Technical blog
Comment and opinion from our chief professional practice advisor Liz Sandwith
Climate change brings evolving and challenging risks for all organisations 9 May
Which climate risk themes are relevant to your organisation, and what assurances are internal audit providing?
Occupational pension scheme governance 2 May
Key questions to help assess trustee assurance arrangements.
Making tax digital - is your business ready? 5 March
From 1 April 2019, many VAT registered businesses will be required to start to submit their VAT returns digitally.
Is your waste really being recycled? 8 February
How confident are you that the recycling statistics that your company report are genuine?
Work in progress 18 January
Internal audit’s path to greater impact and influence.
Whistleblowing in the US and the EU 24 October
Are concerns about wrongdoing in the workplace voiced?
Brexit: 'starter for 10 or 11' for internal audit to consider 17 October
These are the questions you should be asking today.
Is your internal audit team ready for Brexit? 20 September
It is important that internal auditors are well informed to be able to have constructive dialogue with the business.
Gender pay gap reporting 28 August
The results on gender pay gap reporting make for interesting reading. There are several areas where internal auditors can provide advice, assurance or play the role of devil’s advocate.
Fintech 7 August
What risks does this bring to the business?
Crowdfunding 17 July
What should you consider if your organisation or supply chain engages in crowdfunding?
Tax on termination payments 9 July
Learn about the changes to tax on termination payments that came into effect in 2018.
GDPR: ... here and now! 12 June
We are now living in the reality not the hype!
GDPR: Final summary thoughts 5 June
The culmination of several years of effort to update data protection for the 21st century.
GDPR: Data breaches 17 May
The GDPR introduces a duty on all organisations to report certain types of personal data breach to the relevant supervisory authority. We explore the breaches and how you can be prepared.
GDPR: Keeping current with consent 16 April
When it comes to providing acceptable evidence of the right to process data, consent forms may seem the safest – and easiest – way to do so. But is it the correct way?
GDPR: Consent and legitimate interests 16 March
Is consent the most important Lawful Basis for processing?
Inspiration for tough topics 6 March
How does your organisation minimise unconscious bias in recruitment? How is your function providing assurance on diversity? When did your function last audit the recruitment process?
GDPR: have you addressed key risk areas? 28 February
Internal auditors have a pivotal role to play in fostering a positive approach to the GDPR and assuring management's implementation activities.
Is plastic on your audit plan? 6 February
Does your organisation have a reduction programme already underway? Has it been audited? Is it challenging enough? We examine the issue.
Data analytics - A not so exclusive club 4 January
Data analytics and the use of the spreadsheet.
About Liz Sandwith
Liz has over 28 years’ experience in internal audit and risk management. She spent 13 years as head of internal audit at Channel 5 followed by five at Bupa, where she held a number of roles, from head of assurance, risk and compliance to head of internal audit operations. She has also worked with the Information Commissioner’s office and the Electoral Commission, as well as advising a number of local authorities on internal audit and risk management issues.
Liz served as president of the institute between 2000 and 2001 and she became the Chartered IIA’s chief professional practice advisor in May 2016.
Posts from 2017
Apprenticeship levy - what does it mean for your business? 25 October
Buying in resources to supplement internal audit skill sets 13 October
Charities – do you have an effective internal audit function? 9 October
Quality assurance and improvement programme - when did you last report? 2 October
Is your internal audit function compliant with the International Standards? 25 September
NAO cyber guidance for audit committees 21 September
Risk management and internal audit 18 September
Better KPIs for internal audit 11 September
Are companies getting a true picture of their human rights performance? 5 September
Internal audit planning best practice 4 September
The role of internal audit in digitalisation 31 August
Why your internal audit charter is important? 29 August
What is an internal audit strategy document and how valuable is it? 21 August
How does EQA benefit internal audit and the audit committee? 14 August
Grenfell Tower - what value assurance? 11 August
Recognising internal audit’s role in cyber risk 19 July
IR35 and the public sector – to be employed, or not to be employed 6 June
Data analytics: the oldest new thing in internal audit 31 May
Giving and receiving feedback within internal audit 20 April
Giving feedback to stakeholders 10 April
Stakeholder engagement 3 April
GDPR - Mountain or molehill? 3 March
Auditing culture – why do good companies go bad? 9 February
Investors in supermarkets and internal audit – what’s the connection? 27 January
Modern slavery statements 17 January
Posts from 2016
Major cyber breach or just theft? 28 November
UK Government launches £1.9bn cyber security strategy 2 November
The new anti-bribery standard – A big step towards tackling corruption 1 November
Modern slavery - are you helping to protect your organisation's reputation? 17 October
Auditing culture - the clock is ticking 7 October
Wells Fargo: what happens when all three lines of defence fail? 19 September
Standards: towards conformance 1 September
Fitness and propriety: the next topic for internal audit? 30 August
Sage announces data breach, shares drop 3.9% 16 August
Is the retail sector unclear about role of internal audit? 5 August
IIA Standards board meeting in New York 28 July
Cyber security – a parliamentary report 15 July
