Risk and Cyber Audit Opportunities With AI

All Things Internal Audit: The IIA's Updated Quality Assessment Manual The Institute of Internal Auditors Presents: All Things Internal Audit In this episode, Dirk Debruyne and Marthin Grobler discuss The IIA’s recently released Quality Assessment Manual, 2024 Edition, with David Petrisky. They share their personal experiences with quality assessments and the development of the updated manual, including how it aligns with the new Global Internal Audit Standards.   In bonus content, The IIA’s Deborah Poulalion joins Robert Perez to discuss the 2024 North American Pulse of Internal Audit Report. Guests: Dirk Debruyne, managing director, D2 CAE Solutions Marthin Grobler, CAE and owner, IA Professionals Host:David Petrisky, director, Professional Standards, The IIA Key Points:  Introduction to the episode and guests [00:00:02]  Importance of quality assessments and ISB’s role [00:00:30] Marthin Grobler on his project involvement [00:01:10] Dirk Debruyne's background and contributions [00:02:16] Task force responsibilities and challenges [00:03:16] Focus on ethics in Domain 2 [00:04:24] Comparison with previous QA Manual versions [00:05:50] Alignment with new standards and assessment impact [00:07:26] Use of manual for internal and external assessments [00:09:00] Challenges in assessing conformance methodology [00:10:00] Governance’s impact on audit quality [00:12:23] Introduction of the maturity model [00:14:39] Adding maturity assessments [00:16:00] Templates and tools in the manual [00:17:16] Benefits of the four-point conclusion scale [00:18:49] Performance outcomes in assessments [00:21:01] Guidance on self-assessment with validation [00:22:38] Board and CAE expectations for assessments [00:24:14] QA Manual’s role in meeting expectations [00:26:07] Future innovations and tech in assessments [00:27:42] Value of external quality assessments [00:30:54] Final thoughts for the internal audit community [00:32:23] Bonus content [00:38:20] BONUS CONTENT HOST: Robert Pérez, owner, Pérez Communication Solutions GUEST:Deborah Poulalion, IIA senior data analyst, The IIA The IIA Related Content: Interested in this topic? Visit the links below: Quality Services Webinar: Introducing the New Quality Assessment Manual: Aligned with the Global Internal Audit Standards Quality Insights: Implementing an Internal Audit Strategic Plan Webinar: Quality Assessment Challenges and Opportunities 2025 and Beyond Participate in the 2025 North American Pulse Survey Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: Quality Assessment Manual, 2024 Edition International Internal Audit Standards Board North American Pulse of Internal Audit Risk in Focus Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Cybersecurity Challenges and AI Solutions In this episode, Sami Rifky, vice president of ISACA Casablanca, joins Mike Levy, CEO of Cherry Hill Advisory, to discuss the evolving cybersecurity landscape. They explore how AI is transforming threat detection and response, the importance of cybersecurity governance, and internal audit's role in managing cyber risks. Guests:Sami Rifky, vice president, ISACA Casablanca Host:Mike Levy, CEO, Cherry Hill Advisory Key Points:  Introduction to Cybersecurity and AI (00:00:02) Sami Rifky’s Background and Approach (00:00:37) Top Cybersecurity Risks and AI’s Role (00:02:04) Challenges During the COVID-19 Pandemic (00:02:53) AI in Cybersecurity: Opportunities and Risks (00:05:06) Internal Audit’s Role in Cybersecurity (00:07:23) Generative AI and Emerging Threats (00:10:10) Challenges in Implementing AI in Cybersecurity (00:13:08) Ethical Considerations in AI Deployment (00:18:37) Future of AI in Cybersecurity (00:21:15) The IIA Related Content: Interested in this topic? Visit the Cyber Resource Center to find comprehensive tools, courses, research, and webinars that help effectively manage and audit cybersecurity risks. Register for the IIA's Cybersecurity Virtual Conference on October 30th, where Sami Rifky will be a keynote speaker IIA Global Knowledge Brief: Cybersecurity (Part 2: Artificial Intelligence – Cybersecurity Friend and Foe) Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: IIA's Cybersecurity Virtual Conference IIA's AI Auditing Framework National Science and Technology Council (NSTC) - AI and Cybersecurity: Opportunities and Challenges IBM on AI & Cybersecurity Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Fraud Podcast "School of Fraud" Listen to The IIA’s new Fraud Podcast brought to you by All Things Internal Audit. The Fraud Podcast provides fictionalized accounts of real-world frauds featured in Internal Auditor magazine’s Fraud department. In the latest episode, an organization’s chief audit executive investigates a suspicious tuition reimbursement during the pandemic, uncovering a web of deceit involving an employee. Listen to “School Of Fraud.” IIA members can access bonus content in the form of lessons learned by reading the full Fraud article. Chapters: Introduction to the Case (00:00:01) Part 1: A Walk Interrupted (00:00:22) Part 2: Cash for Classes (00:01:23) Part 3: A Closer Look (00:03:21) Part 4: The Confession (00:05:38) Resources Mentioned: Association of Certified Fraud Examiners (ACFE) Follow All Things Internal Audit: Apple PodcastsSpotify Youtube LibsynDeezer  

All Things Internal Audit: Key to Conformance The Institute of Internal Auditors Presents: All Things Internal Audit In this episode, Liz Sandwith, talks with Lauressa Nelson about the changes in The IIA's new Global Internal Audit Standards. They discuss how internal auditors can prepare for these changes, the challenges they may face, and practical strategies to ensure conformance by Jan. 9, 2025. Guests: Liz Sandwith, CFIIA, managing partner, Sandwith Internal Audit Services and a former member of the International Internal Audit Standards Board Host  Lauressa Nelson, senior manager, Professional Standards, The IIA Key Points: Introduction to the New Standards (00:00:02 - 00:00:23) Current State of Readiness (00:00:31 - 00:01:29) Challenges in Conformance (00:01:29 - 00:02:24) Strategies for Preparation (00:02:24 - 00:03:37) Behavioral Standards and Evidence (00:06:03 - 00:07:19) Purpose and Domain 1 (00:08:30 - 00:10:04) Governing the Internal Audit Function (Domain 3) (00:11:36 - 00:13:17) Internal Audit Strategy (Domain 4) (00:17:44 - 00:19:02) Quality Assurance and Improvement Program (QAIP) (00:25:04 - 00:26:57) Coordination and Reliance (Domain 5) (00:27:12 - 00:28:41) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors conforming to the new standards below: Ethically Mastering the Global Internal Audit Standards Navigating the Global Internal Audi Standards Check out the October issue of Internal Auditor magazine for Liz Sandwith’s article, “Ready to Conform,” packed with practical advice for meeting the new standards by January 2025.   Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: The IIA’s Two-Way Mapping Document Conformance Readiness Assessment Tool The IIA’s New Global Internal Audit Standards Liz Sandwith, “Ready to Conform,” Internal Auditor magazine, October 2024 Follow All Things Internal Audit: Apple Podcasts Spotify Libsyn Deezer  

All Things Internal Audit: Elevating Data Security In this episode, Terry Ray, a top expert in data security, talks with David Pretrisky, director of Professional Standards at The IIA, about why asking the right questions is key to boosting data security and compliance in organizations. They’ll dive into how internal auditors can strengthen their organization’s security, the hurdles they encounter, and practical strategies for success. Guests: Terry Ray, senior vice president, data security GTM, field CTO, and fellow at Imperva Host: David Petrisky, director, Professional Standards, The IIA Key Points:  Introduction to Data Security and Compliance (00:00:02 - 00:00:22) Breaking Down Data Defense (00:00:31 - 00:02:45) Prioritizing Security Controls (00:02:52 - 00:04:24) Key Frameworks for Security (00:04:58 - 00:06:22) Common Vulnerabilities and Breaches (00:06:22 - 00:08:25) Advice for Internal Auditors (00:08:25 - 00:11:10) Compliance and Regulatory Frameworks (00:11:15 - 00:14:05) Internal Auditors’ Role in Security (00:14:05 - 00:17:11) Final Advice for Internal Auditors (00:17:11 - 00:17:32) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors in protecting data here. Elevate your internal auditing skills and enroll in The IIA's 2024 Cybersecurity Virtual Conference.   Visit The IIA's website or YouTube channel for related topics and more. Resources Mentioned: NIST Cybersecurity Framework General Data Protection Regulation PCI Data Security Standard  Follow All Things Internal Audit: Apple PodcastsSpotify LibsynDeezer

All Things Internal Audit: Unmasking Greenwashing In this episode, David Petrisky, director of professional standards at the IIA, as he dives into the hot topic of greenwashing with Edith Wong, managing director at FTI Consulting, and Brian Wilmot, attorney at Paul Hastings. They unpack the challenges of navigating environmental claims, share eye-opening cases, and offer practical tips for auditors tackling greenwashing and other ESG-related risks. Guests:Edith Wong, Forensic Accountant in Investigations and Compliance, FTI Consulting Brian Wilmot, Compliance and Regulatory Counseling and Investigations and White Collar Defense Practices Attorney, Paul Hastings LLP Host: David Petrisky, Dir. Professional Standards, The IIA Key Points:  Introduction to Greenwashing (00:00:02 - 00:00:42) Definition and Legal Context of Greenwashing (00:00:42 - 00:01:20) Examples and Cases of Greenwashing (00:02:23 - 00:03:30) Challenges in Environmental Claims and Reporting (00:01:45 - 00:02:23, 00:03:38 - 00:04:50) Regulatory and Litigation Activity (00:01:45 - 00:02:23, 00:05:09 - 00:06:27) Non-Financial Reporting and Corporate Communications (00:06:27 - 00:07:19) Global Frameworks and Standards (00:09:07 - 00:11:02) Role of Internal Auditors in Addressing Greenwashing (00:11:07 - 00:12:32, 00:17:07 - 00:18:47) Preventative Practices and Governance Structures (00:13:06 - 00:15:09) Industry-Specific Concerns and Risks (00:15:21 - 00:16:55) The IIA Related Content: Interested in this topic? Find more articles and resources to support internal auditors in the field of ESG auditing here.   Elevate your internal auditing skills and enroll in The IIA's ESG Certificate Program.   Visit The IIA's website or YouTube channel for related topics and more.   Resources Mentioned: TerraChoice’s Seven Sins of Greenwashing Federal Trade Commission’s Green Guides Global Reporting Initiative (GRI) Sustainability Accounting Standards Board (SASB)

All Things Internal Audit Tech: Quantum Computing In this episode, Frontier Foundry Co-founder and COO, Nick Reese, delves into the groundbreaking world of quantum computing and its game-changing potential for auditing. Discover how this cutting-edge technology could revolutionize the profession and learn practical tips on how internal auditors can stay ahead of the curve. Guest: Nick Reese, co-founder and COO of Frontier Foundry & former director of emerging technology at DHS Frontier Foundry Website [email protected] Host: Lynn Moehl, director of internal audit and chief audit executive at The IIA Key Points:  Introduction to Quantum Computing(00:00:02 - 00:00:21) Quantum Computing’s Impact on Auditing(00:00:54 - 00:02:47) Data Security and Cryptography Risks(00:03:2 - 00:06:22) Opportunities with Quantum Technology (00:07:41 - 00:08:54) Resources for Staying Informed (00:10:23 - 00:10:43) Practical Steps for Auditors (00:06:32 - 00:07:07, 00:10:15 - 00:11:48) Current State and Future of Quantum Computing (00:02:54 - 00:03:08, 00:14:44 - 00:14:49) Workforce Education and Preparation (00:18:12 - 00:19:34) Resources Mentioned: DHS Post-Quantum Cryptography Roadmap National Institute of Standards and Technology (NIST) The IIA Related Content: Interested in this topic? Learn more about the role of internal auditors in providing organizations assurance for emerging technologies here. Visit The IIA's website or YouTube channel for related topics and more.

All Things Internal Audit: Fraud Podcast "Playing the Fraud Card" Listen to The IIA’s new Fraud Podcast brought to you by All Things Internal Audit. The Fraud Podcast provides fictionalized accounts of real-world frauds featured in Internal Auditor magazine’s Fraud department. In the latest episode, City Auditor Michelle Martinez uncovers a gift card scam orchestrated by Jonathan Erick, a former City of Sommerville employee, using city funds. Martinez's keen auditing skills reveal Erick's misuse of purchase cards, leading to his arrest and highlighting the importance of robust internal controls. Listen to “Playing the Fraud Card.”IIA members can access bonus content in the form of lessons learned by reading the full Fraud article. Available now on all major podcast platforms and our Youtube channel.

All Things Internal Audit Tech: AI Governance & Ethical Considerations In this episode, hear from industry thought leaders about governance and ethical considerations of artificial intelligence usage in the internal audit profession. Experts discuss strategies to mitigate risks of sensitive data disclosure in public AI tools and emphasize the importance of governance and monitoring in AI implementation. They address ethical concerns, including preventing AI-generated risks and ensuring safe AI practices in applications involving human safety.  This conversation covers: Mitigating Risk of Sensitive Data Disclosure Governance and Monitoring in AI Importance of oversight and ethical auditing practices Preventing AI Hallucinations and Risks Strategies for ensuring ethical AI outputs through human intervention. Ensuring Safe AI Practices Addressing ethical and safety concerns in AI applications. Speakers:  Brian Willis, LBMC senior manager, cybersecurity advisor Charles King, Managing Director, Advisory Services, KPMG LLP Alex Gacheche, Head of Information Security, Meta Ivan Martinez, Managing Director, Internal Audit, Goldman Sachs Ethan Rojhani, Grant Thornton principal, risk advisory services Wes Luckock, Grant Thornton senior manager, AI, automation and analytics This episode is available on our website on our YouTube channel.

All Things Internal Audit: Key Takeaways from Occupational Fraud 2024: A Report to the Nations In this episode, Mason Wilder, research director of the Association of Certified Fraud Examiners, discusses the findings and implications of the Occupational Fraud 2024: A Report to the Nations. This conversation covers: Fraud detection and reporting methods Fraud profiles Impact of the COVID-19 pandemic on fraud Importance of fraud risk management Using reports to enhance fraud prevention efforts Value of fraud awareness training This episode is available on all major podcast platforms or on our YouTube channel.