We discuss the following questions:
0:44 - How will internal audit transformation change the way that we address risk?
1:55 - What implications will this have for reporting to the Audit Committee and executive management and other forms of reporting?
3:36 - What’s the difference between an audit spectrum and the traditional audit plan?
6:11 - How are the organization's enterprise risk management process and 3 lines of defense working together to play an important role in this transformation?
9:25 - What are some key takeaways to consider when companies are going down their own internal audit transformation journey?
Mike Maali leads PwC’s Internal Audit, Compliance & Risk Management Solutions Practice. For nearly 30 years, Mike has delivered a range of risk management, external audit and internal audit services to leading global and national organizations. His expertise includes implementing and optimizing enterprise-wide risk management programs and systems, and performing risk assessments, translating the results into efficient, risk-based plans for internal audit, risk and compliance functions. He has advised clients on how to stand up their internal audit, risk management and compliance functions, and how to transform existing functions to be strategically aligned with the business and other risk prevention lines of defense. He also offers best practices to embed data analytics and advanced technology into all components of risk management and control, and leverages PwC’s deep industry and technical capabilities for enhanced insights in the planning, execution and reporting of internal audit projects, risk management programs and compliance testing solutions.
Lauren Massey is a PwC Principal based in Tampa, Florida focused on delivering strategic Internal Audit, Compliance and Risk Management solutions to clients in the manufacturing and technology sectors. She has been helping companies integrate data and technology into their internal audit strategies, and is a subject matter specialist in data mining and analysis around control deficiencies and potential instances of fraud. In her role, she is responsible for delivering continuous enterprise risk assessment, internal audit strategy, engagement planning and budgeting, as well as managing communications with audit committees and senior executives.