Our company Our leadership Our values Events News Contact Us

Careers overview Current vacancieshiring Early Careers Benefits

Blogs Case studies Webinars White papers

Contact sales

Your priorities
The Platform
our solutions
- Audit & risk Audit and risk
  External Audit
  Improve the accuracy and efficiency of audits and build trust with clients.
  
  Internal Audit
  Gain total oversight and control of internal audit activity.
  
  Risk Management
  Centralize data for a holistic and strategic view of risk.
  
  Audit and risk solutions
  Audit and risk solutions that help you protect your business, engage with clients and have more strategic influence.
  Latest Gartner® Market Guide for EHS Software
  Download now
- DOCUMENT COLLABORATION DOCUMENT COLLABORATION
  Huddle
  Flexible and highly secure document collaboration for regulated industries.
  
  Mail Manager
  Email add-in for Outlook to boost productivity and improve document management.
  
  OnePlace Solutions
  Connect, simplify and personalize business systems built on Microsoft 365
  
  PleaseReview
  Real-time document review, co-authoring and redaction for regulated industries.
  
  Document collaboration solutions
  Bring teams and customers together with our document collaboration solutions to securely manage emails and documents.
  Latest Gartner® Market Guide for EHS Software
  Download now
- E-Learning and Content E-Learning & Content
  CompliSpace
  Policy, learning and assurance management to meet GRC obligations.
  
  WorkRite
  Workplace training and e-learning management system to meet regulatory requirements.
  
  E-learning and content solutions
  Meet regulatory requirements, bring policies to life, and keep employees safe with e-learning and content solutions.
  Latest Gartner® Market Guide for EHS Software
  Download now
- Environmental, Health and Safety Environmental, Health & Safety
  EHS
  A unified EHS solution that enables employers to report incidents, identify risks in real-time and automate safety processes across your organization.
  
  Maritime safety
  Extensive experience and specialized product suites that specifically address the unique needs of the maritime industry. Manage all aspects of health, safety and incident management.
  
  Environmental, health and safety solutions
  Improve safety, reduce risk and enhance environmental, health and safety performance across your business.
  Latest Gartner® Market Guide for EHS Software
  Download now
- quality quality
  Coruson
  Aviation safety management for complete control and reporting of operational risk.
  
  Quality Control
  Automate quality inspections and documentation to satisfy regulators and customers.
  
  Quality Management
  Digitalize your quality management processes for complete organizational insight.
  
  Smartforms
  Improve mobile incident and event reporting for real-time situational awareness.
  
  Quality solutions
  QMS solutions to help take control and ensure quality in every step of the process to unlock your full potential.
  Latest Gartner® Market Guide for EHS Software
  Download now
- A-Z Products

Our company Our leadership Our values Events News Contact Us

Careers overview Current vacancieshiring Early Careers Benefits

Blogs Case studies Webinars White papers

Contact Sales

Contact sales

2024 Resilience nation report • Download now

Home
Thought Leadership
Blog
Internal audit and fraud prevention

Internal audit and fraud prevention: Are you providing the right assurance?

The role of internal audit in fraud prevention and detection

In the IIA’s Fraud and Internal Audit position paper, it states that “internal audit should consider where fraud risk is present within the business and respond appropriately by auditing the controls of that area, evaluating the potential for the occurrence of fraud and how the organisation manages fraud risk through risk assessment, and audit planning. It is not internal audit’s direct responsibility to prevent fraud happening within the business.”

The paper then goes on to say that internal audit’s knowledge of fraud should enable auditors to:

Identify red flags where fraud may have been committed
Understand the characteristics of fraud, and the specific techniques, schemes and scenarios used to commit fraud
Evaluate the indicators of fraud and determine whether further action or investigation is necessary
Review the effectiveness of controls to prevent or detect fraud

Whilst the IIA acknowledges that internal audit professionals should not be expected to have the same level of expertise as specialist fraud investigators, they should, however, use their skills in data analysis to identify trends and patterns that suggest fraudulent activity.

Despite these recommendations, the reality is that every company’s audit committee and board of directors views internal audit differently, and it is usually the combination of external standards and an anti-fraud policy that will determine the precise role of internal audit and its involvement in fraud prevention.

Ultimately, internal auditors must be mindful of fraud risk throughout all audit work whilst remaining alert to red flags and adhering to the organisation’s policies and expectations when it comes to mitigating fraud.

How can internal audit provide and improve fraud assurance?

Fraud is undoubtedly one of the greatest risks to governance that organisations face, irrespective of their industry, size or jurisdiction.

According to Occupational Fraud 2022: A Report to the Nations by ACFE , global losses are likely measured in trillions of dollars. Their study reported a loss of more than $3.6 Billion across 133 countries. Unsurprisingly, a report by Kroll and the IIA revealed that businesses that empower and invest in internal audit improve the effectiveness of their fraud risk management overall.

Internal audit plays a crucial part in not only helping to reduce the financial and reputational impact of fraud but also in preventing detriment to business objectives. As the main port of call to provide assurance on all organisational risks, here are some ways internal audit can respond to the challenge of fraud risks specifically:

Review detection controls

Are you confident in your organisation’s ability to detect fraud early on, or indeed, at all? If not, now is the time to revisit your annual plans to ensure that detective controls are just as stringent as preventative controls, so that if fraud were taking place, there is a high chance it would be identified by checks such as reconciliations and management monitoring. Detection can also extend into whistleblowing arrangements, where a tip-off could stop fraud in its tracks. Internal audit should work with senior managers to ensure that their whistleblowing procedures do not deter employees from coming forward at what could be a business-critical moment.

Provide fraud risk training

We mentioned previously the IIA’s stance on internal audit having sufficient knowledge to identify the warning signs of fraud. Regardless of experience, regular training can enable audit professionals to stay abreast of fraud techniques and schemes as they become more sophisticated in the modern world. Data monitoring and analytics skills should also be considered as part of your L&D regime, as this is becoming increasingly more effective at reducing fraud loss and duration by detecting fraud schemes through unusual trends and patterns. This brings us swiftly to our next point…

Invest in audit management software

A risk-based audit management solution can help to streamline data mining whilst providing a real-time view of information that could highlight instances of fraud. It can also help auditors to: