I attended IIA’s 2014 GAM Conference with my colleagues, Les Sussman (Senior Practice Leader of RGP’s Governance, Risk and Compliance Practice) and Susan Miller (Managing Director, Client Service of RGP’s Parsippany office). We took in a lot of great information over the packed three-day conference and want to share some highlights with you in the form of my “Twitter Notes”! (You can check out the IIA’s Recap here.)
Virginia Gambale, Director of JetBlue Airways and Managing Partner of Azimuth Partners, was the keynote speaker addressing the topic of “The Board’s View of Governance and the Important Role of Internal Audit”.
Gambale talked of how the priorities of audit have shifted with the changing tides in technology as well as with climate issues and the threat of terrorism. She highlighted that Boards need to shift, too (if they haven’t already), to include members with social media and marketing capability, technology, human capital, finance/accounting background, and industry experience.
For many organizations, an annual audit plan is not appropriate any longer. A key takeaway from the great panel discussion that included principals from Cisco Systems, LinkedIn and Google was to be dynamic and agile in audit planning. Participating on the panel were Thomas Austin, VP, Governance Risk & Control at Cisco Systems; Inder Gulati, Head of Internal Audit at LinkedIn; and Lisa Lee, Director of Internal Audit at Google. Lee followed up with a great quote and apparent mantra at Google:
More takeaways from the panel:
We heard from the National Association of Corporate Directors’ Peter Gleason on “Engaging with the Audit Committee”:
Joel Kramer, Managing Director of the MIS Training Institute, was an engaging speaker with a number of great points and memorable quotes! He reminded the audience of audit professionals to “go after the whales, not the minnows” and urged us to not simply roll forward last year’s controls—“business is changing too dramatically and continuously”. Plan to perform a new risk assessment [at least] annually. Here are a couple more Kramer notes:
Of course, we appreciate his emphasis as we (RGP) have 70 wholly-owned offices around the world with experienced subject matter experts from a range of disciplines (Human Capital, Finance/Accounting, Risk & Compliance, Supply Chain, Legal, Information Management and other operational expertise in addition to Audit Expertise) that can support and supplement your audit teams. Check out our site for more information: http://www.rgp.com.
Olivia Kirtley, Deputy President of the Board of the International Federation of Accountants, further emphasized the need for audit to focus on people as one of their top priorities:
And there was certainly a great deal of talk about the role of technology—in generating new challenges for audit professionals, as well as in aiding auditors to be more effective and efficient as they take on evermore responsibility:
I engaged in an interesting conversation at one of our breaks and it was clear that there is still some confusion regarding the COSO 2013 Internal Control – Integrated Framework and whether it is necessary (for companies subject to SOX requirements who are using the COSO framework) to demonstrate the presence of all 17 of the Principles called out in the updated framework. Yes. And it was great to hear directly from COSO Chairman, Robert Hirth. Here are some of the takeaways:
I really enjoyed listening to Jeanette Franzel, one of five members who make up the Public Company Accounting Oversight Board (PCAOB).
Acknowledging the timing of the PCAOB’s Inspection Report which has led firms to require more evidence and documentation alongside the updated COSO Framework, Franzel commented that we are in the…
She discussed the Board’s willingness to visit with companies who have concerns or questions and cited some interesting examples.
I wish that I could have cloned myself to attend more sessions at this year’s GAM Conference and to take more notes (share more tweets)! Overall, the conference provided some assurance that RGP and policyIQ are on the right track; providing appropriate guidance regarding audit planning, risk assessments, auditing, Auditing Standard No. 5, subject matter expertise, application of the updated COSO framework to finance and accounting professionals and beyond SOX, and that we have a great solution in policyIQ to pull all of the documentation and processes together to promote more effective and efficient teams and processes.
I sincerely appreciate the great connections made and information gathered! If we didn’t get a chance to connect at GAM or you would like to chat more, please feel free to reach out to me (or to have me put you in touch with someone in your local office)!
firstname.lastname@example.org, and follow us on Twitter: @policyIQ, @ResourcesGlobal