To ensure compliance with financial regulations.

To identify and evaluate potential risks affecting organizational objectives.

To develop new business strategies.

To conduct employee performance evaluations.

Information and communication

External auditing

Control activities

Risk assessment

Prepare the financial statements

Understand the client's business and industry

Select the audit team members

Review the previous audit findings

Compliance auditing focuses solely on financial performance.

Financial auditing is only concerned with regulatory compliance.

Compliance auditing evaluates the effectiveness of internal controls.

Compliance auditing ensures adherence to regulations, while financial auditing assesses the accuracy of financial statements.

Internal audits

Random sampling

Historical analysis

Analytical procedures

Management's role is limited to reporting on internal controls without oversight.

Management only monitors internal controls without establishing them.

Internal controls are solely the responsibility of the finance department.

Management is responsible for establishing and overseeing internal controls to ensure effective risk management and compliance.

At least annually, or more frequently as needed.

Every five years

Monthly without exception

Only when a major incident occurs