Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Sridhar Ramamoorti,
Ph.D., CIA, CFSA, CGAP,
CRMA
and
Alan Siegfried, CIA,
CISA, CPA, CRMA, CCSA
• Participation Levels
– 100% representation from IIA institutes
– Responses from 166 countries
– 23 languages
CBOK 2015 Practitioner Study
CBOK 2015 Practitioner Study
Age was obtained from 12,780 respondents; Organization Type was obtained
from 13,032 respondents; Gender was obtained from 14,357 respondents; and
Staff Level was obtained from 12,716 respondents.
Executive Summary
Recent governance crises have increased the need for Internal Audit’s
involvement and review of governance practices and policies.
Ethical Values
Governance “Umbrella”
Board of Directors
Organizational Alignment
Risk Owners
9
Three Lines of Defense
• All three lines of defense
should exist—strongest
when separate, and clearly
defined.
• When blended approach
exists, apply safeguards:
• Report to AC directly.
• Ensure effective AC
and board monitoring,
and governance
oversight.
• Communicate and
document potential
risks of combining
lines.
• Consider an executive
to whom all internal
assurance groups
report directly.
Internal Audit: Position/Stature/Credibility within
the Organization’s Governance Structure
• Seventy-five percent of participants indicated that the chief audit
executive (CAE) in their organization reported administratively
to either the chief executive officer (CEO)/president, or the audit
committee/board of directors.
– 48% report to CEO or equivalent
– 12% report to audit committee
– 15% report to board of directors
15
Key Findings from 2015 CBOK Survey
22
What can Internal Audit Bring to the Table?
Provide independent, objective assessments on:
26
Potential Internal Audit Governance Involvement
• Participate in cross-functional ‘what if’ discussions to reconsider governance
risks and identify action plans.
• Help design ‘how to’ improve governance processes to better address risks.
27
Internal Audit Governance-Related Activities
28
Internal Audit Skill Sets
• Need ability to identify and assess hard
and soft measures of organizational
culture
31
Good Strategy is not Enough!
“Culture eats
strategy for
breakfast.”
Peter Drucker
Lack of Support Can Be a Hurdle
Culture-Driven Governance Challenges
A Risk-based Approach
Availability of resources with relevant subject matter expertise,
industry knowledge, leading practices, and tools and technology
Fear that potential fraud risks are not being addressed
35
Internal Audit Governance
Responsibilities—TODAY
Seeking to understand stakeholder expectations, and
evaluating effectiveness in meeting those expectations
36
Internal Audit Governance
Responsibilities—FUTURE
Internal auditors who step up and effectively address the
challenges can demonstrate their positive contributions.
They will:
• Be recognized as effective leaders, and continue to elevate
their stature and reputation in the workplace
Business Insight
Monitor Control and
Compliance • Strategy-driven
• Data-driven approach approach
• Focus on control and • Focus on key initiatives
• Risk-driven approach
process effectiveness • Industry expertise
• Leverage automated
• Leverage KRIs and KPIs • Process and controls
controls and data
analysis • Leverage benchmarks optimization
• Expanded risk coverage • Share leading practices • Operational auditing
(internal and external) • Functional expertise
• Efficient monitoring
• Leveraging ICFR, • Data modeling
compliance and fraud
Foresight
Insight
Hindsight
Value to Organization
38
Author Information
Dr. Sridhar Ramamoorti Alan Siegfried
Managing Director, Current Board/Audit Committee
Quetzal GRC, LLC member, Managing Director
and Quetzal GRC, LLC, and
School of Accountancy faculty, Accounting and Information
Michael J. Coles Assurance faculty, Robert H. Smith
College of Business, School of Business, Univ. of MD.
Kennesaw State University. Former CAE of several international
organizations and Big Four partner.
470.578.2675 (o)
630.347.9172 (c) 410.570.5400 (c)
Email: Email:
sri.ramamoorti@gmail.com siegfal@gmail.com
CBOK 2015 Releases
Governance, Risk, and Southern Regional
IIA International IIA Financial Conference IIA Midyear
Control Conference Services Exchange All Star Conference
Conference Committee Meetings
South Africa Conference ACIIA Conference
ECIIA Conference
Jul. 2015 Aug. 2015 Sept. 2015 Oct. 2015 Nov. 2015 Dec. 2015
Driving Success Navigating A Global View Who Owns Risk? Auditing the Delivering the
in a Changing Technology’s Top of Financial A Look at Public Sector: Promise:
World: 10 10 Risks: Internal Services Internal Audit’s Managing Measuring
Imperatives for Audit’s Role Audits: Changing Role Expectations, Internal Audit
Internal Audit Challenges, Delivering Value and
Staying a Step Opportunities, Combined Results Performance
Ahead: Internal and the Future Assurance: One
Audit’s Use of Language, One Mapping Your
Technology Voice, One View Career:
Competencies
Responding to Necessary for
Fraud: Exploring Internal Audit
Where Internal Excellence
Auditing Stands
CBOK 2016 Releases
GAM Conference Leadership IIA International
SoPac Conference Conference Conference
Jan. 2016 Feb. 2016 Mar. 2016 Apr. 2016 May 2016 Jun. 2016
CAE Career Path: GREAT Ways Regional IIA Standards: Promoting and
Engaging Third Characteristics to Motivate Reflections: Conformance Supporting
Parties for and Your Staff Africa and Trends Effective
Internal Audit Competencies of Organizational
Activities: Today’s Internal Maturity Levels The Top 7 Skills Quality Governance:
Strategies for Audit Leaders for Internal CAEs Want: Assurance and
Successful Audit Building the Improvement Bench marking
Relationships Departments Right Mix of Program Trends Internal Audit
Around the Talent for Your Maturity
Interacting with World Organization
Audit Women in IA:
Committees: Lifelong Representation
The Way Learning for and Trends
Forward for Internal
Internal Audit Auditors: Ethical
Certification and Pressures
Training Levels Faced by
Worldwide Internal Auditors
YOUR DONATION DOLLARS AT WORK
This presentation is FREE, thanks
to the generous contributions from
individuals, organizations, IIA
chapters, and IIA institutes around
the world.
www.theiia.org/goto/CBOK