All Things Internal Audit

All Things Internal Audit Tech: Leveraging Data Analytics    In this episode, Robert Findlay talks with Lynn Moehl about the evolving role of data analytics and AI in internal auditing. Findlay shares strategies for overcoming challenges, best practices for integrating data analytics, use cases, and the importance of clear communication with stakeholders. They discuss the differences between basic data analytics and AI, the skills required for each, and how advanced tools can enhance audit processes. Guests:Robert Findlay, global head of IT Audit, Glanbia Host:Lynn Moehl, IIA director of Internal Audit and CAE Key Points:  Introduction to Data Analytics and AI in Internal Auditing (00:00:02) Differences Between Basic Data Analytics and AI (00:00:34) Skills Required for Data Analytics vs. AI (00:01:21) Effective Tools for Specific Audit Scenarios (00:02:17) Access to Data and Organizational Policies (00:04:07) Criteria for Choosing the Right Tool (00:05:02) Challenging Audit Scenarios and Data Analytics Solutions (00:05:35) Surprising Insights from Data Analytics (00:06:43) Pitfalls and Mitigation Strategies in Data Analytics (00:08:13) Communicating the Benefits of Data Analytics (00:10:08) Best Practices for Integrating Data Analytics (00:11:11) Measuring Success of Data Analytics Initiatives (00:12:19) Guidance for Using AI in Analytics (00:13:15) The IIA Related Content: Interested in this topic? Visit the links below for more resources:   Data Literacy Certificate: A Journey to Data Analytics Data Analytics: Part 3, Developing a Resilient Data Analytics Strategy Microsoft® Excel: Data Analytics Descriptive statistics Getting Started With: Data Analytics Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: Excel ACL: Galvanize ACL Python scripts Tableau QlikView SAP Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: The IIA's Updated Quality Assessment Manual The Institute of Internal Auditors Presents: All Things Internal Audit In this episode, Dirk Debruyne and Marthin Grobler discuss The IIA’s recently released Quality Assessment Manual, 2024 Edition, with David Petrisky. They share their personal experiences with quality assessments and the development of the updated manual, including how it aligns with the new Global Internal Audit Standards.   In bonus content, The IIA’s Deborah Poulalion joins Robert Perez to discuss the 2024 North American Pulse of Internal Audit Report. Guests: Dirk Debruyne, managing director, D2 CAE Solutions Marthin Grobler, CAE and owner, IA Professionals Host:David Petrisky, director, Professional Standards, The IIA Key Points:  Introduction to the episode and guests [00:00:02]  Importance of quality assessments and ISB’s role [00:00:30] Marthin Grobler on his project involvement [00:01:10] Dirk Debruyne's background and contributions [00:02:16] Task force responsibilities and challenges [00:03:16] Focus on ethics in Domain 2 [00:04:24] Comparison with previous QA Manual versions [00:05:50] Alignment with new standards and assessment impact [00:07:26] Use of manual for internal and external assessments [00:09:00] Challenges in assessing conformance methodology [00:10:00] Governance’s impact on audit quality [00:12:23] Introduction of the maturity model [00:14:39] Adding maturity assessments [00:16:00] Templates and tools in the manual [00:17:16] Benefits of the four-point conclusion scale [00:18:49] Performance outcomes in assessments [00:21:01] Guidance on self-assessment with validation [00:22:38] Board and CAE expectations for assessments [00:24:14] QA Manual’s role in meeting expectations [00:26:07] Future innovations and tech in assessments [00:27:42] Value of external quality assessments [00:30:54] Final thoughts for the internal audit community [00:32:23] Bonus content [00:38:20] BONUS CONTENT HOST: Robert Pérez, owner, Pérez Communication Solutions GUEST:Deborah Poulalion, IIA senior data analyst, The IIA The IIA Related Content: Interested in this topic? Visit the links below: Webinar: Introducing the New Quality Assessment Manual: Aligned with the Global Internal Audit Standards Quality Insights: Implementing an Internal Audit Strategic Plan Webinar: Quality Assessment Challenges and Opportunities 2025 and Beyond Participate in the 2025 North American Pulse Survey Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: Quality Assessment Manual, 2024 Edition International Internal Audit Standards Board North American Pulse of Internal Audit Risk in Focus Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Cybersecurity Challenges and AI Solutions In this episode, Sami Rifky, vice president of ISACA Casablanca, joins Mike Levy, CEO of Cherry Hill Advisory, to discuss the evolving cybersecurity landscape. They explore how AI is transforming threat detection and response, the importance of cybersecurity governance, and internal audit's role in managing cyber risks. Guests:Sami Rifky, vice president, ISACA Casablanca Host:Mike Levy, CEO, Cherry Hill Advisory Key Points:  Introduction to Cybersecurity and AI (00:00:02) Sami Rifky’s Background and Approach (00:00:37) Top Cybersecurity Risks and AI’s Role (00:02:04) Challenges During the COVID-19 Pandemic (00:02:53) AI in Cybersecurity: Opportunities and Risks (00:05:06) Internal Audit’s Role in Cybersecurity (00:07:23) Generative AI and Emerging Threats (00:10:10) Challenges in Implementing AI in Cybersecurity (00:13:08) Ethical Considerations in AI Deployment (00:18:37) Future of AI in Cybersecurity (00:21:15) The IIA Related Content: Interested in this topic? Visit the Cyber Resource Center to find comprehensive tools, courses, research, and webinars that help effectively manage and audit cybersecurity risks. Register for the IIA's Cybersecurity Virtual Conference on October 30th, where Sami Rifky will be a keynote speaker IIA Global Knowledge Brief: Cybersecurity (Part 2: Artificial Intelligence – Cybersecurity Friend and Foe) Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: IIA's Cybersecurity Virtual Conference IIA's AI Auditing Framework National Science and Technology Council (NSTC) - AI and Cybersecurity: Opportunities and Challenges IBM on AI & Cybersecurity Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Fraud Podcast "School of Fraud" Listen to The IIA’s new Fraud Podcast brought to you by All Things Internal Audit. The Fraud Podcast provides fictionalized accounts of real-world frauds featured in Internal Auditor magazine’s Fraud department. In the latest episode, an organization’s chief audit executive investigates a suspicious tuition reimbursement during the pandemic, uncovering a web of deceit involving an employee. Listen to “School Of Fraud.” IIA members can access bonus content in the form of lessons learned by reading the full Fraud article. Chapters: Introduction to the Case (00:00:01) Part 1: A Walk Interrupted (00:00:22) Part 2: Cash for Classes (00:01:23) Part 3: A Closer Look (00:03:21) Part 4: The Confession (00:05:38) Resources Mentioned: Association of Certified Fraud Examiners (ACFE) Follow All Things Internal Audit: Apple PodcastsSpotify Youtube LibsynDeezer

Liz Sandwith, managing partner at Sandwith Internal Audit Services and a former member of The IIA's International Internal Audit Standards Board, discusses key changes in global internal audit standards. She explores how auditors can prepare for compliance by the January 2025 deadline while addressing common challenges. Liz highlights the importance of ethical conformance, effective communication with management, and the evolution of quality assurance programs. Listeners gain practical strategies and a glimpse into the transformative future of internal auditing.

All Things Internal Audit: Elevating Data Security In this episode, Terry Ray, a top expert in data security, talks with David Pretrisky, director of Professional Standards at The IIA, about why asking the right questions is key to boosting data security and compliance in organizations. They’ll dive into how internal auditors can strengthen their organization’s security, the hurdles they encounter, and practical strategies for success. Guests: Terry Ray, senior vice president, data security GTM, field CTO, and fellow at Imperva Host: David Petrisky, director, Professional Standards, The IIA Key Points:  Introduction to Data Security and Compliance (00:00:02 - 00:00:22) Breaking Down Data Defense (00:00:31 - 00:02:45) Prioritizing Security Controls (00:02:52 - 00:04:24) Key Frameworks for Security (00:04:58 - 00:06:22) Common Vulnerabilities and Breaches (00:06:22 - 00:08:25) Advice for Internal Auditors (00:08:25 - 00:11:10) Compliance and Regulatory Frameworks (00:11:15 - 00:14:05) Internal Auditors’ Role in Security (00:14:05 - 00:17:11) Final Advice for Internal Auditors (00:17:11 - 00:17:32) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors in protecting data here. Elevate your internal auditing skills and enroll in The IIA's 2024 Cybersecurity Virtual Conference.   Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: NIST Cybersecurity Framework General Data Protection Regulation PCI Data Security Standard  Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Unmasking Greenwashing In this episode, David Petrisky, director of professional standards at the IIA, as he dives into the hot topic of greenwashing with Edith Wong, managing director at FTI Consulting, and Brian Wilmot, attorney at Paul Hastings. They unpack the challenges of navigating environmental claims, share eye-opening cases, and offer practical tips for auditors tackling greenwashing and other ESG-related risks. Guests:Edith Wong, Forensic Accountant in Investigations and Compliance, FTI Consulting Brian Wilmot, Compliance and Regulatory Counseling and Investigations and White Collar Defense Practices Attorney, Paul Hastings LLP Host: David Petrisky, Dir. Professional Standards, The IIA Key Points:  Introduction to Greenwashing (00:00:02 - 00:00:42) Definition and Legal Context of Greenwashing (00:00:42 - 00:01:20) Examples and Cases of Greenwashing (00:02:23 - 00:03:30) Challenges in Environmental Claims and Reporting (00:01:45 - 00:02:23, 00:03:38 - 00:04:50) Regulatory and Litigation Activity (00:01:45 - 00:02:23, 00:05:09 - 00:06:27) Non-Financial Reporting and Corporate Communications (00:06:27 - 00:07:19) Global Frameworks and Standards (00:09:07 - 00:11:02) Role of Internal Auditors in Addressing Greenwashing (00:11:07 - 00:12:32, 00:17:07 - 00:18:47) Preventative Practices and Governance Structures (00:13:06 - 00:15:09) Industry-Specific Concerns and Risks (00:15:21 - 00:16:55) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors in the field of ESG auditing here.   Elevate your internal auditing skills and enroll in The IIA's ESG Certificate Program.   Visit The IIA's website or YouTube channel for related topics and more.   Resources Mentioned: TerraChoice’s Seven Sins of Greenwashing Federal Trade Commission’s Green Guides Global Reporting Initiative (GRI) Sustainability Accounting Standards Board (SASB)

All Things Internal Audit Tech: Quantum Computing In this episode, Frontier Foundry Co-founder and COO, Nick Reese, delves into the groundbreaking world of quantum computing and its game-changing potential for auditing. Discover how this cutting-edge technology could revolutionize the profession and learn practical tips on how internal auditors can stay ahead of the curve. Guest: Nick Reese, co-founder and COO of Frontier Foundry & former director of emerging technology at DHS Frontier Foundry Website hello@frontierfoundry.com Host: Lynn Moehl, director of internal audit and chief audit executive at The IIA Key Points:  Introduction to Quantum Computing(00:00:02 - 00:00:21) Quantum Computing’s Impact on Auditing(00:00:54 - 00:02:47) Data Security and Cryptography Risks(00:03:2 - 00:06:22) Opportunities with Quantum Technology (00:07:41 - 00:08:54) Resources for Staying Informed (00:10:23 - 00:10:43) Practical Steps for Auditors (00:06:32 - 00:07:07, 00:10:15 - 00:11:48) Current State and Future of Quantum Computing (00:02:54 - 00:03:08, 00:14:44 - 00:14:49) Workforce Education and Preparation (00:18:12 - 00:19:34) Resources Mentioned: DHS Post-Quantum Cryptography Roadmap National Institute of Standards and Technology (NIST) The IIA Related Content: Interested in this topic? Learn more about the role of internal auditors in providing organizations assurance for emerging technologies here. Visit The IIA's website or YouTube channel for related topics and more.

All Things Internal Audit: Fraud Podcast "Playing the Fraud Card" Listen to The IIA’s new Fraud Podcast brought to you by All Things Internal Audit. The Fraud Podcast provides fictionalized accounts of real-world frauds featured in Internal Auditor magazine’s Fraud department. In the latest episode, City Auditor Michelle Martinez uncovers a gift card scam orchestrated by Jonathan Erick, a former City of Sommerville employee, using city funds. Martinez's keen auditing skills reveal Erick's misuse of purchase cards, leading to his arrest and highlighting the importance of robust internal controls. Listen to “Playing the Fraud Card.”IIA members can access bonus content in the form of lessons learned by reading the full Fraud article. Available now on all major podcast platforms and our Youtube channel.

All Things Internal Audit Tech: AI Governance & Ethical Considerations In this episode, hear from industry thought leaders about governance and ethical considerations of artificial intelligence usage in the internal audit profession. Experts discuss strategies to mitigate risks of sensitive data disclosure in public AI tools and emphasize the importance of governance and monitoring in AI implementation. They address ethical concerns, including preventing AI-generated risks and ensuring safe AI practices in applications involving human safety.  This conversation covers: Mitigating Risk of Sensitive Data Disclosure Governance and Monitoring in AI Importance of oversight and ethical auditing practices Preventing AI Hallucinations and Risks Strategies for ensuring ethical AI outputs through human intervention. Ensuring Safe AI Practices Addressing ethical and safety concerns in AI applications. Speakers:  Brian Willis, LBMC senior manager, cybersecurity advisor Charles King, Managing Director, Advisory Services, KPMG LLP Alex Gacheche, Head of Information Security, Meta Ivan Martinez, Managing Director, Internal Audit, Goldman Sachs Ethan Rojhani, Grant Thornton principal, risk advisory services Wes Luckock, Grant Thornton senior manager, AI, automation and analytics This episode is available on our website on our YouTube channel.