Contribution of internal auditing to risk management

2016 ◽  
Vol 29 (4) ◽  
pp. 348-364 ◽  
Author(s):  
Philna Coetzee
Keyword(s):  
Risk Management ◽  
Public Sector ◽  
South African ◽  
Audit Committee ◽  
Internal Audit ◽  
Senior Management ◽  
Minor Effect ◽  
Internal Auditing ◽  
The South ◽  
Content Type

Purpose – There is a widening gap between the expectations of internal audit stakeholders and the value the function brings to the table, for example, in the management of the risks threatening an organisation. The purpose of this paper is to investigate the views of chief audit executives (CAEs), the chairs of audit committees and senior management on the contribution of the internal audit functions to risk management in the South African public sector. This contribution is considered in the context of existing risk management structures and the level of coordination between these structures and internal auditing. Design/methodology/approach – The views of heads of internal auditing, chairpersons of the audit committee and the Accounting Officer (similar to the CEO of private sector organisations) of national, provincial and local government organisations were obtained and statistically analysed. Findings – The results indicate that the CAEs have noticeably different views from the other two parties, and that the existence of risk management structures has a minor effect on how the contribution of internal auditing to risk management is perceived. Research limitations/implications – It was decided to not include the views of heads of risk management functions owing to the immaturity of risk management in this sector with in the South African public sector. Practical implications – The results of the study provide internal auditing with information on narrowing the possible gap between the perceptions of senior management and their own perceptions. Senior management could streamline the efforts of these two parties in mitigating the key risk of the organisation. The audit committee, as the independent overseer of internal auditing, will obtain information on whether internal auditing contributes to risk management, and if not, how to address these issues, taking into account the existence (or a lack thereof) of risk management structures. The legislator and regulator of public sector could be influenced to provide clearer guidance or rules in this regard in order to enhance the efficiency and effectiveness of risk management policies and practices. Originality/value – Limited studies have been conducted regarding the coordination of internal auditing and risk management in mitigating the key risks; especially within the public sector domain whether the existence of risk management structures would affect this coordination. Also the views of senior management, as the key stakeholder of internal auditing, on this matter have not yet been solicited.

Drivers of stakeholders’ view of internal audit effectiveness

2018 ◽  
Vol 33 (1) ◽  
pp. 90-114 ◽  
Author(s):  
Lourens Erasmus ◽  
Philna Coetzee
Keyword(s):  
Audit Committee ◽  
Internal Audit ◽  
Principal Component ◽  
Senior Management ◽  
Audit Committees ◽  
Internal Auditing ◽  
Content Type ◽  
Key Stakeholders ◽  
Audit Effectiveness ◽  
Insight Into

Purpose The purpose of this study is to determine the differences in perception of the key stakeholders on the drivers of internal audit effectiveness, namely, senior management and the audit committee, in relation to identified measures. To be seen as an effective internal audit function, value needs to be added for both these stakeholders. It is thus important for internal auditing to obtain an understanding of what these stakeholders respectively perceive as the most prominent drivers of internal audit effectiveness. Design/methodology/approach Heads of internal audit functions (providing insight into the drivers), chairpersons of audit committees and senior management (providing insight into the measures) within the South African public sector responded to a survey. The data were subjected to an exploratory factor analysis and principal component analysis to reduce the set of items and to provide continuous scores for use in a multivariate multiple regression analyses. Findings Senior management and the audit committee differ in their level or order of prominence of the identified drivers that influence the identified measures of internal audit effectiveness. No statistical similarities in their level of views could be found. Originality/value To enhance the effectiveness of internal auditing, the internal audit functions should take cognisance of the difference in perceptions of its key stakeholders on the drivers of internal audit effectiveness, in relation to identified measures, to manage these relationships. No previous research could find that statistically compared views of senior management and the audit committee regarding the drivers of internal audit effectiveness.

Risk management in IT projects – a case of the South African public sector

2016 ◽  
Vol 9 (2) ◽  
pp. 389-413 ◽  
Author(s):  
Blessing Javani ◽  
Pantaleo Mutajwaa Daniel Rwelamila
Keyword(s):  
Risk Management ◽  
Public Sector ◽  
Knowledge Sharing ◽  
South African ◽  
The South ◽  
It Projects ◽  
Content Type ◽  
It Project ◽  
The Status ◽  
Practical Implications

Purpose – The purpose of this paper is to study the recognition, application and understanding (status) of risk management in information technology (IT) projects in the South African public sector and thus contribute to the research gap. Design/methodology/approach – A quantitative approach in the form of a survey design was adopted, with data being collected through a questionnaire. The results from the study are compared to the theory and practice of risk management before drawing conclusions on the status of risk management in IT projects. Findings – The findings provide significant statistical support for the conclusion that risk management is being applied in current IT projects and that it is understood by the respective project clients. Research limitations/implications – Though risk management has been studied by several authors, very little is known about its status in the South African public sector. This study sheds light on its application in IT projects and its understanding by IT project clients. Practical implications – The study findings encourage project executives to develop knowledge bases for risk management in IT projects, as well as the corresponding tools. This will ultimately assist in knowledge sharing, which increases chances of IT project success. Importantly, the study also highlights that the relationship between project clients and project teams can be accelerated through knowledge sharing and continuous project communication. Originality/value – The research addresses one of the questions held by many scholars on the status of risk management in IT projects. It advances the recognition of risk management as a knowledge base and the practical implications thereof.

Internal audit’s evolving performance role: lessons from the South African public sector

2021 ◽  
Vol ahead-of-print (ahead-of-print) ◽  
Author(s):  
Asogan Moodley ◽  
Barry Ackers ◽  
Elza Odendaal
Keyword(s):  
Public Sector ◽  
Service Delivery ◽  
Performance Management ◽  
South African ◽  
Primary Role ◽  
Internal Auditing ◽  
The South ◽  
Content Type ◽  
Public Sector Performance ◽  
Sector Performance

Purpose The formal adoption of internal auditing within the South African public sector was made compulsory by the Public Finance Management Act, No. 1 of 1999. Despite internal auditing’s primary role of adding value and assisting organisations to accomplish pre-defined strategic objectives, the increasing frequency of service delivery protests in South Africa, suggests that mandatory internal auditing may not have contributed to improving public sector performance and enhancing service delivery, as envisaged. This paper aims to identify the factors preventing internal audits from effectively contributing to improved public sector performance and service delivery. Design/methodology/approach The study adopted a sequential mixed-methods research approach. Firstly, a survey instrument was used to collect empirical data from survey respondents at South African national government departments. Secondly, semi-structured interviews and focus group discussions were held with a purposively selected sample of participants to explore the observations from the first phase. The observations from the first two phases were validated through an analysis of pertinent documents and records. Findings Despite all departments adopting internal auditing, management’s expectations of internal auditing and the services provided by the internal audit function diverged. The results suggest that the emergence of a compliance approach to organisational governance together with poor performance management skills has impaired internal auditing’s ability to effectively contribute to strategic and performance management. Research limitations/implications Despite its South African orientation, as internal auditing is a global association and given that service delivery protests continue to occur in several countries around the world, increases the study’s international relevance. Moreover, the mandate of internal auditing requires it to add value to an organisation irrespective of its geographical location. Originality/value The study contributes to the existing body of knowledge on internal auditing, particularly its adoption and implementation in the South African public sector. In addition to identifying the factors inhibiting effective internal auditing, the study advances a suggested framework for the future of internal auditing.

New perspective on the black box of internal auditing and organisational change

2016 ◽  
Vol 31 (8/9) ◽  
pp. 804-820 ◽  
Author(s):  
Aviv Kidron ◽  
Yuval Ofek ◽  
Herztel Cohen
Keyword(s):  
Public Sector ◽  
Quantitative Methods ◽  
Internal Audit ◽  
Organisational Change ◽  
Internal Auditing ◽  
Content Type ◽  
Internal Auditors ◽  
The Public ◽  
Innovative Model ◽  
Audit Information

Purpose The shift from the traditional audit towards performance audit implies that internal auditors in the public sector function as change agents who underpin the fundamental change process. This paper aims to propose a model that identifies the determinants of organisational change in the public sector that result from internal auditing and the way internal auditors facilitate it. Design/methodology/approach The conceptual discussion of this paper is based on a review of relevant literature, both practical and academic. Findings This paper develops an innovative model that describes the factors leading to auditees’ change readiness after undergoing internal audit processes. The independent variable is audit information quality and the dependent variable, organisational change. Auditees’ perceptions is the mediator variable, and accessibility to audit information is the moderator variable. Practical implications The proposed model suggests the advantages that can be gained by audit-related services, which in turn will add value to the organisation. The relationships between the variables inform practitioners on how to support effective audits as a means of increasing performance and influencing organisational change. Originality/value As the paper offers an innovative model, it may open up new research areas in internal auditing that can be studied by using both qualitative and quantitative methods.

Risk management factors contributing to transgressions in the procurement practices in South African SOEs

2021 ◽  
Vol ahead-of-print (ahead-of-print) ◽  
Author(s):  
Lindani Myeza ◽  
Naledi Nkhi ◽  
Warren Maroun
Keyword(s):  
South Africa ◽  
Risk Management ◽  
Public Sector ◽  
South African ◽  
Public Procurement ◽  
African State ◽  
Political Influence ◽  
Structured Interviews ◽  
Content Type ◽  
Executive Level

PurposeThe study aims to deepen the understanding of why risk management principles are circumvented, thereby contributing to transgressions in public procurement for South African state-owned enterprises (SOEs). A deeper understanding of why risk management principles are circumvented is especially important in South Africa, given the high social, economic and environmental risks to which national and major SOEs are exposed in the procurement process.Design/methodology/approachThe study uses a qualitative design, based on detailed semi-structured interviews with 19 participants comprising management advisors, forensic investigators and auditors to explore why risk management principles are circumvented by South Africa SOEs.FindingsThe results of the study indicate that the tone that is set at political and executive level plays an important role in determining compliance with risk management principles by lower-level staff. Intense levels of political influence at SOEs are the main reason behind risk management systems being undermined.Originality/valueThe current study is one of the first explorations of why transgressions in public procurement continue to be evident despite risk management reforms being adopted by South Africa public sector. The research responds to the call for more studies on why reforms in South Africa public sector are not reducing transgression in public procurement. The study provides primary evidence on the importance of political and executive leadership in influencing the effectiveness of risk management reforms in the public sector.

scholarly journals Internal audit risk management in metropolitan municipalities

2016 ◽  
Vol 6 (3) ◽  
pp. 36-44 ◽  
Author(s):  
Christo Ackermann ◽  
Ben Marx
Keyword(s):  
Risk Management ◽  
Audit Committee ◽  
Internal Audit ◽  
Senior Management ◽  
Audit Committees ◽  
Risk Governance ◽  
Specific Reference ◽  
Managing Risk ◽  
And Control ◽  
Metropolitan Municipalities

Internal audit functions (IAFs) of organisations are regarded as crucial components of the combined assurance model, alongside the audit committee, management and external auditors. The combined assurance model aims at having integrated and aligned assurance in organisations with the overall aim of maximising risk and governance oversight and control efficiencies. In this regard, internal audit plays a crucial role, insofar as it consists of experts in risk, governance and control consultancy who provide assurance to senior management and the audit committee. Audit committees are dependent on internal audit for information and their effectiveness revolves around a strong and well-resourced internal audit function which is able to aid audit committees to meet their oversight responsibilities. There is thus a growing demand for managing risk through the process of risk management and internal audit is in a perfect position to assist with the improvement of such processes. If internal auditors wish to continue being an important aspect of the combined assurance model, they need to address the critical area, amongst others, of risk management as part of their work. If not, it follows that the board, audit committees and other levels of management will remain uninformed on the status of these matters which, in turn, will negatively impact the ability of these stakeholders to discharge their responsibilities. This study therefore focuses on analysing the functioning of IAFs, with specific reference to their risk management mandate. The study followed a mixed method approach to describe internal audits risk management functioning in the big eight metropolitan municipalities in South Africa. The results show that internal audit provide a broad scope of risk management work which assist senior management in the discharge of their responsibilities. However, in the public eye, internal audits risk management functioning is scant.

An examination of factors associated with investment in internal auditing technology

2020 ◽  
Vol 35 (7) ◽  
pp. 955-978
Author(s):  
Sarah Garven ◽  
Audrey Scarlata
Keyword(s):  
Audit Committee ◽  
Investment Decision ◽  
Internal Audit ◽  
Internal Auditing ◽  
Private Company ◽  
Internal Auditor ◽  
Content Type ◽  
Technology Investment ◽  
Audit Technology ◽  
Tools And Techniques

Purpose The purpose of this study is to explore whether various organizational, internal audit function and audit committee factors are associated with internal audit investment in audit technology. Design/methodology/approach The responses from 213 public and private company chief audit executives (CAEs) from seven Anglo-culture countries are analyzed from the Common Body of Knowledge (CBOK) 2015 Global Internal Auditor Practitioner Survey on specific questions addressing internal audit use of audit technology. Findings The results indicate that several of the studied factors are associated with investment in internal auditing technology, and taken together, suggest that CAE power may be the key driver in the technology investment decision. Furthermore, the data show that internal audit functions are not fully embracing the use of information technology (IT) tools and techniques, with average usage of ten of the eleven tools and techniques examined below moderate levels. Practical implications The results have implications for CAEs, boards and management when making resource allocation decisions. For example, the findings can be used in benchmarking an appropriate investment in internal audit technology, as well as identifying specific internal audit technology areas where further investment may be warranted. Additionally, insights provided by this study can facilitate a discussion about the value internal audit can add by increasing its investment in audit technology. Originality/value This study contributes to prior literature on internal auditing by filling a gap related to internal audit investment in audit technology, examining countries that are similar in culture rather than limiting the study to one country, and using several factors that have not been previously examined in prior internal audit investment-related literature. Additionally, the findings pointing to the important role CAE power appears to play in the internal audit technology investment decision provide several interesting new research avenues.

Internal auditor characteristics, internal audit effectiveness, and moderating effect of senior management

2016 ◽  
Vol 32 (2) ◽  
pp. 160-176 ◽  
Author(s):  
Khaled Ali Endaya ◽  
Mustafa Mohd Hanefah
Keyword(s):  
Multiple Regression ◽  
Internal Audit ◽  
Moderating Effect ◽  
Senior Management ◽  
Management Support ◽  
Internal Auditing ◽  
Internal Auditor ◽  
Content Type ◽  
The Impact ◽  
Audit Effectiveness

Purpose The purpose of this paper is to investigate the direct relationship between internal auditor’s characteristics[1] and internal audit effectiveness[2], and the moderating effect of senior management[3] support. Design/methodology/approach Standard multiple regression and moderated multiple regression are applied, and the data were collected from 114 members of Libyan Association of Accountants and Auditors[4] by using personally administered questionnaire. Findings The findings reveal that internal auditor’s characteristics have a significant impact on internal audit effectiveness, and senior management support has a moderating effect. Practical implications The findings would encourage Libyan organizations to concentrate on the issue of internal audit effectiveness, and will strengthen the capacity of internal auditing in public organizations. Originality/value This paper contributes to the literature of both internal audit and management studies and represents the first effort to examine the impact of internal auditor’s characteristics on internal audit effectiveness with senior management support as a moderating variable.

Sign in / Sign up

Export Citation Format

Share Document