SlideShare a Scribd company logo

Process Level Auditing Presentation

Download as PPT, PDF
Vernon Benjamin, profile picture
Vernon Benjamin

Process level auditing involves auditors facilitating managers' assessment of control strengths and weaknesses across related activities. The auditors and managers work together to develop improvement plans where needed. Under this approach, all existing controls are reviewed by managers and auditors to determine how efficiency can be improved. The auditors act as consultants to help enhance department operations.

1 of 15
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
Process Level Auditing
What is Process Level Auditing (PLA)? PLA means the auditor acts as a facilitator to help the managers of a group of related activities assess the control strengths and weakness. Together, we develop action plans for improvement, where necessary.
In a PLA Environment: All existing controls and procedures are reviewed by managers and auditors to determine what is needed for improved efficiency. Internal Audit, in the capacity of in-house consultant, works with the "client" to enhance the operations of the various departments.
How Will Process Level Auditing Improve the Organization? The managers' operational knowledge of the process becomes part of the audit. Each segment of the process is summed into one continuous flow. The managers gain an understanding of how the activities in their segment impact the process. The risks factors are assessed for potential impact to the process, and controls are applied for maximum efficiency and effectiveness.
Responsibilities of Internal Audit to the Organization The Institute of Internal Auditors set standards for the professional practice of Internal Auditing. They defined internal Auditing as an: "... Independent appraisal function established within an organization to examine and evaluate its activities as a service to the organization..." "...The objective of internal auditing is to assist members of the organization in the effective discharge of their responsibilities...“ "... To this end, internal auditing furnishes them with the analyses, appraisals, recommendations, counsel and information concerning the activities reviewed.."
CONTINUED Responsibilities of Internal Audit to the Organization Internal Audit must also keep the Board of Trustees informed of the adequacy of internal controls. In a process level auditing environment, these key functions will not change.
Internal Audit Objectives Current Practice The objectives of Internal Audit currently are to determine that existing policies and procedures within one area are adequate, properly implemented, and personnel are in compliance. Practice Under PLA The objectives of Internal Audit would be to facilitate the group's assessment of the process to determine where controls are needed, to adequately protect the assets of the organization.
CONTINUED Internal Audit Objectives Current Practice As part of its objectives the Internal Audit department currently identifies financial and operational problem areas and recommends modifications or development of new policies and procedures to assure that assets are safeguarded throughout the organization. Practice under PLA As part of its objectives the Audit process group would review the entire process, and collectively recommend modifications or development of policies and procedures that enhance the process, as well as adequately safeguard organization assets.
FUNCTIONS OF INTERNAL AUDIT Current Practice Internal Auditors currently focus on insuring that adequate controls exist within each segment of a process. Internal Auditors examine activities as a service to the organization. Internal Auditors perform independent appraisals. Practice Under PLA The Auditor would facilitate a review of the process that focus on controls within a total process. Internal Audit would facilitate the identification of unacceptable risks, and opportunities for reduction to acceptable levels. Independent appraisals would continue.
CONTINUED FUNCTIONS OF INTERNAL AUDIT Current Practice Internal Audit: Assists the organization in the effective discharge of their duties. Furnishes management with analyses, recommendations, counsel, and information on activities reviewed. Reports to the Audit Committee and all levels of management, its findings, conclusions and recommendations. Practice under PLA Internal Audit would: Continue to assists members of the organization in the effective discharge of their duties. Furnish management with analyses, recommendations, counsel, and information on activities reviewed. Report to the Audit Committee and all levels of management, its findings, conclusions, and recommendations.
The Managers' Expanded Role Under PLA The managers' would participate in the process by: A. Identifying the segments that constitute a process. B. Contributing first-hand observations and ideas regarding the state of existing controls and potential risks in the process. C. Developing a flowchart that links the segments into a process stream. D. Achieving improvements in cost, quality, and service within a specific process and ultimately the Organization . E. Contributing to the development of action plans to reduce unacceptable risks to acceptable levels.
Examples of Risks Financial - Service Revenue or budget driven. Legal Liability – The Organization's potential exposure from any lawsuits relative to the activities of the process. Regulatory Compliance - Any Federal, State, or Local legislation impacting the activities of the process. Corporate Image - Issues that impact the public's perception of the institution. Industry Specific - Issues that are specific to a particular industry such as healthcare.
CONTINUED Examples of Risks Confidentiality of Data - Adherence to the privacy and confidentiality of customer/patient information. Safeguarding Proprietary Data - The need to keep such data confidential. Systems Recovery - The need to develop a disaster plan for any interruption to the data collection and storage system. Operational Risk - Changes in the methods for achieving the objectives of the process. Data Integrity and Reliability - The state of data collection, storage and accuracy within a department.
Methodology of Risk Assessment Identify the business segments within the process. Facilitate the identification of risk factors within the process and classify by category. Facilitate the ranking of the risk factors according to degree of importance to the process, and potential exposure to the organization. Determine the order of audit field tasks, by giving priority to risks with highest potential exposure. Perform the audit field tasks according to the risk ranking developed by the process group.
CONTINUED Methodology for Risk Assessment Review the findings of the audit field work with the process group. Re-rank the risks according to the findings of the audit. Facilitate a discussion of the opportunities for reducing risk and improving effectiveness and efficiency. Prepare an audit report outlining the process and opportunities for improvement.

More Related Content

PPT
IAD Introduction - 1-2010
Vernon Benjamin
 
PPTX
Basic Internal Auditing Presentation
Vernon Benjamin
 
PPT
internal audit function ans controller's role in investors relation
ArgentinaMorata
 
PPTX
Introduction to internal auditing
David Griffiths
 
PPTX
The Role of Internal Audit
ArmeniaFED
 
PPTX
Audit report writing 5
DJones68
 
PDF
Operational Auditing
ahmad bassiouny
 
PPTX
Audit Process, Audit Procedures, Audit Planning, Auditing
Advance Business Consulting
 
IAD Introduction - 1-2010
Vernon Benjamin
 
Basic Internal Auditing Presentation
Vernon Benjamin
 
internal audit function ans controller's role in investors relation
ArgentinaMorata
 
Introduction to internal auditing
David Griffiths
 
The Role of Internal Audit
ArmeniaFED
 
Audit report writing 5
DJones68
 
Operational Auditing
ahmad bassiouny
 
Audit Process, Audit Procedures, Audit Planning, Auditing
Advance Business Consulting
 

What's hot (20)

PDF
Internal_Audit_Competency_Framework
Muhamad Sugian Nor
 
DOCX
Operational audit
Abdoulaye M Yansane
 
PDF
Internal audit ppt
Letzconsult.com
 
DOCX
ISA 315
varuna177
 
PPTX
Standards of Internal Audit
Karan Puri
 
PPTX
Audit findings and the report
Dennis Arter
 
PPSX
Basic internal auditing
Khalid Aziz
 
PDF
Internal audit report writing.pdf
kavyashree k
 
PDF
Internal Audit And Internal Control Presentation Leo Wachira
Jenard Wachira
 
PPTX
Hanrick Curran Audit Training - Internal Controls - March 2013
Matthew Green
 
DOC
Sample audit plan
Maher Manan
 
DOCX
Internal audit procedure
bhavikjariwala
 
PPTX
Internal audit
iPleaders - Re-engineering Legal education, New Delhi
 
PPTX
Internal audit department
Popun
 
PPT
Internal audit of manufacturing co
maheshr254
 
PDF
AOP Template
Vernon Benjamin
 
PPTX
Eeoqms internal auditing
hardeep singh
 
PPTX
Internal Audit Report Writing Best Practice
DJones68
 
PPTX
Auditing and Audit Process in Organization
Anas Mohammed MCILRM
 
PPTX
Basics of internal audit
complianceonline123
 
Internal_Audit_Competency_Framework
Muhamad Sugian Nor
 
Operational audit
Abdoulaye M Yansane
 
Internal audit ppt
Letzconsult.com
 
ISA 315
varuna177
 
Standards of Internal Audit
Karan Puri
 
Audit findings and the report
Dennis Arter
 
Basic internal auditing
Khalid Aziz
 
Internal audit report writing.pdf
kavyashree k
 
Internal Audit And Internal Control Presentation Leo Wachira
Jenard Wachira
 
Hanrick Curran Audit Training - Internal Controls - March 2013
Matthew Green
 
Sample audit plan
Maher Manan
 
Internal audit procedure
bhavikjariwala
 
Internal audit
iPleaders - Re-engineering Legal education, New Delhi
 
Internal audit department
Popun
 
Internal audit of manufacturing co
maheshr254
 
AOP Template
Vernon Benjamin
 
Eeoqms internal auditing
hardeep singh
 
Internal Audit Report Writing Best Practice
DJones68
 
Auditing and Audit Process in Organization
Anas Mohammed MCILRM
 
Basics of internal audit
complianceonline123
 
Ad

Viewers also liked (6)

PPT
Risk Assessment For Internal Auditors
minkhollow
 
PPT
Audit planning and risk assessment
casahiljain1992
 
PPTX
Internal Audit Methodology
Manoj Agarwal
 
PPTX
Practical approach to Risk Based Internal Audit
Manoj Agarwal
 
PPSX
Internal Audit of Manufacturing Companies
vikas_k
 
PDF
Basic Internal Auditing Presentation
Vernon Benjamin
 
Risk Assessment For Internal Auditors
minkhollow
 
Audit planning and risk assessment
casahiljain1992
 
Internal Audit Methodology
Manoj Agarwal
 
Practical approach to Risk Based Internal Audit
Manoj Agarwal
 
Internal Audit of Manufacturing Companies
vikas_k
 
Basic Internal Auditing Presentation
Vernon Benjamin
 
Ad

Similar to Process Level Auditing Presentation (20)

PPTX
The Internal Audit Framework
Ahmad Tariq Bhatti
 
PPTX
Xybion - best practices for audit management - final
Xybion Corporation
 
PPTX
Audit Framework presentation.pptx
OnwVinx
 
PPTX
introduction on auditing
nikhilkumar640177
 
PDF
MPHARM_QA_1Y_2S_203T_Audit&Regul.Compliance.pdf
prachivihol5
 
PPTX
Performance audit adding value
icgfmconference
 
PDF
Process Level Auditing 2012
Vernon Benjamin
 
PPTX
Quality Audit in pharmaceutical industry
Hari Haran
 
PPTX
Audit Process: How to Successfully Plan Audit
complianceonline123
 
PPTX
Evaluation and control in strategic management
Meenakshi1994
 
PDF
Brief About IMS, QMS, ISO 9001, 14001, 18001
Chetan Rathi
 
PDF
SFC Plan of engagement
Jonathan Lamboi
 
PPTX
AUDIT - AUDITING STRATEGIES.pptx
Mohamed Fazil M
 
PDF
Internal auditing for “one & all” (second edition)
Mohammad Wahid Abdullah Khan
 
PDF
CHAPTER-1 Management Audit and Planning procedure.pdf
Dr. Dinesh Mehta
 
PPT
3a 5 Value Adding Internal Audit
Rajeswaran Muthu Venkatachalam
 
PPTX
Risk based auditing
Tunde Elijah Kelani
 
PPTX
Internal Audit Strategic Framework
Jeremy Cheng
 
DOCX
CONTROL AND PERFORMANCE MANAGEMENT DOCUMENT
vini henry
 
PPT
Controlling
Merve Evci Bogazici University
 
The Internal Audit Framework
Ahmad Tariq Bhatti
 
Xybion - best practices for audit management - final
Xybion Corporation
 
Audit Framework presentation.pptx
OnwVinx
 
introduction on auditing
nikhilkumar640177
 
MPHARM_QA_1Y_2S_203T_Audit&Regul.Compliance.pdf
prachivihol5
 
Performance audit adding value
icgfmconference
 
Process Level Auditing 2012
Vernon Benjamin
 
Quality Audit in pharmaceutical industry
Hari Haran
 
Audit Process: How to Successfully Plan Audit
complianceonline123
 
Evaluation and control in strategic management
Meenakshi1994
 
Brief About IMS, QMS, ISO 9001, 14001, 18001
Chetan Rathi
 
SFC Plan of engagement
Jonathan Lamboi
 
AUDIT - AUDITING STRATEGIES.pptx
Mohamed Fazil M
 
Internal auditing for “one & all” (second edition)
Mohammad Wahid Abdullah Khan
 
CHAPTER-1 Management Audit and Planning procedure.pdf
Dr. Dinesh Mehta
 
3a 5 Value Adding Internal Audit
Rajeswaran Muthu Venkatachalam
 
Risk based auditing
Tunde Elijah Kelani
 
Internal Audit Strategic Framework
Jeremy Cheng
 
CONTROL AND PERFORMANCE MANAGEMENT DOCUMENT
vini henry
 
Controlling
Merve Evci Bogazici University
 

Process Level Auditing Presentation

  • 2. What is Process Level Auditing (PLA)? PLA means the auditor acts as a facilitator to help the managers of a group of related activities assess the control strengths and weakness. Together, we develop action plans for improvement, where necessary.
  • 3. In a PLA Environment: All existing controls and procedures are reviewed by managers and auditors to determine what is needed for improved efficiency. Internal Audit, in the capacity of in-house consultant, works with the "client" to enhance the operations of the various departments.
  • 4. How Will Process Level Auditing Improve the Organization? The managers' operational knowledge of the process becomes part of the audit. Each segment of the process is summed into one continuous flow. The managers gain an understanding of how the activities in their segment impact the process. The risks factors are assessed for potential impact to the process, and controls are applied for maximum efficiency and effectiveness.
  • 5. Responsibilities of Internal Audit to the Organization The Institute of Internal Auditors set standards for the professional practice of Internal Auditing. They defined internal Auditing as an: "... Independent appraisal function established within an organization to examine and evaluate its activities as a service to the organization..." "...The objective of internal auditing is to assist members of the organization in the effective discharge of their responsibilities...“ "... To this end, internal auditing furnishes them with the analyses, appraisals, recommendations, counsel and information concerning the activities reviewed.."
  • 6. CONTINUED Responsibilities of Internal Audit to the Organization Internal Audit must also keep the Board of Trustees informed of the adequacy of internal controls. In a process level auditing environment, these key functions will not change.
  • 7. Internal Audit Objectives Current Practice The objectives of Internal Audit currently are to determine that existing policies and procedures within one area are adequate, properly implemented, and personnel are in compliance. Practice Under PLA The objectives of Internal Audit would be to facilitate the group's assessment of the process to determine where controls are needed, to adequately protect the assets of the organization.
  • 8. CONTINUED Internal Audit Objectives Current Practice As part of its objectives the Internal Audit department currently identifies financial and operational problem areas and recommends modifications or development of new policies and procedures to assure that assets are safeguarded throughout the organization. Practice under PLA As part of its objectives the Audit process group would review the entire process, and collectively recommend modifications or development of policies and procedures that enhance the process, as well as adequately safeguard organization assets.
  • 9. FUNCTIONS OF INTERNAL AUDIT Current Practice Internal Auditors currently focus on insuring that adequate controls exist within each segment of a process. Internal Auditors examine activities as a service to the organization. Internal Auditors perform independent appraisals. Practice Under PLA The Auditor would facilitate a review of the process that focus on controls within a total process. Internal Audit would facilitate the identification of unacceptable risks, and opportunities for reduction to acceptable levels. Independent appraisals would continue.
  • 10. CONTINUED FUNCTIONS OF INTERNAL AUDIT Current Practice Internal Audit: Assists the organization in the effective discharge of their duties. Furnishes management with analyses, recommendations, counsel, and information on activities reviewed. Reports to the Audit Committee and all levels of management, its findings, conclusions and recommendations. Practice under PLA Internal Audit would: Continue to assists members of the organization in the effective discharge of their duties. Furnish management with analyses, recommendations, counsel, and information on activities reviewed. Report to the Audit Committee and all levels of management, its findings, conclusions, and recommendations.
  • 11. The Managers' Expanded Role Under PLA The managers' would participate in the process by: A. Identifying the segments that constitute a process. B. Contributing first-hand observations and ideas regarding the state of existing controls and potential risks in the process. C. Developing a flowchart that links the segments into a process stream. D. Achieving improvements in cost, quality, and service within a specific process and ultimately the Organization . E. Contributing to the development of action plans to reduce unacceptable risks to acceptable levels.
  • 12. Examples of Risks Financial - Service Revenue or budget driven. Legal Liability – The Organization's potential exposure from any lawsuits relative to the activities of the process. Regulatory Compliance - Any Federal, State, or Local legislation impacting the activities of the process. Corporate Image - Issues that impact the public's perception of the institution. Industry Specific - Issues that are specific to a particular industry such as healthcare.
  • 13. CONTINUED Examples of Risks Confidentiality of Data - Adherence to the privacy and confidentiality of customer/patient information. Safeguarding Proprietary Data - The need to keep such data confidential. Systems Recovery - The need to develop a disaster plan for any interruption to the data collection and storage system. Operational Risk - Changes in the methods for achieving the objectives of the process. Data Integrity and Reliability - The state of data collection, storage and accuracy within a department.
  • 14. Methodology of Risk Assessment Identify the business segments within the process. Facilitate the identification of risk factors within the process and classify by category. Facilitate the ranking of the risk factors according to degree of importance to the process, and potential exposure to the organization. Determine the order of audit field tasks, by giving priority to risks with highest potential exposure. Perform the audit field tasks according to the risk ranking developed by the process group.
  • 15. CONTINUED Methodology for Risk Assessment Review the findings of the audit field work with the process group. Re-rank the risks according to the findings of the audit. Facilitate a discussion of the opportunities for reducing risk and improving effectiveness and efficiency. Prepare an audit report outlining the process and opportunities for improvement.