Workiva advert Ideagen advert TeamMate

IIA Award in compliance audit and assurance

Presented By
Marian Silltow CFIIA Marian has significant practical experience of internal audit and management within the private, public and not-for-profit sectors. She developed and ran the MSc in Internal Audit at South Bank University before setting up as an independent consultant and trainer.

The purpose of this course is to assist those new to or who are working in a compliance or assurance role to better understand the responsibilities expected of them. By compliance or assurance role we mean those who work in the second line of defence

Earn the IACert designation

Gain the IIA Certificate in Internal Audit and Business Risk when you study four awards from the certificate programme.     


Who should attend?

  • new entrants to a compliance or assurance role with little or no experience of audit techniques
  • specialists who join or are seconded to a compliance role who need to get up to speed quickly with the tools and techniques used in the role
  • those who work in a compliance role in their own organisation or those who undertake compliance reviews in third party organisations for example audits of third party compliance with outsourced contracts
  • internal auditors with a remit to provide oversight or review a compliance function.

What will I learn? 

Upon completion you will be able to:

  • understand the compliance/assurance role in relation to the three lines of defence and in particular the differences between a compliance/assurance role and an internal audit role
  • describe a typical governance framework for the compliance role and explain how this can help to promote an effective compliance culture
  • apply appropriate techniques to the development of a schedule of work for the coming year but noting the need to refresh this across the year in the light of current business intelligence
  • understand and apply the methodology required to plan for, test and report on compliance reviews
  • apply your understanding of risk, key controls, testing techniques, sampling, evidence and root cause analysis to the compliance reviews you undertake.

Course programme

Compliance/assurance role and the three lines of defence

  • the compliance role and responsibilities in relation to the three lines of defence to include management (first line of defence) and internal and external audit and regulatory bodies, (third line of defence).

Governance within the compliance/assurance role

  • how the governance structure employed for the compliance/assurance role has a significant impact on the creation of a positive compliance culture
  • the role of risk appetite, risk maturity, risk behaviours and the identification, assessment, management and monitoring of risk in an effective compliance governance structure.

 Developing the schedule of work for the year

  • using a risk based approach to develop the work schedule for the year
  • importance of business intelligence in understanding when the schedule of works needs to be refreshed
  • differences between writing a risk statement and a control failure.

 Planning the compliance engagement

  • what information do you need to plan the engagement, where does it come from, how can you document it and what does it tell you about the risks inherent in the activity?
  • walkthrough testing and what it means/use of risk and control matrices
  • agreeing the focus of the testing/test strategy and terms of reference.

 Fieldwork - key controls and testing techniques

  • what are the attributes of a key control?
  • how to test for control design and control operating effectiveness and understand the impact of a control failure
  • what testing techniques can be used?
  • types of test – compliance and substantive and when to use them.

 Sampling and evidence

  • statistical sampling – sample sizes and confidence levels
  • judgemental sampling – good practice sample sizes taking into account the control environment
  • quality of evidence – relevant, useful, sufficient and trustworthy
  • evaluating evidence and root cause analysis.

 Reporting

  • key message reporting.

Pre-course work

You should read the study text prior to attendance as this serves as an introduction to the subject matter. Other pre-course reading material will be provided by the tutor as appropriate.  You should also identify your own personal objectives for the course.


CPE competency areas covered

  • Internal audit delivery
  • Technical expertise

14 CPE points


IIA Award in compliance audit and assurance

Duration: 2 days

21-22 June 2018

Schedule

Start: 09:00
End: 17:00

Location

York Marriott Hotel

Tadcaster Road
York
YO24 1QQ

Directions

Cost

Member price:
Non-member price:
Save !

IIA Members save per person - Join Us or Login above

Book your place
Book now to secure your place
Certificate Programme: Book as part of Certificate programme

25-26 October 2018

Schedule

Start: 09:00
End: 17:00

Location

London venue TBC

Cost

Member price:
Non-member price:
Save !

IIA Members save per person - Join Us or Login above

Book your place
Book now to secure your place
Certificate Programme: Book as part of Certificate programme

29-30 November 2018

Schedule

Start: 09:00
End: 17:00

Location

York venue TBC

Cost

Member price:
Non-member price:
Save !

IIA Members save per person - Join Us or Login above

Book your place
Book now to secure your place
Certificate Programme: Book as part of Certificate programme

21-22 February 2019

Schedule

Start: 09:00
End: 17:00

Location

London venue TBC

Cost

Member price:
Non-member price:
Save !

IIA Members save per person - Join Us or Login above

Book your place
Book now to secure your place
Certificate Programme: Book as part of Certificate programme