The Chartered Accountant

More documents

Recommendations

Info

passed by the engagement letter shall be performed only on mutual agreement and with separate engagement letter. Responsibility 10. The terms of the engagement should clearly mention the responsibility of the auditee vis a vis the internal auditor. The auditee is responsible for establishing, maintaining and ensuring operating effectiveness of a system of internal control. The auditee would also be responsible for timely communication of material weaknesses or other significant issues relating to internal controls, misstatements in the financial information or similar matters to its external auditors, the Audit Committee, the Board of Directors, regulators and to those to whom the auditee is required to so communicate. 11. The management of the auditee is responsible for providing timely and accurate data, information, records, personnel etc., and for extending cooperation to the audit team. 12. Similarly, where the internal auditor has a specific responsibility, say that arising out of a law or a regulation or a professional standard applicable to the internal auditor, to communicate directly, the above mentioned issues to an appropriate authority or someone within the entity or a regulator, the terms of the engagement should contain a clear mention of such responsibility. 13. The internal auditor has the responsibility to inform the management before commencement of the assignment about the engagement team and the audit plan. Authority 14. The terms of engagement should provide the internal auditor with requisite authority, including unrestricted access to all departments, records, property and personnel and authority to call for information from concerned per- STANDARDS sonnel in the organisation. 15. The internal auditor should have full authority on his technologies and other properties like hardware and audit tools he may use in course of performing internal audit. Confidentiality Confidentiality of Working Papers 16. The terms of engagement should be clear that the ownership of the working papers rests with the internal auditor and not the auditee. It should also be made clear that the internal auditor may, upon a request received in this regard from the auditee, provide copies of non proprietary working papers to the auditee. The terms should lay down the policy and the procedures to be followed regarding requests received for internal auditor’s working papers from third parties including external auditors. 17. The internal audit engagement may also be subject to a peer review by a regulator, requiring the internal auditor to disclose his working papers to the peer reviewer without the permission of the auditee. The engagement letter should bring out this fact clearly. Confidentiality of the Report 18. The engagement letter should contain a condition that the report of the internal auditor should not be distributed or circulated by the auditee or the internal auditor to any party other than that mutually agreed between the internal auditor and the auditee unless there is a statutory or a regulatory requirement to do so. Limitations 19. The terms of engagement should specify clearly the limitations on scope, coverage and reporting requirement, if any. It may also mention that the internal auditor or any of his employees shall not be liable to the auditee for any claims, damages, liabilities or expenses relating to the engagement exceeding the aggregate amount of compensation agreed upon by both the parties. Reporting 20. The terms of the engagement should clearly lay down the requirements as to the manner, frequency of reporting and the list of intended recipients of the internal audit report. Compensation 21. There should be a clear understanding among the internal auditor and the client as to the basis on which the internal auditor would be compensated, including any out of pocket expense, taxes etc., for the services performed by him. Compliance with Standards 22. The terms of the internal audit engagement should contain a statement that the internal audit engagement would be carried out in accordance with the professional Standards applicable to such engagement as on the date of audit. Withdrawal from the Engagement 23. In case the internal auditor is unable to agree to any change in the terms of the engagement and/ or is not permitted to continue as per the original terms, he should withdraw from the engagement and should consider whether there is an obligation, contractual or otherwise, to report the circumstances necessitating the withdrawal to other parties. Effective Date 24. This Standard on Internal Audit is effective for all internal audits beginning on or after……………………………….. Earlier application of the Standard is encouraged.q THE CHARTERED ACCOUNTANT 1109 DECEMBER 2008
DECEMBER 2008 1110 THE CHARTERED ACCOUNTANT EXPOSURE DRAFTS EXPOSURE DRAFT Standard on Internal Audit (SIA) ENTERPRISE RISK MANAGEMENT The Internal Audit Standards Board (hitherto known as the Committee on Internal Audit), of the Institute of Chartered Accountants of India invites comments on the Exposure Draft of the Standard on Internal Audit (SIA), Enterprise Risk Management. Comments are most helpful if they indicate the specific paragraph(s) to which they relate, contain a clear rationale and, where applicable, provide a suggestion for alternative wording. Introduction 1. The purpose of this Standard on Internal Audit is to establish standards and provide guidance for review of an entity’s risk management initiatives during an internal audit or such other review exercise with the objective of providing an assurance thereon. 2. Enterprise risk management enables management to effectively deal with risk, associated uncertainty and enhancing the capacity to build value to the entity or enterprise and its stakeholders. Internal auditor may review each of these activities and focus on the processes used by management to report and monitor the risks identified. Risk and Enterprise Risk Management 3. Risk is an event which can prevent, hinder, fail to further or otherwise obstruct the enterprise in achieving its objectives. A business risk is the threat that an event or action will adversely affect an enterprise’s ability to maximize stakeholder value and to achieve its business objectives. Risk can cause financial disadvantage, for example, additional costs or loss of funds or assets. It can result in damage, loss of value and /or loss of an opportunity to enhance the enterprise operations or activities. Risk is the product of probability of occurrence and the financial impact of such occurrence. 4. Risk may be broadly classified into Strategic, Operational, Financial and Comments should be submitted in writing to: Secretary, Internal Audit Standards Board, The Institute of Chartered Accountants of India, ICAI Bhawan, C-1, Sector-1, Noida – 201 301 The last date for receiving comments is January 12, 2009. Comments can also be emailed at cia@icai.in. Knowledge. Strategic Risks are associated with the primary long-term purpose, objectives and direction of the business. Operations Risks are associated with the on-going, day-to-day operations of the enterprise. Financial Risks are related specifically to the processes, techniques and instruments utilised to manage the finances of the enterprise, as well as those processes involved in sustaining effective financial relationships with customers and third parties. Knowledge Risks are associated with the management and protection of knowledge and information within the enterprise. Process of Enterprise Risk Management and Internal Audit 5. Enterprise Risk Management is a structured, consistent and continuous process of measuring or assessing risk and developing strategies to manage risk within the risk appetite. It involves identification, assessment, mitigation, planning and implementation of Risk and developing an appropriate Risk Response policy. Management is responsible for establishing and operating the risk management framework on behalf of the board. 6. The Enterprise Risk Management Process consists of Risk identification, prioritization and reporting, Risk mitigation, Risk monitoring and assurance. Internal audit is a key part of the lifecycle of risk management. The corporate risk function establishes the policies and procedures, and the assurance phase is accomplished by internal audit. Role of the Internal Auditor in Relation to Enterprise Risk Management 7. The role of the internal auditor in relation to Enterprise Risk Management is to provide assurance to management on the effectiveness of risk management. Due consideration should be taken to ensure that the internal auditor protects his independence and objectivity of the assurance provided. The role of the internal auditor is to ascertain that risks are appropriately defined and managed. 8. The extent of internal audit’s role in enterprise risk management will depend on other resources, internal and external, available to the board and on the risk maturity of the organisation. The nature of internal audit’s responsibilities should be adequately documented and approved by those charged with governance. The internal auditor should not manage any of the risks on behalf of the management or take risk management decisions. The internal auditor should not assume any accountability for risk management decisions taken by the management. Internal audit has a role only in commenting and advising on risk management and assisting in the effective mitigation of risk. 9. The Internal Auditor has to review the structure, effectiveness
Page 1 and 2:
Volume 57 No. 06 December 2008 THE
Page 3 and 4:
EDITORIAL BOARD EDITOR-IN-CHIEF CA.
Page 5 and 6:
DECEMBER 2008 946 THE CHARTERED ACC
Page 7 and 8:
own residential Centre of Excellenc
Page 9 and 10:
READERS WRITE DECEMBER 2008 950 THE
Page 11 and 12:
ICAI President CA. Ved Jain address
Page 13 and 14:
956 DECEMBER 2008 THE CHARTERED ACC
Page 15 and 16:
ACCOUNTING covered by forward excha
Page 17 and 18:
Page 19 and 20:
profit and loss account and the bal
Page 21 and 22:
consonance with the Standards presc
Page 23 and 24:
When the power to make rules is lim
Page 25 and 26:
A. Facts of the Case 1. A private l
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Now if we apply these probability c
Page 33 and 34:
Residential Status DECEMBER 2008 98
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
CUSTOMS I. Circulars 1. Circular No
Page 47 and 48:
Appellant/assessee is a multi-state
Page 49 and 50:
that the penalty proceedings under
Page 51 and 52:
order shall consider whether the di
Page 53 and 54:
Facts of the case: Shri Bharat D. B
Page 55 and 56:
DECEMBER 2008 1008 THE CHARTERED AC
Page 57 and 58:
Page 59 and 60:
forcing otherwise healthy banks to
Page 61 and 62:
The real question is, given the rec
Page 63 and 64:
etained in LLP Bill - 2008 and some
Page 65 and 66:
If the partners do not execute the
Page 67 and 68:
of Accounts and a Solvency Statemen
Page 69 and 70:
Section 57 of the LLP Bill provides
Page 71 and 72:
e converted into a LLP by following
Page 73 and 74:
Page 75 and 76:
y misrepresenting their earnings. I
Page 77 and 78:
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
US$ Million USD 48.86 48.68 48.83 S
Page 85 and 86:
1. What are my professional objecti
Page 87 and 88:
The Committee for Members in Indust
Page 89 and 90:
) 25-35 c) 36-45 d) 46-55 e) 56-65
Page 91 and 92:
& Icai news If yes, which areas ___
Page 93 and 94:
& is 15 th December 2008. Icai news
Page 95 and 96:
& a) Yes b) No Comments, if any ___
Page 97 and 98:
& Comments, if any_________________
Page 99 and 100:
IASB Exposure Drafts on: Icai news
Page 101 and 102:
Icai news NEW PUBLICATIONS From the
Page 103 and 104: Icai news OFFICE OF THE COMPTROLLER
Page 105 and 106: Icai news Requirements The student
Page 107 and 108: ��
Page 109 and 110: DECEMBER 2008 1064 THE CHARTERED AC
Page 117 and 118: (This Accounting Standard includes
Page 119 and 120: counts the nominal amount of the in
Page 121 and 122: accounting treatments set out in pa
Page 123 and 124: inspection are complete. However, r
Page 125 and 126: (This Accounting Standard includes
Page 127 and 128: Some loans may be interest-free or
Page 129 and 130: Standard for Local Bodies: (i) Inte
Page 131 and 132: the business, to an entity’s abil
Page 133 and 134: l Ensuring employees are properly t
Page 135 and 136: own legal counsel as to whether a c
Page 137 and 138: cial statements (in other cases tho
Page 139 and 140: Legal or Regulatory Restrictions on
Page 141 and 142: strategies, and the related busines
Page 143 and 144: Entities A35. In the case of audits
Page 145 and 146: with governance is not adequate and
Page 147 and 148: in the preparation of financial sta
Page 149 and 150: asis but, in the auditor’s judgme
Page 151 and 152: further into the future, in conside
Page 153: Introduction 1. The purpose of this
Page 157 and 158: Introduction 1. The purpose of this
Page 159 and 160: for which controls are being assess
Page 161 and 162: erised applications or over the ove
show all

The Chartered Accountant

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?