Part
What the RISK BASED AUDIT is
In simpler terms, data analytics is the management of overwhelming amounts of data to increase efficiency and improve business performance by discovering patterns in data. The use of Data Analytics has evolved and broadened over time, which offers many advantages. 9 Organizations that are essentially progressive, despite the benefits of data analytics, must move beyond traditional analytics and focus on advanced analytics.
Data analytics in Auditing
- Stages of Risk based Audit
- Advantages -Benefits of RBIA
- Application of data analytics in stages of auditing process
- Methods-Tools and types of DATA ANALYTICS in Risk Based Audit
- Benefits of Data analytics in RBIA
10 Diagnostic analysis is the analysis that looks for answers to why something happened in the past. They give the ability to drill into the data to find dependencies and identify patterns. Assessment of organizational risk maturity – in this stage, audit planning objectives are defined based on the accepted risk maturity levels of the organization which is the risk appetite.
Periodic evaluation of the overall process for design effectiveness and operational effectiveness while also identifying the capabilities needed to improve these processes in order to meet the organization's objectives. Periodic assessment of overall processes for design effectiveness and operational effectiveness are included, also identifying the capabilities needed to improve these processes in order to meet the organization's objectives and ensure compliance with the risk management framework. The audit report and assurances are required to be correlated. to risks. This can be pursued both in the annual strategic planning process as part of the strategic macro-level scale, and as an audit process in itself, as a macro-level scale always aims to identify risk and how to mitigate it at the level of risk appetite .
Management, auditors and the board create mutual understanding about the risk of the organization, agree on the audit plan based on the risk appetite and coordinate each other if changes in circumstances occur. It creates the ability for the organization to prepare for sudden changes in direction in the organization's strategy. Below are some of the actions an internal auditor can perform using data analytics software as a critical tool to effectively achieve these steps, based on applicable auditing standards.
14 The above figure was executed as a case study in which Accenture Company illustrates how the use of data analytics, starting from the stage of deploying analytical tools on each PC, can bring the best value to the audit process if only companies adopt a complete transformation of the audit process approach.
Survey of Price water coopers consulting company
17 In the study, PwC points out that risk assessment through data analysis can help deliver high-quality audits that deliver serious business insights. More specifically, when steps in the audit cycle are automated by using data in audit processes, auditors can quickly detect anomalies or errors and predict fraud, which improves audit quality and improves risk assessment. The proper use of technology significantly benefits the auditor. With their professor charged with additional roles, data analytics helps them reduce compliance costs, improve audit efficiency and focus, and fulfill multiple roles of the modern internal auditor by reducing the cost of compliance and enabling focus . in risk assessment.
Technology in the audit makes it possible to review whether processes are working effectively and is also the catalyst that will help auditors shift their focus in the audit process from a retrospective view to one that is forward looking. Data analysis in the risk-based audit process can help auditors become better informed about the organization's goals, which can change the relationship between the auditor and the organization; the auditor is no longer considered the inspector who comes once a year to make judgments, but knows, is considered to be a value creator for the organization. Auditors are more able to understand the real business operations and have a genuine interest in its continued success.
Even more companies are deploying data analytics and data reporting tools for the entire audit lifecycle. The testing of the entire population can be done in seconds and time and resources can be allocated to other actions. Implementing a robust data analytics platform will greatly assist cross-departmental functions that deliver more thorough, strategic and risk-based insights.
Data analytics- maturity
Data audit maturity is important for the Internal Audit function, reflecting the extent to which the audit department has designed and implemented analytics across the audit lifecycle using the risk-based approach, focusing on business risks. Analysis of the relevant literature shows that the need for innovation in the accounting profession is widely supported in academic research and closely monitored by regulators (Chan & Vasarhelyi, 2011; ACCA, 2016; IAASB, 2016). Furthermore, regulatory bodies such as the IAASB (International Auditing and Assurance Standards Board) are investigating and monitoring the increased role of DA (Data Analytics) in the accounting profession, discussing the benefits and limitations associated with it.
The use of data analytics is in the same direction, as indicated by the report of the researcher Protivity in the report mentioned above. An overall risk-based approach requires auditors to understand the true business of the organization. Data Analytics technology is used by all survey companies throughout the audit process cycle.
In your company, have you integrated risk-based auditing into the process of the audit function? The third line of defense, which is the independent and objective voice of the bank, has applied the risk-based approach to its work. We use basic desktop data analytics techniques in our audit and risk processes, and people are becoming more familiar with these new technological methods.
In our company, the risk-based audit approach is taken into account during the formation of the audit plan. 32 Data analytics and disruptive technologies will change every industry, the same will happen in the audit functions. The risk-based approach using data analysis methods are just some of the methodologies that have supported the big four.
Review
EMPIRICAL RESEARCH PART
Methodology results (Greece)
It seems to be a common understanding that risk-based auditing is more useful than the traditional auditing approach, and certainly technology can be very useful. In fact when a few questionnaires were administered at the beginning of this research as this was the initial preferred research method, the data collected was not reliable in content as the level of understanding of risk based auditing appears to be in its infancy. . The findings revealed that the risk-based audit approach was not practiced. Since the basic idea of risk-based auditing in weather is still used in practice, it did not make sense to question the application of analytics in the entire audit lifecycle, even more so. embracing technologies such as data mining and data description methods (data visualization methods).
However, after talking to some first responders about using the analytical method and the risk-based concept, auditors are quick to advocate that technology helps their work. After interviewing people from companies across different industries, it turned out that although data analysis is part of the audit process, the concept of risk-based audit is still in an early stage of adaptation. Mandates from regulators already seem to force the adoption of a risk-based approach, while at the same time the supervisory body has the knowledge and monitoring mechanism to propose improvements.
The insights provided from this research show that although the risk-based concept has been adopted overseas from audit departments, in Greece we have a long way to go. In addition, the auditor must perform a risk-based audit approach through attestation procedures that respond in conjunction with specific risk. The foundation for risk-based internal audit process which is basically understanding the risks associated with key business operations in accordance with established controls designed to reduce either the likelihood of the risk occurring or its impact if it does occur was not adopted.
But it seems that companies will gradually be strengthened towards implementing the risk-based audit approach.
Audit in new business Environment
- Digital Transformation/Disruption
- New role for Auditors
When organizations want to gain more value from internal auditors, an enterprise risk management function must be established. The ERM function and internal audit departments must work together as recommended by the 3 lines of defense model and not work in silos. Future audit requirements include incorporating data analytics and further technology capabilities into audit engagements to provide deep insights, improved risk monitoring and process efficiencies. Leveraging Data Analytics and Continuous Auditing Processes for Improved Audit Planning, Performance and Efficiency, available at http://www.kpmg.com/us/en/issuesandinsights/articlespublications/documents/dataan analytics-continuous-auditing.pdf.
I don't think everyone involved in the internal audit department understands the concept of risk, but I give them direction. In terms of data analysis, we are not at a mature stage yet, but small steps have been taken. The objective of internal auditing is to ensure the effectiveness of management, risk management and internal controls.
The risk management and internal audit departments must work together and to provide independent assurance on the risk management department, it is better to have a specific function with a separate senior manager. We are using data analytics methods and will be launching new ACL audit software next year. The new edition aims to expand the roles of internal audit functions to a new perspective, including capabilities such as proactive insightful thinking, business protection and a future-focused approach.
RBIA enables internal audit to provide assurance to management that risk management processes are effectively managing/mitigating risks, in line with risk appetite. IA also promotes the implementation of data analytics in audits, highlighting the opportunities technology offers to audit functions to add value to their organizations, improve audit assurance, fraud detection and SarbanesOxley testing. The big four have adopted the risk-based approach and are applying innovative technology tools such as data analytics, artificial intelligence and machine learning to help transform their professionals into future consultant experts to deliver high-quality services to their clients.