Debashis Gupta, profile picture
Uploaded byDebashis Gupta
PPTX, PDF737 views

Future of Internal Audit_6Sep12

This document summarizes the key discussion points from a Group Internal Audit Workshop on the future of internal audit. It discusses: 1. The history of internal audit, from ancient times focusing on governance and ethics, to the modern era where it evolved from an inspection to a more risk-based and compliance focused function. 2. The changing context which drove these evolutions, such as increasing organizational complexity, scandals, and regulations like Sarbanes-Oxley. 3. How internal audit continues to evolve, from a control focus to a more risk-based and performance-centric approach, in order to keep up with stakeholder demands and the speed of business. 4. The future of

Embed presentation

Downloaded 16 times
GROUP INTERNAL AUDIT WORKSHOP Sep. 6, 2012
Future of Internal Audit Debashis Gupta Sep. 6, 2012
Discussion points 1. Relevance of internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
Discussion points 1. Relevance of internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
Is Internal audit relevant? Some perspectives: 1. In organizations of a certain size and governance environment, basic controls are ‘built into DNA’. 2. In many organizations outside this circle, IA may not get ‘wind beneath sails’ (or ‘seat at table’). 3. Managements today have a range of options to obtain value added ‘consulting’ part of IA role. 4. Even on core role, Internal Audit hardly cited as ‘potentially culpable’ in investigations into corporate frauds/scandals over the decade… Thoughts??
Discussion points 1. Relevance of internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
History of Internal audit Ancient (India):  Chanakya (aka Kautilya) touched upon the concept of auditing in ‘Arthaniti’ (370 BC)!  Birbal reportedly provided Akbar with an ‘independent view’ and facts/evidence on many complex issues, incl. on governance (1528 AD) !! Upto 1940 or so (‘Inspection’ mode):  Substantive, focus on recount/re-performance  Assist external auditor with tests/tasks
History of Internal audit… 1940s to 1980s (‘compliance’ mode):  Institute of Internal Auditors (IIA) estd. (1941)  ‘Modern Internal Auditing’ – Victor Brink (1942)  Focus on compliance with policies & controls  Tentative start with operational auditing 1990s (‘control focused’ mode):  COSO ‘Internal Control–Integrated F/work’ (92)*  Focus on controls & control environment  Start of integration of risk into internal audit * Currently under revision
History of Internal audit… Late 1990s - 2002 (‘risk based auditing’):  Increasing integration of risk into audits  COSO ‘Ent. Risk Mgt. – Integrated Framework’* 2003 - …2006 (the ‘SOX years’):  Sarbanes-Oxley Act (2004)  Focus on internal controls on fin. rptg. (ICFR) …2007 – 2008 (return to risk?):  Focus on entity and process-level controls  Integration of risk mitigation/risk treatments * A bit late in the day (2004), post SOX…
History of Internal audit… 2009 - … :  Return of focus on basic controls (financial services/other industries)  Any clear roadmap?? Thoughts…
Discussion points 1. Relevance of internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
Context of Internal audit Ancient:  Mostly individual businesses  Governance, ethics,… Upto 1940 or so (‘Inspection’ mode IA):  Simple structure of organizations  Few big-time frauds (like Charles Ponzi – 1919) 1940s to 1980s (‘compliance’ mode IA):  Bigger/more complex/far-flung organizations  Need to ensure (uniform) controls
Context of Internal audit… 1990s (‘control focused’ IA):  Junk bonds fraud by Mike Milken (1989)  BCCI scandal (1991)  US political campaign finance reforms & FCPA  Treadway Commission (sponsored by AICPA, AAA, FEI, IIA & IMA) (succeeded by COSO) 2000 - 2002 (‘risk based auditing’):  Companies/IA ‘got a handle’ on controls?  Appreciation of the link between controls & risk
Context of Internal audit… 2003 - …2006 (the ‘SOX years’):  Dotcom bubble burst (2001)  Plethora of accounting/financial reporting frauds – LTCM, Enron, WorldCom, Parmalat, HealthSouth,… …2007 – 2008 (return to risk based IA):  Few big-time frauds?  ‘SOX fever’ wearing off/ possible fatigue/ resentment on SOX focus??
Context of Internal audit… 2009 - … :  Subprime meltdown – Lehman, Bear Stearns, Countrywide, Merrill, AIG, WaMu, Wachovia, RBS, HBOS, Northern Rock,…  Financial reporting frauds - Satyam, Olympus,...  ‘Market-linked’ – UBS (Adoboli*), LIBOR,…  Good ol’ money frauds/Ponzi schemes – Madoff, MF Global, PFG, ZeekRewards,…  Regulatory tangles – HSBC, StanChart, GS,…  Will it ever end? (hint: No!) * In the footsteps of Nick Leeson who brought down Barings in 1995
Context of Internal audit… Learning:  Internal audit is perceived to be more reactive (to business/economic environment) than proactive, and that too at a slow pace.  Is lack of mandate or management/regulatory support the issue, or competency gap? Thoughts…
Discussion points 1. Relevance of internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
Evolution of Internal audit  Compliance-focus to Control-focus  Control-focus to Risk based audit (RBA)  RBA to objective-centric (risk cumulative), enterprise-wide focus  Risk/objective-based to Performance-centric  Ideal path – along the maturity scale as per IIA: Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organisation’s operations. It helps an organisation accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes. The Institute of Internal Auditors
Evolution of Internal audit… Stakeholder demands:  Value protection/value destruction prevention (only 20% of value destruction in business is due to financial & compliance issues, 20% due to operational issues, and a full 60% is due to strategic/business issues*)  *^Review of JV, M&A & Business continuity  *Integrated assurance & ‘consumable’ reports  Independence, insight & objectivity*  Facilitate process strengthening e.g. CSA, CCM * PwC study’12 ^ KPMG survey’12
Discussion points 1. Relevance of internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
Future of Internal audit  Audit ‘at the speed of business’ – CA/CRCA  Program management*^, change management#  Economic realities*, trends*, sustainability^  ^IT*, cloud, mobile devices, social media  Increasing governance focus – assurance scale  *Workflow automation and IT, analytical tools & skills, to enhance coverage & quality standards  Diversified resource base – a judicious mixture of in house & co-sourced/specialist auditors* * PwC study’12 ^ KPMG survey’12 # IIA survey’12
QUESTIONS…
Thank You

More Related Content

PPTX
Franchising | Entrepreneur Roadmap | Capital One
byWashington, DC Economic Partnership
 
PDF
MBA Finance Project Topics
byMBA Dissertation Help
 
PPTX
Lending: From a Banker's Viewpoint
byWashington, DC Economic Partnership
 
PPTX
"Credit
byAnanth V. Tunikipati
 
PDF
Iif Projects
byashu29
 
PDF
What are the determinants of the non-reimbursement for SMEs in Central Africa...
byIJRTEMJOURNAL
 
PDF
liquidity management
byGaganpreet Singh
 
DOCX
Camel model
byHAMIR SINGH
 
Franchising | Entrepreneur Roadmap | Capital One
byWashington, DC Economic Partnership
 
MBA Finance Project Topics
byMBA Dissertation Help
 
Lending: From a Banker's Viewpoint
byWashington, DC Economic Partnership
 
"Credit
byAnanth V. Tunikipati
 
Iif Projects
byashu29
 
What are the determinants of the non-reimbursement for SMEs in Central Africa...
byIJRTEMJOURNAL
 
liquidity management
byGaganpreet Singh
 
Camel model
byHAMIR SINGH
 

What's hot

PPT
Basel 2
byvinaya.hs
 
PPT
Credit ratings methodology
byHitesh Kukreja
 
PPTX
Rucha mam (1)
byRucha Doshi
 
PPTX
PRESENTATION - BAL CAMEL ANALYSIS
bySyed Nabeel Ali
 
PPTX
CREDIT RATING METHODOLOGY
byprekshakrai
 
PPT
camel model
byAshima Thakur
 
DOCX
Camel model
byVaza Hitesh
 
PPTX
Camel ratings ppt
bySagar Patil
 
PDF
Is Permanent Capital Structure Right for Your Fund?
byWinston & Strawn LLP
 
PPTX
S3 - Evaluating Microfinance Institutions
by"Maria Lourdes "Long"" Pineda
 
PPSX
Risk based supervision in private and public sector banks in India,
byPravas Ranjan Mahapatra
 
PPT
Liquidity risk.in islamic vs conventional banks
byirum_iiui
 
Basel 2
byvinaya.hs
 
Credit ratings methodology
byHitesh Kukreja
 
Rucha mam (1)
byRucha Doshi
 
PRESENTATION - BAL CAMEL ANALYSIS
bySyed Nabeel Ali
 
CREDIT RATING METHODOLOGY
byprekshakrai
 
camel model
byAshima Thakur
 
Camel model
byVaza Hitesh
 
Camel ratings ppt
bySagar Patil
 
Is Permanent Capital Structure Right for Your Fund?
byWinston & Strawn LLP
 
S3 - Evaluating Microfinance Institutions
by"Maria Lourdes "Long"" Pineda
 
Risk based supervision in private and public sector banks in India,
byPravas Ranjan Mahapatra
 
Liquidity risk.in islamic vs conventional banks
byirum_iiui
 

Viewers also liked

PPTX
Common internal audit findings & how to avoid them
bySurajit Datta
 
PPTX
ethics in organizational psychlogy
byvibhor jain
 
PDF
PMP Chap 7 - Project Cost Management - Part 2
byAnand Bobade
 
PPTX
06 professional ethics & code of ethics
byNimantha Perera
 
PPT
Learning pmp formulas the easy way
byMark Troncone MBA, PMP, CBAP, ITILv3, CSM
 
PDF
Checklist
bydygmasnah65
 
PPTX
The new ISO 9001:2015
byReza Seifollahy
 
PDF
The Drift Brand Book
byDrift
 
PDF
PMP Chap 7 - Project Cost Management - Part 1
byAnand Bobade
 
Common internal audit findings & how to avoid them
bySurajit Datta
 
ethics in organizational psychlogy
byvibhor jain
 
PMP Chap 7 - Project Cost Management - Part 2
byAnand Bobade
 
06 professional ethics & code of ethics
byNimantha Perera
 
Learning pmp formulas the easy way
byMark Troncone MBA, PMP, CBAP, ITILv3, CSM
 
Checklist
bydygmasnah65
 
The new ISO 9001:2015
byReza Seifollahy
 
The Drift Brand Book
byDrift
 
PMP Chap 7 - Project Cost Management - Part 1
byAnand Bobade
 

Similar to Future of Internal Audit_6Sep12

PDF
Evolving role of internal auditing function
byDebashis Gupta
 
PPTX
The Rise of Internal Audit
byParth Dave
 
PDF
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
bySwenson Advisors, LLP
 
PDF
The Internal Auditing Handbook.pdf
byRNHolder
 
PPTX
The Essential Experience for CAEs - Audit Committee Need for Insight
byInternational Federation of Accountants
 
PPTX
Leveraging Effective Risk Management and Internal Control for Your Organization
byInternational Federation of Accountants
 
PPTX
Chapter 1 auditing and internal control
byjayussuryawan
 
PPTX
Chapter 1 auditing and internal control
byTommy Zul Hidayat
 
PDF
Value based internal auditing - Nilai Dasar Internal Audit
byDr. Zar RDJ
 
PDF
12.12.2011, Internal audit role and functions in corporate governance, Scott ...
byThe Business Council of Mongolia
 
PDF
Key considerations for your internal audit plan
byessbaih
 
PPTX
Ahmedabad_Session_II.pptx dasdfasfasfafafaffafa
bymenakampr823116018
 
PDF
How to "Audit" Company-Prepared Information for Your Committee Meetings
bySwenson Advisors, LLP
 
PDF
IIA Conference Brochure
byNatalie Nichelson, C.P.A
 
PDF
Chapter 7
byEasyStudy3
 
PDF
Chapter 7
byEasyStudy3
 
PPT
3a 2 Internal Audit A Bane Or Boon
byRajeswaran Muthu Venkatachalam
 
PPTX
Internal audits – A General overview.pptx
byssuser14335e
 
DOCX
POSITION OF INTERNAL AUDIT IN THE CORPORATE FRAMEWORK
byHaresh Lalwani
 
PPTX
Audit-and-Assurance-II.pptxedfefefsferfw
bymdmustofaa9
 
Evolving role of internal auditing function
byDebashis Gupta
 
The Rise of Internal Audit
byParth Dave
 
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
bySwenson Advisors, LLP
 
The Internal Auditing Handbook.pdf
byRNHolder
 
The Essential Experience for CAEs - Audit Committee Need for Insight
byInternational Federation of Accountants
 
Leveraging Effective Risk Management and Internal Control for Your Organization
byInternational Federation of Accountants
 
Chapter 1 auditing and internal control
byjayussuryawan
 
Chapter 1 auditing and internal control
byTommy Zul Hidayat
 
Value based internal auditing - Nilai Dasar Internal Audit
byDr. Zar RDJ
 
12.12.2011, Internal audit role and functions in corporate governance, Scott ...
byThe Business Council of Mongolia
 
Key considerations for your internal audit plan
byessbaih
 
Ahmedabad_Session_II.pptx dasdfasfasfafafaffafa
bymenakampr823116018
 
How to "Audit" Company-Prepared Information for Your Committee Meetings
bySwenson Advisors, LLP
 
IIA Conference Brochure
byNatalie Nichelson, C.P.A
 
Chapter 7
byEasyStudy3
 
Chapter 7
byEasyStudy3
 
3a 2 Internal Audit A Bane Or Boon
byRajeswaran Muthu Venkatachalam
 
Internal audits – A General overview.pptx
byssuser14335e
 
POSITION OF INTERNAL AUDIT IN THE CORPORATE FRAMEWORK
byHaresh Lalwani
 
Audit-and-Assurance-II.pptxedfefefsferfw
bymdmustofaa9
 

Future of Internal Audit_6Sep12

  • 1.
    GROUP INTERNAL AUDITWORKSHOP Sep. 6, 2012
  • 2.
    Future of InternalAudit Debashis Gupta Sep. 6, 2012
  • 3.
    Discussion points 1. Relevanceof internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
  • 4.
    Discussion points 1. Relevanceof internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
  • 5.
    Is Internal auditrelevant? Some perspectives: 1. In organizations of a certain size and governance environment, basic controls are ‘built into DNA’. 2. In many organizations outside this circle, IA may not get ‘wind beneath sails’ (or ‘seat at table’). 3. Managements today have a range of options to obtain value added ‘consulting’ part of IA role. 4. Even on core role, Internal Audit hardly cited as ‘potentially culpable’ in investigations into corporate frauds/scandals over the decade… Thoughts??
  • 6.
    Discussion points 1. Relevanceof internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
  • 7.
    History of Internalaudit Ancient (India):  Chanakya (aka Kautilya) touched upon the concept of auditing in ‘Arthaniti’ (370 BC)!  Birbal reportedly provided Akbar with an ‘independent view’ and facts/evidence on many complex issues, incl. on governance (1528 AD) !! Upto 1940 or so (‘Inspection’ mode):  Substantive, focus on recount/re-performance  Assist external auditor with tests/tasks
  • 8.
    History of Internalaudit… 1940s to 1980s (‘compliance’ mode):  Institute of Internal Auditors (IIA) estd. (1941)  ‘Modern Internal Auditing’ – Victor Brink (1942)  Focus on compliance with policies & controls  Tentative start with operational auditing 1990s (‘control focused’ mode):  COSO ‘Internal Control–Integrated F/work’ (92)*  Focus on controls & control environment  Start of integration of risk into internal audit * Currently under revision
  • 9.
    History of Internalaudit… Late 1990s - 2002 (‘risk based auditing’):  Increasing integration of risk into audits  COSO ‘Ent. Risk Mgt. – Integrated Framework’* 2003 - …2006 (the ‘SOX years’):  Sarbanes-Oxley Act (2004)  Focus on internal controls on fin. rptg. (ICFR) …2007 – 2008 (return to risk?):  Focus on entity and process-level controls  Integration of risk mitigation/risk treatments * A bit late in the day (2004), post SOX…
  • 10.
    History of Internalaudit… 2009 - … :  Return of focus on basic controls (financial services/other industries)  Any clear roadmap?? Thoughts…
  • 11.
    Discussion points 1. Relevanceof internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
  • 12.
    Context of Internalaudit Ancient:  Mostly individual businesses  Governance, ethics,… Upto 1940 or so (‘Inspection’ mode IA):  Simple structure of organizations  Few big-time frauds (like Charles Ponzi – 1919) 1940s to 1980s (‘compliance’ mode IA):  Bigger/more complex/far-flung organizations  Need to ensure (uniform) controls
  • 13.
    Context of Internalaudit… 1990s (‘control focused’ IA):  Junk bonds fraud by Mike Milken (1989)  BCCI scandal (1991)  US political campaign finance reforms & FCPA  Treadway Commission (sponsored by AICPA, AAA, FEI, IIA & IMA) (succeeded by COSO) 2000 - 2002 (‘risk based auditing’):  Companies/IA ‘got a handle’ on controls?  Appreciation of the link between controls & risk
  • 14.
    Context of Internalaudit… 2003 - …2006 (the ‘SOX years’):  Dotcom bubble burst (2001)  Plethora of accounting/financial reporting frauds – LTCM, Enron, WorldCom, Parmalat, HealthSouth,… …2007 – 2008 (return to risk based IA):  Few big-time frauds?  ‘SOX fever’ wearing off/ possible fatigue/ resentment on SOX focus??
  • 15.
    Context of Internalaudit… 2009 - … :  Subprime meltdown – Lehman, Bear Stearns, Countrywide, Merrill, AIG, WaMu, Wachovia, RBS, HBOS, Northern Rock,…  Financial reporting frauds - Satyam, Olympus,...  ‘Market-linked’ – UBS (Adoboli*), LIBOR,…  Good ol’ money frauds/Ponzi schemes – Madoff, MF Global, PFG, ZeekRewards,…  Regulatory tangles – HSBC, StanChart, GS,…  Will it ever end? (hint: No!) * In the footsteps of Nick Leeson who brought down Barings in 1995
  • 16.
    Context of Internalaudit… Learning:  Internal audit is perceived to be more reactive (to business/economic environment) than proactive, and that too at a slow pace.  Is lack of mandate or management/regulatory support the issue, or competency gap? Thoughts…
  • 17.
    Discussion points 1. Relevanceof internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
  • 18.
    Evolution of Internalaudit  Compliance-focus to Control-focus  Control-focus to Risk based audit (RBA)  RBA to objective-centric (risk cumulative), enterprise-wide focus  Risk/objective-based to Performance-centric  Ideal path – along the maturity scale as per IIA: Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organisation’s operations. It helps an organisation accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes. The Institute of Internal Auditors
  • 19.
    Evolution of Internalaudit… Stakeholder demands:  Value protection/value destruction prevention (only 20% of value destruction in business is due to financial & compliance issues, 20% due to operational issues, and a full 60% is due to strategic/business issues*)  *^Review of JV, M&A & Business continuity  *Integrated assurance & ‘consumable’ reports  Independence, insight & objectivity*  Facilitate process strengthening e.g. CSA, CCM * PwC study’12 ^ KPMG survey’12
  • 20.
    Discussion points 1. Relevanceof internal audit 2. A bit of history 3. Context for changing face of internal audit 4. Evolution 5. What does the future hold?
  • 21.
    Future of Internalaudit  Audit ‘at the speed of business’ – CA/CRCA  Program management*^, change management#  Economic realities*, trends*, sustainability^  ^IT*, cloud, mobile devices, social media  Increasing governance focus – assurance scale  *Workflow automation and IT, analytical tools & skills, to enhance coverage & quality standards  Diversified resource base – a judicious mixture of in house & co-sourced/specialist auditors* * PwC study’12 ^ KPMG survey’12 # IIA survey’12
  • 22.
  • 23.