certificate in internal audit
Post on 13-Sep-2014
263 views
DESCRIPTION
Join Today our Internal Audit Training courses and become a professional in the Audit Department. Contact me directly at [email protected]TRANSCRIPT
Certificate I
Essentials Of Internal Audit9 – 13 February 2014 • 31 August – 4 September 2014
Certificate II
The Developing Internal Auditor 9 – 13 March 2014 • 12 – 16 October 2014
Certificate III
Risk Based Auditing16 – 20 March 2014 • 19 – 23 October 2014
Certificate IV
Advanced Audit Techniques15 – 19 June 2014 • 7 – 11 December 2014
Certificate V
Leading The Internal Audit Function22 – 26 June 2014 • 14 – 18 December 2014
Certificate In Internal AuditA Series Of Training Certificates For Audit Professionals
5 Cutting-Edge Audit Certificates In One Exclusive Programme
www.iirme.com/auditcertificate
Follow us on: www.twitter.com/iirmiddleeastwww.facebook.com/iirmiddleeastwww.youtube.com/iirmiddleeast
Dusit Thani Hotel, Dubai, UAE
*Earn Upto
30 CPE credits on each course
The George Washington University School of Business, IIR Middle East’s Academic Partner, is dedicated to excellence: in its teaching and research about management, in the public and private sectors, within the United States and internationally.
The school has a 75 year history of preparing men and women for leadership in both the public and private sectors. Known internationally for its dedication to academic excellence, the school draws students from all parts of the United States and around the world.
Beyond first class teaching and scholarship, the school’s faculty offers practical experience in the issues and challenges confronting business and government. Its research centres link faculty and students with US and international business and government organisations. Recent distance learning initiatives have expanded the school’s global reach.
Course Requirements And Certificates
Delegates must meet two criteria to be eligible for an IIRME/GW Certificate of Completion for a course:
1. Satisfactory attendance – Delegates must attend all sessions of the course. Delegates who miss more than 2 hours of t he course sessions will not be eligible to sit the course assessment.2. Successful completion of the course assessment.
Delegates who do not meet these criteria will receive an IIRME Certificate of Attendance. If delegates have not attended all sessions, the Certificate will clearly state the number of hours attended.
Business Risk Management Ltd is in the process of seeking approval for registration with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors.
State boards of accountancy have the final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.learningmarket.org
Course AssessmentAssessment will be based on an interview with each delegate anda multiple-choice questionnaire, each equally weighted.
Meet Your Expert Course LeaderPhil Griffiths is founder and Managing Director of Business Risk Management Ltd. A Chartered Accountant with over 30 years experience in risk management, internal audit and fraud prevention as practitioner, professional adviser, facilitator and trainer.
His specialisms are:
• Assistingseniormanagementtoidentify,manageandthenexploit the risks within their business via facilitated business risk management programmes• HelpingInternalAuditfunctionstoimplementworldclassstandards• Developingfraudprevention,detectionandinvestigation programmes• Trainingbothprivateandpublicsectororganisationsinallthe above disciplines
He has extensive experience of the MENA region having trained professionals from over 600 organisations in this region during the past 15 years.
He has developed over 60 training courses on all aspects of internal audit, risk management and fraud and delivered them across the globe.
He is an accomplished author. His first book ‘Risk Based Auditing’ is an international best seller and his brand new book ‘Enterprise Risk Management’ – the key to business success’ is receiving much acclaim.
He is recognised as an accomplished and charismatic facilitator, trainer and lecturer and is in continual demand to speak at the most prestigious events on risk management, internal audit and fraud.
T: +971 4 335 2437 F: +971 4 335 2438 W: www.iirme.com/auditcertificate
• Heads of internal audit • Audit managers and those about to be appointed to that role • Directors responsible for internal audit
• Senior auditors • Audit managers and those about to be appointed to that role • Auditors that need to audit projects, contracts or technical business areas • Assurance professionals who need to assess technical issues
• Audit managers and senior auditors • Auditors responsible for developing or implementing a risk based approach
• Auditors with more than 6 months experience in internal audit • Auditors or other assurance professionals who want to significantly improve their reports • Personnel in other functions who need a wider understanding on the modern • internal audit role or improve their reports
• New entrants to internal audit • Internal auditors with up to 18 months experience • Those returning to or already working in internal audit who need practical guidance on the changing role of the function • Personnel in other functions who need a better understanding on the modern internal audit role
Who Should Attend:
Certificate VLeading The
Internal Audit Function
Certificate IVAdvanced Audit Techniques
Certificate IIIRisk Based Auditing
Certificate IIThe Developing Internal Auditor
Certificate IEssentials Of Internal Audit
V
IV
III
II
I
*CPE Credits (subject to approval) • Delegatescanearnupto30CPEcredits
After Completing This Course You Will Be Able To:• Practicetheskillsrequiredbyamodernauditor• ApplytheprofessionalstandardsoftheInstituteofInternalAuditors• Deliverarangeofauditassignments• Planandcompleteaneffectiveaudit• Deliversuccessfulauditprogrammes• Evaluatethebalancebetweenriskandcontrol• Writeareportwithimpact• Persuademanagementtoacceptyourrecommendations
CPE Credits • Delegatescanearnupto30 CPE credits in the auditing field of study
Who Should Attend?• NewentrantstoInternalAudit• Internalauditorswithupto18months’experience• ThosereturningtooralreadyworkinginInternalAuditwhoneed practical guidance on the changing role of the function• Personnelinotherfunctionswhoneedabetterunderstandingon the modern Internal Audit role
Course Level• Thisisabasiclevelcourseanddelegatesarenotrequiredtohave any previous experience in Internal Audit to attend• Therearenominimumeducationalrequirements• Noadvancepreparationisrequired• Deliverymethod–Group-live(withexercisesandrole-playsto simulate audit scenarios and situations that new auditors will encounter) • Apre-coursequestionnairewillbesentout2–3weekspriorto the course date to obtain some information about the delegates’ roles and to provide an opportunity to indicate specific learning requirements
New For 2014• NewIIAguidanceondeliveringInternalAudit• Howtodeliverauditassignments–step-by-stepguide• Howtogatherandevaluateinformation• 7attributesofeffectiveInternalAuditors• Howtofollowuprecommendations• Auditmethodologyflowchart
Why You Should AttendThis course covers everything you need to know as a newcomer to Internal Audit regarding the most effective audit practices.
There has probably never been a more important or interesting time to be an Internal Auditor. The function has changed significantly from the basic compliance and checking function it used to be.
People are joining Internal Audit from a variety of backgrounds and the function is becoming much more operationally rather than financially based.
Internal audit should be vibrant and exciting, adding real value to the organisation and being recognised as a catalyst for change and a business partner.
If you have staff who are new to Internal Audit you will want them to learn the best audit practices and be able to apply them efficiently.
The course will introduce you to the worldwide best practice and how to apply it.
Maybe you have auditors who are returning to the function, or staff who are to be seconded to you for a period of time? You will want them to learn about the changing role of the audit function.
Perhaps you work in a line function with responsibility for providing assurance to the Board and need a fuller understanding of the Internal Audit role.
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
Certificate ICourse Timings: Registration will be at 08:00 on Day One. The course will commence at 08:30 every day and finish at 14:30. There will be breaks for refreshments at approximately 10:30 and 12:30 and lunch will be served at the end of each day’s session.
Day One
The Challenges For Internal Audit
What Is Internal Audit?• NewIIAguidance• Howtheprofessionhaschangedoverthelastdecade• Whatitmeanstobeaninternalauditor
Exercise 1 – What is internal audit?
• Definitionsandtrends• InternalAuditroleandresponsibilities• Frequentlyaskedquestions• Misconceptionsabouttherole• Theglobaltree–IIAexplanationabouttherole
The Professional Standards• Integrity• Objectivity• Confidentiality• Proficiency• Dueprofessionalcare• Independence
Exercise 2 – The challenges for an inexperienced auditor
How Does The Role Differ From Other Assurance Providers?• Howshouldyoucoordinateyoureffortswithotherassurance providers?• Optimisingassurance–amodel• IIAGCCchallenges• CorporateGovernanceandtheIArole• TheAuditCommitteeandtheauditrelationship
Audit Skills• InternalAuditasacareerorsteppingstone• 7attributesofeffectiveInternalAuditors• TheIIAcompetencyframework
Exercise 3 – The skills inventory
• Technicalskills• Analyticalskills• Communicationskills• Softskills
Exercise 4 – Moon shot
Day Two
The Internal Audit Role
The Modern Approach To IA• PerceptionsofInternalAudit–resultsofsurveys• Howtheroleofthefunctionhasdeveloped• Whatisbestpractice?• Theauditcharter• Thechallenges
Exercise 5 – How is the role of IA changing?
Preparing For An Audit• ThedifferentapproachestoInternalAudit - Compliance - Systems Based Audit - Risk Based Audit - Assurance based IA• Stepsinpreparingforanaudit• Paperwithstep-bystep-guidewillbeprovided• Howtoapproachunfamiliarareas–guidancepaper• NewIIAguidanceondeliveringInternalAuditassignments• Thedangerofmakingassumptions• DeliveringtheIAflowchart
Essentials Of Internal Audit9 – 13 February 2014
31 August – 4 September 2014
The Need For A Risk Based Approach• ChallengefromtheIIA• Keyrequirementsofriskbasedauditing• TranslatingrisksintothebasisoftheIAprogramme• Askingaboutsurprises• Thelinkbetweenrisk,objectivesandcontrol
Exercise 6 – Risk and control
• Identifyingriskexposures• Reviewingtheriskregister• HowIAneedstotaketheriskpulse• Casestudyofariskbasedauditassignment• Documentinginternalcontrols
Exercise 7 – Planning an audit assignment
Meeting With Functional Management To Discuss The Audit• Whentomeet• Theneedtotreatyourcustomerswithrespect• Techniquestoputmanagementatease• IIAguidanceoninfluencingskills• Securingmanagementinput
Exercise 8 – Pre-meeting with management: role play
• Functionalandauditobjectives• Developingtermsofreferencefortheassignment• Determiningsourcesofinformation
Day Three
Internal Audit And The External Audit Relationship
Meeting Management Expectations• Relationshipswithmanagement• Expressingyourselfeffectively• Recognisingdifferentmanagementstyles
Exercise 9 – Getting the most out of audit customers
• Theneedforsimplicity• Powerwords• Auditor–itmeanssomeonewholistens• Activelistening
Exercise 10 – Listening exercise
• Howtogetonthesamewavelengthasmanagement• Persuasionandnegotiation• Explainingtheauditapproachtostaffofthefunctionaudited• Anexamplepresentationwillbeshared
Marketing Your Services
Exercise 11 – Promoting your function
• Marketingmeasures• Anexampleauditbrochurewillbeprovided
Internal Audit And The External Relationship• Thedifferencesintheroles• Optionsforco-ordination
Developing Team Relationships
Exercise 12 – The final straw
Day Four
Completing An Audit
The Need To Understanding Controls• Typesofcontrol• Preventative,correctiveanddetectivecontrols• Questionstoask• Howtogatherandevaluateinformation• Documentingcontrols
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
Exercise 13 – Internal controls
The Audit Manual• IAorganisation• Controlframework• Auditplanning• Completingtheassignment• Interpersonalawareness• Theauditfile• Auditassignmentchecklist• Guestauditors
Audit Interviews• Theapproachtointerviews• Howtodecidewhotointerview• Tipsforsuccess
Exercise 14 – Audit interviews – role play
Audit Programmes And Testing• Auditprogrammeswithexamples• Walkthroughtests• Fieldworktechniques(compliance,transactional,analyticalreview and sampling of audit) – the differences and how to use them• Audittesting–howtodecidethetypeanddepthoftesting• IIAguidanceontesting• Auditworkingpapers
The Clearance Or Closing Meeting• Tipsforsuccess• Personneltodiscusstheobservationswith
Exercise 15 – The clearance meeting – role play
Audit Tools And Measures Of Success• Theneedforautomation–softwareavailable• ComputerAssistedAuditTechniques(CAATs)• AuditKPIs• Howtomeasureeffectiveperformance• SMARTmeasures
Exercise 16 – The puzzle: an exercise in planning
Day Five
The Audit Report
The Challenges Of Audit Reporting• Theneedforreportswithimpact• Examplesofsixreports–whicharethebest?• Whoreportsareforandwhataretheimplications• Thereportasyourshopwindow• Howdoyouknowagoodreportwhenyouseeone?
Exercise 17 – What makes an excellent report?
What Management Expects• Professionalstandards• Theproblemswithauditreports• Questionsaboutauditreports• Howtoadoptbestpractice• Howtoassessareport
Exercise 18 – Analysis of three reports
Getting Commitment To Action• Bestpracticereports–thewayforward• Thepsychologicaldilemmawithreports• Whyauditreportsaretakenasacriticismofmanagement• Whatcausesattitudestochange• Wordingandlayoutideas• Howtoget95%ofyourrecommendationsactioned• Theexecutivesummary–dosanddon’ts• Themainreport–bestpracticeideas• Wordsandphrasestoavoid• Auditopinions–howtoexpressthem• NewIIAguidanceonfollowinguprecommendations• Presentingresults• Tipsandtechniquesforsuccess• Example–bestpracticereportwillbeshared
Exercise 19 – Action plans
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
Certificate IICourse Timings: Registration will be at 08:00 on Day One. The course will commence at 08:30 every day and finish at 14:30. There will be breaks for refreshments at approximately 10:30 and 12:30 and lunch will be served at the end of each day’s session.
Day One
Challenges Of The Internal Audit Role Worldwide Trends In Internal Audit• TheroleoftheInternalAuditfunction - The policing role - The risk assessor role - The consulting role• ThefutureofInternalAudit(E&Ysurvey)• Whatshouldthebalancebetweentherolesbe?• Howmuchtimeshouldbegiventoeach?• Maturitymodelforassuranceandconsulting
Exercise 1 – The role of IA in 2014 and beyond
How Can A Better Understanding Of The Role Be Gained?• Howcantheprofilebeenhanced?• WhatdomanagementthinkoftheIAservice?• Waystopromoteyourfunctionbetter• Communicationstrategies• NewIIAguidance‘WhateverydirectorshouldknowaboutIA’• OpportunitiesforInternalAudit
The Role Of The Modern Auditor• Themulti-facetedroleoftheauditor - Negotiating - Planning - Questioning - Listening - Establishing rapport - Investigative skills - Building trust - People management• Whatleadershipmeans• Leadershipstyles• Delegationandtipsforsuccess
Exercise 2 – Performing a self analysis
The Different Requirements And Challenges Facing IA In Major Sectors In The GCC And MENA Region • Sectorchallenges• Theneedtoadaptquicklytonewregulatoryrequirements• Ensuringgovernanceriskisrecognised• Smarteruseoftechnology• Themovetocontinuousauditing• MakingIAamorestrategicpartner• Thinkingandactingmorecreatively• Recruitingpeoplefromnontraditionalareas
Exercise 3 – Key audit challenges
Initial Planning• Theimportanceofplanning• Stagesinplanning• Constraintstoeffectiveplanning• 20questionstoaidplanning• Preparingforanauditengagement• Theneedtoengageauditcustomers
Exercise 4 – The drawing exercise (planning)
The Audit Manual• Outlineofthekeyelements• Assignmentplanning• Theauditfile• Workingpapers• Personallearningplanner• Guestauditors• Postauditquestionnaire• A64pagemanualwillbeprovidedtoalldelegates
9 – 13 March 2014
12 – 16 October 2014The Developing Internal Auditor
After Completing This Course You Will Be Able To:• Performaself-analysisofyourskillsandtechniques• Improveyourauditmanual• Planandleadassignmentseffectively• Completemoreauditsontime• Developexcellentworkingpapers• UseComputerAssistedAuditTechniques(CAATS)withconfidence• Simplifyyourreportsandenhancetheirreadability• Significantlyenhancetheimpactofyourreports• Makeyourreportseasiertowrite,easiertoreviewandeasierfor management to implement• Improvetheacceptanceandimplementationofyour recommendations
CPE Credits • Delegatescanearnupto30 CPE credits (14 in the auditing field of study, 12 in the communications field of study and 4 in the personal development field of study)
Who Should Attend?• Thiscoursewillbeparticularlyusefulfordelegateswhohave previously attended the Certificate In Internal Audit I – Essentials Of Internal Audit course• Itwillalsobeverybeneficialtoauditorsorotherassurance professionals who need to significantly improve their reports – as this topic is covered in depth• Personnelinotherfunctionswhoneedawiderunderstandingof the modern Internal Audit role or want to improve their reports
Course Level• Thisisabasic/intermediarylevelcourseanditisadvisablethat delegates have six months’ experience in Internal Audit to attend• Therearenominimumeducationalrequirements• Noadvancepreparationisrequired• Deliverymethod–Group-live(withexercisesandrole-playsto simulate audit scenarios and situations that auditors will encounter) • Apre-coursequestionnairewillbesentout2–3weekspriorto the course date to obtain some information about delegates roles and to provide an opportunity to indicate specific learning requirements
New For 2014• NewIIAguidanceondevelopingauditcompetencies• Howtoplananeffectiveauditengagement• Amethodofassessingassurancematurity• Newguidanceonauditsampling• 20questionstohelpyoupreparebetterauditplans• Provenwaystopromoteyourfunction• Newguidanceoncommunicatingresults• NewIIAguidance–ensuringyourreportsaretransparent• Auditreporttemplates
Why You Should AttendThe course is designed to enable you to develop the key skills of a modern auditor – communication, teamwork, negotiation, planning and time management – to name but a few.
The course will be particularly beneficial for those supervising assignments, lead auditors and those being asked to lead audit teams.
It is designed to challenge your thinking about the whole approach to writing and reviewing audit reports – it is targeted at both new auditors and also more experienced personnel.
You will also be introduced to the new ideas in the IA profession and how to apply them.
Exercise 5 – How to improve the audit manual
Day Two
Enhancing Audit Effectiveness
Organising The Assignment• Thekeyissuesinassignmentplanning• Developingaplanningmemofortheassignment• Determininganeffectivetimebudget• Determiningthebusinessprocessusingamodel• Determiningsourcesofinformation• Gettingmanagementinput• Decidingontheauditteam• Allocatingtheroles• Gettingthemostoutoftheteam• Determiningthepotentialdifficulties• Processanalysis• Preventative,detective,directiveandcorrectivecontrols• Strategiesforimprovingtimemanagement
Exercise 6 – How to complete more audits on time
Risk Based Auditing• Determinebusinessobjectives• Considerationofthreattoachievement• Understandtheriskappetite• Assesshowwellsuchrisksarebeingmanaged• Linkingobjectives,risksandauditobservations
Audit Programmes• Developingeffectiveauditprogrammes - What makes a good programme? - Mistakes to avoid - The dangers of re-inventing the wheel - Assigning tasks - Staffing factors - The need for regular updates for standard programmes • Exampleauditprogrammeswillbeshared
Exercise 7 – Preparing an audit programme
Fieldwork Techniques• Typesoffieldwork• Compliance• Transactiontesting• Analyticalreview• Statisticalsampling• Processreviews• Flowcharting• Questionnaires• Workshops• Howtodecidewhattechniquestouse• Howtodeterminethedepthoftestingrequired• NewIIAadviceonauditsampling• Audittesting• Workingpapers
Exercise 8 – The challenges of audit testing
Use Of Computer Assisted Audit Techniques ( CAATs)• ThebenefitsofACLandIDEA• CAATsanddatamining• Opportunities• TypesoftestsidealforCAATsapplications• Cashmonitoring• Stockcontrol• Payroll• Revenue• Costcomparisons• Externalcomparisons(withexternaldatabases)• Branchorbusinesscomparison• WorkedexamplesoftheuseofACLwillbeprovided• AdvicefromISACAwillbeshared
Exercise 9 – Use of ACL – group exercise using audits chosen by the delegates
Day Three
Audit Reports – Your Shop Window • Thefivedilemmasofauditreporting• VideofromIIApresident• Whatisabestpracticereport?• Whodoyouneedtoconvince?• Toptips–communicatingresults• Thechallengesofauditreporting• Grabbingattention• Gettingthemessageacross• Gettingaction• Theneedforimpact• Whichofsixreportsshownwouldyoubelikelytoread?• Ideasoncreatingimpact• Howdoyouknowagoodreportwhenyouseeone?• WhatManagementexpect–recentsurveyofchiefexecutive• IIAprofessionalstandards• Whoarethereportsreallyfor?
Exercise 10 – What are the factors that separate an excellent report from the rest?
The Problems With Audit Reports
Exercise 11 – 35 questions about your audit reports issued during the last 12 months
• The35questions(allbasedonbestpractice)–howdidyouscore?• Whatarethefactorspreventingtheachievementofthesebest practice measures • 30tips,techniquesandideastohelpyouscoreamaximum - Howtoget95%ofrecommendationsimplemented - Use of charts and photos - Dealing with minor issues - Futurefocus - Order of importance of the issues - Actions rather than recommendations - Action plans • Discussionoftheimplications• Howtoassesstheneedsoftheauditcustomers
Analysis Of Actual Reports
• Explanationofaprovenmethodtoevaluateauditreports
Exercise 12 – Analysis of four actual reports
• Feedbackanddiscussion
Assessment And Evaluation Of Your Own Reports
• Amodelforassessingreportswillbeoutlined Exercise 13 – Self evaluation against the model provided (delegates are requested to bring along two recent reports – purely for their own reference)
• Discussionofkeyissuesandidentificationofopportunitiesfor improvement
The Executive Summary
Exercise 14 – Comparison of three executive summaries
• Theroleoftheexecutivesummary• 20tipsforwritingbettersummaries• Targetingtheexecutivesummarytothereader• Thebenefitsofwritingtheexecutivesummarybeforethemain report• Askinganon-technicalpersontoreadit
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
Exercise 15 – Roleplay a meeting with senior management to discuss the report
• Feedbackanddiscussionoftheissues
Exercise 16 – Writing an executive summary – based on the roleplay
Day Four
Best Practice Internal Audit Reports – The Way Forward
Developing A Collaborative, Consultative Style • Thepsychologicalproblemwithreports• Theneedtomeetandhopefullyexceedmanagementexpectations• Theneedtofocusonbenefitsratherthanproblems• Marketingtheauditreportingprocess• Anexamplepresentationwillbeshared• Relationshipswithmanagement• Expressingyourselfeffectively• Theneedtodriveaction• Creatingrapportwithyourcustomers–tipsandtechniques• Theneedtounderstandthepeoplereceivingthereports
Exercise 17 – The psychology of reports
Writing Reports With Impact• Messagesratherthancontent• Outcomesratherthanoutput• Solutionsnotproblems• Auditorandreadermindsets• Whyauditreportsaretakenasacriticismofmanagement• Waystomakethereportsmorepositive• Benefitsanddeliverables• Conclusions• Howtodraftareportwithimpact–discussionofbanner headlines and their relative impact • Languageandimpact• Simpleandcomplexlanguage• Theuseof‘powerwords’inyourcommunications• Howtogetonthesamewavelengthasyourcustomer• Highlightingtheissuesthatmatter• Auditobservations• Newpaperonauditobservationswillbeshared• Causesandeffects
Exercise 18 – Causes and effects exercise
Ideas On Improving The Review Process• Thepeerreviewprocess–theneedforapositiveapproach• Techniquesforeffectivereview• Puttingyourselfinthepositionofthewriterandrecipient• Avoidingtheuseofthe‘redpen’• Encouragingtheauditor• Avoidingmakingchangesforchangesake• Messagesratherthancontent• Outcomesratherthanoutput• Solutionsnotproblems
Exercise 19 – Reviewing a draft report
Day Five
Keeping The Report As Simple As Possible The Main Report • Keepingitsimple• Thereportprocess• Writingthemainreport• Dealingwithwriter’sblock• Auditobjectives• Scope• Formingandexpressingtheauditopinion• Wordingtips• Tone• Writingeffectivecoherentsentencesandparagraphs• Theeditingprocess–tipsforsuccess• Thepowerofseniormanagementcomments• Circulationlists• Formattingideas• Howtoavoidrepeatinganysectionsintheexecutivesummary• Wordsandphrasestoavoid• Howtoreducethenumberofwords• Whythespellcheckersometimesdoesnothelpyou• DealingwiththedifficultiesoftheEnglishlanguage
Exercise 20 – Picking the biggest paragraph from a report and rewriting it in one third of the words originally used
Finalising The Report• Recommendationsandactionplans• Managementcomments• HowtoreflecttherightissuesfortheAuditCommittee• AuditCommitteereportexamples• Theneedtobeonyourcustomers’side• Followupaudits–usingtheactionplan• Howtogetmanagementtotakeresponsibilityforactions• Waystoimprovethefollow-upprocess• Issuingthereport• Presentingorissuingreports(includinguseofe-mailandthe Intranet)• Alternativemethodsofreportinge.g.PowerPoint• Examplesofexcellentreportswillbeprovided• Theneedtobeonyourcustomersside• Reportingperformanceindicators’• Trackingactions• Stepstosuccess
Exercise 21– Follow up of reports
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
Phil was very explicit and gave good examples. He came across clearly and is very knowledgeable.
Clara Ngando, Audit Manager, National Lottery Authority, Ghana
The trainer had all the skills a trainer should have.Hamad Abdulaziz Hamad Najem, Internal Auditor, Bahrain Bourse Bahrain Stock Exchange, Bahrain
After Completing This Course You Will Be Able To:• Applytheconceptsandpracticalapproachestoriskbasedaudit• Advisemanagementontheidentification,mitigationandcontrol of risks • Challengemanagementandsellthebenefitsofproactiverisk management• Auditmajorareasofriskforyourbusinesswithconfidence• Addvaluetoyourorganisationbytheapplicationofrisk-based audit services• Delivermoreeffectiveauditplansthroughunderstandingtherole of risk• Planriskbasedassignmentsefficientlyandeffectively• Measuresuccesseffectively
CPE Credits • Delegatescanearnupto30 CPE credits (20 in the auditing field of study and 10 in the management advisory services field of study)
Who Should Attend?• Headsofaudit,auditmanagersandseniorauditors• Auditorsresponsiblefordevelopingorimplementingariskbased approach• OtherassuranceprofessionalssuchasthoseincomplianceandQA functions who are wanting to develop their risk based approach• Managersanddirectorsofbusinessfunctions–toaidtheir knowledge of a risk based audit approach• Thiscoursewillbehighlybeneficialfordelegatesthathave previously attended the Certificate In Internal Audit II – The Developing Internal Auditor or Certificate In Internal Audit I – Essentials Of Internal Audit
Course Level• Thisisanintermediarylevelcourseanddelegatesshouldhave12 months’ experience in Internal Audit (or other assurance roles) to attend• Delegatesshouldhaveagoodeducationalstandard(Bachelors Degree or above) and/or a professional qualification or be in the process of studying for such qualifications• Noadvancepreparationisrequired• Deliverymethod–Group-live(withexercisesandcasestudiesto provide practical application of the tools and techniques)• Apre-coursequestionnairewillbesentout2–3weekspriorto the course date to obtain some information about delegates’ roles and to provide an opportunity to indicate specific learning requirements
New For 2014• Anew2hoursession–step-by-stepguidetocompletingarisk based audit• NewIIAprofessionalguidance–anapproachtoimplementingRisk Based Audit (RBA)• NewIIAguidanceonannualInternalAuditcoverageplans• Audituniverse• InternalAuditcoverageofriskstoachievingstrategicobjectives• RiskBasedInternalAuditplanexample• TheRBAauditplanpreparation• NewIIAguidanceonpreparingforanExternalQAreviewofIA• RiskmanagementchallengesandtheIAimpact• Newauditprogramme–auditingERM
Certificate IIICourse Timings: Registration will be at 08:00 on Day One. The course will commence at 08:30 every day and finish at 14:30. There will be breaks for refreshments at approximately 10:30 and 12:30 and lunch will be served at the end of each day’s session.
Why You Should AttendThe Institute of Internal Auditors in a professional guidance statement stated the following: 'Internal Audit are being asked to provide much greater assurance to senior management than ever before. The Institute believes that the only way to provide such objective assurance is by means of risk based auditing'.
Audit functions that are able to focus their efforts towards the significant risk in their organisations are able to concentrate their limited resources on the issues which drive business goals and aspirations. In consequence audit plans are directed at the issues, which really matter. This course provides all the latest developments. The 2014 course features a case study on the step-by-step approach to a risk based audit.
Furthermore,aparticipativeapproachwherebyauditorsandmanagers work together to identify, assess and control business risks significantly enhances the level of assurance and reduces the chances of nasty surprises – a huge benefit in these more difficult times.
Day One
Risk And Internal Audit
What Is Risk Based Audit?• ExplanationofRiskBasedAudit(RBA)• Worldwidetrends• Trends(fromtheBRMInternalAuditbestpracticedatabase)• Thetransitionfromsystemsbasedtoriskbasedassurance• Howriskbasedaudithaschangedthefaceofauditing• Audit’sprimaryroles,objectivesandconcerns• Questionsaboutthematurityoftheauditprocess• HowRBAlinkstootherauditapproaches• Theroleofthefunction–policeman,riskassessororconsultant• Howtoensureyouadoptbestpractice• Theneedwidenthecoverage–tobecomelessfinanciallybased• RBAinthedifferentsectorsintheGCC• Thestepsneededtoembraceariskbasedapproach• Auditrisks(whatrisksdoyouface?)• Thekeychallengesresulting
Exercise 1 – Challenges for Internal Audit
The Nature Of Risk • Theconceptofrisk• Therelationshipbetweenriskandobjectives• Whyseniormanagementmaylackafullunderstandingoftherisks• Riskcultures• Surprisesandrisk• Measurementofrisk:probabilityandimpact(orlikelihoodand consequences)• Categoriesofrisk• Themostcommoncriticalrisks
Exercise 2 – Analysing a disaster Business Risk • Thewiderbusinessagenda–understandingstrategicrisks• Howriskmanagementhasgrownfrombeingausefultoolto being the very pulse of the organisation• SellingtheneedforanRBAapproach• Buildinganappreciationofyourorganisation’sriskappetite• TheInternationalRiskStandardISO31000
16 – 20 March 2014
19 – 23 October 2014Risk Based Auditing
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
• AnewpaperontheauditimplicationsofISO31000willbeshared• TheAUS/NZriskmanagementstandard• TheCOSOstandard• Stepstotakeinestablishingabusinessriskmanagement programme• Outlineofabestpracticeprocess• AnewpaperonriskmanagementchallengesandtheIAimpact
Risk Identification And Evaluation• Approachesandtechniques• Explanationofariskworkshopapproach• Theneedforfacilitationskillsandthecharacteristicsrequired• Howtoidentify,siftandgrouptherisks• Theuseofdiagnosticquestionsandthought-provokers• Measuringtheconsequencesandthelikelihoodofoccurrenceof each key risk• Inherentandresidualrisk• Theuseofriskmatricestoprioritisetherisks• Casestudyandidentificationtechniques• Anewpaperonauditingriskassessmentwillbeprovided
Exercise 3 – Risk based audit – the risks
Day Two
Risk Management And The Audit Role
The Role Of Internal Audit In Risk Facilitation• Keyrequirementsofthefacilitator• Riskworkshopdo’sanddon’ts• Sellingthebenefitsofattendance• Theworkshopprocess
Exercise 4 – Interactive risk workshop
Assessment Of Risk Mitigation• Theneedforseparatemitigationworkshops• Howtoassessriskmitigation• Identificationandevaluationofriskexposures• Dealingwiththeexposures(The4Ts–Terminate,Tolerate,Treat or Transfer)• Exploitingopportunities• Completingtheriskregister• Establishmentofactionplans
Exercise 5 – Risk exposures Risk And Internal Audit• NewIIAprofessionalguidance–anapproachtoimplementingRBA• Guidanceonthelinksanddifferencesbetweentheauditandrisk management roles (including the IIA position)• Identifying,appraisingandevaluationriskduringtheauditprocess• Translatingkeyrisksfromthebusinessriskprocessintothebasisof the audit programme• Auditingtheprocess
Exercise 6 – Risk and reward – team exercise Embedding The Process• Integratingtheriskoutputwithbusinessplans• Riskowners• Annualstatementsfromriskowners• Theriskregisterasadecisionskeleton• Quarterlyboardreportingtoreviewprogressinaddressingthe exposures• RiskManagementCommitteereporting• Bi-annualevaluationofkeyriskstoensurenewrisksidentifiedand included
Exercise 7 – Interactive risk workshop – mitigation
Day Three
Practicalities Of Risk Based Auditing
The Internal Audit Role• AstrategicvisionforInternalAudit• Theauditcharterandtermsofreference• Measuringsuccessandaddingvalue• Meetingmanagementexpectations
Exercise 8 – Success measures
Strategic Audit Planning• Strategicauditplanning• Howtodecidewhichareastoaudit• Theaudituniverse–newIIAguidance• Determiningthelevelofassurance• NewIIAguidanceonannualInternalAuditcoverageplans• TheRBAauditplanpreparation• RiskBasedInternalAuditPlanexample• Demonstrationofabestpracticeauditriskplanningmodel (an electronic version will be provided)
Exercise 9 – Developing a strategic audit plan using the model
Tactical Audit Planning• Auditprogrammedevelopment• Sourcesofauditwork• Assignmentplanningandcontrol• Managingauditrequests• Fieldworktechniques• Useoftechnology–CAATs,auditautomation,etc.• Auditcoverage–geographicandbusinessunits• Howtocoverspecialistareas
The Converging Roles Of The Assurance Providers • Theincreasingemphasisongovernance,assuranceandcontrol• Howshouldthevariousassuranceprovidersrisetotherisk challenge?• SynchronisingregulatorycompliancewithInternalAuditandthe risk management functions• Theneedtocoordinatequalityassurance,security,insuranceand the health and safety functions in relation to risk management• Linkingexternalauditorsintotheprocess
Exercise 10 – Coordinating your efforts with other assurance providers
Day Four
Risk Based Auditing In Practice
Planning A Risk Based Audit • A worked example of a risk based audit • Brainstormingthefunctionalobjectives• Buildingapictureoftherisks• Considerthreatsandopportunities• Buildingthedetailsofthecontrols• Planningtheassignment• Determiningthetypesoftestsandtechniquestouse• Determiningthethreatstosuccess
Exercise 11 – Specific audits will be chosen for this purpose by the delegates and the functional objectives and risks brainstormed in groups
The Risk Based Audit Step- By-Step• Ariskbasedprogrammeexamplewillbewalkedthrough• Reviewingthebusinessobjectives - Are the objectives comprehensive and SMART?
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
• Dotherisksintheregisterrelateproperlytotheobjectives? - Are they specifically linked to the objectives and recorded?• Aretheinherentriskscorrectlyevaluated?• Areanykeyrisksmissing?• Arethecausesoftheeventidentified?• Havemitigatingactionsbeenrecordedforeachrisk? - Is such mitigating detailed enough? • Arethereanyactionsinprogresstodealwithrisk? - Assess the status of such actions - Are there any management decisions pending? - Has a target risk been established? - Assess confidence levels to reduce the risks in a situation - Is the target risk realistic?• Audittesting - Test each mitigating control by means of walk through tests - Extend testing as required to obtain sufficient evidence • Determininganauditriskandcontrolassessment - Evaluating and recording such assessments - Presenting the evidence to management - How to ensure consistency
Exercise 12 – The RBA in practice – using audits selected by you
The RBA Approach• Theneedtoassesstheriskmaturityofthefunction• Commitmenttoriskmanagement• Thequestionstoask• Assessingriskappetite• Reviewingtheeffectivenessoftheriskmanagementprocess adopted• Determiningwhichrisksshouldbeconcentratedonintheaudit• Reviewingriskownershipandidentifyinggaps• Identifyingresidualrisksabovetheriskappetite• Assessingthe4Ts• Monitoringofactionplans• Evaluationandreportingofactualversusperceivedcontrols• Determiningwhichkeyrisksarenotreadilyauditable• Newauditprogramme–auditingERM
Exercise 13 – Challenges of the RBA – group discussion
Day Five
RBA Challenges
Relationships With The Board And Audit Committees• BoardrequirementsofInternalAudit• Developingregularcontactwiththe chief executive• RoleoftheAuditCommittee• TheAuditCommitteerelationship–howtodevelopthis• EvaluatingtheAuditCommitteerequirements
• Howtoanticipaterequests• AuditCommitteeoversightpaper• QuestionstheAuditCommitteeshouldask• Howtodevelopeffectiveauditcommitteereports• DevelopinganannualreportfortheBoardorAuditCommittee
Exercise 14 – The Audit Committee or board report
Quality Assuring Or Benchmarking The IA Function (And The RBA Approach)• TheIIArequirements• NewIIAguidanceonpreparingforaQAreviewofIA• ThepowerofEQA• Internalandexternalreviews• Whatconstitutesanacceptableprocess(IIA)• Selectingtheassessor• Keyaspectsofthereview• CorporateGovernanceandtheInternalAuditrole• Professionalstandards• Auditcharter• TheAuditCommitteerelationship• Skills,trainingandresources• Strategicauditplanning• Theauditmanual• Completingtheaudit• Auditreports• Measuringperformance• Marketingthefunction• IIAQAchecklistwillbeshared• AglobalguidancepaperonQAassessmentswillbeprovided
Exercise 15 – The challenges of EQA Risk Based Audit Reporting • Thechallengesofriskbasedauditreporting• Gettingthemessageacross• Gettingthedesiredaction• ThemessagesyouwanttheBoardtohear• Howtoensurenooverreaction• Includingpositivecomments• Howtokeepitshortandfocussed• Developingariskbasedexecutivesummary• Howtogetrecipientstoreactpositively• Howtowritebalancedreports• Highlightingtheissuesthatmatter• Howtoreducethenumberofwords• Thepowerofpicturesandgraphics• Theneedtorelatetheissuestoobjectivesandrisk• Howtodealwithsensitiveissuesinthereport
Exercise 16 – Discussion – how to deliver risk based reports
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
Vast knowledge, priceless experience. Excellent presentation and good material.
Azzan Al Raisi, Internal Auditor, Qalhat LNG, Oman
Phil has vast experience which he was able to share and gave us real life examples that helped to explain the
material better.Nadin El Hayek, Internal Auditor, Abu Dhabi Health Services Co., UAE
After Completing This Course You Will Be Able To:• AssessInternalAudit’scontributionasafunction• AuditCorporateGovernanceeffectiveness• Audittheriskmanagementprocess• Applycontinuousaudittechniques• Assesstheeffectivenessofbusinesscontinuityplanning• Completecomplexauditssuchasthemarketingfunctionand performance management• Deliversuccessfulvalueformoneyaudits• Auditjointventuresandpartnerships• DeliverauditsoftechnicalareassuchasITandoutsourced contracts
CPE Credits • Delegatescanearnupto30 CPE credits (24 in the auditing field of study and 6 in the management advisory services field of study)
Who Should Attend?• Seniorauditors• Auditmanagersandthoseabouttobeappointedtothatrole• Auditorsthatneedtoauditprojects,contractsortechnical business areas • Assuranceprofessionalswhoneedtoassesstechnicalissues• Assuranceprovidersthatneedagreaterunderstandingof Corporate Governance • Thiscoursewillbebeneficialasadevelopmentaidfordelegates that have previously attended the Certificate In Internal Audit II – The Developing Internal Auditor course
Course Level• Thisisanadvancedlevelcourseanddelegatesshouldideallyhave at least 18 months’ experience in Internal Audit (or other assurance roles) to attend• Delegatesshouldhaveagoodeducationalstandard(Bachelors degree or above) and/or a professional qualification• Noadvancepreparationisrequired• Deliverymethod–Group-live(withexercisesandcasestudiesto provide practical application of the tools and techniques)• Apre-coursequestionnairewillbesentout2–3weeksprior to the course date to obtain some information about delegates’ role and to provide an opportunity to indicate specific learning requirements
New For 2014• MakingthemostofInternalAudit–newguidance• NewIIAguidanceonauditingperformancemanagement• Guidancepaperoncontinuousassurance• AuditCommitteeoversightofIAguidance• NewIIApaperonautomatedtransactiontesting• NewGTAGguidetoauditsampling• 10stepstocybersecurity• IIAguidanceonauditingthemarketingfunction
Why You Should AttendAs a progressive audit practitioner who strives for excellence, your vision is world-class and you realise that long term survival in today’s competitive marketplace means delivering impeccable products and services and auditing the wide range of business risks.
An advanced and innovative auditing strategy coupled with effective implementation can greatly enhance the departmental value added and company-wide support of your auditing function.
Expertise in the more technical business areas is essential to maintain a stable foundation from which your organisation can effectively compete in the Middle East environment.
Certificate IVCourse Timings: Registration will be at 08:00 on Day One. The course will commence at 08:30 every day and finish at 14:30. There will be breaks for refreshments at approximately 10:30 and 12:30 and lunch will be served at the end of each day’s session.
The biggest challenges to modern Internal audit functions will be covered during the course – including auditing your organisations reputation and brand
Day One
The New Internal Audit Challenges
Recent Professional Guidance And Practice Advisory Statements• Newguidanceanditsimplications• Aligningplanswithrisks• Dealingwithunacceptablerisk–escalationwithsenior management• Gatheringinformationfrommultipleengagements• Expectationsofseniormanagement• RelationshipwiththeBoard• ITgovernance• Fraudriskmanagement• Evaluatingethicsprogrammes• Qualityassuranceandimprovementprogramme• TheIIAglobaltree• KeyissuesfromtheIIABOK(BodyOfKnowledge)survey• Imperativesforchange–IIAstandards• AneffectivenessofIAchecklistwillbeshared• MakingthemostofIA–newIIApaper
Exercise 1 – The challenges of the IIA standards
The Key Aspects Of Corporate Governance • WhatisCorporateGovernance?• 6coreprinciplesofgovernance• 7governancewarningsigns• NewCorporateGovernanceinsightspaperwillbeshared• Meetingstakeholderrequirements• Howtheorganisationismanagedonbehalfofthestakeholders• Thekeypartieswithingovernance - Audit Committee - The Board - Regulators - Customers - Suppliers
Exercise 2 – Defining the parties – Who killed Amos? Auditing Governance Readiness • Assurancemapping• Holdingapre-meeting–dosanddon’ts• Anewgovernanceandaccountabilitytoolwillbeshared• Developingatermsofreferencefortheassignment• Shouldthisbeareviewonly–willevidencebegathered?• Anewauditprogrammewillbeshared• CorporateGovernancestatements
Exercise 3 – The challenges in carrying out a Governance Audit
Auditing The Risk Management (RM) Process• EstablishingthepositionregardingRMinthebusiness• Establishcorporatetargetsandmonitoroverallprogress• RiskmanagementusingISO31000paperfromIIA• KeepingtheBoardapprisedofthemostsignificantrisks• AssessmentofRMcapabilities• Reviewofriskevaluationsineachfunction• Ensuringactionstotreatexposuresareimplemented• Ensuringallfunctionsevaluatetheirrisksconsistently• Evaluatingtheresultsandchallengingthemwherenecessary• Identificationofexposures• Reviewingriskregisters• Imperativesforchange–RBAplanning• Basingauditprogrammesonmostsignificantrisks
15 – 19 June 2014
7 – 11 December 2014 Advanced Audit Techniques
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
• Comparingperceivedversusactualcontrols• Ariskmanagementevaluationtoolwillbeprovided
Exercise 4 – The challenges in auditing the risk management process
Day Two
The Wider Internal Audit Brief
Auditing The Audit Committee Process• TheAuditCommitteerole• Structureandindependence• DoestheCommitteeapprove(butnotdirect)InternalAudit strategy, plan and performance?• DoestheCommitteereviewsummaryIAreportsandthemain issues arising and seek assurance that action has been taken?• HowdoestheCommitteeconsiderthereportsofexternalaudit and other external agencies?• HowaretheeffectivenessofrelationshipsbetweenIAandEAand other bodies reviewed?• Howaretheeffectivenessoftheriskmanagementenvironment and anti fraud arrangements assessed?• TheAuditCommittee/IArelationship• NewpaperonhowtheAuditCommitteeshouldassessIA• Casestudyandauditprogrammewillbeprovided• HowdoestheCommitteesatisfyitselfthatassurancestatements andtheannualstatementofaccountsproperlyreflecttherisk?• AnAuditCommitteechecklistwillbeshared Exercise 5 – The Audit Committee challenges
Continuous Auditing• TheIIAGlobalTechnologyAuditGuide(GTAG)• Thepracticalitiesofcontinuousauditing• Paper–fantasyorreality• Continuousassurance–newguidance• Continuousauditingandcontinuousmonitoring• TheuseofCAATsforcontinuousauditing• Continuousriskassessmenttechniques• Examplesofcontinuousauditing - Segregation of duties - Purchase orders - System access logs - Purchase cards • ApaperoncontinuousauditusingACLwillbeshared• NewGTAGonauditsampling
Exercise 6 – Opportunities for continuous auditing
Auditing Complex Business Areas• Environmentalauditing - Environmental risks - Energy management audit - Water management - Waste management • Auditingthemarketingfunction - The benefits - Case study - The 7Ps - Determining metrics• Auditingperformancemanagement - The performance framework - Risks and responses - Audit considerations
Exercise 7 – Complex problems
Auditing Brand And Reputation • Theriseofreputationasakeyrisk• Theincreasingimportanceofapositiveimage–theneedtobe admired• Wheredoesreputationcomefrom?• Howdoyoumeasureit?• Themagnifyingeffectofbusinessfailuresonreputation• Globalbrands• Howtojudgereputation• Identifyingreputationalrisks
• Achecklistforreviewingreputationalriskwillbeprovidedtoall delegates
Exercise 8 – Auditing a reputational disaster
Day Three
Auditing Joint Ventures And Outsourced Operations
Auditing Joint Ventures (JVs) And Partnerships• EnsuringthatthereisariskstrategyforJVs• Whatprotocolisinplace?• Whatisthereviewmechanism?• Isiteffective?• Whatisthefrequencyforreviewbythemanagement?• WhatisthemechanismtoguidemanagementinattendingJV meetings?• DoesanyoneknowthenumberofJVsandpartnershipsyouare involved in and how much money and other resources are invested in them?• HaseachJVbeenriskreviewed?
Case Study – What can go wrong in JVs and partnerships
Reviewing A Current JV Or Partnership• Rationale• Addedvalue• Decisionmaking• Performance• Finance• Problems• Termination
Exercise 9 – Select 2 JVs or partnerships – one you regard as successful and another less so. Complete the checklist and try to identify the main differences
Auditing Outsourced Contracts• Overviewofoutsourcedcontractmanagement• Outsourcingobjectives• Transferofrisk• Outsourcingdeliverymodels• Rolesandresponsibilities• Differentapproachestooutsourcing• Thekeyrisks - Picking the wrong contractor - Higher costs - Negative impact on service - Loss of control - Loss of knowledge or resources - Difficulty of bringing the activity back in-house - Loss of public focus - Conflictingobjectives - Payment issues - Contract variations• Assessingthecontract• Howtoassesscontinuingviability–performancemanagement• Righttoauditclauses• Anewpaperonauditingexternalbusinessrelationships Exercise 10 – Challenges of auditing external contracts
Auditing Business Continuity Management • TheimportanceofBusinessContinuityPlanning(BCP)• TheneedtorecogniseBCPisnotjustaboutITrecovery• Reviewingthedifferenttypesofdisaster–haveallbeen considered? • Doestheorganisation’sleadershipunderstandthecurrentbusiness continuity risk level and the potential impacts of likely degrees of loss?• Cantheorganisationprovethebusinesscontinuityrisksare mitigated to an approved acceptable• Aretheytestedeffectively?• IstheBoardwellsetuptorespondswiftlyandcapablyinacrisis?• Thetransitionfromanemergencytoadisasterandthequestions to ask at each stage
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
• Isthereanappropriatecontingencyplanreadytobeusedto manage a crisis? • Communicationtesting• Alternativesitetesting• ApaperonBCPresiliencewillbeshared
Exercise 11 – BCP audit discussion
Day Four
CSR And VFM Audit
Social Responsibility, Ethics And Meeting Stakeholder Expectations• TheincreasingimportanceofCorporateSocialResponsibility(CSR)• NewIIAstandard2110re-auditingofethics• WhatconstitutesCSR?• ThewideraspectsofCSRandtheimplicationsforIA• Doingresponsiblethingsresponsibly• Apaperonauditingethicswillbeprovided• RedefiningtheIArolewithCSRinmind• Anauditframework• HowtoauditCSR–keysteps - Is communication with main stakeholders taken seriously? - Are the expectations of these stakeholders accurately understood, and what are the risks that these will not be met? - Are opportunities taken to develop the ethical reputation of the business? - How do we ensure that staff have and display the right attitudes? - Has the business assessed its reputation for social responsibility and its impact on your business prosperity? - Is the Board, and in particular the Chief Executive, sensitive and responsive to the concerns of customers? Exercise 12 – CSR and meeting expectations – the audit challenges
The Modern Approach To Value For Money (VFM) Auditing• WhatisVFMauditing?• Howdoesitdifferfromotherauditapproaches?• TherelationshipbetweenVFMandothertypesofaudit• ThebenefitsofVFMauditing• Theassociateddangerse.g.tryingtoquantifynon-quantifiable savings
The 3 Es• The3Es–thecornerstoneofVFMauditing• Economyandhowitcanbeevaluated• Examplesofpooreconomy• Efficiencyandhowitshouldbeassessed• Whyitiscriticaltoevaluateefficiency–withexamples• Effectivenessandhowitcanbeassessed• Identificationofinputsandoutputs• Howtomeasurethe3Es
Exercise 13 – VFM review of customer service
Key Steps In Completing a VFM Review• HowtoselectVFMtopics• Theresearchphase• Objectives,methodologyandtechniques• Establishingtermsofreference(howthisdiffersfromatraditional assignment)• Definingtheboundariesofthereview• Gatheringofinformation• Evaluationofdataandeffectivenessofmanagementprocesses• Evaluationofperformanceandcostsavingpotential• Measuringthebenefits
Exercise 14 – Assessing performance via PIs
VFM Audit Techniques• Therangeoftechniques• Comparativeanalysis• Evaluatingeffectiveness,efficiencyandeconomy• Evaluatingproductivityinpractice
• Workingwithotherspecialists• Measuringopportunities
Case Studies With Hints, Tips And Practical Advice • PracticalapplicationsforVFM–opendiscussionwithan opportunity for delegates to raise specific concerns and ideas
Exercise 15 – VFM audits – topics will be chosen by the delegates and the audit brainstormed
Day Five
Auditing In The IT Arena
Auditing IT Projects• NewGTAGITrisks• Projectmanagementaudit - Project organisation - Content and scope - Time management - Cost management - Qualitymanagement - HR issues - Communication - Reporting - Risk management - Procurement• Othertypesofprojectaudit - Business case audit - Business requirements audit - Project framework audit e.g. use of PRINCE - Post project audit
Exercise 16 – Completing an IT project audit
Auditing Systems Under Development• Whyauditingsystemsunderdevelopmentneednotcompromise your wider audit role• Theneedtoauditatkeystages–nottobepartoftheproject team• Ensuringthattheprocessesandpoliciesarecompliedwith• Determiningthepointsofpotentialfailure• Ensuringcontrolsarenotbypassed–duetotimeconstraints• Ensuringrisksareidentifiedatthestartandregularlyreviewed• Ensuringsufficientenduserinvolvement• Auditstagesandthequestionstoask
Exercise 17 – Challenges of systems development audit
IT Auditing For Non IT Specialists • GlobalTechnologyAuditGuides(GTAGs) - Information technology controls - Management of IT auditing - Managing and auditing IT vulnerabilities - Auditing application controls - Information technology outsourcing - Identity and access management - Change and patch management controls - Managing and auditing privacy risks - Developing the IT audit plan• WhatcanbedonewithoutspecialistITauditresources?• Newpaperonautomatedtransactiontesting• Theneedtodeterminetheboundaries• DefiningtheITaudituniverse - Focusonhighriskareas - Assess IT vulnerabilities• Targetareaswhereyouarefocusingonprocessratherthan technical aspects• UseofauditframeworkssuchasCoBITandISO27000• TheneedtoreviewITgovernance–IIAnewstandard• Riskbasedauditofgeneralcontrols(GAIT)• IIAguidanceregardingGAIT• AnISO27000auditchecklistwillbeshared
Exercise 18 – Challenges of IT audit
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
After Completing This Course You Will Be Able To:• BenchmarkyourIAfunctionagainstworldwidebestpractice• Makethetransitionfromagoodfunctiontoagreatone• QualityassureyourfunctioninlinewithIIArequirements• Buildaworld-classteam• Managetheauditprocessmoreefficientlyandimprovestrategic audit planning• Dealwiththechallengesofconsultancy• Manageeffectiveinvestigations• Meetthegovernancechallenges• Deliverstakeholderassurancemoreeffectively
CPE Credits • Delegatescanearnupto30 CPE credits (18 in the auditing field of study, 6 in the communications field of study and 6 in the personal Development field of study)
Who Should Attend?• HeadsofInternalAudit• AuditManagersandthoseabouttobeappointedtothatrole• DirectorsresponsibleforInternalAudit• HeadsofotherassurancefunctionssuchasComplianceorQuality Assurance• Thiscourseisspecificallyforthemostseniorauditprofessionals
Course Level• ThisisanadvancedlevelcourseanddelegatesshouldbeHeadof the Internal Audit function or a senior manager in the IA or other assurance role to attend• Delegatesshouldhaveagoodeducationalstandard(Bachelors degree or above) and/or a professional qualification• Noadvancepreparationisrequired• Deliverymethod–Group-live(withexercisesandcasestudiesto provide practical application of the tools and techniques)• Apre-coursequestionnairewillbesentout2-3weekspriortothe course date to obtain some information about the delegate’s role and to provide an opportunity to indicate specific learning requirements
New For 2014• Anewpaperonworkingwithstakeholderswillbeshared• Newadviceonauditingstrategy• NewresearchpapersfromtheECIIA,E&YandProtiviti• Recentprofessionalguidanceandpracticeadvisorystatements• NewAuditCommitteeevaluationchecklist• Newguidanceonco-sourcing• Newguidanceonmanagingdispersedteams• NewIIAguidance–maturitymodelsforassurance• NewIIAintegratedauditingguidance• NewIIAguidanceonauditplanpreparation• Anewpaperonengagingseniormanagementwillbeshared• 20questionsdirectorsshouldasktheCAE
Why You Should AttendThis course is unique in that it is targeted specifically to the most senior assurance professionals – and is based on a series of round table discussions on the key aspects of a modern Internal Audit function – and the challenges faced by the ever changing world economy.
Certificate VCourse Timings: Registration will be at 08:00 on Day One. The course will commence at 08:30 every day and finish at 14:30. There will be breaks for refreshments at approximately 10:30 and 12:30 and lunch will be served at the end of each day’s session.
A wide range of key topics will be discussed – such as meeting the changing needs of stakeholders, developing more proactive relationships with the Audit Committee, auditing corporate social responsibility and the challenges of making successful presentations.
The course represents a superb opportunity to meet your peers from both your sector and others and develop new approaches to the difficult challenges facing audit managers and Heads of Audit today.
The course also includes opportunities to discuss issues of your choosing with fellow decision makers in the IA profession.
Day One
The Future Of Internal Audit In The MENA Region
The Significant Changes In The Internal Audit Role• HowtheIAprofessionhaschangedinthelast10years• ThetransitionfromasystemsbasedapproachtoRiskBased Auditing• KeymessagesfromtheIIABodyofKnowledgesurvey• Decidingthestrategicdirectionforyourfunction• Pulseoftheprofessionsurveyresults• E&YandProtivitisurveyresults• IIAbecomingmoreeffectiveguidancewillbeshared• ECIIAresearchpaper–makingthemostoftheIAfunction• EnsuringeffectivecommunicationlinesbetweentheCAEandthe Board• Gainingassuranceregardingthequalityofthefunction’swork• OverseeingtherelationshipbetweentheIAfunctionandthe organisation’s centralised risk monitoring function• Monitoringmanagementfollow-upofIArecommendations
Round Table Discussion 1 – The challenges facing Internal Audit in the region
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the delegates
Meeting Stakeholder Expectations • Whoarethestakeholders?• Arestakeholders’expectationsknown?• Aretheexpectationsclear?• Howcanyoumeetthewidelydifferingexpectations?• Arethereanyareaswhereexpectationscouldbeexceeded?• Arethereanyquickwins?• WhatreportsshouldIAprovidetostakeholders?• Anewpaperonworkingwithstakeholderswillbeshared• Newadviceonauditingstrategy
Round Table Discussion 2 – Meeting the ever expanding needs of stakeholders – what should the IA role be?
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the delegates
Benchmarking Or Quality Assuring Your IA function• Thepowerofbenchmarking - To demonstrate excellence - To meet Board and Audit Committee challenges - To identify opportunities - To recognise progress made - To ensure best practice is being followed
22 – 26 June 2014
14 – 18 December 2014Leading The Internal Audit Function
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
• TheneedforexternalevaluationaspertheIIAstandards - Should be conducted at least once every 5 years - By a qualified external reviewer - Results should be given to the Board• NewQAchecklistswillbeshared
Round Table Discussion 3 – Quality assuring the function – achievements and challenges
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the participants
Recent Professional Guidance And Practice Advisory Statements 2013• Riskmanagement• Seniormanagementresolutionofrisk• Managementexpectations• ITgovernance• Fraudrisk• Businessethics
Day Two
New Challenges
Proactive Audit Committee Relationships• HowtocreatethecorrectrelationshipwiththeAuditCommittee (or the Board if you do not have an Audit Committee)• TheneedforatleastoneAuditCommitteemeetingperyear exclusively for Internal Audit• Theneedforone–to–onemeetingswiththeChairmanofthe Audit Committee• TheneedfortheCommitteetoapprove(butnotdirect)Internal Audit strategy, plan and performance• HowshouldtheAuditCommitteeassessIAperformance?• TheannualreportfortheAuditCommittee–bestpracticeideas• AreeffectiverelationshipsbetweenIAandEAandotherbodies reviewed by the Audit Committee?• Istheeffectivenessoftheriskmanagementenvironmentand anti-fraud arrangements assessed – what information should be provided by IA?• TwonewAuditCommitteeevaluationchecklistswillbeprovided
Round Table Discussion 4 – Assessing the Audit Committee/Board relationship
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the delegates
Building World-Class Internal Audit Teams• Therecruitmentdilemma–whatifyoucannotgetthetalentyou need• Determiningastrategyforbuildingtheteam• Sourcesoftalent–growingyourownorrecruitingfromoutside?• Newguidanceonco-sourcing• ShouldyoutrytorecruitpersonnelwithpreviousIAexperience?• Whichismoreimportant–knowledgeofyoursectororIA knowledge?• Useofcoaching• Performancemanagement–whatarethemosteffective measures?• Whatskillsshouldyoubelookingfor?• Checklistofissuestoassessinapotentialauditor• Newguidanceonmanagingdispersedteamswillbeprovided• Successionplanning
Round Table Discussion 5 – The challenges of recruitment in the Gulf market
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the delegates
Challenges For Internal Audit • Auditingoutsourcedoperations - Should these operations be audited? - How should you tackle such assignments? - Ensuring contracts include the right to audit• ValueforMoney(VFM)Auditing - WhatisVFM? - WhatarevalidVFMtopics? - Does your audit programme target areas of opportunity as well as risk? - Do you measure the value of monetary savings made as a direct result of your audits? - Are these savings known to and recognised by management?• CorporateSocialResponsibilityAuditing - What is CSR? - Does it need to be audited? - The importance of ethics and how it should be reviewed - A new paper on auditing ethics will be provided - The need for transparency and accountability - Challenges of CSR in the Gulf region
Round Table Discussion 6 – Audit challenges (Topics to be chosen by delegatess on the day) – this is your opportunity to table any issue that you would like to discuss with your peers
• Feedbackanddiscussion–andideasfordealingwiththe challenges
Day Three
Risk And Governance
Risk Management And Internal Audit• Theneedtofocusauditattentiontowardsthemostsignificant risks• NewIIAguidance–maturitymodelsforassurance• Theneedformuchhigherlevelsofassurancethaneverbefore• Whatlevelofassurancecanreallybeprovided?• Whatshouldbetheauditroleinrelationtoidentificationand managing of risks • WhatshouldtheIArolebeifyourorganisationhasordoesnot have a risk management function? • Couldworkingwithmanagementtoidentifyandevaluaterisks compromise the independence of the function?• Howshouldauditplansbedevelopedtoensurethecorrectrisk focus?• IsRiskBasedAuditingamethodologyorastateofmind?• Whyhasitbecomesoimportant?• WhataretheideasbehindRBA?• IsRBAarevolutionoranevolution?• CansuchanapproachreallyenhancetheprofileofIAwithinthe business?• NewIIAintegratedauditingguidancewillbeshared
Round Table Discussion 7 – What does Risk Based Auditing mean to you? What are the challenges in driving better risk awareness?
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the delegates
Corporate Governance And The IA Role• WhatisCorporateGovernance?• KeychallengesfortheGulfregion–Hawkamahresearch• Meetingstakeholderrequirements• Howtheorganisationismanagedonbehalfofthestakeholders• DevelopmentsinCG–newpaper• TheauditroleintheCGprocess• Theriskfocusofthefunction(andtherelativerolesofother assurance providers)
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
• Coordinationwithotherassuranceproviders• Aguidancepaperonassessingorganisationalgovernancewillbe provided • Theexternalauditrelationship• Roleinfraudpreventionandinvestigation• Managingreputation - Is communication with main stakeholders taken seriously? - Do the goals and values of the business, as well as its principal policies on conduct, sufficiently address the main areas of reputational risk? - Are corporate values shared? - How is sufficient coverage of different business issues achieved within the policy statements and codes of practice, and is reputational risk addressed appropriately in each case? - Are policies governing reputation management clearly communicated internally? • Crisismanagement - Is there an appropriate contingency plan ready to be used to manage a crisis?
Round Table Discussion 8 – The challenges of Corporate Governance
• Feedbackanddiscussion–andideasfordealingwiththe challenges – generated by the delegates
Strategic Audit Planning• Determiningauditspriorities• Determiningtheaudituniverse• BuildingRisk-BasedAuditplans• Tappingintoriskassessmentscarriedoutbymanagement• Determiningthelevelofassurancerequired• Gettingmanagementinput• NewIIAguidanceonauditplanpreparationwillbeprovided• Auditplanningmodel–anelectronicversionwillbeprovidedtoall delegates
Round Table Discussion 9 – Strategic audit planning – how to convince senior management and the Audit Committee that you are auditing the right topics
Day Four
Managing The Audit Process
• Buildinganunderstandingoftheauditprocess• Establishingauditobjectives• Theauditmanual• Developingeffectiveauditprogrammes• Whatmakesagoodprogramme?• Mistakestoavoid• Thedangersofre-inventingthewheel• Assigningtasks• Staffingfactors• Theneedforregularupdatesforstandardprogrammes• Supervisingandcontrollingaudits–tipsforsuccess
Round Table Discussion 10 – What makes a good audit manual and effective audit programmes
Working Paper Review• Theneedtomotivatenotcriticisestaff• Theneedforpeerreviewduringtheaudit• Howtoensureallareasarecovered• Identificationofkeyreviewpoints• Howtowritevalue-addedreviewnotes• Tipsforelectronicworkingpapers• Qualitycontrolmechanisms
Round Table Discussion 11 – Working paper reviews
Consultancy Assignments• TheIIAstandards• Whyconsultancyshouldbeencouraged• Thedifferenceinapproach• Howtodocumenttheseassignments• Reportingconsultancyassignments• Auditbyworkshop• Facilitation–dosanddon’ts
Round Table Discussion 12 – How to convince management that consultancy is the direction for Internal Audit
Investigations• Investigations–themajordifferencesfromstandardaudits• WhichinvestigationsshouldIAaccept?• Howcanthisdecisionbemade?• Theskillsrequired• Theneedforperfectaudittrails• Difficulties
Round Table Discussion 13 – Challenges of investigations
Day Five
Convincing Management
• Anewpaperonengagingseniormanagementwillbeshared• 20questionsdirectorsshouldasktheCAE• Theneedforeffectivepresentationsbyseniorauditmanagement• Determiningtheaudienceandpreparinganappropriateapproach• Theneedforimpact• Decidingtheformofpresentation• Useofvisualaids• Howmanynotesshouldyouuse• Useofhumour–isthisagoodidea?• Educationordecisionseeking–thedifferenttechniques• Howtodeliverasuccessfulpresentation - How to combat nerves - Keeping in control - How to deal with questions - Keepingtheflow - The need not to over prepare - Use of simple language - How to keep the audience’s interest - Use of props - Anticipating the questions - Considering what the audience will expect - Assessing the results - Getting feedback
Round Table Discussion 14 – Challenges of making successful presentations
• Makingpresentations
Open Forum• Anopenforumwillbeheldtodiscussanytopicofinterest.A number of topics will be tabled – you can highlight the issues you would like to discuss on the day• Topicscouldinclude:- - How to deliver world-class reports - The challenges of Internal Audit within a family-owned business - How to audit in an increasingly complex IT environment - Continuous auditing - How to make better use of CAATs - Auditing ISO 31000, 14001 etc - Selling IA to the business better - The role of IA in project management
T: +971 4 335 2437 F: +971 4 335 2438 E: [email protected] W: www.iirme.com/auditcertificate
FIVE WAYS TO REGISTERIIR Holdings Ltd.P.O Box 9428, Dubai, UAE
+971 4 335 2437
+971 4 335 2438 [email protected]
www.iirme.com/auditcertificate
DISCOUNTS AVAILABLE FOR 2 OR MORE PEOPLE
CALL: +971 4 335 2483E-MAIL: [email protected]
COMPANY DETAILS
Course fees include documentation, luncheon and refreshments. Delegates who attend all sessions and successfully complete the course assessment will receive an IIRME Certificate of Completion.
Any complaints, grievances or suggestion regarding CPE credit may be addressed to email: [email protected]
To assist us with future correspondence, please supply the following details:
Event Venue:
Dusit Thani Hotel, Dubai, UAE Tel: +971 4 343 3333
Accommodation DetailsWe highly recommend you secure your room reservation at the earliest to avoid last minute inconvenience. You can contact the IIR Hospitality Desk for assistance on:Tel: +971 4 407 2693Fax: +971 4 407 2517Email: [email protected]
© Copyright I.I.R. HOLDINGS B.V.
YES, I would like to receive information about future events
& services via e-mail .................................................................
Nature of your company's business: ....................................................................................................................................................
Company: ...........................................................................................................................................................................................................
Address: ......................................................................................................... Email: ..........................................................................................
Postcode: .............................................................................. Country: .............................................................................................................
Tel: .......................................................................................... Fax: .....................................................................................................................
No. of employees on your site:
1000+ 500-999 250-499 50-249 0-49
Name: .................................................................................................................................................................................................................
Job Title: ......................................................................................................... Email: ........................................................................................
Tel: ..................................................... Fax: .................................................... Mobile: .....................................................................................
Name: .................................................................................................................................................................................................................
Job Title: ......................................................................................................... Email: ........................................................................................
Tel: ..................................................... Fax: .................................................... Mobile: .....................................................................................
Name of the Department Head: .....................................................................................................................................................................
Department: ........................................................... Mobile: .......................................... Email: .......................................................................
Name of the Training Manager: .....................................................................................................................................................................
Department: ........................................................... Mobile: .......................................... Email: .......................................................................
Name of Booking Contact: ..............................................................................................................................................................................
Department: ........................................................... Mobile: .......................................... Email: .......................................................................
FN08SN/ST FINANCE SM
BC5217/BC5218/BC5219/BC5220/BC5221/BC5222/BC5223/BC5224/BC5225/BC5226
Card Payment If you would like to pay by credit card, please tick here and a
member of our team will contact you to take the details
All registrations are subject to our terms and conditions which are available at www.iirme.com/terms. Please read them as they include important information. By submitting your registration you agree to be bound by the terms and conditions in full.
Payments
A confirmation letter and invoice will be sent upon receipt of your registration. Please note that full payment must be received prior to the event. Only those delegates whose fees have been paid in full will be admitted to the event. You can pay by company cheques or bankers draft in Dirhams or US$. Please note that all US$ cheques and drafts should be drawn on a New York bank and an extra amount of US$ 6 per payment should be added to cover bank clearing charges. In any event payment must be received not later than 48 hours before the Event. Entry to the Event may be refused if payment in full is not received.
Cancellation
If you are unable to attend, a substitute delegate will be welcome in your place. Registrations cancelled more than 7 days before the Event are subject to a $200 administration charge. Registration fees for registrations cancelled 7 days of less before the Event must be paid in full. Substitutions are welcome at any time.
Avoid Visa Delays - Book Now
Delegates requiring visas should contact the hotel they wish to stay at directly, as soon as possible. Visas for non-GCC nationals may take several weeks to process.
All registration(s) are subject to acceptance by IIR which will be confirmed to you in writing. Due to unforeseen circumstances, the programme may change and IIR reserves the right to alter the venue and/or speakers.
Would you like to run this course in-house?
Save training $$ and create learning experiences relevant to your business. To customise this course and increase value and impact, contact Leigh Kendall on +971 4 407 2624 or email the team at [email protected]
Certificate In Internal AuditDusit Thani Hotel, Dubai, UAE
Event
Certificate IEssentials Of Internal Audit
Certificate IIThe Developing Internal Auditor
Certificate IIIRisk Based Auditing
Certificate IV Advanced Audit Techniques
Certificate VLeading The Internal Audit Function
Book 11 Weeks Before Start Of Course
Final Fee
BC5217 9 – 13 February 2014 BC5222 31 August – 4 September 2014
BC5218 9 – 13 March 2014BC5223 12 – 16 October 2014
BC5219 16 – 20 March 2014BC5224 19 – 23 October 2014
BC5220 15 –19 June 2014BC5225 7 – 11 December 2014
BC5221 22 – 26 June 2014BC5226 14 – 18 December 2014
Date and Codes Book 8 Weeks Before Start Of Course
US$ 4,395US$ 4,395
US$ 4,395US$ 4,395
US$ 4,395US$ 4,395
US$ 4,395US$ 4,395
US$ 4,395US$ 4,395
US$ 4,895US$ 4,895
US$ 4,895US$ 4,895
US$ 4,895US$ 4,895
US$ 4,895US$ 4,895
US$ 4,895US$ 4,895
US$ 5,195US$ 5,195
US$ 5,195US$ 5,195
US$ 5,195US$ 5,195
US$ 5,195US$ 5,195
US$ 5,195US$ 5,195
EARLY BIRD DISCOunTS
DELEgATE DETAILS