Friday, November 24, 2023

Takeaways from my 2023 ethics CPEs

 As you are aware, licensed CIA's are required to take at least two hours of training in the field of ethics. I have just completed mine and I would like to share with you some takeaways:

1. Becoming the everyday ethicist:

This session was presented by Amanda Erven. The one technique I liked about how to achieve this objective is by developing your own personal value statement and code of self-conduct! It is a great idea. I encourage internal auditors to adopt this important step towards becoming an everyday ethicist.

2. Exploring workplace honesty and ethical gray areas:
This session was presented by Christian Miller. I liked his discussion regarding the differences between an honest person and someone who exhibits honest behavior as shown below.

Finally, I came across a white paper by IIA Australia entitled "Why people do not accurately disclose their conflicts of interest". Here is a paragraph from it:

"There are three significant ways in which people withhold information about conflicts of interest:
  1. People do not disclose conflicts of interest
  2. People only partially disclose conflicts of interest
  3. People give misleading disclosures that result in information being hidden

These are referred to in this White Paper as the sides of the ‘Conflict of Interest Bermuda Triangle’. Examining the reasons people do not make full disclosures of conflicts of interest will help us improve disclosure systems and internal controls over conflicts of interest."

Please share your takeaways from your ethics training with the group so we can raise awareness of the importance of ethics in our lives.

Wednesday, September 6, 2023

Internal Audit has a role to play when it comes to mental health!


Internal Audit has a role to play when it comes to mental health! It starts with ensuring that its own staff are enjoying good mental health.

Internal Audit can play a vital role in helping the organization promote and improve mental wellness and provide assurance on the effectiveness of the organization's policies and practices and provide insight that can help improve them.

More details are discussed is an older post:

My Thoughts: Internal Audit and Mental Health! (

Monday, August 21, 2023

Why did you become an Internal Auditor?

Many years ago, I have prepared a presentation for training purposes aimed at new and "would be" internal auditors. The presentation title was "So, you want to be an internal auditor!". It addresses the reasons why someone would want to be an internal auditor and if he/she have what it takes to be a successful one.
I am sharing it with you today although it needs to be updated.

Sunday, November 13, 2022

Are you getting the most from the ethics mandatory hours?

 Like many of you at this time of year, I have been looking to take the mandatory two hours of ethics training to comply with the IIA cpe  requirements. During the last few years, I attended webinars that did not interest me or added real value to my knowledge. So, this year I looked harder, and I was happy to find some really good free webinars that I have enjoyed attending. In fact, I found so many good webinars and I ended attending more than the required two hours.

One of the webinars was entitled "Why good people do bad things at work" by Andy Felo. The webinar is about the relationship between the "tone at the tope" and the "tune in the middle" and its impact on culture and ethical behavior within the Organization.

Another webinar was entitled "The seven deadly ethical sins of an organization" by Amanda Erven. I have found the definition and discussion of the seven sins engaging and I particularly liked the real-life examples she provided for each sin.

Another interesting webinar discussed an import issue which is bullying and bias in the workplace. The webinar is by Francine Griesing and its title is " Not just for school children: conquering bullying and bias in the workplace". This is such an important issue that should be in the radar of internal auditors.

One last example is a webinar that discussed ethics in this era of technological advancement. It is entitled "The ethical elements of Artificial Intelligence" by Katrina Ingram. This webinar provides a brief history of AI, ethical issues surrounding data, and discusses the principles of an AI ethical framework.   

I encourage you to choose your ethical webinars carefully and make the most out of it.

Thursday, August 25, 2022

Takeaways from my recent readings

In this post, I am sharing some interesting takeaways from my recent readings. I will keep it very brief to enable you to go through it despite of your busy schedule! Of course, you can always download the original documents if you wish to learn more.

 Key Components of Digital Trust:

ISACA in a new free guide (Understanding the Six Key Components of Digital Trust| ISACA) defines digital trust as:

"Digital trust is confidence in the integrity of relationships among providers and consumers in a digital ecosystem."

The guide has identified six key components of the trust as follows:

  • Quality of products and services
  • Availability of information 24/7/365
  • Security and Privacy
  • Ethics and Integrity
  • Transparency and honesty 
  • Stability and Resilience

 Recession Playbook for Chief Audit Executives:

A Gartner 2022-2023 playbook identified the following 9 actions across three main areas that is believed to help in managing resources, being agile in securing talent, and accelerate digital and technological initiatives:

You can download the playbook by following this link:

Turning Audit Clients into Allies

In its 2022 audit management playbook, AUDITBOARD offered some tips for turning audit clients into allies:

You can download a copy by following this link:

The Audit Management Playbook [2022 Updated] | AuditBoard

Wednesday, June 8, 2022

Do you have the "right to disconnect" outside business hours?

 A few days ago, the Province of Ontario in Canada introduced a right to disconnect law under which companies with 25 or more employees are required to establish policies that give employees the right to disconnect from business-related communications(including emails, messages, and phone & video calls, a ) outside regular business hours.

While the benefits and importance of the right to disconnect and its impact on the work/life balance and mental health wellness are not disputable, its implementation and success in practice are yet to be seen. 

Areas of consideration for internal audit

  • Do you fully understand the spirit of the right to disconnect concept and are able to assess its effectiveness and implementation?
  • Do you think it will limit your access to staff and information and impact your audit plan?
  • Do you think it will increase your productivity?
  • Would you plan to include it in your HR/culture audits?
If you work in a country that has already adopted the right to disconnect regulation, please share your experience.

picture source:Why You Should Respect Your Employees' Right to Disconnect | FlexJobs

Takeaways from my 2023 ethics CPEs

 As you are aware, licensed CIA's are required to take at least two hours of training in the field of ethics. I have just completed mine...