This page contains a list of links to KnowledgeLeader publications and tools that will assist a new professional in understanding and getting started in a career in internal audit and risk management.
Is Internal Audit the Career for You?
Today’s internal audit departments need people with business, programming, technology, legal, operations as well as accounting backgrounds. Is this the career for you? This article outlines information that could help you make that decision.
Entity Level Internal Audit Methodology
The entity level business process audit methodology focuses on understanding and analyzing the business. This understanding is primarily used to identify the target processes and risks during the audit planning process. Tools are provided to help with each phase is the process.
Guide to Internal Audit
This internal audit guide addresses common questions concerning the NYSE listing requirements that mandate creation of an effective internal audit function. The more than 65 questions and answers will assist those planning to develop a function. The booklet provides guidance on issues ranging from roles and reporting structures to risk assessments, and management’s responsibilities. Ten appendices include samples and additional information. This guide has now been updated to reflect the SEC’s approval of PCAOB Auditing Standard No. 2 and other regulations in the US and Canada.
Internal Audit Charter: Guide and Sample
The first step in initiating or revitalizing an internal audit function is the development, authorization, and approval of the internal audit charter. This guide has an explanation of the internal audit charter, including the typical language and elements, and a sample to be presented to and approved by the Audit Committee.
More Audit Department Charters
Process Level Internal Audit Methodology
Once a process has been identified for an audit or review, this methodology provides guidance and tools for the phases to be performed during the review process. Process level reviews should focus on business risks and on improving process performance. This tool addresses The IIA Standards, information technology, and fraud.
Is a Leadership Deficit Looming in Internal Audit?
Are internal audit organizations facing an imminent crisis in leadership? While "crisis" may be too strong a word, internal audit departments are facing increased oversight and governance expectations at a time when the pool of future leadership talent is not growing apace. In this article, Ann Butera, president of The Whole Person Project, Inc., outlines a number of factors responsible for this growing deficit and how to challenge this trend in your organization.
Guide to Enterprise Risk Management: Frequently Asked Questions
In today’s challenging global economy, there is a need for identifying, assessing, managing and monitoring an organization’s business opportunities and risks. The concept of enterprise risk management (ERM) helps elevate the focus of risk management from the tactical to strategic level. The purpose of this publication is to address some of the most commonly asked questions with respect to ERM. It offers ideas, suggestions and insights to executives responsible for ERM implementation.
Enterprise Risk Management Interview Questionnaire
The ultimate goal of Enterprise Risk Management (ERM) is to evaluate total returns relative to total risks, leading to more informed business decisions. This questionnaire can be used when assessing an organization’s enterprise risk management strategy. It focuses on the internal environment, objective setting, event identification, risk assessment, risk response, control activities, and information and communication.
Enterprise Risk Management Presentation
While your business environment evolves, so do the risks you face. New vulnerabilities appear while old fears antiquate. Can you distinguish between the two? Identify, understand, mitigate. This is the ERM formula for a good nights sleep.
Enterprise Business Risk Management Process - Overview Framework
Enterprise business risk management is illustrated broadly in this framework. It is a continuous process of establishing risk management objectives, assessing risks within the context of established tolerances, developing strategies and implementing risk management processes, and monitoring and reporting upon those processes.
Enterprise Risk Management Project Plan - Sample
Enterprise Risk Management (ERM) requires clear risk management goals and objectives, linked to business objectives and strategies. This document is a sample project plan utilized during the planning phase of implementing ERM across an organization. The project plan supports a phased implementation approach detailing tasks, deliverables, and a project timeline.
Protiviti Risk ModelSM
The Protiviti Risk Model is a comprehensive organizing framework for defining and understanding potential business risks. The model categorizes business risk into three main areas: Environment Risk, Process Risk, and Information for Decision-Making Risk.