News and Publications Updates The Evolution of Internal Audit in the Federal Government
|
The Evolution of Internal Audit in the Federal Government Chief Audit Executives must respond to changing expectations, experts say
Internal auditors in the federal public service need to “audit smarter” and make better use of technology, according to Comptroller General of Canada Jim Ralston. Ralston, a member of CCAF’s Board of Governors, was speaking at a May 14, 2010 event on The Evolution of Internal Audit in the Federal Government, organized by the accounting firm PricewaterhouseCoopers LLP (PwC) in Ottawa. He said the internal audit function is increasingly focusing on risk-based planning and auditing. Auditors have to determine where risks are and then determine what coverage is required. To do this effectively, they must understand their organizations and evaluate risks. He suggested that, to strengthen their operations, Chief Audit Executives (CAEs) place increased emphasis on practice inspections and other independent reviews of the function. In the past, he said, audits were periodic. They may need to become more timely and continuous to serve senior management well. He noted that the use of IT tools can facilitate continuous auditing. Ralston said he sees the Departmental Audit Committee as helpful to internal audit and as elevating the role and importance of the function. Three elements to CAE assessments
CCAF Chair Ronald Thompson, who chairs the Departmental Audit Committee at Statistics Canada, told conference attendees that he expects in the future to see all CAEs in the federal public sector reporting directly to their deputy heads, focusing entirely on their internal audit functions and having a clear understanding of how they will be assessed. He said the assessment of CAEs is an evolving art, but will come to focus on three things:
Thompson argued against CAEs being given other tasks, such as Chief Risk Officer. “CAEs are busy, and running an internal audit shop is a full time job,” he said. Besides, he noted, “How can the CAE provide objective and credible assurance to the deputy on risk management if the same CAE developed the risk management plan? You can’t audit your own work.” In the future, Thompson also argued that internal audit would focus almost entirely on assurance engagements, with consulting work virtually disappearing. The exception is when programs are being designed – here the advice of internal audit can help reduce costs and prevent problems. Making it to the senior management table
Bill Austin, a member of the Audit Committees of Natural Resources Canada and Public Safety The former Assistant Secretary of the Treasury Board of Canada offered several suggestions on how CAEs could make it to the management table, including:
The event was hosted by Roxanne Anderson, Lead Partner, Federal Government Services Practice with PwC and a CCAF Governor. It was moderated by Darren Budd, Leader of PwC Ottawa's, Internal Audit, Risk and Controls practice.
In summing up the event, PwC's Joanne Gorenstein, spoke to 5 areas of focus as CAE's continue to support the evolution of internal audit functions:
Eight Key Attributes of a "high performing" Internal Audit Function  |
