Академический Документы
Профессиональный Документы
Культура Документы
CBOK: Stakeholders Advice to the Chief Audit Document a clear development plan to address
Executive the most important gaps in capabilities.
Discuss with executive management and board
This Global Internal Audit Common Body of Knowledge members the self-assessment findings and the
(CBOK) Stakeholders report offers key insights into development plans. Solicit approval and consent.
what audit committees (ACs) and management look for Seek out a mentor (internal or external) who is in
in heads of audit. a senior leadership position.
According to the survey of over 1,100 board members, Action items for a CAE to balance competing priorities:
Chief Executive Officers (CEOs) and Chief Financial Develop strong relationships with stakeholders of
Officers (CFOs) from 23 countries, they want chief all types and levels.
audit executives (CAEs) who exhibit strong business Do not hesitate to take positions when they are
acumen, have demonstrated leadership skills and can needed.
manage competing priorities, as well as influence Stay grounded in professional obligations.
organisational culture, as summarised below: Build excellent interpersonal skills to be ready for
use when they are critical.
1. Exhibit strong business acumen, including
knowledge of the industry, the ability to under- Action items for a CAE to promote change in
stand business strategy, and the insight to organisational culture:
understand and assess risks.
Discuss with stakeholders the culture desired for
2. Demonstrate leadership skills, technical the organisation to help ensure the desired
competence, innovation, and relational culture is defined and agreed-upon.
competence with audit staff and stakeholders. Assess the culture of the internal audit (IA)
function to ensure it models the culture desired
3. Manage competing priorities, demands, and
for the entire organisation.
conflicts within the organisation, including
Embrace the role of educator and change agent,
communication with all areas of the organisation
each of which gives the ability to the CAE to
with objectivity and integrity.
improve the organisations culture.
4. Seek to influence the culture of the organisation. Confirm with stakeholders that IA is viewed not
Modeling right behaviour and thinking, inspiring only as an enforcer of rules, but also as a valued
discussion, and acting as a change agent is crucial contributor to the improvement of the
to helping improve organisational culture. organisation and its culture.
1
IIA Malaysia e-techline
April 2017 Issue 02/17
The Security Intelligence Center - Next Steps: Slightly over 50% of respondents reported that
Beyond Response to Anticipation their organisations use threat intelligence and
Joint research by Internal Audit Foundation and analytics tools, while nearly 65% said that they use
event collection tools (Exhibit 3).
Crowe Horwath
These responses suggest that organisations have
As cyberattacks grow in frequency, severity, and begun to implement the functions associated with
a SOC even if they have not yet taken the steps to
complexity, cybersecurity professionals are urging
establish a formal center.
organisations to move beyond a defensive and reactive
approach to a more proactive approach, allowing for
the prediction and anticipation of cybersecurity
threats.
2
IIA Malaysia e-techline
April 2017 Issue 02/17
Reference:
http://theiia.mkt5790.com/Cybersecurity