Audit of Internal Governance Using COSO ERM 2017 and COBIT 2019

At the end of the course, participants will be able to:

• Explain and use the COSO framework and its relevance to internal governance auditing

• Describe and use the COBIT framework and its application in assessing internal governance controls

• Analyse the interdependencies and complementarity between COSO and COBIT in auditing internal governance processes

• Identify key risks and controls within the internal governance system

• Apply COSO and COBIT principles and methodologies to assess the effectiveness of internal governance controls and provide added-value recommendations

• Understand the importance of aligning internal governance with organisational objectives and strategic priorities

• Recognise the role of technology and information systems in supporting internal governance and apply COBIT principles to assess their effectiveness

• Stay updated with the latest developments and emerging trends in internal governance auditing
  

Introduction to COSO ERM 2017 (Enterprise Risk Management) Framework

• Overview of the COSO ERM 2017 framework and its components

• Applying the five COSO ERM 2017 components: Control Environment, Risk Assessment, Control Activities, Information and Communication, and Monitoring

• Linking COSO ERM 2017 principles to internal governance objectives

• COSO ERM 2017 and specific topics ‘fraud, cyber-security, risk appetite

• Case studies and practical exercises to apply COSO ERM 2017 principles in internal governance auditing.

Description of the COBIT 2019 Framework

• The COBIT 2019 framework and its domains

• Understanding the COBIT 2019 Core Principles and the Governance and Management Objectives cascade

• Linking COBIT 2019 principles to internal governance objectives

• Applying COBIT 2019 in assessing IT governance controls within the internal governance system

• Practical exercises to apply COBIT 2019 principles in internal governance auditing.

Synergies Between COSO ERM 2017 and COBIT 2019

• Exploring the overlaps and synergies between COSO and COBIT

• Identifying how COSO and COBIT can be used together to enhance internal governance auditing

• Case studies and group discussions on integrating COSO and COBIT in internal governance audits

• Assessing the effectiveness of internal controls using a combined COSO-COBIT approach.

Advanced Techniques in Internal Governance Auditing

• Risk identification and assessment techniques in internal governance auditing

• Evaluating the design and operating effectiveness of internal controls

• Analysing control deficiencies and their impact on internal governance

• Integrating COSO and COBIT in identifying control gaps and recommending improvements

• Using data analytics and technology-assisted auditing techniques in internal governance audits

Emerging Trends and Best Practices in Internal Governance Auditing

• Review of emerging trends and challenges in internal governance auditing

• Exploring the impact of digital transformation and emerging technologies on internal governance

• Case studies on innovative approaches to internal governance audits

• Discussion on reporting and communicating audit findings to key stakeholders

• Recap of the key concepts, techniques, and insights gained throughout the programme.

Case Study 1 - Control Environment Assessment: Apply COSO ERM 2017 and COBIT 2019 principles to assess the control environment within an organisation and identify areas for improvement.

Case Study 2 - Risk Assessment and Control Activities: Utilize COSO ERM 2017 and COBIT 2019 methodologies to assess risk and control activities within an internal governance system.

Case Study 3 - Information and Communication Assessment: Apply COSO ERM 2017 and COBIT 2019 principles to assess information and communication processes within an internal governance system.

This training programme will adopt a blended learning approach to ensure an interactive and engaging experience for participants. The program will include a combination of: 

• Interactive lectures

• Case studies

• Group discussions and activities

• Practical exercises

• Q&A sessions

• Continuous learning support

The programme is aligned with the IIA recommendations.

We welcome Heads of Audit, Governance Bodies Members, CEOs and Executives, Heads of Strategic Business Implementation, Business Leaders, and Department Managers. Senior Auditors, Senior Risk Managers with a minimum of 5 years of experience who possess a strategic and methodological mindset.

No exam is available for this course.