Treasury Internal Audit Framework Revised ... - National Treasury
Treasury Internal Audit Framework Revised ... - National Treasury
Treasury Internal Audit Framework Revised ... - National Treasury
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Establishment of IAA<br />
The data can be used to plan, direct a risk<br />
management approach and provide the basis<br />
for risk management activities.<br />
3.4.5 Risk Management Activities (Step 5)<br />
Management is responsible for ensuring the<br />
establishment of effective risk management in<br />
the organisation. The approach followed<br />
provides a mechanism of formalising the<br />
responsibility and establishing accountability<br />
for management activities. This is often<br />
achieved through the establishment of a “Risk<br />
Committee” function. Its efforts should identify<br />
further actions that may be needed to reduce<br />
risk to an acceptable level.<br />
3.5 Operational Plan<br />
The operational IA plan must be developed<br />
taking into account the results of the risk<br />
assessments and the associated strategic<br />
audit plan so as to:<br />
• Determine focus areas for IA activities;<br />
• Determine IA scope in relation to the<br />
scheduled assignments;<br />
• Allocate resources to planned audit<br />
assignments;<br />
35 <strong>Internal</strong> <strong>Audit</strong> <strong>Framework</strong>