Risk Based Internal Auditing (RBIA) is defined by the Institute of Internal Auditors (IIA) as “a methodology that links internal auditing to an organization’s overall risk management framework”. RBIA allows internal audit to provide assurance to the bank’s/ organization’s board that various risk management processes are managing risks effectively, in relation to the risk appetite of the bank/ organization.
However every organization is different with different attitudes to risk, different management and organizational structures, different processes and procedures, and the need to subscribe to and comply with diverse conventions and regulations. Experienced internal auditors need to adapt these ideas to the structures, processes and language of their organization in order to implement RBIA.
Implemented correctly, RBIA offers tremendous advantages to the organization. RBIA allows internal audit to provide the Board of Directors with the assurance that it needs on three areas:
- Risk management processes - their design and how well they are working
- Management of those risks classified as 'key' - including the effectiveness of the controls and other responses to them
- Complete, accurate and appropriate reporting and classification of risks
This intensive 2-day course is all about RBIA, what it is, how it differs from the conventional internal audit and most importantly of all how it may be planned and implemented within the organization.
Event Tags: Risk Based Internal Auditing, Expectations Gap, Risk Heat Map, Business Risks, COSO, ERM, RBIA, Operational Risk, SWOT, BPEST, FEMA, Risk Matrix, Risk Register, and more...
Learning Objectives:
By using the RBIA approach, the organization’s internal audit should be able to conclude that:
- Management has identified, assessed and responded to risks within and beyond the organization’s risk appetite
- That the responses to risks are effective but not excessive in managing inherent risks within this risk appetite
- Where residual risks are not in line with the risk appetite, action is being taken to remedy this
- Risk management processes, including the effectiveness of responses and the completion of actions, are being monitored by management to ensure they continue to operate effectively
- Risks, responses and actions are being properly classified and reported.
Who will Benefit:
This practical hands-on training course is designed for professionals from industry, financial institutions and risk intensive organizations. The following job titles/ positions will benefit from attending:
- Board members, especially risk and audit committee chairs and members
- Chief Risk Officers
- Heads of market, credit, and operational risk
- Head of Risk Management
- Chief Compliance Officers
- Chief Audit Officers
- Chief Financial Officers
- Actuaries
- Treasurers
- Auditors (External & Internal)
- Bank regulators and examiners
- Risk management consultants
- 08.30 AM - 09.00 AM: Registration
- 09.00 AM: Session Start
- What is Risk Based Internal Auditing?
- An introduction to Risk Based Internal Auditing
- Traditional Approach versus Risk Based internal approach
- Stages of Risk Based Internal Auditing
- Measuring the effectiveness of Risk Based Internal Auditing
- Risk Based Internal Auditing – Background
- Rationale behind Risk Based Internal Auditing
- Internal Audit – Definitions, Objectives & Scope
- The “Expectations Gap”
- The RISK BASED Internal Audit
- Comparison to the traditional approach
- Risk Management Understanding Risk
- The meaning of risk
- The attributes of risk – Likelihood & Consequence
- The Risk Heat Map
- Audit risk
- Business risks – classification, internal & external, controllable & non-controllable
- The COSO risk management framework
- Understanding COSO
- COSO — An Integrated Risk Management Framework
- The COSO ERM Framework
- COSO in Finer Detail
- Updates to COSO
- Basic concepts of risk management
- Risk capacity, risk appetite, risk response
- Inherent & residual risk
- Entity risk assessment & Business process risk assessment
- Significant risk
- Risk register
- ERM – Enterprise Wide Risk Management
- ERM and the Board of Directors
- What is covered under ERM
- Risk Maturity
- What is risk maturity
- Why it is important
- Risk maturity levels
- Scorecard for assessing risk maturity
- Analyzing the risk maturity results
- Using a Risk Based Internal Audit (RBIA) Methodology
- Audit is of management of risks and not of risk
- Key reporting areas in the management of risks
- Documenting Board assurance requirements and risk appetite
- Audit strategy & risk maturity
- Selecting individual risks to audit
- Frequency of coverage
- Including the Risks into an Audit Assignment
- Importance of selecting the right auditable unit
- Stages of RBIA
- Assessing risk maturity
- Preparing the audit plan
- Conducting the assurance audit
- Reporting to the appropriate level
- Model Process for Assessing & Evaluating Risks
- Risk assessment steps
- Risk assessment tools
- Risk identification
- Business Activities that are Sources of Risk
- Operational Risk and its categories
- Risk identification methods
- Industry risk models
- Choosing which methods to use
- Typical risk areas
- Risk estimation (Risk measurement/ Risk scoring)
- Risk evaluation
- Risk Heat map & Actions Needed
- Using risk scores
- Risk Assessment Tools
- Market survey
- Dependency modeling
- SWOT analyses
- Event tree analysis
- BPEST (Business, Political, Economical, Social & Technological)
- Fault tree analysis (Root Cause Analysis)
- FEMA (Failure Mode and Effect Analysis)
- Internal Audit Process
In this section the instructor will cover the complete Internal Audit Process through with the RBIA methodology is carried out in a consistent manner. This covers the need for the Internal Auditor to become acquainted with the business and the industry allowing him to assess the risk maturity which determines his/her ability to provide the PBIA assurance and to review the risk assessment done by management and the her/his conclusion whether this risk register may be relied upon.
The process covered includes;
- Strategic analysis
- Enterprise risk assessment
- Internal Audit Plan development
- What Risks to Audit – An Alternative Approach
- Internal Audit execution
- The Process Risk Matrix
- Reporting
- Issue Resolution tracking
- Case Study - How the RBIA methodology is applied.
This is an illustrative case study showing how the RBIA methodology is applied in a real world environment.
- Case Study - Comair Flight 5191
Operational risks not discovered can have devastating consequences, including loss of life and irreparable reputational damages. Such was the case of Comair Flight 519.
- Comparing the Two Methodologies
The speaker will compare RBIA methodology to the regular audit methodology. These methodologies will be examine in terms of;
- Managing risk
- Setting responsibility for risk management, and
- Usefulness to the Board of Directors
- Risk Registers
The speaker will examine and discuss examples of the RBIA documentation form the case study including;
- Risk Register,
- Audit Procedures and
- Transaction Files.
- Closing Discussion - Difficulties facing the Internal Auditor
The instructor will examine and discuss some of the pitfalls that the Internal Auditor may face in his/her assignment and some potential solutions.

Richard Barr
Operational Risk & Back Office Specialist
Richard Barr , holds a B.S. in International Business Administration from San Jose State University in California. His professional experience spans over 23 years, 5 of which were spent with Wells Fargo Bank. Another 5 were spent honing his global banking skills, when Richard was intimately involved with International Trade Finance, Real Time Gross Settlement and Cross Border Banking. The past 14 years have been in the private and high-tech sectors providing high-level consulting services, business analysis, project management and training to a wide range of banking clientele across the globe.
Richard has also filled the role of advisor to central banks on payment systems and technical payments issues. Furthermore, key staff members from the Bank of England, South African Reserve Bank, Central Bank of Ireland, Bank Indonesia, European Central Bank and Bank of Portugal have attended training sessions presented by Richard.
Register Now
Online using Credit card
Get the Invitation
Pre-Register yourself and get the official Invite when venue and dates are announced for this seminar.
Call here to register +1-888-717-2436 or email at [email protected]
Other Registration Option
- Download the Order Form
- Fill this form with attendee details & payment details
- Fax it to +1-650-362-2367, or
- Email it to [email protected]
Payment Mode
ComplianceOnline (MetricStream, Inc),
6201 America Center Drive Suite 240
San Jose, CA 95002
USA
Register / Pay by Wire Transfer
Please contact us at +1-888-717-2436 to get details of wire transfer option.Terms & Conditions to Register for the Seminar/Conference/Event
Your registration for the seminar is subject to following terms and conditions. If you need any clarification before registering for this seminar please call us @ +1-888-717-2436 or email us @ [email protected]
Payment:
Payment is required 2 days before the date of the conference. We accept American Express, Visa and MasterCard. Make checks payable to MetricStream Inc. (our parent company).
Cancellations and substitutions:
Written cancellations through fax or email (from the person who has registered for this conference) received at least 10 calendar days prior to the start date of the event will receive a refund - less a $300 administration fee. No cancellations will be accepted - nor refunds issued - within 10 calendar days before the start date of the event.
On request by email or fax (before the seminar) a credit for the amount paid minus administration fees ($300) will be transferred to any future ComplianceOnline event and a credit note will be issued.
Substitutions may be made at any time. No-shows will be charged the full amount.
We discourage onsite registrations, however if you wish to register onsite, payment to happen through credit card immediately or check to be submitted onsite. Conference material will be given on the spot if it is available after distributing to other attendees. In case it is not available, we will send the material after the conference is over.
In the event ComplianceOnline cancels the seminar, ComplianceOnline is not responsible for any airfare, hotel, other costs or losses incurred by registrants. Some topics and speakers may be subject to change without notice.
Attendance confirmation and documents to carry to the seminar venue:
After we receive the payment from the registered attendee, an electronic event pass will be sent to the email address associated with the registrant 5 working days before the seminar date. Please bring the pass to the venue of the event.
Conference photograph / video:
By registering and attending ComplianceOnline conference, you agree to have your photographs or videos taken at the conference venue and you do not have any objections to ComplianceOnline using these photos and videos for marketing, archiving or any other conference related activities. You agree to release ComplianceOnline from any kind of claims arising out of copyright or privacy violations.
Testimonials
See What People Say About Us
Internal Auditor,
Oman Insurance Co
Head of Internal Audit,
Solidere.Com
QA Manager,
Hamad Medical Co-operation
Sr Consultant,
Hamad Medical Corporation
Internal Auditor,
Rubaiyat Company for Industry and Trade Ltd.
Group Internal Audit Manager,
Global Source Trading LLC
Quality Coordinator,
Hamad Medical Co-operation
- Logo on name cards
- Logo placement on the podium
- Logo on the lanyards for all speakers
- Exclusive stall at the entrance
- A full page brochure advert
- Moving banner ad on the website
- Logo on promotional email campaign
- Logo on name cards
- A half page brochure advert
- Exclusive stall at the entrance
- A quarter page brochure advert
- Moving banner ad on the website
- Logo on name cards
- Logo placement on the podium
- Logo on the lanyards for all speakers
- Exclusive stall at the entrance
- A full page brochure advert
- Moving banner ad on the website
- Logo on promotional email campaign
- Logo on name cards
- A half page brochure advert
- Exclusive stall at the entrance
- A quarter page brochure advert
If you wish to partner with us for this event please contact us: [email protected] or call us: +1-888-717-2436.
- Logo on name cards
- Logo placement on the podium
- Logo on the lanyards for all speakers
- Exclusive stall at the entrance
- A full page brochure advert
- Logo on promotional email campaign
- Logo on name cards
- A half page brochure advert
- Exclusive stall at the entrance
- A quarter page brochure advert
- Moving banner ad on the website
- Logo on name cards
- Logo placement on the podium
- Logo on the lanyards for all speakers
- Exclusive stall at the entrance
- A full page brochure advert
- Moving banner ad on the website
- Logo on promotional email campaign
- Logo on name cards
- A half page brochure advert
- Exclusive stall at the entrance
- A quarter page brochure advert
- Moving banner ad on the website
If you wish to sponsor this event please contact Cruise Webster: [email protected] or call us: (207) 576-4173
Local Attractions of New York

Statue of Liberty
A short boat trip brings you from Manhattan to the Statue of Liberty, a gift from France for the centennial of America's Independence which now symbolizes the USA and New York in particular.

Brooklyn Bridge
The Brooklyn Bridge, built between 1869 and 1883, connects Brooklyn with Manhattan. The bridge is one of the most magnificent landmarks in all of New York City.

Bryant Park
Bryant Park is a small but pleasant park located next to the NY Public Library and surrounded by interesting architecture such as the historic Bryant Park Hotel and the modern Bank of America Building.

Central Park
Central Park was the first large city park in the United States. The design by Olmsted and Vaux has been copied all over the world. Originally situated in a sparsely populated area, the park is now surrounded by highrises.

Coney Island
Coney Island is a seaside resort in Brooklyn famous for its historic Ferris Wheel and roller coaster, the Cyclone. Long past its heyday, it is still a popular tourist attraction.

Ellis Island
Now home to the immigration museum, Ellis Island was the immigrant gateway to America. More than 12 million people arrived here on the way to their new life in a new country.

Grand Army Plaza
Not as famous as its Brooklyn namesake, this plaza sits at the edge of Central Park. The square features a large gilded statue of general William Sherman as well as the Pulitzer fountain.

Lincoln Center
Lincoln Center is a large complex devoted to music, dance, and theater. The most famous building at the center is the Metropolitan Opera House, designed by Wallace K. Harrison.

New York Public Library
One of the world's most acclaimed libraries is housed in a beautiful Beaux-Arts building, designed by architects Carrère and Hastings. The building was completed in 1911 after 9 years of construction.

Park Avenue
This posh, mostly residential street is lined with many historic buildings like the Waldorf Astoria Hotel, Lever House, Helmsley Building, Seagram Building and Ritz Tower.

Roosevelt Island
Situated on the East River between Manhattan and Queens, Roosevelt Island is best known for its hospitals and asylums that have been here since the 1800s. The island can be reached by an aerial tram.

St. Patrick's Cathedral
Completed in 1900, this neo-Gothic masterpiece is the country's largest roman catholic cathedral. It is located at Fifth Avenue near Rockefeller Center, now a posh area but at the time of construction well out of the city center.

Times Square
Times Square, the most bustling square of New York is known for its many Broadway theatres, cinemas and electronic billboards. It is one of those places that make New York a city that never sleeps.

Washington Square
Washington square park, located in Greenwich village, was created in 1826. The main attraction of the park is the Washington Arch, constructed for the centennial of President Washington's inauguration.