SlideShare uma empresa Scribd logo

Audit Steps

Transferir como PPSX, PDF
RnR DataLex Pvt Ltd
RnR DataLex Pvt Ltd
1 de 8
Finalize Verify receipt of Site Arrival and Pre-Audit Schedule and information as Audit initiation Agenda per Checklist Substantiate Interview Review Audit and risk for People to obtain Documents and assess identified understanding Information compliance exposure gathered Audit Process Flowchart No Yes Submit to Prepare Initial Submit to IT Accept Senior draft report Audit Manager Management Attendees: CEO/CFO/ IT Manager Submission of Senior Report to Send to IT Audit Interim Closing Management Senior Manager Meeting Review Management No Publish report Remedial to Unit Audit follow-up Accept measures from Business procedures and Unit Business Yes Owners dates Owners Submit to Final Closing Submit to IT Senior Meeting Audit Manager Management Attendees: CEO/CFO/ IT Manager
Our Methodology Gather Information and Plan • Knowledge of Business and Industry • Prior Year’s Audit Results • Regulatory Statutes • Inherent Risk Assessments Obtain Understanding of Internal Controls • Control Environment • Control Procedures • Control Risk Assessment Perform Compliance Tests • Test Policies and Procedures • Test Segregation of Duties Perform Substantive Tests • Analytical Procedures • Other Substantive Audit Procedures
Conclude Audit Make recommendations after correctly evaluating the controls for improvements within each of the five interrelated areas like: • Control environment. • Risk assessment. • Control activities. • Information and communication. • Monitoring. Submit an Audit Report that is: • Accurate • Objective • Clear • Concise • Constructive • Complete • Timely
Sample Audit Report To: _______________ _________________ From:___________________________ Date: EXECUTIVE AUDIT SUMMARY I. INTRODUCTION AND SCOPE Entity Name: _________________________ Location: _______________________ Segment : ________________________ Assets: (USD million) ______________ Bud. Ann. Sales: (USD million)__________________ Bud. Ann. EBIT: (USD million __________________________ Business Description: (Provide information about the business and its links to other businesses or corporate office. Give list of services offered and how these are executed) ________________________________________________________________________________ ________________________________________________________________________________ Scope: (Write about scope of the audit in terms of areas covered) ________________________________________________________________________________ ________________________________________________________________________________ Audited Period: ________________ II. AUDIT RESULTS __________________________________________________________ Critical __________________________________________________________ Important Minor
Executive summary of our audit findings: Compliance Operational Efficiency Findings Total Financial Reporting & Effectiveness Critical - - - - Important - - - - Minor - - - - The table below details Audit findings: Findings & Issue Specific Root Area Rating Causes Impact Recommendation Management Response Finding: Agree: (Yes/No) Root Cause: Responsible Party (Person, Title): Corrective Action Plan: Target Date: Audit Follow Up Date:
Based on the overall audit strategy, we undertake medium term and annual Audit programmes to provide the required assurance. These will be drawn up by Internal Audit in consultation with the Concerned Authority and the approval of the Audit Committee. The programme’s are meticulously designed to:  Appraise progressively the soundness, adequacy and application of the internal control systems;  Ascertain the extent to which the system of internal control ensures compliance with the policies and procedures and State laws and regulations;  Ascertain that the system of internal control promotes the efficient and effective use of resources;  Ascertain that the system of internal control operates to ensure that the assets of the Organization are properly controlled and safeguarded from losses arising from fraud, irregularity or corruption;  Ascertain that there are adequate controls to ensure reliability of accounting and other information as a basis for producing accounts and for financial, statistical and other returns;  Ascertain that there is an adequate internal control system to ensure the integrity and reliability of financial and other information provided to the Governing Authority; and  Confirm compliance with laws, regulations and Government Guidelines.
Audit Steps

Recomendados

Eplc security approach_practices_guide
Eplc security approach_practices_guideEplc security approach_practices_guide
Eplc security approach_practices_guidedizainioras
 
Change Management Overview
Change Management OverviewChange Management Overview
Change Management Overviewokrantz
 
IT7833 group lab 4
IT7833 group lab 4IT7833 group lab 4
IT7833 group lab 4gogo1555
 
The Perfume Giant
The Perfume GiantThe Perfume Giant
The Perfume GiantVipul Shah
 
Net challenge training_material_performance management_v05
Net challenge training_material_performance management_v05Net challenge training_material_performance management_v05
Net challenge training_material_performance management_v05netchallenge
 
Itam Presentation by Cydney Davis
Itam Presentation by Cydney DavisItam Presentation by Cydney Davis
Itam Presentation by Cydney DavisCydney Davis
 
Chapt12 w04
Chapt12 w04Chapt12 w04
Chapt12 w04meimeiyo
 
Process Innovation vs. Governance, Risk and Compliance
Process Innovation vs. Governance, Risk and ComplianceProcess Innovation vs. Governance, Risk and Compliance
Process Innovation vs. Governance, Risk and ComplianceMichael zur Muehlen
 

Recomendados

Eplc security approach_practices_guide
Eplc security approach_practices_guideEplc security approach_practices_guide
Eplc security approach_practices_guidedizainioras
 
Change Management Overview
Change Management OverviewChange Management Overview
Change Management Overviewokrantz
 
IT7833 group lab 4
IT7833 group lab 4IT7833 group lab 4
IT7833 group lab 4gogo1555
 
The Perfume Giant
The Perfume GiantThe Perfume Giant
The Perfume GiantVipul Shah
 
Net challenge training_material_performance management_v05
Net challenge training_material_performance management_v05Net challenge training_material_performance management_v05
Net challenge training_material_performance management_v05netchallenge
 
Itam Presentation by Cydney Davis
Itam Presentation by Cydney DavisItam Presentation by Cydney Davis
Itam Presentation by Cydney DavisCydney Davis
 
Chapt12 w04
Chapt12 w04Chapt12 w04
Chapt12 w04meimeiyo
 
Process Innovation vs. Governance, Risk and Compliance
Process Innovation vs. Governance, Risk and ComplianceProcess Innovation vs. Governance, Risk and Compliance
Process Innovation vs. Governance, Risk and ComplianceMichael zur Muehlen
 
BUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENTBUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENTTalkSahana
 
IT GOVERNANCE CONSULTING
IT GOVERNANCE CONSULTINGIT GOVERNANCE CONSULTING
IT GOVERNANCE CONSULTINGArul Nambi
 
Acquire To Retire Discussion Document
Acquire To Retire Discussion DocumentAcquire To Retire Discussion Document
Acquire To Retire Discussion Documentduffyri
 
Jerald kerby
Jerald kerbyJerald kerby
Jerald kerbyNASAPMC
 
Case Studies Using Process as the Lever for Enterprise Change
Case Studies Using Process as the Lever for Enterprise ChangeCase Studies Using Process as the Lever for Enterprise Change
Case Studies Using Process as the Lever for Enterprise ChangeVincent Kwon
 
Iso27001 Approach
Iso27001 ApproachIso27001 Approach
Iso27001 Approachtschraider
 
Capa system management
Capa system managementCapa system management
Capa system managementConnie Dello Buono
 
[weave] Risk and Compliance - Less but Better, Optimizing controls
[weave] Risk and Compliance - Less but Better, Optimizing controls[weave] Risk and Compliance - Less but Better, Optimizing controls
[weave] Risk and Compliance - Less but Better, Optimizing controlsonepoint x weave
 
Emids Afternoon Msi Case Study V1
Emids Afternoon Msi Case Study V1Emids Afternoon Msi Case Study V1
Emids Afternoon Msi Case Study V1techcouncil
 
Simplifying IT GRC
Simplifying IT GRCSimplifying IT GRC
Simplifying IT GRCanand choudhary
 
IT Buzz Overview
IT Buzz OverviewIT Buzz Overview
IT Buzz OverviewComputer Aid, Inc
 
IT Buzz Overview
IT Buzz OverviewIT Buzz Overview
IT Buzz OverviewComputer Aid, Inc
 
IT buzz overview
IT buzz overview IT buzz overview
IT buzz overview Computer Aid, Inc
 
IT Buzz Overview and Detail 9 21 12
IT Buzz Overview and Detail 9 21 12IT Buzz Overview and Detail 9 21 12
IT Buzz Overview and Detail 9 21 12Computer Aid, Inc
 
News iso
News isoNews iso
News isoNadzirint
 
Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Deep Kumar Mendiratta
 
Case study marketing
Case study marketingCase study marketing
Case study marketingMarpij
 
Considerations in Selecting and Protecting Your IT Investment
Considerations in Selecting and Protecting Your IT InvestmentConsiderations in Selecting and Protecting Your IT Investment
Considerations in Selecting and Protecting Your IT InvestmentHelene Heller, PMP
 
Presentasi Danang W
Presentasi Danang WPresentasi Danang W
Presentasi Danang WDANANG WID
 
Meeting the Challenge of Vivek Kundra's 25 Point Plan
Meeting the Challenge of Vivek Kundra's 25 Point PlanMeeting the Challenge of Vivek Kundra's 25 Point Plan
Meeting the Challenge of Vivek Kundra's 25 Point PlanPlanet Technologies
 
Process performance models case study
Process performance models case studyProcess performance models case study
Process performance models case studyKobi Vider
 
Severn Trent Case Study
Severn Trent Case StudySevern Trent Case Study
Severn Trent Case Studyidbarratt
 

Mais conteúdo relacionado

Mais procurados

BUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENTBUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENTTalkSahana
 
IT GOVERNANCE CONSULTING
IT GOVERNANCE CONSULTINGIT GOVERNANCE CONSULTING
IT GOVERNANCE CONSULTINGArul Nambi
 
Acquire To Retire Discussion Document
Acquire To Retire Discussion DocumentAcquire To Retire Discussion Document
Acquire To Retire Discussion Documentduffyri
 
Jerald kerby
Jerald kerbyJerald kerby
Jerald kerbyNASAPMC
 
Case Studies Using Process as the Lever for Enterprise Change
Case Studies Using Process as the Lever for Enterprise ChangeCase Studies Using Process as the Lever for Enterprise Change
Case Studies Using Process as the Lever for Enterprise ChangeVincent Kwon
 
Iso27001 Approach
Iso27001 ApproachIso27001 Approach
Iso27001 Approachtschraider
 
[weave] Risk and Compliance - Less but Better, Optimizing controls
[weave] Risk and Compliance - Less but Better, Optimizing controls[weave] Risk and Compliance - Less but Better, Optimizing controls
[weave] Risk and Compliance - Less but Better, Optimizing controlsonepoint x weave
 

Mais procurados (8)

BUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENTBUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENT
 
IT GOVERNANCE CONSULTING
IT GOVERNANCE CONSULTINGIT GOVERNANCE CONSULTING
IT GOVERNANCE CONSULTING
 
Acquire To Retire Discussion Document
Acquire To Retire Discussion DocumentAcquire To Retire Discussion Document
Acquire To Retire Discussion Document
 
Jerald kerby
Jerald kerbyJerald kerby
Jerald kerby
 
Case Studies Using Process as the Lever for Enterprise Change
Case Studies Using Process as the Lever for Enterprise ChangeCase Studies Using Process as the Lever for Enterprise Change
Case Studies Using Process as the Lever for Enterprise Change
 
Iso27001 Approach
Iso27001 ApproachIso27001 Approach
Iso27001 Approach
 
Capa system management
Capa system managementCapa system management
Capa system management
 
[weave] Risk and Compliance - Less but Better, Optimizing controls
[weave] Risk and Compliance - Less but Better, Optimizing controls[weave] Risk and Compliance - Less but Better, Optimizing controls
[weave] Risk and Compliance - Less but Better, Optimizing controls
 

Semelhante a Audit Steps

Emids Afternoon Msi Case Study V1
Emids Afternoon Msi Case Study V1Emids Afternoon Msi Case Study V1
Emids Afternoon Msi Case Study V1techcouncil
 
IT Buzz Overview and Detail 9 21 12
IT Buzz Overview and Detail 9 21 12IT Buzz Overview and Detail 9 21 12
IT Buzz Overview and Detail 9 21 12Computer Aid, Inc
 
Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Deep Kumar Mendiratta
 
Case study marketing
Case study marketingCase study marketing
Case study marketingMarpij
 
Considerations in Selecting and Protecting Your IT Investment
Considerations in Selecting and Protecting Your IT InvestmentConsiderations in Selecting and Protecting Your IT Investment
Considerations in Selecting and Protecting Your IT InvestmentHelene Heller, PMP
 
Presentasi Danang W
Presentasi Danang WPresentasi Danang W
Presentasi Danang WDANANG WID
 
Meeting the Challenge of Vivek Kundra's 25 Point Plan
Meeting the Challenge of Vivek Kundra's 25 Point PlanMeeting the Challenge of Vivek Kundra's 25 Point Plan
Meeting the Challenge of Vivek Kundra's 25 Point PlanPlanet Technologies
 
Process performance models case study
Process performance models case studyProcess performance models case study
Process performance models case studyKobi Vider
 
Severn Trent Case Study
Severn Trent Case StudySevern Trent Case Study
Severn Trent Case Studyidbarratt
 
Conducting management review1
Conducting management review1Conducting management review1
Conducting management review1mdt77777
 
Acl Presentation 3 4 10 Final
Acl Presentation 3 4 10 FinalAcl Presentation 3 4 10 Final
Acl Presentation 3 4 10 Finalmcoello
 
Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...
Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...
Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...SAS Institute India Pvt. Ltd
 
FTI Managed Treasury
FTI Managed TreasuryFTI Managed Treasury
FTI Managed TreasuryFTI
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analyticsprosenzw69
 

Semelhante a Audit Steps (20)

Emids Afternoon Msi Case Study V1
Emids Afternoon Msi Case Study V1Emids Afternoon Msi Case Study V1
Emids Afternoon Msi Case Study V1
 
Simplifying IT GRC
Simplifying IT GRCSimplifying IT GRC
Simplifying IT GRC
 
IT Buzz Overview
IT Buzz OverviewIT Buzz Overview
IT Buzz Overview
 
IT Buzz Overview
IT Buzz OverviewIT Buzz Overview
IT Buzz Overview
 
IT buzz overview
IT buzz overview IT buzz overview
IT buzz overview
 
IT Buzz Overview and Detail 9 21 12
IT Buzz Overview and Detail 9 21 12IT Buzz Overview and Detail 9 21 12
IT Buzz Overview and Detail 9 21 12
 
News iso
News isoNews iso
News iso
 
Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]Approach note on internal audit [compatibility mode]
Approach note on internal audit [compatibility mode]
 
Case study marketing
Case study marketingCase study marketing
Case study marketing
 
Considerations in Selecting and Protecting Your IT Investment
Considerations in Selecting and Protecting Your IT InvestmentConsiderations in Selecting and Protecting Your IT Investment
Considerations in Selecting and Protecting Your IT Investment
 
Presentasi Danang W
Presentasi Danang WPresentasi Danang W
Presentasi Danang W
 
Meeting the Challenge of Vivek Kundra's 25 Point Plan
Meeting the Challenge of Vivek Kundra's 25 Point PlanMeeting the Challenge of Vivek Kundra's 25 Point Plan
Meeting the Challenge of Vivek Kundra's 25 Point Plan
 
Process performance models case study
Process performance models case studyProcess performance models case study
Process performance models case study
 
Severn Trent Case Study
Severn Trent Case StudySevern Trent Case Study
Severn Trent Case Study
 
Conducting management review1
Conducting management review1Conducting management review1
Conducting management review1
 
Acl Presentation 3 4 10 Final
Acl Presentation 3 4 10 FinalAcl Presentation 3 4 10 Final
Acl Presentation 3 4 10 Final
 
Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...
Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...
Axis Bank - SAS Forum India: Automation of Compliance Management – Implementa...
 
FTI Managed Treasury
FTI Managed TreasuryFTI Managed Treasury
FTI Managed Treasury
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analytics
 
Derek Ross SLC
Derek Ross SLCDerek Ross SLC
Derek Ross SLC
 

Mais de RnR DataLex Pvt Ltd

Policy Administration Transactions In Insurance
Policy Administration Transactions In InsurancePolicy Administration Transactions In Insurance
Policy Administration Transactions In InsuranceRnR DataLex Pvt Ltd
 

Mais de RnR DataLex Pvt Ltd (11)

Audit steps
Audit stepsAudit steps
Audit steps
 
Interview tips and techniquesl
Interview tips and techniqueslInterview tips and techniquesl
Interview tips and techniquesl
 
Group discussion mantrasl
Group discussion mantraslGroup discussion mantrasl
Group discussion mantrasl
 
Policy Administration Transactions In Insurance
Policy Administration Transactions In InsurancePolicy Administration Transactions In Insurance
Policy Administration Transactions In Insurance
 
Email Etiquettes
Email EtiquettesEmail Etiquettes
Email Etiquettes
 
Email Etiquettes
Email EtiquettesEmail Etiquettes
Email Etiquettes
 
Insurance Presentation
Insurance PresentationInsurance Presentation
Insurance Presentation
 
Presentation On Bcp
Presentation On BcpPresentation On Bcp
Presentation On Bcp
 
Accession Process Overview
Accession Process OverviewAccession Process Overview
Accession Process Overview
 
Accesion Presentation
Accesion PresentationAccesion Presentation
Accesion Presentation
 
Fundamentals Of Insurance(2)
Fundamentals Of Insurance(2)Fundamentals Of Insurance(2)
Fundamentals Of Insurance(2)
 

Audit Steps

  • 1.
  • 2. Finalize Verify receipt of Site Arrival and Pre-Audit Schedule and information as Audit initiation Agenda per Checklist Substantiate Interview Review Audit and risk for People to obtain Documents and assess identified understanding Information compliance exposure gathered Audit Process Flowchart No Yes Submit to Prepare Initial Submit to IT Accept Senior draft report Audit Manager Management Attendees: CEO/CFO/ IT Manager Submission of Senior Report to Send to IT Audit Interim Closing Management Senior Manager Meeting Review Management No Publish report Remedial to Unit Audit follow-up Accept measures from Business procedures and Unit Business Yes Owners dates Owners Submit to Final Closing Submit to IT Senior Meeting Audit Manager Management Attendees: CEO/CFO/ IT Manager
  • 3. Our Methodology Gather Information and Plan • Knowledge of Business and Industry • Prior Year’s Audit Results • Regulatory Statutes • Inherent Risk Assessments Obtain Understanding of Internal Controls • Control Environment • Control Procedures • Control Risk Assessment Perform Compliance Tests • Test Policies and Procedures • Test Segregation of Duties Perform Substantive Tests • Analytical Procedures • Other Substantive Audit Procedures
  • 4. Conclude Audit Make recommendations after correctly evaluating the controls for improvements within each of the five interrelated areas like: • Control environment. • Risk assessment. • Control activities. • Information and communication. • Monitoring. Submit an Audit Report that is: • Accurate • Objective • Clear • Concise • Constructive • Complete • Timely
  • 5. Sample Audit Report To: _______________ _________________ From:___________________________ Date: EXECUTIVE AUDIT SUMMARY I. INTRODUCTION AND SCOPE Entity Name: _________________________ Location: _______________________ Segment : ________________________ Assets: (USD million) ______________ Bud. Ann. Sales: (USD million)__________________ Bud. Ann. EBIT: (USD million __________________________ Business Description: (Provide information about the business and its links to other businesses or corporate office. Give list of services offered and how these are executed) ________________________________________________________________________________ ________________________________________________________________________________ Scope: (Write about scope of the audit in terms of areas covered) ________________________________________________________________________________ ________________________________________________________________________________ Audited Period: ________________ II. AUDIT RESULTS __________________________________________________________ Critical __________________________________________________________ Important Minor
  • 6. Executive summary of our audit findings: Compliance Operational Efficiency Findings Total Financial Reporting & Effectiveness Critical - - - - Important - - - - Minor - - - - The table below details Audit findings: Findings & Issue Specific Root Area Rating Causes Impact Recommendation Management Response Finding: Agree: (Yes/No) Root Cause: Responsible Party (Person, Title): Corrective Action Plan: Target Date: Audit Follow Up Date:
  • 7. Based on the overall audit strategy, we undertake medium term and annual Audit programmes to provide the required assurance. These will be drawn up by Internal Audit in consultation with the Concerned Authority and the approval of the Audit Committee. The programme’s are meticulously designed to:  Appraise progressively the soundness, adequacy and application of the internal control systems;  Ascertain the extent to which the system of internal control ensures compliance with the policies and procedures and State laws and regulations;  Ascertain that the system of internal control promotes the efficient and effective use of resources;  Ascertain that the system of internal control operates to ensure that the assets of the Organization are properly controlled and safeguarded from losses arising from fraud, irregularity or corruption;  Ascertain that there are adequate controls to ensure reliability of accounting and other information as a basis for producing accounts and for financial, statistical and other returns;  Ascertain that there is an adequate internal control system to ensure the integrity and reliability of financial and other information provided to the Governing Authority; and  Confirm compliance with laws, regulations and Government Guidelines.