SlideShare a Scribd company logo

Basic Internal Auditing Presentation

Vernon Benjamin
Vernon Benjamin

Overview of the Internal Audit Function

1 of 25
Download to read offline
The Purpose of Internal Auditing?  “Eyes and Ears”  “Policeman”  “Watchdog”  “Consultant”  “Catalyst” 2
IIA Statement of Responsibilities Purpose:  Internal auditing is an independent appraisal function established within an organization to examine and evaluate its activities as a service to the organization.  The objective of internal auditing is to assist members of the organization in the effective discharge of their responsibilities.  The audit objective includes promoting control at a reasonable cost. 3
The Audit Process Model INPUTS PROCESSES OUTPUTS OUTCOMES Internal Audit Knowledge and Skills Analyses, Appraisals, Computers, Recommendations, Software and Counsel and IIA Standards Information Supporting the Internal Audit Organization in Practices and the Discharge of Procedures their Responsibilities Time and Promote the Money Effective use of Internal Control Reputation for Integrity and Fairness 4
IIA Statement of Responsibilities Scope:  The scope of internal auditing should encompass the examination of the adequacy and effectiveness of the organization’s system of internal control and the quality of performance in carrying out assigned responsibilities.  Assessment (adequacy and effectiveness).  Enhancement (measuring performance quality improvement). 5
The Nature of Business Risk Risk is a concept used by auditors and managers to express concerns about the probable effects of an uncertain environment. 6
Control and Risk Control mitigates risk: Feedback Loop Preventive Control INPUT ? PROCESS OUTPUT Compare to Standard Criteria Detective Control Feedback Loop INPUT PROCESS ? OUTPUT Compare to Standard Criteria 7
AUDIT Phase I: Internal Audit ASSIGNMENT AND OBJECTIVE Planning the Audit Framework RESEARCH PRELIMINARY SURVEY  Planning RISK ASSESSMENT  Performing DEVELOP AUDIT PROGRAM  Reporting FIELDWORK Phase II: (TESTING) Performing the Audit DISCUSS CONCLUSIONS DRAFT AUDIT Phase III: REPORT Documenting the Audit 8
Establishing Audit Objective and Scope  Ensure a positive link between the audit objective and the entity’s goals.  Ensure the audit program will produce the evidence as required.  Ensure that each test will provide the evidence required by the audit program. Linking the Audit to the Business Plan Audit Unit Entity Objective Goals Purpose Serving Customer Needs 9
Planning the Audit  Research  Risk Assessment  Audit Strategy  Preliminary Survey  Policies and Procedures  Inputs and Outputs  Control Steps  People 10
Planning Step #1 Perform Research on Area under Audit Research is important for understanding, but we must be able to recognize when “enough is enough” Research tells us define the historical issues, current issues, marketing issues, pervasive risks, personnel issues, and future issues. 11
Planning Step #2 Prepare Your Hypothesis 1. The activity is operating normally What is = What should Be 2. The activity is not operating as it should in some significant way What is does not = What should be 3. Some value in between There are minor differences between What is and What should be 12
Planning Step #3 Send Engagement Memo 1. To executive management 2. Include the name of the audit effort and the initiation date 3. Request the name of a contact person 13
Designing Audit Tests  Evidence is created from tests or questions.  The creation of the right test or question to ask is a process of working backwards from the audit objective. A Logical Sequence: From Tests to Objective Tests: Evidence: Hypothesis: What creates the What proves the What do you Audit evidence (y/n)? hypothesis? want to prove? Objective 14
Documenting the Audit Automated Work Papers provide  A framework to guide the audit process.  Support for the conclusions reached by the audit.  A record of the audit process and its conformance to standards. 15
Work Papers – Good Practices  Use electronic templates to capture data: * Background & Scope Document * Risk * Control * Test * Audit Point Sheet  Structure your work paper documents as carefully as you would the final audit report. 16
A Framework for the Audit 1. Audit Strategy/ Audit Scope & Objective. 2. Creation of Risk Based Work Papers 3. Collection of basic reference materials (flow charts, etc.) 4. Determination of tests needed 5. Sample Design 6. Preparation of meeting agendas 7. Follow-up on information gleaned/re-direction 8. Documentation of test results and conclusions. 9. Creation of Audit Point Sheets. 10. Audit Report 17
Writing Up Conclusions Best practices include:  Test description or question.  Results (clearly stated).  Conclusion reached as a result of that test. 18
Best Practices (cont)  Discussion of the conclusion with management.  To avoid misunderstandings.  To give management a ‘heads-up’ about issues.  To encourage corrective action as soon as possible.  Cross-reference the audit point sheets to the conclusions in the audit work papers (and back- reference the conclusions to the report). 19
Summarizing and Evaluating Results  The audit process creates evidence. The Logical Results: From Tests to Findings Test: Evidence: Conclusion: Creates the Provides factual Puts the facts in FINDING evidence. information. context (impact).  Evidence is summarized into conclusions.  Evidence (facts) + Context (impact) = Finding 20
The Audit Point Sheet  Ensures all aspects of problems (findings) are captured.  Useful as ready documentation.  Serves as a basis for discussion.  Aids the summarization and report writing. 21
Writing Effective Audit Reports Reports are important because they:  Provide documented communication and assurance to senior management.  Provide operating management with assessments of operations and corrective action.  Provide the auditor with records for follow-up of audit results.  Provide the audit group with marketing opportunities to demonstrate added value. 22
Following Up – Corrective Actions The control aspect of auditing is not complete until corrective action is taken (or the risk formally assumed by senior management). Effective statements of corrective action include:  The specific steps to be taken,  The completion date and  The person responsible for completion. 23
Audit Interaction with Auditee Competition Cooperation Collaboration Auditor Manager Auditor Manager Audit Team Auditor Manager Internal Audit Internal Audit Internal Audit 24
Building Trust with Auditee  The slow way- Making and keeping commitments  The faster way - Collaboration. 25

Recommended

Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
Ibrahim Jimalle
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing Presentation
Vernon Benjamin
 
Internal audit
Internal auditInternal audit
Internal audit
Rahul Mithia
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
Letzconsult.com
 
Internal audit report writing.pdf
Internal audit report writing.pdfInternal audit report writing.pdf
Internal audit report writing.pdf
kavyashree k
 
An introduction to internal auditing
An introduction to internal auditingAn introduction to internal auditing
An introduction to internal auditing
grifff
 
Internal Audit Reporting
Internal Audit ReportingInternal Audit Reporting
Internal Audit Reporting
SALIH AHMED ISLAM
 
The Internal Audit Framework
The Internal Audit FrameworkThe Internal Audit Framework
The Internal Audit Framework
Ahmad Tariq Bhatti
 

Recommended

Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
Ibrahim Jimalle
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing Presentation
Vernon Benjamin
 
Internal audit
Internal auditInternal audit
Internal audit
Rahul Mithia
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
Letzconsult.com
 
Internal audit report writing.pdf
Internal audit report writing.pdfInternal audit report writing.pdf
Internal audit report writing.pdf
kavyashree k
 
An introduction to internal auditing
An introduction to internal auditingAn introduction to internal auditing
An introduction to internal auditing
grifff
 
Internal Audit Reporting
Internal Audit ReportingInternal Audit Reporting
Internal Audit Reporting
SALIH AHMED ISLAM
 
The Internal Audit Framework
The Internal Audit FrameworkThe Internal Audit Framework
The Internal Audit Framework
Ahmad Tariq Bhatti
 
Internal Audit
Internal AuditInternal Audit
Internal Audit
Jami Martin
 
Internal Audit
Internal AuditInternal Audit
Internal Audit
Ahmad Tariq Bhatti
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit Methodology
Manoj Agarwal
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit department
Salih Islam
 
Introduction to internal auditing
Introduction to internal auditingIntroduction to internal auditing
Introduction to internal auditing
David Griffiths
 
Standards of Internal Audit
Standards of Internal AuditStandards of Internal Audit
Standards of Internal Audit
Karan Puri
 
Internal audit
Internal auditInternal audit
Internal audit
Shoab Malek (Certified Quality Auditor)
 
Common internal audit findings & how to avoid them
Common internal audit findings & how to avoid themCommon internal audit findings & how to avoid them
Common internal audit findings & how to avoid them
Surajit Datta
 
Checklist internal audit
Checklist internal auditChecklist internal audit
Checklist internal audit
Ali Khardani
 
Audit Documentation Presentation
Audit Documentation PresentationAudit Documentation Presentation
Audit Documentation Presentation
Karim70
 
Internal Audit Plan 2015
Internal Audit Plan 2015Internal Audit Plan 2015
Internal Audit Plan 2015
Mohammad Kashif
 
Internal audit training
Internal audit trainingInternal audit training
Internal audit training
Muhammad Zubair
 
MEASURING INTERNAL AUDIT PERFORMANCE
MEASURING INTERNAL AUDIT PERFORMANCEMEASURING INTERNAL AUDIT PERFORMANCE
MEASURING INTERNAL AUDIT PERFORMANCE
bbongio
 
Internal audit report writing
Internal audit report writingInternal audit report writing
Internal audit report writing
Neha Kothari
 
Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo Wachira
Jenard Wachira
 
Internal audit ratings guide
Internal audit ratings guideInternal audit ratings guide
Internal audit ratings guide
CenapSerdarolu
 
Compliance audit
Compliance auditCompliance audit
Compliance audit
Emma Yaks
 
Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9
Sazzad Hossain, ITP, MBA, CSCA™
 
Unit 3 Internal Audit
Unit 3 Internal AuditUnit 3 Internal Audit
Unit 3 Internal Audit
Ajay Nazarene
 
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Taufir Alam
 
Audit Process, Audit Procedures, Audit Planning, Auditing
Audit Process, Audit Procedures, Audit Planning, AuditingAudit Process, Audit Procedures, Audit Planning, Auditing
Audit Process, Audit Procedures, Audit Planning, Auditing
Advance Business Consulting
 
Bank audit
Bank auditBank audit
Bank audit
CA K Raghu
 

More Related Content

What's hot

Common internal audit findings & how to avoid them
Common internal audit findings & how to avoid themCommon internal audit findings & how to avoid them
Common internal audit findings & how to avoid them
Surajit Datta
 
Checklist internal audit
Checklist internal auditChecklist internal audit
Checklist internal audit
Ali Khardani
 
MEASURING INTERNAL AUDIT PERFORMANCE
MEASURING INTERNAL AUDIT PERFORMANCEMEASURING INTERNAL AUDIT PERFORMANCE
MEASURING INTERNAL AUDIT PERFORMANCE
bbongio
 
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Taufir Alam
 

What's hot (20)

Internal Audit
Internal AuditInternal Audit
Internal Audit
 
Internal Audit
Internal AuditInternal Audit
Internal Audit
 
Internal Audit Methodology
Internal Audit MethodologyInternal Audit Methodology
Internal Audit Methodology
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit department
 
Introduction to internal auditing
Introduction to internal auditingIntroduction to internal auditing
Introduction to internal auditing
 
Standards of Internal Audit
Standards of Internal AuditStandards of Internal Audit
Standards of Internal Audit
 
Internal audit
Internal auditInternal audit
Internal audit
 
Common internal audit findings & how to avoid them
Common internal audit findings & how to avoid themCommon internal audit findings & how to avoid them
Common internal audit findings & how to avoid them
 
Checklist internal audit
Checklist internal auditChecklist internal audit
Checklist internal audit
 
Audit Documentation Presentation
Audit Documentation PresentationAudit Documentation Presentation
Audit Documentation Presentation
 
Internal Audit Plan 2015
Internal Audit Plan 2015Internal Audit Plan 2015
Internal Audit Plan 2015
 
Internal audit training
Internal audit trainingInternal audit training
Internal audit training
 
MEASURING INTERNAL AUDIT PERFORMANCE
MEASURING INTERNAL AUDIT PERFORMANCEMEASURING INTERNAL AUDIT PERFORMANCE
MEASURING INTERNAL AUDIT PERFORMANCE
 
Internal audit report writing
Internal audit report writingInternal audit report writing
Internal audit report writing
 
Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo Wachira
 
Internal audit ratings guide
Internal audit ratings guideInternal audit ratings guide
Internal audit ratings guide
 
Compliance audit
Compliance auditCompliance audit
Compliance audit
 
Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9Audit Risk Assessment Chapter 9
Audit Risk Assessment Chapter 9
 
Unit 3 Internal Audit
Unit 3 Internal AuditUnit 3 Internal Audit
Unit 3 Internal Audit
 
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
Audit of Internal Financial Control over Financial Reporting (IFCR) A complet...
 

Viewers also liked

Bank audit slideshare
Bank audit slideshareBank audit slideshare
Bank audit slideshare
Priti Parab
 
Bank concurrent audit
Bank concurrent auditBank concurrent audit
Bank concurrent audit
yudhistra
 
Internal control system
Internal control systemInternal control system
Internal control system
Madiha Hassan
 
Sap Access Risks Procedures
Sap Access Risks ProceduresSap Access Risks Procedures
Sap Access Risks Procedures
Inprise Group
 
Analytical procedures presentation
Analytical procedures presentationAnalytical procedures presentation
Analytical procedures presentation
Darryl Woolley
 

Viewers also liked (20)

Audit Process, Audit Procedures, Audit Planning, Auditing
Audit Process, Audit Procedures, Audit Planning, AuditingAudit Process, Audit Procedures, Audit Planning, Auditing
Audit Process, Audit Procedures, Audit Planning, Auditing
 
Bank audit
Bank auditBank audit
Bank audit
 
Bank Audit Process
Bank Audit ProcessBank Audit Process
Bank Audit Process
 
Bank audit slideshare
Bank audit slideshareBank audit slideshare
Bank audit slideshare
 
Bank audit slideshare
Bank audit slideshareBank audit slideshare
Bank audit slideshare
 
Audit of bank
Audit of bankAudit of bank
Audit of bank
 
Bank concurrent audit
Bank concurrent auditBank concurrent audit
Bank concurrent audit
 
BMC Remedy ITSM 8.0 What's New
BMC Remedy ITSM 8.0 What's NewBMC Remedy ITSM 8.0 What's New
BMC Remedy ITSM 8.0 What's New
 
Internal control system
Internal control systemInternal control system
Internal control system
 
04 Audit documentation
04 Audit documentation 04 Audit documentation
04 Audit documentation
 
Audit programme
Audit programmeAudit programme
Audit programme
 
Sap Access Risks Procedures
Sap Access Risks ProceduresSap Access Risks Procedures
Sap Access Risks Procedures
 
Topic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement auditTopic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement audit
 
Chapter 3
Chapter 3Chapter 3
Chapter 3
 
management letter
management lettermanagement letter
management letter
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...
 
Audit documentation
Audit documentationAudit documentation
Audit documentation
 
Audit procedures
Audit proceduresAudit procedures
Audit procedures
 
Analytical procedures presentation
Analytical procedures presentationAnalytical procedures presentation
Analytical procedures presentation
 
Audit Programme: Concept, Types, Functions, Advantages & Disadvantages
Audit Programme: Concept, Types, Functions, Advantages & DisadvantagesAudit Programme: Concept, Types, Functions, Advantages & Disadvantages
Audit Programme: Concept, Types, Functions, Advantages & Disadvantages
 

Similar to Basic Internal Auditing Presentation

Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]
Deep Kumar Mendiratta
 
Performance audit adding value
Performance audit adding valuePerformance audit adding value
Performance audit adding value
icgfmconference
 
Lean Administration And Fast Closing
Lean Administration And Fast ClosingLean Administration And Fast Closing
Lean Administration And Fast Closing
ggiacoma
 
Corporate Presentation MRS
Corporate Presentation MRSCorporate Presentation MRS
Corporate Presentation MRS
Paul Morffew
 

Similar to Basic Internal Auditing Presentation (20)

Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]
 
Basic internal auditing
Basic internal auditingBasic internal auditing
Basic internal auditing
 
Quality Management System ISO 9001 Interpretation and Internal Audit
Quality Management System ISO 9001 Interpretation and Internal AuditQuality Management System ISO 9001 Interpretation and Internal Audit
Quality Management System ISO 9001 Interpretation and Internal Audit
 
Improving effectiveness of internal auditing
Improving effectiveness of internal auditingImproving effectiveness of internal auditing
Improving effectiveness of internal auditing
 
AUDIT - AUDITING STRATEGIES.pptx
AUDIT - AUDITING STRATEGIES.pptxAUDIT - AUDITING STRATEGIES.pptx
AUDIT - AUDITING STRATEGIES.pptx
 
module_1.pptx
module_1.pptxmodule_1.pptx
module_1.pptx
 
Quality Assurance
Quality AssuranceQuality Assurance
Quality Assurance
 
Quality audit
Quality auditQuality audit
Quality audit
 
How to do a Project Audit
How to do a Project AuditHow to do a Project Audit
How to do a Project Audit
 
SOFTWARE PROCESS MONITORING AND AUDIT
SOFTWARE PROCESS MONITORING AND AUDITSOFTWARE PROCESS MONITORING AND AUDIT
SOFTWARE PROCESS MONITORING AND AUDIT
 
Performance audit adding value
Performance audit adding valuePerformance audit adding value
Performance audit adding value
 
auditing Fram . from the start to Reporting .pdf
auditing Fram . from the start to Reporting .pdfauditing Fram . from the start to Reporting .pdf
auditing Fram . from the start to Reporting .pdf
 
Audit Department Excellence Model
Audit Department Excellence ModelAudit Department Excellence Model
Audit Department Excellence Model
 
Lean Administration And Fast Closing
Lean Administration And Fast ClosingLean Administration And Fast Closing
Lean Administration And Fast Closing
 
Auditing Basics
Auditing BasicsAuditing Basics
Auditing Basics
 
Internal-Audit-Methodology-VV.pdf
Internal-Audit-Methodology-VV.pdfInternal-Audit-Methodology-VV.pdf
Internal-Audit-Methodology-VV.pdf
 
Corporate Presentation MRS
Corporate Presentation MRSCorporate Presentation MRS
Corporate Presentation MRS
 
Ackerman-p99.ppt
Ackerman-p99.pptAckerman-p99.ppt
Ackerman-p99.ppt
 
Chapter 12 - Designing Substantive Procedures
Chapter 12 - Designing Substantive ProceduresChapter 12 - Designing Substantive Procedures
Chapter 12 - Designing Substantive Procedures
 
Process Monitoring And Audit
Process Monitoring And AuditProcess Monitoring And Audit
Process Monitoring And Audit
 

More from Vernon Benjamin

IAD Introduction - 1-2010
IAD Introduction - 1-2010IAD Introduction - 1-2010
IAD Introduction - 1-2010
Vernon Benjamin
 
IAD Introduction to Lexington - 5-2011
IAD Introduction to Lexington - 5-2011IAD Introduction to Lexington - 5-2011
IAD Introduction to Lexington - 5-2011
Vernon Benjamin
 

More from Vernon Benjamin (8)

AOP Template
AOP TemplateAOP Template
AOP Template
 
IAD Introduction - 1-2010
IAD Introduction - 1-2010IAD Introduction - 1-2010
IAD Introduction - 1-2010
 
IAD Introduction to Lexington - 5-2011
IAD Introduction to Lexington - 5-2011IAD Introduction to Lexington - 5-2011
IAD Introduction to Lexington - 5-2011
 
2012 Automating The Audit Function Presentation
2012 Automating The Audit Function Presentation2012 Automating The Audit Function Presentation
2012 Automating The Audit Function Presentation
 
Process Level Auditing 2012
Process Level Auditing 2012Process Level Auditing 2012
Process Level Auditing 2012
 
Process Level Auditing Presentation
Process Level Auditing PresentationProcess Level Auditing Presentation
Process Level Auditing Presentation
 
Automating The Audit Function Presentation
Automating The Audit Function Presentation Automating The Audit Function Presentation
Automating The Audit Function Presentation
 
Automating The Audit Function Presentation
Automating The Audit Function PresentationAutomating The Audit Function Presentation
Automating The Audit Function Presentation
 

Basic Internal Auditing Presentation

  • 1.
  • 2. The Purpose of Internal Auditing?  “Eyes and Ears”  “Policeman”  “Watchdog”  “Consultant”  “Catalyst” 2
  • 3. IIA Statement of Responsibilities Purpose:  Internal auditing is an independent appraisal function established within an organization to examine and evaluate its activities as a service to the organization.  The objective of internal auditing is to assist members of the organization in the effective discharge of their responsibilities.  The audit objective includes promoting control at a reasonable cost. 3
  • 4. The Audit Process Model INPUTS PROCESSES OUTPUTS OUTCOMES Internal Audit Knowledge and Skills Analyses, Appraisals, Computers, Recommendations, Software and Counsel and IIA Standards Information Supporting the Internal Audit Organization in Practices and the Discharge of Procedures their Responsibilities Time and Promote the Money Effective use of Internal Control Reputation for Integrity and Fairness 4
  • 5. IIA Statement of Responsibilities Scope:  The scope of internal auditing should encompass the examination of the adequacy and effectiveness of the organization’s system of internal control and the quality of performance in carrying out assigned responsibilities.  Assessment (adequacy and effectiveness).  Enhancement (measuring performance quality improvement). 5
  • 6. The Nature of Business Risk Risk is a concept used by auditors and managers to express concerns about the probable effects of an uncertain environment. 6
  • 7. Control and Risk Control mitigates risk: Feedback Loop Preventive Control INPUT ? PROCESS OUTPUT Compare to Standard Criteria Detective Control Feedback Loop INPUT PROCESS ? OUTPUT Compare to Standard Criteria 7
  • 8. AUDIT Phase I: Internal Audit ASSIGNMENT AND OBJECTIVE Planning the Audit Framework RESEARCH PRELIMINARY SURVEY  Planning RISK ASSESSMENT  Performing DEVELOP AUDIT PROGRAM  Reporting FIELDWORK Phase II: (TESTING) Performing the Audit DISCUSS CONCLUSIONS DRAFT AUDIT Phase III: REPORT Documenting the Audit 8
  • 9. Establishing Audit Objective and Scope  Ensure a positive link between the audit objective and the entity’s goals.  Ensure the audit program will produce the evidence as required.  Ensure that each test will provide the evidence required by the audit program. Linking the Audit to the Business Plan Audit Unit Entity Objective Goals Purpose Serving Customer Needs 9
  • 10. Planning the Audit  Research  Risk Assessment  Audit Strategy  Preliminary Survey  Policies and Procedures  Inputs and Outputs  Control Steps  People 10
  • 11. Planning Step #1 Perform Research on Area under Audit Research is important for understanding, but we must be able to recognize when “enough is enough” Research tells us define the historical issues, current issues, marketing issues, pervasive risks, personnel issues, and future issues. 11
  • 12. Planning Step #2 Prepare Your Hypothesis 1. The activity is operating normally What is = What should Be 2. The activity is not operating as it should in some significant way What is does not = What should be 3. Some value in between There are minor differences between What is and What should be 12
  • 13. Planning Step #3 Send Engagement Memo 1. To executive management 2. Include the name of the audit effort and the initiation date 3. Request the name of a contact person 13
  • 14. Designing Audit Tests  Evidence is created from tests or questions.  The creation of the right test or question to ask is a process of working backwards from the audit objective. A Logical Sequence: From Tests to Objective Tests: Evidence: Hypothesis: What creates the What proves the What do you Audit evidence (y/n)? hypothesis? want to prove? Objective 14
  • 15. Documenting the Audit Automated Work Papers provide  A framework to guide the audit process.  Support for the conclusions reached by the audit.  A record of the audit process and its conformance to standards. 15
  • 16. Work Papers – Good Practices  Use electronic templates to capture data: * Background & Scope Document * Risk * Control * Test * Audit Point Sheet  Structure your work paper documents as carefully as you would the final audit report. 16
  • 17. A Framework for the Audit 1. Audit Strategy/ Audit Scope & Objective. 2. Creation of Risk Based Work Papers 3. Collection of basic reference materials (flow charts, etc.) 4. Determination of tests needed 5. Sample Design 6. Preparation of meeting agendas 7. Follow-up on information gleaned/re-direction 8. Documentation of test results and conclusions. 9. Creation of Audit Point Sheets. 10. Audit Report 17
  • 18. Writing Up Conclusions Best practices include:  Test description or question.  Results (clearly stated).  Conclusion reached as a result of that test. 18
  • 19. Best Practices (cont)  Discussion of the conclusion with management.  To avoid misunderstandings.  To give management a ‘heads-up’ about issues.  To encourage corrective action as soon as possible.  Cross-reference the audit point sheets to the conclusions in the audit work papers (and back- reference the conclusions to the report). 19
  • 20. Summarizing and Evaluating Results  The audit process creates evidence. The Logical Results: From Tests to Findings Test: Evidence: Conclusion: Creates the Provides factual Puts the facts in FINDING evidence. information. context (impact).  Evidence is summarized into conclusions.  Evidence (facts) + Context (impact) = Finding 20
  • 21. The Audit Point Sheet  Ensures all aspects of problems (findings) are captured.  Useful as ready documentation.  Serves as a basis for discussion.  Aids the summarization and report writing. 21
  • 22. Writing Effective Audit Reports Reports are important because they:  Provide documented communication and assurance to senior management.  Provide operating management with assessments of operations and corrective action.  Provide the auditor with records for follow-up of audit results.  Provide the audit group with marketing opportunities to demonstrate added value. 22
  • 23. Following Up – Corrective Actions The control aspect of auditing is not complete until corrective action is taken (or the risk formally assumed by senior management). Effective statements of corrective action include:  The specific steps to be taken,  The completion date and  The person responsible for completion. 23
  • 24. Audit Interaction with Auditee Competition Cooperation Collaboration Auditor Manager Auditor Manager Audit Team Auditor Manager Internal Audit Internal Audit Internal Audit 24
  • 25. Building Trust with Auditee  The slow way- Making and keeping commitments  The faster way - Collaboration. 25