The Chartered Accountant

More documents

Recommendations

Info

and maturity of an enterprise risk management system and in doing so, should consider whether the enterprise has developed a Risk management policy setting out Roles and responsibilities and framing a Risk management activity calendar. The Internal Auditor should review the maturity of an Enterprise Risk Management structure by considering whether the framework so developed, inter alia: a) Protects the enterprise against surprises; b) Stabilizes overall performance with less volatile earnings; c) Operates within established risk appetite; d) Protects ability of the enterprise to attend to its core business; e) Creates a system to proactively manage risks. 10. The internal auditor would be responsible for the following activities: a) Review of compliance to the enterprise risk management b) process with regard to the existing internal control systems and procedures followed. Defining risk tolerances where none have been identified, based on internal auditor’s experience, judgment, and consultation with management. c) Developing a detailed assurance calendar as a part of their annual audit plan and submit the review report to the Committee of the Board. d) Reviewing key risk evaluation, assessment of exposure, recording and reporting. e) Expanding assurance activities to cover overlooked risk areas. f) Strengthen risk coverage of technology, fraud and strategic areas of significant importance and priority. g) Coordinate with other risk and control functions to ensure that risks are efficiently managed and controlled. h) Leveraging and identifying Key Risk Indicators (KRI) to effec- EXPOSURE DRAFTS tively monitor risk conditions. i) Reviewing whether Enterprise Risk Management structure is designed to identify opportunities to improve performance by taking maximum advantage of risk opportunities, focus on risk control/ risk transfer/ risk finance and exploit technological advantages. j) Providing advice on the design, implementation and operation of control systems, identify opportunities to make control cost savings. k) Reviewing and commenting on the extent of residual risk. l) Promoting a risk and control culture within the enterprise. 11. The internal auditor should review whether the enterprise risk management coordinators in the entity report on the results of the assessment of key risks at the appropriate levels, which are, inter alia: l Risk management committee l Enterprise Business and Unit heads l Audit Committee Internal Audit Plan and Risk Assessment 12. The internal auditor will normally perform an annual risk assessment of the enterprise, to develop a plan of audit engagements for the subsequent period. This plan will be reviewed at various frequencies in practice. This typically involves review of the various risk assessments performed by the enterprise (e.g., strategic plans, competitive benchmarking, etc.), consideration of prior audits, and interviews with a variety of senior management. It is designed for identifying internal audit key areas, not to identify, prioritize, and manage risks directly for the enterprise. The internal audit plan, which should be approved by the audit committee, should be based on risk assessment as well as on issues highlighted by the audit committee and senior management. The risk assessment process should be of a continuous nature so as to identify not only residual or existing risks, but also emerging risks. The risk assessment should be conducted formally at least annually, but more often in complex enterprises. To serve this objective, the internal auditor should design the audit work plan by aligning it with the objectives and risks of the enterprise and concentrate on those issues where assurance is sought by those charged with governance. 13. The risk review and assurance process to be carried out by the internal auditor provides the assurance that there are appropriate controls in place for the risk management activities and that the procedures are understood and followed. Effective enterprise risk management requires a monitoring structure to ensure that the risks are effectively identified and assessed and that the appropriate mitigation plans are in place. 14. The review and assurance process conducted by internal auditors will help to determine, inter alia a) The adopted measures results in what was intended; b) The procedures adopted and information gathered for undertaking the assessment were appropriate; c) Improved knowledge would help in reaching better decisions and identify what lessons should be learnt to improve future assessment and management of risks. 15. The internal auditor should submit his report to the Committee of the Board delineating the following information: - Assurance rating; - Test conducted; - Sample covered; and - Detailed assurance comments. Effective Date 16. This Standard on Internal Audit is applicable to all internal audits commencing on or after ______. Earlier application of the SIA is encouraged.q THE CHARTERED ACCOUNTANT 1111 DECEMBER 2008
Introduction 1. The purpose of this Standard on Internal Audit is to establish standards and provide guidance on the procedures to be followed by the internal auditor in evaluating the system of internal control in an entity and for communicating weaknesses therein to those charged with governance. Nature, Purpose and Types of Internal Controls 2. Internal controls are a system consisting of specific policies and procedures designed to provide management with reasonable assurance that the goals and objectives it believes important to the entity will be met. “Internal Control System” means all the policies and procedures (internal controls) adopted by the management of an entity to assist in achieving management’s objective of ensuring, as far as practicable, the orderly and efficient conduct of its business, including adherence to management policies, the safeguarding of assets, the prevention and detection of fraud and error, the accuracy and completeness of the accounting records, and the timely preparation of reliable financial information. The DECEMBER 2008 1112 THE CHARTERED ACCOUNTANT EXPOSURE DRAFTS EXPOSURE DRAFT Standard on Internal Audit (SIA) INTERNAL CONTROL EVALUATION The Internal Audit Standards Board (hitherto known as the Committee on Internal Audit), of the Institute of Chartered Accountants of India invites comments on the Exposure Draft of the Standard on Internal Audit (SIA), Internal control Evaluation. Comments are most helpful if they indicate the specific paragraph(s) to which they relate, contain a clear rationale and, where applicable, provide a suggestion for alternative wording. Comments should be submitted in writing to: Secretary, Internal Audit Standards Board, The Institute of Chartered Accountants of India, ICAI Bhawan, C-1, Sector-1, Noida – 201 301 The last date for receiving comments is January 12, 2009. Comments can also be emailed at cia@icai.in. internal audit function constitutes a separate component of internal control with the objective of determining whether other internal controls are well designed and properly operated. Internal control system consists of interrelated components as follows: l Control (or Operating) Environment l Risk Assessment l Control Objective Setting l Event Identification l Control Activities l Information and Communication l Monitoring l Risk Response 3. The system of internal control must be under continuing supervision by management to determine that it is functioning as prescribed and is modified, as appropriate, for changes in conditions. The internal control system extends beyond those matters which relate directly to the functions of the accounting system and comprises: a. “control environment” means the overall attitude, awareness and actions of directors and management regarding the internal control system and its importance in the entity. The control environment has an effect on the effectiveness of the specific control procedures and provides the background against which other controls are operated. Factors reflected in the control environment include: m The entity’s organisational structure and methods of assigning authority and responsibility (including segregation of duties and supervisory functions). m The function of the board of directors and its committees in the case of a company or the corresponding governing body in case of any other entity. m Management’s philosophy and operating style. m Management’s control system including the internal audit function, personnel policies and procedures.
Page 1 and 2:
Volume 57 No. 06 December 2008 THE
Page 3 and 4:
EDITORIAL BOARD EDITOR-IN-CHIEF CA.
Page 5 and 6:
DECEMBER 2008 946 THE CHARTERED ACC
Page 7 and 8:
own residential Centre of Excellenc
Page 9 and 10:
READERS WRITE DECEMBER 2008 950 THE
Page 11 and 12:
ICAI President CA. Ved Jain address
Page 13 and 14:
956 DECEMBER 2008 THE CHARTERED ACC
Page 15 and 16:
ACCOUNTING covered by forward excha
Page 17 and 18:
Page 19 and 20:
profit and loss account and the bal
Page 21 and 22:
consonance with the Standards presc
Page 23 and 24:
When the power to make rules is lim
Page 25 and 26:
A. Facts of the Case 1. A private l
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Now if we apply these probability c
Page 33 and 34:
Residential Status DECEMBER 2008 98
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
CUSTOMS I. Circulars 1. Circular No
Page 47 and 48:
Appellant/assessee is a multi-state
Page 49 and 50:
that the penalty proceedings under
Page 51 and 52:
order shall consider whether the di
Page 53 and 54:
Facts of the case: Shri Bharat D. B
Page 55 and 56:
DECEMBER 2008 1008 THE CHARTERED AC
Page 57 and 58:
Page 59 and 60:
forcing otherwise healthy banks to
Page 61 and 62:
The real question is, given the rec
Page 63 and 64:
etained in LLP Bill - 2008 and some
Page 65 and 66:
If the partners do not execute the
Page 67 and 68:
of Accounts and a Solvency Statemen
Page 69 and 70:
Section 57 of the LLP Bill provides
Page 71 and 72:
e converted into a LLP by following
Page 73 and 74:
Page 75 and 76:
y misrepresenting their earnings. I
Page 77 and 78:
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
US$ Million USD 48.86 48.68 48.83 S
Page 85 and 86:
1. What are my professional objecti
Page 87 and 88:
The Committee for Members in Indust
Page 89 and 90:
) 25-35 c) 36-45 d) 46-55 e) 56-65
Page 91 and 92:
& Icai news If yes, which areas ___
Page 93 and 94:
& is 15 th December 2008. Icai news
Page 95 and 96:
& a) Yes b) No Comments, if any ___
Page 97 and 98:
& Comments, if any_________________
Page 99 and 100:
IASB Exposure Drafts on: Icai news
Page 101 and 102:
Icai news NEW PUBLICATIONS From the
Page 103 and 104:
Icai news OFFICE OF THE COMPTROLLER
Page 105 and 106: Icai news Requirements The student
Page 107 and 108: ��
Page 109 and 110: DECEMBER 2008 1064 THE CHARTERED AC
Page 117 and 118: (This Accounting Standard includes
Page 119 and 120: counts the nominal amount of the in
Page 121 and 122: accounting treatments set out in pa
Page 123 and 124: inspection are complete. However, r
Page 125 and 126: (This Accounting Standard includes
Page 127 and 128: Some loans may be interest-free or
Page 129 and 130: Standard for Local Bodies: (i) Inte
Page 131 and 132: the business, to an entity’s abil
Page 133 and 134: l Ensuring employees are properly t
Page 135 and 136: own legal counsel as to whether a c
Page 137 and 138: cial statements (in other cases tho
Page 139 and 140: Legal or Regulatory Restrictions on
Page 141 and 142: strategies, and the related busines
Page 143 and 144: Entities A35. In the case of audits
Page 145 and 146: with governance is not adequate and
Page 147 and 148: in the preparation of financial sta
Page 149 and 150: asis but, in the auditor’s judgme
Page 151 and 152: further into the future, in conside
Page 153 and 154: Introduction 1. The purpose of this
Page 155: DECEMBER 2008 1110 THE CHARTERED AC
Page 159 and 160: for which controls are being assess
Page 161 and 162: erised applications or over the ove
show all

The Chartered Accountant

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?