RISK MANAGEMENT AND AUDIT SERVICES
Add to your Conference/Group
Add your comments:
Insert YouTube Videos inside your Slideworld presentation Copy and paste the video URL from YouTube, choose where to insert the video, and press “Submit”. The video will play in your slideshow after sometime.
Enter YouTube video URL
Enter Slide No where you want to insert youtube videos
Post a comment
Post Comment on Twitter
Post Comment on SlideWorld
Subscribe to follow-up comments
SlideWorld will not store your password. SlideWorld will maintain your privacy.
Subscribe to follow-up comments
Slide 1 :
RISK MANAGEMENT AND AUDIT SERVICES
Slide 2 :
Risk Management and Audit Services 2 AGENDA Risk Management and Audit Services Organization, Charter & Mission Types of Audits FY08 Audit Plan Approach Audit Process and Your Audit
Slide 3 :
Risk Management and Audit Services 3 ORGANIZATION OVERVIEW Director, Risk Management & Audit Services Joint Committee on Inspection Vice President for Finance & Chief Financial Officer Risk Management Committee
Slide 4 :
Risk Management and Audit Services 4 ORGANIZATION
Slide 5 :
Risk Management and Audit Services 5 MISSION “To Assist University Management and Governing Boards in Identifying, Managing and Mitigating Risk and Ensuring Risk Management Processes are Integrated Into the University’s Business Practices and Academic and Research Activities”
Slide 6 :
Risk Management and Audit Services 6 WHAT WE OFFER TO THE UNIVERSITY Risk Management & Audit Services (RMAS) provides an independent, objective assurance and consulting service which is used within Harvard University as an integral part of its risk management and control processes. RMAS helps the University leadership accomplish its objectives by bringing a systematic disciplined approach to evaluate & improve the effectiveness of risk management and control processes. We do this by: Assessing the state of internal control, Helping the University community understand & assess risk, Evaluating the adequacy of techniques to manage risks, Providing an assessment of risk management and control processes for operating effectiveness and efficiency, and Identifying and recommending changes that add value.
Slide 7 :
Risk Management and Audit Services 7 RISK MANAGEMENT & AUDIT SERVICES’ ROLE Independence Independent mental attitude to make objective professional judgments Objectivity Report matters as they are, rather than as one would like them to be Value-added services Recommend cost effective measures to improve controls Promoter of change Work with management to ensure implementation
Slide 8 :
Risk Management and Audit Services 8 OBJECTIVES Effective risk management and control processes includes evaluating: Achievement of operational goals and objectives Effective and efficient use of resources Compliance with significant policies, procedures, laws & regulations Reliability and integrity of information Safeguarding of assets
Slide 9 :
Risk Management and Audit Services 9 TYPES OF AUDITS
Slide 10 :
Risk Management and Audit Services 10 TYPES OF AUDITS Financial & Operational Audits Department/sub-department/function reviews Review financial and operational controls Integrated with IS to include systems University-wide audits Information Systems IT Governance audits Evaluate system security, data integrity, reliability and availability Assess IT policies and procedures for good information technology controls Compliance Assess compliance with policies and procedures Assess compliance with laws and regulations Special Projects/Consulting Advisory services Special investigations Policy development Post-Audit Appraisal (PAA) Assess resolution of audit findings Does not constitute a re-audit Performed within 18 months of full audit
Slide 11 :
Risk Management and Audit Services 11 AUDIT PLANNING PROCESS
Slide 12 :
Risk Management and Audit Services 12 AUDIT PLANNING PROCESS – TWO PHASES Risk Assessment Process Identify University risks and concerns Prioritize risks based on exposure, impact and mitigating factors Determine operations significantly impacted by these risks Assess unit/operating entity risk based on risk factors (size, complexity, last time audited, etc.) Rank projects Ensure appropriate representation across University Communication Process Present audit plan detail to areas, units and operations Plan approved by Vice President for Finance and Joint Committee on Inspection
Slide 13 :
Risk Management and Audit Services 13 FY08 RISK FOCUS Strategic Planning Student Safety Globalization Compliance (Research, Policy, Infrastructure) Governance Security/Privacy Construction Business Resumption Planning Vendor/Contract Management
Slide 14 :
Risk Management and Audit Services 14 AUDIT PROCESS
Slide 15 :
Risk Management and Audit Services 15 AUDIT PROCESS – FOUR DISTINCT PHASES PLANNING FIELDWORK COMMUNICATION OF RESULTS FOLLOW-UP Announcement Letter Scoping Objectives & Scope Document Fact gathering Apply analytical audit techniques: Testing, Analyzing, Interpreting, Corroborating, Documenting Conclude on internal controls Draft report – Issues in grid format Final report – Summary and issues in grid format Follow-up letters on significant findings within four months of audit Post-Audit Appraisal (PAA) - Based on significance of full audit issues. Results published in a report.
Slide 16 :
Risk Management and Audit Services 16 FOUR DISTINCT PHASES TIMELINE PLANNING COMMUNICATION OF RESULTS FOLLOW-UP Scoping interviews and data gathering – two weeks Information and document requests to client Client gathering of information & supporting documents – two weeks On site Ongoing communication on status of work Mid-audit status meeting, where appropriate Draft issues grid Exit meeting Four weeks Draft report with summary – issues in grid format Final report issuance Four weeks Survey in two weeks; respond in two weeks Follow-up letters on significant issues within four months of audit Post-Audit Appraisal (PAA) - within 12-18 months of full audit PAA follows same process as an audit PLANNING FIELDWORK COMMUNICATION OF RESULTS FOLLOW-UP
Slide 17 :
Risk Management and Audit Services 17 AUDIT PROCESS – ADDITIONAL DETAILS Fieldwork: Auditors will request regular meetings with management to communicate progress and potential issues to date. Auditors will schedule meetings with responsible individual to review questions on information received or request additional information. We ask that meetings be held and information be provided on a timely basis to ensure an effective and efficient audit process for all. Auditors will close all facts, issues and findings with the responsible individual and work with that individual to determine “Agreed-to actions.” Issues will be presented in writing to promote understanding and agreement.
Slide 18 :
Risk Management and Audit Services 18 AUDIT PROCESS – ADDITIONAL DETAILS Communication: We will provide you with a draft report with all findings and agreed-to actions in grid format at the end of fieldwork. We will arrange an exit meeting to review the draft and discuss the facts and actions. This is your final opportunity to respond to the facts and actions. Changes will be discussed and a revised grid will be provided within three business days. Your comment period on this revised grid is five business days. A draft report with a summary and rating will be provided within seven business days of completing the revised grid. Your comment period on the draft is five working days, as the comments should be related to the summary. To avoid misunderstandings, we ask that this communication be in writing, in one document, and include comments on all findings included in the report. Generally, communication on the grid and the report will be verbal. If the report is extensive and comments are numerous, we ask that communication be in writing, in one document.
Slide 19 :
Risk Management and Audit Services 19 AUDIT/PROJECT RATINGS Audits / projects are rated in the report summary section on the effectiveness of the organization’s or function’s system of internal control. Good Adequate Needs Improvement Inadequate Audit / project issues are rated in terms of the probability, seriousness and impact of the occurrence of risk events. High Medium Low
Slide 20 :
Risk Management and Audit Services 20 THANK YOU Thank you for: Your assistance in planning the audit. Your help and cooperation in completing the fieldwork and developing the recommendations. Please visit our web site at http://vpf-web.harvard.edu/rmas/
Management of Conges...
Management of Non ST...
Managing Asthma Asth...
Management of Diabet...
Free Powerpoint Templates
4 Years ago.
739 Views, 0 favourite
The Web: sharing of information; The Grid: sharing everyting; The Grid is rapidly transforming scie
The Web: sharing of information; The Grid: sharing everyting; The Grid is rapidly transforming science, engineering, medicine and business …www.assessgrid.eu/.../AssessGrid/usermounts/slides/cie2006.ppt?PHPSESSID=027eb18bde38e9c8c53d176ec0ec03d1
More By User
Flag as inappropriate
Select your reason for flagging this presentation as inappropriate. If needed, use the
form to let us know more details.
Other Terms Of Service Violation