Exception Management Explained: Mastering the ‘Last Mile’ of Compliance and Risk Monitoring resource Featured Articles Member contribution
Hours, days or weeks? Those are the options that confronted senior internal auditors, compliance executives and their operational colleagues as they evaluated how long it should take for business process owners to respond to potential internal controls violations.
20 Questions Directors Should Ask About Internal Audit (2d Edition, 2007) resource Books / Publications Member contributionOCEG Reviewed
A briefing, by the Canadian Institute of Chartered Accountants, to assist in developing and implementing an internal audit function.
Read more
2007 State of the Internal Audit Profession Study: Pressures Build for Continual Focus on Risk (PWC) resource White Papers Member contributionOCEG Reviewed
PriceWaterhouseCoopers - "Overview: To enhance organizational risk management, internal audit must embrace ongoing risk monitoring and frequent enterprise-wide risk assessments."
Read more
AICPA, Audit and Attest Standards resource Guides Member contributionOCEG Reviewed
SSAEs as codified in the AICPA Professional Standards, with related interpretations.
The Audit and Attest Standards Team and Committees provide technical support for the Auditing Standards Board (ASB), the senior technical body of the AICPA designated to issue pronouncements on auditing and attestation matters, and the Accounting and Review Services Committee, (
Read more
AICPA, Communicating Internal Control Related Matters Identified in an Audit, SAS 112 (2008) resource Guides Member contributionOCEG Reviewed
Has been superseded by SAS 115. See the Executive Summary here (codification is pending.) SAS 115 is effective for audits of financial statements for periods ending on or after December 15, 2009.
Source: SAS No. 112., July 16, 2008 (Supersedes SAS No. 60.)
Read more
AICPA, Statement on Auditing Standards No. 115, Communicating Internal Control Related Matters Identified in an Audit, Executive Summary (2008) resource Guides OCEG Reviewed
The Auditing Standards Board has issued Statement on Auditing Standards (SAS) No. 115, Communicating Internal Control Related Matters Identified in an Audit. SAS No. 115 supersedes SAS No. 112 of the same title and was issued to eliminate differences within the AICPA’s Audit and Attest Standards resulting from the issuance of Statement on Standards for Attestation Engagements (SSAE) No. 15, An Examination of an Entity’s Internal Control Over Financial Reporting That Is Integrated With an Audit of Its Financial Statements. SSAE No.
Read more
Aligning People, Processes, and Technology for Effective Risk Management (IIA, 2008) resource Articles OCEG Reviewed
Learning the basic components of a continuous risk management program can help auditors provide recommendations that enhance IT security risk management practices.
Author: Paul Reymann, CEO, ReymannGroup Inc.
An opportunity for transformation: How internal audit helps contribute to shareholder value (2008) resource White Papers OCEG Reviewed
Rapidly accelerating pressures fuel the need for internal audit to transform its thinking from financial controls-centric to shareholder value-centricand to drive efficiency into traditional internal audit processes.
This PwC whitepaper examines key topics for internal audit transformation:
Read more
- It’s time to question the internal audit status quo
- The shareholder value challenge
- How to unleash the power of internal audit
