Professional Documents
Culture Documents
Managing Internal Audit Activity: Promoting and Supporting Effective Organizational Governance
Managing Internal Audit Activity: Promoting and Supporting Effective Organizational Governance
Managing
Internal Audit
Activity
Current Scenario
Ethical Values
Governance “Umbrella”
Board of Directors
Organizational Alignment
Risk Owners
4
Three Lines of Defense
• All three lines of defense
should exist—strongest
when separate, and clearly
defined.
• When blended approach
exists, apply safeguards:
• Report to AC directly.
• Ensure effective AC
and board monitoring,
and governance
oversight.
• Communicate and
document potential
risks of combining
lines.
• Consider an executive
to whom all internal
assurance groups
report directly.
It is effectively managed when….
• Results achieved the purpose and the
responsibilities included in the charter
• Activities conforms with the definition of
internal auditing and the standards; and
• Auditors and all individuals part of the audit
demonstrate conformance with the code of
ethics and the standards
What do Stakeholders Want?
• Demand side for Governance and Strategic
Performance audits:
Board cares more about governance failure risk
(value preservation orientation).
Executive management cares more about
strategy/performance risk (value creation orientation).
8
Specific CAE Role
• Planning (Goals-realizable within specified operating plans;
Engagement work Schedule-activities, when,
estimated time; staffing and fin budget)
12
Internal Audit Governance-Related Activities
13
Internal Audit Skill Sets
• Need ability to identify and assess hard
and soft measures of organizational
culture
16
Good Strategy is not Enough!
“Culture eats
strategy for
breakfast.”
Peter Drucker
Culture-Driven Governance Challenges
A Risk-based Approach
Availability of resources with relevant subject matter expertise,
industry knowledge, leading practices, and tools and technology
Fear that potential fraud risks are not being addressed
18
Internal Audit Governance
Responsibilities—TODAY
Seeking to understand stakeholder expectations, and evaluating
effectiveness in meeting those expectations
19
Internal Audit Governance
Responsibilities—FUTURE
Internal auditors who step up and effectively address the challenges
can demonstrate their positive contributions.
They will:
• Be recognized as effective leaders, and continue to elevate their
stature and reputation in the workplace
Value to Organization
21
Can an Internal
Audit Activities be
Outsourced?