Área de Atuação: Internal Audit
PP&C has relevant experience in internal auditing. Since 1991, it has had a specific sector for work of this nature that is made up of highly specialized and qualified professionals, with experience in the most varied business processes, with a diversified client portfolio.
Internal Audit
PP&C has relevant experience in internal auditing. Since 1991, it has had a specific sector for work of this nature that is made up of highly specialized and qualified professionals, with experience in the most varied business processes, with a diversified client portfolio.
The audit work carried out by PP&C is not limited to verifying policies, standards, procedures, applicable legislation and accounting and tax procedures. It is strongly supported by a methodology that takes into account the evaluation of business strategies and alternatives that can bring about improvements in financial and operational efficiency. This differential is based on PP&C’s recognized competence in business management.
PP&C’s staff is permanently trained and has experience in internal and external auditing, in the requirements of the Sarbanes-Oxley Act (SOX), in tax reviews, in personnel routines, in IT and in acquisition and merger work, which enables its professionals to have a much more comprehensive and effective view of the internal auditing function. These professionals are qualified to carry out the work inherent in an internal audit department, involving:
-
Map processes;
-
Identify risks and control activities, evaluate internal controls, test their efficiency, forecast possible problems and offer recommendations to strengthen and improve these controls;
-
Assist in the creation and maintenance of an effective environment for the operation of controls, presenting or discussing strategies, alternatives for improving operational efficiency, policies, standards and procedures;
-
Evaluate the correct application of the fundamental accounting principles and the adequacy of compliance with the various laws;
-
Investigate and determine liability for fraud;
-
Support senior management in gaining a better understanding of the company’s operations, enabling more active and integrated action; and
-
Identify areas for improvement or cost reduction.
Continuous Audit
In the current complex economic scenario, there has been an increasing focus on adopting innovative ways to assess and manage risks, and technological advances are paving the way for the use of Continuous Auditing in organizations’ processes, transactions, systems and controls.
Internal Audit professionals, who are responsible for independently assessing companies’ risks and controls, as well as identifying opportunities for improvement in their business processes, have more recently taken on an important role in risk management structures.
Organizations are therefore using technology to change the way they evaluate the effectiveness of controls and monitor their performance.
Our Approach
The continuous audit process is a technique that enables the continuous evaluation of processes and controls. This is done through inspection with a focus on cross-checking electronic data, using a massive data analysis tool, on critical transactions on a recurring basis and on a large scale, within a short timeframe, after the occurrence of a relevant event.
Its aim is to identify exceptions or obtain “insights” in a timely manner based on predefined criteria and triggers. In other words, automated reports that contain data indicative of operations are generated, in order to make it possible to conclude that there are transactions that do not comply with the organization’s rules, policies and procedures.
PP&C offers its clients high technical quality and customized services. We provide services at all stages of the Continuous Audit project or at specific stages according to the needs of each company:
Implementation of Continuous Auditing:
-
Understanding the systems and situation of the company and its processes for the Continuous Audit;
-
Assessment along with the IT department to understand the databases, charts, their origins and the systems and connections required;
-
Drawing up a work plan for implementation;
-
Survey of tests and indicators to be developed;
-
Validation with the areas on the false/positives generated;
-
Development of results and statistics dashboards;
-
Preparing the legacy of information;
-
Synthetic and analytical report generation; and
-
Analysis of results and investigation of incidents.