Internal Audit Case Study

This memorandum highlights significant portions of Statement on Auditing Standards (SAS) No. 115 Communication of Internal Control Related Matters Identified in an Audit and answers some questions frequently asked by accountants about SAS 115 ("The American Institute Of Certified Public Accountants", 2015). SAS 115 Highlights Here are some highlights of SAS 115. Applicability (SAS 115, 2015, para. 01). Definitions. A material weakness (SAS 115, 2015, para. 06).

A financial audit is an independent, objective evaluation of an organization 's financial reports and financial reporting processes. The primary purpose for financial audits is to give stakeholders reasonable assurance that financial statements are accurate and complete. Most internal audits are not adding value. One reason is that “ongoing compliance burdens and pressure to do more with less” is contributing to the decline in perceived internal audit value.

Objectives & Scope The human resources audit includes a sampling assessment of the following areas: classifications/FLSA, pay, time, attendance, growth, hiring, terminations, onboarding, employment eligibility, benefits, compensation, safety, performance management, organizational culture, and communication. Unless specified, audit assessment is by means of workforce sampling (across various regions, position type and classifications). For example, PTO assessment does not audit all PTO calculations for each employee, but rather a selected few. The data for the sampling includes West Yost personnel files, interviews, payroll records, and data from various sources.

It intensifies the need of internal control to ensure all financial transactions were preformed the way they were supposed to and to avoid any errors in the company’s balance book. Internal controls are required to be tested quarterly by management to evaluate their effectively. Another benefit of SOX is it reveals critical information to shareholders that help them making better investment decisions and increase their confidence and protection which then lead to more cash flowing into the market. The act also provides specific steps for CEOs and managers to follow while performing their jobs, these steps and procedures will protect these individuals from making wrong decisions and make them less accountable and vulnerable to

By requiring the CEO and CFO of publicly traded companies to certify the accuracy of financial statements filed with the SEC, the Act helps to ensure that investors have access to reliable financial information and can make informed decisions when investing in the stock market. The Sarbanes-Oxley Act also requires public companies to annually report on the effectiveness of their internal controls and procedures. This is done by performing an assessment to determine whether the internal controls and procedures are operating effectively to prevent any fraudulent activities from occurring. If the assessment finds that the internal controls are not operating effectively, the company must take corrective action to address the issues and make sure that their financial statements are accurate and reliable.

This is not only to guide the professionals but also so that individuals know what is acceptable and what is not. Complaints procedures need to be clearly understood and accessible to individuals together with independent support when making a complaint. This could take the form of an advocate from outside the organisation. When new policies and procedures are set, training needs to be provided so that everyone understands what is required. New staff needs a formal induction period which should explain all the policies and procedures.

• take advantage of Information Technology to further corporate gains. • gain operational excellence by availing of technology. • make sure that the risk around computing is monitored correctly. • make best use of IT that has been heavily invested in. • remain compliant with any contracts, regulations and other compliance laws.

To treat individuals with respect and to also promote independence, supporting everyone to keep safe. To ensures that all individuals are listened too, for everyone to be working meeting legal requirements. For all staff to maintain and complete all training, and to ensure all staff are carrying out their job role to the best of their ability.

 It provides an accurate valuation This method of accounting helps to provide more accuracy when it comes to current valuations from assets and liabilities. If prices are expected to increase or decrease, then the valuation can do the same. If sales occur, then there aren’t discrepancies that must be charted if the valuation differ from the transaction. The current market prices allow individuals or businesses to know exactly where

It is a control model to meet the needs of IT governance and ensure the integrity of information and information systems by developing good practices for IT control for organization.

Pros of the Sarbanes-Oxley Act (SOX) It created a requirement that critical information about companies be revealed by the companies to their shareholders. This part of the Act may increase the confidence of the shareholders and attract more shareholders. It created rules regarding accounting practices and internal controls. Reports that describe the sufficiency and effectiveness of its accounting internal controls must be filed quarterly by the management of the company. There is an accountability requirement for the people reporting the financial information.

The first step that the auditor should take is to gather as much information about any security procedures and policies that may have been in use following the information collected from the records available. Since each policy may have a different aspect that it works on, the findings from the audit may present evidence that may be vital in identifying the existing procedures or the absence of any policies or procedures. The existence of policies and procedures enables a company to reduce the occurrence or the impacts of a given risk. The lack of such policies may lead to reduced risk management

The implementation of many controls to prevent fraud haven't yet reached the level of satisfaction to most companies, managers and fraudsters in general have found various ways to misappropriate assets for their own benefit , ignoring the greater public and company's interests. Management fraud which is involved in accounting manipulation, is a type of fraud where inside people with key positions tend to misrepresent financial statement in using a false positive image about the financial performance of the company to affect the decisions of the financial statement users for the own gains.

Information Governance Training. 2.2 If there are concerns relating to handling and sharing information we need to apply an individual measures e.g. staff training, CRB checks and vetting procedures, staff supervision and management; system measures e.g. electronic audit trails, encrypted passwords, information checking systems. There has to be agreed ways of working with specific policies and procedures, physical measures e.g. secure storage, CCTV 3 There is an importance of keeping legible, accurate, complete and up-to-date records in order to meet legislative requirements and to ensure clarity of information for everybody involve in care for that particular person and continuity of

Furthermore, it certifies that there will be a less likely chance of a mistake being made. Overall, they require a lot of education and the skills important for the