No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Featured

I Like Your Shoes: The Benefit of Fresh Eyes in Audit

How a Different Perspective Produces Different Insights

by Mariette Cutler
January 2, 2020
in Featured, Internal Audit, Leadership and Career
I Like Your Shoes: The Benefit of Fresh Eyes in Audit

Mariette Cutler, Managing Director of The Risk Navigation Group, discusses how relative inexperience in the audit profession can be a real asset – salve to the souls of those still gaining a footing in the GRC space.

Early morning paired with the brisk fall air to set the tone for a third-quarter audit committee meeting. Most of us have been there: dry commentary interspersed with the occasional cold remark and a generous sprinkling of buzzwords.

Audit committee meetings can be stressful. The pressure is on to have all your ducks in a row, all possible questions anticipated and the corresponding answers prepared. During the meeting, a “Mr. Smith” (real name withheld) was introduced as a recent addition to the team. After [whatever Mr. Smith did… call, report, etc.], the audit committee discussed what he could bring to the table. The tentative, optimistic consensus was that Mr. Smith was very professional and came across as experienced and knowledgeable. Since I had recently met Mr. Smith in person, I was asked what my first impression was. I immediately responded, “I really like his shoes!”

The initial reaction I received was one of those moments that’s funny in hindsight, but not fun at all in the moment.  There was open surprise, a little hint of disbelief, but mostly it was blank confusion. When the faces wearing those expressions are your boss’s boss’s boss and all the bosses in between, it’s not a comfortable feeling. Generally, internal audit engagements are quite clear-cut and dry. The job is to analyze risk and improve control structures. The concept seems very simple, and “shoes” are not usually considered relevant.

Most internal audit departments rely on straightforward, tried and tested, “expected” processes. As a result, many internal control structures do not take into account the individual nuances between departments or divisions. Effective controls are rigid and difficult to manipulate, especially if they are programmed correctly. Other controls can be easier to implement, but are often based on assumptions that may not reflect the ever-changing business environment. Whether they are good or bad, all controls rely on people doing the right thing at the right time in the right way.

Understanding people’s motivators and their disposition to their day-to-day job responsibilities can give you some insights into the likelihood of control failures. However, in a setting that’s all about the numbers, it can be easy to miss this. On the other side of it, people are the first line of defense. People are not robots; they are unique and all bring a different skill set to the workplace. Relying solely on a control structure stifles innovation and will take away the opportunity to take full advantage of people’s capabilities. This is not an exact science, of course, but it can help identify people in the organization that are more or less likely to help the internal controls functions.

To be a truly effective auditor, you need to identify the people who have the company’s best interests at heart. These people may not like the hassle of an audit, but they are not afraid of it. They welcome another set of eyes to look at the current status of the business for objective opinions. Being asked multiple times for help bringing issues forward and on investigating why certain solutions don’t seem to work quite right, or being asked the question, “what’s industry best practice?,” these are best case scenarios for auditors, because it shows that the local team trusts you enough to point out existing problems with the trust that the audit will help improve the business. You want to think like a business partner, not the police.

The other side of the coin: people who actively avoid audits, offering irrational excuses and behaving erratically. I’m sure we’ve all experienced pushback on an audit – for example, document requests that are delayed for three weeks when the audit engagement is two weeks long and scheduled six weeks in advance; being told to only speak to certain employees in a department; or an audit finding that is met with hostility and defensiveness instead of open discussion for the best solution. These are all pretty clear signs that those individuals aren’t on board with the audit. It’s very important to have employees’ “buy-in” if you’re going to make lasting changes. Putting aside expectations and looking past people’s job titles to see them as individuals can provide valuable insight. This brings us back to Mr. Smith and his shoes.

Mr. Smith is a white-collar employee in the finance department, but he wears steel-toed shoes every day. So why did “I really like his shoes”? It comes down to a common thread I found on a previous audit concerning people’s PPE and their attitude toward the job. Employees in the procurement department who had eye and hearing protection on their desks were the ones going out to actively troubleshoot problems at the receiving dock.

Mr. Smith wearing steel-toed shoes to work every day signaled to me that he is prepared to review inventory levels in person to make sure things make sense on the books. A supply chain employee who performs due diligence on current suppliers to ensure compliance with laws and regulations is protecting the company as well as themselves. This attribute is an indicator that the team member cares about the internal controls in place, because they go out of their office to investigate problems as they occur in real time. Mr. Smith and employees like him are assets to the company, but the reasons why aren’t always recognized, because they don’t show up in the numbers.

I think being open to others and what they bring to the table is one of those things that doesn’t come with time and experience. Being willing to learn is a choice we make, and it’s one that gets harder the more personal knowledge and experience we have. In the end, being new and without expectations proved to be useful; there are no preconceived notions, and people’s uniqueness can be appreciated as a strength. Maybe “I like your shoes!” is not that strange of a comment when you want a finance employee who focuses on more operational processes. Take note of who you interact with; those observations can give some indication of what type of person they are.


Tags: New Voices/Early Career
Previous Post

CCI Serves Up the Best of the Best from 2019

Next Post

The Combination of Independent Monitors and C&E Programs

Mariette Cutler

Mariette Cutler

Mariette Cutler is the Managing Director of the Risk Navigation Group, a consulting firm focusing on risk management through effective board communication, agile compliance programs and risk-based auditing. Mariette’s experience in software solution implementations spanning multiple business processes brings unique insights on ethics, compliance and internal audit. Mariette has bachelor’s degrees in Chemistry, Economics and Business Management from Franciscan University of Steubenville, as well as a master’s in Engineering Management from Dartmouth College.

Related Posts

woman in red suit highlighted among many candidates in black and white

Many Roads Can Lead to Compliance

by Tosin Umukoro
May 4, 2020

Many organizations are beginning to think differently about who they are recruiting into the compliance structure. Tosin Umukoro, who came...

What I Wish I’d Known Before Joining Compliance

What I Wish I’d Known Before Joining Compliance

by Vicky Yu
January 30, 2020

For professionals looking forward to joining the compliance world, being prepared and knowing what you are stepping into is important....

job candidates awaiting inerview

An Unconventional Interview Question: “Do You Have an HR Department?”

by Milou Lammers
December 5, 2019

When compliance specialist Milou Lammers was interviewing for compliance roles, she consistently asked potential employers about their HR departments. Here,...

Working mom with baby on hip

Confessions of a Young Mom and Compliance Professional

by Margarita Derelanko
November 5, 2019

Welcome to a new feature at CCI:  We're calling it "New Voices," and it's a way to showcase the fresh...

Next Post
illustration of hands connecting two pieces of an arrow puzzle pointing upward

The Combination of Independent Monitors and C&E Programs

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT