THE ROLES OF INTERNAL AUDIT FUNCTION IN ENHANCING RISK MANAGEMENT

CHAPTER ONE

1.0     INTRODUCTION        

1.1     BACKGROUND OF THE STUDY 

1.2     STATEMENT OF THE PROBLEM

1.3     OBJECTIVES OF THE STUDY     

1.4     RESEARCH QUESTIONS

1.5     RESEARCH HYPOTHESIS

1.6     SIGNIFICANCE OF THE STUDY

1.7     SCOPE OF THE STUDY

1.8     DELIMITATION OF THE STUDY

1.9     DEFINITION OF TERMS     

CHAPTER TWO

2.0     LITERATURE REVIEW

2.1     CONCEPTUAL CLARIFICATION

2.2     THEORETICAL FRAMEWORK

2.3     EMPIRICAL REVIEW

2.4     SUMMARY OF LITERATURE REVIEW

CHAPTER THREE

3.0     RESEARCH METHODOLOGY

3.1     RESEARCH DESIGN

3.2     AREA OF STUDY

3.3     POPULATION OF THE STUDY

3.4     RESEARCH SAMPLE AND SAMPLING TECHNIQUE

3.5     INSTRUMENT FOR DATA COLLECTION

3.6     VALIDITY OF THE INSTRUMENT

3.7     METHOD OF DATA COLLECTION

3.8     METHOD OF DATA ANALYSIS

CHAPTER FOUR

4.0     DATA ANALYSIS AND PRESENTATION

CHAPTER FIVE

5.0     SUMMARY OF FINDINGS, CONCLUSION AND RECOMMENDATION5.1     SUMMARY

5.2     CONCLUSION

5.3     RECOMMENDATIONS

REFRENCE

CHAPTER ONE

INTRODUCTION

1.1            Background to the Study

Risk management and internal auditing are both elements in the five interrelated components of the internal control system in organizations, which are control environment, risk assessment, control activities, information and communication, and monitoring (COSO, 1994). Consequently, risk management activity has fallen under risk assessment, and it is described in three processes; appraise the significance of the risk, assess the impact and the likelihood of the risk, manage the risk (COSO, 1994; Moeller, 2011).

Accordingly, internal auditing and risk management each cover different specific purposes in the internal control system (COSO, 1994; Moeller, 2011). So, the study discussed all the elements of the COSO internal control framework, and analyzed risk assessment and monitoring in depth to clarify the purpose of each in detail. This will help in underlining the nature of the activities, which should refer to internal auditing and risk management.

On the other hand, COSO internal control framework organized an integrated relationship between all internal control elements as well as their activities (Moeller. 2011). As a result, there is an integrated relationship between risk management and internal auditing. Vasile and Georgiana’s (2006) study demonstrated how internal auditors could help risk managers to achieve their roles in an integration activity. This study clarified this integration from the perspective of COSO and other empirical studies. Thus the definition of internal auditing demonstrates the new role of internal auditing, the ‘Risk Based Audit’, in which the audit activities are derived from perceiving and managing risk in companies. Accordingly, their plan should be based on assessing the risk and the impact (Pickett, 2005; the IIA, 2004). Nonetheless, Kalbers (1995 as cited by Spira & Page, 2003) argued that in terms of the new definition for internal auditing, organizations should be aware of the roles of conflict, which may contradict the roles of internal audit in organizations. In particular, the contemporary internal auditing concept, the risk based audit, may cause confusion for companies in distinguishing between risk management and internal auditing activities.

Likewise inside inspecting is an inward capacity of a company built up by the administration to fortify corporate administration. Since interior examiners invest all their energy with one organization their insight about the organization's operations and inner controls is much more prominent than that of outer inspectors. Interior reviewing is an autonomous, unbiased, guarantee and checking action intended to enhance worth and advance on a company’s processes. It aids an organization realize its goals by means of an organized and controlled method to assess and advance the usefulness of peril administration, mitigation and authority processes (Institute of Internal Auditors of America (11A), 2005).

(Kleffner and Rashid 2003) characterize RM as the administration of operational and monetary dangers at the same time keeping in mind the end goal to augment the cost adequacy of hazard administration inside the requirements of the association's resistance for hazard. Despite the fact that this definition includes operational dangers, it neglects to value that organizations are presented to different dangers like vital and reputational dangers furthermore neglects to distinguish who is in charge of hazard administration in association. The definition likewise neglects to demonstrate the linkage of hazard administration to the association's targets. COSO (2004) then again portrays RM as "a methodology, influenced by a substance's top administrative staff, organization and other work drive, associated in strategy setting and over the wander, proposed to recognize potential events that may impact the component, and regulate risk to be inside its peril longing for, to give sensible affirmation concerning the achievement of component goals"

The key variables to consider while deciding inward inspecting's part are whether the action raises any dangers to the interior review movement's autonomy and objectivity and whether it is probably going to enhance the association's hazard administration, control and administration forms (Ahlawat & Lowe, 2014).  Inside examining may give counseling administrations that enhance an association's administration, chance administration, and control forms. The degree of inside evaluator's counseling in RM will rely on upon alternate assets, interior and outer, accessible to the directors and on the hazard maturity of the association and it is probably going to differ after some time (Fraser and Henry, 2007). Inside evaluator's proficiency in considering dangers, in comprehending the associations amongst dangers and administration and in help imply that the inward review action is all around fit to be also venture administrator for Risk Management, particularly in the first phases of presentation (Ahlawat and Lowe, 2014).

1.2     Statement of the Problem

Since the 2008 world financial crisis, regulatory and economic pressures are forcing organizations to do a more thorough job when conducting enterprise wide risk assessments, and increase effectiveness of risk mitigation efforts, and focus on a more comprehensive approach to risk management (The IIARF White Paper, 2011).

In today’s fast pacing world, processes and operations are more complex and challenging as new risks are evolving. Companies are trying to give more consideration to risk management, but implementation of an effective risk management approach takes time and is costly. In companies without an effective risk management function, internal audit department has been required to undertake their own risk assessments, and in many cases they have done their own assessments as a check on risk management or to ensure their independence.

1.3     Objective of the Study

The main objective of this study is to find out the role of internal audit in enhancing risk management, specifically the study intends to:

1.     Find out the function of internal auditing in an organizations

2.     Analyze the role of internal audit in risk management

3.     Examine the causes and need for risk management in an organization

1.4     Research Question

1.     What are the function of internal auditing in an organizations?

2.     Is there any significant role of internal audit on risk management?

3.     What are the causes and need for risk management in an organization?

1.5     Research Hypothesis

Ho: there is no significant role of internal audit on risk management

Hi: there is a significant role of internal audit on risk management

1.6     Significance of the Study

As this study tries to investigate the impacts roles of internal audit on risk management from a risk management perspective; to draw the attention of risk management people for the importance of this issue if the negative impact is proven and to identify the responsible parties. Moreover, this study will highlight the role of risk management standards and best industry practice in this regard.

Finally this study will serve as a guide and reference point for other research in the same line.

1.7     Scope of the Study

This research work will examine concepts and literatures on internal auditing and risk management, and also the role of internal auditing will be analyzed using De United Food Industries Limited as a case study.

1.8     Delimitation of the Study

Finance for the general research work will be a challenge during the course of study. Correspondents also might not be able to complete or willing to submit the questionnaires given to them.

However, it is believed that these constraints will be worked on by making the best use of the available materials and spending more than the necessary time in the research work. Therefore, it is strongly believed that despite these constraint, its effect on this research report will be minimal, thus, making the objective and significance of the study achievable.

1.9     Definition of Terms