Your Career
Setting Yourself Apart The Multifaceted Internal Audit Candidate
Ap r i l 2 0 1 5
OUR PRINCIPAL PARTNERS MAKE A DIFFERENCE The IIA acknowledges the ongoing support from our Principal Partners, who help enhance the internal audit profession by sharing their resources and knowledge with our most valuable asset – our members. These partners actively serve as members and volunteers within The IIA, participate in the introduction of new guidance, develop world-class training, and show their commitment in many other ways in an effort to advance the internal audit profession.
The IIA encourages you to tap into the expertise of our Principal Partners in 2015!
Your Career
Your Career Table of Contents
2015 IIA Conferences
Latest IIA Tools and Resources............. 4-5
July 5–8, 2015
Seminar/eLearning Calendar............... 6-7
INTERNATIONAL CONFERENCE
Setting Yourself Apart: The Multifaceted Internal Audit Candidate.................... 8-11 Fraud Resources.............................. 12-15 GRC Resources................................. 16-19 Internal Audit Practice Resources.... 20-25
Vancouver Convention Centre / Vancouver, BC, Canada
Aug. 17–19, 2015
GOVERNANCE, RISK, AND CONTROL CONFERENCE – An IIA and ISACA collaboration
IT Resources..................................... 26-29
Arizona Biltmore / Phoenix, AZ
Certification Corner.......................... 30-31
Sept. 14–15, 2015
Top 10 Reads.........................................32
FINANCIAL SERVICES EXCHANGE Grand Hyatt Washington / Washington, DC
Learn more about Career Compass at www.theiia.org/goto/CareerCompass. We welcome comments, questions, and feedback at CareerCompass@theiia.org.
Connect with us on: Twitter Facebook LinkedIn Group www.theiia.org/goto/connect
Oct. 19–21, 2015
ALL STAR CONFERENCE The Westin Diplomat / Hollywood, FL
Nov. 8–11, 2015
SOUTHERN REGIONAL CONFERENCE Sheraton New Orleans Hotel / New Orleans, LA
The Institute of Internal Auditors 247 Maitland Ave. Altamonte Springs, FL 32701-4201 USA +1-407-937-1100 www.theiia.org Copyright © 2015 by The Institute of Internal Auditors, Inc., (“The IIA”) strictly reserved. Any reproduction of The IIA name or logo will carry the U.S. federal trademark registration symbol ®. No parts of this material may be reproduced in any form without the written permission of The IIA. Permission has been obtained from the copyright holder, The Institute of Internal Auditors, Inc., 247 Maitland Avenue, Altamonte Springs, Florida 327014201, U.S.A. to publish this reproduction, which is the same in all material respects, as the original unless approved as changed. No parts of this document may be reproduced, stored in any retrieval system, or transmitted in any form, or by any means electronic, mechanical, photocopying, recording, or otherwise, without prior written permission of The IIA.
4/2015-5034/PM/JP
www.theiia.org
|
3
Your Career
News Latest IIA Tools and Resources Risk Resource Exchange Provides Comprehensive Resource for Members Today’s business environment is characterized by mounting pressures for stronger, more effective risk management. The IIA Risk Resource Exchange provides a comprehensive resource on risk guidance, publications, certifications, training, events, and more for internal audit professionals worldwide online with the latest news and developments on risk management. In addition, The IIA provides two more resource exchanges focused on COSO and CBOK. Please visit www.theiia.org/goto/risk-resources.
IIA to Launch Financial Services Audit Center The IIA announced plans to launch the Financial Services Audit Center, expanding its specialty center service concept to embrace one of the largest practitioner groups in the profession. The new center, expected to launch this summer, will be dedicated to advancing the professional practice of internal auditing in the financial services sector. It will be modeled after the successful American Center for Government Auditing (ACGA) launch in 2014 for public sector internal auditors. ACGA currently serves more than 11,000 members in the United States. “Our plans to develop specialty centers got off to a great start with the American Center for Government Auditing, and it is only natural that we should have a strong and vibrant center focused on financial services auditors, who represent one of the largest segments of our membership,” said Mike Cowell, IIA North American Board member and senior managing director and chief auditor for TIAA-CREF. To drive development of the new center, The IIA hired Cassian Jae, a former compliance director for John Hancock Financial Services, as a director. “With more than 10 years of legal and compliance experience with issues related to financial services regulatory audits, Cass will serve the new center and our financial services members well,” said IIA President and CEO Richard F. Chambers, CIA, QIAL, CGAP, CCSA, CRMA. The new center will provide affordable, high-quality educational opportunities focused on the financial services sector through online learning, conferences and seminars — many counting toward continuing professional education (CPE) requirements — and networking events. The Center will enhance and expand services currently provided by The IIA’s Financial Services Auditor Group with a broader array of premium content that is timely, relevant, and practical. www.theiia.org/goto/AuditCenters
4
|
The Institute of Internal Auditors
Your Career
Latest IIARF Report Explores the Reality of Political Pressure in Internal Audit Internal auditors have made great strides to bring an objective voice to corporate governance, but political pressures that threaten that objectivity remain extensive and pervasive, according a new research report released by The IIA Research Foundation (IIARF). The Politics of Internal Auditing provides important insight into continuing efforts within companies to manipulate internal audit functions and findings and how heads of audit must learn to recognize and cope with such adverse influences so that they can fulfill their true mission. Based on a survey of about 500 North American chief audit executives (CAEs), in-person interviews with heads of audit around the world, and focus group interviews, the research report reveals a startling level of political pressure on internal auditors. Nearly 55 percent of North American CAEs surveyed reported being directed to omit or modify an important audit finding at least once. Learn more and order your copy today at www.theiia.org/bookstore.
Latest Releases 2015 North American Pulse of Internal Audit: Navigating an Increasingly Volatile Risk Environment – This year’s report explores emerging risks that are under the radar and how critical it is to understand them to avoid damaging surprises. By showcasing insights drawn from the results, the 2015 Pulse strengthens members’ ability to address these and related risks in an effective manner. www.theiia.org/goto/pulse PULSE OF INTERNAL AUDIT
Navigating an Increasingly Volatile Risk Environment MARCH 2015
2015-251 CAE-2015 Pulse of Internal Audit Report.indd 1
2/27/15 2:45 PM
Intersecting Roles: Fostering Effective Working Relationships among External Audit, Internal Audit and the Audit Committee – Can external audit, internal audit and audit committees leverage and strengthen their nexus of relationships to improve risk governance and external audit at the organizations they serve? The answer is yes. A new report co-sponsored by the Center for Audit Quality, and The IIA’s Audit Executive Center explores this based on three candid roundtable discussions and provides insight on how this objective could be accomplished. www.theiia.org/goto/advocate
GTAG 3, Second Edition: Continuous Auditing: Coordinating Continuous Auditing and Monitoring to Provide Continuous Assurance – Recently updated, this publication provides the key considerations practitioners need to implement continuous auditing, which will ultimately help them develop a better understanding of the business environment and the risks to the company to support compliance and drive business performance. www.theiia.org/goto/guidance JUST RELEAS ED!
Raise the Red Flag: An Internal Auditor’s Guide to Detect and Prevent Fraud - Author Lynn Fountain combines principles and theories of fraud prevention and detection with real-world scenarios and hands-on procedures. Whether you are determining your internal audit department’s preparedness to support your organization’s anti-fraud efforts or investigating actual allegations of fraud, it provides valuable techniques and approaches you can put into practice right away. www.theiia.org/bookstore www.theiia.org
|
5
2015 SEMINAR COURSE MATRIX
Chicago, IL May 11 - 14
Dallas, TX May 18 - 21
Boston, MA Jun. 9 - 12
Las Vegas, NV Jun. 15 - 18
Four Day Courses Audit Manager Tools and Techniques
May 18 - 21
Auditor-in-charge Tools and Techniques
May 11 - 14
May 18 - 21
Jun. 9 - 12
Jun. 15 - 18
Beginning Auditor Tools and Techniques
May 11 - 14
May 18 - 21
Jun. 9 - 12
Jun. 15 - 18
Communication Skills for Auditors
May 11 - 14
Jun. 9 - 12
Leadership Skills for Auditors
Jun. 15 - 18
Core Curriculum–Courses Under Four Days Analyzing and Improving Business Processes
May 11 - 12
Assessing Risk: Ensuring Internal Audit's Value
May 13 - 14
Jun. 17 - 18
Audit Report Writing Auditing Contracts : From Planning to Reporting
May 20 - 21
Auditing Derivative Strategies Auditing Investment Activities Building a Sustainable Quality Program
May 18 - 19
Jun. 9 - 10
CIA Learning System Prep Course, 1-Day Instructor-led — Part 1
Jun. 9
CIA Learning System Prep Course, 1-Day Instructor-led — Part 2
Jun. 10
CIA Learning System Prep Course, 2-Day Instructor-led — Part 3 Construction Activity: Audit Strategies
May 18 - 19
Jun. 11 - 12
May 13 - 14
Consulting Activities, Skills, Attitudes Control Self-assessment: An Introduction
May 18 - 19
Control Self-assessment: Facilitation Skills
May 20 - 21
COSO 2013: Implementing the Framework COSO-based Internal Auditing
Jun. 9 - 10
Jun. 15 - 16
Creative Problem-solving Techniques for Auditors Effective Wrting For Auditors Enterprise Risk Management: An Introduction
May 18 - 19
Jun. 15 - 16
Essential Skills for Today's Internal Auditor Financial Auditing for Internal Auditors
Jun. 15 - 16
Fraud Detection, Deterrence, and Incident Response for Internal Auditors
May 18 - 19
Fundamentals of IT Auditing Lean Six Sigma Tools for Internal Audit Fieldwork Lean Six Sigma Tools for Internal Audit Planning Operational Auditing: Influencing Positive Change
May 20 - 21
Performing an Effective Quality Assessment
May 20 - 21
Project Management Techniques Risk Based Auditing: A Value Add Proposition
Jun. 17 - 18 Jun. 11 - 12
May 18 - 19 May 11 - 12
Risk Management Assurance: Developing Your Internal Audit Strategy Statistical Sampling for Internal Auditors
May 11 - 12
The Effective Auditor: Understanding and Applying Emotional Intelligence
May 20 - 21
The Social Media Audit: Strategies, Risks, and Controls Value-Added Business Controls: The Right Way to Manage Risk
May 13 - 14
Deloitte Public Offerings Critical Thinking for Internal Auditors
6
|
The Institute of Internal Auditors
May 20 - 21
Jun. 11 - 12
Your Career Washington, DC July 14 - 17
Denver, CO July 28 - 31
Seattle, WA Aug. 4 - 7
Indianapolis, IN Aug. 11 - 14
Raleigh, NC Sept. 8 - 11
Jul. 28 - 31 Jul. 14 - 17
Jul. 28 - 31
Aug. 4 - 7
Jul. 14 - 17
Jul. 28 - 31
Aug. 4 - 7
Sep. 8 - 11 Aug. 11 - 14
Sep. 8 - 11
Jul. 14 - 17
2015 ELEARNING COURSES
Jul. 28 - 31 Statistical Sampling for Internal Auditors Aug. 24–27 Jul. 28 - 29 Jul. 30 - 31
Aug. 4 - 5
Aug. 11 - 12
Sep. 8 - 9
Jul. 16 - 17
Audit Report Writing July 27–Aug. 5, Oct. 5–14, Dec. 8–17 Performing an Effective Quality Assessment April 20–29, Sept. 21–30, Nov. 30–Dec. 9 Assessing Risk: Ensuring Internal Audit's Value April 27–30, July 6–15, Oct. 6–15 Lean Six Sigma for Internal Audit Fieldwork May 4–13, Dec. 8–17
Jul. 16 - 17
Operational Auditing: Influencing Positive Change May 5–14, Nov. 2–11 Enterprise Risk Management: An Introduction May 19–28, Aug. 11–20, Nov. 10–19 Aug. 6 - 7
Aug. 13 - 14
Sep. 10 - 11 Risk Based Auditing: A Value Add Proposition June 1–10, Sept. 8–17
Jul. 30 - 31
Jul. 28 - 29
Aug. 11 - 12
Jul. 30 - 31
Data Analysis for Internal Auditors June 10–11, Nov. 16–17 Value Added Business Controls: The Right Way to Manage Risk June 15–24, Sept. 15–24
Jul. 16 - 17 Jul. 14 - 15
Sep. 10 - 11
Jul. 28 - 29
Aug. 13 - 14
Lean Six Sigma Tools for Internal Audit Planning June 16–25, Oct. 19–28 Operational Auditing: Evaluating Procurement & Sourcing June 22–24, Oct. 19–21
Jul. 14 - 15
Access a complete elearning listing at www.theiia.org/elearning.
Jul. 14 - 15
www.theiia.org
|
7
Your Career
Setting Yourself Apart The Multifaceted Internal Audit Candidate
8
|
The Institute of Internal Auditors
Your Career
A vastly different internal audit environment requires a vastly different approach to staffing an internal audit department. Long gone are the days when a CAE could tap the local business college for a couple of accounting grads. As Tim Hird, executive director for Robert Half International Inc.’s Management Resources division in San Ramon, Calif., puts it, “It’s not just a question of finding and acquiring talent. It’s a question of finding and acquiring the modern day internal auditor.” The expanded scope of many internal audit departments’ operations brings with it a concomitant need for skills beyond the traditional range of auditor expertise. Internal auditors with those ideal skills are getting more difficult to find, too. Hird points out that “those skills are in increasing demand. Indeed, there’s a supply and demand imbalance that’s growing by the day, and, as a result, candidate shortages are starting to appear.”
www.theiia.org
|
9
Your Career
As CAEs look to recruit top talent, the candidate shortage presents an opportunity for internal auditors with the right qualifications. First and foremost, they need to understand what CAEs are looking for. Every organization has a list of qualities the ideal candidate will possess, but CAEs also are looking for that spark that makes a truly great internal audit hire. “We definitely look for people with the right skills — and that’s not necessarily internal audit skills — backed with the right degree,” says N. G. Shankar, corporate president of audit at Aditya Birla Group in New Delhi, India, which fields an internal audit staff of about 75. “But in today’s volatile, uncertain, complex, and ambiguous times, we definitely need people who, in addition to functional skills, have learning agility and speed — and people who can rely on intuition and gut.” So what are the other characteristics that make one stand out as a prospective candidate and increase his or her chances of being hired?
Experience Allstate’s Director of Internal Audit Jason Heiger finds value in career auditors. “You need that spine,” he says. “You need that strength.” And
10
|
The Institute of Internal Auditors
“We definitely need people who, in addition to functional skills, have learning agility and speed — and people who can rely on intuition and gut.” Joanne Prakapas, CIA, CRMA, director of internal audit for Mecklenburg County, N.C., adds: “We would never hire an inexperienced internal auditor to be a senior auditor, because that person is supposed to be telling others how to audit.” She says she expects staff auditors to have least two to three years’ internal audit experience, and senior auditors, three to six years’ with some lead experience. A bachelor’s degree is a minimum requirement for Prakapas, and while a business degree in accounting or finance is typical, she will consider other majors if the candidate shows proven performance as an internal auditor. “Whether the candidate has an accounting or finance degree is less important than the experiences he or she has had and accomplishments he or she can present,” she says. “Also, if they have external auditing, we consider that a translatable experience.” As would be expected, “Internal auditors with more experience, more
education, and multiple certifications are generally earning higher salaries,” reports The IIA’s 2014 Internal Audit Compensation Study (Study). “On average, internal auditors with one or more certifications drew salaries more than 25 percent higher than their noncertified colleagues,” the study revealed.
Specialized Expertise “The complexity of the audit profession, the complexity of organizations, and changing stakeholder expectations” mean specialized skills are in more demand than ever,” says Robert Berry, director of the Office of Internal Auditing at the University of North Florida. According to the Study, the median salaries for internal auditors with specialized skills (e.g., IT, fraud/forensic, and environmental, health, and safety) continue to be higher than those of auditors with compliance or general financial and operational skills. “In the U.S., the highest median salary was reported for internal auditors specializing in IT,” the report says.
Your Career
Bethmara Kessler, CAE at Campbell Soup Co. in Camden, N.J., puts it like this: “A really great audit team has a diverse set of skills and capabilities, and sometimes they’re found in folks who aren’t necessarily auditors. I can teach people how to audit, but teaching specialized skills is harder.”
Soft Skills Today’s internal auditors often move away from an audit-only function into an advisory role where they serve on special projects and task forces within the organization. “That way, the internal audit department is represented in business transformation,” Hird says. To be effective in that role, the auditor needs to be endowed with the softer skills, such as broader strategic thinking and better customer focus, he explains. According to The IIA’s latest Pulse of Internal Audit survey, CAEs “are looking to acquire talent with a stronger mix of soft skills, such as critical thinking and communications, to navigate the increasing complexity of the internal audit profession and the organizations it supports as well as an uncertain business environment and changing stakeholder expectations.” Pulse survey results reveal that 96 percent of respondents consider
analytical/critical thinking and communication skills “very or extremely essential.” Business acumen and industry-specific knowledge also were highly rated.
Personality In hiring new auditors, Berry looks for “someone who is curious by nature, can learn quickly, and has great interpersonal skills. With that, you can learn audit techniques.” Peter Francis, managing director at ACEIA in Melbourne, Australia, says he looks for employees who are the right fit for his team and the organizations the auditors perform work for. “If I can’t picture someone blending in with both of these, then regardless of other technical skills and abilities, there’s a strong likelihood that person won’t work out,” he explains.
Top Talent “The war for talent is real, and it’s heating up for organizations vying for the best and the brightest,” reports the latest Pulse. Of course, “talent” is in the eyes of the beholder, and many beholders in internal audit are looking for traditional internal auditors. The bottom line: Being hired requires a combination of a traditional internal audit skills and a recognition that such skills may not
be enough for a particular department or organization. Adapted from “The Search for Top Talent,” by Russell A. Jackson (Internal Auditor magazine, February 2015). Read the full article on InternalAuditor.org.
IIA Career Map, your path to success. Self-assess your skills and guide your growth with a personalized development plan that includes tailored recommendations of courses and study materials that will polish your skills and help you achieve your goals. www.theiia.org/careermap
www.theiia.org
|
11
Your Career
FRAUD According to the ACFE’s Report to the Nations on Occupational Fraud & Abuse, the typical organization loses 5 percent of its revenues to fraud each year. Although it is management’s responsibility to design internal controls to prevent, detect, and mitigate fraud, internal auditors are the appropriate resource for assessing the effectiveness of what management has implemented. The IIA has a host of resources to ensure that you, as an internal auditor, are equipped to do just that.
TRAINING RESOURCES
Onsite Training
Learn more about these courses at www.theiia.org/training.
Get your entire team up to speed on techniques to tackle fraud-related issues. Have our On-site Training team schedule any of the courses on the previous pages or additional courses for your team of five or more at your location. • Detecting, Preventing, and Reporting Internal and External Fraud • Developing a Fraud Risk Management Program for Your Organization • Evaluating Organizational Ethics • Financial Statement Fraud Detection for Internal Auditors • Fraud Auditing Using ACL • Fraud Awareness for CAEs and Management • Fraud Detection and Investigation for Government Auditors • Fraud Detection and Investigation for Internal Auditors • Fraud Investigation Tools and Techniques • Internal Auditing for Fraud
Data Analysis for Internal Auditors Are you seeking to improve the effectiveness of your audit planning and to ensure whether or not your results can be generalized to total populations? This course provides the opportunity to learn about the analysis of large data sets, particularly how to summarize and display data, and determine the appropriate measures for describing data. June 10–11, eSeminar Nov. 16–17, eSeminar CPE Hours Available: 8
Fraud Detection, Deterrence, and Incident Response for Internal Auditors For many auditors, management’s anti-fraud expectations exceed the audit team’s capability to deliver. Result: a challenging gap to fill and, many times, disappointing results. This program shows exactly how to close that gap and learn a comprehensive anti-fraud response that will fit in any business setting, and how to build a tailored battle plan for fighting fraud.
Explore more benefits of On-site Training by visiting www.theiia.org/onsite or contact The IIA’s On-site Training Department by e-mail at GetTraining@theiia.org or call +1-407-937-1388.
May 18–19, Dallas, TX July 16–17, Washington, DC Nov. 17–18, San Francisco, CA CPE Hours Available: 16
12
|
The Institute of Internal Auditors
SEMINARS
eLEARNING
ON-SITE TRAINING
CONFERENCES
Your Career
FRAUD eLEARNING The IIA’s wide variety of webinars, eSeminars, on-demand self-study courses, and eWorkshops mean you can spend less time traveling and more time learning.
eSeminars Data Analysis June 10–11, Nov. 16–17
Members-only Webinars Members-only webinars offer free CPE opportunities. See the full schedule here: www.theiia.org/goto/MOW: July 21: Data Privacy: A High-Stakes Issue
2015 Governance, Risk, and Control Conference (an IIA and ISACA collaboration) Aug. 17–19, 2015 / Phoenix, AZ
Financial Services Exchange Sept. 14–15, 2015 Grand Hyatt Washington / Washington, DC
All Star Conference Oct. 19–21, 2015 The Diplomat / Hollywood, FL
Southern Regional Conference Nov. 8–11, 2015 Sheraton New Orleans Hotel / New Orleans, LA
Visit www.theiia.org/conferences for more info.
Oct. 20: Financial Statement Fraud
Learn more about these training opportunities at www.theiia.org/elearning.
CONFERENCES Conferences offer a great way to delve into educational sessions focusing on fraud issues with and networking with peers who are facing the same tough challenges.
International Conference July 5–8, 2015 / Vancouver, BC, Canada •
Global Economy of Healthcare Fraud
•
Seven Key Theories to Know, Understand and Fight Against Fraud: a Journey to the Essence of the Problem
•
Money Laundering & Terrorist Financing
Your Master Key to Career Success – IIA Global Certifications and Qualifications Whether you are mastering the fundamentals of internal audit or moving into audit management, you owe it to yourself and your organization to pursue the Certified Internal Auditor® (CIA®), the only globally recognized internal audit credential and standard for excellence within the profession. Earning the CIA demonstrates your commitment to the profession and your career. Achieving it will increase your confidence, serve as an example for current or future staff, and build credibility with internal audit clients. Visit www.theiia.org/certification to review the requirements and to start your application.
www.theiia.org
|
13
Your Career
FRAUD BOOKS AND EDUCATIONAL PRODUCTS Bribery: Identify Hidden Risks in Your Organization (eBook) Bribery in business likely predates recorded history and continues to be a pervasive challenge in industries, governments, and organizations around the world. While it is not a new crime, bribery has remained one of the most difficult things for auditors to identify and prevent. Bribery: Identify Hidden Risks in Your Organization is a quickread reference that should be part of every internal auditor’s library to prepare you to combat the issue. The book provides broad overviews of issues related to bribery, including: • Anti-bribery controls over an organization’s expenditures, revenue, assets, and liabilities. • Bribes that take place off the books that tend to be difficult to prevent and detect. • International law and pertinent regulations. • The risks and related internal controls for bribes that pass through an organization’s books. Item No.: 1155.ep
Raise the Red Flag: An Internal Auditor’s Guide to Detect and Prevent Fraud Item No. : 1191 Member Price : $55.00 Nonmember Price : $65.00
Order your copy through The IIA Research Foundation Bookstore: www.theiia.org/Bookstore.
GUIDANCE RESOURCES Practice Guide: Auditing Anti-bribery and Anti-corruption Programs This IIA Practice Guide, Auditing Anti-bribery and Anti-corruption Programs, offers internal audit practitioners insight on the nature of bribery and corruption in organizations throughout the world. It discusses the current business landscape and stresses that no organization — regardless of whether it is public, private, large, or small — is immune to the devastating impacts bribery and corruption bring.
Member Price: US$35.00 / Nonmember Price: US$45.00
GTAG 13: Fraud Prevention and Detection in an Automated World This GTAG aims to inform and provide guidance on how to use technology to help prevent, detect, and respond
14
|
The Institute of Internal Auditors
Your Career
FRAUD The Fraud-Resistant Organization: Tools, Traits, and Techniques to Deter and Detect Financial Reporting Fraud
to fraud through a step-by-step process for auditing a fraud prevention program, an explanation of the various types of data analysis to use in detecting fraud, and a technology fraud risk assessment template.
Practice Guide: Evaluating Ethics-related Programs and Activities This guide strives to put a firm structure around a subject that has traditionally been viewed as too soft, and thereby challenging, to evaluate. A strong ethical climate and an organization’s ability to maintain an ethical culture is the foundation for good governance. A framework for a robust ethics program is included. Consult these guidance resources, part of the IPPF, at www.theiia.org/guidance.
THOUGHT LEADERSHIP AND RESEARCH
This report offers valuable information about the conditions that might make an organization more susceptible to fraud — and how to mitigate them. Access now at www.antifraudcollaboration.org.
AuditChannel.tv Watch leading fraud experts share insights regarding current fraud topics: • When the Whistle Is Blown, All Lines of Defense Have Failed • Looking for Fraud in All the Wrong Places • Closing the Expectation Gap • The Fraudit • And more at www.actv.com.
Internal Auditor Magazine: The Fraud Response Despite efforts by businesses to tighten security, occupational crime and fraud remains a significant and growing exposure. Knowledge of how these risks are evolving, as well as best practices for dealing with them, can equip internal auditors to become more effective participants in their company’s anti-crime reporting, correcting, and recovery efforts. www.internalauditor.org
Are your skills up-to-date with industry standards? Self-assess your skills today with IIA Career Map. Free for IIA members! www.theiia.org/careermap
www.theiia.org
|
15
Your Career
GOVERNANCE, RISK, AND CONTROLS As an internal auditor, you are called upon to assess and make appropriate recommendations for improving the governance process, evaluate the effectiveness and contribute to the improvement of risk management processes, and assist the organization in maintaining effective controls by evaluating their effectiveness and efficiency and by promoting continuous improvement. As the professional association established to support you, the internal auditor, we have developed a host of resources to assist you in achieving those objectives.
TRAINING RESOURCES
COSO-based Internal Auditing
Learn more about these courses at www.theiia.org/training.
This course provides internal auditors an opportunity to deepen their understanding of the COSO internal control and ERM integrated frameworks required to carry out their roles and responsibilities. Through interactive exercises, participants will explore how to leverage the frameworks in their audit process.
Assessing Risk: Ensuring Internal Audit’s Value This course provides practical insights relating to contemporary best practices of risk assessment activities and allows participants to apply what they have learned so they can implement risk assessment activities in their organization. Covers fundamentals and nuances such as audit universe, risk appetite, fraud, and the challenges of implementation. It also addresses skill gaps many internal auditors struggle with such as how to develop their own risk assessment frameworks and how to select or construct a risk ranking system. Upcoming Offerings: April 27–30, eSeminar
May 13–14, Chicago, IL June 17–18, Las Vegas, NV
July 6–15, eSeminar
July 30–31, Denver, CO
Upcoming Offerings: April 16–17, New York, NY
June 9–10, Boston, MA
June 15–16, Las Vegas, NV
CPE Hours Available: 16
Enterprise Risk Management: An Introduction Through facilitator presentations, case studies, group discussions, practical exercises, self-assessments, and facilitator feedback, participants will improve their understanding of ERM and the COSO ERM framework, while getting up-to-speed with current issues, challenges, and emerging practices regarding risk management, control, and governance processes.
CPE Hours Available: 16 Upcoming Offerings: April 14–15, New York, NY
16
May 18–19, Dallas, TX
Consult the course matrix on pages 6-7 for offering dates and locations.
May 19–28, eSeminar
Learn more about any of the above courses and register today at www.theiia.org/training.
CPE Hours Available: 16
|
The Institute of Internal Auditors
SEMINARS
eLEARNING
June 15–16, Las Vegas, NV July 28–29, Denver, CO
ON-SITE TRAINING
CONFERENCES
Your Career
GOVERNANCE, RISK, AND CONTROLS Risk-based Auditing: A Value Add Proposition Through case studies, group discussions, roundtables, and facilitator presentations, this course will help audit team leaders align their organizations’ strategies, visions, and values with the internal audit process. Participants will come to understand the importance of corporate governance and ERM while learning to identify risks, perform risk assessments, develop a risk-based assurance plan, understand entitywide controls, and plan a risk-based engagement.
Members-only Webinars Save the dates for this line-up of members-only webinars addressing governance and risk-related issues. Learn more about these free CPE opportunities at www.theiia.org/goto/MOW. All members-only webinar topics and speakers are subject to change without notice. May 19: Driving an Effective ERM Culture June 16: Auditing Strategic Risk Aug. 18: Auditing Technology Risks
Specialty Audit Group/Center eLearning Upcoming Offerings: May 11–12, Chicago, IL
American Center of Government Auditing
May 11–20: eWorkshop: Risk Based Annual Audit Planning for
June 1–10, eSeminar
CPE Hours Available: 16
eLEARNING
Maximum Impact Financial Services Auditor Group May 7: eWorkshop: Top Priorities for Internal Audit in Financial Services
The IIA’s wide variety of webinars, eSeminars, on-demand self-study courses, and eWorkshops are available conveniently whenever and wherever you are. www.theiia.org/elearning
eSeminars April 20–29: Performing an Effective Quality Assessment May 19–28: Enterprise Risk Management: An Introduction
CONFERENCES Conferences offer a great way to gain additional information to assist you in managing your role addressing governance, risk management, and controls issues. Check out these upcoming sessions at conference events:
April 27–30, July 6 - 19: Assessing Risk: Ensuring Internal Audit’s Value
International Conference
June 10–11: Data Analysis for Internal Auditors
July 5–8, 2015
June 1–10: Risk-Based Auditing: A Value-Add Proposition
Vancouver, BC, Canada
June 15–24: Value-Added Business Controls: The Right Way to
•
Board Oversight of Management’s Risk Appetite & Tolerance: Internal Audit’s Role
Manage Risk •
Business Ethics: Critical Steps You Need to Know to Protect Yourself and Your Organization
•
The Speed of Business: Successfully Managing Internal Audit
www.theiia.org
|
17
Your Career
GOVERNANCE, RISK, AND CONTROLS Governance, Risk, And Control Conference (an IIA and ISACA collaboration) Aug. 17–19, 2015 Arizona Biltmore / Phoenix, AZ
Financial Services Exchange Sept. 14–15, 2015 Grand Hyatt Washington / Washington, DC
All Star Conference Oct. 19–21, 2015 The Diplomat / Hollywood, FL
Southern Regional Conference Nov. 8–11, 2015 Sheraton New Orleans Hotel / New Orleans, LA
QIAL Today, growth and change in the internal auditing field is demanding a new type of leader — one who drives a high-performing audit team while delivering value by consistently addressing stakeholder needs, top-down risks, and expectations of an evolving marketplace. The IIA has developed the Qualification in Internal Audit Leadership™ (QIAL™) to support you on this journey to be the next generation of visionaries for the profession. Visit www.theiia.org/goto/qial for more information or to apply.
BOOKS AND EDUCATIONAL PRODUCTS
Visit www.theiia.org/conferences for more info.
The Balanced Scorecard: Applications in Internal Auditing and Risk Management (eBook)
CERTIFICATIONS AND QUALIFICATIONS CRMA Find the Key to Your Success with the Certification in Risk Management Assurance® (CRMA®) Designation. The CRMA is designed for internal auditors and risk management professionals with responsibility for, and experience in, providing risk assurance, governance processes, quality assurance, or control self-assessment. It demonstrates your individual ability to evaluate the dynamic components comprising an organization’s governance and enterprise risk management program and provide advice and assurance around these issues. Visit www.theiia.org/goto/CRMA for more information and to apply.
The Balanced Scorecard performance management system has become an essential framework for strategy execution throughout the world. Its popularity and effectiveness is what led Mark L. Frigo to refresh his 2002 book. The book provides an overview of concepts and terminology of the framework to begin developing it as a strategic leadership skill, and will help readers to: • Use the Mission-Driven Strategy framework to develop a strategy for internal audit. • Connect internal audit strategy to enterprise strategy. • Facilitate continuous improvement in the internal audit function. Item No.: 1153.ep Member Price: US$35.00 / Nonmember Price: US$45.00
18
|
The Institute of Internal Auditors
Your Career
GOVERNANCE, RISK, AND CONTROLS Mergers, Acquisitions & Sales: How Internal Audit Adds Value and Effectiveness Whether seasoned or a novice, you will benefit from the latest on auditing the mergers, acquisitions, and sales process. This book addresses global best practices providing practical advice and support aids for what can be the greatest strategic risk or opportunity for an organization. Item No.: 1157 Member Price: US$55.00 / Nonmember Price: US$65.00
Visit www.theiia.org/Bookstore to learn more.
GUIDANCE RESOURCES Practice Guides Covering GRC: •
Assessing the Adequacy of Risk Management Using ISO 31000
•
Assessing Organizational Governance in the Private Sector
•
Auditing Anti-bribery and Anti-corruption Programs
•
Auditing Privacy Risks, 2nd Edition
•
Auditing the Control Environment
•
Business Continuity Management
•
Coordinating Risk Management and Assurance
Practice Guides – GTAGs Covering GRC: •
GTAG 17: Auditing IT Governance
•
GTAG 10: Business Continuity Management
•
GTAG 7: Information Technology Outsourcing, 2nd Edition
•
GTAG 2: Change and Patch Management Controls
Practice Advisories Covering GRC: •
Assessing the Adequacy of Risk Management Processes
•
Board Interaction
•
Evaluating an Organization’s Privacy Framework
•
Governance: Relationship With Risk and Control
•
Linking the Audit Plan to Risk and Exposures
•
Managing the Risk of the Internal Audit Activity
•
Reporting to Senior Management and the Board
•
Using the Risk Management Process in Internal Audit Planning
Consult these and other GRC guidance resources in the IPPF at www.theiia.org/guidance.
THOUGHT LEADERSHIP AND RESEARCH Partners in Assurance Internal auditors understand that providing assurance to our organizations is core to what we do. However, it is difficult for internal audit to effectively provide assurance and insight without full consideration of the other functions that are also doing so. Great Plains Energy Inc., shares how they are improving the collective governance, risk, and compliance activities of the company as a whole. www.internalauditor.org
Richard Chambers’ Latest Blog When It Comes to Risk-based Auditing, Don’t Let the Tail Wag the Dog At last count, more than 80 percent of internal audit departments assess risks as part of their audit planning process. So, why is it that legitimate risks to the organization are often glossed over, or overlooked entirely, when internal audit is assessing risks?
AuditChannel.tv • Serve Multiple Masters With Information Governance • Internal Audit in Conflict Environment • And moreat www.auditchannel.tv
www.theiia.org
|
19
Your Career
INTERNAL AUDIT PRACTICE Whether you are just starting your career, coming into internal audit midway through your career, or needing to enhance your skill sets with latest best practices, here are resources to support your internal audit expertise to make an impact and maintain relevancy with your colleagues, superiors, executive leadership, board, and audit committee.
TRAINING RESOURCES
Audit Report Writing
Learn more about these courses at www.theiia.org/training.
This is a hands-on course that focuses on the organization and structure of audit reports, and includes case study activities for practicing the basics of audit report writing. This course provides the foundation for more advanced audit report writing courses.
Analyzing & Improving Business Processes This course provides participants with tools and techniques that can be used in any process analysis engagement and includes opportunities to apply learnings in real-world scenarios. The best way to build business process analysis skills is by doing the work, and this course is full of hands-on applications using case studies and the participants’ understanding of their own processes to do that. Upcoming Offerings: May 11–12, Chicago, IL July 28–29, Denver, CO CPE Hours Available: 16
Audit Manager Tools and Techniques Through practical exercises and case studies, participants will learn how to manage the roles and relationships of the diverse parties involved in the auditing process, how to maintain lines of communication with the CAE and executive management, and problem solve while motivating a team and delegating tasks.
Upcoming Offerings: July 16–17, Washington, DC
July 27–Aug. 5, eSeminar
CPE Hours Available: 16
Auditor-in-charge Tools and Techniques Whether you are a recently promoted auditor-in-charge, just assuming the role, or seeking a refresher, this informative session covers the organizational, time management, and problem-solving skills necessary to manage a successful team. Through the use of a case study that is woven into the course, participants will learn about the roles and responsibilities of an auditor-in-charge for the phases of an internal audit. Upcoming Offerings: May 11–14, Chicago, IL
May 18–21, Dallas, TX
June 9–12, Boston, MA
June 15–18, Las Vegas, NV
Upcoming Offerings: May 18–21, Dallas, TX
July 14–17, Washington, DC
July 28–31, Denver, CO
CPE Hours Available: 32
20
|
The Institute of Internal Auditors
July 28–31, Denver, CO
CPE Hours Available: 32
SEMINARS
eLEARNING
ON-SITE TRAINING
CONFERENCES
Your Career
INTERNAL AUDIT PRACTICE Beginning Auditor Tools and Techniques
COSO-based Internal Auditing
To become a successful auditor, a strong knowledge base and an understanding of basic audit skills are essential. With this program, new auditors, as well as nonauditors with internal control responsibilities, can learn the ins-and-outs of an audit from beginning to end. Through team exercises, group discussion, and facilitator presentations, attendees will gain a foundation of knowledge that will allow them to prepare appropriately for, and conduct, a successful audit.
This course provides internal auditors an opportunity to deepen their understanding of the COSO internal control and ERM integrated frameworks required to carry out their roles and responsibilities. Through interactive exercises, participants will explore how to leverage the frameworks in their audit process. Upcoming Offerings: June 9–10, Boston, MA
June 15–16, Las Vegas, NV
CPE Hours Available: 16
Upcoming Offerings: May 11–14, Chicago, IL
Creative Problem-solving Techniques for Auditors
May 18–21, Dallas, TX
June 9–12, Boston, MA
June 15–18, Las Vegas, NV
July 14–17, Washington, DC
July 28–31, Denver, CO
CPE Hours Available: 32
Communication Skills for Auditors Through facilitator presentations, group discussions, case studies, practical exercises, and individual coaching and feedback, participants will learn to see themselves as others see them — in terms of style and the impressions they create — and increase their ability to reach negotiated agreements. Upcoming Offerings: May 11–14, Chicago, IL
Through facilitator presentations, group discussions, practical exercises, case studies, and self-assessments, this course will help participants define creativity and the dimensions of creative problem solving. Experienced facilitators will demonstrate five strategies for creativity and divergent thinking and explain the ground rules for convergent thinking. By the end of the course, participants will know how to jump-start creative approaches to problems and have new, immediately usable tools for logical problem solving. Upcoming Offering:
July 30–31, Denver, CO
Dec. 9–10, Orlando, FL
CPE Hours Available: 16
June 9–12, Boston, MA July 14–17, Washington, DC
CPE Hours Available: 32
Consult the course matrix on pages 6-7 for offering dates and locations. Learn more about any of the above courses and register today at www.theiia.org/training.
SEMINARS
eLEARNING
ON-SITE TRAINING
CONFERENCES
www.theiia.org
|
21
Your Career
INTERNAL AUDIT PRACTICE Financial Auditing for Internal Auditors
Statistical Sampling for Internal Auditors
Taking on such topics as “common recipes for cooking the books,” covering information flow from business process to financial statement, and more, this course will help participants understand how key business processes relate to financial statements, as well as the impact of IT on financial statements.
The course includes different methods of random sampling and nonrandom sampling, explains how to calculate sample size and adjust for population size and resource constraints, and examines the concept of strategic sampling to get the most information for minimum cost — including how to combine results, extrapolate, and what to report.
Upcoming Offerings: June 15–16, Las Vegas, NV Upcoming Offerings: May 11–12, Chicago, IL
CPE Hours Available: 16
CPE Hours Available: 16
Risk-based Auditing: A Value Add Proposition Through case studies, group discussions, round tables, and facilitator presentations, this course will help audit team leaders align their organizations’ strategies, visions, and values with the internal audit process. Participants will come to understand the importance of corporate governance and ERM, while learning to identify risks, perform risk assessments, develop a risk-based assurance plan, understand entitywide controls, and plan a risk-based engagement.
The Effective Auditor: Understanding and Applying Emotional Intelligence Research indicates approximately two-thirds of the difference between top and average performance is attributed to emotional competence. Improve your effectiveness with others by enhancing your emotional intelligence in this hands-on 2-day course. Upcoming Offerings: May 20–21, Dallas, TX
Upcoming Offerings: May 11–12, Chicago, IL
June 11–12, Boston, MA
CPE Hours Available: 16
June 1–10, eSeminar
CPE Hours Available: 16
Are your skills up-to-date with industry standards? Self-assess your skills today with IIA Career Map. Free for IIA members! www.theiia.org/careermap
Consult the course matrix on pages 6–7 for offering dates and locations. Learn more about any of the above courses and register today at www.theiia.org/training.
22
|
The Institute of Internal Auditors
SEMINARS
eLEARNING
ON-SITE TRAINING
CONFERENCES
Your Career
INTERNAL AUDIT PRACTICE eLEARNING
CONFERENCES
The IIA offers a wide variety of webinars, eSeminars, on-demand self-study courses, and eWorkshops. www.theiia.org/elearning.
Check out these upcoming conference sessions focused on internal audit best practices:
International Conference eSeminars
July 5–8, 2015 / Vancouver, BC
April 27–30, July 6–15: Assessing Risk: Ensuring Internal
•
CAE Strategies for Aligning With Stakeholder Expectations
•
High-ROI Values Statement: Tools/Techniques
•
Expectations of a High Performing Audit Committee and Board
Audit’s Value May 4–13: Lean Six Sigma for Internal Audit Fieldwork May 5–14: Operational Auditing: Influencing Positive Change May 19–28, Aug. 11–20: Enterprise Risk Management: An Introduction June 16-25: LSS for Internal Audit Planning
Governance, Risk, and Control Conference (an IIA and ISACA collaboration)
June 22-24: Operational Auditing: Evaluating Procurement and Savings
August 17–19, 2015 / Phoenix, AZ
June 1-10: Risk-based Auditing: A Value-Based Proposition
Aug. 24–27: Statistical Sampling for Internal Auditors July 27–Aug. 5: Audit Report Writing
Financial Services Exchange Members-only Webinars
Sept. 14–15, 2015
Save the dates for this lineup of members-only webinars. Learn more about these free CPE opportunities at www.theiia.org/goto/MOW. All members-only webinar topics and speakers are subject to change without notice.
Grand Hyatt Washington / Washington, DC
All Star Conference Oct. 19–21, 2015 The Diplomat / Hollywood, FL
April 21: Pulse of Internal Audit June 16: Guide to Managing the Work/Life Balance of an Audit Team
Southern Regional Conference Specialty Group/Center Online Events*
Nov. 8–11, 2015
American Center for Government Auditing
Sheraton New Orleans Hotel / New Orleans, LA
May 11: eWorkshop: Risk Based Annual Audit Planning for Maximum Impact
Visit www.theiia.org/conferences.
May 21: Virtual Symposium: Emerging Issues in the Public Sector Financial Services Auditor Group July 9: Hot Topics in Compliance - Dodd-Frank at 5 * Specialty/center group membership required.
SEMINARS
eLEARNING
ON-SITE TRAINING
CONFERENCES
www.theiia.org
|
23
Your Career
INTERNAL AUDIT PRACTICE CERTIFICATIONS
BOOKS AND EDUCATIONAL PRODUCTS
Your Master Key to Career Success – IIA Global Certifications and Qualifications
The IIA’s CIA Learning System
Whether you are mastering the fundamentals of internal auditing or moving into audit management, you owe it to yourself and your organization to pursue the Certified Internal Auditor (CIA), the only globally recognized internal audit credential and standard for excellence within the profession.
This comprehensive and interactive CIA review program teaches and reinforces the entire global CIA exam syllabus in a flexible, on-demand format. It combines printed and eReader materials with online tests and study tools to ensure you’re prepared to pass the CIA exam and are armed with critical tools and knowledge to excel in your internal audit career. Item No.: 1150 Member Price: US$795.00 / Nonmember Price: US$895.00
Auditors who specialize can further distinguish their expertise by pursuing The IIA’s specialty certifications and qualifications, including: • Certification in Control Self-Assessment® (CCSA®) • Certified Financial Services Auditor® (CFSA®) • Certified Government Auditing Professional® (CGAP®) • Certification in Risk Management Assurance® (CRMA®) New Designation: Internal Audit Practitioner Beginning in June 2015, auditors can take an alternate route to success. The Internal Audit Practitioner designation is ideal for those with less than 2 years’ experience or in a rotational position, allowing candidates to demonstrate their commitment, competency, and credibility by taking and passing Part One of the CIA exam. Visit www.theiia.org/certification to start your journey.
Become a Strategic Internal Auditor: Tying Risk to Strategy Businesses today are spending more time on strategic issues and seeking more help from those with strategic capabilities. This has created a unique opportunity for internal auditors to help their organizations both manage their risks and achieve their strategic goals. Discover how to: • Stay connected to the business and become involved with more strategic initiatives. • Get involved earlier in the life cycle of the project or strategic initiative. • Use ERM to raise risk and strategy questions. • Use leading-edge risk assessments to gain knowledge for strategic initiatives. • Identify new skill sets needed to engage in strategic planning. Item No.: 5033 Member Price: US$40.00 / Nonmember Price: US$50.00
24
|
The Institute of Internal Auditors
Your Career
INTERNAL AUDIT PRACTICE Financial Planning and Budgets: Understanding the Auditing Process Financial Planning and Budgets is a comprehensive reference guide designed to help experienced audit managers and internal auditors plan, organize, perform, and report on the financial planning and budgeting processes. A strong risk management capability is important in today’s automated, fast-paced business world. This book discusses identifying key risks in the external or internal business environment of an organization and how they should be mitigated, avoided, or controlled.
CBOK Resource Exchange – What to Expect The global survey concluded in March. Results will be released on a monthly basis beginning in July 2015, more than 30 reports are planned to be produced from the CBOK study components. The reports will be categorized into eight knowledge tracks focused on the profession’s emerging issues in areas including the future of internal audit, governance, management, risk, standards, talent, and technology. www.theiia.org/CBOK
Item No.: 1158
AuditChannel.tv
Member Price: US$55.00 / Nonmember Price: US$65.00
Catch the latest insights into internal audit best practices on www.AuditChannel.tv.
Access these books and more at www.theiia.org/Bookstore
THOUGHT LEADERSHIP AND RESEARCH
• Risk Oversight: New Frontiers for Internal Audit • Getting to a Safer, More Secure Digital World • Tips for Talent Management • And more!
Internal Auditor Magazine: Gauging the Value of Internal Audit Internal audit can gauge its value to the organization by various means, with varying degrees of success. But only by examining themselves through the lens of their own stakeholders can practitioners truly get a sense of their effectiveness and perceived value. Internal Auditor spoke with board and audit committee members, as well as senior executives, for an objective look at the work and performance of internal audit. www.internalauditor.org
www.theiia.org
|
25
Your Career
INFORMATION TECHNOLOGY Technology continues to play an ever-increasing role in internal audit as both an audit tool and audit area. Whether you’re looking for the latest guidance on the use of technology or need to sharpen your IT skills, we have a variety of solutions to fit your ever-changing needs.
Keep Your Finger on the Pulse of Technology with The IIA and Deloitte – an IT audit curriculum created specifically for IT pros, IT novices, and everyone in between. These hands-on courses are taught by skilled instructors with real world experience who make today’s technology issues clear. www.theiia.org/training.
TRAINING RESOURCES
SAP GRC Access Control and Process Control
Introduction to IT Auditing Gain an understanding of the ins and outs of information technology as well as baseline knowledge of general computer control concepts. Knowing how information systems impact the audit environment is the key to doing your job well today and achieving greater success tomorrow.
This course provides an essential knowledge base, as well as hands-on learning, for internal audit professionals, including information technology auditors working in a SAP GRC environment, as well as those involved in SAP GRC implementation and configuration. Hands-on learning will be conducted with Access Control and Process Control 10.0. The curriculum includes lectures, group discussions, case studies, and practical exercises, allowing participants to explore the many ways a SAP GRC implementation impacts internal auditing.
Upcoming Offerings: June 23–26, Boston, MA CPE Hours Available: 32
Auditing Oracle Applications
Upcoming Offering:
Acquire a solid understanding of how the implementation and use of Oracle applications will impact your organization. This course includes facilitated discussions, and computer-simulated class exercises. It provides a thorough overview of Oracle security basics, network and operating system security, data conversion and interfaces, and much more.
CPE Hours Available: 32
May 5–8, Boston, MA
Upcoming Offering: April 28–May 1, Dallas, TX CPE Hours Available: 32
26
|
The Institute of Internal Auditors
SEMINARS
eLEARNING
ON-SITE TRAINING
CONFERENCES
Your Career
INFORMATION TECHNOLOGY NEW! Fundamentals of IT Auditing
eLEARNING
This course will provide attendees with an introduction to IT auditing, emphasizing the concepts through exercises and case studies. Internal audit professionals will develop knowledge of basic IT audit concepts that can be used to facilitate integrated audit efforts within their organization.
The IIA’s wide variety of webinars, eSeminars, on-demand self-study courses, and eWorkshops mean you can spend less time traveling to training and more time learning. www.theiia.org/elearning.
Members-only Webinars The course will also provide attendees the opportunity to perform an audit of IT applications supporting key business processes, coordinate the assessment of IT risk with the evaluation of IT general controls, and perform a risk assessment and evaluation of controls over end user computer applications.
Learn more about these free CPE opportunities at www.theiia.org/goto/MOW. All Members-only Webinars topics and speakers are subject to change without notice. July 21: Data Privacy: A High-Stakes Issue Aug. 18: Auditing Technology Risk
July 14–15, Washington, DC July 28–29, Denver, CO
Specialty Group/Center Online Events*
CPE Hours Available: 16
American Center for Government Auditing
Visit www.theiia.org/training for more information on these courses and to register.
Virtual Symposium May 21: Emerging Issues in the Public Sector Financial Services Auditor Group
On-site Training
Virtual Symposium
With ever-increasing cybersecurity risks, all internal auditors must be up to date with the latest technology threats and tendencies. Make sure your internal audit group is ready for these challenges with our newest cybersecurity courses: • Cyberaudits of Identity and Access Control Management • Cybersecurity and Audit of Payment Card Systems • Cybersecurity Audits for Modern Web Applications • Auditors’ Guide to Cybersecurity Vulnerability and Penetration Testing Explore more benefits of On-site Training by visiting www.theiia.org/onsite or contact The IIA’s On-site Training Department by e-mail at GetTraining@theiia.org or call +1-407-937-1388.
June 4: Virtual Symposium on Cybersecurity in Financial Services
SEMINARS
eLEARNING
ON-SITE TRAINING
* Specialty group/center membership required.
CONFERENCES
www.theiia.org
|
27
Your Career
INFORMATION TECHNOLOGY
CONFERENCES Conferences offer a great way to delve into information technology and network with your peers who are facing the same tough challenges:
International Conference July 5–8, 2015 / Vancouver, BC •
Technology Revolution! Auditing in the Modern Age
•
Exceeding Expectations: Improving the State of Internal Audit
GUIDANCE GTAG 3, Continuous Auditing: Coordinating Continuous Auditing and Monitoring to Provide Continuous Assurance, 2nd Edition Recently updated, this publication provides the key considerations practitioners need to implement continuous auditing, which will ultimately help them develop a better understanding of the business environment and the risks to the company to support compliance and drive business performance.
Through Data Analytics •
Application Testing: Not Just for IT Auditors
Governance, Risk, and Control Conference (an IIA and ISACA collaboration)
Grand Hyatt Washington / Washington, DC
This guide takes into account the latest developments in the IT landscape and empowers CAEs to more efficiently and effectively manage their IT audit work by focusing on three core areas: determining where IT audit resources are needed; accurately evaluating IT-related risks; and executing IT audit work.
All Star Conference
GTAG 7: Information Technology Outsourcing, 2nd Edition
Aug. 17–19, 2015 / Phoenix, AZ
Financial Services Exchange Sept. 14–15, 2015
Oct. 19–21, 2015 The Diplomat / Hollywood, FL
Southern Regional Conference Nov. 8–11, 2015 Sheraton New Orleans Hotel / New Orleans, LA
Visit www.theiia.org/conferences for more information.
28
GTAG 4: Management of IT Auditing, 2nd Edition
|
The Institute of Internal Auditors
This guide will help CAEs and their audit teams determine the extent of internal auditor involvement when IT is partially or fully outsourced in their entities by providing information on the types of IT outsourcing (ITO), the life cycle of ITO, and how internal auditors can approach risk in connection with ITO delivery. Consult these guidance resources, including GTAGs that address IT, part of International Professional Practices Framework® (IPPF®), by visiting www.theiia.org/guidance.
Your Career
INFORMATION TECHNOLOGY BOOKS AND EDUCATIONAL PRODUCTS
THOUGHT LEADERSHIP AND RESEARCH
A New Auditor’s Guide to Planning, Performing, and Presenting IT Audits Information technology is a highly dynamic, rapidly changing environment. IT auditors are expected to stay current with the latest tools, technologies, and trends. This book is designed to help internal auditors take a step back and understand the general process and activities involved in conducting an audit around technology. Item No.: 1070 Member Price: US$60.00 / Nonmember Price: US$70.00
Auditing Social Media: A Governance and Risk Guide If you want your business to stay ahead in the game, this one-stop guide will help you navigate through the maze of risks and governance surrounding social media. Auditing Social Media explains how your organization can thoroughly ensure it has the adequate measures in place to capitalize on social media while protecting itself from excessive risk. Item No.: 1081 Member Price: US$39.95 / Nonmember Price: US$49.95
Access hundreds of other practitioner-reviewed educational products at www.theiia.org/bookstore.
Internal Auditor Magazine: Tech Fraud and the Small Business When small businesses and startup companies experience a fraudulent event, they may be hit disproportionally harder than larger organizations. A significant fraud incident can lead to reputational harm, cost innocent employees their jobs, cause personal investments to be lost, and make creditors wary of helping the victimized business in the future. Internal auditors can help educate small-business owners and executives about such threats and conduct reviews to identify potential vulnerabilities. www.internalauditor.org
New Report Offers Guides on Frameworks to Assess Cyberrisks COSO recently released COSO in the Cyber Age, a thought leadership paper that provides direction on how the Internal Control–Integrated Framework updated in 2013 and 2004’s Enterprise Risk Management–Integrated Framework can help organizations effectively and efficiently evaluate and manage cyber risks. www.coso.org
AuditChannel.tv Catch the latest insight into IT audit best practices on www.AuditChannel.tv. • Coming to Grips With Cybersecurity • Privacy Risks and Internal Audit’s Role • Reducing Cybersecurity Risks: Internal Audit’s Role • And more!
www.theiia.org
|
29
Your Career
CERTIFICATION Corner CIA PROFILE
LAUST HELMIG, CIA ASSOCIATE, GOLDMAN SACHS IIA-NEW YORK CHAPTER
1. What prompted you to become certified? Wanting to secure an internship in internal audit while attending college at LSU, I approached my professor in the LSU CIA program, Dr. Glenn Sumners. I asked what the single best way was to start my career in internal audit and he advised me to become certified.
2. How does having an IIA certification set you apart from your non-certified peers? Having studied for and completed the exams helped me enter the profession with an understanding of internal audit’s role in the organization that I would not have had otherwise. The CIA certification also helped me jump-start my career in internal audit and develop a good understanding of the profession. It has also provided me with numerous job opportunities.
3. What advice do you have for others who are seeking certification? Make sure to do as many practice questions as possible before the exams. While everyone learns in different ways, the approach that seems to work best for candidates is mastering the practice questions. I would also recommend candidates reach out to fellow certified colleagues to ask for their advice.
30
|
The Institute of Internal Auditors
Laust Helmig started his career in the internal audit profession after graduating Summa Cum Laude from Louisiana State University with a Bachelor of Science in Economics, specializing in internal audit and econometrics. He received his CIA certification in 2013 after fulfilling the industry experience requirement. Helmig is now in the investment management division at Goldman Sachs. He is responsible for monitoring and analyzing client portfolios, including trading equities, fixed income, derivatives, and alternative investments. Helmig is a member of IIA-New York Chapter and holds his Series 3, Series 7, and Series 66 licenses.
Your Career
CERTIFICATION Corner News
IIA Announces CFSA Application Fee Waiver* in April Mark your calendars! Beginning April 1, 2015, The IIA is waiving the application fee (up to a US$200 value) for the Certified Financial Service Auditor® (CFSA®) designation. The CFSA is The IIA’s premier certification for financial services internal auditing. Applications must be received by April, 30 2015 to qualify for the fee waiver.
Other Headlines ■■ New QIAL Candidate Handbook and Other Candidate Guides Now Available ■■ IIA Now Offers Social Badging for Certifications and Qualifications ■■ New Practice Tests Available for CIA Candidates ■■ Update to QIAL Eligibility and New QIAL Path
SHOW THEM YOU ARE TOMORROW’S LEADER, TODAY.
You think outside the box. You find new and innovative ways to conquer today’s ever-changing audit challenges. You are tomorrow’s leader. There’s no better way to demonstrate your qualifications to your stakeholders and peers than with The IIA’s Qualification in Internal Audit Leadership™ (QIAL™) professional credential. The QIAL is the only qualification program that identifies, assesses, and develops core skills linked to audit leadership success. It caters to CIAs and CAEs who are already strong performers and have the potential for greater leadership.
Visit www.theiia.org/goto/QIAL today and show them who you really are...a leader!
Access these headlines and more at www.theiia.org/ goto/certcorner.
2015-5026
www.theiia.org
|
31
The Politics of Internal Auditing Item No. : 5060 Member Price : $35 Non-Member Price : $45
COSO Internal Control – Integrated Framework: Turning Principles Into Positive Action Item No. 1135 Member Price: $60 Nonmember Price: $75
Bribery: Identify Hidden Risks in Your Organization Item No. : 1155 Member Price : $40 Non-Member Price : $50
The Balanced Scorecard: Applications in Internal Auditing and Risk Management Item No. 1153 Member Price: $40 Nonmember Price: $50
Management’s Guide to Sarbanes-Oxley Section 404: Maximize Value Within Your Organization Item No. 1151.ep Member Price: $30 Nonmember Price: $40
Lessons Learned on the Audit Trail Item No. 1152 Member Price: $24.50 Nonmember Price: $34.50
Financial Planning and Budgets: Understanding the Auditing Process Item No. : 1158 Member Price : $55.00 Non-Member Price : $65.00
Quality Assessment Manual for the Internal Audit Activity Item No. 1131 Member Price: $215 Nonmember Price: $260
Become a Strategic Internal Auditor: Tying Risk to Strategy Item No. : 5033 Member Price: $40 Nonmember Price: $50
The Internal Auditor’s Guide to Risk Assessment – eBook Item No. 1134.ep Member Price: $105 Nonmember Price: $125
2015
l0 POPULAR
READS www.theiia.org/bookstore