Professional Documents
Culture Documents
Financial and accounting operations must be separated, i.e., handling of cash and the recording of the
movement thereof should be done by different persons.
2. Principle of Responsibility
Responsibility for the performance of the job must be clearly stated so that there may be no room for
doubt or confusion subsequently.
3. Principle of Skepticism
Too much confidence should not be pinned on one individual. Nearly all frauds have been committed by
trusted officials or employees.
4. Principle of Rotation
5. Principle of Review
The work should be so arranged that work done by one employee should be promptly checked by
another independent employee.
6. Principle of Clarification
Clear and well-defined rules should be laid down and practically followed, relating to dealing with cash,
ordering, receiving and issuing goods, etc.
7. Principle of Documentation
The arrangement of the work should be in such a manner that a written record of the part played by
each employee should be maintained, and the work should pass through several hands in a well-defined
manner.
Collusion
Two or more people who are intended by a system of control to keep watch over each other could
instead collude to circumvent the system. Since this essentially eliminates a control, the probability of
losses being incurred is greatly increased.
Human Error
A person involved in a control system could simply make a mistake, perhaps forgetting to use a control
step. Or, the person does not understand how a control system is to be used, or does not understand
the instructions associated with the system. This may be caused by the assignment of the wrong person
to a task.
Management Override
Someone on the management team who has the authority to do so could override any aspect of a
control system for his personal advantage.
A control system might have been designed with an insufficient segregation of duties, so that one
person can interfere with its proper operation.
Consequently, it must be accepted that no system of internal controls is perfect. There is always a way in
which it can fail or be circumvented.
One of the biggest benefits of an internal audit is that it facilitates more effective
management of the organization.
The internal auditor will be able to point out any weaknesses of the organization in the
operations or internal controls of the company.
So the management can use these insights to better the chances of achieving their
goals.
2] On going Review
The process of internal audit gives the organization a unique opportunity to conduct a
review of the performances in the ongoing year itself.
They do not have to wait for the end of the year to review the company’s performance.
This also means that if they are not on the correct path, this will help them change
course and correct their mistakes immediately.
The staff of the company remains alert and active. This is because there is the fear of their mistakes
being caught by the internal auditor almost immediately.
This will help improve their efficiency and performance. Also, they do not attempt to defraud the
company for the same reasons. And on the other hand, it is a good morale booster for honest
employees.
One other benefit of the process of internal control is that it can be used as a tool to promote the
optimization of resources. It will help point out the areas in which resources are being underutilized
or wasted. And then these can be corrected. It will help control the costs and expenses of the
company.
Internal audit helps promote the division of labor. It is important to keep a check on and observe the
activities of all the departments and all of their employees. Division of labor will help in achieving
this.
Internal audits scrutinize your cybersecurity environment, counting all your digital devices, for
instance, and examining whether they are secured in line with your policies. They also look for
vulnerabilities in your digital systems and networks and advise on how to close gaps.
7] Integrity.
Headline-grabbing cases of fraud at the turn of the 21st century—fraud involving major companies
including Enron—were the impetus behind the COSO framework. As a result of the scandal, Enron
went bankrupt. Caveat emptor: People aren’t always honest. Also: to err is human. Internal audits
analyze and scrutinize your financial statements and verify their accuracy and integrity.
8] Reduced risk.
Internal audits consider all the identified risks to your enterprise and analyze whether your risk
mitigations are working as they should. Where they aren’t, audit reports will tell you what you need to
do to resolve the issue.
9] Improved compliance.
Internal audits check the laws, regulations, and industry standards with which your organization
needs to comply and determine whether you are, in fact, compliant. Where you miss the mark,
auditors recommend how to remedy the problem.
For reliable audits, there are 7 audit principles that an auditor should adhere to, set out by ISO 1
011:2018 Guidelines for Auditing Management Systems.
1. Integrity
2. Fair Presentation
4. Confidentiality
5. Independence
The basis for the impartiality of the audit and objectivity of the audit conclusions.
6. Evidence-based approach
The rational method for reaching reliable and reproducible audit conclusions in a systematic
audit process.
7. Risk-based approach
By ensuring your auditors adhere to these principles, you can have confidence in your audit
conclusions. If you’re planning an audit, and looking for support from a certified lead auditor,
send me a message to see how I can help.