Internal Audit

It is consist of firm’s managerial organizational, fraud and irregularity controls and this controls are conducted risk based approach.For this audit:

1.a. Business processes, operations, accounting and document/information flow and suitability and efficiency of the circulating documents are examined.

1.b. Scenarios for possible risks to be encountered and their control mechanism for these are created.

1.c. According to the scenarios created, the necessary activities (action plans) are applied for the Company Management and Organizations, Policies and Procedures Implemented by the Company, Human Resources and Personnel Management and Performance Evaluation Systems, Finance, Accounting, IT and all business processes. The processes are monitored.

1.d. Process Monitoring, Evaluation, Efficiency Analysis are prepared

1.e. Company Goal, Vision, Mission and Corporate Culture Planning are prepared

1.f. To plan the training/education needs that will provide all the necessary Internal Control System in line with the management’s needs, to give consultancy and to establish an effective internal audit coordination.

Businesses that are free from the risk of loss, make decisions based on reliable information and reports, are protected against errors and frauds, and whose efficiency is constantly increasing and achieve their objectives.

It is to make the internal control system continuous and developable by ensuring that all transaction processes that a business is implementing are based on IT which verified by audit. For this the following services are provided by our company for the establishment, evaluation and reporting of IT structures. For this audit:

2.a. Evaluating the alignment of the IT function with organizational goals/objective, strategy, values, vision and mission,

2.b. Monitoring the realization of IT performance targets,

2.c. Evaluation of compliance with laws, reputation, information quality, security and other requirements,

2.d. Evaluation of the control environment,

2.e. Evaluation of inherent risks in IT

As a result of the service, IT controls provide the following assurances:

By establishing auditable policies and procedures to ensure the confidentiality, integrity and availability of IT systems and data,
– Business processes and transactions are made secure,
– Ensures the integrity, accuracy and completeness of the data,
– The doubt risk is eliminated in IT-related controls and processes in any business process gain reliability,
– It acts as a regulator of all business processes using IT systems.

4 General Controls in IT are continuously provided:
1- Access to programs and data (Information Security):
“Ensuring that only authorized users have access to programs and data by confirming the user identity.”
2-System Development:
“Ensuring that systems are developed, structured and installed in accordance with the objectives/goals of the company.”
3-Program Changes:
“Ensuring that program changes are requested, prioritized, established, tested, and deployed in accordance with the company’s goal.”
4-Computer Operations:
“Ensuring that problems are identified and resolved in a timely manner so that the systems function fully and correctly and the integrity of the data is preserved.”

Therefore, a company that receives IT audit and consultancy supports the controls and processes connected to the system, is sure of the mathematical accuracy and results of the transactions, and can control and manage its financial and operational risks.
These types of businesses prove that healthy business structure, your operations and organizational structure will develop and automatically regulate the following 4 contingencies. What are they?
1- Provides automated controls,
2- Creates automated secure accounting procedures,
3- Manual controls based on reports and data generated by the system are healthy,
4- Regulates the limitation of powers on the system and the separation of duties.

IT control is the need of the whole company according to the scales. For a healthy development, a healthy start is vital.

Risk Assessment in business by applying a number of techniques; It is the name given to the probability of occurrence of any event or situation that will affect the realization of the objectives. Therefore, two important elements should be mentioned in this context:

In order to ensure these two reasons, it is necessary to interpret the management control cycle in a healthy way and to evaluate the risks. Thus, it must secure the risk possibilities and its consequences. The aforementioned “management control cycle” consists of 5 elements.

It is necessary to identify potential situations that may affect all activities of the business positively or negatively. The potential identified risks must also remain within acceptable limits for the business. In this case, consultancy services are provided about all the processes below in order to be able to carry out risk, countering risks, monitoring and development in the business. These are:

4.1. Identification of the Risks of Material Misstatement arising from Fraud and Irregularities,

4.2. Detection of Fraud and False Risks related to Income Accruals,

4.3. Carrying out the actions that need to be taken with significant risks of mistake,

4.4. The general procedures to be performed and the implementation of risk-taking techniques,

4.5. Risks of knowingly or unknowingly exceeding the controls by the business management,

4.6. Making journal entries and other corrections,

4.7. Identification of risks related to errors and frauds in accounting estimates,

4.8. Identification of risks and errors regarding the business logic on which important business is based and its decision procedures,

4.9. Risk estimation studies with a result-oriented approach in terms of Audit, Independent Qualified Audit, Internal Audit, Compliance Audit and Performance Audits.

The effectiveness of the Internal Control Systems of the business eliminates these risks. For this reason, our services for System Audit, IT Audit, Internal Control and Risk Assessment Activities and Fraud and Irregularity Detection in the Internal Audit Services constitute integrity.