Internal audit risk management in metropolitan municipalities

Internal audit functions (IAFs) of organisations are regarded as crucial components of the combined assurance model, alongside the audit committee, management and external auditors. The combined assurance model aims at having integrated and aligned assurance in organisations with the overall aim of maximising risk and governance oversight and control efficiencies. In this regard, internal audit plays a crucial role, insofar as it consists of experts in risk, governance and control consultancy who provide assurance to senior management and the audit committee. Audit committees are dependent on internal audit for information and their effectiveness revolves around a strong and well-resourced internal audit function which is able to aid audit committees to meet their oversight responsibilities. There is thus a growing demand for managing risk through the process of risk management and internal audit is in a perfect position to assist with the improvement of such processes. If internal auditors wish to continue being an important aspect of the combined assurance model, they need to address the critical area, amongst others, of risk management as part of their work. If not, it follows that the board, audit committees and other levels of management will remain uninformed on the status of these matters which, in turn, will negatively impact the ability of these stakeholders to discharge their responsibilities. This study therefore focuses on analysing the functioning of IAFs, with specific reference to their risk management mandate. The study followed a mixed method approach to describe internal audits risk management functioning in the big eight metropolitan municipalities in South Africa. The results show that internal audit provide a broad scope of risk management work which assist senior management in the discharge of their responsibilities. However, in the public eye, internal audits risk management functioning is scant.

Download Full-text

Drivers of stakeholders’ view of internal audit effectiveness

Managerial Auditing Journal ◽

10.1108/maj-05-2017-1558 ◽

2018 ◽

Vol 33 (1) ◽

pp. 90-114 ◽

Cited By ~ 12

Author(s):

Lourens Erasmus ◽

Philna Coetzee

Keyword(s):

Audit Committee ◽

Internal Audit ◽

Principal Component ◽

Senior Management ◽

Audit Committees ◽

Internal Auditing ◽

Content Type ◽

Key Stakeholders ◽

Audit Effectiveness ◽

Insight Into

Purpose The purpose of this study is to determine the differences in perception of the key stakeholders on the drivers of internal audit effectiveness, namely, senior management and the audit committee, in relation to identified measures. To be seen as an effective internal audit function, value needs to be added for both these stakeholders. It is thus important for internal auditing to obtain an understanding of what these stakeholders respectively perceive as the most prominent drivers of internal audit effectiveness. Design/methodology/approach Heads of internal audit functions (providing insight into the drivers), chairpersons of audit committees and senior management (providing insight into the measures) within the South African public sector responded to a survey. The data were subjected to an exploratory factor analysis and principal component analysis to reduce the set of items and to provide continuous scores for use in a multivariate multiple regression analyses. Findings Senior management and the audit committee differ in their level or order of prominence of the identified drivers that influence the identified measures of internal audit effectiveness. No statistical similarities in their level of views could be found. Originality/value To enhance the effectiveness of internal auditing, the internal audit functions should take cognisance of the difference in perceptions of its key stakeholders on the drivers of internal audit effectiveness, in relation to identified measures, to manage these relationships. No previous research could find that statistically compared views of senior management and the audit committee regarding the drivers of internal audit effectiveness.

Download Full-text

Contribution of internal auditing to risk management

International Journal of Public Sector Management ◽

10.1108/ijpsm-12-2015-0215 ◽

2016 ◽

Vol 29 (4) ◽

pp. 348-364 ◽

Cited By ~ 5

Author(s):

Philna Coetzee

Keyword(s):

Risk Management ◽

Public Sector ◽

South African ◽

Audit Committee ◽

Internal Audit ◽

Senior Management ◽

Minor Effect ◽

Internal Auditing ◽

The South ◽

Content Type

Purpose – There is a widening gap between the expectations of internal audit stakeholders and the value the function brings to the table, for example, in the management of the risks threatening an organisation. The purpose of this paper is to investigate the views of chief audit executives (CAEs), the chairs of audit committees and senior management on the contribution of the internal audit functions to risk management in the South African public sector. This contribution is considered in the context of existing risk management structures and the level of coordination between these structures and internal auditing. Design/methodology/approach – The views of heads of internal auditing, chairpersons of the audit committee and the Accounting Officer (similar to the CEO of private sector organisations) of national, provincial and local government organisations were obtained and statistically analysed. Findings – The results indicate that the CAEs have noticeably different views from the other two parties, and that the existence of risk management structures has a minor effect on how the contribution of internal auditing to risk management is perceived. Research limitations/implications – It was decided to not include the views of heads of risk management functions owing to the immaturity of risk management in this sector with in the South African public sector. Practical implications – The results of the study provide internal auditing with information on narrowing the possible gap between the perceptions of senior management and their own perceptions. Senior management could streamline the efforts of these two parties in mitigating the key risk of the organisation. The audit committee, as the independent overseer of internal auditing, will obtain information on whether internal auditing contributes to risk management, and if not, how to address these issues, taking into account the existence (or a lack thereof) of risk management structures. The legislator and regulator of public sector could be influenced to provide clearer guidance or rules in this regard in order to enhance the efficiency and effectiveness of risk management policies and practices. Originality/value – Limited studies have been conducted regarding the coordination of internal auditing and risk management in mitigating the key risks; especially within the public sector domain whether the existence of risk management structures would affect this coordination. Also the views of senior management, as the key stakeholder of internal auditing, on this matter have not yet been solicited.

Download Full-text

Using triangulation to view internal audit’s governance functioning

Corporate Ownership and Control ◽

10.22495/cocv13i4c2p2 ◽

2016 ◽

Vol 13 (4) ◽

pp. 287-296

Author(s):

Christo Ackermann

Keyword(s):

South Africa ◽

Risk Management ◽

Financial Reporting ◽

Internal Control ◽

Audit Committee ◽

Internal Audit ◽

Audit Committees ◽

Wide Audience ◽

External Auditors ◽

Reporting Practices

Internal audit departments of organisations are regarded as an integral component of the combined assurance model alongside the audit committee, management and the external auditors. The primary users of the work of internal audit are the audit committee, senior management, other levels of management and to some extent, the external auditors. This wide audience served by internal audit reinforces the importance of IAFs’ work, which deals with important aspects facing the entity. Internal audit is therefore able to reduce the lack of information availability for the audit committee on matters concerning risk management, internal control and governance. However, a study conducted on audit committee effectiveness, it was found that 40% of audit committees in national government departments in South Africa are not fully effective and are failing to contribute towards improving internal control, risk management, governance and financial reporting practices. Audit committees’ effectiveness in contributing to risk management, internal control and governance was measured at 63%, 76% and 62% respectively, in a comprehensive study on audit committees in the South African public sector. This indicates that their oversight in these areas, especially risk management and governance, is not yet effective. These findings are concerning given that audit committees have a legal mandate to assist government departments in these areas. Internal audit functions are key in assisting audit committees in their governance oversight responsibility. The present study reports on the extent to which internal audit in the eight metropolitan municipalities in South Africa assists audit committees in their governance oversight responsibility, focusing on the scope of work of internal audit with reference to its governance mandate. A data transformation triangulation design was followed to describe internal audit’s functioning

Download Full-text

The impact of audit committee characteristics on internal audit professionalization: empirical evidence from Greece

Accounting Research Journal ◽

10.1108/arj-05-2020-0091 ◽

2021 ◽

Vol ahead-of-print (ahead-of-print) ◽

Author(s):

Christina Vadasi ◽

Michalis Bekiaris ◽

Andreas G. Koutoupis

Keyword(s):

Empirical Evidence ◽

Audit Committee ◽

Audit Quality ◽

Research Question ◽

Internal Audit ◽

Audit Committees ◽

Annual Reports ◽

Substantial Impact ◽

Content Type ◽

The Impact

Purpose This paper aims to provide empirical evidence of the association between audit committee characteristics and internal audit quality through internal audit professionalization. Design/methodology/approach The investigation of the research question was based on 45 usable responses that were received from a survey of chief audit executives from firms listed on the Athens Stock Exchange and combined with publicly available information from annual reports. Findings The results indicate that audit committee characteristics (independence, diligence through frequent meetings and interaction with internal audit through valuation) influence internal audit professionalization. In addition, they demonstrate that internal audit professionalization is also influenced by CEO duality and firm’s external auditor. Practical implications The findings of this study have implications for audit committees wishing to improve their overall effectiveness, by identifying areas with substantial impact on internal audit quality. Moreover, regulators of corporate governance bodies can also benefit from the results to strengthen audit committee’s efficiency regarding internal audit function oversight. Originality/value The results add to the literature on the discussion of internal audit professionalization and complement the work of other researchers in the field of audit committee’s impact on internal audit quality/effectiveness. This study attempts to fill a gap in the literature on the effect of audit committee characteristics on internal audit professionalization, an element introduced from an institutional theory perspective.

Download Full-text

Peran Internal Audit dalam Implementasi Enterprise Risk Management berupa Pelaporan Kerusakan Prosedur Risiko.

Akmenika: Jurnal Akuntansi dan Manajemen ◽

10.31316/akmenika.v14i2.1005 ◽

2020 ◽

Vol 14 (2) ◽

Author(s):

Indarti Indarti

Keyword(s):

Risk Management ◽

Internal Audit ◽

Enterprise Risk Management ◽

Audit Committees ◽

Corporate Risk Management ◽

Internal Auditor ◽

Internal Auditors ◽

Enterprise Risk ◽

Management Procedures ◽

Corporate Risk

Implementation of Enterprise Risk Management (ERM) by Internal Audit in an orga-nization or company becomes important because Internal Audit is expected to help the organization achieve its objectives by approaching systematic and discipline to evaluate and improve the effectiveness of risk management, control, and governance process. As for which affects it is the involvement of internal auditors, the relation-ship of the audit committee with the internal auditor, and ERM.This study aims to analyze the involvement of Internal Audit in Enterprise Risk mana-gement implementation. Internal auditors should assist both management and audit committees in risk management responsibilities and supervisory roles by examining, evaluating, reporting and recommending improvements to the adequacy and effec-tiveness of risk management processes. An interesting issue is whether internal auditors involved in corporate risk management have a link to the willingness of internal auditors to report to the audit committee.The population in this study are the internal auditors and audit committees who working in companies manufacturing and financial services. The reason for determining the company is because the researcher wants to know how internal audit is involved in ERM implementation on that entity. The sample used in this research is internal auditor at private company and at Banking in this case internal auditor at local bank.The analytical method used is multiple regression analysis with SPSS version 23 pro-gram. The analysis technique used in this research is descriptive statistical analysis, classical assumption test, F-statistic hypothesis test to test influence together with 5% confidence level and use t-statistics to test partial regression coefficients. This re-search was conducted to analyze how much influence the role of Internal Audit in applying Enterprise Risk Management in the implementation of Audit.The result of this research is that the high level of internal auditor involvement in Enterprise Risk management implementation has no significant and significant im-pact on reporting of damage to risk management procedures. This indicates that the role of internal auditors in corporate risk management does not affect the reporting of damage to corporate risk management procedures. While the characteristics of strong relationships between internal auditors and audit committees positively and significantly influence the reporting of risk procedures, this indicates that internal audits that have strong internal audit-audit committee relationships strongly support internal auditors who have high involvement to report damage Greater risk procedures.

Download Full-text

A versenyképesség és a társaságok belső ellenőrzése (Competitiveness and corporate internal audit)

Vezetéstudomány / Budapest Management Review ◽

10.14267/veztud.2012.11.02 ◽

2012 ◽

pp. 19-33

Author(s):

Mária Bordáné Rabóczki

Keyword(s):

Corporate Governance ◽

Audit Committee ◽

Supervisory Board ◽

Internal Audit ◽

Senior Management ◽

Internal Auditors ◽

Mutual Dependency ◽

Internal Audit Function ◽

External Auditor ◽

The Impact

A cikk a belső ellenőrzésnek a hatékony társaságirányításhoz való hozzájárulását és ennek a versenyképességre gyakorolt hatását vizsgálja. A belső ellenőrzés és a társaságirányítás kölcsönös összefüggésben áll egymással. Nemcsak a belső ellenőrzés hat a társaságirányításra, hanem a releváns társaságirányítási struktúrák, emberi kapcsolatok és magatartásformák jelentős hatást gyakorolnak a belső ellenőrzés színvonalára és hatékonyságára. A cikk ezért különös figyelmet szentel a belső ellenőröknek az igazgatósággal, az auditbizottsággal/felügyelőbizottsággal, a menedzsmenttel és a könyvvizsgálóval való kapcsolatainak vizsgálatára. Rávilágít a belső ellenőrzés legfőbb funkciójára, amely objektív bizonyosságot nyújt az igazgatóság és a felső vezetők számára a kockázatok azonosítására, kezelésére és elfogadható szintre történő csökkentésére szolgáló kontrollfolyamatok megfelelőségéről és hatékonyságáról. A bemutatott belső ellenőrzési modell azt a szemléletet közvetíti, hogy a belső ellenőrzés által nyújtott objektív bizonyosság megszerzése nemcsak a jogszabályoknak vagy az ajánlásoknak való megfelelés, hanem a társaságok versenyképessége szempontjából is kiemelkedő jelentőségű. _________ The purpose of this paper is to consider the contribution of internal audit to the sound corporate governance and the impact of that on the competitiveness of the companies. There is a mutual dependency between internal audit and corporate governance. Not only the internal audit has impact on the corporate governance but the relevant governance structures, relationships and behaviour influence the level and effectiveness of the internal audit. Therefore the present paper is highly concerned with the internal auditors` relationships with the board, audit committee/supervisory board, senior management and the external auditor. It highlights the internal audit function, that provides objective assurance to the board and senior management about the adequacy and effectiveness of the processes by which risks are identified, managed, controlled and mitigated to acceptable levels. The internal audit model demonstrated represents an approach, according to that getting objective assurance provided by internal audit is important not only to be in line with laws and recommendations but to facilitate the corporate competitiveness.

Download Full-text

Corporate Governance and Performance of Audit Committee and Internal Audit Functions in an Emerging Economy’s Public Sector

Indian Journal of Corporate Governance ◽

10.1177/0974686220923789 ◽

2020 ◽

Vol 13 (1) ◽

pp. 85-98

Author(s):

Shewangu Dzomira

Keyword(s):

Corporate Governance ◽

Public Sector ◽

Audit Committee ◽

Qualitative Content Analysis ◽

Internal Audit ◽

Audit Committees ◽

The Public ◽

Effective Performance ◽

And Performance ◽

Management Audit

This article seeks to examine corporate governance and the performance of audit committee and internal audit functions in an emerging economy’s public sector. These two functions form a part of imperative corporate governance aspects, and their effective performance ensures better service delivery by public sector agencies. The study is premised on stakeholder theory, which has turned out to be the central point of public sector discourses. The study is based on qualitative content analysis, which aspires to present information about corporate governance and effectiveness of audit committees and internal audit units in South Africa’s public sector. The findings suggest that there is good corporate governance in terms of the existence of audit committees and internal audit functions in the public sector. However, the results suggest that the audit committees and internal audit units in South Africa’s public sector are not effective. Absence of advice, implementation of recommendations and inadequacy of resources have undermined the performance of audit committees and internal audit units in South Africa’s public sector. The leadership and other assurance bringers ought to consider the findings elevated by the audit committees and internal audit and execute their commendation. Their findings should be urbanised into action plans that are implemented by management. Audit committees must improve their oversight on internal audit functions so that both units would effectively perform. The subsistence of successful audit committee and internal audit components in the public sector certifies proficient and effectual exploitation of resources for the gain of all stakeholders.

Download Full-text

Does Internal Audit Function Quality Deter Management Misconduct?

The Accounting Review ◽

10.2308/accr-50871 ◽

2014 ◽

Vol 90 (2) ◽

pp. 495-527 ◽

Cited By ~ 69

Author(s):

Matthew S. Ege

Keyword(s):

Internal Control ◽

Audit Committee ◽

Internal Audit ◽

Audit Committees ◽

Regulatory Requirements ◽

Difference In Differences ◽

External Auditors ◽

Internal Audit Function ◽

Auditor Quality ◽

External Auditor

ABSTRACT Standard-setters believe high-quality internal audit functions (IAFs) serve as a key resource to audit committees for monitoring senior management. However, regulators do not enforce IAF quality or require disclosures relating to IAF quality, which is in stark contrast to regulatory requirements placed on boards, audit committees, and external auditors. Using proprietary data, I find that a composite measure of IAF quality is negatively associated with the likelihood of management misconduct even after controlling for board, audit committee, and external auditor quality. This result is robust to a variety of other specifications, including controlling for internal control quality and separate estimation during the pre- and post-SOX time periods. A difference-in-differences analysis indicates that misconduct firms have low IAF quality and competence during misconduct years and improve IAF quality and competence in the post-misconduct years. These findings suggest that regulators, audit committees, and other stakeholders should consider ways to improve IAF quality.

Download Full-text

The Composition of Nonprofit Audit Committees

Accounting Horizons ◽

10.2308/acch.2006.20.1.75 ◽

2006 ◽

Vol 20 (1) ◽

pp. 75-90 ◽

Cited By ~ 44

Author(s):

Thomas E. Vermeer ◽

K. Raghunandan ◽

Dana A. Forgione

Keyword(s):

Nonprofit Organizations ◽

Audit Committee ◽

Nonprofit Sector ◽

Internal Audit ◽

Audit Committees ◽

Chief Financial Officers ◽

Independent Directors ◽

Government Grants ◽

Sarbanes Oxley ◽

Financial Expert

Audit committee composition has attracted significant attention from legislators and regulators in recent years. Although most of the focus has been on corporate audit committees, recent legislative efforts underscore the importance of governance in the nonprofit sector. Using data from a survey of 118 chief financial officers of nonprofit organizations as well as financial data from the GuideStar database, we examine the composition of nonprofit audit committees and factors associated with their composition. The data show that many nonprofits have not adopted Sarbanes-Oxley reforms, since we find that 36 percent of nonprofits have audit committees that are not completely independent. Organizations that are larger, receive government grants, and use a Big 4 auditor are more likely to have audit committees with solely independent directors. Surprisingly, universities and hospitals are less likely to have solely independent directors on the audit committee. Eighty-eight percent of nonprofits have at least one financial expert on the audit committee, and organizations that receive government grants and have an internal audit function are more likely to have a financial expert on the committee. Overall, our findings support the view that nonprofit audit committee composition varies in response to the demands related to the need for resources, the presence of other monitoring mechanisms, and the type of nonprofit.

Download Full-text

Fraudulent Financial Reporting: Consideration of Industry Traits and Corporate Governance Mechanisms

Accounting Horizons ◽

10.2308/acch.2000.14.4.441 ◽

2000 ◽

Vol 14 (4) ◽

pp. 441-454 ◽

Cited By ~ 505

Author(s):

Mark S. Beasley ◽

Joseph V. Carcello ◽

Dana R. Hermanson ◽

Paul D. Lapides

Keyword(s):

Health Care ◽

Corporate Governance ◽

Financial Reporting ◽

Financial Services ◽

Audit Committee ◽

Internal Audit ◽

Financial Statement ◽

Audit Committees ◽

Financial Statement Fraud ◽

Governance Mechanisms

This paper provides insight into financial statement fraud instances investigated during the late 1980s through the 1990s within three volatile industries—technology, health care, and financial services—and highlights important corporate governance differences between fraud companies and no-fraud benchmarks on an industry-by-industry basis. The fraud techniques used vary substantially across industries, with revenue frauds most common in technology companies and asset frauds and misappropriations most common in financial-services firms. For each of these three industries, the sample fraud companies have very weak governance mechanisms relative to no-fraud industry benchmarks. Consistent with prior research, the fraud companies in the technology and financial-services industries have fewer audit committees, while fraud companies in all three industries have less independent audit committees and less independent boards. In addition, this study provides initial evidence that the fraud companies in the technology and health-care industries have fewer audit committee meetings, and fraud companies in all three industries have less internal audit support. This study of more current financial statement fraud instances contributes by updating our understanding of fraud techniques and risk factors in three key industries. Auditors should consider the industry context as they evaluate the risk of financial fraud, and they should compare clients' governance mechanisms to relevant no-fraud industry benchmarks.

Download Full-text