Institute of Internal Auditors

From Wikipedia, the free encyclopedia

Established in 1941, The Institute of Internal Auditors (IIA) is internationally recognized as a trustworthy guidance-setting body. Serving members in 165 countries, The IIA is the internal audit profession's global voice, chief advocate, recognized authority, acknowledged leader, and principal educator, with global headquarters in Altamonte Springs, Fla., United States.

Contents 1 IIA Mission 2 Certified Internal Auditor (CIA) 3 Other Certificates Offered by the IIA 4 Professional Standards 4.1 Standards and Code of Ethics 4.2 Practice Advisories 4.3 Development and Practice Aids 4.4 Global Technology Audit Guide (GTAG) 5 See also 6 External links

[edit] IIA Mission

The stated mission of The Institute of Internal Auditors is to provide dynamic leadership for the global profession of internal auditing. This includes:

• Advocating and promoting the value that internal audit professionals add to their organizations;

• Providing comprehensive professional education and development opportunities; standards and other professional practice guidance; and certification programs;

• Researching, disseminating, and promoting to practitioners and stakeholders knowledge concerning internal auditing and its appropriate role in control, risk management, and governance;

• Educating practitioners and other relevant audiences on best practices in internal auditing;

• Bringing together internal auditors from all countries to share information and experiences.

[edit] Certified Internal Auditor (CIA)

The CIA is the primary professional designation offered by The IIA. The CIA designation is a globally recognized certification for internal auditors and is a standard by which individuals may demonstrate their competency and professionalism in the internal audit field. In order to earn the CIA, one must possess a U.S. college degree or equivalent academic qualification from another country (work experience cannot be substituted for the degree), have a professional reference, pass a four-part exam (exemptions may be secured from part four via other relevant professional qualifications), and complete 24 months in the internal audit profession.

Earning the CIA qualification is intended to demonstrate a professional knowledge of the internal audit profession. CIAs are required to take continuing education courses.

Like the Chartered Certified Accountant (ACCA) qualification, and unlike local qualifications such as Certified Public Accountant or Chartered Accountant, the CIA is a global designation. These standards are expected to be obeyed globally by IIA members, and by internal audit functions claiming to work to IIA standards, unless local laws or regulations make it impossible.

[edit] Other Certificates Offered by the IIA

Certification in Control Self-Assessment (CCSA)

Certified Government Auditing Professional (CGAP)

Certified Financial Services Auditor (CFSA)

[edit] Professional Standards

The IIA has three levels of Professional Standards:

[edit] Standards and Code of Ethics

The first level is covered in The IIA's Code of Ethics and The International Standards for the Professional Practice of Internal Auditing (Standards). These guidelines are mandatory for IIA members and internal audit organizations claiming to complete audits to IIA standards around the world. The Standards are recorded in what is referred to as the "Red Book."

[edit] Practice Advisories

Practice Advisories are not mandatory guidelines, but are strongly recommended. They help define and explain the Standards.

[edit] Development and Practice Aids

Includes a variety of materials that are developed and/or endorsed by The IIA, including research studies, books, seminars, conferences, and other products and services related to the professional practice of internal auditing.

[edit] Global Technology Audit Guide (GTAG)

GTAGs are written in straightforward business language to address a timely issue related to information technology (IT) management, control, and security. To date, The IIA has released GTAGs on the following topics:

• GTAG 1: Information Technology Controls
  
• GTAG 2: Change and Patch Management Controls: Critical for Organizational Success
  
• GTAG 3: Continuous Auditing: Implications for Assurance, Monitoring, and Risk Assessment
  
• GTAG 4: Management of IT Auditing
  
• GTAG 5: Managing and Auditing Privacy Risks
  
• GTAG 6: Managing and Auditing IT Vulnerabilities
  
• GTAG 7: Information Technology Outsourcing
  
• GTAG 8: Auditing Application Controls
  
• GTAG 9: Identity and Access Management
  

[edit] See also

• Internal Audit
• Internal Control

[edit] External links

• The Institute of Internal Auditors
• New York State Internal Control Association
• Essays on Common Sense Management regarding Internal Control
• COSO