Vaktechnische Publicaties

Fraud can disrupt operations, pose compliance risks, blemish an organization’s reputation, and cost an organization and its stakeholders substantial amounts of money. While management, with board oversight, holds the primary responsibility for establishing and monitoring effective controls to deter and detect fraud, the internal audit activity is required to evaluate the risk of fraud, according to the International Standards for the Professional Practice of Internal Auditing. Additionally, the chief audit executive (CAE) must report significant risk and control issues, including fraud, to senior management and the board (Standard 2060 – Reporting to Senior Management and the Board). The Standards require the internal audit activity to assess fraud risks at the organizational and engagement level. To ensure adequate review of the risks relevant to each engagement, internal auditors should conduct a fraud risk assessment as part of engagement planning (Standard 2210.A1). Over time, the knowledge the internal audit activity obtains during individual engagements can be compiled into a more robust and comprehensive organizationwide fraud risk assessment. This practice guide describes the characteristics of fraud and the process of identifying and assessing fraud risks during engagement planning. The exact process of incorporating a fraud risk assessment into engagement planning may vary according to the needs of the individual organization, internal audit activity, and engagement. However, the process generally includes the following steps: Gather information to understand the purpose and context of the engagement, as well as the governance, risk management, and controls relevant to the area or process under review. Brainstorm fraud scenarios to identify potential fraud risks. Assess the identified fraud risks to determine which risks require further evaluation during the engagement.

The interests, roles, responsibilities, and activities of internal auditors and external auditors are complementary and sometimes similar; in some cases,they overlap at one point or another. For example, the overlap between an internal auditor and an external auditor may include carrying out an efficient analysis of transactions; becoming intimately familiar with an organization’s governance, risk management, and internal control systems; and sharing and developing accurate final reports. This is not a surprise; each role is based on a professional discipline and operates to that discipline’s standards. As such, the external auditor’s professional concerns include the inaccuracies and misstatements that affect final business accounts (financial information). Internal auditors are concerned with the wide range of governance, risk management, and internal controls (nonfinancial information). Keep in mind, internal audit and external audit do not compete and they do not conflict; rather, one complements the other. Both are crucial to good governance, and they should meet at some point and work together. However, there are distinct differences in the roles, and certainly in the boundaries of the work that they perform. The differences, summarized below, are often under-recognized, and are perhaps even misunderstood and confused by stakeholders.  

Artificial Intelligence, Internal Audit’s Role, and Introducing a New Framework Part 1 Part I of a three part series, this thought leadership piece explores the concept of artificial intelligence and presents a high level overview o f considerations for the internal auditing pr ofession with regard to AI goverance; data architecture and infrastructure; the human factor: measuring performance; data quality; and the black box factor. The article ends with recommendations on what internal auditors can do now to prepare to provide assurance and advisory services related to AI. Avaiable in multiple languages. You can find part 2 here. You can find part 3 here.  This is for members only. To access it and other valuable resources, become a member today.

Hier een teaser in te vullen

Dat het Internal Audit vak behoorlijk in de lift zit, daarover is nauwelijks discussie. Zowel in kwalitatieve als in kwantitatieve zin. In opdracht van het Instituut van Internal Auditors hebben drs. Robert Bogtstra RA en drs. Remko Renes RA onderzoek uitgevoerd naar de Internal Audit Functie bij beursgenoteerde vennootschappen in Nederland. Dit onderzoek laat zien dat het aantal Internal Audit Functies bij Nederlandse beursvennootschappen de afgelopen jaren stijgt, een trend die ook in 2017 doorzet. Zes Nederlandse beursfondsen hebben in 2017 aangegeven in de loop van 2017 te starten met een eigen IAF, zowel binnen de MidCap (IMCD Group, Sligro Food Group), SmallCap (Beter Bed, Brunel, ForFarmers) als een lokale vennootschap (Neways Electronics).