Professional Documents
Culture Documents
Discussions
What at Internal te a Audit ud t is s? Evolution of Internal Audit Everyone y is an Internal Auditor ! Why IA is so important for PSE Role of IA 3 Es Factors impacting IA effectiveness Governance Issues Dos & Don'ts
Javed K Siddiqui, Executive Director, SECP
An independent independent, depe de t, t, object objective e assu assurance a ce activity. Designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, systematic disciplined approach to evaluate, and improve the effectiveness of risk management, control, l and d governance Javed K Siddiqui, processes.
IA is a catalyst for improving an organizations effectiveness and efficiency b providing by idi i insight i ht and d recommendations d ti based on analyses and assessments of data and business processes.
Historians believe believe, formal record-keeping systems were first instituted by organized businesses and governments as far back as 4000 B.C. The need Th df for and d indications i di ti of f audits dit can be traced back to public finance systems in Babylonia, Greece, the Roman Empire, the City States of Italy, etc., all of which developed a detailed system of checks and counterchecks counterchecks.
Javed K Siddiqui, Executive Director, SECP
Interestingly, the scope of these early audits was in many ways akin to that of modern internal audits; an examination of the correctness of accounting records and an evaluation l ti of f the th propriety i t of f activities. ti iti Emphasis on improving management control over the activities of the organization. Such broad emphasis was not to reappear on a wide scale until after World War II.
Javed K Siddiqui, Executive Director, SECP
Despite the aforementioned early references, railroad companies are credited being the first modern employers of internal auditors. Th They were titl titled d as traveling t li auditors. dit During D i th the latter l tt part t of f th the 19th century t these first real internal auditors became common. o o
Javed K Siddiqui, Executive Director, SECP
As business activities grew in size size, scope scope, and complexity, Management found it impossible p to visually y observe all the operations in their respective areas of responsibility. A critical need emerged for separate internal assurance function that would verify the accounting information used for decisionmaking and evaluating the efficiency of work performed f d for f the h business. b
8
In seeking ways to deal with these new challenges, special staff people were appointed to review and report on;
What ? happening Why ? probe
Started as an internal business function primarily focused on protection against payroll fraud, loss of cash, and other assets. Scope quickly extended to the verification of almost all financial transactions. transactions Later on, , gradually g y moved from an audit for management emphasis to an audit of management approach.
Javed K Siddiqui, Executive Director, SECP
11
The year 1941-- a turning point in the development of internal auditing Two significant events occurred;
One, publication of the first major book on the subject by Victor Z. Brink. Two, 24 individuals joined together to form The Institute of Internal Auditors USA ( (IIA). )
12
13
14
Everyone is an Auditor
Who is the best Internal Auditor ?
Lets have a show of hands
The First Auditor General of Pakistan ? The President of IIA USA ? The President of Chartered Institute of Internal Auditors UK ?
Javed K Siddiqui, Executive Director, SECP
15
Usually have large spectrum of stakeholders k h ld concerned d Oft Often deals d l with ith public bli money Involved in public service delivery High expectations of stakeholders vis a vis efficiency in service delivery
Javed K Siddiqui, Executive Director, SECP
17
Governance issues Opportunities of pilferages Operate p in an increasingly g y complex p and challenging environment.
Javed K Siddiqui, Executive Director, SECP
18
Increasing demands and expectations of the community, government and the Parliament. Parliament
19
Role of IA
Initially, administrative procedure with a f focus on compliance l to ensuring good d governance. The era of transactional audit all financial transactions were pre-audited pre audited The role later increased to cover the internal control environment.
Javed K Siddiqui, Executive Director, SECP
20
Role of IA
Emphasis on Governance Governance issues issues enhanced the role of IA. Board Audit Committees formed & reporting line of Head of IA made to BAC. BAC Now, internal auditors are assessing the risks within organizations and measuring their risk appetite (risk based audits).
Javed K Siddiqui, Executive Director, SECP
21
Role of IA
Mandatory for listed companies to have an IA function Public sector entities required to have more transparency and more accountability since they spend taxpayer funds. funds
22
Role of IA
Internal auditing has become a factor of the new accountability, governance and control era. It is an element of a strong gp public sector governance foundation.
23
Role of IA
Although IA can be a valuable advisory resource on internal control, it should not be a substitute for a strong internal control system. system A system of internal control is the primary response to risks. As is true for all internal auditors, public sector internal auditors assist organizations g in improving p g their operations.
24
Review of financial statements prior to their approval by the BOD. Review of the Co.s statement on internal control t l systems t b by Audit A dit Committee C itt prior i to endorsement by the Board of Directors. Review of management letter of external auditors and management managements s response thereto Javed K Siddiqui,
25
Consideration of major findings of internal investigations and management's response thereto. h Be interactive B i t ti of f the th subject bj t of f governance, bringing best practices ideas about internal controls and risk management processes to audit committee members.
Javed K Siddiqui, Executive Director, SECP
26
27
Evaluation of measures to safeguard the organisations assets. Ascertaining that the internal control system including financial and operational controls, accounting system and reporting structure are adequate and effective. Monitoring compliance l with h the h b best practices of corporate governance and identification of significant g violations thereof.
28
Consideration of any other issue or matter as may be assigned by the Board of Directors.
29
Is operationally independent. Is appropriately positioned in the entitys governance framework Is business focused rather than only a financial financial audit audit Has adequate human resources with required skill set Javed K Siddiqui,
30
More experienced staff for operational / management audit, less experienced for financial audit. audit Has audit plans that are comprehensive and balanced, and are linked to the risks in the entity. Undertakes all audits in accordance with specified f d auditing d standards. d d
31
Has the confidence of key stakeholders including the Chief Executive, Executive the Board, Board the Audit Committee and senior management. Provides an annual assessment, based on internal audit work undertaken, of the effectiveness ff ti of f the th entitys tit system t of f internal controls.
32
Advises the Audit Committee of patterns, trends or systemic issues arising from internal audit work Regularly informs the Audit Committee of progress in the implementation of agreed internal l and d external l audit d and d other h relevant report recommendations
Javed K Siddiqui, Executive Director, SECP
33
FACTORS
Lack of Audit Staff Does not have top mgmt support Lack of cooperation p Lack of audit staff training Lack of independence Lack of audit staff competence Audit finding not pursued by mgmt. Lack of experienced audit staff Low grading of position of Head of IA Negative perception about IA Limited / Lack of IA resources
34
Occr Rank
28 19 17 15 15 13 11 10 8 5 4 1 2 3 4 4 5 6 7 8 9 10
%
19 3 19.3 13.1 11.7 10.3 10.3 9 7.6 7 5.5 3.4 2.8
FACTORS
Occr Rank
90 45 25 13 13 1 2 3 4 4
%
48.4 24.2 13.4 7 7
Internal audit quality Support of top management Adequate resources Cooperation p from auditees Interaction with audit committee
35
The 3 Es
Efficiency .doing doing the thing right right Effectiveness ..doing the right thing E Economy
36
Customer Value
Online reach (unique Sales and sales per visitors as % of potential customer visitors) New customers Cost of acquisition or Online market share cost per sale Customer satisfaction ratings Customer propensity
Operational processes
37
The 3 Es
Efficiency y
Operational efficiencyare things being done rightly i htl Quantum Qua tu o of resources esou ces used in performance pe o a ce Time & motion study BPR to improve efficiency
Javed K Siddiqui, Executive Director, SECP
38
The 3 Es
Effectiveness
How effective are the operationsright things Are the operations generating desired results Operational risks identified and mitigated Are there any un-identified lost opportunities
39
The 3 Es
Economy y
The main focus of every business Un-economical operations lead to business failures a u es Constant evaluation to identify un-economical operations & processes Evaluate possibilities of pilferages
40
Maintain objectivity at all times. Develop your ability to distinguish, but dont distinguish g ! Use management by walking technique. Be friendly.
Javed K Siddiqui, Executive Director, SECP
41
Dont try be know all type. Dont recommend a policy measure or a procedure.just comment ! Dont be confined to your office chamber Dont try to become a Terror And last but not the least
Javed K Siddiqui, Executive Director, SECP
42
43
44