Professional Documents
Culture Documents
2019 CIA P2 SI 2C Assurance Engagements
2019 CIA P2 SI 2C Assurance Engagements
Self-Assessments
Advantages of RCSA
• It increases employee understanding of
the company’s risks and controls.
• It raises employee control consciousness.
• It provides a mechanism for early risk
detection.
• It encourages more open communication,
teamwork, and continuous improvements.
• It empowers employees and enhances
accountability.
RCSA Procedures
• Identifying potential risks and
exposures.
• Assessing the control processes that
mitigate or manage those risks.
• Developing action plans to reduce risks
to acceptable levels.
• Determining the likelihood of achieving
business objectives.
RCSA Approaches
The three primary RCSA approaches are:
1. Facilitated approach
• Client-facilitated
• Audit-facilitated
2. Questionnaire approach
3. Self-certification approach
1. Facilitated Approach
Internal auditors with specialized training can
help organize facilitated team workshops, in
which information is gathered from work teams
representing different levels or areas in the
business unit or function.
Workshops are conducted in a straightforward,
open, and productive manner and encourage
participants to speak candidly about what is
working well, what is not working well, and
what action needs to be taken.
Client-facilitated Workshops
The objective-based format focuses on the
best way to accomplish a business
objective.