The U.S. Government Accountability Office (GAO) is a legislative branch government agency that provides auditing, evaluation, and investigative services for the United States Congress. It is the supreme audit institution of the federal government of the United States. It identifies its core "mission values" as: accountability, integrity, and reliability. It is also known as the "congressional watchdog".
An audit is an "independent examination of financial information of any entity, whether profit oriented or not, irrespective of its size or legal form when such an examination is conducted with a view to express an opinion thereon.” Auditing also attempts to ensure that the books of accounts are properly maintained by the concern as required by law. Auditors consider the propositions before them, obtain evidence, and evaluate the propositions in their auditing report.
An auditor is a person or a firm appointed by a company to execute an audit. To act as an auditor, a person should be certified by the regulatory authority of accounting and auditing or possess certain specified qualifications. Generally, to act as an external auditor of the company, a person should have a certificate of practice from the regulatory authority.
An audit committee is a committee of an organisation's board of directors which is responsible for oversight of the financial reporting process, selection of the independent auditor, and receipt of audit results both internal and external.
The United Nations Office of Internal Oversight Services (OIOS) is an independent office in the United Nations Secretariat whose mandate is to "assist the Secretary-General in fulfilling his internal oversight responsibilities in respect of the resources and staff of the Organization." Specifically, activities include internal audit, investigation, monitoring, evaluation, inspection, reporting and support services to the United Nations Secretariat.
Government performance auditing focuses on improving how governments provide programs and services. While there is no one universally agreed upon definition, there are key definitions which capture the scope of government performance auditing. According to Government Auditing Standards, "Performance audits are defined as audits that provide findings or conclusions based on an evaluation of sufficient, appropriate evidence against criteria." Additionally, the International Organization of Supreme Audit Institutions defines performance auditing as "an independent examination of the efficiency and effectiveness of government undertakings, programs or organizations, with due regard to economy, and the aim of leading to improvements.
An information technology audit, or information systems audit, is an examination of the management controls within an Information technology (IT) infrastructure and business applications. The evaluation of evidence obtained determines if the information systems are safeguarding assets, maintaining data integrity, and operating effectively to achieve the organization's goals or objectives. These reviews may be performed in conjunction with a financial statement audit, internal audit, or other form of attestation engagement.
The 'Committee of Sponsoring Organizations of the Treadway Commission' ('COSO') is a joint initiative to combat corporate fraud. It was established in the United States by five private sector organizations, dedicated to guiding executive management and government entities in relevant aspects of organizational governance, business ethics, internal control, business risk management, fraud and financial reports. COSO has established a common internal control model against which companies and organizations can evaluate their control systems. COSO has the support of five support organizations: American Institute of Certified Public Accountants (AICPA), American Accounting Association (AAA), Financial Executives International (FEI), Institute of Internal Auditors (IIA) and Institute of Management Accountants (IMA)
Quality audit is the process of systematic examination of a quality system carried out by an internal or external quality auditor or an audit team. It is an important part of an organization's quality management system and is a key element in the ISO quality system standard, ISO 9001.
Performance audit refers to an independent examination of a program, function, operation or the management systems and procedures of a governmental or non-profit entity to assess whether the entity is achieving economy, efficiency and effectiveness in the employment of available resources. The examination is objective and systematic, generally using structured and professionally adopted methodologies.
Internal auditing is an independent, objective assurance and consulting activity designed to add value to and improve an organization's operations. It may help an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control and governance processes. Internal auditing might achieve this goal by providing insight and recommendations based on analyses and assessments of data and business processes. With commitment to integrity and accountability, internal auditing provides value to governing bodies and senior management as an objective source of independent advice. Professionals called internal auditors are employed by organizations to perform the internal auditing activity.
Governance, risk management and compliance (GRC) is the term covering an organization's approach across these three practices: governance, risk management, and compliance. The first scholarly research on GRC was published in 2007 where GRC was formally defined as "the integrated collection of capabilities that enable an organization to reliably achieve objectives, address uncertainty and act with integrity." The research referred to common "keep the company on track" activities conducted in departments such as internal audit, compliance, risk, legal, finance, IT, HR as well as the lines of business, executive suite and the board itself.
Internal control, as defined by accounting and auditing, is a process for assuring of an organization's objectives in operational effectiveness and efficiency, reliable financial reporting, and compliance with laws, regulations and policies. A broad concept, internal control involves everything that controls risks to an organization.
An environmental audit is a type of evaluation intended to identify environmental compliance and management system implementation gaps, along with related corrective actions. In this way they perform an analogous (similar) function to financial audits. There are generally two different types of environmental audits: compliance audits and management systems audits. Compliance audits tend to be the primary type in the US or within US-based multinationals.
Entity-level controls are internal controls that help to ensure that management directives pertaining to the entire entity are carried out. They are the second level of a top-down approach to understanding the risks of an organization. Generally, entity refers to the entire company.
The Department of Defense Inspector General (DoDIG) is an independent, objective agency that provides oversight related to the programs and operations of the United States Department of Defense (DoD). DoD IG was created in 1982 as an amendment to the Inspector General Act of 1978.
The Office of Inspector General (OIG) for the United States Department of Health and Human Services (HHS) is responsible for oversight of the HHS’s approximately $2.4 trillion portfolio of programs. Approximately 1,650 auditors, investigators, and evaluators, supplemented by staff with expertise in law, technology, cybersecurity, data analytics, statistics, medicine, economics, health policy, and management and administration. Based on Federal Employee Viewpoint Survey scores, OIG has been ranked the best place to work in HHS for 5 consecutive years by the Partnership for Public Service.
ISO 50001Energy management systems - Requirements with guidance for use, is an international standard created by the International Organization for Standardization (ISO). The standard specifies the requirements for establishing, implementing, maintaining and improving an energy management system, whose purpose is to enable an organization to follow a systematic approach in achieving continual improvement of energy performance, including energy efficiency, energy security, energy use and consumption.
Control self-assessment is a technique developed in 1987 that is used by a range of organisations including corporations, charities and government departments, to assess the effectiveness of their risk management and control processes.
Management audit is a systematic examination of decisions and actions of the management to analyse the performance. Management audit involves the review of managerial aspects like organizational objective, policies, procedures, structure, control and system in order to check the efficiency or performance of the management over the activities of the company. Unlike financial audits, management audit mainly examine the non financial data to audit the efficiency of the management. Somehow audit tries to search the answer of how well the management has been operating the business of the company? Is managerial style well suited for business operation? Management Audit focuses on results, evaluating the effectiveness and suitability of controls by challenging underlying rules, procedures and methods.
