e-Tools for Auditors

 

February 2012

Auditing Governance Risk and Compliance

 

 

The AuditNet Newsletter is sponsored by:

ACL CCH TeamMate Thomson Reuters

 

Join The Professional Audit Information Networking Group

 

CCH TeamMate is a database-driven audit management system that streamlines the audit process by providing integrated tools for documentation, report generation and file sharing.

http://cchteammate.com/Products/TeamMate/TeamMate_Overview.html

 

 

Introducing ACL Acerno

 

ACL Acerno is a new Microsoft Excel add-in for audit. Purpose-built for auditing, Acerno provides the most efficient way to investigate your ACL data and results. Learn more and view a demo.
http://www.acl.com/acerno/default.aspx?mtcPromotion=17633

 

Read The Connected Roles of Internal Audit and Compliance, for a look at how compliance and internal audit intersect in the new world of connected GRC. Explore how these roles remain separate and where they share responsibilities? Examine how they can work together and leverage one another to drive business value. Download today!

 

http://accelus.thomsonreuters.com/content/connected-roles-internal-audit-and-compliance-701e00000004sel

 Follow AuditNet on Facebook

 

Post a Job for Under $200

Follow AuditNet on

Twitter.com

 

what
job title, keywords
where
city, state, zip

 

       




 

 

 

 

 

 

  

2011 IT Audit Benchmarking Survey Report

 

Technology is permeating virtually every aspect of business today. From email and mobile communication tools to global complex ERP systems and extensive internet activities, most companies today rely on technology to the point that without it, their operations would grind to a halt. Of course, such a heavy reliance on technology also creates a high volume of significant risks that companies must assess, manage and monitor appropriately. This was the case before the introduction of social media channels such as LinkedIn, Facebook, Twitter and now Google+ that employees can access any time of the day, if not on company systems then certainly on personal computers or mobile devices. This access has created an entirely new realm of IT risks that companies today are just now beginning to define and understand how to manage.

It is in this dynamic IT environment that Protiviti conducted its inaugural IT Audit Benchmarking Survey, seeking to analyze some of the many underlying IT audit trends and gaps evident in organizations today. For the purposes of this study, we define “IT audit” as the process of collecting and evaluating evidence of the management of controls over an organization’s information systems, practices, controls and operations. The evaluation of evidence obtained through the IT audit process determines if the information systems are safeguarding assets, maintaining data integrity, and operating effectively to achieve the organization’s goals and objectives. This may include traditional audits of technology processes and components as well as integrated audits for audit activities, technology-dependent regulatory processes (i.e., privacy) or data analytics support. These are some of the key trends and takeaways from the study that are discussed further in our report:

  • The growth and prevalence of technology throughout most operations in a company are outpacing the assessment, management and monitoring of related IT risks.
  • IT risks do not garner nearly enough attention in organizations today, especially not in small companies.
  • A large percentage of organizations are not complying with IIA Standard 2110.A2, which requires the internal audit function (usually through IT audit) to assess whether the organization’s information technology governance sustains and supports its strategies and objectives.
  • Many organizations do not have the requisite skills and capabilities to assess their key IT risks adequately.
  • A surprisingly large number of organizations fail to conduct an annual IT risk assessment.
  • IT audit functions in North America invest significantly more time on compliance-related activities than these functions do in other regions of the world.

We would like to thank the close to 500 professionals (including chief audit executives, audit directors, and IT audit directors and managers, among many others) who participated in this year’s survey.

 

For the complete survey click here!

 

This article was contributed by Protiviti KnowledgeLeader, an online service providing tools, templates, and other resources for internal audit and risk management. Free trials available at www.knowledgeleader.com.

 

Growing Need for Internal Auditors to Determine Effectiveness of Technology Efforts, According to CCH TeamMate Survey

Internal Audit Technology Survey Aims to Help Auditors Increase Technology Value

 

MINNEAPOLIS – Dec. 21, 2011 – Budgetary trends show companies are putting an increased focus on technology in the audit space, but internal auditors have room for improvement when it comes to determining how effectively they are using technology, according to the CCH TeamMate Internal Audit Technology survey.

 

The survey, conducted in September of this year, was completed by 585 internal auditors across the globe who use the TeamMate audit management system, offered by Wolters Kluwer’s ARC Logicsbusiness. The survey was developed to help internal auditors see how their peers are using technology, and consider ways they can use technology more effectively.

 

More than 35 percent of the survey respondents experienced an increase in their technology budgets this year. About 30 percent expect their technology budgets to increase over the next two years and more than half predict technology allocations will stay about the same. Less than 15 percent expect budgets to drop.

 

However, while roughly two-thirds of respondents say most of their staff has proficient technology skills, about 80 percent indicate their audit departments haven’t determined how effectively they are leveraging technology. 

 

“There are a number of factors that can help auditors better determine the effectiveness of their technology initiatives, including ongoing training programs and the implementation of key performance measures,” said Mike Gowell, vice president and general manager, CCH TeamMate. “Technology can help ensure key business risks are being managed appropriately and can greatly enhance auditors’ productivity, but it requires ongoing assessments to reap those benefits.”

 

CCH TeamMate’s internal audit experts recommend a five-step approach in increasing technology value:

 

  1. Convey the Right “Tone at the Top” – Strong leadership and support from the chief audit executive (CAE) can be a key factor in improving technology value at an organization.
  1. Place a High Priority on Leveraging Technology to Boost Performance – Members of an internal audit department’s staff may be using technology tools, but beyond that,  they need to also fully understand all of the applications available to them.
  1. Hire Technology Skills Selectively – Hiring outside talent with experience in data analytics and data mining can jump-start implementation of major technology initiatives.
  1. Train, Train, Train – It’s not only about mastering technical skills, but also retaining them.
  1. Measure What Really Matters – Have performance measures in place to determine how effectively you are leveraging technology.

More information about this approach is included with the full results of the CCH TeamMate Internal Audit Survey online.

AuditNet® Community

Sponsor News!

Thanks to ACL, CCH TeamMate and  ThomsonReuters for sponsoring the newsletter!
 

Training Institute

a Wholly Owned Division of AuditNet®

in conjunction with:

 

AuditNet and Richard Cascarino & Associates developed training for IDEA Software and IT Audit. This training will start this month as follows:

 

IDEA Software Training

1. IDEA Basics, Getting Started, and Basics of Importing Data February 15, 2012
2. Importing Data - The Complete Course in All File Types and Data Tricks to Get Your Data Ready for Analysis February 28, 2012

 

IT Audit Training

1. Fundamentals of IT Auditing  February 14, 2012

Technology and Auditing


CAATT Tales

 

Welcome to CAATT Tales a new feature column that focuses on computer assisted audit tools and techniques (CAATTs) to increase audit efficiency and effectiveness. Donald E Sparks, CIA, CISA, ARM and Vice President Industry Relations for Audimation Services, Inc. suggested a column titled Moving Forward with Data Analysis Q&A to provide a forum for readers to submit questions about how to best conduct internal auditing related data analysis activities. AuditNet renamed the column to CAATT Tales and expanded the scope to include all uses of technology to enhance audit efficiency and effectiveness. Audimation Services Inc., a Houston TX based company is the sole U.S. distributor of IDEA, CaseWare™ Monitor and SmartExporter for SAP

 

Come back next month for a new article!

Organizational Internal Controls for Social Media

by Jim Kaplan CIA CFE

(This article was written for Protiviti KnowledgeLeader and appeared April 11, 2011)

 

As online social media continue to gain mainstream acceptance, traditional face-to-face contact is taking a back seat as the networking method of choice. Facebook, Twitter and LinkedIn are gradually changing the protocol of how businesses and professionals operate.

 

In the past, for someone to do the bulk of their communication online would have been unusual, whereas now that is the norm. Everyone is e-mailing, blogging, using wikis or all of the above to give their business a boost. It is a paradigm shift that has brought with it new demands on building an internal control environment that specifically addresses the social media process.

 

For the rest of the story click here!

 

See the summary results of our survey

Social Media Risk Control & Audit Survey Summary Results

 

Social Media Risk Control and Audit

The Auditor's Role

 

Surveys have shown that increasing numbers of corporate employees are using social networking sites in the office. Many view this as a good thing as social media is a powerful tool for collaboration, and employees searching for answers to work-related questions often rely on networking tools. But many managers and employees do not recognize the organizational risk exposures posed by these tools.

 

I have written several articles on this topic and one is included in this newsletter. But in order to assess the impact this phenomenon is having on auditors I felt that the timing is right for a survey.

 

This survey is now closed and summary results can be accessed now. We will follow up with a complete report and conclusions.

 

Social Media Risk Control & Audit Survey Summary Results

 

 

AUDITNET® SURVEYS

 

Study Shows Auditors Slow to Adopt Hi-Tech Fraud Detection Strategies
Plus: Top 10 reasons why

Over 400 Auditors Respond to the AuditNet 2012 Survey on Fraud Detection Techniques Using Technology

The professional standards relating to the auditor’s responsibility for detecting and preventing fraud changed in 2009 when the Institute of Internal Auditors (IIA) updated the International Professional Practices Framework (IPPF). Auditors must now consider fraud risks and red flags as part of planning audits. In conjunction with these changes the IIA released Practice Guides for Internal Auditing and Fraud, Fraud Prevention and Detection in an Automated World (GTAG 13) and Data Analysis Technologies (GTAG 16).  ISACA also issued a White Paper titled Data Analytics – A Practical Approach.

 

According to GTAG 13:

Data analysis technology enables auditors and other fraud examiners to analyze transactional data to obtain insights into the operating effectiveness of internal controls and to identify indicators of fraud risk or actual fraudulent activities.

 

Most audit professionals and fraud examiners are aware of the ACFE Report to the Nation survey covering how frauds are detected, who commits fraud and the types of frauds perpetrated.  The ACFE survey found that over 40% of reported frauds are uncovered by tips. The report does not however ask questions relating to the use of technology in uncovering frauds. AuditNet is conducting a survey to answer the question and determine fraud detection techniques using technology.

 

Here is a link to an article in CPA Trendlines with the preliminary results. The survey closed and we are in the process of finalizing the survey results and support.

 

We are also developing surveys for the following topics. If you have an area that you feel would add value please share it with us.

 

The State of Audit Management Software Technology Usage

Risk Control and Audit of Mobile Devices

Flowchart Best Practices for Internal Audit

Best Practices in Acquiring and Importing Data

Audit Software Capabilities Survey

 

AuditNet Past Surveys

   

AuditNet® conducts periodic user surveys based on relevant or hot topics as well as areas suggested by our users. Click here for a list of the surveys that we have completed.

 

If you have an idea for a survey or would like us to conduct a survey for a particular subject send us an email. We are particularly interested in surveys that explore the use of technology for auditors.

What's Happening Next Month?

The theme of this month's newsletter is Auditing Governance Risk and Compliance and  you will find articles and links to resources focused on that subject. Next month's theme is CAATTs and Auditors. We will be reviewing two new books next month; Business Continuity and Risk Management and Root Cause Analysis Handbook.  If you have an article or resource on the theme please send it along to the editor.

Jim Kaplan, founder of AuditNet will be speaking at the CCH TeamMate User Forum in Orlando (October 2-5, 2011). I look forward to meeting TeamMate Users at this event.

 

Need CPE? Sign Up now for the this month's Webinars by clicking here!

 

Remember! Clicking on sponsored ads and visiting their sites helps support AuditNet®. 

AuditNet® Communication Skills

 

Now Available on Kindle

Latest Edition Job Loss

 

 

Product DetailsProduct Details

 

Words That Comfort

 

Follow AuditNet on

Twitter.com

Finding the Best Resources for Auditors

If there is one area that we have excelled at it is finding the best audit resources for auditors.

 

AuditNet has a large number of audit programs, checklists, matrices and more on audit related topics. We also are working with other subject matter experts to develop audit programs, articles, guides, training and more on all things relating to audit, fraud, compliance and more.

 

If are interested in the best methods of researching for audit topics or to have AuditNet present at your meeting or conference then just send us an email.

Update on AuditNet® Networking and Information

 

AuditNet® has established new networking opportunities for auditors through social networking sites such as LinkedIn, Google Groups, Yahoo Groups and more. LinkedIn's Professional Audit Information Network has over 4,800 members. What a great tool which includes group discussions, news and the opportunity to network with other professionals around the world!  

 

AuditNet continues building the library of resources with new audit programs, monographs, fraud analytics into audit work programs and more to provide auditors with a new tools for compliance with the standards. We are working on a  monograph on Building Fraud Detection into the Audit Process.

 

New audit programs are also now available.  Subscribers may access these documents now.

 

AuditNet articles will now include the ability to provide feedback and comments. We are looking at a way to rate audit programs as well. Stay tuned!

 

AuditNet is working on several fronts to enhance the audit programs and incorporate audit content into other software applications. One of these applications will begin offering Software as a Service (SaaS) solutions to requirement management. AuditNet has always supported new solutions and has encouraged start ups and other software vendors to enhance their products for both the mainstream as well as the small internal audit functions. We will continue to seek out opportunities that offer the global audit community new ways of doing business.

Benefits of Registration

AuditNet continues to forge new relationships with software vendors, professional associations, and audit and accounting sites to provide auditors with access to audit work programs.

 

Group Access to AuditNet Audit Programs.

 

Join the other groups such as ACL, CCH TeamMate, Protiviti KnowledgeLeader and the Association of Healthcare Internal Auditors that have access to all of the AuditNet audit programs.

 

If you want your group or professional association (IIA, ISACA, ACFE, ACUA, ACUIA etc) to have transparent access to AuditNet audit programs and other content as a benefit of membership contact your professional association official or group leader and ask them to pursue this with AuditNet.

 

Fraud News Feed

 

Go to the AuditNet Fraud Resource Center and check out the fraud news feed to keep up to date with media reported fraud happenings. 

 

The best way to find all the resources on the site is by going to the AuditNet Library or use the site search.

The 10 Tell-Tale Signs of Deception

The Words Reveal

By PAUL M. CLIKEMAN, PH.D., CFE

 

Suspects and witnesses often reveal more than they intend through their choices of words.

 

Here are ways to detect possible deception in written and oral statements.

 

The manager of a fast food restaurant calls the police late at night to report that an armed robber had entered the restaurant while the manager was alone in the office finishing some paperwork. The manager said the gunman had stolen the entire day's cash receipts — a little more than $4,000. The manager had reported a similar robbery at the restaurant about six months earlier. No other witnesses were present at either alleged robbery. The restaurant owner learns from police investigators that armed robbery is extremely unusual in the surrounding neighborhood. Also, the owner knows that the manager's wages have been garnished for the last year for nonpayment of child support. The owner hires you, a CFE, to investigate whether the manager is filing false police reports to cover his thefts. You begin your investigation by asking the manager to write a description of the evening's events.

 

For the rest of the article from the latest ACFE Fraud Magazine click here.

 

This article is from Fraud Magazine, the professional magazine of the Association of Certified Fraud Examiners and is a regular feature of AuditNet under a new cooperative relationships and partnership with professional associations in the interest of sharing resources for the benefit of the global AuditNet® community. .

 

ACFE FraudInfo Newsletter click here!

Coming Attractions!

 

AuditNet Begins Compiling an inventory clearinghouse of Standard Audit Condition Statements (SACS). 

 

AuditNet is building a library of standard audit conditions (comments/observations/findings). Similar to the audit programs inventory this will create a clearinghouse of well written findings to jump start development of audit findings. You will still need to add the other elements such as criteria, cause and effect however we have observed over the years that many conditions repeat themselves.
 

Why recreate the wheel if someone has already crafted a well written condition statement?

 

AuditNet® is working on an audit program development service. If we don’t have an audit program in our inventory that meets your needs we will develop a program if you can provide the type of program you need, along with the objectives, purpose and scope. This will be a fee based service. Stay tuned for the roll out of this innovative new program.

 

We have chosen a firm for the AuditNet® site redesign. The prototype for the site redesign is available at http://auditnet.workpapers.com In conjunction with the redesign project we have begun classifying the audit programs by category. This is an important step in creating a database for subscriber access using search capabilities. As part of the integration we will utilize techniques to capture download by program as well as rating criteria to highlight which programs subscribers find most useful. We expect to role out the redesign in the fourth quarter of 2011.

 

Based on the success of our first free Webinar we are exploring opportunities for additional topics for the remainder of 2011. We will offer free CPE for future events utilizing quality presenters. Stay tuned for announcements and promotions!

 

The AuditNet Social Media - Risk, Control and Audit Survey 2011 is closed and thanks to the 167 auditors who responded. The summary results are now available and we will be issuing a report on the survey next month.

 

We are working on surveys for cloud computing, mobile devices and flowchart software and the impact of technology on internal audit then and now. We will be launching these surveys later this year.

 

AuditNet continues working with professional associations to provide access to the audit program inventory. If your professional association is not providing their members with access to AuditNet® then they are missing a great opportunity. Let your association know that access to AuditNet® would be a value added benefit they could provide to members!

 

The AuditNet Monograph Series  provides useful guides for all levels of auditors from juniors right up to audit directors. We are currently working on new guides covering audit basics as well as emerging technologies. These guides will be available to registered subscribers. If you are interested in developing a monograph on a contract basis, contact us.

 

AuditNet® continues adding new specialized resources for auditors. Watch the newsletter and keep checking the Library page for updates and new resources.

 

AuditNet® Featured Books and Reviews

 

      

The AuditNet® Audit Bookstore Corner

Looking for books on auditing related topics? We suggest using the AuditNet® bookstore. The bookstore focuses on Internal Audit but includes other related subjects as well. AuditNet® uses Amazon to power the bookstore so each purchase you make through this link helps support AuditNet®.

Do You Kindle? Get yours today!

 

AuditNet® Data Analysis Corner

 

 

Pleier Corporation has partnered with AuditNet® and FraudAware® to publish “Data Mining for Payroll Fraud” webinar on CD-ROM click for details.  This is the first publication of a “Data Mining for Fraud Series”. 

 

A very popular joint AuditNet(R) and Fraudaware(R) Webinar of 1 hour and 42 minutes of video recorded live and distributed on CD-ROM.

 

Here are some of the benefits of this type data mining and analysis:

- Reduce control weaknesses before fraud escalates
- Determine cost impact of fraud
- Analyze complete data sets for fraud
- Efficient and cost-effective ability to automate for continuous monitoring/auditing
- Uncover specific fraud scenarios and schemes

By attending you will receive expert guidance on:

- Costliest forms of internal and external payroll fraud
- Who commits payroll fraud
- Gathering accurate data for effective payroll fraud data analysis
- Powerful and user-friendly audit automation tests and techniques
- Using data analytics results to improve payroll fraud preventative controls
- Using meta-data and cross-referencing to produce better results
- Tools, Techniques and Tips of Data Mining Success
- Much MORE

AuditNet® Vendor News

Check here for the latest news from our AuditNet®

Kindle - Get Yours Today!
 
 

ACL Services announces its expansion into the electronic work papers market
 

The acquisition of Workpapers.com will grow ACL’s solution portfolio and create the first integrated audit technology offering in the market

 

ACL Services Ltd., the solution provider of choice for data analysis within audit, announced its expansion into the electronic work papers (eWP) market with the acquisition of Workpapers.com.

ACL’s market-leading audit analytic solutions and the Workpapers.com audit management system will be integrated for a seamless audit experience that spans the complete audit process.

“The addition of Workpapers.com to our product portfolio is an exciting opportunity for ACL and our customers and partners around the world. For 24 years, ACL has worked with thousands of internal audit organizations, and we understand the challenges these departments face,” said Harald Will, CEO of ACL Services. “This acquisition puts us in the position to provide a complete audit technology offering that is integrated, efficient and meets the most pressing needs of audit departments today.”

A recent survey with over 8,000 ACL customers indicated a 75% interest in an integrated analytics and eWP solution to improve efficiency and increase the use of technology in their audit departments.

“ACL is also significantly increasing its R&D investment in our core analytic solution to improve usability and reporting, and for expanded continuous auditing and monitoring capabilities,” said Laurie Schultz, President and COO of ACL Services. “Over the coming months, we plan to share with our customers and partners this new strategic roadmap and continue to engage them in our vision for ACL.”

"I am pleased that Workpapers.com is joining an organization with the brand and reputation of ACL. For years they have been at the forefront of the audit analytic technology market and now want to expand their mark in audit management systems," said Dan Zitting, founder of Workpapers.com. Zitting will transition his role at Workpapers.com to become the new Vice President of Working Papers Software for ACL Services.

 

Training Institute

a Wholly Owned Division of AuditNet®

in conjunction with:

 

Anti-Fraud Webinars

 

Get a FREE Kindle!!!

 

Hurry: Two February Anti-Fraud Webinar Opportunities...

...And Until Feb. 7 Receive a FREE Kindle!

February Fraud Special

 

AuditNet and FraudAware have released the 2012 schedule of their widely acclaimed anti-fraud Webinars. There are two series together offering 5 packages with 5 Webinars in each package for a total of 49 CPE credits.

 

Three of the packages cover key topics related to using data analysis to fight fraud ... and 2 cover general operational fraud topics. In addition, there is a bonus Webinar offered in each series.

 

Every Webinar features a presentation by one of the audit or anti-fraud profession's top experts.

 

PLUS: When you sign up for any two Webinar packages by Feb. 7, we'll have Amazon ship you a FREE Kindle!!

 

Visit http://www.auditnet.org/2012Webinars.htm for full details and  limited-time Early Bird reduced pricing.

 

Additional Discount Option: Sign up for two of February's three Webinars and attend the third one for $1. Details: http://www.auditnet.org/FASTSP201202.htm

 

February 2012 Fraud Detection, Prevention and Audit Using Data Analysis Webinars

What Auditors need to Know Today about Forensic Audit Investigation Using Data Analysis (DA-1) Wed February 8, 2012, 11 AM -1:00 PM EDT.  $99
Secrets of Uncovering Financial Statement Fraud Using Data Analysis (DA-2) Thur., February 16, 2012, 11 AM -1:00 PM EDT.  $99

Sign up for both and for $2 more attend
The Critical Role of Control Self Assessments in Your Anti Fraud Program on February 22, 2012

And of course with each Webinar you attend, you earn up to 2 CPE credits.


Missed any of our Webinars? You can now purchase the recorded events and slides..

Training Institute

a Wholly Owned Division of AuditNet®

 

February Webinars

Click on the links below for the listed Webinars (may be part of a package however they are also available for individual sign up)

 

  1. Wed February 8, 2012, 11 AM -1:00 PM EDT What Auditors need to Know Today about Forensic Audit Investigation (Including Data Analysis) (DA-1) . $99

  2. Tues February 14, 2012 2 PM - 4 PM EDT Fundamentals of IT Auditing $79

  3. Wed February 15, 2012 11 AM- 1: PM EDT Completing an Accounts Payable Audit With ACL $89

  4. Thur., February 16, 2012, 11 AM -1:00 PM EDT Secrets of Uncovering Financial Statement Fraud Using Data Analysis (DA-2) . $99

  5. Wed., Feb 22, 2012, 1 PM - 2:15 PM EDT The Critical Role of Control Self Assessments in Your Anti Fraud Program -$75

  6. Thur., Feb. 23, 2012, 11 AM -1:00 PM EDT Graphing Data in Excel – Scattergraphs with a focus on the Audit -$89

  7. Tues., Feb 28, 2012, 11 AM -1:00 PM EDT IDEA Basics, Getting Started, and Basics of Importing Data - $89.

Click on the following to sign up for individual Webinars or packages (all Webinars are recorded for viewing at your convenience. We can only provide CPE certificates for attendance at the live Webinar)

 

2012 Training without Travel Series Available

ACL Software Training 12 Webinars $899

IDEA Software Training 10 Webinars $750

 IT Audit Training 5 Webinars $300

Audit Software Training 12 Webinars $899

Fraud Detection General 10 Webinars $599

Fraud Detection Using Data Analysis 15 Webinars $1,099

 

AuditNet Launches the

Training Institute

a Wholly Owned Division of AuditNet®

in conjunction with

network  

February Data Analytics Special

 

ACL Software Training 12 Webinars $899

Audit Software Training 12 Webinars $899

 

Attribute Sampling Update
by Mike Blakely

Attribute sampling is widely used by auditors in tests of compliance. Generally, audit samples are used to test the adequacy of internal controls.  An audit sample results in a sample error rate which can then be used to estimate a range of probable errors in the population being tested.  This range is known as a confidence interval because the auditor has some degree of confidence that the overall error rate will be within this interval or range.  Based on whether or not the range is acceptable, the auditor may decide to perform other audit tests.

 

Click here for the rest of the story!

 

Previous Articles from Mike Blakely:

Give Your Stat Sample the Boot Part 1

Give Your Stat Sample the Boot Part 2

 

AuditNet® Exclusive

Online course - Fraud detection using analytics

This is a case study regarding a fictitious mail order company where an allegation of fraud has been received. A SAS 99 brainstorming session was held, and 11 critical expectations were developed during that brain storming session. This is a hands on course. All data and software needed are provided. The case study can generally be completed in less than four hours.

Objectives

Learn how to use and apply key analytic procedures to detect fraud.

Pre-requisites

Internet browser (Internet Explorer, FireFox, Opera, Chrome). Most tablets and mobile devices with Internet browsers should also work.

Cost None.

CPE Not available.

Length Course takes approximately four hours to complete.

Registration Not required, but must be completed if e-mail support is needed or quizzes are to be taken.

Getting started Click on course link , select the course "Fraud detection using analytics" click "Login as a guest".

Questions or additional info Mike.Blakley@ezrstats.com

Optional registration E-mail contact info to address above. You will receive an id and password within 24 hours. Registered participants can receive e-mail support, post on the forum and take quizzes.

 

AuditNet® Free CAATTs Webinar Was a Success!
 

CAATs are tools specifically created to help Auditors – they are extremely useful and the benefits are well known, yet there are still many audit departments not using them.

 

Watch for future free Webinar events offering value added topics for your audit department and staff!

 

Click here for the link to the recording!

 

Interested in Writing for AuditNet?

Looking for a Few Good Writers

Writing audit reports are very challenging for most auditors. A great way to hone your writing skills is by moving outside the box! Consider writing an article for AuditNet based on your experiences as an auditors. We are always looking for practical how-to articles on all aspects of the audit process. If you are an IIA member this is also a great way to earn CAP points for your local chapter. Send your articles to editor@auditnet.org TODAY!

 

AuditNet Editorial Guidelines

Based on the number of articles being contributed to AuditNet we have developed editorial guidelines for future submissions.  If you are planning to write an article please review the guidelines before submission.  We appreciate receiving material from the global audit community in the interest of sharing knowledge. We are also in the process of guidelines for book reviews and other material submitted for inclusion on AuditNet.

 

Conference News

Internal Auditing and Fraud

AuditNet® Plans More e-Monographs on Fraud Topics

 

AuditNet® is moving forward with e-Monographs on fraud and other related topics that will be added to the subscriber accessible documents over the next 6 months. The planned documents will provide a foundation for a comprehensive fraud risk assessment in conjunction with internal audit requirements for detecting and preventing fraud. 

 

We have been adding at least 10 new resources each month to the subscriber material. Much of this is focused on fraud and forensics. Don't miss out on all the old and new material available to subscribers.

 

Additionally new monographs are in process for other areas of audit operations including Key Performance Indicators for Internal Audit,  Business and Transaction Cycles and Digital Audit Knowledge Resource Guide. If you would like to submit a proposal for a topic please send it to auditnet @ gmail.com

 

AuditNet® Fraud Auditing Corner

 

Fraud News

Need to keep up with fraud news and happenings? There are several options available. One is to subscribe to the free ACFE FraudInfo E-newsletter.

Another free resource is the Auditing & Fraud News. Service for research professionals. Constantly updated news and information about Business & Companies. Go to FraudNet and click on the link Click Here for Fraud News.

 

Anti-Fraud Library Moving Forward

 

AuditNet and FraudAware are working on a new anti-fraud resource for professionals.The FAL will be available to subscribers (Premium Level) and will consist of documents providing fraud scenarios, red flags and audit procedures as well as fraud policies, Webinars, PowerPoint presentation, guides and more. Following are some of the e-monographs we are planning:

 

  • Common Financial Fraud Schemes

  • Construction Industry Fraud

  • Detecting Financial Statement Fraud

  • Guide to Implementing Fraud Hotlines

  • Guide to Preventing and Detecting Fraud Using Data Mining

  • Guide to Anti-Fraud and Fraud Awareness Programs

  • Guide to Developing an Organizational Fraud Policy

  • Guide to Detecting and Preventing Worker's Compensation Fraud

  • Healthcare Fraud

  • P-Card Fraud

  • Payroll Fraud

  • Red Flags of Fraud

If you would like to participate in sharing your resources for this section of AuditNet let us know and you will be provided with a Premium subscription.

What's New at AuditNet®

 

The Latest Resources and Tools from AuditNet®

 

 

February 1, 2012 (Oakton, Virginia) AuditNet terminates relationship with RuleSphere and the GAA. After a more than 2 year agreement to cooperate and build a requirements management SaaS application, AuditNet and RuleSphere terminated the relationship.

 

January 1, 2012 (Oakton, Virginia) Registrations for the AuditNet Training Institute are now open. The links are available in the newsletter. There are early bird discounts and special offers for signing up in January!

 

December 1, 2011 (Oakton, Virginia) AuditNet launched a survey on Detecting Fraud using Technology. We also announced the creation of the AuditNet Training Institute focused on JiT training options for auditors. In conjunction with training options for auditors we have applied to be a NASBA CPE sponsor and expect approval in 2012. 

 

November 1, 2011 (Oakton, Virginia) AuditNet Begins Creating an inventory clearinghouse of Standard Audit Condition Statements (SACS).

 

October 1, 2011 (Oakton, Virginia) AuditNet® and AuditSoftware.net join forces to create an audit software portal. The first offering for this new relationship will be Web based training for data analytics.To read the full press release click here! The site redesign is under way!

 

September 1, 2011 (Oakton, Virginia) We signed the agreement and the site redesign project will begin. AuditNet® is also getting ready to launch a fee-based audit program development service that will provide auditors with an opportunity to submit requests for audit programs not currently in the inventory. We will have a team of SME's that will develop the program based on the type of program, objectives, purpose and scope.

 

Registrations using Hotmail or Yahoo no longer allowed for free trials
AuditNet® will no longer accept registrations for the free 30 day trial from Hotmail and Yahoo domains. Due to the number of duplicate (multiple) or phony registrations from these domains AuditNet will no longer activate these accounts. Registrations from Hotmail and Yahoo domains will only be allowed for premium or group subscriptions. If you have no other email available then you will need to send us a request to authorize a registration from these domains.

 

August 1, 2011 (Oakton, Virginia) The classification project was completed and will provide auditors using AuditNet® a much improved experience. We are also crossing the t's and dotting the i's for the site redesign. We are projecting that the new site will be launched in the 4th quarter of 2011. We are working on vendor sponsored Webinars that will provide our community with value added information along with free CPE. Stay tuned!

 

July 1, 2011 (Oakton, Virginia) Our classification project is moving forward in preparation for the site redesign. We will start using the classification structure for categorizing and preparing for new additions to the resources. The social media survey is still open and we look forward to your participation. We are developing new surveys for audit and flowcharts, cloud computing risk, control and audit, mobile technology risk, control and audit and other advanced technologies. We launched a new column called CAATT Tales which will feature articles on technology and audit.

 

Prior What's New at AuditNet!

Audit Work Programs Corner

Register Now!

30 Day Trial 

Access to audit programs requires registration. You are allowed only 1 free trial so make it count. The trial provides 30 day access to the basic section. Access to the premium section requires a subscription. We add new programs each month. They are available on a 1 for 1 exchange for an original audit work program not currently in the inventory. If you unable to share audit programs then consider subscribing to the premium content which provides you with access 24/7/365.  Interested in a subscription in lieu of cash? (Offer only available for new programs submitted).

 

 

AuditNet® recognizes the above partners that provide their members and clients access to all the AuditNet audit programs. CCH TeamStores format. Access through the TeamStores support site. ACL Premium and Protiviti KnowledgeLeader members access through the respective members login.

 

E-Book for Subscribers to the Annual Audit Programs

 

AuditNet is building Analytic Enabled Audit Programs (AEP) which include steps for using data analysis software such as ACL. If you have a program that uses data analytics and would like to share we will add it to this new category.

 

  1. Business Valuation Cash Flow Matrix (Feb 2012)
  2. Complex Spreadsheet Protocols (2012)
  3. Cost of Sales Work Paper (2012)
  4. Disposal of Asset Work Paper (2012)
  5. Information Security Governance Assessment tool (Feb 2012)
  6. Information Systems Controls Workbook (from the UK NAO 2004)
  7. Investigating Fraud Training (2012)
  8. Minimum Security Baseline Assessment (Feb 2012)
  9. Procurement Fraud Toolkit (Feb 2012)
  10. Risk Management Toolkit (Insurance) (Feb 2012)

 

Coming Soon

  1. Business Continuity Audit (March 2012)
  2. Email Technology Audit (March 2012)
  3. Remote Access Audit (March 2012)

Ask the Auditor

Each month I select one question submitted to Ask the Auditor and provide an answer using the same digital tools and techniques that I recommend to all auditors. 

 

SOX Key Control Certifications

Q; Our Audit Committee is looking for reductions in the overall Audit plan and is considering removal of quarterly (and perhaps even annual) key control certification by management. It seems to me that key control certifications were at one time a best practice in SOX Auditing programs. Is this a prudent decision in the audit world today?


A: We received several responses to this question. They are provided here:

 

From Norm: The answer will depend to some extent on whether there is reliance on the self-assessment (sub-certification) for any key controls. It may be relied upon for selected entity-level controls, with the certification including language related to understanding the code of ethics, for example.

If there is no specific reliance, then management could drop the activity. But, it is highly unlikely to have much affect on the cost of the SOX program!

I would not make a decision based on whether it is 'best practice', but whether it affects the level of evidence obtained relative to the operation of key controls. Certainly, it does indicate a level of commitment to internal control and most CEOs in my experience like it because it shares some of the signing responsibility.

 

From Catherine: I am not sure how our auditors would react to such a change. We consider our certifications as an entity level control. However, we have revised our internal control environment over the years and have been able to change key controls to non-key controls. In order to do this, we address the financial risk factors. So, is there any risk to the organization if the quarterly certification by management is removed and how would you rate it (low, medium, high)? 

 

If you want to chime in on this then please do.

 

For more tips go to Ask the Auditor Forum for How Do I...

 

Submit a question for Ask the Auditor!

FREE PUBLICATION

Receive Your Complimentary Reports NOW!
 

Auditing Privileged Access and Activity in Windows

Self-Service SOX Auditing with S3 Control

The Forrester Wave™: Database Auditing And Real-Time Protection, Q2 2011
 

Training on CD From Joe Pleier


As a reminder, Pleier Corporation offers 10 % discounts to AuditNet readers at www.pleier.com.  To take this discount order online and enter the word AUDITNET in the coupon field at checkout.
 

Click here for opportunities to share your knowledge and earn royalties

Check out Training on CD

A Practitioner's Guide to Corruption Auditing

Exceeding Expectations for Internal Auditors

Need a Mobile Office? Consider an iPad
Release the Writer in You!

Looking to Earn Some Extra $$?

AuditNet is interested in hiring experienced auditors to create content for our subscribers.  If you are interested in writing audit programs, ICQs, questionnaires, or control matrices on a work for hire basis please contact me. If you may know of anyone who would be interested in this as well please pass along our contact information.

 

Professional Networking Discussion Forums and More from AuditNet®

 

AuditNet.org is now on Facebook

Join The LinkedIn Professional  Audit Information Networking Group

 

Sign up for the free:

AuditNet Newsletter (monthly)

Audit programs discussion list

General audit discussion list

SOx discussion list