Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presented by: Patricia “Patti” Snopkowski Chief Auditor, OUS Internal Audit Division 2011 Annual Risk Assessment.

Published byArleen Merritt Modified over 9 years ago

Similar presentations

Presentation on theme: "Presented by: Patricia “Patti” Snopkowski Chief Auditor, OUS Internal Audit Division 2011 Annual Risk Assessment."— Presentation transcript:

1 Presented by: Patricia “Patti” Snopkowski Chief Auditor, OUS Internal Audit Division 2011 Annual Risk Assessment

2 Objective and Goal of a Risk Assessment Identify audits that will add value to the organization. Reduce the risk of losses related to internal control structure breakdowns Identify opportunities for increased efficiencies Reinforce existing control strengths 2

3 IIA Risk Assessment Standards 2010 – Planning The chief audit executive must establish risk-based plans to determine the priorities of the internal audit activity, consistent with the organization's goals. 3

4 IIA Risk Assessment Standards 2010.A1 The internal audit activity’s plan of engagements must be based on a documented risk assessment, undertaken at least annually. The input of senior management and the board must be considered in this process. 2010.A2 The chief audit executive must identify and consider the expectations of senior management, the board, and other stakeholders for internal audit opinions and other conclusions. 4

5 IIA Risk Assessment Standards 2010.C1 The chief audit executive should consider accepting consulting engagements based on the engagement’s potential to improve management of risks, add value, and improve the organization’s operations. Accepted engagements must be included in the plan. 5

6 IIA Risk Assessment Standards 2020 – Communication and Approval The chief audit executive must communicate the internal audit activity’s plans and resource requirements, including significant interim changes, to senior management and the board for review and approval. The chief audit executive must also communicate the impact of resource limitations. 6

7 IIA Risk Assessment Standards 2030 – Resource Management The chief audit executive must ensure that internal audit resources are appropriate, sufficient, and effectively deployed to achieve the approved plan. 7

8 Elements of a Risk Assessment 1.Audit universe 2.Risk analysis 3.Management input 4.Judgment 5.Mechanics (i.e. number crunching) 6.Review and Approval 8

9 Step 1- OUS Audit Universe 1.Governance and Leadership 2.Academic Units 3.Research and Development 4.Student Services 5.Auxiliary Services 6.Information Technology 7.Human Resources 8.Financial Asset Management 9.Plant/Facility Operations 9

10 Step 2- Risk Analysis Sources of information Fiscal analysis Org change analysis Industry trends Past experience Management input 10

11 Step 2- Risk Analysis – Industry trends Chronicle of Higher Education University Administrator Associations Association of College and University Auditors – Past experiences GAO and Inspector General Offices State Auditors and Controllers Offices Risk management and crime reports Key Performance Measure Reports Board minutes and campus news summaries 11

12 Step 3-Management Input Top Challenges/Risks Noted in survey 1.Budget constraints 2.Growth 3.Policy and compliance 4.Liability increases with tort limitations 5.IT – operational and strategic limitations 6.Staff development and morale 7.Implementation of new initiatives/reorganizations 12

13 Step 4- Judgment For each unit under various functional areas mark : – Impact of inherent risk (HML) – Likelihood of risk (HML) 13

14 Step 5- Mechanics Determine available hours – 2080 hours per year Hour allocation methodology – Direct hours to areas with available resources. Devoted to High/High areas. – Indirect hours (25-30%) Allocate contingency hours (misc mgmt requests and frauds) 14

15 Step 6- Review and Approval Final review and formal approval – Provide feedback on how their input was considered. – Outline limitation of resources and level of audit universe coverage. – Seek formal approval – http://www.ous.edu/state_board/meeting/ dockets (February 2011) http://www.ous.edu/state_board/meeting/ dockets 15

16 2011 Internal Audit Plan 1.Governance/Leadership- Consultation on policy and control implications 2.Instruction and Academic Support- International programs and extended studies 3.Research and Development- Selected grant compliance 4.Student Services- Health center operations 5.Human Resources Management- Business center processing 6.Fiscal/Asset Management- Treasury management/internal bank and Vendor and refund payment controls 7.Plant Operations- Facilities operations 8.Auxiliaries and Services- Museum collection inventory and NCAA football attendance certifications 9.Information Technology- Selected application controls 16

17 2011 Internal Audit Plan External Audit Liaison – A-133 and Financial Statement Audits – NCAA Agreed Upon Procedures – Secretary of State Audits Division – Other assistance as needed 17

18 Questions ?

Download ppt "Presented by: Patricia “Patti” Snopkowski Chief Auditor, OUS Internal Audit Division 2011 Annual Risk Assessment."

Similar presentations

. . . a step-by-step guide to world-class internal auditing

. . . a step-by-step guide to world-class internal auditing
UW Risk Assessment Overview of Risk Assessment. UW Risk Assessment Overview of Risk Assessment Process Gather Information on Risk Universe Identify High.

UW Risk Assessment Overview of Risk Assessment. UW Risk Assessment Overview of Risk Assessment Process Gather Information on Risk Universe Identify High.
Process and Procedure Documentation. Agenda Why document processes and procedures? What is process and procedure documentation? Who creates and uses this.

Process and Procedure Documentation. Agenda Why document processes and procedures? What is process and procedure documentation? Who creates and uses this.
IMFO Audit & Risk Indaba June 2012

IMFO Audit & Risk Indaba June 2012
A Presentation on the Management and Curriculum Audit for the Guam Public School System April 14, 2009.

A Presentation on the Management and Curriculum Audit for the Guam Public School System April 14, 2009.
Internal Audit Awareness

Internal Audit Awareness
Queensland Treasury Department Role and Function of Treasury Financial Framework Charter of Fiscal and Social Responsibility and Priorities in Progress.

Queensland Treasury Department Role and Function of Treasury Financial Framework Charter of Fiscal and Social Responsibility and Priorities in Progress.
It’s Time to Talk About Risk and Control

It’s Time to Talk About Risk and Control
9 th Annual Public Health Finance Roundtable November 3, 2012 Boston, MA Peggy Honoré.

9 th Annual Public Health Finance Roundtable November 3, 2012 Boston, MA Peggy Honoré.
BNSF Ethics and Compliance Program Roger Nober Executive Vice President Law and Secretary July 13, 2011.

BNSF Ethics and Compliance Program Roger Nober Executive Vice President Law and Secretary July 13, 2011.
Welcome! Internal Auditing CHAPTER 1. Definition Internal auditing is an independent, objective, assurance and consulting activity designed to add value.

Welcome! Internal Auditing CHAPTER 1. Definition Internal auditing is an independent, objective, assurance and consulting activity designed to add value.
2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,

2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,
Audit Guidance Using the Federal Information System Controls Audit Manual (FISCAM) to Achieve Audit Objectives in Financial and Performance Audits Mickie.

Audit Guidance Using the Federal Information System Controls Audit Manual (FISCAM) to Achieve Audit Objectives in Financial and Performance Audits Mickie.
Demystifying a “Risk-focused Surveillance Approach” to Establishing and Monitoring Standards for Sound Systems of Financial Management 10 th Annual Public.

Demystifying a “Risk-focused Surveillance Approach” to Establishing and Monitoring Standards for Sound Systems of Financial Management 10 th Annual Public.
Planning the Audit; Linking Audit Procedures to Risk

Planning the Audit; Linking Audit Procedures to Risk
By Saurabh Sardesai www.starvaluemodel.com October 2014.

By Saurabh Sardesai October 2014.
Quality evaluation and improvement for Internal Audit

Quality evaluation and improvement for Internal Audit
Office of Inspector General (OIG) Internal Audit

Office of Inspector General (OIG) Internal Audit
Purpose of the Standards

Purpose of the Standards
Risk Based Internal Audit in Banks

Risk Based Internal Audit in Banks

Similar presentations

Ads by Google