Scalable & Integrated Program Audit is an effective Auditing framework for handling large complex programs/ practices in organization, which works on Value Generation, Compliance, capability and Risk evaluation principles.
The cost of poor quality remains hidden and eats up to 40% revenues of the enterprise. Success factors that reduce poor quality in construction needs to be evaluated through a well documented programme.
Evaluation and Rating program for Construction Quality and Task CompletionAniruddha Kulkarni
Project success is a difficult concept because of the project’s complexity and dynamics. Quality and completion as per project specifications remain the most important task and risk factor and no one can disclaim the importance of evaluating the same, especially in construction. In this presentation, an attempt to list the practical list of criteria for evaluating project success is discussed and the terms of evaluation are presented only as guidance since the rating may change as per client perception and project nature.
Chapter 06 of ICT Project Management based on IOE Engineering syllabus. This chapter provides knowledge on project management processes, overlaps of process groups in a phase and mapping of project management.Provided by Project Management Sir of KU.
In order to excel as a risk manager a deep understanding of the pricing models and risk measures used by revenuegenerating
sections of the business is important. You need to be able to challenge the assumptions and underlying
flaws that the models are based on, in order to be able to effectively assess the risks involved. The Certificate in
Quantitative Finance will instil you with the mathematical rigor to understand these models and the confidence to
question and challenge them.
The cost of poor quality remains hidden and eats up to 40% revenues of the enterprise. Success factors that reduce poor quality in construction needs to be evaluated through a well documented programme.
Evaluation and Rating program for Construction Quality and Task CompletionAniruddha Kulkarni
Project success is a difficult concept because of the project’s complexity and dynamics. Quality and completion as per project specifications remain the most important task and risk factor and no one can disclaim the importance of evaluating the same, especially in construction. In this presentation, an attempt to list the practical list of criteria for evaluating project success is discussed and the terms of evaluation are presented only as guidance since the rating may change as per client perception and project nature.
Chapter 06 of ICT Project Management based on IOE Engineering syllabus. This chapter provides knowledge on project management processes, overlaps of process groups in a phase and mapping of project management.Provided by Project Management Sir of KU.
In order to excel as a risk manager a deep understanding of the pricing models and risk measures used by revenuegenerating
sections of the business is important. You need to be able to challenge the assumptions and underlying
flaws that the models are based on, in order to be able to effectively assess the risks involved. The Certificate in
Quantitative Finance will instil you with the mathematical rigor to understand these models and the confidence to
question and challenge them.
The correct way to do ERP implementations, how not to fall into bad statistics, risks, project management, align with processes. Multisite implementation of Epicor iScala. Old presentation with a solid foundation for success in ERP rollout. Check it out!
In the current business environment, IT Suppliers have become integral part of the Customer organization and the IT environment and processes of IT Suppliers have a direct impact on the Customer Organization. Even though Operational responsibility might have got transferred to Supplier, but legal and regulatory responsibility will still be with Customer. Hence it is Customer’s responsibility to verify that appropriate controls are in effect to ensure that the organization fulfills its contractual obligations. This topic focuses on some of the key components and the best practices in auditing IT Suppliers for Compliance. It is aligned with one of the ISACA Research paper (Outsourced IT Environments Audit/Assurance Program) with additional information.
PMP eligibility (By PMP Pulse)
for more study material, lectures, free exam preparations, free PMP mock tests follow us at www.pmppulse.com
email us at: marketing@pmppulse.com
The correct way to do ERP implementations, how not to fall into bad statistics, risks, project management, align with processes. Multisite implementation of Epicor iScala. Old presentation with a solid foundation for success in ERP rollout. Check it out!
In the current business environment, IT Suppliers have become integral part of the Customer organization and the IT environment and processes of IT Suppliers have a direct impact on the Customer Organization. Even though Operational responsibility might have got transferred to Supplier, but legal and regulatory responsibility will still be with Customer. Hence it is Customer’s responsibility to verify that appropriate controls are in effect to ensure that the organization fulfills its contractual obligations. This topic focuses on some of the key components and the best practices in auditing IT Suppliers for Compliance. It is aligned with one of the ISACA Research paper (Outsourced IT Environments Audit/Assurance Program) with additional information.
PMP eligibility (By PMP Pulse)
for more study material, lectures, free exam preparations, free PMP mock tests follow us at www.pmppulse.com
email us at: marketing@pmppulse.com
Introduction of CMMI High Maturity Handbook
The Book details the CMMI High Maturity practices and guides in your CMMI L5 Journey. The Book details on how to practically implement CMMI ML5 and how to interpret the High Maturity practices. The Book contains sample cases from CMMI Dev and CMMI Svc, with the entire High Maturity Lifecycle and relevant application of statistical techniques. The book is a must have for everyone in CMMI Journey!
Regulatory Affairs Outsourcing Considerations and ModelsPaul Kuiken
I present a number of issues which are being considered by all organisations in the healthcare, pharmaceutical, biotechnology, and clinical sectors. I presented this to an audience at an outsourcing summit and have tailored this to a more general audience.
I am happy to receive your comments and provide your insights to whether you agree or not with my points or to hear from you regarding your experiences of outsourcing in whatever sector you are interested in.
This lecture tries to demonstrate how to plan and undertake a comprehensive audit of a project, thereby providing that assurance and to explain the role of an auditor, how it could be planned and undertaken, the degrees of assurance that can be given, and how project audits can be aligned to organizational governance.
Internal Audit Best Practices for Safety, Environment, and Quality AuditsNimonik
Nimonik has seen a wide variety of internal Health, Safety, Environmental and Quality (HSEQ) audit programs. They seem to come in all shapes and sizes! Each company tends to focus on different risks and controls.
Whether your organization conforms to ISO 19011 or another internal audit standard, re-focusing your internal audit program on your risks, controls, and operational reality is a key driver for operational excellence.
On March 14th, John Wolfe shared insights from over 20 years as a hands-on HSE Director and as the Sr. Director of Operations Integrity Audit for a global Oil & Gas company. John outlined the attributes of an outstanding Internal audit program. He showed you how you can build out a program tailored to your operations and add tremendous value to your business.
This material is intended to provide project leaders with a foundational understanding of leading practice project management processes, activities, tools, techniques, and deliverables as prescribed the Project Management Institute (PMI).
DevOps is a term for a combination of various software development practices including traditional software development and information technology operations. It shortens the systems development life cycle while delivering features, fixes, and updates. This is ensured by frequent and close alignments with business objectives. It comprises a vast set of cultural philosophies, practices and tools
to increase an organization's ability to deliver applications and services at high velocity.
This document gives insights how DevOps should be designed, what services they should offer, what organizational forms can be chosen (incl. their benefits), which aspects a DevOps governance should cover, how to assess and implement DevOps (DevOps transition), which technologies are important and how processes can be designed based on proven best practices.
Agenda DevOps best practice slide deck:
- DevOps Definition and Overview
- DevOps & Agile maturity
- DevOps Transition
- DevOps Technology
- DevOps Organization
Similar to Scalable integrated program audit (sipa) (20)
A Digital Software Quality Magazine for all the Quality Professionals in IT Industry. This Quarterly Magazine intend to discuss and share new concepts, pilots, analysis related to the modern IT technologies and platform from the Quality perspective. The magazine is promoted by DigitQ.in website. This is collaborative platform to share and know the latest information in Quality field. The intent is to Digitize the Quality Concepts to fit to Modern IT needs.
This presentation provides a basic framework for developing and maintaining the Reusable Repository for software components. The focus is on enhancing reusability by establishing effective system , useful components with improved traceability.
This presentation deals with insights on how an offshore IT organization has to get ready to align with General Data Protection Regulation issued by European union
Today's Startups are tomorrow's Giants! However it can't happen only by time, it needs persistence to grow and establish governance to meet the challenges of growth! This guideline is on growth and governance management system establishment in startups , who are aspiring to be the world leaders, The Startups can follow the respective areas given in this guideline and channelize their energy to build themselves as an organization which can sustain the growth and meet challenges in their path. This guideline is an outcome of recognition, that Start-Ups cant follow many international standards and models to get the best practices, but they need one guidelines which gives them what is necessary to grow and govern!
The slides explain in today's context what a leader means! How he/she is different from manager. The habits of a leader and his towards achieving goals.
Business Decision making is now a days primarily on data and charts, and most of the charts comfortably ignores the time scale, and it is disorder to take decision based without considering the Time scale. This article explains you the need of time dimension and Time Value Bar
Complete mapping with CMMI v1.3 and Agile Scrum practices. Easy interpretation of cmmi practices and how to apply in agile scrum lifecycles. CMMI Development maturity level 3 practices are mapped with agile scrum. Simpler and quick reference guide for practioners.
The Book details on how to approach CMMI Implementation in an organization. It details out the various phases involved in CMMI Implementation and how to plan and execute them. It details on various aspects which we tend to overlook in CMMI Implementation.
Who Should Read?
• Organization looking forward to implement CMMI
• Top Management person, trying to understand how to go about
• SEPG, Program manager and Process Quality members
• Anyone who is interested in understanding the Implementation of CMMI
Why to Read?
• To get complete End to End understanding on CMMI Implementation Lifecycle
• Plan your budget, effort and resources for the program
• Set your expectations clear on CMMI Implementation
• Be aware of the different aspects in Implementation
How it’s different:
• Written from practitioners’ point of view
• Communicates the reality in practical implementation
Word of Caution:
• The book contains only samples and typical examples and they are not comprehensive and to be verified and validated on a particular context for applicability
SMS2ORBIT | launched in 2022 in Mumbai's Andheri area, aims to be the most reliable Bulk SMS Service Provider in Mumbai.
If More Information About The SMS Service Provided By SMS2ORBIT Is Desired, Please Don’t Hesitate To Contact The Business Team. They Can Be Reached At
business@sms2orbit.com Or By Calling 97248 55877.
Comprehensive Water Damage Restoration Serviceskleenupdisaster
Find out how Disaster Kleenup's professional water damage restoration services can quickly and efficiently restore your property. Find more about our advanced techniques and quick action plans. Visit here: https://iddk.com/disaster-cleanup-services/flood-damage/
What Are the Latest Trends in Endpoint Security for 2024?VRS Technologies
In this PDF, Discover the top 2024 endpoint security trends, including zero trust, AI integration, XDR, cloud security, and enhanced mobile protection. VRS Technologies LLC supplies the top level Endpoint Security Service Dubai. For More Info Contact us: +971 56 7029840 Visit us: https://www.vrstech.com/endpoint-security-solutions.html
Courier & Package Tracking System Actually WorksIn Targos
In the world of modern logistics, the courier and package tracking system stands as a pivotal tool, offering transparency and efficiency throughout the shipping process. Let’s delve into the intricacies of courier and package tracking systems and explore how INTARGOS plays a key role in this domain.
Are Gutters Necessary? Explore the details now!AmeliaLauren3
Gutters are typically installed at a slight downward slope to allow water to flow freely towards downspouts or drains – the downspout being the vertical pipe attached to the gutters. The water is subsequently transported by the downspout to either the ground or an underground drainage system. Maintaining a gutter system that is free of blockages and functional requires regular maintenance.
But, many wonder in what situations gutters are required and not required. In this ppt we will discuss in detail the matter, ‘Are Gutters Necessary?’
SECUREX UK FOR SECURITY SERVICES AND MOBILE PATROLsecurexukweb
At Securex UK Ltd we are dedicated to providing top-rated security solutions tailored to your specific needs. With a team of highly trained professionals and cutting-edge technology, we prioritize your safety and peace of mind.
Our commitment to excellence extends beyond traditional security measures. We understand the dynamic nature of security challenges, and our personalized approach ensures that every client receives a bespoke protection plan.
Maximizing Efficiency with Integrated Water Management SystemsIrri Design Studio
Integrated water management systems are essential for improving irrigation design sustainability and efficiency. Irri Design Studio helps customers maximize water consumption, reduce waste, and encourage responsible stewardship of water resources by utilizing cutting-edge technology like drone-based construction updates and BIM modeling. The increasing issues of water shortage and environmental protection require an all-encompassing strategy to water management. Irrigation systems may be planned to optimize water consumption efficiency while guaranteeing the safety of people and the environment by putting new ideas and concepts into practice. Visit our website https://www.irridesignstudio.com/ for more information.
Don't Wait Until It's Too Late! 5-Signs Your Garage Door Needs ReplacingCR Garage Doors
This infographic unveils the 5 telltale signs your garage door needs a replacement. Avoid costly repairs and upgrade to a modern, secure, and silent entryway. Visit our website for more information about garage door replacement.
Website-> https://cr-garagedoors.com/
A Bulgarian work permit is valid for up to one year, after which it can be renewed as long as the conditions of employment have not changed. After obtaining a work permit, the employee will need to apply for a Type D visa at the Bulgarian embassy or consulate in their country. Urgent requirement for Bulgaria 🇧🇬🇧🇬work D Category National Permit Visa ( Indian /Nepali Nationality only) Visa Validity - 3 to 6 months on renewables basis. Job category - General worker/ Helper Salary - 800 Euro @ 8 hrs.+ Over time extra Age- 20- 40 years Total processing time -4-5 Months
DOJO Training Center - Empowering Workforce ExcellenceHimanshu
The document delves into DOJO training, an immersive offline training concept designed to educate both new hires and existing staff. This method follows an organized eight-step process within a simulated work setting. The steps encompass safety protocols, behavioral coaching, product familiarity, production guidelines, and procedural understanding. Trainees acquire skills through hands-on simulations and rehearsal prior to transitioning to actual shop floor duties under supervision. The primary aim is to minimize accidents and defects by ensuring employees undergo comprehensive training, preparing them effectively for their job roles.
Nature’s Paradise Glamorous And Sustainable Designs For Your Outdoor Living S...Landscape Express
Create a harmonious blend of luxury and sustainability in your outdoor living space with eco-friendly kitchens, enchanting water features, and lush plant landscaping. Embrace energy-efficient appliances, solar lighting, rainwater harvesting, and native plants to enhance beauty while reducing environmental impact. Transform your space into a glamorous, eco-conscious retreat for relaxation and social gatherings.
Are Seamless Gutters Worth It? Explore nowacadiaborton
Seamless gutters live up to their name: they are uncomplicated gutters that flow freely without needless joins or seams. They do have seams, but they are limited to the downspouts and corners. Painted metal is used to make seamless gutters. If you're wondering why seamless gutters could be preferable to traditional ones, keep reading this ppt for the advantages.
The Jamstack Revolution: Building Dynamic Websites with Static Site Generator...Softradix Technologies
In this infographic, the Jamstack architecture emphasizes pre-rendered content and decoupling the frontend from the backend. It leverages static site generators (SSGs) to create fast-loading HTML files and APIs for dynamic functionality. Benefits include improved performance, enhanced security, scalability, and ease of deployment. Real-world examples include Netlify, Gatsby, and Contentful. https://softradix.com/web-development/
Delightful Finds: Unveiling the Power of Gifts Under 100JoyTree Global
Stretch your budget and spread joy! This guide explores the world of gifts under 100, proving thoughtful gestures don't require a hefty price tag. Discover unique and practical options for birthdays, holidays, or simply showing someone you care. Find inspiration for every occasion within your budget!
Experience the breathtaking beauty of a Waikiki sunset aboard the MAITAI Catamaran. Sail along the stunning coastline as the sun dips below the horizon, casting vibrant hues across the sky. Enjoy the gentle ocean breeze, refreshing drinks, and a relaxed atmosphere. This unforgettable voyage offers panoramic views of Diamond Head and the Waikiki skyline, making it the perfect way to end your day in paradise. Join us for a memorable sunset cruise you won't forget. Please visit our website: https://www.maitaicatamaran.net/ and call us at 808-922-5665 for additional information.
Looking for the Reliable Logistics Solutions in India? Discover unparalleled efficiency and reliability with our top-rated logistics services. We specialize in streamlining supply chains, ensuring timely deliveries, and providing cutting-edge tracking solutions. Our platform caters to businesses of all sizes, offering customizable logistics solutions to meet your unique needs. With a focus on innovation and customer satisfaction, we are your trusted partner in navigating the complexities of logistics in India. Choose us for seamless, cost-effective, and scalable logistics solutions. Experience the best in Indian logistics with our expert team by your side.
Blessed Marine Automation offers cutting-edge marine automation solutions tailored to enhance vessel efficiency and safety. From advanced control systems to remote monitoring, our services empower maritime operations worldwide. Explore our comprehensive range of products and services to optimize your vessel's performance. https://www.blessedmarineautomation.com/
Get your dream bridal look with top North Indian makeup artist - Pallavi KadalePallavi Makeup Artist
Achieve your dream wedding day look with renowned North Indian bridal makeup artist, Pallavi Kadale. With years of experience, her expert techniques and skills will leave you looking flawless and radiant. Book today for your perfect bridal makeover.
2. Scope and Applicability
Scope:
This presentation explains the method of Scalable & Integrated
Program Audit and its benefits in performing audits in large & complex
programs with multiple reference/expectations.
Applicability:
The framework and explanation is limited to Software Industry,
however the same can be leveraged to other industries with adequate
care.
3. Fitness of Audit programs for Large programs/Engagements
Challenges in Auditing
Lack of recognition of complexity in
planning
Long duration Audit Program
Inadequate Coverage to give
confidence on report
Not involving all roles in program
Audit teams are not composed with
Right capabilities
Engagement undergo multiple audits
from various teams
Unclear objectives and ineffective
results
Auditors’ lost in vastness of
information and Jargons
Large Engagements
Complex governance
Multiple Services offered
Many suppliers
Tools dominance and virtual environments
Legal needs/data protection
Increased Communication channels
4. Scalable & Integrated Program Audits
Scalable: Audit planning can be ramped up or down based on the Engagement/practice needs.
Integrated: Multifunctional & multi objective audit performed in co-ordinated manner with shared
values and clear responsibilities
Program : Covering delivery of services, governance and capabilities to achieve successful results
Audit: Evaluation of execution of activities as per expected norms/references , on sample basis, to
ensure the management/client/social objectives are met.
Scalable & Integrated Program Audit is an effective Auditing framework for handling large complex
programs/ practices in organization, which works on Value Generation, Compliance, capability and
Risk evaluation principles. This differs from traditional audits interms of ability to handle larger
teams, matrix communications, mammoth information, multiple norms in a systematic manner and
yielding results.
5. SIPA Framework – Value Layers
Audit Execution Layer
Integrated Program Layer
Strategizing & Scaling
Up Layer
• Objective & Value Generation
• Sponsor/mgmt, Practice /Program Lead
Auditor
• Key Focus Areas
• Strategizing Audit Program
• Shared Objectives
• Initial information processing
• Interface &Interactive Points
• Governance & resources
• Conduct & Reporting Norms
• Tactical planning
• Consolidation and Realignment
• Information and evidence processing
• Report development & Agreement
6. SIPA - Framework
Auditor by Fn & Stream
Auditor by Fn & Stream
Auditee by role
Audit
Strategy
& Value
Generati
on
Shared
Objective
s
Stream
Objective
s
Audit
Program
Level
Objective
s
Tactical
Schedule
Prepare Stream Audit Execute Report
Activity 1 Activity 2 Activity 3
Stream 1
Tactical
Schedule
Prepare Stream Audit Execute Report
Activity 1 Activity 2 Activity 3
Stream 2
Tactical
Schedule
Prepare Stream Audit Execute Report
Activity 1 Activity 2 Activity 3
Stream 3
Tactical
Schedule
Prepare Stream Audit Execute Report
Activity 1 Activity 2 Activity 3
Stream N
Daily
Standup
Daily Report
Consolidation
ThreadLog
QueryNotes
Program LA
Functional LA’s
Engagement (or)
Practice Mgmt
ProgramAuditPlan
ObjectiveMapping
Tactical
Schedule
Prepare Mgmt Audit Execute Report
Activity 1 Activity 2 Activity 3
Governance
Tactical
Schedule Prepare Stream Audit Execute Report
Activity 1 Activity 2 Activity 3
3C (Capability, Competency & Communication)
Objective Scope Budget
Value
Generation
Top Management/
Sponsor
Practice LA/Program LA
Practice Level for Multiple Programs
7. Are Both Condition Same?
Engagement with a team of 50 members and its has to have compliance with contractual
requirements and ISO9001 standard. The team is working on Mobile application
development.
Engagement with 900 members and is looking forward to submit to client the report on
compliance to contractual requirements, risks and value addition performed in engagements
and has reference to data security, healthcare and Business continuity aspects. The
Engagement services 4 major type of work (development, maintenance, data center
management, migration of code) and working across multiple domains with virtual
environment and many automation activities are in progress. In addition there is high
dependency with external service provider in maintaining service levels. Also 50 of testers
are working as sub contractor in the engagement. Around 12 certified project managers
handling various activities in engagement.
Unfortunately our Auditing Approach , many a times doesn’t recognize the
difference.
8. Planning in SIPA
• Get Objectives from Management
(and/or) Audit function Head
• Collect the reference compliance norms
• Understand Client and Interested parties
expectations
• Collect information about Engagement/
Practice (multiple engagements) over
people, operations, sites, suppliers ,etc
• Agree on Scope and Objectives
• Provide initial estimation to agree on
Budget and availability on logistics
Finalize Objective & Scoping
• Assess the different Competencies
needed for Audit
• Involve stakeholders to get nominated
Auditors
• Conduct expectation setting session
• Design Structure of Audit teams
• Develop shared vision and norms
• Identify critical components & Areas to
check and share the responsibilities
Design for Outcome
• Prepare detailed Schedule in alignment
with engagement/practice Contact
members
• Ensure Coverage and Scope
• Ensure Auditee Identification at
practice/program/stream level
• Identify if any additional auditee’s are
needed (supplier/extended support)
• Plan the logistics of Program
• Communicate schedule and high level
method
Plan Elements
9. Planning Factors by Level
References/NormsAudit Focus
• Regulatory Audit
• Process Audit
• Financial Audit
• Security Audit
• Functional Audit
• Performance Audit
• Business Continuity Audit
• Domain Based Audit
• Technology/Architecture
Audit
• Standards Readiness Audit
Third party audits are not covered in this method , as they have pre-
defined guidance in most cases.
• Contracts and Annexures
• Quality System
• Policies and procedure
• Org/Practice/guidelines
• Statutory/Regulatory
Requirements
• International & national
Standards
• Best Practices in Industry
• Client Mandates/ Supplier
Standards
• Company Objectives
• Practice/Engagement Roles
& Reporting
• Delivery of Services
• Policies and procedure
• Size of team & Grades of
employees
• Operation sites
• Tools & Technology
• No. of support teams
• Suppliers and type of
Contracts
• Current Activities
• Other Select Information
Characteristics
10. Steps Involved in Planning
Initiation with
Management
Objective
Finalization
Study
Characteristics
Design Value
addition with
Functional Auditors
Develop a Practice
Audit/Program
Audit Plan
Initiate Shared
Vision and Ground
rules
Collect information
on
Practice/Program
Plan Practice level
Schedule(or)
Program Level
Prepare Auditing
Aids
Plan logistics
Plan stream level
Objectives
Collect Information
on Streams
Plan Stream Level
Schedule
Collaborate with
Auditors
Finalize Planning
When Practice Level Audit is required , then multiple program
level Audits can be subset of the Practice level Audit. Each
program audit can have multiple stream level audits.
StrategizeProgramPlanStreamPlan
11. Scalability & Integration in Audit
Practice Level Multiple Programs
Program level Multiple Streams
Quality
Process
Regulatory
Security
Cyber security
Business continuity
Technical
Architecture
Configuration
Other
Additions
Stream : upto 150 member
Program: Upto 900 member or not more than 6 Stream
Practice: upto 5000 member or not more than 6 programs
Not More than 5 focus area
Scalability Integration
12. Execution
Opening Meeting Audit Execution Report Preparation Presentation
Opening
Meeting
Opening
Meeting
Practice Level Program level
Stand up
Meeting
Program level
Program Governance Audit
Stream Level Audit
Stream Level Audit
Stream Level Audit
Daily Report
Consolidate
ThreadLog
Query Notes
Stand up
Meeting Program Governance Audit
Stream Level Audit
Stream Level Audit
Stream Level Audit
Daily Report
Consolidate
ThreadLog
Day N-aDay 1
Practice Level
(As Applicable with Program
connect)
Stand up
Meeting
Daily Report
Consolidate
ThreadLog
QueryNotes
Reporting &
Closing
Reporting &
Closing
Thread Log: Helps auditors to share threads with other auditors in a stream or
governance level. Across programs as required
Query Notes: To be verified items which they want to take it with auditors.
Typically connects the next day standup meeting.
13. Typical Areas to Check
• Client/Management Expectations
• Contract/scope Commitment Mapping
in planning
• Budget provision for Execution
• Management Structure
• Roles and Responsibilities
• Delivery Methodology Identification
• Risk Identification and Management
• RACI/Stakeholder Identification
• Deliverables and Acceptance criteria
• Standards/Regulatory Requirements
• Resource Needs
• Resource& Service Procurement
• Internal/External Service Provider
• Security
• Business Continuity
• Performance Management
• Compliance Checks
• Manage Teams
Governance 3C (Competency, Capability &
Communication)
• Resource Competency Management
• Training and Development
• Motivation and People Performance
• Dynamic Resource need handling
• Assets and Roles alignment with
Commitment
• Develop/maintain Systems and
Tools
• Develop process flows/Processes
• Capability measurement
• Client Expectation Tracing
• Scope/Change Management &
Communication
• Reporting and Sharing
• Decision Sharing
• Internal Team Communication
• External Communication
• Facilities and Infrastructure
• Control of data/Records
• Stream Level Planning
• Resource management
• Risk management
• Deliverable Management
• Traceability of decisions
• Capacity and availability
management
• Back up and Security
• Lifecycle and Validation points
• Budget Consumption and Key
Performance measures
• Client expectations met
• monitoring and control
• Service provider tracking
• Regulatory/Standard
application/compliance
• Resource Onboard/off-board
• Trainings
• Reporting
• Tools/licenses/assets and
Infrastructure
Stream
• Cost Savings
• Quality Improvements
• On-time performance
• Compliance
management
• Operational
Efficiency
• Improvement &
Innovations
• Career path of
resources
• Client Satisfaction
Improvement
• Additional Value
offerings
• Technology
adherence/utilization
• ROI on Key Decisions
• Succession Plan
Value chain
14. ReportingAuditObjective
Practice Evidence
Program Evidence
Stream Evidence
Deviations
Weakness
Strengths
Opportunities for
Improvement
Focus Area 1 Deviation
(Ex: Regulatory/Process)
Focus Area “N”
Deviation
(Ex: Security)
Practice Evidence
Program Evidence
Stream Evidence
Report
Value Chain
Results
Report
consolidation
Draft Report
Preparation
Management
presentation
Final Report
Submission
Practice LA/Program LA
Top Management/
Sponsor
Functional LA’s
Engagement (or)
Practice Mgmt
SharedVision
15. Conclusion
SIPA gives better control and focus over audits
Flexibility to scale up to required level and Add multifunctional Auditors leads to
new possibilities
Audits are not merely compliance focused / Risk assessments instead leads better
Progress and Value addition
Organized Audits reduces chaos and better plans enable auditee to be in comfort
to do reality check
Reduces frequent audits on engagement/practices by various functions
Increases Client /Management confidence in Audits
Improves effectiveness of Audit and Better Reporting.