1 | Page Dear Members: When I think of September, the images of children going back to school, leaves changing color cozy sweaters and early flu shots come into mind. NY IIA members also note and anticipate the start of key chapter events. Below are some of the September highlights: The September Workshop was held at the Hard Rock Café on September 16 th and speakers discussed Risk Management, Financial Services Regulatory Compliance and Data Analytics. Thank you to Protiviti, Sunera and Paul Walker who is St. John’s Executive Director, Center for Excellence in ERM. We had in attendance over 150 IIA members who gained valuable insight with an easily accessible location in the heart of Times Square. As a reminder, please do not forget to sign the attendance sheet as that is our compliance requirement from NY State for you to receive Continuing Professional Education credits. Also, please provide your feedback on our speakers by filling out the surveys provided during the workshop as we monitor that information for potential topics and your availability on volunteering, in addition to providing valuable feedback to our speakers. You may also be interested in materials discussed in the presentation for further reference, but please be aware that information provided is at the discretion of the speaker and the exact materials may be modified or substituted based on the individual’s organization policy. Regarding the September CAE Roundtable held by Paulette Mullings-Bradnock, Chief Audit Executive of the Bank of New York Mellon, the venue was excellent and CAEs who attended were engaged in various industry discussions affecting their organization. Special thanks to Joseph Nocera, Stacy Johnson and Lissa Matyka who helped facilitate the meeting with essential coordination, topic involvement and meeting minutes. Platinum Chapter October 2016 Newsletter NY IIA Chapter Website Link Knowledge Through Sharing and Learning News In October (Click links here to go directly to areas) Events and Workshops 4 - 12 Member News 13 – 19 Certification Corner 20 - 24 Chapter Information 25 - 27 2016-2017
27
Embed
Platinum Chapter Knowledge T hrough Sharing and … 2016... · Platinum Chapter Knowledge T October 2016 Newsletter NY IIA Chapter Website Link ... Assessing and Measuring Culture
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
1 | P a g e
Dear Members:
When I think of September, the images of children going back to school, leaves changing color cozy sweaters
and early flu shots come into mind. NY IIA members also note and anticipate the start of key chapter events.
Below are some of the September highlights:
The September Workshop was held at the Hard Rock Café on September 16th
and speakers discussed
Risk Management, Financial Services Regulatory Compliance and Data Analytics. Thank you to
Protiviti, Sunera and Paul Walker who is St. John’s Executive Director, Center for Excellence in
ERM. We had in attendance over 150 IIA members who gained valuable insight with an easily
accessible location in the heart of Times Square. As a reminder, please do not forget to sign the
attendance sheet as that is our compliance requirement from NY State for you to receive Continuing
Professional Education credits. Also, please provide your feedback on our speakers by filling out the
surveys provided during the workshop as we monitor that information for potential topics and your
availability on volunteering, in addition to providing valuable feedback to our speakers. You may also
be interested in materials discussed in the presentation for further reference, but please be aware that
information provided is at the discretion of the speaker and the exact materials may be modified or
substituted based on the individual’s organization policy.
Regarding the September CAE Roundtable held by Paulette Mullings-Bradnock, Chief Audit
Executive of the Bank of New York Mellon, the venue was excellent and CAEs who attended were
engaged in various industry discussions affecting their organization. Special thanks to Joseph
Nocera, Stacy Johnson and Lissa Matyka who helped facilitate the meeting with essential
coordination, topic involvement and meeting minutes.
Platinum Chapter
October 2016 Newsletter NY IIA Chapter Website Link
Knowledge Through Sharing and Learning
News In October (Click links here to go directly to areas)
Date: Friday, November 18, 2016 Time: 8:30 AM – 4:30 PM Location: Hard Rock Café
1501 Broadway and 43rd Street New York, NY
CPE: 7 credits for full day workshop 3 credits for half-day workshop 1 credit for luncheon presentation
Registration is Open
IIA Member: $175 Non-Member: $195
Luncheon Only Member: $60 Luncheon Only Non-Member: $70
½ day with Lunch Member: $90 ½ with Lunch Non-Member: $100
½ day without Lunch Member: $80 ½ day without Lunch Non-Member $90
Morning - 8:30 am - 11:30am (3 CPE)
Presenter – RSM US LLP
Topic – Cyber Warfare: Hacker Reconnaissance
Have you ever wondered how cyber attackers chose their targets? And once selected, how they gather intelligence in order to perform highly effective social engineering campaigns? This presentation will demystify this process, while giving an update on the current state of the cyber threat landscape. We will explore the freely available tools used by attackers to perform reconnaissance on organizations through live demonstrations. Finally, we will show how organizations can use these tools to protect their environments.
Speaker: Keith Swiat Keith Swiat is Northeast Region Director, Security and Privacy RSM US LLP New York, bringing 25 years of experience in cyber security and information technology. He is an expert advisor on best practices and compliance for organizations in all sectors of business. Keith has collaborated with standards organizations to create new data security standards and best practices. From the beginning of his career he has been a strong advocate for digital privacy rights and has been on the cutting edge on information security through active participation in local, national and global security groups.
9 | P a g e
Keith is a member of the International Association of Privacy Professionals (IAPP), a Certified Ethical Hacker (CEH), Computer Forensics and Incident Response, SANS Institute, and holds PCI-DSS Certifications: QSA (PCI-DSS), PA-QSA (PA-DSS), PA-QSA (P2PE).
Please note: Lunch is served from 11:30am - 12:30pm
Luncheon Workshop: 12:30pm – 1:30pm (1 CPE)
Presenter: Cynthia B McIntosh
Topic –Today’s Top Healthcare Risks
Top healthcare risks are the subject of a study by CHAN Healthcare, a subsidiary of Crowe Horwath LLP, which analyzed information from risk assessments conducted for more than 250 hospitals and other healthcare entities during the first half of 2015. From that data, 20 significant risks emerged—both urgent concerns and consistent exposure points. This session discusses that analysis, providing important industry insights for internal auditors as they develop and evaluate their audit plans.
Speaker: Cynthia B McIntosh
Cynthia has over twenty-five years of experience in healthcare and not for profit working in SUNY Downstate in both the Departments of Medicine and Radiology as the Financial Administrator, and Columbia University Medical Center in both the departments of Medicine and Pediatrics in financial capacities. Currently Cynthia is the Operations Auditor at AdvantageCare Physicians, the Physician Practice of Emblem Health. Previously, Cynthia was a Senior Auditor at NYC Health and Hospitals Corporation for over four years. Cynthia holds the Certified Risk Management Assurance (CRMA) designation. She is a member of the Institute of Internal Auditors (IIA), Association of Healthcare Internal Auditors (AHIA), Medical Group Management Association, (MGMA) and American Association of University Women, (AAUW). Cynthia received her Bachelors of Arts from Brooklyn College and a Masters in Healthcare Administration from Western Governors University
Afternoon: 1:30pm – 4:30PM (3 CPE)
Two Topics:
Topic One: Challenges Faced by Small Audit Shops and Telling the Board what it Needs to Know
Presenter: Atlas Air Worldwide Holdings
The main challenge small internal audit functions face is finding time to take account of the
different constituencies served in the organization: CAEs have to determine where Internal
10 | P a g e
Audit's focus needs to be, what is right for the business while ensuring identification of the
most relevant strategic topics to bring to the attention of the board and audit committee.
Among the issues are:
How small audit shops become and remain relevant
Practical audit strategies for small shops
The importance of the Standards
Benchmarking, best practices and working lean
Strategic focus: the CAE needs to think more strategically when evaluating risk and
formulating audit plans
Understanding strategic assumptions, the organization's strategic alignment,
organization's culture and developing an effective audit strategy
o Seeing the big picture more clearly when interpreting audit results
o Being part of an organizational culture that manages the escalating volatility of
change and risk effectively.
Speaker: Charles Windeknecht
Charles (Chuck) Windeknecht is responsible for the internal audit function at Atlas Air Worldwide Holdings (“AAWW”). Internal Audit is a key component of the Company’s risk management process. The function is responsible for the delivery of financial, operational, information technology and legal/regulatory audits, the annual testing for Sarbanes-Oxley compliance, the annual fraud risk assessment and the Company’s enterprise risk assessment process. Chuck is an audit and risk executive with 30+ years of diverse corporate and industry experience. Prior to joining AAWW in 2008, he served as Director of Internal Audit at Moody’s Corporation, and earlier served in a variety of internal audit, operational and risk management roles at Ernst & Young, LLP, and New York Life Insurance Company. He holds a bachelor's degree in Business Administration from Villanova University and is a certified public accountant.
Topic Two: SOX: A Practical Approach to Adding Value
Presenter: Con Edison This session will provide a practical approach supported with examples to enable you to
review your SOX program to identify ways to add value while continuing to provide the
assurance necessary to evaluate the system of internal control over financial reporting. The
following topics will be covered:
11 | P a g e
Using Data Analytics for SOX testing
Aligning the SOX scope for optimal coverage and focus on key risks
Improving coordination with the external auditor
Reviewing SOX key controls for rationalization opportunities
Maximizing the work of Internal Audit.
Speaker: Milan Shah
Milan Shah is a Director in Con Edison’s Internal Auditing Department and leads the assurance
efforts for three sections: Customer Operations, Finance, and Business Controls Auditing. The
Finance Section coordinates efforts to support annual Sarbanes-Oxley compliance
requirements. The Business Controls Auditing Section has implemented a continuous controls
monitoring system, Oracle Advanced Controls that will be applied through the enterprise
financial system.
Milan has extensive experience leading, performing and providing advisory services in internal
audit, risk management and compliance. Milan was Director, Internal Audit Services at Town
Sports International, Inc., where he established the Internal Audit function and assisted in
company compliance with the Sarbanes-Oxley Act. Previously he served clients in the Risk
Advisory Services Practice of KPMG LLP. Milan held various management positions in the
airline industry at United Airlines, Delta Air Lines, and Atlantic Southeast Airlines (ASA). He is
past President of the New York ACL User Group, and current Chair of the Power & Utilities Risk
and Controls Leader Network.
Milan received his graduate degree from Kennesaw State University, is a member of the
Institute of Internal Auditors, and is a certified public accountant (CPA) in New York State.
Register Here - November 18 workshop Registration Website Registration - Website Registration Mobile Registration -Mobile Registration
Calling all interested Internal Audit Manager/Directors to participate.
Committee goals
Roundtable discussions with mid-level audit staff to discuss
relevant and timely topics Hold four Roundtables meetings Invite guests to speak on topics of interest at some of these
roundtables
Please look for additional announcements on the chapter website.
For more information contact EVP - Uday Gulvadi at [email protected]
14 | P a g e
MEMBER NEWS ST. JOHN’S UNIVERSITY STUDENT FEEDBACK – ATTENDENCE AT IIA
WORKSHOP
Tim Speakman
I recently had an opportunity to sit in on a training workshop hosted by the IIA. As an Accounting major at St. John’s University, currently in my last semester of grad school, this was an opportunity I could not pass on. A career in Internal Audit is not something that I had given much thought until recently. I am enrolled in an Internal Audit course now that has opened my eyes to this rewarding career. Throughout this course I have been able to meet professionals in the field of Internal Audit, as well as representatives from the Institute of Internal Auditors. It was in this class that I was able to meet Alex Cacanando, President of the New York chapter of the IIA. Alex offered me this great opportunity to attend the IIA training workshop.
Upon arriving to the workshop held at Baruch College, I immediately took notice of the preparations made by the IIA for their guests. A breakfast was laid out for all to enjoy, which included delicious baked goods and fruit. Coffee and tea were available throughout the day. Refreshments including cheeses, vegetables and nuts were provided during breaks in the presentations. For lunch, guests enjoyed chicken, cod, pasta, salad and more. The IIA took great effort in making the day as comfortable and enjoyable as possible.
The agenda for the day consisted of three workshops presented by KPMG. The presentations were professional, thoughtful and interactive. Speakers encouraged questions and interaction with the audience. This made the presentations more genial and understandable for all the guests. The first workshop was given by Glenn Siriano and covered Cyber Security Considerations for Internal Audit. With the emergence of cyber threats and a rapidly changing risk environment, the presentation provided valuable information and strategies for managing this growing risk. I was surprised to learn that the vast majority of data has only been created within the past two years and the rate at which we produce data is growing exponentially. This data proliferation plays a huge role in cyber risk and security. Glenn was followed by Rajneesh Sharma whom provided us with an upbeat presentation on Comprehensive Capital Analysis and Review (CCAR) from the Internal Audit perspective. Rajneesh did a great job of explaining CCAR regulatory requirements imposed on large Bank Holding Companies and detailing the role of Internal Audit. The event was wrapped up with a presentation on Continuous Auditing and Controls Monitoring, delivered by Yelena Talmazan, Tanya Olmedo, Eric Carlsson. It was intriguing to learn that industries such as Healthcare and Financial Services are becoming increasingly interested in Continuous Auditing and Monitoring due to expanding regulations. The group did a great job of explaining Continuous Auditing and Controls Monitoring and how Internal Audit can leverage data analytics to make it possible.
My experience at the IIA workshop was beyond valuable. I was able to network with Internal Audit professionals from a range of industries, and receive education alongside them from leaders of the profession. The IIA was able to make the guests comfortable and facilitate an engaging learning environment. I have come out of this event more prepared to begin a career in Internal Audit and I look forward to attending more IIA workshops in the future.
15 | P a g e
NY IIA WORKSHOP PHOTOS
Here are some pictures from our recent workshops!!!!
Visit our hub of internal audit resources to take your job performance to the next level. Use Promo Code
MINCAT916 and receive US$10 off your IIA Bookstore order. Offer expires 31 December 2016. Shop
now!
**Download New Issue of Tone at the Top**
Should the CEO should also serve as the chairman of the board, or should the two positions be separate?
Examine the arguments in the new report, CEO and Chairman: Are Two Heads Better Than One? Learn
more here!
**Save up to US$200 on Your CPEA Certification During September**
Through 30 September 2016, The IIA is waiving the application fee (up to a US$200 value) for the
Certified Professional Environmental Auditor (CPEA) designation, which encompasses four specialty
certifications (Environmental Compliance, Health and Safety Systems, Management Systems, and
Responsible Care®). Candidates must submit applications via CCMS during the waiver period to save.
Exclusions apply. Learn more and apply by 30 September 2016.
** Richard Chambers’ Latest Blog Post: Internal Audit as Trusted Advisor: Do Women Hold the
Key?**
IIA President and CEO Richard Chambers states in his latest post: “On a recent trip to Paris, I arrived at the
airport on the first day of a taxi strike protesting Uber, the rival upstart that has upended historical urban
transportation services. With no taxi service available, I ended up taking the Metro from the airport to the
station closest to my hotel. Suffice it to say, it was no treat trudging the last mile on city streets with
luggage in tow, even in a city as beautiful as Paris.” Read the full blog post here.
**Recognize Your Leadership Excellence** If you are aspiring to be a leader in your organization, seeking a successor, or looking to add credibility to
your current leadership role, The IIA’s QIAL® program was designed with you in mind. Learn more:
FROM THE IIA: Women in Internal Auditing, New Report; Comment During COSO Exposure Period; Call for Speakers; Recognize Your Leadership Excellence; Chambers’ Latest Blog
Bree Bockmiller
Digital Marketing Professional
**Women Make Impact in Internal Audit but Face Challenges** Women are advancing in the internal audit profession, but opportunities remain to build core competencies and technical specialties, according to "Women in Internal Auditing: Perspectives from Around the World." This is the latest report from The Global Internal Audit CBOK Practitioner Survey. Read more: http://bit.ly/CBOK_WomenMakeImpactIAButFaceChallenges **COSO ERM Framework Exposure Period Open** Practitioners have until Sept. 30 to comment on the proposed changes to the COSO ERM Framework, last updated in 2004, by participating in the current exposure period for ERM: Aligning Risk with Strategy and Performance. Learn about the proposed changes and how you can participate. http://bit.ly/COSO_ResourceCenter **Call for Speakers for EHS January Meeting** Auditors in the Environmental, Health & Safety industries are invited to submit proposals to speak at the January 2017 EHS National Meeting, Jan. 8‒10, at The Westin in San Diego. The IIA seeks speakers to address hot topics and emerging issues listed on the website. Review proposed topics and submit your proposal by Sept. 30. http://bit.ly/EHS2017_CallForSpeakers **Recognize Your Leadership Excellence** If you are aspiring to be a leader in your organization, seeking a successor, or looking to add credibility to your current leadership role, The IIA’s QIAL® program was designed with you in mind. Learn more: http://bit.ly/IIAQIAL **Richard Chambers’ Latest Blog Post: The Extraordinary Risk of Business Continuity Interruption** IIA President and CEO Richard Chambers states in his latest post: “There are few things that capture the public's attention faster than widespread flight delays. Ask Delta Air Lines and British Airways. This summer the two venerable carriers were tested when unexpected technical glitches grounded flights and delayed customer check ins. In Delta's case, 2,300 flights were cancelled over three days in early August when equipment failures and a subsequent power outage darkened computer terminals at its Atlanta headquarters. All Delta flights were grounded for a time until power was restored.” Read the full blog post here: http://bit.ly/ChambersBlog_ExtraordinaryRiskOfBizContinuityInterruption
In this section of the IIA NY chapter newsletter, we would like to highlight the members of our chapter who have achieved new IIA certifications, news from our members and
any other exciting events
IIA NY Chapter New Certified Members
Congratulations to the following members who have completed the requirements for the certifications listed between February 2016 and August 2016:
Augustin de Lestrange Ellen Hickey
Christina Prothro Eric Pruden
Elisa Hahn Evrim Esen
Imtia Chowdhury Haeryeon Lee
Jeanette Rogas Hannah Redpath
Jeremy Monsky Ian Barto
Leona Sukhram Jeannette Russell-Shepherd
Matthew Suhovsky Katie Risolo
Michael Morrissey Michael Cowan
Nadeem Afzal Montgomery Alexander
Steven Glickman Nina Guidi
Tapiwa Chisakaitwa Ryan Clement
Xun Cai Theresa Hung
Yifei Dai Vanesa Roncolato
Mahmood Zaman Wenqian Wang
Certified Internal Auditor (CIA)
21 | P a g e
If you have any questions, please reach out to our Certification Committee Chair
Are you looking for the best way to prepare for the Certified Internal Auditor® (CIA
®) exam?
The Institute of Internal Auditors’ CIA Learning System teaches the entire global CIA exam
syllabus. Our study tools offer customization, convenience and mobility so you can make the
most of your valuable study time. Begin your studies today!
Choose the study option that best suits your schedule and study preferences.
Create a customized SmartStudy™ plan based on your areas of strength and weakness.
Learn the entire global CIA exam syllabus in a concise and easy-to-understand format.
Travel light and access your reading materials via your e-reader device.
Study on-the-go with interactive online study tools that are optimized for your mobile
device.
Click here for more on The IIA CIA learning system. CIA learning For additional questions or inquiries, please reach out to the VP & Secretary – Tracey Thomas at [email protected]
The IIA is also offering discount as follows:
Certified Internal Auditor (CIA) Exam® Practice Questions
See link for further details: CIA Exam Practice Questions Discount
Internal Audit Practitioner Designation Now Offered
New and Rotational Auditors
To support new and rotational auditors as they begin a career or enter a new career phase in auditing, The IIA is pleased to announce the Internal Audit Practitioner designation.
This new designation provides recognition for those who have taken the first step toward CIA certification, which is taking and passing Part One of the Certified Internal Auditor® (CIA®) exam. Upon passing the exam part, candidates can submit an application to obtain the Internal Audit Practitioner designation through social badging.
For new auditors, obtaining the designation after passing Part One of the CIA exam demonstrates their knowledge and aptitude of internal audit basics, and they may choose to continue the path to full CIA certification by passing exam Parts Two and Three to establish a comprehensive internal audit foundation. For those navigating through a temporary or rotational role in auditing, the Internal Audit Practitioner designation provides fundamental knowledge to make the most of the experience and offers credibility within the field.
In addition, the Internal Audit Practitioner designation offers audit managers and executives a practical and effective way to build stronger teams by establishing a common foundation of basic auditing skills and knowledge for their entire auditing staff.
For more information, please visit the CIA webpage or click the following link
Be a Key Advisor to the Audit Committee and Executive Management for Risk Management
Job analysis and stakeholder surveys have indicated a key element to unlocking internal audit’s full potential can be found in a professional’s ability to provide advice and assurance on risk management to audit committees and executive management. In response, The IIA developed the CRMA designation.
The standard CRMA Core Exam will be a 100-question, multiple-choice exam, with a seat time of two hours. These exams will be instantly scored like all of the other IIA exams, and will be administered at Pearson VUE testing centers around the world. All Certification in Risk Management Assurance® (CRMA®) eligibility requirements will apply.
The CRMA: Your Key to Career Success
The CRMA is designed for internal auditors and risk management professionals with responsibility for and experience in providing risk assurance, governance processes, quality assurance, or control self-assessment (CSA). It demonstrates an individual’s ability to evaluate the dynamic components that comprise an organization’s governance and enterprise risk management program and provide advice and assurance around these issues.
The CRMA is one more mark of professional distinction for internal audit practitioners. Earning the CRMA will assist you in demonstrating your ability to:
-Provide assurance on core business processes in risk management and governance. -Educate management and the audit committee on risk and risk management concepts. -Focus on strategic organizational risks. -Add value for your organization.