search

Which of the following are roles of the internal audit activity in best practice governance?

1 years ago
Comments: 0
Views: 147

Effective corporate governance and internal audit are vital to one another. The Institute of Internal Auditors (IIA) recently released their position paper on ‘Internal Auditing’s Role in Corporate Governance’ in which they stated: ‘A vibrant and agile internal audit function can be an indispensable resource supporting sound corporate governance.’

Show

Corporate governance is the oversight of a company’s policies, procedures and practices usually handled by the board of directors. In our previous blog, we explained how routine internal audits can improve a company’s corporate governance. But what part specifically does internal audit play? And how does a strong relationship between the two benefit your company?

The role of internal audit in corporate governance

An internal audit can provide a fair and accurate review of governance processes, risk management and internal controls. As the third line of defence for a business, internal audit equips the board with a holistic view of governance structures and how well they are working within the company.

As professional insight into procedures and a catalyst for managers, audits can be effective when prompting change, improvements, and innovation within an organisation. By highlighting key areas of weakness and developing risks, an internal audit can identify and foresee emerging trends and challenges, keeping companies one step ahead and ready to act as soon as a crisis occurs.

Which of the following are roles of the internal audit activity in best practice governance?

Dive into the changes that have occurred in the business world and how internal audit have the power to adapt along with that for the better.

Download white paper

The focus of an audit can be based on the organisation’s needs and issues, as they are designed to provide assurance on the procedures in place to manage governance structures. An audit’s scope could include, but is not limited to:

  1. Board composition (skills, training, support)
  2. Information on meetings (minutes, attendance, topics)
  3. The input of stakeholders and the usefulness of their feedback
  4. The effectiveness of communication within the organisation, from top to bottom
  5. Any conflicts of interests
  6. Monitoring of risks and controls
  7. Tone at the top and the dynamic of the company

Poor corporate governance has led to the reputational damage of many high-profile organisations. Take for example Patisserie Valerie. The company failed to train and develop board member staff which eventually lead to the reputation of the executive chairman being severely damaged following a string of mistakes.

As the risks companies are facing continue to grow, businesses must ensure they continue to follow best practices to effectively mitigate them, including a risk-based approach to auditing. The IIA have named a number of risks that may be of concern for business, these include ‘new technologies, geopolitics, cybersecurity, and disruptive innovation’.

A risk-based approach to internal audits can strengthen an organisation’s corporate governance, providing assurance and insights on the processes and structures in place that ensure the company can succeed.

Now that you have a greater understanding of the link between corporate governance and internal audit, download our white paper, ‘Level Up: Risk-Based Auditing’ to find out how your company can establish a continuous risk-based audit execution process and improve your internal audit maturity.

Which of the following are roles of the internal audit activity in best practice governance?

Discover how your company can establish a continuous risk-based audit execution process.

Find out more

  • Internal audit plays a key role in an entity’s corporate governance.
  • This role is often referred to as the Third Line of Defence.
  • While it is not compulsory for large UK companies to have an internal audit function, many of them do.

The board of directors is ultimately responsible for the organisation’s effective governance. Corporate governance is the collective name given to the various policies, rules, practices and processes established by authority of the board to govern the organisation effectively, monitor their application and to meet its objectives.

Internal audit can play a key role here providing what is sometimes known as the Third Line of Defence.

The Institute of Internal Auditors has published a position paper on Internal Auditing’s Role in Corporate Governance in which it states that “Internal audit’s role in governance is vital. Internal audit provides objective assurance and insight on the effectiveness and efficiency of risk management, internal control and governance processes. A vibrant and agile internal audit function can be an indispensable resource supporting sound corporate governance.”

Internal audit can give additional value by including reviews of the organisation's processes and procedures in areas such as:

  • Corporate culture
  • How the organisation first identifies and then chooses how to manage risks
  • Sustainability
  • Cybersecurity
  • Business planning
  • Geopolitical risk

UK requirements on corporate governance

The UK has produced the following requirements and principles for corporate governance:

1. Listed companies

For companies listed on the London Stock Exchange (LSE), the FRC have published the UK Code of Corporate Governance. The Code is applicable to all companies with a premium listing on the LSE,  whether that company is incorporated in the UK or elsewhere. The latest version of the Code (“2018 UK Code of Corporate Governance”) applies to accounting periods beginning on or after 1 January 2019.

2. Larger private companies

The UK Government introduced secondary legislation in June 2018 (The Companies (Miscellaneous Reporting) Regulations 2018 ) which requires all companies with more than 2,000 employees and in addition have a turnover of more than £200 million and a balance sheet total exceeding £2 billion that are not already required to give a corporate governance statement, to provide details of their corporate governance arrangements. To assist large private companies (as defined above) to comply with this legislation, in December 2018 the FRC published in December 2018 the Wates Corporate Governance Principles for Large Private Companies.

How the different elements of governance come together

All LSE-listed companies are required by the Code to have an audit committee which operates in effect as a sub-committee of the Board but there is no requirement in this Code for any company, irrespective of size, to have an internal audit function.

1. The Board

The Code, in Section 4 (“Audit, Risk and Internal Control”), requires the Board to:

“…establish formal and transparent policies and procedures to ensure the independence and effectiveness of internal and external audit functions and satisfy itself on the integrity of financial and narrative statements.”

“…present a fair, balanced and understandable assessment of the company’s position and prospects.”

“… establish procedures to manage risk, oversee the internal control framework, and determine the nature and extent of the principal risks the company is willing to take in order to achieve its long-term strategic objectives”

2. Audit committee

Section 4 of the Code requires that much of the above responsibilities are delegated to the audit committee. This is a key committee and it is required to consist of at least 3 (2 for listed companies below the FTSE 350 threshold) independent non-executive directors and that the Chair of the board is excluded from membership. The committee is responsible for carrying out governance responsibilities in respect of audit, risk and internal controls and will report to the board as appropriate.

There is also a requirement that the company’s annual report must describe what the audit committee does. If there is no internal audit function, then the annual report must give “an explanation for the absence, how internal assurance is [otherwise] achieved, and how this affects the work of external audit…” . The Code stipulates that one of the duties of the audit committee is thus “monitoring and reviewing the effectiveness of the company’s internal audit function or, where there is not one, considering annually whether there is a need for one and making a recommendation to the board .”Formed in 2015, the ACCIF (Audit Committee Chairs’ Independent Forum) is an independent group based on FTSE 350 company audit committees. It was established to ‘promote good governance by enhancing the leadership of Audit Committee Chairs through the sharing of experiences and the establishment of best practice’. Jock Lennox, an ICAS member, is the Chair of its Board and Mike McKeon, the current ICAS President, is also a Board member.

3. Internal audit

Where an internal audit function exists, the audit committee will place great reliance on its work to give an independent, objective view on how well (or otherwise) the organisation is addressing major business risks. It is thus vital that internal audit is given adequate oversight and support by the committee to enable it to provide increased value to the organisation in fast-moving times which are likely to bring fresh risks. This requires:

  • Regular meetings during the year between the audit committee, the head of internal audit and the external audit partner.
  • Internal audit is closely involved in the organisation’s discussions on risk.
  • A properly resourced and staffed internal audit function.
  • An independent review by outside consultants every two or three years of the adequacy of the internal audit function.
  • Internal audit’s independence from operational management and internal politics is monitored and protected by the audit committee.
  • That the head of internal audits feels able to raise informally and timeously any pressing concerns on risk or on internal controls with the audit committee chair.

Please also refer to the ‘What makes a good internal audit’ article for the comments of audit committee members on what they regard comprises an effective internal audit.

Is it compulsory for a company to have an internal audit function?

Surprisingly, no. Whilst many large UK companies do indeed have an internal audit function, you may be astonished that there is no compulsion for a limited company (regardless of its size, or whether it is listed on the London Stock Exchange or not) for it to have an internal audit function. The FRC’s 2018 UK Corporate Governance Code only requires companies to either have an internal audit function on a comply or explain basis.

In contrast to the UK, the world’s largest stock exchange, the New York Stock Exchange (NYSE), made it compulsory from 2013 for all companies listed on it to have an internal audit function. Unlike the world’s second-largest stock exchange, the US NASDAQ (National Association of Security Dealers Automatic Quotation), which does not require companies on it to have an internal audit function.

Reviews Best

Related Posts

According to evolutionists, which is the best test to show the relatedness of two organisms?
According to evolutionists, which is the best test to show the relatedness of two organisms?

To use app-id effectively in security policies which three best practices should be followed
To use app-id effectively in security policies which three best practices should be followed

Which of the following best describes the difference between positive and negative reinforcement?
Which of the following best describes the difference between positive and negative reinforcement?

Which types of power are best for a leader to use?
Which types of power are best for a leader to use?

Which statement best describes one main idea of of plymouth plantation?
Which statement best describes one main idea of of plymouth plantation?

Whats the best medium shield in Elden Ring?
Whats the best medium shield in Elden Ring?

Which statement best describes the consequences of spanish colonization in the americas?
Which statement best describes the consequences of spanish colonization in the americas?

Best relaxer for weak hair
Best relaxer for weak hair

Best hop up for hpa
Best hop up for hpa

Which of the following best describes the trend in categories three and four from the first period to the second period responses?
Which of the following best describes the trend in categories three and four from the first period to the second period responses?

Local auto body repair shops near me
Local auto body repair shops near me

Bath and body works visor clip instructions
Bath and body works visor clip instructions

How to get messages from iphone to pc
How to get messages from iphone to pc

What time does the next fortnite season come out
What time does the next fortnite season come out

What info do you need to get a passport
What info do you need to get a passport

Best bb cream for acne prone skin 2022
Best bb cream for acne prone skin 2022

All inclusive miami vacation packages with airfare
All inclusive miami vacation packages with airfare

How to get into a locked room door
How to get into a locked room door

How to remove recent inquiries from credit report
How to remove recent inquiries from credit report

How much is 2.5 liters of water in gallons
How much is 2.5 liters of water in gallons

Advertising

LATEST NEWS

Which one of the following would be considered the most appropriate action for a leader during the performing stage of team development?
1 years ago . by PedagogicalAdjustment
Why is it fitting that it is almost the last day of the summer in The Great Gatsby Chapter 7?
1 years ago . by LustyFinale
20 workers can build a wall in 30 days, how many days will 15 workers take to build the same wall
1 years ago . by AllegedCilantro
Is 12 workers can build a wall in 50 hours how many workers will be required to do the same work in 40 hours?
1 years ago . by Hand-heldEnlightenment
The various behavioral forms that nonverbal communication takes are referred to as nonverbal
1 years ago . by ClosedJuncture
Why give alpha blocker before beta blocker in pheochromocytoma
1 years ago . by PrecedingProphecy
The overlap between groups has ______ in americas residential neighborhoods and workplaces.
1 years ago . by UnrelentingClimber
Can you sue your spouse NJ?
1 years ago . by FrugalDepletion
The five flows in marketing channels discussed in the text are
1 years ago . by FadedHacker
Does Australia use accrual accounting?
1 years ago . by UrbanCropping

Advertising

Populer

Advertising

About

Legal

Help

Social

Copyright © 2024 themosti Inc.