Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
16/11/2018
Isabel Haeck
Johan Lambert
Agenda
► Introduction
► WS question
► Internal Audit versus ISO Audit
► WS answer
► Integration
► Conclusion
Really ? What if ….
► Introduction
► WS question
► Internal Audit versus ISO Audit
► WS answer
► Integration
► Conclusion
Discussion
What does your CEO think about it ?
► Introduction
► WS question
► Internal Audit versus ISO Audit
► WS answer
► Integration
► Conclusion
Audit mission ?
ISO 9000
ISO 9001
ISO 9004
ISO 19011 – definition - principles
ISO 31000
APG’s Code of Conduct and Ethics
IIABEL WS 16 November 2018
1
ISO 9001 - 2015
ISO 9001 is a standard that sets out the
requirements for a quality management system.
Source : https://www.iso.org/iso-9001-quality-management.html
• Smaller companies that do not have staff dedicated to quality can still
enjoy the benefits of implementing the standard – ISO has many
resources to assist them.
• Put your customers first, making sure you consistently meet their
needs and enhance their satisfaction. This can lead to repeat custom,
new clients and increased business for your organization.
• Expand into new markets, as some sectors and clients require ISO
9001 before doing business.
9 « documents » in 36 documented
mandatory IPPF information requirements
Risk based Evidence based
Document = control
An opportunity ?
Et caetera
IIABEL WS 16 November 2018 25
Definition - mission
Core principles 19011 Audit principles
Demonstrates integrity. v Ethical conduct v
Demonstrates competence and due professional care. v
Is objective and free from undue influence (independent). v Fair presentration +/‐
Aligns with the strategies, objectives, and risks of the organization. ? Due professionnal care v
Is appropriately positioned and adequately resourced. ? Independance v
Demonstrates quality and continuous improvement. v Evidence‐based approach +/‐
Communicates effectively. v Confidentiality v
Provides risk‐based assurance. ?
Is insightful, proactive, and future‐focused. ?
Promotes organizational improvement. ?
IIABEL WS 16 November 2018 27
Internet support
https://global.theiia.org/Pages/globaliiaHome.aspx
• New regulations
• New activities
• Reinforcement
• Efficiency
• Risks ?
Guidance : Internal Audit and the Second Line of
Defense, The IIA, January 2016
34
IIABEL WS 16 November 2018
Planning
How?
Context,
Risk based mandatory
Continuous improvment
Risk-based 19011
Who ?
CAE Management
(ISO 19011 5,2)
Context monitoring
Fact based & Historical events as
forward-looking. expressed in management
system documentation.
Mandatory Mandatory
Scope, objective, results Results
Guidance Guidance
Audit Reports: Communicating Scope, objective, client, audit
Assurance Engagement team, dates and places,
Results criteria, findings and
evidences, conclusion,
Formulating and Expressing statement on compliance,
Internal Audit Opinions annexes
46
IIABEL WS 16 November 2018
Profession
Yes: No.
A theoretical body of knowledge. Some Limited Specialised
Relative independence in education (1 – 3 days).
decision-making in practice.
Specialised education.
A code of ethics for behaviour of
its members.
Certifications No certifications.
NSTR
► Introduction
► WS question
► Internal Audit versus ISO Audit
► WS answer
► Integration
► Conclusion
Your answer ?
► Introduction
► WS question
► Internal Audit versus ISO Audit
► WS answer
► Integration
► Conclusion
► Introduction
► WS question
► Internal Audit versus ISO Audit
► WS answer
► Integration
► Conclusion
Helps us demonstrating
we do the job.
Enforce discipline.
Does not replace IPPF
Your conclusion ?