SlideShare a Scribd company logo

Assurance and the 3 E’s: Efficiency, Effectiveness, and Economy

S
sophiacuiry

The role of auditors extends beyond providing assurance on companies’ financial information. In light of today’s rapidly evolving business environment and the increasing integration between technology and business processes, assurance services also play a role in ensuring that business processes are effective, efficient, and economical.

TechnologyBusiness
1 of 16
Assurance and the Three E’s: Efficiency, Effectiveness, and Economy Ruoyu (Sophia) Cui
Agenda Role of Assurance Processionals within Assurance Frameworks Opportunities within Internal Control Frameworks Tools, Methodologies, and Techniques Market for Consulting Services Impact of SOX and Role of Internal Auditor
Role of Assurance Processionals within Assurance Frameworks Canadian Auditing Standards (CAS) Understanding of entity, including internal controls Assess adequacy of controls Communicate control deficiencies and other significant matters International Auditing and Assurance Standards Board (IAASB) Assertion based framework facilitate better governance More timely identification and resolution of control deficiencies
Role of Assurance Processionals within Assurance Frameworks (cont’d) SOX 404 Management to report on assessment of internal control Auditor to assess management’s report June 2010 Proviti SOX compliance survey1: “70 percent of the 400 executive respondents in year four or beyond of their SOX-compliance programs agreed that improving their internal control environment was highly beneficial to their operations”, “SOX compliance…has triggered benefits that include increased efficiency and effectiveness of processes and operations, greater understanding of control design, and operating effectiveness.” 1S. Glover, “SOX Compliance Proves Beneficial To Organizations, Fuels Risk Consciousness”, National Underwriter (Nov 2010): 34, 36. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).
Opportunities within Internal Control Frameworks COSO Promotes risk-based approach to designing the internal control system COBIT Three integrated dimensions: IT processes, IT resources, business requirements (including effectiveness and efficiency) Four domains in IT governance : planning, acquisition and implementation, delivery and support, and monitoring and evaluation
COBIT Framework for IT Process Defined within the Four Domains of IT Governance Source: COBIT 3rd Edition Implementation Tool Set. COBIT Steering Committee and the IT Governance Institute. (July 2000).
Tools, Methodologies, and Techniques Enterprise Resource Planning (ERP) and Business Process Management (BPM) systems Continuous auditing and business monitoring Risk-focused approach to internal audit
ERP and BPM Systems ERP Eliminates duplicate files and redundant manual data entry. Incorporates control features that support SOX and other types of compliance E.g. establishes security roles, user IDs, passwords, and specific module accesses Unable to retaining complete histories in the transaction processes Lack of documentation of policies and procedures. Difficult to obtain a consolidated picture of the entity’s operations BPM Fills in gaps in the ERP system Integration of information contained in separate business applications Self-documenting and secure audit trails
Continuous Auditing and Business Monitoring Identify key risk indicators (KRI) Enhance controls over current and potential risks Software to assist management with regular evaluation
Risk-Focused Approach to Internal Audit “KMAP” (KPMG’s Management Assurance Process) internal audit methodology PwC 2012 Internal Audit Report: “internal audit groups with a risk-centric mind-set will focus on providing assurance over both risk and control by 2012”1 1R. Cathcart and G. Kapoor, “An Internal Audit Upgrade”, The Internal Auditor, 67, no. 3 (June 2010): 47. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).
Market for Consulting Services ERP and BPM systems design and implementation Change management Adoption of continuous auditing SOX compliance Evaluation control processes Internal audit services
Impact of SOX 9 types of non-audit services prohibited, including: financial information system design and implementation internal auditing outsourcing expert services Non-audit services received from external auditors pre-SOX were not replaced by hiring other consulting firms1 Non-audit services were either permanently reduced or absorbed into the workload of companies’ internal auditors1 Increased level of responsibility placed on internal auditors 1 C. Grant, N. Park, and S. Wheeler, “Non-audit, external audit, and internal audit services in a post-SOX world”, Internal Auditing 1 (Jan 2009): 28-32, 34-35. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).
Conclusion Assurance professionals can assist businesses in improving processes: Under the current assurance and internal control frameworks Through consulting work relating to design and implementation of systems/tools/methodologies.   SOX severely limits external auditors’ ability to perform non-assurance type services Increased responsibility for internal auditors Need to ensure internal audit staff has the necessary level of expertise and competence
Thank you!
List of References B. Tsay, “Designing an Internal Control Assessment Program Using COSO's Guidance on Monitoring”, The CPA Journal 80, no. 5, (May 1): 52-57. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed July 3, 2011).   Canadian Auditing Standards, Knotia.ca, accessed July 2, 2011.   C. Grant, N. Park, and S. Wheeler, “Non-audit, external audit, and internal audit services in a post-SOX world”, Internal Auditing 1 (Jan 2009): 28-32, 34-35. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011)   C. O’Connor, “IT Process and Control Frameworks” (University of Waterloo, Waterloo, ON, Feb 8, 2010).   COBIT 3rd Edition Implementation Tool Set. COBIT Steering Committee and the IT Governance Institute. (July 2000).   E. Zimmer, “The Next Wave of Business Monitoring”, The Internal Auditor, 67, no. 4 (Aug 2010): 43. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   F. Lin, L. Guan, and W. Fang. “Critical Factors Affecting the Evaluation of Information Control Systems with the COBIT Framework”, Emerging Markets, Finance & Trade 46, no. 1, (January 1, 2010): 42.  http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed July 4, 2011).  
List of References (cont’d) J. Lollar, H. Beheshti, and B. Whitlow, “The role of integrative technology in competitiveness”, Competitiveness Review, 20, no. 5 (Sept 2010): 423-433. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   J. Oringel and G. R. Aldhizer, “Continuous Auditing and Monitoring: Enhancing the Efficiency and Effectiveness of Auditing and ERM”, Internal Auditing, Vol. 24, Iss. 5 (Oct 2009): 17-26. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   K. Lumpur, “KPMG offers cost-effective approach to managing risk”, Business Times (Feb 2001): 4. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   K. Walker, “SOX, ERP, and BPM: A Trifecta That Can Make Your Business Run Better”, Strategic Finance, 90, no. 6 (Dec 2010): 47-53. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   M. Jones and J. Iwasaki, “Governance Benefits of New Assurance Reports,” International Journal of Disclosure and Governance 8, no. 1 (Feb 2011): 4-15. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   R. Cathcart and G. Kapoor, “An Internal Audit Upgrade”, The Internal Auditor, 67, no. 3 (June 2010): 47. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   S. Glover, “SOX Compliance Proves Beneficial To Organizations, Fuels Risk Consciousness”, National Underwriter (Nov 2010): 34, 36. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).

Recommended

Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraJenard Wachira
 
Ch 13. substantive procedures
Ch 13. substantive proceduresCh 13. substantive procedures
Ch 13. substantive proceduresSazzad Hossain, ITP, MBA, CSCA™
 
Audit Fungsi Produksi dan Operasi
Audit Fungsi Produksi dan OperasiAudit Fungsi Produksi dan Operasi
Audit Fungsi Produksi dan OperasiHendy Surjono
 
Survei Pendahuluan - Audit Internal
Survei Pendahuluan - Audit InternalSurvei Pendahuluan - Audit Internal
Survei Pendahuluan - Audit InternalHendy Surjono
 
Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Sazzad Hossain, ITP, MBA, CSCA™
 
Risk Management and Internal Control in the Public Sector
Risk Management and Internal Control in the Public SectorRisk Management and Internal Control in the Public Sector
Risk Management and Internal Control in the Public SectorInternational Federation of Accountants
 
Soal etap
Soal etapSoal etap
Soal etapanisa_13
 
Value based internal auditing - Nilai Dasar Internal Audit
Value based internal auditing - Nilai Dasar Internal AuditValue based internal auditing - Nilai Dasar Internal Audit
Value based internal auditing - Nilai Dasar Internal AuditDr .Maizar Radjin, SE., M.Ak., QIA., QRMA, CRGP
 

Recommended

Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraJenard Wachira
 
Ch 13. substantive procedures
Ch 13. substantive proceduresCh 13. substantive procedures
Ch 13. substantive proceduresSazzad Hossain, ITP, MBA, CSCA™
 
Audit Fungsi Produksi dan Operasi
Audit Fungsi Produksi dan OperasiAudit Fungsi Produksi dan Operasi
Audit Fungsi Produksi dan OperasiHendy Surjono
 
Survei Pendahuluan - Audit Internal
Survei Pendahuluan - Audit InternalSurvei Pendahuluan - Audit Internal
Survei Pendahuluan - Audit InternalHendy Surjono
 
Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Sazzad Hossain, ITP, MBA, CSCA™
 
Risk Management and Internal Control in the Public Sector
Risk Management and Internal Control in the Public SectorRisk Management and Internal Control in the Public Sector
Risk Management and Internal Control in the Public SectorInternational Federation of Accountants
 
Soal etap
Soal etapSoal etap
Soal etapanisa_13
 
Value based internal auditing - Nilai Dasar Internal Audit
Value based internal auditing - Nilai Dasar Internal AuditValue based internal auditing - Nilai Dasar Internal Audit
Value based internal auditing - Nilai Dasar Internal AuditDr .Maizar Radjin, SE., M.Ak., QIA., QRMA, CRGP
 
Coso illustrative tool
Coso illustrative toolCoso illustrative tool
Coso illustrative toolSARVJEET KAUSHAL
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing PresentationVernon Benjamin
 
Three Lines of Defense
Three Lines of DefenseThree Lines of Defense
Three Lines of DefenseСветла Иванова
 
Internal Auditing - Performance Standards
Internal Auditing - Performance StandardsInternal Auditing - Performance Standards
Internal Auditing - Performance Standardsaldenmae
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal controlTommy Zul Hidayat
 
Seven new ways to present evaluation findings
Seven new ways to present evaluation findingsSeven new ways to present evaluation findings
Seven new ways to present evaluation findingsGlenn O'Neil
 
Standar akuntansi jepan1
Standar akuntansi jepan1Standar akuntansi jepan1
Standar akuntansi jepan1realmeity
 
PPT STI.pptx
PPT STI.pptxPPT STI.pptx
PPT STI.pptxGiannaAngela1
 
Are You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkAre You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkBlackLine
 
Sistem pengendalian manajemen sektor publik
Sistem pengendalian manajemen sektor publikSistem pengendalian manajemen sektor publik
Sistem pengendalian manajemen sektor publikOcta Libriyanti
 
External Audit
External AuditExternal Audit
External AuditIFAD International Fund for Agricultural Development
 
etika profesi audit operasional dan audit kepatuhan
etika profesi audit operasional dan audit kepatuhanetika profesi audit operasional dan audit kepatuhan
etika profesi audit operasional dan audit kepatuhanperisuka
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bankMohammad Halim Stanikzai
 
Survei pendahuluan audit internal
Survei pendahuluan audit internalSurvei pendahuluan audit internal
Survei pendahuluan audit internalppt education
 
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptxAUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptxIrfanJayaKusumah
 
Coso framework
Coso frameworkCoso framework
Coso frameworkDarryl Woolley
 
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...Abdiansyah Prahasto
 
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911Sri Apriyanti Husain
 
Kasus simulasi 1 hal 1 30 level 1
Kasus simulasi 1 hal 1 30 level 1Kasus simulasi 1 hal 1 30 level 1
Kasus simulasi 1 hal 1 30 level 1amoyatmo
 
Basic internal auditing
Basic internal auditingBasic internal auditing
Basic internal auditingKhalid Aziz
 
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...Human Capital Media
 
The New 3 E's of Education
The New 3 E's of EducationThe New 3 E's of Education
The New 3 E's of EducationJoquetta Johnson
 

More Related Content

What's hot

Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing PresentationVernon Benjamin
 
Internal Auditing - Performance Standards
Internal Auditing - Performance StandardsInternal Auditing - Performance Standards
Internal Auditing - Performance Standardsaldenmae
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal controlTommy Zul Hidayat
 
Seven new ways to present evaluation findings
Seven new ways to present evaluation findingsSeven new ways to present evaluation findings
Seven new ways to present evaluation findingsGlenn O'Neil
 
Standar akuntansi jepan1
Standar akuntansi jepan1Standar akuntansi jepan1
Standar akuntansi jepan1realmeity
 
Are You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkAre You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkBlackLine
 
Sistem pengendalian manajemen sektor publik
Sistem pengendalian manajemen sektor publikSistem pengendalian manajemen sektor publik
Sistem pengendalian manajemen sektor publikOcta Libriyanti
 
etika profesi audit operasional dan audit kepatuhan
etika profesi audit operasional dan audit kepatuhanetika profesi audit operasional dan audit kepatuhan
etika profesi audit operasional dan audit kepatuhanperisuka
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bankMohammad Halim Stanikzai
 
Survei pendahuluan audit internal
Survei pendahuluan audit internalSurvei pendahuluan audit internal
Survei pendahuluan audit internalppt education
 
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptxAUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptxIrfanJayaKusumah
 
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...Abdiansyah Prahasto
 
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911Sri Apriyanti Husain
 
Kasus simulasi 1 hal 1 30 level 1
Kasus simulasi 1 hal 1 30 level 1Kasus simulasi 1 hal 1 30 level 1
Kasus simulasi 1 hal 1 30 level 1amoyatmo
 
Basic internal auditing
Basic internal auditingBasic internal auditing
Basic internal auditingKhalid Aziz
 

What's hot (20)

Coso illustrative tool
Coso illustrative toolCoso illustrative tool
Coso illustrative tool
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing Presentation
 
Three Lines of Defense
Three Lines of DefenseThree Lines of Defense
Three Lines of Defense
 
Internal Auditing - Performance Standards
Internal Auditing - Performance StandardsInternal Auditing - Performance Standards
Internal Auditing - Performance Standards
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal control
 
Seven new ways to present evaluation findings
Seven new ways to present evaluation findingsSeven new ways to present evaluation findings
Seven new ways to present evaluation findings
 
Standar akuntansi jepan1
Standar akuntansi jepan1Standar akuntansi jepan1
Standar akuntansi jepan1
 
PPT STI.pptx
PPT STI.pptxPPT STI.pptx
PPT STI.pptx
 
Are You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkAre You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls Framework
 
Sistem pengendalian manajemen sektor publik
Sistem pengendalian manajemen sektor publikSistem pengendalian manajemen sektor publik
Sistem pengendalian manajemen sektor publik
 
External Audit
External AuditExternal Audit
External Audit
 
etika profesi audit operasional dan audit kepatuhan
etika profesi audit operasional dan audit kepatuhanetika profesi audit operasional dan audit kepatuhan
etika profesi audit operasional dan audit kepatuhan
 
Internal control and internal audit presentation for bank
Internal control and internal audit presentation for bankInternal control and internal audit presentation for bank
Internal control and internal audit presentation for bank
 
Survei pendahuluan audit internal
Survei pendahuluan audit internalSurvei pendahuluan audit internal
Survei pendahuluan audit internal
 
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptxAUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
AUDITING_INTERNAL_AUDIT_PRESENTATION.pptx
 
Coso framework
Coso frameworkCoso framework
Coso framework
 
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
IPPF dan standar IIA terbaru (2017) serta implikasinya terhadap aktivitas int...
 
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
Psak 63-laporan-hiperinflasi-ias-29-fr-hiperinflation-economic-240911
 
Kasus simulasi 1 hal 1 30 level 1
Kasus simulasi 1 hal 1 30 level 1Kasus simulasi 1 hal 1 30 level 1
Kasus simulasi 1 hal 1 30 level 1
 
Basic internal auditing
Basic internal auditingBasic internal auditing
Basic internal auditing
 

Viewers also liked

The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...Human Capital Media
 
The New 3 E's of Education
The New 3 E's of EducationThe New 3 E's of Education
The New 3 E's of EducationJoquetta Johnson
 
Assessment: Achieving improved efficiency, effectiveness, educational integri...
Assessment: Achieving improved efficiency, effectiveness, educational integri...Assessment: Achieving improved efficiency, effectiveness, educational integri...
Assessment: Achieving improved efficiency, effectiveness, educational integri...Diana Quinn
 
Performance audit management for results
Performance audit management for resultsPerformance audit management for results
Performance audit management for resultsicgfmconference
 
IIA Press Release CASE STUDY - 2015
IIA Press Release CASE STUDY - 2015IIA Press Release CASE STUDY - 2015
IIA Press Release CASE STUDY - 2015Cuong Manh Nguyen
 
OAGNZ Biosecurity Performance Audit in5slides
OAGNZ Biosecurity Performance Audit in5slidesOAGNZ Biosecurity Performance Audit in5slides
OAGNZ Biosecurity Performance Audit in5slidesTim Kirby
 
NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E...
NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E... NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E...
NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E...Dr. Raju M. Mathew
 
How you can enhance the efficiency and effectiveness of teaching and learning...
How you can enhance the efficiency and effectiveness of teaching and learning...How you can enhance the efficiency and effectiveness of teaching and learning...
How you can enhance the efficiency and effectiveness of teaching and learning...Jisc
 
Performance audit adding value
Performance audit adding valuePerformance audit adding value
Performance audit adding valueicgfmconference
 
Cost Audit- An Overview
Cost Audit- An OverviewCost Audit- An Overview
Cost Audit- An OverviewNikita Jangid
 
Internal control system
Internal control systemInternal control system
Internal control systemHina Varshney
 
The concept of efficiency and effectiveness
The concept of efficiency and effectivenessThe concept of efficiency and effectiveness
The concept of efficiency and effectivenessFrank Nyarko
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditingHardik Shah
 
Type of auditing
Type of auditingType of auditing
Type of auditingDharmik
 
Auditing (Introduction to Auditing)
Auditing (Introduction to Auditing) Auditing (Introduction to Auditing)
Auditing (Introduction to Auditing) Noorulhadi Qureshi
 
Priciples of management ppt final
Priciples of management ppt finalPriciples of management ppt final
Priciples of management ppt finalrajakamalesha
 
The Three E's of Leadership
The Three E's of LeadershipThe Three E's of Leadership
The Three E's of LeadershipSean Si
 

Viewers also liked (20)

The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
The Three E's of Corporate Education in the 21st Century: Economy, Ecology an...
 
The New 3 E's of Education
The New 3 E's of EducationThe New 3 E's of Education
The New 3 E's of Education
 
Assessment: Achieving improved efficiency, effectiveness, educational integri...
Assessment: Achieving improved efficiency, effectiveness, educational integri...Assessment: Achieving improved efficiency, effectiveness, educational integri...
Assessment: Achieving improved efficiency, effectiveness, educational integri...
 
Performance audit management for results
Performance audit management for resultsPerformance audit management for results
Performance audit management for results
 
IIA Press Release CASE STUDY - 2015
IIA Press Release CASE STUDY - 2015IIA Press Release CASE STUDY - 2015
IIA Press Release CASE STUDY - 2015
 
OAGNZ Biosecurity Performance Audit in5slides
OAGNZ Biosecurity Performance Audit in5slidesOAGNZ Biosecurity Performance Audit in5slides
OAGNZ Biosecurity Performance Audit in5slides
 
NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E...
NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E... NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E...
NEW THEORIES AND STRATEGIES OF LEARNING, TEACHING AND RESEARCH FOR GREATER E...
 
How you can enhance the efficiency and effectiveness of teaching and learning...
How you can enhance the efficiency and effectiveness of teaching and learning...How you can enhance the efficiency and effectiveness of teaching and learning...
How you can enhance the efficiency and effectiveness of teaching and learning...
 
Performance audit adding value
Performance audit adding valuePerformance audit adding value
Performance audit adding value
 
Cost Audit- An Overview
Cost Audit- An OverviewCost Audit- An Overview
Cost Audit- An Overview
 
Cost audit
Cost auditCost audit
Cost audit
 
8. internal control new
8. internal control new8. internal control new
8. internal control new
 
Internal control system
Internal control systemInternal control system
Internal control system
 
The concept of efficiency and effectiveness
The concept of efficiency and effectivenessThe concept of efficiency and effectiveness
The concept of efficiency and effectiveness
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditing
 
Type of auditing
Type of auditingType of auditing
Type of auditing
 
Auditing (Introduction to Auditing)
Auditing (Introduction to Auditing) Auditing (Introduction to Auditing)
Auditing (Introduction to Auditing)
 
Priciples of management ppt final
Priciples of management ppt finalPriciples of management ppt final
Priciples of management ppt final
 
Audit presentation
Audit presentationAudit presentation
Audit presentation
 
The Three E's of Leadership
The Three E's of LeadershipThe Three E's of Leadership
The Three E's of Leadership
 

Similar to Assurance and the 3 E’s: Efficiency, Effectiveness, and Economy

Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002SARVJEET KAUSHAL
 
2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College Sector2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College SectorNikhat Rasheed
 
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)Muhammad Azmy
 
The Effect of Working Experience, Integrity, Competence, and Organizational C...
The Effect of Working Experience, Integrity, Competence, and Organizational C...The Effect of Working Experience, Integrity, Competence, and Organizational C...
The Effect of Working Experience, Integrity, Competence, and Organizational C...iosrjce
 
Derby davis coordination and cooperation between sa is and internal auditors ...
Derby davis coordination and cooperation between sa is and internal auditors ...Derby davis coordination and cooperation between sa is and internal auditors ...
Derby davis coordination and cooperation between sa is and internal auditors ...icgfmconference
 
Improving effectiveness of internal auditing
Improving effectiveness of internal auditingImproving effectiveness of internal auditing
Improving effectiveness of internal auditingPECB
 
SOX ICMS Implmenetation - 2007
SOX ICMS Implmenetation - 2007SOX ICMS Implmenetation - 2007
SOX ICMS Implmenetation - 2007Slava Gorbunov
 
Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...
Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...
Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...NAFCU Services Corporation
 
Find a recently (post-2010) published study in your field which .docx
Find a recently (post-2010) published study in your field which .docxFind a recently (post-2010) published study in your field which .docx
Find a recently (post-2010) published study in your field which .docxericn8
 
Week 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docx
Week 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docxWeek 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docx
Week 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docxjessiehampson
 
The use of accounting information systems in analytical procedures for the au...
The use of accounting information systems in analytical procedures for the au...The use of accounting information systems in analytical procedures for the au...
The use of accounting information systems in analytical procedures for the au...Alexander Decker
 
Accounting information system
Accounting information systemAccounting information system
Accounting information systemAlexander Decker
 
Audit Report And Internal Control Evaluation
Audit Report And Internal Control EvaluationAudit Report And Internal Control Evaluation
Audit Report And Internal Control EvaluationRochelle Schear
 
The effect of risk based audit approach on the implementation of internal co...
The effect of risk based audit approach on the implementation of internal co... The effect of risk based audit approach on the implementation of internal co...
The effect of risk based audit approach on the implementation of internal co...inventionjournals
 
The impact of internal control activities on financial performance of
The impact of internal control activities on financial performance ofThe impact of internal control activities on financial performance of
The impact of internal control activities on financial performance ofAlexander Decker
 
Critical Success Factors Influencing SOA implementations in Healthcare
Critical Success Factors Influencing SOA implementations in Healthcare Critical Success Factors Influencing SOA implementations in Healthcare
Critical Success Factors Influencing SOA implementations in Healthcare Drkonk
 

Similar to Assurance and the 3 E’s: Efficiency, Effectiveness, and Economy (20)

Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002
 
2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College Sector2008 Pioneering The Employment Services Audit In The Ontario College Sector
2008 Pioneering The Employment Services Audit In The Ontario College Sector
 
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
CONTROL & AUDIT INFORMATION SYSTEM (HALL, 2015)
 
SOX 2016 - PART I - COSO 2013
SOX 2016 - PART I - COSO 2013SOX 2016 - PART I - COSO 2013
SOX 2016 - PART I - COSO 2013
 
The Effect of Working Experience, Integrity, Competence, and Organizational C...
The Effect of Working Experience, Integrity, Competence, and Organizational C...The Effect of Working Experience, Integrity, Competence, and Organizational C...
The Effect of Working Experience, Integrity, Competence, and Organizational C...
 
Derby davis coordination and cooperation between sa is and internal auditors ...
Derby davis coordination and cooperation between sa is and internal auditors ...Derby davis coordination and cooperation between sa is and internal auditors ...
Derby davis coordination and cooperation between sa is and internal auditors ...
 
Improving effectiveness of internal auditing
Improving effectiveness of internal auditingImproving effectiveness of internal auditing
Improving effectiveness of internal auditing
 
SOX ICMS Implmenetation - 2007
SOX ICMS Implmenetation - 2007SOX ICMS Implmenetation - 2007
SOX ICMS Implmenetation - 2007
 
Measuring Institutional Performance: Can governance indices help?
Measuring Institutional Performance: Can governance indices help? Measuring Institutional Performance: Can governance indices help?
Measuring Institutional Performance: Can governance indices help?
 
Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...
Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...
Internal Control Certification – It’s Not Just an Accounting Thing (Credit Un...
 
Find a recently (post-2010) published study in your field which .docx
Find a recently (post-2010) published study in your field which .docxFind a recently (post-2010) published study in your field which .docx
Find a recently (post-2010) published study in your field which .docx
 
Week 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docx
Week 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docxWeek 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docx
Week 1 Self-Guided QuizRunning head WEEK 1 SELF-GUIDE.docx
 
Swetana A Purohit
Swetana A PurohitSwetana A Purohit
Swetana A Purohit
 
The use of accounting information systems in analytical procedures for the au...
The use of accounting information systems in analytical procedures for the au...The use of accounting information systems in analytical procedures for the au...
The use of accounting information systems in analytical procedures for the au...
 
Accounting information system
Accounting information systemAccounting information system
Accounting information system
 
Audit Report And Internal Control Evaluation
Audit Report And Internal Control EvaluationAudit Report And Internal Control Evaluation
Audit Report And Internal Control Evaluation
 
The effect of risk based audit approach on the implementation of internal co...
The effect of risk based audit approach on the implementation of internal co... The effect of risk based audit approach on the implementation of internal co...
The effect of risk based audit approach on the implementation of internal co...
 
The impact of internal control activities on financial performance of
The impact of internal control activities on financial performance ofThe impact of internal control activities on financial performance of
The impact of internal control activities on financial performance of
 
Critical Success Factors Influencing SOA implementations in Healthcare
Critical Success Factors Influencing SOA implementations in Healthcare Critical Success Factors Influencing SOA implementations in Healthcare
Critical Success Factors Influencing SOA implementations in Healthcare
 
Presentation 5, System based audit approach - what is it about?, Workshop on ...
Presentation 5, System based audit approach - what is it about?, Workshop on ...Presentation 5, System based audit approach - what is it about?, Workshop on ...
Presentation 5, System based audit approach - what is it about?, Workshop on ...
 

Recently uploaded

Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfBluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfngoud9212
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024The Digital Insurer
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentationphoebematthew05
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 

Recently uploaded (20)

Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfBluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdf
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentation
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptxVulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
 

Assurance and the 3 E’s: Efficiency, Effectiveness, and Economy

  • 1. Assurance and the Three E’s: Efficiency, Effectiveness, and Economy Ruoyu (Sophia) Cui
  • 2. Agenda Role of Assurance Processionals within Assurance Frameworks Opportunities within Internal Control Frameworks Tools, Methodologies, and Techniques Market for Consulting Services Impact of SOX and Role of Internal Auditor
  • 3. Role of Assurance Processionals within Assurance Frameworks Canadian Auditing Standards (CAS) Understanding of entity, including internal controls Assess adequacy of controls Communicate control deficiencies and other significant matters International Auditing and Assurance Standards Board (IAASB) Assertion based framework facilitate better governance More timely identification and resolution of control deficiencies
  • 4. Role of Assurance Processionals within Assurance Frameworks (cont’d) SOX 404 Management to report on assessment of internal control Auditor to assess management’s report June 2010 Proviti SOX compliance survey1: “70 percent of the 400 executive respondents in year four or beyond of their SOX-compliance programs agreed that improving their internal control environment was highly beneficial to their operations”, “SOX compliance…has triggered benefits that include increased efficiency and effectiveness of processes and operations, greater understanding of control design, and operating effectiveness.” 1S. Glover, “SOX Compliance Proves Beneficial To Organizations, Fuels Risk Consciousness”, National Underwriter (Nov 2010): 34, 36. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).
  • 5. Opportunities within Internal Control Frameworks COSO Promotes risk-based approach to designing the internal control system COBIT Three integrated dimensions: IT processes, IT resources, business requirements (including effectiveness and efficiency) Four domains in IT governance : planning, acquisition and implementation, delivery and support, and monitoring and evaluation
  • 6. COBIT Framework for IT Process Defined within the Four Domains of IT Governance Source: COBIT 3rd Edition Implementation Tool Set. COBIT Steering Committee and the IT Governance Institute. (July 2000).
  • 7. Tools, Methodologies, and Techniques Enterprise Resource Planning (ERP) and Business Process Management (BPM) systems Continuous auditing and business monitoring Risk-focused approach to internal audit
  • 8. ERP and BPM Systems ERP Eliminates duplicate files and redundant manual data entry. Incorporates control features that support SOX and other types of compliance E.g. establishes security roles, user IDs, passwords, and specific module accesses Unable to retaining complete histories in the transaction processes Lack of documentation of policies and procedures. Difficult to obtain a consolidated picture of the entity’s operations BPM Fills in gaps in the ERP system Integration of information contained in separate business applications Self-documenting and secure audit trails
  • 9. Continuous Auditing and Business Monitoring Identify key risk indicators (KRI) Enhance controls over current and potential risks Software to assist management with regular evaluation
  • 10. Risk-Focused Approach to Internal Audit “KMAP” (KPMG’s Management Assurance Process) internal audit methodology PwC 2012 Internal Audit Report: “internal audit groups with a risk-centric mind-set will focus on providing assurance over both risk and control by 2012”1 1R. Cathcart and G. Kapoor, “An Internal Audit Upgrade”, The Internal Auditor, 67, no. 3 (June 2010): 47. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).
  • 11. Market for Consulting Services ERP and BPM systems design and implementation Change management Adoption of continuous auditing SOX compliance Evaluation control processes Internal audit services
  • 12. Impact of SOX 9 types of non-audit services prohibited, including: financial information system design and implementation internal auditing outsourcing expert services Non-audit services received from external auditors pre-SOX were not replaced by hiring other consulting firms1 Non-audit services were either permanently reduced or absorbed into the workload of companies’ internal auditors1 Increased level of responsibility placed on internal auditors 1 C. Grant, N. Park, and S. Wheeler, “Non-audit, external audit, and internal audit services in a post-SOX world”, Internal Auditing 1 (Jan 2009): 28-32, 34-35. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).
  • 13. Conclusion Assurance professionals can assist businesses in improving processes: Under the current assurance and internal control frameworks Through consulting work relating to design and implementation of systems/tools/methodologies.   SOX severely limits external auditors’ ability to perform non-assurance type services Increased responsibility for internal auditors Need to ensure internal audit staff has the necessary level of expertise and competence
  • 15. List of References B. Tsay, “Designing an Internal Control Assessment Program Using COSO's Guidance on Monitoring”, The CPA Journal 80, no. 5, (May 1): 52-57. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed July 3, 2011).   Canadian Auditing Standards, Knotia.ca, accessed July 2, 2011.   C. Grant, N. Park, and S. Wheeler, “Non-audit, external audit, and internal audit services in a post-SOX world”, Internal Auditing 1 (Jan 2009): 28-32, 34-35. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011)   C. O’Connor, “IT Process and Control Frameworks” (University of Waterloo, Waterloo, ON, Feb 8, 2010).   COBIT 3rd Edition Implementation Tool Set. COBIT Steering Committee and the IT Governance Institute. (July 2000).   E. Zimmer, “The Next Wave of Business Monitoring”, The Internal Auditor, 67, no. 4 (Aug 2010): 43. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   F. Lin, L. Guan, and W. Fang. “Critical Factors Affecting the Evaluation of Information Control Systems with the COBIT Framework”, Emerging Markets, Finance & Trade 46, no. 1, (January 1, 2010): 42.  http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed July 4, 2011).  
  • 16. List of References (cont’d) J. Lollar, H. Beheshti, and B. Whitlow, “The role of integrative technology in competitiveness”, Competitiveness Review, 20, no. 5 (Sept 2010): 423-433. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   J. Oringel and G. R. Aldhizer, “Continuous Auditing and Monitoring: Enhancing the Efficiency and Effectiveness of Auditing and ERM”, Internal Auditing, Vol. 24, Iss. 5 (Oct 2009): 17-26. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   K. Lumpur, “KPMG offers cost-effective approach to managing risk”, Business Times (Feb 2001): 4. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   K. Walker, “SOX, ERP, and BPM: A Trifecta That Can Make Your Business Run Better”, Strategic Finance, 90, no. 6 (Dec 2010): 47-53. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   M. Jones and J. Iwasaki, “Governance Benefits of New Assurance Reports,” International Journal of Disclosure and Governance 8, no. 1 (Feb 2011): 4-15. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   R. Cathcart and G. Kapoor, “An Internal Audit Upgrade”, The Internal Auditor, 67, no. 3 (June 2010): 47. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).   S. Glover, “SOX Compliance Proves Beneficial To Organizations, Fuels Risk Consciousness”, National Underwriter (Nov 2010): 34, 36. http://www.proquest.com.proxy.lib.uwaterloo.ca/ (accessed June 9, 2011).