Applicable Guidance Flashcards
IIA Mission
- to enhance and protect organizational value by providing risk-based and objective assurance, advice and insight.
- facilitating the achievement of this mission is the IPPF
IPPF Contains 2 guidance; what are they
- Mandatory guidance
2. recommended guidance
Mandatory Guidance; 4 Elements
- Core principles (10)
- Definition
- Standards
- Code of Ethics
Mandatory Guidance; Core Principles
- demonstrate integrity
- demonstrate competence and due professional care
- is objective and free from undue influence (independent)
- aligns with the strategies, objectives, and risk of the organization
- is appropriately positioned and adequately resourced
- demonstrates quality and continuous improvement
- communicates effectively
- provides risk-based assurance
- is insightful, proactive, and future-focused
- promotes organizational improvement
Definition of Internal Auditing
Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization’s operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approached to evaluate and improve the effectiveness of risk management, control, and governance processes.
Code of Ethics
- Integrity, refusal to compromise professional values for personal gain. performance of professional duties in accordance with relevant laws.
- Objectivity, commitment to providing stakeholders with unbiased information. commitment to independence from conflicts of economic or professional interest.
- Confidentiality, refusal to use organization information for personal gain.
- Competency, commitment to acquiring and maintaining an appropriate level of knowledge and skills.
Purpose of the Standards (International Standards for the Professional Practice of Internal Auditing)
- guide adherence with the mandatory elements of the IPPF
- provide a framework for performing and promoting a broad range of value-added internal auditing services
- Establish the basis for the evaluation of internal audit performance
- foster improved organizational processes and operations
Standards; 4 types of Standards
- Attribute Standards, govern the responsibilities, attitudes, and actions of the organization’s internal audit activity and the people who serve as internal auditors.
- Performance Standards, govern the nature of internal auditing and provide quality criteria for evaluating the internal audit function’s performance.
- Interpretations are provided by the IIA to clarify terms and concepts referred to in Attribute or Performance standards.
- Implementation standards, expand upon the individual attribute or performance standards by providing requirements applicable to assurance (.A) or consulting (.C).
Core Principles + Definition = Code of Ethics + Standards
Conformance of the Code of Ethics and Standards demonstrates conformance with all mandatory elements of the IPPF
Recommended Guidance; 2 elements
- Implementation Guidance
2. Supplemental Guidance
Assurance Services
- nature and scope determined by the internal auditor
- 3 parties involved: process owner, internal auditor, the user of the assessment
- assurance services include financial, performance, compliance, system security, and due diligence engagements
Consulting services
- nature and scope subject to agreement with the engagement client
- two parties: internal auditor, engagement client
- services include providing counsel, advice, facilitation, and training
Authority of Internal Audit Activity
A formal charter for the internal audit activity that defines the internal audit activity’s purpose, authority, and responsibility must be adopted. Final approval resides with the board.
Responsibility of Internal Audit Activity
The internal audit activity’s responsibility is to provide the organization with assurance and consulting services that will add value and improve the organization’s operations. Specifically, must evaluate and improve the effectiveness of the organization’s governance, risk management, and control processes.
The primary purpose of the Code of Ethics
promote an ethical culture among professionals who serve others