Beruflich Dokumente
Kultur Dokumente
Internal Auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes. The internal audit activity evaluates risk exposures relating to the organization's governance, operations and information systems, in relation to: Effectiveness and efficiency of operations. Reliability and integrity of financial and operational information. Safeguarding of assets. Compliance with laws, regulations, and contracts.
The scope of internal auditing within an organization is broad and may involve topics such as the efficacy of operations, the reliability of financial reporting, deterring and investigating fraud, safeguarding assets, and compliance with laws and regulations. Internal auditing is a catalyst for improving an organizations effectiveness and efficiency by providing insight and recommendations based on analyses and assessments of data and business processes. With commitment to integrity and accountability, internal auditing provides value to governing bodies and senior management as an objective source of independent advice.
Internal audit will normally produce an annual plan of work to be performed, concentrating on areas of higher risk. Structured timetables and work programmes (e.g. audit programmes) will then be designed for each assignment. At the end of each review, an audit report will normally be prepared for senior management attention and action. Ad hoc assignments may also be performed at the request of senior management where problems or irregularities require further investigation. Further, there are real advantages in ongoing Internal Audit involvement in major projects, including systems developments. In this way audit concerns can be addressed up-front and action taken before the problem becomes too entrenched.
Within the Internal Audit department, the management responsibilities may be split either on a regional basis or by business area. In some cases a hybrid, matrix structure may be in place. In practice it is advisable for the Internal Audit organisation structure to mirror the institutions own business structure where possible. Most Internal Audit departments of financial institution will also include IT Auditors who will review the controls and security over the operating systems, networks and applications as well as providing audit assistance to systems developments,
employing staff with mathematical backgrounds to examine the models used to price and risk manage complex financial products.