Norman Marks has been recognized around the world for his thought leadership in internal auditing and risk management, for which he was made a Fellow of the Open Compliance and Ethics Group (OCEG) and an Honorary Fellow of the Institute of Risk Management (IRM). He served as the chief audit executive of major global companies for about 20 years, as well as chief risk officer and ethics officer.

Norman is a two-time winner of the Thurston Award for the best article in the IIA's Internal Auditor magazine.

HisHis blogs attract 10-20,000 views each month. He is an author of many renowned books such as: World-Class Risk Management, World-Class Internal Audit: Tales from my Journey, etc.

HeHe has also worked with a number of global corporations, headlining their annual audit department conferences, including Coca Cola, Swedbank, Hilton, and GM. In addition, he has spoken to IIA national conferences in Singapore, Malaysia, Russia, USA, Canada, Australia, and several times to the European Confederation of Institutes of Internal Auditing (IIA).

Author, Evangelist and Mentorfor Better Run Business

OCEG Fellow, Honorary Fellow of the Institute of Risk Management

Norman D. MarksCPA, CRMA

Lead Trainer

Gain an Insight into:

Understanding risk and its managementKnowing an internal auditors’ role in risk managementAssessing the organization's risk management capabilityAuditing the risks that matter to the enterprise and its leadersKnowing an internal auditors’ role in risk and fraud assessmentAAddressing the potential for financial statement fraudBuilding a world-class internal audit teamAuditing governance processes

Statistics:

7 countries

40 plus organizations

trained successfully

100 plus participants

Average course ratings

8.5 at the scale of 10

An Opportunity Never to Miss!

25% Discountfor registration &

payment tillMarch 31st

By,ACS, Inc. Phoenix, AZ USA

May 24th- 26th, 2016 Hotel Towers Rotana, Dubai | UAE

....that matters to enterprise and its leaders

World-ClassInternal Auditing& Risk ManagementTraining Workshop

Email: trainings@acsmb.com www.acsmb.com/training

World-Class Internal Auditing & Risk Managment....that matters to enterprise and its leaders

Benefits

You will learn:

• What the management of risk truly is, and how it can be effectively

managed

• How risk is described in the major risk frameworks/standards (COSO

ERM and ISO 31000).

• H• How the management of risk is essential to effective decision-making

and achieving enterprise objectives.

• How to integrate the management of risk into daily decision-making

across the enterprise

• The relationship between owning risk and owning performance

against an objective

• The role of internal auditing in risk management

• H• How internal audit should communicate their assessment to the

board/owners

• Enterprise risk-based auditing

• Techniques for identifying and assessing the risks that matter

• The concept of a flexible audit plan

• Selling agile auditing to the audit committee or owners

• The relationship of IT general controls to business risk

• • Why and how to auditing governance processes

• Fraud risk assessment and investigation: the skills and competency

required to address fraud

• Building and harnessing the capabilities of the audit team

• Presentation content will be supplemented by Case studies/Group

discussion/Exercises

Industries (but not limited to)

• Banking• Banking

• Financial Institutions

• Oil and Gas

• FMCG

• Manufacturing

• Heavy Industries

• Insurance

• Healthcare• Healthcare

• Real Estate

What is Included?

• Presentations & lectures

• Group discussions

• Workshop, exercises & use cases

• Certificate of Achievement

• • Course material & Handouts

• USB device

• Study binder

• International buffet lunch with coffee/tea breaks.

Norman Marks, CPA, CRMA

Norman Marks, CPA, CRMA is an evangelist for

“better run business”, focusing on corporate

governance, risk management, internal audit,

enterprise performance, and the value of

information. He is also a mentor to individuals

and organizand organizations around the world.

NormanNorman was the chief audit executive of major global corporations for

twenty years and is a globally-recognized thought leader in the

professions of internal auditing and risk management. In addition, he

has served as chief risk officer, compliance officer, and ethics officer,

and managed what would now be called the IT governance function

(information security, contingency planning, methodologies, standards,

etc.) He ran the Sarbanes-Oxley Section 404 (SOX) programs and

ininvestigation units at several companies.

He is the author of four books: World-Class Risk Management; the

Institute of Internal Auditors’ “Management’s Guide to Sarbanes-Oxley

Section 404: Maximize Value Within Your Organization”, which has

been described as “the best Sarbanes-Oxley 404 guide out there for

management”; World-Class Internal Audit: Tales from my Journey; and

“How Good is your GRC? Twelve Questions to Guide Executives,

Boards, and Practitioners”.

NormanNorman is a member of the review boards of several audit and risk

management publications (including the magazines of ISACA and the

IIA), a frequent speaker internationally, the author of multiple

award-winning articles,receivingthe IIA’s Thurston award in 2004 and

2014, and a prolific blogger about better run business (consistently

rating as one of the top global influencers in social media on the topics

of GRC, internal audit, risk management, and governance).

NormanNorman was profiled in publications of the AICPA and the IIA as an

innovative and successful internal auditing leader. He has also been

honored as a Fellow of the Open Compliance and Ethics Group for his

GRC thought leadership, and as an Honorary Fellow of the Institute of

Risk Management for his contributions to risk management

Training Objectives

HelpHelp participants understand: risk and its effective management; how

to identify the risks that matter to the enterprise and its leaders;

techniques for building an agile audit plan with engagements that

matter;auditing governance processes;how to address the potential for

financial statement fraud; and how to build a world-class internal audit

team.

Who Should Attend

• • Chief Internal Auditors

• Chief Risk Officers

• Auditors

• Vice Presidents, General Managers, Directors, Senior Managers,

Managers of: Risk, Audit, Compliance, Corporate Governance, Internal

Control, Fraud, etc.

Course Fee $2,900/ParticipantIndividual Discount25% Discount: Book & pay on or before 31st March, 2016 USD 2,175/-15% Discount: Book & pay on or before 28th April, 2016 USD 2,465/-Book & pay after 28th April, 2016 USD 2,900/-Corporate / Group DiscountEExtra 10% Discount on minimum of 3 Participants

Email: trainings@acsmb.com www.acsmb.com/training

Day 1Understanding Risk and its ManagementOpening SessionPresentationCourse detailsPresentation of all attendees

SSession 1.1: What is effective risk Management?

• Before talking about risk-based internal auditing, it is necessary to agree on what is meant by ‘risk’. This topic will address how risk is described in the major risk frameworks/standards (COSO ERM and ISO 31000). It will then cover how the management of risk is essentialto effective decision-making and achieving enterprise objectives.

•• When can an organization’s management of risk be considered effective? Is a periodic review of top risks sufficient? What does it mean to integrate the management of risk into daily decision-making across the enterprise?

• Who is responsible for the management of risk? Is it the CRO? What is the relationship between owning risk and owning an objective? How does an organization address the inter-relationship of risk?

• • How much risk is enough? What is risk appetite and does it make sense? What are risk criteria?• How can the board or owner of the organization know whether the desired level of risk is being taken?

• How much risk management is enough?• Group discussion

Session 1.2: What is internal audit’s role in risk management?

•• What is internal audit’s mission? What are the core principles for effective internal auditing, and have they changed expectations?

• What is the difference between internal audit and risk management? What are the three lines of defence?

• Can internal audit run risk management? Can risk management run internal audit?

•• What is internal audit’s obligation to the board and owners when it comes to the management of risk?

• Is internal audit an evangelist for risk management?• The best question to assess whether management understands whether they are taking the desired level of risk

• Group discussion

Session 1.3: Assessing the organization's risk management capability

• • Should internal audit assess how management addresses risk?• When should internal audit perform an assurance engagement and when is consulting/advisory work of more value?• What constitutes ‘adequate’ when assessing risk management? Is compliance with policy sufficient?• Do risk management maturity models help?•• How should internal audit communicate their assessment to the board/owners

• Group discussion

Session 1.4: Moving to auditing the risks that matter and helping the

organization succeed

• Is our job to help the organization succeed or to point out deficiencies?•• What are the risks that matter? Are they the risks that internal audit traditionally audits?

• What is enterprise risk-based auditing? What are we trying to assess?• How do we know what matters? What are techniques for finding out?• Can internal audit assess non-traditional areas of risk?• Case studies/Group discussion/Exercises

Day 2How to identify the risks that matter to the enterprise and its leaders

Session 2.1: The dynamic internal audit plan

• How often should the audit plan be updated? What is meant by an agile or dynamic audit plan?

• The • The concept of a rolling audit plan• Explaining agile auditing to the audit committee or owners• Who is responsible for the audit plan?• Case studies/Group discussion/Exercises

Session 2.2: Defining audit engagements that matter

• Reliance on ERM•• When to perform an assurance and when to perform a consulting/advisory engagement

• When does should internal audit not perform an audit?• How many audits does it take to assess an area of risk?• Understanding the relationship of IT general controls to business risk• What if you don’t have the resources you need?• Case studies/Group discussion/Exercises

SSession 2.3: Auditing governance processes

• What is organizational governance? Is it limited to the board or owners?• Why audit governance processes? Where is the risk?• When to perform assurance and when to perform advisory work• How to communicate the results of the audit• Case studies/Group discussion/Exercises

Session 2.4: Internal audit's role in fraud and fraud risk assessment

• Is it i• Is it internal audit’s role to prevent, detect, or investigate fraud?• When does internal audit get involved?• How do you assess the risk of fraud?• The skills and competency required to address fraud• An overview of a fraud investigation• Group discussion

World-Class Internal Auditing & Risk Managment....that matters to enterprise and its leaders

Programme Schedule

08:00 Registration & Introduction08:30 Session One10:00 Tea Break & Networking10:15 Session Two11:45 Lunch Break & Networking112:45 Session Three02:15 Tea Break & Networking02:30 Session Four04:00 Workshop Concludes

In-House Training Solutions

If you have a good number of delegates with similar training needs, then you may wish to consider having an In-House Training delivered locally on-site. The course can be tailored to specific requirements. For more details, please contact:trainings@acsmb.com

Testimonials from our Past Events

Chief Financial OfficerDas Holding - Abu Dhabi, UAE“Very productive training comes with more understanding on the financial modelling along with using Excel techniques”.

Financial Modeling Using Excel

JJanuary 17-19, 2016

Head of Department (RIS)Qatar Petroleum - Doha, Qatar"A well organized, informative with practical suggestions. I like most the interaction with trainer & participants."

PACS/RIS, DICOM, HL7

November 8-12, 2015

HHIS SpecialistMinistry of Health - Dubai, UAE"The training was very educative, informative and entertaining.”

EMR/EHR-Meaningful Use

August 31-Sep 1st, 2015

DirectorCleveland Clinic - Abu Dhabi, UAE"I like most the group "I like most the group activity to demonstrate understanding."

Corporate Performance Management

August 23-25, 2015

PACS AdministratorJohn Hopkins Aramco - Dhahran, KSA"It was an excellent course."

PACS/RIS & IHE

MMarch 22-26, 2015

Day 3Addressing the potential for financial statement fraud

Session 3.1: Communicating audit results

• What is the purpose of an audit report?• What needs to be communicated, and to whom?• The purpose of a closing meeting• • Selling audit findings and recommendations• Attributes of an effective communication• Should we move away from traditional audit reporting?• Case studies/Group discussion/Exercises

Session 3.2: Building a world-class internal audit team

• Now that you have an audit plan, how do you staff it? What are the skills, experiences, and competencies you need?• • Harnessing the capabilities of the audit team, motivating them to excellence• Where should the staff be based?• When should internal auditors be allowed to join other functions?• Group discussion

Session 3.3: How do you know when internal audit is world-class?

• What are the distinguishing characteristics of world-class internal auditing?• • Does passing a Quality Assurance review guarantee sufficient quality and value?• What is the value of internal auditing? Who measures it?• OK, you are world-class – what is next?• Group discussion

Session 3.4: The future of internal audit

• The use of technology to enhance the value of internal audit• • Should internal audit report to the board/owner• How can internal audit add value beyond traditional internal auditing?• Is traditional thinking around independence good or a limitation?• Group discussion• Further Q&A, Discussion, Certificate Presentation, Course Close

World-Class Internal Auditing & Risk Managment....that matters to enterprise and its leaders