• Home

  • Business

  • Protiviti Internal Audit Capabilities and Needs 2016 Survey Report
1
Stakeholders in the C-suite and boardroom, and throughout the organization, rely on their internal audit functions to provide assurance- and compliance-related activities. But increasingly these contributions represent just the tip of the iceberg. Amid ongoing business transformation, internal audit is monitoring cybersecurity risks lurking just beneath the surface, while also focusing on emerging technologies and the organization’s long-term strategy. For more information, visit Protiviti.com/IASurvey. © 2016 Protiviti Inc. An Equal Opportunity Employer M/F/Disability/Veterans. Protiviti is not licensed or registered as a public accounting firm and does not issue opinions on financial statements or offer attestation services. Arriving at Internal Audit’s Tipping Point Amid Business Transformation Top 10 Internal Audit Priorities for 2016* 1. ISO 27000 (information security) 2. Mobile applications 3. NIST Cybersecurity Framework 4. GTAG 16 – Data Analysis Technologies 5. Internet of Things 6. Agile risk and compliance 7. ISO 14000 (environmental management) 8. Data analysis tools – statistical analysis 9. Country-specific ERM framework 10. Big data/business intelligence Top 10 Priorities for CAEs in 2016 1. Big data/business intelligence 2. ISO 31000 (risk management) 3. ISO 9000 (quality management and quality assurance) 4. GTAG 17 – Auditing IT Governance 5. Continuous monitoring 6. Auditing corporate culture 7. Marketing internal audit internally 8. Quality assurance and improvement program 9. Fraud – management/prevention 10. Auditing IT – continuity Percentage of companies that have received inquiries from customers, clients or insurance providers about the organization’s state of cybersecurity Percentage of organizations, by level of board engagement in information security risks, in which there are specific areas of cybersecurity risk that are not addressed sufficiently due to lack of software tools: High level of board engagement Lower level of board engagement Organizations evaluating and auditing cybersecurity risk as part of their audit plan: 2016 73% 2015 53% Organizations with a cybersecurity risk strategy and policy in place Strategy 88% 59% Policy 83% 53% Cybersecurity Part of Audit Plan Cybersecurity Not Part of Audit Plan * Overall survey response

Protiviti Internal Audit Capabilities and Needs 2016 Survey Report

Embed Size (px)

Citation preview

Page 1: Protiviti Internal Audit Capabilities and Needs 2016 Survey Report

Stakeholders in the C-suite and boardroom, and throughout the organization, rely on their internal audit functions to provide assurance- and compliance-related activities. But increasingly these contributions represent just the tip of the iceberg. Amid ongoing business transformation, internal audit is monitoring cybersecurity risks lurking just beneath the surface, while also focusing on emergingtechnologies and the organization’s long-term strategy.

For more information, visit Protiviti.com/IASurvey.© 2016 Protiviti Inc. An Equal Opportunity Employer M/F/Disability/Veterans.

Protiviti is not licensed or registered as a public accounting firm anddoes not issue opinions on financial statements or offer attestation services.

Arriving at Internal Audit’s Tipping PointAmid Business Transformation

Top 10 Internal Audit Priorities for 2016*

1. ISO 27000 (information security)2. Mobile applications3. NIST Cybersecurity Framework4. GTAG 16 – Data Analysis Technologies5. Internet of Things6. Agile risk and compliance7. ISO 14000 (environmental management)8. Data analysis tools – statistical analysis9. Country-specific ERM framework10. Big data/business intelligence

Top 10 Priorities for CAEs in 2016

1. Big data/business intelligence2. ISO 31000 (risk management)3. ISO 9000 (quality management and quality assurance)4. GTAG 17 – Auditing IT Governance5. Continuous monitoring6. Auditing corporate culture7. Marketing internal audit internally8. Quality assurance and improvement program 9. Fraud – management/prevention10. Auditing IT – continuity

Percentage of companies that have received inquiries from customers, clients or insurance providers about the organization’s stateof cybersecurity

Percentage of organizations, by level of boardengagement in information security risks, in which

there are specific areas of cybersecurity risk that are notaddressed sufficiently due to lack of software tools:

High level of board engagement

Lower level of board engagement

Organizationsevaluating and auditing

cybersecurity risk as partof their audit plan:

2016

73%2015

53%

Organizations with a cybersecurityrisk strategy and policy in place

Strategy 88% 59%

Policy 83% 53%

CybersecurityPart of Audit Plan

Cybersecurity NotPart of Audit Plan

* Overall survey response

https://www.linkedin.com/shareArticle?mini=true&url=www%2Eprotiviti%2Ecom%2FIAsurvey
https://twitter.com/intent/tweet?text=New%20Survey%3A%20Internal%20Auditors%20and%20Cybersecurity%20www.protiviti.com%2FIAsurvey&source=webclient
https://www.facebook.com/sharer/sharer.php?u=http://www.protiviti.com/iasurvey
https://www.glassdoor.com/Overview/Working-at-Protiviti-EI_IE30849.11,20.htm
https://www.youtube.com/user/protivitiinc

2014 Internal Audit Capabilities and Needs Survey Protiviti

2014 Internal Audit Capabilities and Needs Survey Protiviti

Documents
Introduction to IT Audit · 2008. 8. 15. · 3 ©2008 Protiviti Inc. This document is for your company’s internal use only and may not be dis tributed to any third party. Protiviti

Introduction to IT Audit · 2008. 8. 15. · 3 ©2008 Protiviti Inc. This document is for your company’s internal use only and may not be dis tributed to any third party. Protiviti

Documents
Internal Capabilities

Internal Capabilities

Documents
Aligning internal data capabilities with external research

Aligning internal data capabilities with external research

Documents
Updated COSO Internal Control Framework FAQs Second Edition Protiviti

Updated COSO Internal Control Framework FAQs Second Edition Protiviti

Documents
AHIA - Top Priorities in Healthcare and Internal Audit - Protiviti

AHIA - Top Priorities in Healthcare and Internal Audit - Protiviti

Business
Top Priorities for Internal Audit in Technology › sites › default › files › ... · PROTIVITI • TOP PRIORITIES FOR INTERNAL AUDIT IN TECHNOLOGY 3 Cybersecurity: It has become

Top Priorities for Internal Audit in Technology › sites › default › files › ... · PROTIVITI • TOP PRIORITIES FOR INTERNAL AUDIT IN TECHNOLOGY 3 Cybersecurity: It has become

Documents
Internal Analysis: Resources, Capabilities, and Activities Joe Mahoney

Internal Analysis: Resources, Capabilities, and Activities Joe Mahoney

Documents
The Internal Organization: Resources, Capabilities, and Core Competence

The Internal Organization: Resources, Capabilities, and Core Competence

Documents
Chap. 3 Evaluating a Firm’s Internal Capabilities

Chap. 3 Evaluating a Firm’s Internal Capabilities

Documents
Updated coso internal control framework fa qs second edition-protiviti-2013_good

Updated coso internal control framework fa qs second edition-protiviti-2013_good

Education
Internal Analysis: Resources, Capabilities, and Activities

Internal Analysis: Resources, Capabilities, and Activities

Documents
Internal Audit Capabilities and Needs Survey Report, 2016

Internal Audit Capabilities and Needs Survey Report, 2016

Business
NEXT GENERATION INTERNAL AUDITING - Protiviti...help leaders confidently face the future. Protiviti and our independent and locally owned Member Firms provide clients with c onsulting

NEXT GENERATION INTERNAL AUDITING - Protiviti...help leaders confidently face the future. Protiviti and our independent and locally owned Member Firms provide clients with c onsulting

Documents
Risk and Compliance Services - Protiviti · Protiviti () is a global consulting firm that helps companies solve problems in finance, technology, operations, governance, risk and internal

Risk and Compliance Services - Protiviti · Protiviti () is a global consulting firm that helps companies solve problems in finance, technology, operations, governance, risk and internal

Documents
The Internal Environment: Resources, Capabilities, and ...alum.sharif.ir/~ali_khademian/img/internal_analysis.pdf · The Internal Environment: Resources, Capabilities, and Core

The Internal Environment: Resources, Capabilities, and ...alum.sharif.ir/~ali_khademian/img/internal_analysis.pdf · The Internal Environment: Resources, Capabilities, and Core

Documents
Internal Capabilities, External Linkages, and Performance ... · PDF file1 Internal Capabilities, External Linkages, and Performance: A Study on Technology-based Korean Ventures draft

Internal Capabilities, External Linkages, and Performance ... · PDF file1 Internal Capabilities, External Linkages, and Performance: A Study on Technology-based Korean Ventures draft

Documents
An Economist Intelligence Unit research program sponsored by Protiviti. Restoring confidence: Risk management capabilities in the wake of the financial crisis

An Economist Intelligence Unit research program sponsored by Protiviti. Restoring confidence: Risk management capabilities in the wake of the financial crisis

Business
2014 Internal Audit Capabilities and Needs Survey - Infographic

2014 Internal Audit Capabilities and Needs Survey - Infographic

Business
2017 Internal Audit Capabilities & Needs Survey Infographic

2017 Internal Audit Capabilities & Needs Survey Infographic

Business
Australian Government protiviti· · Australian Government ~~~~~-· Department of Health . protiviti· Fa

Australian Government protiviti· · Australian Government ~~~~~-· Department of Health . protiviti· Fa

Documents
Table of Contents - Protiviti · Impact of the Application of COSO’s Guidance on Monitoring Internal ... on monitoring internal control systems, ... monitoring tools or techniques

Table of Contents - Protiviti · Impact of the Application of COSO’s Guidance on Monitoring Internal ... on monitoring internal control systems, ... monitoring tools or techniques

Documents
Evaluating a Firm’s Internal Capabilities

Evaluating a Firm’s Internal Capabilities

Documents
Internal Audit Capabilities and Needs Survey - Protiviti · internal audit professionals. With this in mind, Protiviti recently conducted a survey of chief audit executives (CAEs),

Internal Audit Capabilities and Needs Survey - Protiviti · internal audit professionals. With this in mind, Protiviti recently conducted a survey of chief audit executives (CAEs),

Documents
Protiviti Style Guide

Protiviti Style Guide

Documents
OPERATIONAL RESILIENCE - Protiviti

OPERATIONAL RESILIENCE - Protiviti

Documents
Changing Trends in Internal Audit and Advanced Analytics · PROTIVITI Changing Trends in Internal Audit and Advanced Analytics 1 Internal audit (IA) functions in the financial services

Changing Trends in Internal Audit and Advanced Analytics · PROTIVITI Changing Trends in Internal Audit and Advanced Analytics 1 Internal audit (IA) functions in the financial services

Documents
2013 IA Capabilities Needs Survey Protiviti

2013 IA Capabilities Needs Survey Protiviti

Documents
The Digitization of IT - Protiviti · 2017-03-23 · The Digitization of IT © 2017 Protiviti Inc. An Equal Opportunity Employer M/F/Disability/Veterans. PRO-0317 Internal Audit,

The Digitization of IT - Protiviti · 2017-03-23 · The Digitization of IT © 2017 Protiviti Inc. An Equal Opportunity Employer M/F/Disability/Veterans. PRO-0317 Internal Audit,

Documents
Top Priorities for Internal Audit in Financial Services ......Top Priorities for Internal Audit in Financial Services Organisations 1 Introduction Each year, Protiviti conducts its

Top Priorities for Internal Audit in Financial Services ......Top Priorities for Internal Audit in Financial Services Organisations 1 Introduction Each year, Protiviti conducts its

Documents