Академический Документы
Профессиональный Документы
Культура Документы
In the days following the collapse of Lehman Brothers and Bear Stearns, the one thing financial
examiners seemed to agree on was that the cause was, at least in part, a failure to implement or
respond to proper internal auditing practices. Although what's come to light reveals a much more
complex and systemic series of failures, it's clear that if the basic tenets of internal auditing had
been put into practice and internal controls respected, the firms would not have exposed
themselves to such unreasonable risk.
The Institute of Internal Auditors (IIA) is the foremost international professional association for
internal auditing. The IIA's globally accepted definition of internal auditing states that:
Evaluate the efficacy of risk management procedures that are currently in place
Ensure that the organization is complying with relevant laws and statutes
Auditing Statutes
Although several major congressional acts become law following the 1929 stock market crash the Securities Act of 1933, The Trust Indenture Act of 1939, The Investment Company Act of
1940, and The Investment Advisers Act of 1940 - there are two that have come to define the role
of internal auditing within a legal framework: the Securities Exchange Act of 1934 and the
Sarbanes-Oxley Act of 2002. More recently, the Dodd-Frank Wall Street Reform and Consumer
Protection Act has specifically targeted practices within the financial service sector.
The Dodd-Frank Wall Street Reform and Consumer Protection Act was signed into law in
2010 and is currently being implemented. It seeks to stabilize the U.S. economy by improving
transparency and accountability within the financial service sector. It's objective is to prevent the
possibility of an undue financial burden being placed on taxpayers by ending bailouts and doing
away with the 'too big to fail' mentality. The implementation of this act into law saw the creation of
two new federal oversight agencies: The Financial Stability Oversight Council and The Office of
Financial Research. As this sweeping legislative reform is being put into effect, internal auditors
are paying close attention to how this will affect the work they perform. Although there is some
uncertainty in it's early stages, there are some things that are known to affect internal auditing
practices:
Internal auditors that report questionable conduct will be protected from retributive
termination
Internal auditors will adapt to new reporting mechanisms and audit systems
Internal Auditors will work with new mandatory internal risk committees
The Securities Exchange Act of 1934 was one of the first modern pieces of federal legislation
that sought to regulate the financial markets in the United States. The Act accomplished this goal
by establishing a centralized regulatory agency, the Securities and Exchange Commission
(SEC). The Act also set forth several mandatory audit requirements in Section 10A for publicly
traded companies. Some of the highlights of Section 10A include:
The creation of auditing procedures that are designed to detect illegal activities that may
have a direct effect on the determination of accurate financial statement amounts
The creation of procedures designed to identify related-party transactions that may have
a material effect on the company's financial statements
Required reporting of illegal activities to company management, the audit committee and
the board of directors
Refraining from engaging in prohibited activities that may result in a conflict of interest
The Sarbanes-Oxley Act of 2002 was passed in an effort to increase reporting and oversight
standards for publicly traded companies following Enron and WorldCom's high profile corporate
accounting scandals. In an effort to implement the new standards for integrated audits, the SEC
set up the Public Company Accounting Oversight Board (PCOAB) to oversee, inspect and
discipline companies that are required to comply with the provisions of the law. Some of the main
highlights of the Act include:
Certification of financial reports by company officers that reports do not contain false or
misleading information
Required periodic evaluations and reports regarding the efficacy of internal control
procedures and a list of any deficiencies in the current procedures
Criminal sanctions for failing to comply with the requirements of the Act
Most closely held companies and small businesses are not required by law to conduct audits
within their businesses; however, many private companies elect to employ auditors in an effort to
improve their business processes and procedures.
Many government agencies and non-profit organizations also employ auditors to monitor financial
activities and eliminate wasteful spending. The General Accounting Office and the Defense
Contract Audit Agency are two of the federal government's internal auditing departments
responsible for ensuring that resources are used efficiently within the administrative and
legislative branches of government.
The board of directors is responsible for making major decisions on behalf of the
business such as establishing corporate policies and procedures, enacting mergers and
taking steps to expand business operations.
The internal auditing department consisting of financial controllers led by a chief audit
executive (CAE), acts as the bridge between the board and the managers. They
essentially assess whether the Board's directives and policies are compliant with the law
and whether they increase the overall efficiency and productivity of the business. If the
board's directives are inefficient or are not being implemented by the management staff,
the internal auditor has a duty to report back to the board with his findings and
recommendations.
Various levels of management are responsible for carrying out the directions and
policies that are determined by the board of directors, as well as making day-to-day
decisions regarding how the business is run.
Collectively, the four techniques that make up the internal auditing process allow auditors to
collect information and evidence, analyze the collected data and report back to the board of
directors with suggestions for improvement if necessary.
In the course of bridging the gap between the board of directors and the corporate management
team, internal auditors are called upon to use their professional judgment to determine the
standards by which business activities are measured. This involves:
Arguably, one of the most important aspects of an internal auditor's job is the ability to perform an
objective evaluation of a company's activities. If company politics prevent the internal auditing
department from performing its job as intended, the company will not receive the benefits that are
associated with an honest internal audit such as increased efficiency and productivity, decreased
waste, financial savings and legal compliance.
Corporations can promote objective auditing by employing auditors that do not serve in any other
capacity within the organization. The Institute of Internal Auditors recommends in Section 1100 of
the IIA "Guidance and Standards" manual that internal auditors report to a single committee or
board member who has oversight authority over the internal auditing department in order to
maintain independence and objectivity. Auditors who fill other roles within the organization may
have a harder time performing objective audits since their findings may impact other groups,
individuals or managers who have seniority or authority over them.
professional development and certification designations. All members of the IIA are bound by the
Institute's Code of Ethics and Professional Standards.
In addition to the IIA's requirements, all internal auditors are bound by the standards contained in
procedure manuals that are developed and published by the individual companies that the
auditors work for. These standards may vary from business to business. Some smaller
businesses may not have established internal standards and procedures in place prior to bringing
an internal auditor on board. In such cases, the auditor will need to work closely with
management and the owners of the business to refine controls and develop internal auditing
procedures.
Bachelor's degree with a focus in the area of private sector accounting and internal
auditing
Students interested in working in the area of internal auditing will select elective courses in:
Business law
Business Management
Accounting Principles
Are you an accountant intested in auditing? Click here to learn more about Accounting vs.
Auditing.
If applicants meet the eligibility criteria, they will be required to pass a written exam before
receiving their certification. The internal auditing exam consists of four main topics that include:
general principles of accounting, internal auditing techniques and principles of management.
The IIA also offers specialty certification including:
Certified Financial Services Auditor (CFSA), which offers three exam options based on a
candidate's industry: banking, insurance, or securities
What is Auditing?
By Carol Wiley, Accountingedu contributing writer
Updated April 2013
Financial auditing is the process of examining an organization's (or individual's) financial records
to determine if they are accurate and in accordance with any applicable rules (including accepted
accounting standards), regulations, and laws.
External auditors come in from outside the organization to examine accounting and financial
records and provide an independent opinion on these records. Law requires that all public
companies have their financial statements externally audited.
Internal auditors work for the organization as internal employees to examine records and help
improve internal processes such as operations, internal controls, risk management, and
governance.
Auditing Standards
The Public Company Accounting Oversight Board (PCAOB) maintains external auditing
standards for public companies (issuers) registered with the Securities and Exchange
Commission (SEC).
As of 2012, PCAOB has 15 permanent standards approved by the SEC and a number of interim
standards that reflect generally accepted auditing standards, as described in standards issued by
the Auditing Standards Board (ASB), which is part of the American Institute of CPAs (AICPA).
The ASB also issues Statements on Auditing Standards (SASs) that apply to preparing and
releasing audit reports for nonissuers (companies not required to register with the SEC). AICPA
members who audit a nonissuer are required by the AICPA Code of Professional Conduct to
comply with these standards. As of 2012, there are more than 60 active standards.
For internal auditing, the Institute of Internal Auditors provides a conceptual framework called the
International Professional Practices Framework (IPPF) that provides guidance for internal audits.
Some of the guidance is mandatory, while others are considered strongly recommended, but not
required by law.
Audit Planning
Audit planning includes deciding on the overall audit strategy and developing an audit plan.
Auditing Standard No. 9 from the PCAOB describes an external auditor's responsibility and the
requirements for planning an audit. According to standard No. 9, an audit plan is expected to
describe the planned nature, extent, and timing of the procedures for risk assessment and the
tests to be done on the controls and substantive procedures, along with a description of other
audit procedures planned to ensure the audit meets PCAOB standards.
For internal auditing, the Institute of Internal Auditors provides guidance for audit planning.
Planning starts with determining the scope and objectives of the audit.
Internal auditors need to understand the business, operations, and unique characteristics of the
department/unit being audited and to develop an audit plan that defines the procedures needed
to do an efficient and effective audit.
Performing the full audit cycle including risk management and control
management over operations effectiveness, financial reliability and
compliance with all applicable directives and regulations
Job brief
We are looking for an objective Internal auditor to add value and improve our
operations by bringing a systematic and disciplined approach to the
effectiveness of risk management, control, and governance processes. The
successful candidate will possess a thorough knowledge of accounting
procedures and a sound judgement.
Responsibilities
Perform and control the full audit cycle including risk management and
control management over operations effectiveness, financial reliability
and compliance with all applicable directives and regulations
Prepare and present reports that reflect audits results and document
process
Requirements