audit findings will be validated during the fieldwork; • Present two important documents : Mutual Expectation Paper / Obligations related to Data protection; • Discuss logistics and timelines.
Preliminary Survey • Aims to obtain a better understanding of the audited process and of the related risks to better define the objectives and scope of the engagement, by: • Review of relevant documentation • Interviews • Data analysis • … • Documented in the audit software tool • Output: Engagement Planning Memorandum
Practice 7: Engagement Planning Memorandum (EPM) • The main output of the preliminary survey is the EPM (see example 6) • The EPM represents the actual planning of the audit • It contains: • The objective of the audit • The audit scope • The timeline • The human resources for the engagement • The audit programme • together with process description, background information, main figures, summary of previous related audits, audit methodology, etc. • Reviewed by management and QA and approved by management
Practice 8: Detailed audit programme Either: • RCM (Risk and Control Matrix) • Used for financial/compliance audits • See example 7 or • PAM (Performance Audit Matrix) • Used for performance/comprehensive audits • See example 8
Practice 9: Communication to auditees: Scoping Memo • The Scoping Memo is an extract of the EPM sent to the auditees as input for the kick-off meeting • See example 9
Kick-off Meeting • Meeting to be held by the IAS with the Director(s)-General or Head(s) of Service(s) concerned. • The IAS will be represented by the Audit Head of Unit and, when appropriate, the Audit Process Director and/or Director-General • Purpose: • Establish an open and constructive dialogue with the management team of the DG(s) or Service(s) • Present Scoping Memo • Provide more details about The audit objectives and planned scope, The audit methodology to be followed The parties that will be audited The special security measures, if any • Ask the auditee what their expectations are (and refine EPM if necessary)
Audit_planning_practice_v1.0.pptx
Audit_planning_practice_v1.0.pptx

Recommended

Planning of audit
Planning of auditPlanning of audit
Planning of auditFoluwa Amisu
 
Project Auditing
Project AuditingProject Auditing
Project AuditingBECM, RUET, Bangladesh
 
a-guide-to-project-auditing.pdf
a-guide-to-project-auditing.pdfa-guide-to-project-auditing.pdf
a-guide-to-project-auditing.pdfWorldGemini
 
4) Audit planning & procedures.pptx
4) Audit planning & procedures.pptx4) Audit planning & procedures.pptx
4) Audit planning & procedures.pptxRahulBasuri1
 
Audit and regulatory compliance
Audit and regulatory complianceAudit and regulatory compliance
Audit and regulatory complianceArchana Chavhan
 
Standards of Internal Audit
Standards of Internal AuditStandards of Internal Audit
Standards of Internal AuditKaran Puri
 
AT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINES
AT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINESAT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINES
AT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINESRenee Lewis
 
Performance Audit
Performance AuditPerformance Audit
Performance Auditmounika ramachandruni
 

Recommended

Planning of audit
Planning of auditPlanning of audit
Planning of auditFoluwa Amisu
 
Project Auditing
Project AuditingProject Auditing
Project AuditingBECM, RUET, Bangladesh
 
a-guide-to-project-auditing.pdf
a-guide-to-project-auditing.pdfa-guide-to-project-auditing.pdf
a-guide-to-project-auditing.pdfWorldGemini
 
4) Audit planning & procedures.pptx
4) Audit planning & procedures.pptx4) Audit planning & procedures.pptx
4) Audit planning & procedures.pptxRahulBasuri1
 
Audit and regulatory compliance
Audit and regulatory complianceAudit and regulatory compliance
Audit and regulatory complianceArchana Chavhan
 
Standards of Internal Audit
Standards of Internal AuditStandards of Internal Audit
Standards of Internal AuditKaran Puri
 
AT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINES
AT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINESAT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINES
AT-5908 CPA REVIEW SCHOOL OF THE PHILIPPINESRenee Lewis
 
Performance Audit
Performance AuditPerformance Audit
Performance Auditmounika ramachandruni
 
Definition of audit programme
Definition of audit programmeDefinition of audit programme
Definition of audit programmestudent
 
AUDIT.pptx
AUDIT.pptxAUDIT.pptx
AUDIT.pptxbeminaja
 
2010 SACSCOC Administrative Program Review - with handouts
2010 SACSCOC Administrative Program Review - with handouts2010 SACSCOC Administrative Program Review - with handouts
2010 SACSCOC Administrative Program Review - with handoutsDavid Onder
 
Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...
Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...
Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...Support for Improvement in Governance and Management SIGMA
 
Creative Performance Audit
Creative Performance AuditCreative Performance Audit
Creative Performance AuditHumanology
 
Compliance Basics Presentation
Compliance Basics PresentationCompliance Basics Presentation
Compliance Basics PresentationCompliagent
 
Project Monitoring and Evaluation (M and E Plan) Notes
Project Monitoring and Evaluation (M and E Plan) NotesProject Monitoring and Evaluation (M and E Plan) Notes
Project Monitoring and Evaluation (M and E Plan) NotesExcellence Foundation for South Sudan
 
Internal audit procedure
Internal audit procedureInternal audit procedure
Internal audit procedurebhavikjariwala
 
cost Management V4
cost Management V4cost Management V4
cost Management V4Qussay Karam
 
Evaluation_Training.pptx
Evaluation_Training.pptxEvaluation_Training.pptx
Evaluation_Training.pptxlovelampsys
 
PDE Week 5: Developing an Evaluation Plan
PDE Week 5: Developing an Evaluation PlanPDE Week 5: Developing an Evaluation Plan
PDE Week 5: Developing an Evaluation Plankpravera
 
Projects Management
Projects ManagementProjects Management
Projects ManagementNirmal Shah
 
Basic understaning of m&e sang
Basic understaning of m&e sangBasic understaning of m&e sang
Basic understaning of m&e sangSang Sey
 
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdfAddisu15
 
ARC 1-19^J 1-5(12marks).pptx
ARC 1-19^J 1-5(12marks).pptxARC 1-19^J 1-5(12marks).pptx
ARC 1-19^J 1-5(12marks).pptxSohailSheikh62
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Issharing notes123
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsSharing Slides Training
 
Ia audit process_lisd
Ia audit process_lisdIa audit process_lisd
Ia audit process_lisdLorna Quirao-Aguilan
 
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - JordanAuditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - JordanEng. A.karam Al Malkawi
 
1 b, evaluation of project
1 b, evaluation of project1 b, evaluation of project
1 b, evaluation of projectDr.R. SELVAM
 
ESSENTIAL of (CS/IT/IS) class 07 (Networks)
ESSENTIAL of (CS/IT/IS) class 07 (Networks)ESSENTIAL of (CS/IT/IS) class 07 (Networks)
ESSENTIAL of (CS/IT/IS) class 07 (Networks)Dr. Mazin Mohamed alkathiri
 
OSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & SystemsOSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & SystemsSandeep D Chaudhary
 

More Related Content

Similar to Audit_planning_practice_v1.0.pptx

Definition of audit programme
Definition of audit programmeDefinition of audit programme
Definition of audit programmestudent
 
AUDIT.pptx
AUDIT.pptxAUDIT.pptx
AUDIT.pptxbeminaja
 
2010 SACSCOC Administrative Program Review - with handouts
2010 SACSCOC Administrative Program Review - with handouts2010 SACSCOC Administrative Program Review - with handouts
2010 SACSCOC Administrative Program Review - with handoutsDavid Onder
 
Creative Performance Audit
Creative Performance AuditCreative Performance Audit
Creative Performance AuditHumanology
 
Compliance Basics Presentation
Compliance Basics PresentationCompliance Basics Presentation
Compliance Basics PresentationCompliagent
 
Internal audit procedure
Internal audit procedureInternal audit procedure
Internal audit procedurebhavikjariwala
 
cost Management V4
cost Management V4cost Management V4
cost Management V4Qussay Karam
 
Evaluation_Training.pptx
Evaluation_Training.pptxEvaluation_Training.pptx
Evaluation_Training.pptxlovelampsys
 
PDE Week 5: Developing an Evaluation Plan
PDE Week 5: Developing an Evaluation PlanPDE Week 5: Developing an Evaluation Plan
PDE Week 5: Developing an Evaluation Plankpravera
 
Projects Management
Projects ManagementProjects Management
Projects ManagementNirmal Shah
 
Basic understaning of m&e sang
Basic understaning of m&e sangBasic understaning of m&e sang
Basic understaning of m&e sangSang Sey
 
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdfAddisu15
 
ARC 1-19^J 1-5(12marks).pptx
ARC 1-19^J 1-5(12marks).pptxARC 1-19^J 1-5(12marks).pptx
ARC 1-19^J 1-5(12marks).pptxSohailSheikh62
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Issharing notes123
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsSharing Slides Training
 
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - JordanAuditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - JordanEng. A.karam Al Malkawi
 
1 b, evaluation of project
1 b, evaluation of project1 b, evaluation of project
1 b, evaluation of projectDr.R. SELVAM
 

Similar to Audit_planning_practice_v1.0.pptx (20)

Definition of audit programme
Definition of audit programmeDefinition of audit programme
Definition of audit programme
 
AUDIT.pptx
AUDIT.pptxAUDIT.pptx
AUDIT.pptx
 
2010 SACSCOC Administrative Program Review - with handouts
2010 SACSCOC Administrative Program Review - with handouts2010 SACSCOC Administrative Program Review - with handouts
2010 SACSCOC Administrative Program Review - with handouts
 
Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...
Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...
Presentation 4, Audit approach HSC regulation, Workshop on System-based audit...
 
Creative Performance Audit
Creative Performance AuditCreative Performance Audit
Creative Performance Audit
 
Compliance Basics Presentation
Compliance Basics PresentationCompliance Basics Presentation
Compliance Basics Presentation
 
Project Monitoring and Evaluation (M and E Plan) Notes
Project Monitoring and Evaluation (M and E Plan) NotesProject Monitoring and Evaluation (M and E Plan) Notes
Project Monitoring and Evaluation (M and E Plan) Notes
 
Internal audit procedure
Internal audit procedureInternal audit procedure
Internal audit procedure
 
cost Management V4
cost Management V4cost Management V4
cost Management V4
 
Evaluation_Training.pptx
Evaluation_Training.pptxEvaluation_Training.pptx
Evaluation_Training.pptx
 
PDE Week 5: Developing an Evaluation Plan
PDE Week 5: Developing an Evaluation PlanPDE Week 5: Developing an Evaluation Plan
PDE Week 5: Developing an Evaluation Plan
 
Projects Management
Projects ManagementProjects Management
Projects Management
 
Basic understaning of m&e sang
Basic understaning of m&e sangBasic understaning of m&e sang
Basic understaning of m&e sang
 
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
250250902-141-ISACA-NACACS-Auditing-IT-Projects-Audit-Program.pdf
 
ARC 1-19^J 1-5(12marks).pptx
ARC 1-19^J 1-5(12marks).pptxARC 1-19^J 1-5(12marks).pptx
ARC 1-19^J 1-5(12marks).pptx
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Is
 
Ais Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based IsAis Romney 2006 Slides 09 Auditing Computer Based Is
Ais Romney 2006 Slides 09 Auditing Computer Based Is
 
Ia audit process_lisd
Ia audit process_lisdIa audit process_lisd
Ia audit process_lisd
 
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - JordanAuditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
Auditing Management systems based on ISO19011 By Eng. Karam Malkawi - Jordan
 
1 b, evaluation of project
1 b, evaluation of project1 b, evaluation of project
1 b, evaluation of project
 

Recently uploaded

OSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & SystemsOSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & SystemsSandeep D Chaudhary
 
An overview of the various scriptures in Hinduism
An overview of the various scriptures in HinduismAn overview of the various scriptures in Hinduism
An overview of the various scriptures in HinduismDabee Kamal
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...Nguyen Thanh Tu Collection
 
MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...
MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...
MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...MysoreMuleSoftMeetup
 
diagnosting testing bsc 2nd sem.pptx....
diagnosting testing bsc 2nd sem.pptx....diagnosting testing bsc 2nd sem.pptx....
diagnosting testing bsc 2nd sem.pptx....Ritu480198
 
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdfUGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdfNirmal Dwivedi
 
Sternal Fractures & Dislocations - EMGuidewire Radiology Reading Room
Sternal Fractures & Dislocations - EMGuidewire Radiology Reading RoomSternal Fractures & Dislocations - EMGuidewire Radiology Reading Room
Sternal Fractures & Dislocations - EMGuidewire Radiology Reading RoomSean M. Fox
 
male presentation...pdf.................
male presentation...pdf.................male presentation...pdf.................
male presentation...pdf.................MirzaAbrarBaig5
 
FICTIONAL SALESMAN/SALESMAN SNSW 2024.pdf
FICTIONAL SALESMAN/SALESMAN SNSW 2024.pdfFICTIONAL SALESMAN/SALESMAN SNSW 2024.pdf
FICTIONAL SALESMAN/SALESMAN SNSW 2024.pdfPondicherry University
 
Model Attribute _rec_name in the Odoo 17
Model Attribute _rec_name in the Odoo 17Model Attribute _rec_name in the Odoo 17
Model Attribute _rec_name in the Odoo 17Celine George
 
Trauma-Informed Leadership - Five Practical Principles
Trauma-Informed Leadership - Five Practical PrinciplesTrauma-Informed Leadership - Five Practical Principles
Trauma-Informed Leadership - Five Practical PrinciplesPooky Knightsmith
 
e-Sealing at EADTU by Kamakshi Rajagopal
e-Sealing at EADTU by Kamakshi Rajagopale-Sealing at EADTU by Kamakshi Rajagopal
e-Sealing at EADTU by Kamakshi RajagopalEADTU
 
Major project report on Tata Motors and its marketing strategies
Major project report on Tata Motors and its marketing strategiesMajor project report on Tata Motors and its marketing strategies
Major project report on Tata Motors and its marketing strategiesAmanpreetKaur157993
 
UChicago CMSC 23320 - The Best Commit Messages of 2024
UChicago CMSC 23320 - The Best Commit Messages of 2024UChicago CMSC 23320 - The Best Commit Messages of 2024
UChicago CMSC 23320 - The Best Commit Messages of 2024Borja Sotomayor
 
Observing-Correct-Grammar-in-Making-Definitions.pptx
Observing-Correct-Grammar-in-Making-Definitions.pptxObserving-Correct-Grammar-in-Making-Definitions.pptx
Observing-Correct-Grammar-in-Making-Definitions.pptxAdelaideRefugio
 
What is 3 Way Matching Process in Odoo 17.pptx
What is 3 Way Matching Process in Odoo 17.pptxWhat is 3 Way Matching Process in Odoo 17.pptx
What is 3 Way Matching Process in Odoo 17.pptxCeline George
 

Recently uploaded (20)

ESSENTIAL of (CS/IT/IS) class 07 (Networks)
ESSENTIAL of (CS/IT/IS) class 07 (Networks)ESSENTIAL of (CS/IT/IS) class 07 (Networks)
ESSENTIAL of (CS/IT/IS) class 07 (Networks)
 
OSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & SystemsOSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & Systems
 
An overview of the various scriptures in Hinduism
An overview of the various scriptures in HinduismAn overview of the various scriptures in Hinduism
An overview of the various scriptures in Hinduism
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
 
MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...
MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...
MuleSoft Integration with AWS Textract | Calling AWS Textract API |AWS - Clou...
 
diagnosting testing bsc 2nd sem.pptx....
diagnosting testing bsc 2nd sem.pptx....diagnosting testing bsc 2nd sem.pptx....
diagnosting testing bsc 2nd sem.pptx....
 
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdfUGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
UGC NET Paper 1 Unit 7 DATA INTERPRETATION.pdf
 
Sternal Fractures & Dislocations - EMGuidewire Radiology Reading Room
Sternal Fractures & Dislocations - EMGuidewire Radiology Reading RoomSternal Fractures & Dislocations - EMGuidewire Radiology Reading Room
Sternal Fractures & Dislocations - EMGuidewire Radiology Reading Room
 
male presentation...pdf.................
male presentation...pdf.................male presentation...pdf.................
male presentation...pdf.................
 
OS-operating systems- ch05 (CPU Scheduling) ...
OS-operating systems- ch05 (CPU Scheduling) ...OS-operating systems- ch05 (CPU Scheduling) ...
OS-operating systems- ch05 (CPU Scheduling) ...
 
FICTIONAL SALESMAN/SALESMAN SNSW 2024.pdf
FICTIONAL SALESMAN/SALESMAN SNSW 2024.pdfFICTIONAL SALESMAN/SALESMAN SNSW 2024.pdf
FICTIONAL SALESMAN/SALESMAN SNSW 2024.pdf
 
Model Attribute _rec_name in the Odoo 17
Model Attribute _rec_name in the Odoo 17Model Attribute _rec_name in the Odoo 17
Model Attribute _rec_name in the Odoo 17
 
Trauma-Informed Leadership - Five Practical Principles
Trauma-Informed Leadership - Five Practical PrinciplesTrauma-Informed Leadership - Five Practical Principles
Trauma-Informed Leadership - Five Practical Principles
 
Mattingly "AI and Prompt Design: LLMs with NER"
Mattingly "AI and Prompt Design: LLMs with NER"Mattingly "AI and Prompt Design: LLMs with NER"
Mattingly "AI and Prompt Design: LLMs with NER"
 
e-Sealing at EADTU by Kamakshi Rajagopal
e-Sealing at EADTU by Kamakshi Rajagopale-Sealing at EADTU by Kamakshi Rajagopal
e-Sealing at EADTU by Kamakshi Rajagopal
 
Including Mental Health Support in Project Delivery, 14 May.pdf
Including Mental Health Support in Project Delivery, 14 May.pdfIncluding Mental Health Support in Project Delivery, 14 May.pdf
Including Mental Health Support in Project Delivery, 14 May.pdf
 
Major project report on Tata Motors and its marketing strategies
Major project report on Tata Motors and its marketing strategiesMajor project report on Tata Motors and its marketing strategies
Major project report on Tata Motors and its marketing strategies
 
UChicago CMSC 23320 - The Best Commit Messages of 2024
UChicago CMSC 23320 - The Best Commit Messages of 2024UChicago CMSC 23320 - The Best Commit Messages of 2024
UChicago CMSC 23320 - The Best Commit Messages of 2024
 
Observing-Correct-Grammar-in-Making-Definitions.pptx
Observing-Correct-Grammar-in-Making-Definitions.pptxObserving-Correct-Grammar-in-Making-Definitions.pptx
Observing-Correct-Grammar-in-Making-Definitions.pptx
 
What is 3 Way Matching Process in Odoo 17.pptx
What is 3 Way Matching Process in Odoo 17.pptxWhat is 3 Way Matching Process in Odoo 17.pptx
What is 3 Way Matching Process in Odoo 17.pptx
 

Audit_planning_practice_v1.0.pptx

  • 1. Internal Audit planning of an audit: EC practices Selection of current practices following EC IAS methodology from audit engagement to kick-off
  • 2. IAS mission • From IAS audit Charter: "The mission of the Internal Audit Service is to enhance and protect organisational value by providing risk-based and objective assurance, advice and insight. The IAS helps the Commission accomplish its objectives by bringing a systematic, disciplined approach in order to evaluate and improve the effectiveness of risk management, control and governance processes."
  • 3. 3 DG College of Commissioners Audit Progress Committee (APC) Internal Audit Service Executive Agencies Community Agencies The Commission’s governance and internal audit environment DG Directorate-General Executive Agencies Executive Agencies Community Agencies Autonomous Body/ Community Agency Internal Audit Internal Audit First Vice-President Timmermans A.B. Board A.B. Board A.B. Board Internal Audit
  • 4. 4
  • 5. Practice 1: from Audit Plan to Audit Engagement • The Annual Plan is part of a multi-annual strategic plan, based on an in-depth risk assessment updated annually • Annual audit plan contains indicative audit title, general objective, audit budget, year of completion, Unit responsible – see example 1 • The Unit refer to its capacity planning and matches the availability of auditors with the needed skills and auditors’ interest • Teams of 2-3 auditors, audit budget generally in the range of 90-200 days depending on the scope
  • 6. Practice 2: audit scheduling • Indicative milestones agreed with HoU in the audit creation form (see example 2) • Take into account: • Average time dedicated to audits • Team or 2/3, experienced/newcomers • In general 25-40% for preliminary survey, 40- 65% for fieldwork, 20% for reporting • IT or other specific expertise needed • Overlapping with other annually recurring activities (RA, SAP, OO, APC reporting)
  • 7. Practice 3: audit creation in audit software • Audit created in audit software (TeamMate) defining roles, time budget, milestones • This activates the possibility to charge audit hours to this engagement in timesheets (see example 3a) • Consequent monitoring of consumption of audit budget (see example 3b) and of milestones by management (radar screen) • The audit software is key to document and to supervise the audit work
  • 8. Practice 4: Announcement Letter • Official announcement letter sent at least 1 month in advance of the opening meeting (see example 4) • Request for contact person in the audited entity, who will act as an entry point and facilitator • Sent together with Mutual Expectation paper (see next practice) + annex on personal data, where the IAS asks the DG Management to send to all staff concerned a notification of the possible use of "personal data" during the audit
  • 9. Practice 5: Mutual Expectations paper • “What you should expect from the IAS, What the IAS expects from you” • See example 5– it contains a.o.: • timing to be expected for main audit communication/steps • Rights and obligations of auditors and auditees
  • 10. Practice 6: Opening Meeting • The opening meeting is organised with the contact person and/or other representatives of the Director General to: • Provide more details about the audit objectives, the scope, and the audit methodology to be followed; • Have an exchange of views on the audit and its timing and the issues of interest and expectations of the Directorate or Unit; • Identify the main contact points and how and with whom the audit findings will be validated during the fieldwork; • Present two important documents : Mutual Expectation Paper / Obligations related to Data protection; • Discuss logistics and timelines.
  • 11. Preliminary Survey • Aims to obtain a better understanding of the audited process and of the related risks to better define the objectives and scope of the engagement, by: • Review of relevant documentation • Interviews • Data analysis • … • Documented in the audit software tool • Output: Engagement Planning Memorandum
  • 12. Practice 7: Engagement Planning Memorandum (EPM) • The main output of the preliminary survey is the EPM (see example 6) • The EPM represents the actual planning of the audit • It contains: • The objective of the audit • The audit scope • The timeline • The human resources for the engagement • The audit programme • together with process description, background information, main figures, summary of previous related audits, audit methodology, etc. • Reviewed by management and QA and approved by management
  • 13. Practice 8: Detailed audit programme Either: • RCM (Risk and Control Matrix) • Used for financial/compliance audits • See example 7 or • PAM (Performance Audit Matrix) • Used for performance/comprehensive audits • See example 8
  • 14. Practice 9: Communication to auditees: Scoping Memo • The Scoping Memo is an extract of the EPM sent to the auditees as input for the kick-off meeting • See example 9
  • 15. Kick-off Meeting • Meeting to be held by the IAS with the Director(s)-General or Head(s) of Service(s) concerned. • The IAS will be represented by the Audit Head of Unit and, when appropriate, the Audit Process Director and/or Director-General • Purpose: • Establish an open and constructive dialogue with the management team of the DG(s) or Service(s) • Present Scoping Memo • Provide more details about The audit objectives and planned scope, The audit methodology to be followed The parties that will be audited The special security measures, if any • Ask the auditee what their expectations are (and refine EPM if necessary)