Internal Auditing and Risk Management
Ben David Shalvi Kop has a number of teams who perform internal audits according to the client’s needs.
An internal audit is meant to add value to an organization’s operations. Its goal is to serve as a management tool that assists senior management in advancing and realizing the organization’s objectives while assessing risks and providing apt solutions for preventing them. Risk analysis and proposed resolutions are intended to advance the organization’s objectives while preserving its assets.
Administrative reviews support a variety of goals: creating a suitable organizational culture, setting policy, assigning responsibilities and authority, installing checks and balances, drafting administrative procedures and updating them, building computerized processes that include appropriate control, and more.
An internal audit is performed objectively by an auditor who is independent of the audited body. The internal audit assists the organization in achieving its goals by examining effectiveness and efficiency and verifying that all legal provisions, including fair and ethical practices, are adhered to. Once the audit is complete, we formulate a final report which includes the audit’s findings as well as recommendations for administrative reviews to strengthen weak points in the audited organization.
On occasion, an internal audit that includes investigative characteristics is called for. An investigative audit is performed when there are reasonable grounds to suspect embezzlement or other internal activity that acts against the organization’s interests. The investigative audit is divided into two main types:
Revelatory investigative audit– aimed at exposing fraud, deceit or material errors that substantially affect the organization’s financial statements and business activity
Preventive investigative audit – Assuming that irregular activities in an organization cannot be totally blocked, the audit focuses primarily on the most likely areas for embezzlement and potential damage. By minimizing exposure, closing loopholes and upgrading control features, the scope of possible fraud may be reduced.
The department’s services include:
- Examine the organization’s financial and operational processes.
- Conduct a fraud exposure review in order to uncover possible points that are susceptible to fraud and embezzlement.
- Introduce control and enforcement mechanisms.
Identifying fraudulent acts and controlling for computer fraud:
- Exposing and confirming suspicions.
- Analyzing methods for committing fraud
- Submitting expert opinions based on the findings of investigative audits
- Identify computer fraud.
- Quantify damage due to fraud based on findings of investigative audits—as assistance for legal and other proceedings.
Crisis management and interim-period management:
- Management during sudden, one-time or ongoing crises, e.g., a substantial fraud-related event accompanied by damage to the company’s image or its business-sales activity that creates a void in corporate activity.
- Determine the required policy for extricating the corporation from the crisis, or through to the conclusion of the interim period.
- Administrative staff activity, through to overcoming the event and its aftermath.