Actualiteit

Continuous evaluation and improvement of the service provision is a key feature of professional organisations. Such reflection and development strongly contribute to the confidence in and added value of the services. This also holds true for internal audit functions (IAFs). The professional standards of the Institute of Internal Auditors (IIA) therefore include a mandatory programme for quality assurance and improvement. This includes an external, independent quality assessment, which must take place at least once every five years. This report describes the results of the analysis of the external quality assessments performed in the Netherlands in 2018. It provides insight into the conclusions and recommended points for improvement that surface frequently. With this report IIA Netherlands intends to provide IAFs with points of reference for the next step in their quality improvement. The report is also an aid for IAFs in preparations for external quality reviews.

The IIA’s Global Perspectives and Insights: 5G and the 4th Industrial Revolution, part one of a two-part series, looks at keys issues that are bound to arise once 5G is a reality. From implementation challenges, legal issues, and regulatory tests to disruptive technologies, data management, and cybersecurity concerns, the report seeks to prepare organizations for the potential impacts of 5G so they can proactively address the issues. This is for members only. To access it and other valuable resources, become a member today. You can find part 2 here.

The Internal Audit Foundation announced the release of a new research report, Striking an Optimal Balance Between Assurance and Consulting Services – Practical Insights from Internal Audit Leaders, based on the Foundation’s comprehensive Common Body of Knowledge study. As part of the research for this report, chief audit executives (CAEs) were asked to provide insight into how they balance assurance responsibilities with the types of consulting and advisory work that boards and management teams increasingly are requesting from their internal audit function. Audit executives described an ironclad commitment to maintaining internal audit objectivity and prioritizing internal audit’s assurance services over all other activities. However, the need for internal audit objectivity does not preclude them from successfully providing a wide range of internal audit advisory services, according to the report.

Now is the time to commit to the journey to evolve into a next-generation internal audit function. While this journey will be prolonged and marked with steep challenges, it is absolutely imperative given the intensifying nature of the digital transformation underway in the rest of the organization and the overall market. The results of the 2019 Internal Audit Capabilities and Needs Survey, in which Protiviti takes an in-depth look at the adoption of next-generation internal audit competencies such as agile auditing, artificial intelligence (AI), machine learning (ML), robotic process automation (RPA) and continuous monitoring, among many others, provide a detailed assessment of how internal audit groups are progressing on their next-generation journeys. 

Risk management is driven by more than regulations and external forces. Implementing efficient and effective risk management benefits organizations of any type and size by helping them to achieve operational and strategic objectives and to increase value and sustainability, ultimately better safeguarding their stakeholders. Internal auditors must evaluate the effectiveness and contribute to the improvement of risk management process (Standard 2120 – Risk Management). Benchmarking the current state of the organization’s risk management against a risk management maturity model is a good place to start this type of assessment. Benchmarking may help the internal audit activity communicate with senior management and the board about the organization’s level of risk management maturity and about aspiring to improve the process and advance in maturity. This information also enables internal auditors to appropriately tailor each engagement, taking into account the maturity of the area or process under review. This guidance provides examples of risk management maturity models and a basic methodology internal auditors may use to provide independent assurance that the organization’s risk management process is effective. Applying the guidance will help internal auditors protect and enhance organizational value and fulfill the expectations of the board and senior management.