Implementing Analytics in Internal Audit. Jordan Lloyd Senior Manager Ravindra Singh Manager

Similar documents
Internal Audit and Technology Sustainable Analytics

Social Analytics in Media & Entertainment The three-minute guide

Welcome to the postmodern era for public sector ERP

Effective adoption of internal audit analytics in financial services institutions

Understanding employee engagement after a corporate acquisition A global communications company. EngagePath client spotlight

CFO meets M&A: Value creation in the digital age The Dbriefs Driving Enterprise Value series

Legacy System Modernization. Imperatives. Challenges. Approach. Case Studies. PA TechCon. May 4, Considerations

Deloitte s High-Impact HR Operating Model: Business HR. Deloitte Consulting LLP

Transformation in the Internal Audit Function Neil White October 5, 2017

Empower your field technicians. A smarter approach to managing field assets using mobile tools

Deloitte Accelerated Value: SaaS innovation for the digital core. Extending the potential of core systems, addressing tomorrow s needs

Four faces of the CFO

Mid-market technology trends: Leveraging disruption to drive value The Dbriefs Private Companies series Anthony Stephan, Principal, Deloitte

SAP S/4HANA Finance The Finance Labs The Art of the Possible

Modernizing regulatory reporting in banking & securities Where to get started. CENTER for REGULATORY STRATEGY AMERICAS

Extended Enterprise Risk Management

Scenario analysis: what is it and how can it help business deal with climate risk?

Securing Capabilities in the Cloud: Security and Privacy in the Evolution of Cloud Computing

Building a Business Case for Talent Analytics

Courageous Principals From Insight to Action. Deloitte University, The Leadership Center

It s time to revisit your anti-corruption compliance program How to design an effective and defensible compliance program in response to global trends

High-Impact Talent Management in the Mid-Market November 30, 2016

2017 Deloitte Renewable Energy Seminar Innovating for tomorrow November 13-15, 2017

2017 NASC Annual Conference SESSION G: Postmodern ERP: Back to The Future

The BIG question: How can you optimize to drive growth?

A View from the C-Suite: The Value Proposition of Shared and Global Business Services The Conference Board 20th Annual Global Business and Shared

Operational Risk Management (#DOpsRisk) Solutions suite

Federal Reserve Guidance on Supervisory Assessment of Capital Planning and Positions for Large Financial Institutions.

Leveraging Collaboration to Assess ICD-10 Readiness and Reduce ICD-10 Operational and Financial Risks

Quality Assessments what you need to know

Unlock your digital marketing potential

Deloitte and IBM Smarter teaming for clients

Deciphering third-party business risk in a period of weak commodity prices

Global Manufacturing Industry Landscape

Take Control. Eliminate Random Acts of Marketing.

Sarbanes-Oxley Act of 2002 Can private businesses benefit from it?

Effective Learning Through Cases: Examples from the Trueblood Case Study Series

MDM offers healthcare organizations an agile, affordable solution To deliver high quality patient care and better outcomes

Presented by David Bischof SIOPSA 2016

Board Bio Leading Practices. Building your Board Bio Pre-Work for Deloitte Workshop

Extended Enterprise Risk Management

This document is based on public information, which can be found here: a.

Information Technology Risks in Today s Environment

Implementing a corporate legal process outsourcing solution. Key considerations before embarking on the legal service delivery transformation journey

The future of procurement in the age of digital supply networks The DBriefs Driving Enterprise Value series

Developing a Successful Product

Revenue synergies in acquisitions In search of the Holy Grail

Reimagining IT: Leading technology organizations into the future The Dbriefs Technology Executives series

Take 3 Improving patient outcomes

Proposed Attestation Requirements for FR Y-14A/Q/M reports. Overview and Implications for Banking Institutions

Beyond EDI Unlocking new value with transactions enabled by SAP Ariba and the Ariba Network

Webcast title in Verdana Regular

Deloitte School of Analytics. Demystifying Data Science: Leveraging this phenomenon to drive your organisation forward

Turning Data into Insights Information Management with Deloitte and Informatica

The direct approach Finding new value with direct procurement

Rethink your ERP Strategy with S/4HANA. Deloitte Consulting Switzerland

Model risk management A practical approach for addressing common issues

Quarterly accounting roundup: An update on important developments The Dbriefs Financial Reporting series Robert Uhl, Partner, Deloitte & Touche LLP

EMEA TMC client conference Developing a tax technology architecture. The Crystal, London 9-10 June 2015

Risk Advisory Services Developing your organisation s governance for competitive advantage

The 2016 Deloitte Millennial Survey. Switzerland - Country Report 17 January 2016

International Finance Corporation

Sustainability reporting using the GRI Taxonomy

INDUSTRY STUDY. The Definitive Buyer's Guide to the Global Market for Learning Management Solutions 2013

Beyond Compliance. Leveraging Internal Control to Build a Better Business: A Response to Sarbanes-Oxley Sections 302 and 404

The value of global process owners in global business services. Part 1

People analytics: Actionable insights are the new mandate The Dbriefs HR Executives series

M&A matchmaking Business model coherence

The Robots Are Here! RPA Services in Greece

Welcome your.. virtual colleagues!

Future-proof your digital business. Reimagining customer engagement and your brand experience.

Headline Verdana Bold

The culture or the leader? An organizational view of the chicken or the egg question. Deloitte Culture Perspectives

An intelligent approach to unlocking value in service delivery transformation Focus on risk from the start

Risk Based Approach and Enterprise Wide Risk Assessment Edwin Somers / Inneke Geyskens-Borgions 26 September 2017

Enterprise. Service. Transformation. Deloitte driving your digital service excellence with ServiceNow

EXECUTIVES are usually hired to drive business. Influencing stakeholders. Executive Transitions. Persuade, trade, or compel

Simplification of work: Knowledge management as a solution within the European Institutions

Global Procurement Transformation at INVISTA

On the board s agenda US Winning with digital: What boards need to know about digital transformation

Getting Comfortable with being Uncomfortable! Using Agile IA to transform your internal audit function

Sustainability Reporting using the GRI Taxonomy Paul Hulst, Deloitte

Partnering with the business to create a successful self-service analytics framework

Global mobility shared service centres That s the bottom line

4/26. Analytics Strategy

SREP Transformation The Deloitte approach. Deloitte Malta Risk Advisory - Banking

Spotlight on Africa HR and Global Mobility trends and approaches in Africa

DELOITTE DIGITAL & SPRINKLR. Today s customer experience means communicating on customers terms, needs, and interests

Insurance Analytics: Organizing Analytics capabilities to get value from Data Analytics solutions A Deloitte point of view on Data Analytics within

Outsourcing transparency evolution

Building an AppSec Program from Scratch. Chris Pfoutz, CISSP, GWAPT Manager Application Security

Anti Money Laundering (AML) Advisory Services Effective solutions for complex issues Deloitte Malta, 2017

Managing tax Balancing current challenge with future promise The EYE, Amsterdam, 30 November 1 December 2016

Introduction. Key points of the recent ODPC guidance, and the Article 29 working group guidance

Integrate, Optimize, Orchestrate, and Unify One Digital Ecosystem Throughout the Enterprise

EMEA TMC client conference Enterprise data management. The Crystal, London 9-10 June 2015

Aligning perception with reality in shared services governance

Securing Enterprise Social Media and Mobility Apps

The people dimension of amalgamations. Machinery of government The people dimension of amalgamations. Three part series

Seizing cloud opportunities The consolidated audit trail

Transcription:

Implementing Analytics in Internal Audit Jordan Lloyd Senior Manager Ravindra Singh Manager

What does Success Look Like To deliver successful analytical insight as an everyday part of the audit process means IA must focus more broadly than on data and technology. The goal is to develop cost effective solutions that are targeted and underpin the audit process to achieve a more efficient and effective audit delivery model. Becoming analytics-enabled relies on the fundamental building blocks of People, Process, Data and Technology being informed by an Analytics Strategy. This enables the embedding of analytics into the audit lifecycle, the focusing on the right risks at the right time, while aligning analytics to the IA strategy and value drivers of the business.

Benefits of Analytics Perform the same audit faster Perform the same audit cheaper Perform more targeted audits Make innovation a centerpiece

Maturity of internal audit analytics 4

Planning the journey Building Blocks Key Questions to Consider Strategy Process Data Analytics vision for audit services Identifies key projects/programs, stakeholders and metrics Aligned with corporate and information technology strategies Organizational structure and program sponsor/manager People Capability / competency acquisition or development Collaboration and communication planning Operating model for developing and consuming insights Analytics prioritization and project management Methodologies and approaches for analytics Solution requirements, evaluation, selection and set-up Technology Technology vendor / license management Technology architecture and solution optimization Data acquisition and enrichment Data model architecture Data governance and security Building a sustainable analytics function requires a foundation of the fundamental building blocks of People Process, Data and Technology, informed by an Analytics Strategy. Who is the accountable IA owner? What organisational structure do we need to put in place to support our analytical strategy? Who do we need to engage in other departments and what are their roles? What other talents do we need and what is the plan for getting them? How do we identify the right projects on which to focus our efforts? What are the steps we need to take to ensure that these projects are a success? How will we comply with relevant regulations? What are the risks and how do we mitigate them? How will we measure our progress and test the validity of the insight? What data do we need to answer the important questions? From where is it sourced internal, external, licensed, open? How do we bring it together and what are the challenges in transforming, linking and publishing it? What about quality and accuracy? What tools do we need to process the data? How do we scale up the technology when we need to roll out to the rest of the function? Do we use a self-service or bespoke solution model? 5

Organizing for Success Operating Models Interaction Models = Analytics capability 6

Multi-dimensional team 7

Multi-Disciplinary Approach 8

Audit Interaction Model The data analytics team supports the overall IA mission through the successful deployment of team resources at the engagement level. For engagements that require analytic support, there are numerous instances where data specialists and analysts can influence processes to yield successful audits. The following graphic demonstrates the high-level timeline and key interactions for audit analytics. 9

CRISP DM: The Model Development Framework What is the operating culture? Where have controls failed in the past? When is data captured in the system? How can data be merged and cleansed in order to establish records to analyze? Analytics Process 1 2 3 4 5 6 Business Data Data Modeling Evaluation Deployment Understanding Understanding Preparation Analytics Tools /Solutions What analytic techniques can be used to identify known high risk scenarios in the data? Are there other scenarios that look similar? Which analytic techniques implemented are most reliable in identifying potential risks in the data? How can analytic techniques be leveraged to identify potential risks on an ongoing basis? What does the end-state solution look like? What are the key business processes in the operation? What are the vulnerabilities? Where is data stored and in what format? Materials Master Requisitions Purchase Orders What analytic techniques can be used to identify potential unknown scenarios of control failures in the data? Movements FAMILIARIZE ANALYZE OPERATIONALIZE

Reducing false positives with advanced Analytics A noticeable ROI from advanced analytic techniques is the reduction in cost, time and effort, to review transactions and assess if they are truly of concern Model maturity development 99.99% 99.5% 99.25% Random Sampling General Rules Tailored Rules False Positive Rate 60% Risk Aggregation 30% 25% Profile Risk Aggregation Machine Learning 0.01 0.5 0.75 40 60 75 100 Unusual Transactions Identified per period 11

This presentation contains general information only and Deloitte is not, by means of this presentation, rendering accounting, business, financial, investment, legal, tax, or other professional advice or services. This presentation is not a substitute for such professional advice or services, nor should it be used as a basis for any decision or action that may affect your business. Before making any decision or taking any action that may affect your business, you should consult a qualified professional advisor. Deloitte shall not be responsible for any loss sustained by any person who relies on this presentation. About Deloitte Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ( DTTL ), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as Deloitte Global ) does not provide services to clients. Please see www.deloitte.com/about for a detailed description of DTTL and its member firms. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. Certain services may not be available to attest clients under the rules and regulations of public accounting. #NACACS Copyright 2016 Deloitte Development LLC. All rights reserved. Member of Deloitte Touche Tohmatsu Limited

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback