Actualiteit

Intended to serve as a practical, step-by-step approach for internal audit leaders, this guide summarizes the standards, staffing, and resources needed to successfully plan and implement or improve an internal audit activity in the public sector. It reviews existing literature, applicable IPPF guidance, and practical advice from experts who have been through the experience. This practice guide will help: Identify issues to address in establishing an effective internal audit operational delivery model or in improving an existing internal audit activity in compliance with the IPPF and national and local requirements. Apply practical considerations when establishing or improving an internal audit activity's processes such as: Creating a strategic plan. Establishing a delivery model and organizational position and relationships. Identifying necessary resources and competencies and hiring and training staff. Creating and carrying out an enterprisewide risk assessment and audit plan; performing and reporting on assurance services and consulting engagements including quality assurance. Reporting on internal audit performance and collecting feedback from stakeholders to help ensure organizational value. Recognize and handle the political dimension (or potential interference) on internal audit within the public sector, in its planning, performing, and reporting on assurance work in line with the IPPF. This is for members only. To access it and other valuable resources, become a member today.

The World Business Council for Sustainable Development and The IIA collaborate to offer practical suggestions and examples for integrating sustainability considerations into the key roles and responsibilities within The IIA's Three Lines Model. This paper considers how environmental, social, and governance (ESG) threats and opportunities should be embedded into the Three Lines processes to ensure efficient and effective risk management and internal oversight.  

In an increasingly complex cyber environment organizations require, clear, robust cybersecurity controls and processes built on core fundamentals, including continuous learning about the risk and its related regulations, as well as communication and alignment among the board, management, and internal audit. This Global Knowledge Brief focuses on the development and implementation of an organization's cyber incident response strategy, and more specifically where internal audit can provide organizational value in assessing the controls critical to quickly recovering from a cybersecurity breach.  You can find part 1 here. You can find part 2 here.

Stability within the banking sector is crucial to preserve the trust that underpins a well-functioning economy. Government legislators and regulators globally have incorporated the Basel Framework, a composite of recommendations created after the 2007–09 financial crisis, into regulations for financial institutions.

The IIA's three-part Global Knowledge Brief series on cybersecurity presents an overview of the new SEC proposals, including the implications they have for cybersecurity reporting regulation in the U.S. as well as abroad. It also explores how internal auditors can play an important role in helping their organizations manage an altered compliance landscape that new regulations could soon create. You can find part 1 here.  You can find part 3 here.