No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • CCI Press & Compliance Bookshelf
    • The Seven Elements Book Club
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Internal Audit

Internal Audit Awareness

by Dennis Keglovits
May 23, 2017
in Internal Audit
blue audit button on keyboard

Challenges, Trends and Recommendations

May is Internal Audit Awareness Month. What better time to discuss the challenges that come with preparing for audits and what companies can do to be better prepared? This article highlights trends in IA, insights into how auditors can continue to push their organizations forward and advice on how to better manage communication with the board by making education a priority.

Central Challenges

Determining Audit Scope

What are we auditing and why? Determining where to look is one of the biggest challenges auditors face today. The majority of companies use risk assessments to determine their auditable entities and help with scoping specific activities. Once the auditors know what they will audit, narrowing the scope of the audit to finish within the desired time period is the next hurdle. Beyond that, audits aren’t just looking at financial risk anymore. The overall focus should be linked to management’s strategic objectives to ensure optimal value. Finally, working with the auditees to understand the existing process and gather the applicable supporting documentation can prove more valuable for both the auditor and auditee.

Staffing

Having the right skill sets available at the right time is a challenge for internal audit teams. They’re under pressure to do more with less, but risks are increasing and projects are becoming more complicated. Couple that with the fact that auditors are occasionally tasked with assessing risks in an area outside their expertise and the result is an audit that provides less-than-effective results. The alternative is employing a creative mix of outsourcing and technologies to get the audits done – and in an effective and efficient manner.

Emerging Trends

Data Analytics

Auditors are using data analytics to focus the scope of audits by pre-emptively analyzing the data to identify specific trends and unexpected patterns. If inconsistencies in a high-risk area are identified, that area will likely be audited. Automated techniques allow auditors to look at an entire population instead of a smaller sampling, increasing both efficiency and thoroughness.

Self-Assessments

Employees and partners are increasingly testing themselves and reporting results to internal audit. To validate controls, the auditors perform independent checks on these self-assessments. Self-testing drives down the expenses associated with select audits and eases the staffing challenge without impacting the results.

IT Audit Function

Assessing cyber risk is a huge responsibility for internal auditors. Surveys tend to show that a majority of companies are concerned about cyber risk, but few believe they have adequately addressed or even adequately audit the risk area. Most have defined a separate IT audit function, but too often, this team operates in a silo, which means the organization has not properly incorporated the associated risks and controls into its overall risk appetite and program.

Recommendations for Process and Progress

Education

Traditionally, internal audit has done an inadequate job of educating the board, executives, managers and even users regarding the scope and purpose of the internal audit function. International Internal Audit Awareness Month presents a prime opportunity to make education a top priority.

Formalizing a sound audit charter and mission statement is a critical first step. Hone and practice the mission statement like an elevator pitch — you don’t get many opportunities to articulate the virtues of internal auditing. Senior executives will be more engaged if they understand the return on investment (ROI) and the value internal audit brings by helping the company to achieve strategic objectives.

Another critical area for improvement is the risk assessment process, which should be formalized and communicated to auditees and senior management. Some teams create an internal handbook but find it difficult to follow when senior management requests a fast-tracked audit. Developing clear documentation that details how audits are executed will foster collaboration with the departments being assessed.

Continuous Improvement

To keep an organization’s operations primed, you have to perform regular check-ups. Effective, regularly scheduled audits provide that third and final line of defense in risk management. Audit findings must be unbiased and authoritative, providing valuable insight for making decisions, prioritizing efforts and catching problems before they escalate.

Listen to your audit committee. Problem areas revealed by audits must be addressed to meet standards and optimize operations; follow up and remediate processes as indicated. The findings of an internal audit in advance of an external audit allow the business to address issues proactively, ensuring fewer external findings and enforcement actions.

Technology Solutions

Audits don’t have to be as painful as they used to be. Using spreadsheets to document and present evidence turns audit preparation into tedious work. Fortunately, audit management can now leverage comprehensive technology known as governance, risk management and compliance (GRC) solutions.

These cloud-based solutions organize the data collection and collaborative projects required for compiling audits. They automate the assembling of work papers, processing of findings, assessing of audit risk, distribution of reports and monitoring of time and expense. The systemization of audit activities on a GRC platform streamlines the entire process, increases accountability and integrates departmental data and procedures into an enterprise-wide view.

With stakeholder cooperation, technology support and strategic focus, the benefits of optimized audit processes will be realized well beyond the internal audit team. A well-audited organization is prepared to face adverse conditions with resilience and tackle growth opportunities with confidence.


Tags: Cyber RiskData AnalyticsRisk Assessment
Previous Post

Creating a Coordinated Approach to Assurance

Next Post

How Useful is BPM in Addressing Compliance Issues?

Dennis Keglovits

Dennis Keglovits

Dennis Keglovits is Vice President of IRM Services at Lockpath, a NAVEX Global Company. Dennis has over 20 years of consulting experience in the areas of risk management, internal audit and compliance services across several industries. A veteran of Big 4 Accounting and Consulting Firms, Dennis has served some of the world’s most recognizable brands. As a regional managing director in a national firm, he developed the service delivery model and go-to-market strategy across the Midwest.

Related Posts

news roundup

GC Pay Continues to Climb

by Staff and Wire Reports
September 26, 2025

Large cyber claims frequency falls 30% during year’s first half

IAF 2026 Risk in Focus Report

2026 Risk in Focus Report

by Corporate Compliance Insights
September 26, 2025

What are the top risks facing organizations worldwide? Global summary Risk in Focus 2026 What's in this report from Institute...

expiration date on product

Why Your Third-Party Risk Assessment Has an Expiration Date

by Mandy Cooper
September 22, 2025

Financial institutions have learned expensive lessons about the cost of treating vendor oversight as a one-time exercise

news roundup new

AI Risk Management Consumes 37% More Time As Governance Gaps Emerge

by Staff and Wire Reports
September 19, 2025

Most cybersecurity leaders fear nation-state attacks; multiple PFAS chemicals found in 82% of studied supply chains

Next Post
businessman stepping in bear trap

How Useful is BPM in Addressing Compliance Issues?

reminder to speak up
No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • CCI Press & Compliance Bookshelf
    • The Seven Elements Book Club
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights