Treasury Internal Audit Framework Revised ... - National Treasury

More documents

Recommendations

Info

Establishment of IAA changing priorities and emerging audit needs. The AC should approve material changes to the operational IA plan. 3.5.1 Risk Based Planning Risk based planning means finding the correct balance of risk based versus cyclical based audits. This balance depends on the maturity of an organisation’s systems and processes, the extent to which policies and procedures and internal controls are entrenched and complied with, and the general strength of the wider control environment. Best practice is that the IAA spends most of its time on riskbased audits, and the rest on cyclical based audits, follow-up audits and ad hoc requests. 3.5.1.1 Risk based audits Given the results from the risk assessments performed (which generally indicate only a satisfactory-to-weak control environment) it may be appropriate for the IAA to focus its attention on the high risk areas, mostly concentrating on ensuring that key controls are in place and adhered to. 37 Internal Audit Framework
3.5.1.2 Cyclical audits IAA may decide to focus its attention on certain medium to lower risk areas, in order to achieve general or specific improvements in the control environment or culture. These cyclical audits are normally conducted on a yearly basis with the aim of monitoring and maintaining (through the reports issued and actions taken) a sound internal control environment. This also includes legislated and follow up audits. 3.5.1.3 Ad hoc requests IAA might consider ad-hoc requests from management, but such requests should flow from the written authorised charter and with the approval of the AC. However before accepting these requests IAA should assess the requests against the planned audits and prioritise the requests based on how much value can be added, prior to deciding whether or not to accept the requests. 3.5.2 Budget of IA It is the responsibility of the AO and the AC to ensure that the IAA is adequately resourced for effective functioning. The CAE should control and have responsibility over the IAA’s budget. National Treasury 38
Page 1 and 2: Internal Audit Framework
Page 3 and 4: The Internal Audit Framework is bei
Page 5 and 6: 2.5 Composition and Membership.....
Page 7 and 8: 5.1.4 Engagement Resource Allocatio
Page 9 and 10: • Be Public Service specific and
Page 11 and 12: government. It is important that bo
Page 13 and 14: Both the PFMA and MFMA make provisi
Page 15 and 16: 1.3.2.5 Internal control processes
Page 17 and 18: 1.4.3 Criteria of Control (CoCo) 6
Page 19 and 20: 2 Audit Committee (AC) 2.1 Introduc
Page 21 and 22: a management responsibility, manage
Page 23 and 24: • Monitor management’s implemen
Page 25 and 26: strategic objectives and overall co
Page 27 and 28: • AC members should not serve mor
Page 29 and 30: National Treasury the CAE, EA and t
Page 31 and 32: o The effectiveness of the interna
Page 33 and 34: much of the guidance required by IA
Page 35 and 36: the co-operation of the audit clien
Page 37 and 38: 3.2.3 The IA Charter 13 An IA chart
Page 39 and 40: 3.4 Developing an Internal Audit St
Page 41 and 42: The analysis: • Assesses the effe
Page 43: • Establish the timing of perform
Page 47 and 48: descriptions, clear goal setting, p
Page 49 and 50: operation to ensure that they are c
Page 51 and 52: There should be access to each othe
Page 53 and 54: IAA must be satisfied that the orga
Page 55 and 56: Preventive Controls A preventive co
Page 57 and 58: • Compliance with other generally
Page 59 and 60: acceptable operational practices an
Page 61 and 62: 5 Audit Process The audit process i
Page 63 and 64: 5.1.3 Engagement Scope 29 The scope
Page 65 and 66: The audit program must be compiled
Page 67 and 68: The IAA should document the informa
Page 69 and 70: The design and content of the worki
Page 71 and 72: 5.2.5 Engagement Supervision 36 Sup
Page 73 and 74: and/or conclusions. Recommendations
Page 75 and 76: 5.3.5 Disseminating Results 42 Enga
Page 77 and 78: • Verification of the response; a
Page 79 and 80: • Emergency consulting engagement
Page 81 and 82: activities that significantly affec
Page 83 and 84: • Seek any information it require
Page 85 and 86: Internal Control • Consider the e
Page 87 and 88: • Review any other reports that t
Page 89 and 90: identified during audits and, commu
Page 91 and 92: projects, ad hoc meetings and routi

Treasury Internal Audit Framework Revised ... - National Treasury

Create successful ePaper yourself

Delete template?

Save as template?