PwC Role of Internal Audit in Corporate Governance September 2010 Tumin Gültekin, Partner.

Slides:

Advertisements

Similar presentations

Organizational Governance

Advertisements

VALUE OF INTERNAL AUDITING: ASSURANCE, INSIGHT, OBJECTIVITY A PRESENTATION TO STAKEHOLDERS ABOUT THE VALUE OF INTERNAL AUDITING.

Thematic evaluation on the contribution of UN Women to increasing women’s leadership and participation in Peace and Security and in Humanitarian Response.

Succession and talent management

IMFO Audit & Risk Indaba June 2012

Core principles in the ASX CGC document. Which one do you think is the most important and least important? Presented by Casey Chan Ethics Governance &

Own Risk & Solvency Assessment (ORSA): The heart of Risk & Capital Management John Spencer Director, Ultimate Risk Solutions.

Best practice partnership models

Supervisory Committee Communications with Management and the Board

Development of internal control: methodology and responsibility

It’s Time to Talk About Risk and Control

The Development of Enterprise Risk Management and Supervision for Insurance Companies in Taiwan Dr. Huang, Tien-Mu Director General, Insurance Bureau Financial.

Introduction to Enterprise Risk Management (ERM)

Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.

Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.

CBIZ Risk & Advisory Services, LLC 1 Quality Assessments Lessons Learned/Best Practices Thomas A. Johnson, CIA November 13, 2007.

AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.

Pwc Performance Measurement Frameworks Acumen Fund - Discussion Document June 16, 2008 *connectedthinking.

6/2/20151 Enterprise Risk & Assurance Management in Zurich North America Brian Selby MA (Audit), FIIA, QiCA, MBCS, CISA.

Viewpoint Consulting – Committed to your success.

Quality evaluation and improvement for Internal Audit

Challenge Questions How good is our strategic leadership?

Purpose of the Standards

Board responsibility for internal control and risk management by Kiattisak Jelatianranat Chairman, The Institute of Internal Auditors of Thailand Director,

Planning and Strategic Management

“The Impact of Sarbanes Oxley, An Evolving Best Practice” Ellen C. Wolf Senior Vice President & Chief Financial Officer American Water National Association.

PAINTING THE FULL PICTURE

Corporate Governance: Beyond Compliance at a time of Recession Prof. Ashley G. Frank BA(Econ)[Magna Cum Laude], MDPA (Cum Laude], MBA, MCom [Cum Laude],

Information Technology Audit

Internal Auditing and Outsourcing

Challenges Faced in Developing Audit Plans and Programs 21 st March, 2013.

D-1 McGraw-Hill/Irwin ©2005 by the McGraw-Hill Companies, Inc. All rights reserved. Module D Internal, Governmental, and Fraud Audits “I predict that audit.

Global Risk Management Solutions Risk Management and the Board of Director: Moving Beyond Concepts to Execution Anton VAN WYK Partner, Global Risk Management.

Improving Corporate Governance in Malaysian Capital Markets – The Role of the Audit Committee Role of the Audit Committee in Assessing Audit Quality.

Implementing and Auditing Ethics Programs

CORPORATE GOVERNANCE Regulatory expectations and current good practice Charles Cattell The Cattellyst Consultancy.

1 Enterprise Risk Management (ERM) Program PNM Resources, Inc. March 29, 2007 Presentation to American Public Power Association March 2007 Austin, Texas.

AN INVITATION TO LEAD: United Way Partnerships Discussion of a New Way to Work Together. October 2012.

Topics → Business strategy must set goals → Partners selection → Criteria for selecting partners → Structure must maximize cooperation → Incentives for.

2011 PK Mwangi Global Consulting Forming a Strategy for your Business. Strategy refers to the plan that needs to be put in place to assist the business.

“ Heightened Expectations” for Corporate Governance AIBA 2 nd Annual Compliance Seminar June 14, 2012 Lester Miller, Senior International Advisor International.

Introduction In 1992, the Committee Of Sponsoring Organizations of the Treadway Commission (COSO) published Internal Control-Integrated Framework (1992.

Internal Control in a Financial Statement Audit

Logistics and supply chain strategy planning

© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.

Implementing and Auditing Ethics Programs

 Family Support Agency Family Resource Centre Review June 2009 Internal Audit Services.

Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.

The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.

SUERF Annual Lecture Risk Management – A supervisor’s approach Gabriel Bernardino EIOPA Chairman Helsinki, 22 September 2011.

© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |

Strategically Managing the HRM Function McGraw-Hill/Irwin ©2012 The McGraw-Hill Companies, All Rights Reserved.

Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.

RISK MANAGEMENT : JOURNEY OR DESTINATION ?. What is Risk? “ Any uncertain event that could significantly enhance or impede a Company’s ability to achieve.

Example Incident Mgmt Initiation No recording of Incidents Users can approach different departments Solutions of previous incidents are not available.

Chapter 3 Governance.

“How can audit committees ensure that they derive value from their internal audit function”.

Kathy Corbiere Service Delivery and Performance Commission

Inputs Processes Outputs Information Systems Planning Process

Or How to Gain and Sustain a Competitive Advantage for Your Sales Team Key’s to Consistently High Performing Sales Organizations © by David R. Barnes Jr.

Audit Committee in the Public Sector 30 September 2015 Corporate Executives: Barry Wheeler.

RISK MANAGEMENT IN THE PUBLIC SECTOR CONVERGING MULTIPLE STAKEHOLDER’S EXPECTATIONS Organised by National Treasury Presented by WELEKAZI DUKUZA CEREBRO.

SADCOPAC Conference Accountability and Transparency in SOEs– opportunities and challenges for the Public Accounts Committees. September 2012.

Chapter 5 ASX Guidelines for Listed Companies

Internal Audit Strategy Survey Results & Discussion

Presentation to the INTOSAI Working Group on IT Audit Systems assurance and data analytics for continued audit quality and improved efficiency of audits.

MAZARS’ CONSULTING PRACTICE

An overview of Internal Controls Structure & Mechanism

Flexible Analytics Platform for Health Plans Value Proposition

Presentation transcript:

PwC Role of Internal Audit in Corporate Governance September 2010 Tumin Gültekin, Partner

PricewaterhouseCoopers 2 Internal Audit transformation Contents SectionPage 1. Determining the role of internal audit3 2. Transforming the role regarding corporate governance11 3. Questions24

PricewaterhouseCoopers 3 Internal Audit transformation Determining the role of internal audit

PricewaterhouseCoopers Overall structure

PricewaterhouseCoopers 5 Determining the role of internal audit As companies move toward enterprise risk management, Internal Audit must also evolve – or risk a diminished value proposition 20 th Century Internal Audit Model Controls assurance based on cyclical or routine audit plans The Common Internal Audit Model Controls assurance based on a risk-based internal audit plan The Risk-Centric Internal Audit Model Risk and control assurance based on the effectiveness of risk and control processes implemented by management Source: Internal Audit 2012 If the view (among stakeholders) grows that all Internal Audit does is test controls, then resource levels will have to come down. Chief Audit Executive, Financial Services Industry Traditional internal auditing will probably diminish in value if the organization moves towards formal risk management. Senior Executive, Rating Agency

PricewaterhouseCoopers 6 Determining the role of internal audit Aligning Internal Audit activity to corporate risks; strategic objectives; driving stakeholder value Source: PwC, composite of various studies of US and UK markets 60%20%15% 5% Strategic & business Strategic, operational and business risks underlie 80% of the rapid declines in shareholder value. Gaps exist between the current focus of many Internal Audit functions and the significant risks their organisations face. Over the past five years, internal auditors have been concentrating on basic financial reporting and compliance risks. OperationalFinancialCompliance

PricewaterhouseCoopers 7 Determining the role of internal audit Internal Audit functions need to have a clear view of where they want to be positioned “Controls-focussed” “Strategic/Operational focus”

PricewaterhouseCoopers 8 Some of the typical gaps in the role of internal audit Gaps common to many internal audit functions 1Risk assessment typically not aligned with drivers of shareholder value 2Internal audit activities focus on low value activities and controls or replicates external audit procedures 3Financial and human resource limitations and constraints 4Use of technology tools is limited and they are not integrated 5Audits are planned with overly broad objectives and scope 6Routine audits do not fully leverage available data analytical tools 7Assignment process and travel requirements create significant process inefficiencies 8Communications (reports, etc) and ratings consume significant resources 9Recommendations are not impactful 10Process is weighted toward repetition vs. relevance Gaps in coverage and inefficient processes are also driving a need for change Determining the role of internal audit

PricewaterhouseCoopers 9 Internal Audit transformation Transforming the role regarding corporate governance

PricewaterhouseCoopers 10 How internal audit can add value StrategyOrganization Technology People Process Organization Board expectations Dynamic mission vs. static / limited purpose Organisational alignment Flexibility People Stature across enterprise Achieve mission/objectives Attract and retain talent Source of talent Successful progression to management roles in the organisation Potential leaders of departments or business units Strategy Implementation Enterprise strategy Stakeholders’ expectations Shareholders value drivers Risk management alignment Technology Effective utilisation Enhance risk-based approach Leveraged to change process Substitute for labor Process Process efficiency Willingness to change Effective communication Transforming the role regarding corporate governance

PricewaterhouseCoopers 11 How internal audit can add value – Solvency II related StrategyOrganization Technology People Process ORSA System of governance Internal control system Risk management system Solvency II project Policy and procedures, documentation Responsibilities Proper resource and expertise Assessment and improvement of... Risk management strategy Stakeholders’ expectations Policies Investment Reinsurance Risk etc Data requirements IT systems and architecture Data quality and consistency Model Technical provisions Systems security and controls Transforming the role regarding corporate governance Reporting Management Internal External

PricewaterhouseCoopers 12 An approach to transforming internal audit Strategic Objectives Understand what the strategic objectives of the organisation are Stakeholder Value Understand what drives/devalues stakeholder value within the organisation Strategic Risks Understand what the strategic risks of the organisation are Strategy & RiskPeople Process Technology Capabilities Assessment Inventory of existing skills Conduct gap analysis Determine adequacy of resources to respond to all key risks Talent Management Use of internal and external resources Consider implementing a rotational staffing model to attract and retain talent Audit Cycle Improvements Align Internal Audit with organisation’s strategic objectives Reduce audit cycle time by conducting more targeted audits Increase value derived from focus on higher-risk areas Improve communication to stakeholders through concise, impactful reports Optimisation of Technology Reduce the labor content of audits by increasing the effectiveness of lower-risk audits Provide real time monitoring of significant risks Explore areas where technology can streamline or standardise a process Test entire data populations electronically Transforming the role regarding corporate governance

PricewaterhouseCoopers 13 Value enhancement and efficiency This approach is focused on aligning the IA strategy with the value-producing processes and activities of the organisation, while streamlining the IA operations to drive efficiency Process Technology Operating Strategy Internal Audit Strategy Organisation People Process Technology Value Enhancement Focus Improving Inefficiencies & Managing Costs Company Strategy / Shareholder Value Drivers/ Strategic Risks Transforming the role regarding corporate governance

PricewaterhouseCoopers 14 Transformed vs. traditional risk assessment approach Audit plan Identify Stakeholder Value Creating Activities Understanding Enterprise Risks (Strategic, Financial, Operations, Compliance) Evaluate Impact to Shareholder Value Define Audit Universe (eg geography, business unit) Identify Risks (financial operations, compliance) Evaluate Impact of Risks within Audit Universe Traditional Approach Traditional “bottom-up” approach based on stakeholder interviews and analysis. Focus is on coverage of identified risk areas, geography and business operations. Stakeholder Value Based Approach “Top-down” approach where coverage is driven by issues that directly impact shareholder value, with clear and explicit linkage to strategic issues of the organisation. Transforming the role regarding corporate governance

PricewaterhouseCoopers 15 Some strategies for strengthening the role of internal audit in corporate governance Strategies 1 Identify stakeholder expectations of internal audit; ask what management, the board, and the audit committee value 2Assess overall governance structure, policies, corporate culture and ethics 3Assess risk management structure and activities 4Link the company’s strategic objectives and shareholder value drivers to internal audit’s scope 5Consider how previously unaudited areas might be audited, then align auditable risks to the audit plan 6Eliminate routine, low-value audits 7Assess financial governance and reporting processes; and fraud control and communications process 8Identify inefficient processes, develop implementation plans for process efficiencies 9Review updated internal audit plan, along with cost-reduction ideas, with key stakeholders to gain support 10Implement (add measurement, feedback and adjustment processes for continuous improvement) What would be the greatest strategic value internal audit could and should contribute? How could do the companies manage the risks to shareholder value? Transforming the role regarding corporate governance

PricewaterhouseCoopers 16 Internal Audit transformation Questions

PricewaterhouseCoopers 17 Internal Audit transformation PwC – enhancing the value delivered by internal audit © 2009 PricewaterhouseCoopers. All rights reserved. “PricewaterhouseCoopers” refers to the network of member firms of PricewaterhouseCoopers International Limited, each of which is a separate and independent legal entity. *connectedthinking is a trademark of PricewaterhouseCoopers LLP (US).