All Things Internal Audit

All Things Internal Audit: Cybersecurity Challenges and AI Solutions In this episode, Sami Rifky, vice president of ISACA Casablanca, joins Mike Levy, CEO of Cherry Hill Advisory, to discuss the evolving cybersecurity landscape. They explore how AI is transforming threat detection and response, the importance of cybersecurity governance, and internal audit's role in managing cyber risks. Guests:Sami Rifky, vice president, ISACA Casablanca Host:Mike Levy, CEO, Cherry Hill Advisory Key Points: Introduction to Cybersecurity and AI (00:00:02) Sami Rifky's Background and Approach (00:00:37) Top Cybersecurity Risks and AI's Role (00:02:04) Challenges During the COVID-19 Pandemic (00:02:53) AI in Cybersecurity: Opportunities and Risks (00:05:06) Internal Audit's Role in Cybersecurity (00:07:23) Generative AI and Emerging Threats (00:10:10) Challenges in Implementing AI in Cybersecurity (00:13:08) Ethical Considerations in AI Deployment (00:18:37) Future of AI in Cybersecurity (00:21:15) The IIA Related Content: Interested in this topic? Visit the Cyber Resource Center to find comprehensive tools, courses, research, and webinars that help effectively manage and audit cybersecurity risks. Register for the IIA's Cybersecurity Virtual Conference on October 30th, where Sami Rifky will be a keynote speaker IIA Global Knowledge Brief: Cybersecurity (Part 2: Artificial Intelligence – Cybersecurity Friend and Foe) Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: IIA's Cybersecurity Virtual Conference IIA's AI Auditing Framework National Science and Technology Council (NSTC) - AI and Cybersecurity: Opportunities and Challenges IBM on AI & Cybersecurity Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Fraud Podcast "School of Fraud" Listen to The IIA's new Fraud Podcast brought to you by All Things Internal Audit. The Fraud Podcast provides fictionalized accounts of real-world frauds featured in Internal Auditor magazine's Fraud department. In the latest episode, an organization's chief audit executive investigates a suspicious tuition reimbursement during the pandemic, uncovering a web of deceit involving an employee. Listen to "School Of Fraud." IIA members can access bonus content in the form of lessons learned by reading the full Fraud article. Chapters: Introduction to the Case (00:00:01) Part 1: A Walk Interrupted (00:00:22) Part 2: Cash for Classes (00:01:23) Part 3: A Closer Look (00:03:21) Part 4: The Confession (00:05:38) Resources Mentioned: Association of Certified Fraud Examiners (ACFE) Follow All Things Internal Audit: Apple PodcastsSpotify Youtube LibsynDeezer

Liz Sandwith, managing partner at Sandwith Internal Audit Services and a former member of The IIA's International Internal Audit Standards Board, discusses key changes in global internal audit standards. She explores how auditors can prepare for compliance by the January 2025 deadline while addressing common challenges. Liz highlights the importance of ethical conformance, effective communication with management, and the evolution of quality assurance programs. Listeners gain practical strategies and a glimpse into the transformative future of internal auditing.

All Things Internal Audit: Elevating Data Security In this episode, Terry Ray, a top expert in data security, talks with David Pretrisky, director of Professional Standards at The IIA, about why asking the right questions is key to boosting data security and compliance in organizations. They'll dive into how internal auditors can strengthen their organization's security, the hurdles they encounter, and practical strategies for success. Guests: Terry Ray, senior vice president, data security GTM, field CTO, and fellow at Imperva Host: David Petrisky, director, Professional Standards, The IIA Key Points: Introduction to Data Security and Compliance (00:00:02 - 00:00:22) Breaking Down Data Defense (00:00:31 - 00:02:45) Prioritizing Security Controls (00:02:52 - 00:04:24) Key Frameworks for Security (00:04:58 - 00:06:22) Common Vulnerabilities and Breaches (00:06:22 - 00:08:25) Advice for Internal Auditors (00:08:25 - 00:11:10) Compliance and Regulatory Frameworks (00:11:15 - 00:14:05) Internal Auditors' Role in Security (00:14:05 - 00:17:11) Final Advice for Internal Auditors (00:17:11 - 00:17:32) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors in protecting data here. Elevate your internal auditing skills and enroll in The IIA's 2024 Cybersecurity Virtual Conference. Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: NIST Cybersecurity Framework General Data Protection Regulation PCI Data Security Standard Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Unmasking Greenwashing In this episode, David Petrisky, director of professional standards at the IIA, as he dives into the hot topic of greenwashing with Edith Wong, managing director at FTI Consulting, and Brian Wilmot, attorney at Paul Hastings. They unpack the challenges of navigating environmental claims, share eye-opening cases, and offer practical tips for auditors tackling greenwashing and other ESG-related risks. Guests:Edith Wong, Forensic Accountant in Investigations and Compliance, FTI Consulting Brian Wilmot, Compliance and Regulatory Counseling and Investigations and White Collar Defense Practices Attorney, Paul Hastings LLP Host: David Petrisky, Dir. Professional Standards, The IIA Key Points: Introduction to Greenwashing (00:00:02 - 00:00:42) Definition and Legal Context of Greenwashing (00:00:42 - 00:01:20) Examples and Cases of Greenwashing (00:02:23 - 00:03:30) Challenges in Environmental Claims and Reporting (00:01:45 - 00:02:23, 00:03:38 - 00:04:50) Regulatory and Litigation Activity (00:01:45 - 00:02:23, 00:05:09 - 00:06:27) Non-Financial Reporting and Corporate Communications (00:06:27 - 00:07:19) Global Frameworks and Standards (00:09:07 - 00:11:02) Role of Internal Auditors in Addressing Greenwashing (00:11:07 - 00:12:32, 00:17:07 - 00:18:47) Preventative Practices and Governance Structures (00:13:06 - 00:15:09) Industry-Specific Concerns and Risks (00:15:21 - 00:16:55) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors in the field of ESG auditing here. Elevate your internal auditing skills and enroll in The IIA's ESG Certificate Program. Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: TerraChoice's Seven Sins of Greenwashing Federal Trade Commission's Green Guides Global Reporting Initiative (GRI) Sustainability Accounting Standards Board (SASB)

All Things Internal Audit Tech: Quantum Computing In this episode, Frontier Foundry Co-founder and COO, Nick Reese, delves into the groundbreaking world of quantum computing and its game-changing potential for auditing. Discover how this cutting-edge technology could revolutionize the profession and learn practical tips on how internal auditors can stay ahead of the curve. Guest: Nick Reese, co-founder and COO of Frontier Foundry & former director of emerging technology at DHS Frontier Foundry Website hello@frontierfoundry.com Host: Lynn Moehl, director of internal audit and chief audit executive at The IIA Key Points: Introduction to Quantum Computing(00:00:02 - 00:00:21) Quantum Computing's Impact on Auditing(00:00:54 - 00:02:47) Data Security and Cryptography Risks(00:03:2 - 00:06:22) Opportunities with Quantum Technology (00:07:41 - 00:08:54) Resources for Staying Informed (00:10:23 - 00:10:43) Practical Steps for Auditors (00:06:32 - 00:07:07, 00:10:15 - 00:11:48) Current State and Future of Quantum Computing (00:02:54 - 00:03:08, 00:14:44 - 00:14:49) Workforce Education and Preparation (00:18:12 - 00:19:34) Resources Mentioned: DHS Post-Quantum Cryptography Roadmap National Institute of Standards and Technology (NIST) The IIA Related Content: Interested in this topic? Learn more about the role of internal auditors in providing organizations assurance for emerging technologies here. Visit The IIA's website or YouTube channel for related topics and more.

All Things Internal Audit: Fraud Podcast "Playing the Fraud Card" Listen to The IIA's new Fraud Podcast brought to you by All Things Internal Audit. The Fraud Podcast provides fictionalized accounts of real-world frauds featured in Internal Auditor magazine's Fraud department. In the latest episode, City Auditor Michelle Martinez uncovers a gift card scam orchestrated by Jonathan Erick, a former City of Sommerville employee, using city funds. Martinez's keen auditing skills reveal Erick's misuse of purchase cards, leading to his arrest and highlighting the importance of robust internal controls. Listen to "Playing the Fraud Card."IIA members can access bonus content in the form of lessons learned by reading the full Fraud article. Available now on all major podcast platforms and our Youtube channel.

All Things Internal Audit Tech: AI Governance & Ethical Considerations In this episode, hear from industry thought leaders about governance and ethical considerations of artificial intelligence usage in the internal audit profession. Experts discuss strategies to mitigate risks of sensitive data disclosure in public AI tools and emphasize the importance of governance and monitoring in AI implementation. They address ethical concerns, including preventing AI-generated risks and ensuring safe AI practices in applications involving human safety. This conversation covers: Mitigating Risk of Sensitive Data Disclosure Governance and Monitoring in AI Importance of oversight and ethical auditing practices Preventing AI Hallucinations and Risks Strategies for ensuring ethical AI outputs through human intervention. Ensuring Safe AI Practices Addressing ethical and safety concerns in AI applications. Speakers: Brian Willis, LBMC senior manager, cybersecurity advisor Charles King, Managing Director, Advisory Services, KPMG LLP Alex Gacheche, Head of Information Security, Meta Ivan Martinez, Managing Director, Internal Audit, Goldman Sachs Ethan Rojhani, Grant Thornton principal, risk advisory services Wes Luckock, Grant Thornton senior manager, AI, automation and analytics This episode is available on our website on our YouTube channel.

All Things Internal Audit: Key Takeaways from Occupational Fraud 2024: A Report to the Nations In this episode, Mason Wilder, research director of the Association of Certified Fraud Examiners, discusses the findings and implications of the Occupational Fraud 2024: A Report to the Nations. This conversation covers: Fraud detection and reporting methods Fraud profiles Impact of the COVID-19 pandemic on fraud Importance of fraud risk management Using reports to enhance fraud prevention efforts Value of fraud awareness training This episode is available on all major podcast platforms or on our YouTube channel.

Experts in this podcast discuss how AI is revolutionizing internal audits by enhancing compliance programs, continuous risk assessment, and cybersecurity audits. They highlight real-world examples using AI tools like ChatGPT for PCI DSS compliance and dynamic risk scoring frameworks. The conversation covers AI's role in improving audit efficiency, accuracy, and cost-effectiveness, especially in scenario analysis and communication in audits.