Treasury Internal Audit Framework Revised ... - National Treasury
Treasury Internal Audit Framework Revised ... - National Treasury
Treasury Internal Audit Framework Revised ... - National Treasury
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Establishment of IAA<br />
3.3 Organising the IAA<br />
3.3.1 Planning 14<br />
The CAE needs to direct, supervise and<br />
manage the activities of IAA. These include<br />
amongst others planning, resource management,<br />
implementation of operating policies<br />
and procedures, review of work, coordination<br />
of assurance activities and quality assurance.<br />
3.3.2 The <strong>Audit</strong> Plan and Process<br />
The operational IA plan should be based on<br />
an assessment of risks and exposures that<br />
may affect the organisation and should be<br />
done at least annually in order to reflect the<br />
most current strategies and direction of the<br />
organisation. Risk assessment should be<br />
evaluated, alignment of the operational plan to<br />
the overall objectives of the organisation<br />
should be ensured to add value. A risk based<br />
audit plan ensures that audit activities<br />
effectively focus on those areas where the risk<br />
of exposure is greatest.<br />
The CAE must ensure that strategic and<br />
operational plans are developed annually,<br />
approved by the AC and accepted by the AO.<br />
14 ISPPIA 2010<br />
31 <strong>Internal</strong> <strong>Audit</strong> <strong>Framework</strong>