Internal auditors must know many concepts, techniques, control frameworks, and remain knowledgeable despite the many changes occurring in the marketplace and their profession. This easy to use reference makes this process easier and ensures auditors can obtain needed information quickly and accurately. This book consists of 100 topics, concepts, tips, tools and techniques that relate to how internal auditors interact with internal constitutencies and addresses a variety of technical and non-technical subjects. Non-auditors have an easy-to-use guide that increases their understanding of what internal auditors do and how, making it easier for them to partner with them more effectively.
Author(s): Murdock, Hernan
Series: Internal audit and IT audit
Publisher: CRC Press, Auerbach book
Year: 2019
Language: English
Pages: 472
Tags: Internal Auditing, IT Audit
Cover......Page 1
Half Title......Page 2
Title Page......Page 4
Copyright Page......Page 5
Contents......Page 6
Author......Page 12
Introduction......Page 14
1 Anonymous Polling/Voting......Page 18
2 Association of Certified Fraud Examiners (ACFE)......Page 20
3 Audit: Compliance......Page 24
4 Audit: Department......Page 32
5 Audit: Environmental......Page 36
6 Audit: Financial......Page 42
7 Audit: Integrated......Page 52
8 Audit: Operational......Page 56
9 Audit Committee......Page 60
10 Audit Plan......Page 62
11 Audit Program......Page 64
12 Audit Universe......Page 66
13 Balanced Scorecard......Page 68
14 Benchmarking......Page 72
15 Benford’s Law......Page 76
16 Board of Directors......Page 80
17 Cause and Effect Diagram......Page 86
18 CCCER/5C......Page 90
19 Certifications......Page 92
20 Charter......Page 98
21 Check Sheet......Page 102
22 COBIT......Page 104
23 Code of Ethics......Page 110
24 Communications Matrix......Page 114
25 Computer-Assisted Audit Tools and Techniques (CAATTs)......Page 118
26 Conflict of Interest......Page 124
27 Consulting......Page 128
28 Continuous Monitoring/Continuous Auditing (CM/CA)......Page 134
29 Controls......Page 138
30 Control Charts......Page 148
31 Control Self-Assessment (CSA)......Page 154
32 Corporate Governance......Page 158
33 COSO IC-IF......Page 164
34 Creativity......Page 168
35 Critical Thinking......Page 172
36 Corporate Culture......Page 180
37 Data Analytics......Page 188
38 Deficiencies—Design and Operating......Page 196
39 E’s......Page 200
40 Eight Areas of Waste......Page 204
41 Electronic Workpapers......Page 208
42 Emotional Intelligence......Page 214
43 Engagement Memo and Letter......Page 218
44 Enterprise Risk Assessment and Management (ERM)......Page 220
45 Ethics......Page 226
46 Evidence......Page 230
47 Fieldwork......Page 234
48 Findings......Page 240
49 Five Whys......Page 244
50 Flowcharts......Page 248
51 Focus Groups......Page 254
52 Follow-Up Audits......Page 256
53 Force Field Analysis......Page 260
54 Foreign Corrupt Practices Act (FCPA)......Page 264
55 Fraud......Page 268
56 Fraud Red Flags......Page 272
57 Fraud Triangle and Hexagon......Page 278
58 GANTT Charts......Page 286
59 Governance, Risk Management, and Compliance (GRC)......Page 288
60 GTAG......Page 292
61 Histograms......Page 298
62 IT Application and General Computer Controls (GCC)......Page 302
63 Information Systems Audit and Controls Association (ISACA)......Page 312
64 Institute of Internal Auditors (IIA)......Page 314
65 Interviewing......Page 318
66 Key Performance Indicators (KPI) and Key Risk Indicators (KRI)......Page 322
67 Lean Six Sigma......Page 326
68 Mentoring/Coaching......Page 330
69 Objectives......Page 334
70 Pareto Chart......Page 336
71 Persuasion......Page 338
72 Planning......Page 342
73 Poka-yoke......Page 344
74 Policies and Procedures......Page 348
75 Professional Skepticism......Page 352
76 Project Management......Page 356
77 Quality Assurance and Improvement Programs (QAIP)......Page 360
78 Questionnaires/Surveys......Page 366
79 RACI Chart......Page 370
80 Recommendations......Page 374
81 Reporting......Page 378
82 Risk......Page 382
83 Risk-Control Matrix......Page 388
84 Risk-Based Auditing......Page 394
85 Root-Cause Analysis......Page 396
86 Rotation Programs......Page 400
87 Sampling......Page 404
88 Sarbanes–Oxley Act......Page 408
89 Scatter Diagram......Page 416
90 SIPOC Diagrams......Page 420
91 Soft Skills......Page 424
92 Standards......Page 430
93 Testing......Page 434
94 Three Lines of Defense......Page 440
95 Time Management......Page 444
96 Tone at the Top......Page 448
97 Training and Development......Page 452
98 Trusted Advisors......Page 456
99 Whistleblowing Programs......Page 460
100 Workpapers......Page 466
Conclusion......Page 472
Index......Page 476