Misplaced Pages

Control self-assessment

Article snapshot taken from Wikipedia with creative commons attribution-sharealike license. Give it a read and then ask your questions in the chat. We can research this topic together.

This is an old revision of this page, as edited by MarcGarver (talk | contribs) at 19:08, 10 March 2012 (Create). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Revision as of 19:08, 10 March 2012 by MarcGarver (talk | contribs) (Create)(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

This sandbox is in the article namespace. Either move this page into your userspace, or remove the {{User sandbox}} template.

Control self-assessment is a technique used by an organisation to assess its risk management and control processes. The results of the self-assessment are often used to design new or change existing procedures to reduce the probability of risks occurring. Internal auditors may use a control self-assessment to focus audit work on high risk or unusual areas. There are a number of ways a control self-assessment can be implemented but its key feature is that the evaluation of the effectiveness of the organisation's controls is performed by operational staff or junior managers who work in the area being evaluated.

Performing the control self-assessment

The control self-assessment is always performed by operational staff who work in the organisational unit being evaluated. These staff have a detailed understanding of the operation of the existing control processes and are ideally positioned to assess their effectiveness. The two common techniques for performing the evaluations are:

  • Workshops involving a small number of staff whose work is subject to the internal controls being evaluated. These workshops may be facilitated and recorded by an independent facilitator.
  • Surveys or questionnaires distributed to the staff to complete with their evaluation of the controls. This approach differs from that taken in traditional audits where the auditors perform the assessment.

Control self-assessment methodologies

A number of methodologies to standardise the control self-assessment have been published.

Benefits of a control self-assessment

A number of benefits have been claimed for organisations performing control self-assessment. PriceWaterhouseCoopers, a "Big Four" audit firm lists:

  • Establishing a clear understanding of the objectives and activities of business units and processes
  • Building the awareness of risk and controls and embedding responsibility for the controls amongst managers and staff
  • Providing a framework for improving controls throughout the organisation
  • Identifying areas for improving the organisation's performance as well as standardising process across different locations and organisational units
  • Strengthening the corporate governance regime
  • Simplifying the work of internal auditors

See also



References

  1. "Control Self-assessment: An Introduction". The Institute of Internal Auditors. Retrieved 2012-03-10.
  2. ^ "The Use of Control Self-Assessment by Independent Auditors". The CPA Journal. December 2005. Retrieved 2012-03-10. {{cite web}}: Unknown parameter |authors= ignored (help)
  3. Álvarez, Gene (2004). Operational Risk: Practical Approaches to Implementation.
  4. Gene Álvarez and Phil Gledhill (24 November 2010). "A comprehensive risk and control self-assessment methodology". Risk.net. Retrieved 2012-03-10.
  5. "Control Self Assessment". PriceWaterhouseCoopers. Retrieved 2012-03-10.
Categories: