Page 30 - IIA MAGAZINE_March 2017_English
P. 30
Fraud Risk
BY KHALID MOUSA
The Risk of Fraud and committees and stakeholders of the effec-
the Role of Internal Audit tive role of internal audit in drawing the
attention of the stakeholders to the risk of
fraud. Therefore, internal auditors are now
required to help organizations in reducing
the risk of fraud through the examination
and evaluation of the control methods, the
role of the organization in the management
of the risk of fraud and how effective and
sufficient they are. The findings of the
ACFE report of 2016 pointed out that the
internal audit departments in organizations
have played an important role in the detec-
tion of embezzlement, misuse of assets and
corruption. The cases of fraud detected by
internal auditors represent 16.5% vs. 3.8%
detected by external auditors for the total
cases detected in 2016.
Fraud is one of the challenges that face dif- Pressures/ The International Standards for the
ferent organizations and sectors. It hinders incentives Professional Practice of Internal Auditing
performance, wastes money and scarce have adopted a development for the role
resources, and inflicts damages on the Fraud of internal audit in organizations through
organization, its reputation and its compet- Risk the provision of an evidence that the
itiveness. This damage is not restricted to organization’s management deals efficiently
financial losses; it may take other forms as Opportunities Attitudes & and effectively with the fraud risk, and an
well. It could be a loss in the organization’s justifications evaluation of the management’s responses
performance, its reputation and credibility, to fraud risk within the levels acceptable
and the trust of its investors, which render The updated Internal Control - Integrat- and approved by the Boards of Directors,
the organization exposed to many risks. ed Framework issued by Committee of through the Performance Standards which
The different stakeholders expect that the Sponsoring Organizations (COSO) of the provided for the role of internal audit in
management of the organization would Treadway Commission in May 2013 placed the evaluation of the management of the
manage this risk by developing programs emphasis on some points that might be of fraud risk in Standard No. 2120.A2, “The
to combat the risk of fraud. help to the management in the effective de- internal audit activity must evaluate the
sign and implementation of internal control potential for the occurrence of fraud and
Companies nowadays face the risk of fraud such as fraud risk considerations, which how the organization manages fraud risk.”
more than any time before as a result of must be evaluated by the internal audit as a
the economic instability, the increasing part of the internal control. The Standards also clarified the role of
reliance on information technology and There is increased recognition by the the chief audit executive to report to the
transactional complexity, leading to the ex- authorities, boards of directors, audit senior management about the fraud risk
istence of pressures, opportunities and jus- in Standard No. 2060, “The chief audit
tifications for fraud. These three elements executive must report periodically to senior
constitute the basis of the risk of fraud. management and the board on the internal
audit activity’s purpose, authority, responsi-
bility, and performance relative to its plan.
Reporting must also include significant
risk exposures and control issues, including
fraud risks, governance issues, and other
matters needed or requested by senior
management and/or the board.”
Furthermore, the Standards included the
attributes necessary for internal auditors
through the Attribute Standard No. 1210.
A2 which reads “Internal auditors must
have sufficient knowledge to evaluate the
risk of fraud and the manner in which
it is managed by the organization, but
are not expected to have the expertise of
a person whose primary responsibility is
detecting and investigating fraud.”
30 INTERNAL AUDITOR - MIDDLE EAST MARCH 2017
