0% found this document useful (0 votes)

196 views34 pages

Chapter 9 PPT 4th Edition

Uploaded by

thukind1303

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

196 views34 pages

Chapter 9 PPT 4th Edition

Uploaded by

thukind1303

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

You are on page 1/ 34

4 T H EDITION

Internal Auditing:
Assurance &
Advisory Services

Internal Auditing: Assurance &Internal

AdvisoryAuditing:
Services,Assurance
4th Edition&©Advisory
2017 byServices,
the Internal
4th Edition
Audit Foundation.
© 2017 by the Internal Audit Foundation.
CHAPTER 9

Managing the
Internal Audit Function

Internal Auditing: Assurance &Internal

AdvisoryAuditing:
Services,Assurance
4th Edition&©Advisory
2017 byServices,
the Internal
4th Edition
Audit Foundation.
© 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
LEARNING OBJECTIVES
◼ Understand the importance of proper positioning of the
internal audit function within the organization.
◼ Identify the benefits of various organizational structures
for an internal audit function.
◼ Identify the roles and responsibilities of the key positions
in an internal audit function.
◼ Understand the policies and procedures of internal
auditing and how they guide the internal audit function.
◼ Understand the attributes of a well-executed risk
management model (process) and reflect on what role the
internal audit function should have in the organization’s
risk management processes.
◼ Understand quality assurance, how it operates, and why it
is important to the internal audit function.
◼ Understand how technology is used in the management
of the internal audit function

Organizations that recognize the importance of placing the internal audit function in a position that
maximizes its effectiveness and ability to evaluate the efficacy of the risk management, control, and
governance processes that are in place often do so through a senior management position described in
the Standards as a chief audit executive (CAE). IIA Standard 2000: Managing the Internal Audit
Activity states that “the chief audit executive must effectively manage the internal audit activity to
ensure it adds value to the organization.” Recognizing that the CAE is pivotal to a successful internal
audit function, the interpretation of Standard 2000 goes on to state that “the internal audit [function] is
effectively managed when:

 It achieves the purpose and responsibility included in the internal audit charter.
 It conforms with the Standards.
 Its individual members conform with the Code of Ethics and the Standards.
 It considers trends and emerging issues that could impact the organization.”

Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
THE INTERNAL AUDIT FUNCTION
CHARTER
 A necessary condition for the CAE to fulfill the
responsibilities to effectively manage the internal
audit function is to create a charter that “establishes
the internal audit [function’s] position within the
organization; authorizes access to records, personnel,
and physical properties relevant to the performance of
engagements; and defines the scope of internal audit
activities” (Interpretation to IIA Standard 1000:
Purpose, Authority, and Responsibility).
 The charter should also take into consideration
assurance and consulting services.
 It is important to recognize that the internal audit
function and the audit committee have separate
charters delineating the specific and separate
obligations to the organization of each, while
considering and reflecting the inherent
interdependencies of the two.
 The internal audit function’s charter is subordinate to
the audit committee’s charter and must support it.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function

INDEPENDENCE AND OBJECTIVITY

The IPPF also indicates that internal auditors must have an impartial, unbiased attitude and avoid any conflict of
interest (objectivity). The IPPF further outlines these requirements by setting forth guidance on individual objectivity,
which suggests the following:

 Individual objectivity means the internal auditors must perform engagements in an honest way ensuring the work
product is free of significant quality compromises. Internal auditors should avoid being placed in situations that
could impair their ability to make objective professional judgments.
 Individual objectivity requires the chief audit executive (CAE) to make staff assignments that prevent potential
and actual conflicts of interest and bias.
 Internal audit work results must be reviewed before engagement communications are released, which helps
provide reasonable assurance that the work was performed objectively.
 The internal auditor’s objectivity is not negatively affected when the internal auditor recommends enhancements
to standards of control or reviews management’s operating procedures before implementation. The internal
auditor’s objectivity is considered negatively affected (impaired) if the auditor designs, installs, drafts procedures
for, or operates such systems.
 The occasional performance of non-audit work by the internal auditor, with full disclosure in the reporting process,
would not necessarily impair objectivity. However, it would require careful consideration by management. The
internal auditor must be careful when accepting such temporary assignments to avoid adversely affecting the
internal auditor’s objectivity.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
IMPAIRMENT TO INDEPENDENCE OR
OBJECTIVITY

If independence or objectivity is impaired in fact or appearance, the details of the

impairment must be disclosed to appropriate parties. The nature of the disclosure will
depend upon the impairment.

 Impairment to organizational independence and individual objectivity may

include, but is not limited to, personal conflict of interest, scope limitations,
restrictions on access to records, personnel, and properties, and resource
limitations, such as funding.
 The determination of appropriate parties to which the details of an impairment to
independence or objectivity must be disclosed is dependent upon the expectations
of the internal audit activity’s and the chief audit executive’s responsibilities to
senior management and the board as described in the internal audit charter, as well
as the nature of the impairment.

Additional IIA requirements regarding

impairments to independence or
objectivity are included in exhibit 9-3:

Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
PROFICIENCY AND
DUE PROFESSIONAL CARE
 IIA Standard 1200: Proficiency and Due Professional Care states simply that “engagements must
be performed with proficiency and due professional care.” IIA Standard 1210: Proficiency goes
into more detail, stating that “internal auditors must possess the knowledge, skills, and other
competencies needed to perform their individual responsibilities. The internal audit activity
collectively must possess or obtain the knowledge, skills, and other competencies needed to
perform its responsibilities.” Furthermore, IIA Standard 1220: Due Professional Care states that
“internal auditors must apply the care and skill expected of a reasonably prudent and competent
internal auditor. Due professional care does not imply infallibility.”

 It is important to note that the interpretation of Standard 1210 defines “proficiency [as] a collective
term that refers to the knowledge, skills, and other competencies required of internal auditors to
effectively carry out their professional responsibilities.” This interpretation goes on to say that “it
encompasses consideration of current activities, trends, and emerging issues, to enable relevant
advice and recommendations” and further encourages internal auditors to “demonstrate their
proficiency by obtaining appropriate professional certifications and qualifications, such as the
Certified Internal Auditor designation and other designations offered by The Institute of Internal
Auditors and other appropriate professional organizations.”
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
PLANNING

 The annual internal audit plan should be completed at the beginning of, or just prior to the organization’s
fiscal year.
 The process can be comprehensive whereby senior management and the internal audit function collaborate
to complete a formal risk assessment on an organization-wide basis to establish a prioritized list of key risk
scenarios facing the organization that must be appropriately managed by the organization to achieve key
business objectives or informal and much less collaborative in nature.
 The CAE aligns audit resources for the upcoming year with the conclusions drawn by management during
the risk assessment process.
 Providing the CAE with a definitive list of audit entities related to the prioritized risks allows for the
creation of an internal audit plan using a top-down, risk-based approach.
 The planning process should include the establishment of:
• Goals,
• engagement schedules,
• staffing schedules, and
• financial budgets.
 Additionally, effective planning should reflect the internal audit charter and be consistent with organizational
objectives.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
COMMUNICATION AND APPROVAL

After the internal audit plan has been established, it is incumbent upon the
CAE to present it to senior management and the board (typically the audit
committee) to be approved. Resource requirements, significant interim
changes, and the potential implications of resource limitations should all be
included in the communication to senior management and the board (IIA
Standard 2020: Communication and Approval).

A significant consideration in implementing an internal audit function’s plan is

how to allocate resources. It is the CAE’s responsibility to “ensure that internal
audit resources are appropriate, sufficient, and effectively deployed to achieve the
approved plan” (IIA Standard 2030: Resource Management). This is achieved by
carefully orchestrating a number of factors, including the following:

 Organizational Structure and Staffing  Training and Mentoring

Strategy  Career Planning and Professional
 Right Sizing Development
 Staffing Plans/Human Resources  Scheduling
 Hiring Practices  Financial Budget
 Strategic Sourcing  Use of Professional Practice Groups

 The standard regarding the implementation of policies and procedures simply

states, “the chief audit executive must establish policies and procedures to guide the
internal audit activity” (IIA Standard 2040: Policies and Procedures).
 The IPPF goes on to suggest keeping the policies and procedures consistent with
the size of the internal audit function. The CAE is ultimately responsible for
developing policies and procedures.
 Formal administrative and technical audit manuals may not be needed by all
internal audit functions. A small internal audit function may be managed
informally. Its audit staff may be directed and controlled through daily, close
supervision, and memoranda that state policies and procedures to be followed. In a
large internal audit function, more formal and comprehensive policies and
procedures may be needed to guide the internal audit staff in the execution of the
internal audit plan.

 According to IIA Standard 2050: Coordination and Reliance, “The chief audit
executive should share information and coordinate activities, and consider relying on
the work of other internal and external assurance and consulting service providers to
ensure proper coverage and minimize duplication of efforts.” Coordinating the efforts
of the internal audit function with those of other internal and external providers of
assurance and consulting services is important because of the increase in
effectiveness and efficiencies that can be gained.

 Many organizations have multiple avenues for ensuring that they operate within their
risk appetite. Organizations operating in a highly regulated environment in particular
have a need to demonstrate that they have mitigated the many risks that threaten them
to a reasonable level. To do so, they implement a technique of assurance layering to
get the risk mitigation they need or desire. One common example of this strategy is
the “three lines of defense model.”
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Chapter 9: Managing the Internal Audit
Function
COORDINATING ASSURANCE
EFFORTS
 In the three lines of defense model, the
organization layers the avenues through which
they get assurance that the risks facing them are
mitigated to a level within their risk appetite.
Although it is referred to as three lines of defense,
depending on the organization and how it is
structured, there may be more than three defined
lines (layers) of assurance.

 Exhibit 9-4 is a popular depiction of the three

lines of defense model that places the external,
independent assurance providers outside the
model. As indicated, this model can be adapted by
organizations to depict their particular approach or
philosophy.

 The CAE has the responsibility to “report periodically to senior management and the board on
the internal audit activity’s purpose, authority, responsibility, and performance relative to its
plan, and on its conformance with the Standards. Reporting must also include significant risk
and control issues, including fraud risks, governance issues, and other matters that require the
attention of senior management and/or the board” (IIA Standard 2060: Reporting to Senior
Management and the Board).
 More specifically, consider communicating the following items:
• Significant deviations from approved engagement work schedules and the reasons for such.
• Staffing plans, and financial budgets.
• Action taken or needed.
• Significant engagement observations and recommendations.
• Instances of senior management and/or the audit committee acceptance of the risk of not
correcting a significant engagement observation.

Management and the CAE coordinate efforts to routinely report on various risk and
control activities performed by either, in accordance with roles and responsibilities set
by the board and the audit committee. This typically includes reports covering:
• Business unit monitoring and risk monitoring reports.
• Independent outside auditor activity reports.
• Key financial activity reports.
• Risk management activity reports.
• Legal and compliance monitoring reports.

In addition to this information, a report is typically submitted to the audit committee by

either senior management or the CAE outlining the results of management’s self-
assessment regarding the design adequacy and operating effectiveness of the
organization’s internal controls.

Governance is defined as “a process conducted by the board of

directors to authorize, direct, and oversee management toward
the achievement of the organization’s objectives.”

IIA Standard 2110: Governance requires the internal audit function to “assess and make
appropriate recommendations to improve the organization’s governance processes for:

 Making strategic and operational decisions;

 Overseeing risk management and control;
 Promoting appropriate ethics and values within the organization;
 Ensuring effective organizational performance management and accountability;
 Communicating risk and control information to appropriate areas of the
organization; and
 Coordinating the activities of, and communicating information among, the board,
[independent outside] and internal auditors, other assurance providers, and
management.”

Risk Management is a participatory process designed to identify, document,

evaluate, communicate, and monitor the most significant uncertainties facing
an organization requiring risk mitigation or exploitation of opportunities to
successfully achieve business objectives. In other words, risk management is a
process conducted by management to understand and deal with uncertainties
(that is, risk and opportunities) that could affect the organization’s ability to
achieve its business objectives.

 Risk management historically focused on avoiding potential danger and preventing harmful
actions.
 Risk management has evolved to focus additionally on identifying opportunities that can be
exploited.
• In these models, risk management efforts are designed to facilitate the management of both risk and
opportunity within a predefined risk appetite set by the board and senior management.
 Properly executed risk management assists the board and senior management implement
appropriate risk responses:
• Avoiding
• Reducing
• Sharing
• Accepting risks
• Exploiting opportunities
 Effective risk management provides reasonable (not absolute) assurance that the business
objectives of an organization will be achieved.

The role of the internal audit function varies widely and is predicated on the
division of risk management responsibilities and the culture of the
organization. At minimum, the internal audit function should evaluate the
design adequacy and operating effectiveness of the organization’s risk
management processes by providing input and feedback through a periodic
review (audit). It is also appropriate for the internal audit function to facilitate
the identification and evaluation of risks and opportunities, coach management
on appropriate ways to respond to risk events and opportunities, and help an
organization coordinate enterprise-wide risk management activities.

According to IIA Standard 2120: Risk Management, “The internal audit activity must evaluate the
effectiveness and contribute to the improvement of risk management processes.” The interpretation
for this standard states:
Determining whether risk management processes are effective is a judgment resulting from the
internal auditor’s assessment that:
 Organizational objectives support and align with the organization’s mission;
 Significant risks are identified and assessed;
 Appropriate risk responses are selected that align risks with the organization’s risk appetite; and
 Relevant risk information is captured and communicated in a timely manner across the
organization, enabling staff, management, and the board to carry out their responsibilities.

Risk management processes are monitored through ongoing management activities, separate
evaluations, or both.

Exhibit 9-5 shows a range of activities that an internal audit function might be asked to perform,
detailing which activities are appropriate and which should be avoided.

CONTROL

IIA Standard 2130: Control states, “The internal audit function must assist the organization in
maintaining effective controls by evaluating their effectiveness and efficiency and by promoting
continuous improvement.”

In terms of providing assurance services, the information that comes out of the risk assessment should
drive the internal audit function’s direction when evaluating “the adequacy and effectiveness of
controls in responding to risks within the organization’s governance, operations, and information
systems regarding the:
 Achievement of the organization’s strategic objectives;
 Reliability and integrity of financial and operational [nonfinancial] information;
 Effectiveness and efficiency of operations and programs
 Safeguarding of assets; and
 Compliance with laws, regulations, policies, procedures, and contracts.”

The IIA has established formal quality assurance standards that must be followed for
internal audit functions to be considered in compliance with The IIA Standards.

 Quality Assurance is the process of assuring that an internal audit function adheres
to a set of standards defining the specific elements that must be present to ensure
that the function operates appropriately.
 IIA Standard 1300: Quality Assurance and Improvement Program states that “the
chief audit executive must develop and maintain a quality assurance and
improvement program that covers all aspects of the internal audit activity.”

Performance Measures:
 Provide the criteria against which the internal audit function judges its performance in key areas.
 Provide a gauge for how well the internal audit function is accomplishing its mission/goals.
The CAE considers many factors when creating performance measurements:
 Size of the internal audit function
 The specific services offered
 Industry-specific regulations
 The operating environment
 The organization’s culture.
Performance measurements should be aligned with the internal audit function’s charter, and all
significant services addressed in the charter should be considered when establishing
performance measurements. The customized measurement process should outline activities
that contribute to the achievement of the goals identified in the charter.

Technological tools
 Enable increased productivity and efficiency
 Allow for less time to be spent on administrative responsibilities
 Provide for more time on assurance and consulting services
 Should enhance an internal audit function’s productivity
 Should not divert attention away from the task of auditing
 Allow for less time spent documenting, retaining, and accessing supporting
documentation

Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.
Internal Auditing: Assurance & Advisory Services, 4th Edition © 2017 by the Internal Audit Foundation.

Chapter 3 PPT 4th Edition
100% (1)
Chapter 3 PPT 4th Edition
16 pages
Audit & Assurance PowerPoint
No ratings yet
Audit & Assurance PowerPoint
26 pages
Chapter 13 PPT 4th Edition
No ratings yet
Chapter 13 PPT 4th Edition
22 pages
#1 - Chapter 1
No ratings yet
#1 - Chapter 1
15 pages
#5 - Chapter 4
No ratings yet
#5 - Chapter 4
21 pages
AU Standards PCAOB
100% (1)
AU Standards PCAOB
49 pages
Summary of CH 9 Assessing The Risk of Material Misstatement
No ratings yet
Summary of CH 9 Assessing The Risk of Material Misstatement
19 pages
Ch05 Solutions (10e)
100% (2)
Ch05 Solutions (10e)
27 pages
Chapter 10 PPT 4th Edition
No ratings yet
Chapter 10 PPT 4th Edition
24 pages
Chapter 4 PPT 4th Edition
100% (2)
Chapter 4 PPT 4th Edition
19 pages
Chapter 8 PPT 4th Edition
No ratings yet
Chapter 8 PPT 4th Edition
38 pages
Internal Auditing Assurance and Advisory Services 4th Edition PPT Presentation
No ratings yet
Internal Auditing Assurance and Advisory Services 4th Edition PPT Presentation
18 pages
Internal Control
No ratings yet
Internal Control
105 pages
Chapter 5 PPT 4th Edition
100% (1)
Chapter 5 PPT 4th Edition
34 pages
Auditing 2 - Kelompok 12
100% (1)
Auditing 2 - Kelompok 12
21 pages
Chapter 2 PPT 4th Edition
No ratings yet
Chapter 2 PPT 4th Edition
43 pages
CH 9 Assessing The Risk of Material Misstatement
No ratings yet
CH 9 Assessing The Risk of Material Misstatement
7 pages
Audit Evidence, Audit Sampling Dan Working Paper
100% (1)
Audit Evidence, Audit Sampling Dan Working Paper
42 pages
Chapter 12 PPT 4th Edition
No ratings yet
Chapter 12 PPT 4th Edition
23 pages
#2 - Chapter 12
No ratings yet
#2 - Chapter 12
12 pages
RMK Audit 18
No ratings yet
RMK Audit 18
14 pages
Internal Control and COSO Framework: ©2010 Prentice Hall Business Publishing, Auditing 13/e, Arens/Elder/Beasley 1 - 1
100% (1)
Internal Control and COSO Framework: ©2010 Prentice Hall Business Publishing, Auditing 13/e, Arens/Elder/Beasley 1 - 1
43 pages
CH 2 - Internal Audit's CBOK - Mindmap
No ratings yet
CH 2 - Internal Audit's CBOK - Mindmap
1 page
Ak206 092173 629 14
No ratings yet
Ak206 092173 629 14
66 pages
Arens Aud16 Inppt03
No ratings yet
Arens Aud16 Inppt03
40 pages
Arens Aas17 PPT 25
No ratings yet
Arens Aas17 PPT 25
45 pages
Ruang Seminar 02.06.2023 - Effective Technique For Internal Audit
No ratings yet
Ruang Seminar 02.06.2023 - Effective Technique For Internal Audit
29 pages
Arens Chapter08
No ratings yet
Arens Chapter08
47 pages
Completing The Audit: Principles of Auditing: An Introduction To International Standards On Auditing - Ch. 11
No ratings yet
Completing The Audit: Principles of Auditing: An Introduction To International Standards On Auditing - Ch. 11
52 pages
Chapter 6 PPT 4th Edition
No ratings yet
Chapter 6 PPT 4th Edition
23 pages
Chapter 3 Outline - Audit Reports
100% (1)
Chapter 3 Outline - Audit Reports
11 pages
C. Inventory Purchase: D. Sales Journal
No ratings yet
C. Inventory Purchase: D. Sales Journal
6 pages
Guidance - General - IIA Quality Assessment Manual Chapter 3
No ratings yet
Guidance - General - IIA Quality Assessment Manual Chapter 3
10 pages
Analisis Pembentukan Judgement Auditor P Ec795d25
No ratings yet
Analisis Pembentukan Judgement Auditor P Ec795d25
21 pages
Assessing and Responding To Fraud Risks: Concept Checks P. 281
No ratings yet
Assessing and Responding To Fraud Risks: Concept Checks P. 281
30 pages
Master Class Internal Audit Essentials 1
100% (2)
Master Class Internal Audit Essentials 1
11 pages
Arens Aud16 Inppt24
No ratings yet
Arens Aud16 Inppt24
48 pages
Audit II - 1
No ratings yet
Audit II - 1
34 pages
Recommendation For An Effective Continuous Audit Process ..1
No ratings yet
Recommendation For An Effective Continuous Audit Process ..1
11 pages
Completing The Audit: Principles of Auditing: An Introduction To International Standards On Auditing
No ratings yet
Completing The Audit: Principles of Auditing: An Introduction To International Standards On Auditing
39 pages
Chapter 5 Audit Planing and Risk Assessment-1
No ratings yet
Chapter 5 Audit Planing and Risk Assessment-1
17 pages
CH 1 Auditing and Internal Control
No ratings yet
CH 1 Auditing and Internal Control
20 pages
Arens - Chapter07 Audit Working Paper
100% (1)
Arens - Chapter07 Audit Working Paper
17 pages
Arens14e ch09 PPT
No ratings yet
Arens14e ch09 PPT
45 pages
Chapter 30 Brink
No ratings yet
Chapter 30 Brink
31 pages
Audit Internal Chapter 4 Risk Management
No ratings yet
Audit Internal Chapter 4 Risk Management
25 pages
Completing The Tests in The Acquisition and Payment Cycle: Verification of Selected Accounts
No ratings yet
Completing The Tests in The Acquisition and Payment Cycle: Verification of Selected Accounts
8 pages
Introduction To Auditing
100% (1)
Introduction To Auditing
18 pages
Auditing Arens
No ratings yet
Auditing Arens
38 pages
Potential Red Flags and Detection Techniques
No ratings yet
Potential Red Flags and Detection Techniques
12 pages
Kasus Internal Controls and Fraud
50% (2)
Kasus Internal Controls and Fraud
7 pages
Ch10 TB Rankin
100% (1)
Ch10 TB Rankin
6 pages
Chapter 1
No ratings yet
Chapter 1
28 pages
Financial Statement Fraud Control Audit Testing and Internal Auditing Expectation Gap
No ratings yet
Financial Statement Fraud Control Audit Testing and Internal Auditing Expectation Gap
7 pages
How To Guide - Sampling - Applying Assurance From Other Procedures
100% (1)
How To Guide - Sampling - Applying Assurance From Other Procedures
17 pages
Chapter9ppt4thedition 240415081801 d7c7638c
No ratings yet
Chapter9ppt4thedition 240415081801 d7c7638c
43 pages
Pertemuan 10-Managing The Internal Audit Function
No ratings yet
Pertemuan 10-Managing The Internal Audit Function
30 pages
Managing The IAF
No ratings yet
Managing The IAF
34 pages
Nature of Internal Auditing
No ratings yet
Nature of Internal Auditing
26 pages
Week 4 - Internal Audit Functions
No ratings yet
Week 4 - Internal Audit Functions
41 pages

Chapter 9 PPT 4th Edition

Uploaded by

Chapter 9 PPT 4th Edition

Uploaded by

4 T H EDITION

Internal Auditing: Assurance &Internal

Internal Auditing: Assurance &Internal

INDEPENDENCE AND OBJECTIVITY

If independence or objectivity is impaired in fact or appearance, the details of the

 Impairment to organizational independence and individual objectivity may

Additional IIA requirements regarding

A significant consideration in implementing an internal audit function’s plan is

 Organizational Structure and Staffing  Training and Mentoring

 The standard regarding the implementation of policies and procedures simply

 Exhibit 9-4 is a popular depiction of the three

In addition to this information, a report is typically submitted to the audit committee by

Governance is defined as “a process conducted by the board of

 Making strategic and operational decisions;

Risk Management is a participatory process designed to identify, document,

You might also like