Salam GGCG (Good Governance & Clean Government).........
Tulisan berikut ini adalah terjemahan saya atas Panduan Implementasi Standar Audit IPPF. Saya belum memperoleh terjemahannya dalam Bahasa Indonesia sehingga saya mencoba menerjemahkannya. Mohon dikoreksi jika ada kesalahan dalam kolom komentar. Semoga dapat bermanfaat bagi Pembaca Blog ini dimanapun berada, khususnya bagi para auditor internal. Saya akan menerjemahkan mulai dari Bahasa Inggrisnya lalu terjemahannya kedalam Bahasa Indonesia.
Implementation Guides assist internal auditors in applying the Definition of Internal Auditing, the Code of Ethics, and the Standards and promoting good practices. Implementation Guides address internal auditing's approach, methodologies, and consideration, but do not detail processes or procedures. They include practices relating to international, country, or industry-specific issues; specific types of engagements; and legal or regulatory issues. First Issued: 1 January, 2017
Panduan Implementasi membimbing auditor internal untuk menerapkan Ketentuan Audit Internal, Kode Etik, dan Standar dan meningkatkan Pelaksanaan Audit yang lebih baik. Panduan Implementasi berisikan Pendekatan, Metodologi, dan Pertimbangan Audit Internal, tetapi tidak merinci/mendetailkan Proses atau Prosedurnya. Panduan ini meliputi Panduan Pelaksanaan Audit di lingkungan Internasional, Negara atau Isu khusus Industri, jenis penugasan khusus, dan isu hukum atau peraturan. Pertama kali diperkenalkan pada tanggal 1 Januari 2017.
Standard 1000 – Purpose, Authority, and ResponsibilityThe purpose, authority, and responsibility of the internal audit activity must be formally defined in an internal audit charter, consistent with the Mission of Internal Audit and the mandatory elements of the International Professional Practices Framework (the CorePrinciples for the Professional Practice of Internal Auditing, the Code of Ethics, the Standards, and the Definition of Internal Auditing). The chief audit executive mustperiodically review the internal audit charter and present it to senior management and the board for approval.
Interpretation:The internal audit charter is a formal document that defines the internal audit activity's purpose, authority, and responsibility. The internal audit charter establishes the internal audit activity's position within the organization, including the nature of the chief audit executive’s functional reporting relationship with the board; authorizes access to records, personnel, and physical properties relevant to the performance of engagements; and defines the scope of internal audit activities. Final approval of the internal audit charter resides with the board.
Revised Standards, Effective 1 January 2017
1000 - Tujuan, Kewenangan, dan Tanggung Jawab
Tujuan, kewenangan, dan tanggung jawab aktivitas audit internal harus didefinisikan
secara formal dalam suatu piagam audit internal, dan harus sesuai dengan Misi audit
internal dan unsur-unsur yang diwajibkan dalam Kerangka Praktik Profesional
Internasional (Prinsip Pokok Praktik Profesional audit internal, Kode Etik, Standar dan
Definisi audit internal). Kepala audit internal (KAI) harus mengkaji secara periodik piagam
audit internal dan menyampaikannya kepada manajemen senior dan dewan untuk
memperoleh persetujuan.
Interpretasi:
Piagam audit internal merupakan dokumen resmi yang mendefinisikan tujuan,
kewenangan dan tanggung jawab aktivitas audit internal. Piagam audit internal
menetapkan posisi aktivitas audit internal dalam organisasi, termasuk sifat hubungan
pelaporan fungsional Kepala audit internal kepada dewan; memberikan kewenangan
untuk mengakses catatan, personil, dan properti fisik yang berkaitan dengan
pelaksanaan penugasan; dan mendefinisikan ruang lingkup aktivitas audit internal.
Persetujuan akhir atas piagam audit internal berada pada dewan.
Revisi Standar ini berlaku Efektif mulai tanggal 1 Januari 2017.
Getting Started
The internal audit charter is a critical document, as it records the agreed-upon purpose, authority, and responsibility of an organization’s internal audit activity. To create this document, the chief audit executive (CAE) must understand the Mission of Internal Audit and the mandatory elements of The IIA’s International Professional Practices Framework (IPPF) —including the Core Principles for the Professional Practice of Internal Auditing, the Code of Ethics, the International Standards for the Professional Practice of Internal Auditing, and the Definition of Internal Auditing.
The internal audit charter is a critical document, as it records the agreed-upon purpose, authority, and responsibility of an organization’s internal audit activity. To create this document, the chief audit executive (CAE) must understand the Mission of Internal Audit and the mandatory elements of The IIA’s International Professional Practices Framework (IPPF) —including the Core Principles for the Professional Practice of Internal Auditing, the Code of Ethics, the International Standards for the Professional Practice of Internal Auditing, and the Definition of Internal Auditing.
This understanding provides the foundation for a discussion among the CAE, senior management, and the board to mutually agree upon:
The CAE may need to confer with the organization’s legal counsel or the board secretary regarding the preferred format for charters and how to effectively and efficiently submit the proposed internal audit charter for board approval.
- Internal audit objectives and responsibilities.
- The expectations for the internal audit activity.
- The CAE’s functional and administrative reporting lines.
- The level of authority (including access to records, physical property, and personnel) required for the internal audit activity to perform engagements and fulfill its agreed upon objectives and responsibilities.
The CAE may need to confer with the organization’s legal counsel or the board secretary regarding the preferred format for charters and how to effectively and efficiently submit the proposed internal audit charter for board approval.
Panduan Pendahuluan
Piagam Audit internal adalah suatu dokumen yang sangat penting, yang berisikan data persetujuan tujuan, wewenang dan tanggungjawab organisasi yang melaksanakan kegiatan audit internal. Untuk menghasilkan dokumen ini, CAE/Inspektur harus memahami Misi Audit Internal dan elemen wajib pada IPPF IIA, termasuk Prinsip dasar untuk Pelaksanaan Audit Internal yang Profesional, Kode Etik, Standar International untuk Pelaksanaan Audit Internal yang Profesional dan ketentuan dalam Audit Internal.
Pemahaman ini memberikan Fondasi/dasar pembahasan antara CAE, senior managemen, dan dewan untuk bersama-sama menyetujui:
- Tujuan dan Tanggung Jawab Audit Internal
- Harapan untuk kegiatan Audit Internal
- Garis Pelaporsan Administrasi dan Fungsional CAE
- Level kewenangan (termasuk Akses data, properti fisik, dan kepegawaian), yang dibutuhkan untuk kegiatan Audit internal untuk melaksanakan penugasan dan memenuhi tujuan dan tanggung jawab yang disetujui.
CAE mungkin butuh diskusi dengan penasehat hukum/biro hukum atau sekretariat dewan yang berhubungan dengan Format Piagam dan bagaimana memberikan piagam audit internal yang efektif dan efisien untuk disetujui dewan.
Considerations for Implementation
Based on the agreed-upon elements, as noted above, the CAE (or a delegate) drafts an internal audit charter. The IIA offers a model internal audit charter that may be used as a guide. Although charters may vary by organization, they typically include the following sections:
Based on the agreed-upon elements, as noted above, the CAE (or a delegate) drafts an internal audit charter. The IIA offers a model internal audit charter that may be used as a guide. Although charters may vary by organization, they typically include the following sections:
- Introduction – to explain the overall role and professionalism of the internal audit activity. Relevant elements of the IPPF are often cited in the introduction.
- Authority – to specify the internal audit activity’s full access to the records, physical property, and personnel required to perform engagements and to declare internal auditors’ accountability for safeguarding assets and confidentiality.
- Organization and reporting structure – to document the CAE’s reporting structure. The CAE should report functionally to the board and administratively to a level within the organization that allows the internal audit activity to fulfill its responsibilities (see Standard 1110 – Organizational Independence). This section may delve into specific functional responsibilities, such as approving the charter and internal audit plan and hiring, compensating, and terminating the CAE. It may also describe administrative responsibilities, such as supporting information flow within the organization or approving the internal audit activity’s human resource administration and budgets.
- Independence and objectivity – to describe the importance of internal audit independence and objectivity and how these will be maintained, such as prohibiting internal auditors from having operational responsibility or authority over areas audited.
- Responsibilities – to lay out major areas of ongoing responsibility, such as defining the scope of assessments, writing an internal audit plan, submitting the plan to the board for approval, performing engagements, communicating the results, providing a written engagement report, and monitoring corrective actions taken by management.
- Quality assurance and improvement – to describe the expectations for developing, maintaining, evaluating, and communicating the results of a quality assurance and improvement program that covers all aspects of the internal audit activity.
- Signatures – to document agreement among the CAE, a designated board representative, and the individual to whom the CAE reports. This section includes the date, names, and titles of signatories.
Once drafted, the proposed internal audit charter should be discussed with senior management and the board to confirm that it accurately describes the agreed-upon role and expectations or to identify desired changes. Once the draft has been accepted, the CAE formally presents it during a board meeting to be discussed and approved.
The CAE and the board may also agree on the frequency with which to review and reaffirm whether the agreement’s provisions continue to enable the internal audit activity to accomplish its objectives, or whether any changes are warranted. If a question should arise in the interim, the charter may be referenced and updated as needed.
Pertimbangan untuk Implementasi
Berdasarkan elemen yang telah disetujui, sebagaimana catatan diatas, CAE (atau diwakilkan) merancang piagam audit internl. IIA menyediakan suatu model piagam audit internal yang dapat digunakan sebagai panduan. Meskipun demikian, Piagam Audit dapat bervariasi oleh Organisasi, piagam umumnya berisikan bagian berikut ini:
- Pendahuluan - untuk menjelaskan secara utuh atas peranan dan profesionalisme kegiatan internal audit. Elemen yang relevan/berkaitan dalam IPPF sering dicantumkan dalam pendahuluan.
- Kewenangan - untuk menyebutkan kegiatan audit interal dapat mengakses seluruh data, properti fisik, dan kepegawaiaan yang diperlukan untuk pelaksanaan penugasan dan untuk menunjukkan akuntabilitas auditor internal dalam menjaga keamanan aset dan kerahasiaan.
- Struktur Organisasi dan Tata Kerja - untuk mendokumentasikan struktur tata kerja CAE. CAE sebaiknya melaporkan secara fungsional kepada dewa dan secara administrasi ke level dalam organisasi yang mengijikan kegiatan audit internal untuk melaksanakan tanggungjawabnya (Baca Standar 1110-Kemandirian Organisasi). Bagian ini mungkin akan menggali tanggungjawab fungsional yang khusus, seperti menyetujui Piagam dan rencana audit internal dan perekrutan pegawai, imbalan dan memberhentikan CAE. Ini juga menggambarkan tanggung jawab administrasi, seperti menyediakan aliran informasi dalam organisasi, atau menyetujui administrasi sumber daya manusia dalam kegiatan audit internal dan anggaran.
- Kebebasan dan Objektif - untuk menggambarkan betapa pentingnya kebebasan dan objektifitas dalam kegiatan audit internal dan bagaimana cara mempertahankannya, seperti menghindari auditor internal memiliki tanggungjawab operasional atau kewenangan pada area yang diaudit
- Tanggungjawab - untuk menggambarkan
Considerations for Demonstrating Conformance
The minutes of the board meetings during which the CAE initially discusses and then formally presents the internal audit charter provide documentation of conformance. In addition, the CAE retains the approved charter. Typically, the CAE asks the board to create a standing annual agenda item to discuss, update, and approve the internal audit charter as needed. Evidence that the CAE periodically reviews the internal audit charter with senior management and the board also exists in minutes from those meetings.
Pertimbangan untuk Menunjukkan Kesesuaian
Hasil Pertemuan Dewan dengan CAE menjadi awal pembahasan dan kemudian secara resmi menghadirkan piagam audit internal yang menunjukkan dokumentasi kesesuaian. Tambahan pula, CAE menyimpan piagam yang telah disetujui. Umumnya, CAE meminta dewan untuk menyetujui agenda tahunan yang akan didiskusikan, dimutakhirkan, dan menyetujui piagam audit internal yang dibutuhkan. Bukti bahwa CAE secara rutin mereviu piagam audit internal dengan senior management dan dewan juga dibahas dalam pertemuan tersebut.
Demikian juga untuk Implementasi Standar lainnya. Hubungi saya jika membutuhkan salinannya.
Tidak ada komentar:
Posting Komentar