December 2007

Next Meeting - Thursday, January 10, 2008
Renaissance Richardson Hotel

No monthly meeting in December
Look for more info in the next eNews

Integrated Auditing

The Dallas IIA is pleased to be presenting “Integrated Auditing” for the Fall Seminar!

November 29th, 2007
Doubletree Galleria, Dallas
$150 for members, $175 non members
Seminar 8:30am – 5:00pm
Registration begins at 8:00am
8 credit hours

Make your Reservation On line! Deadline to register is November 26 at 5:00PM.

Contact Marie Kaucher at 972-446-4973 or marie.kaucher@mckesson.com with questions.

Program Outline

Understanding the nuances of Information Technology is vital to understanding the risk and control environment of any industry. This one day seminar will provide an overview of general and application control concepts, and how to integrate the audit program with IT controls.

1. IT and the Audit Organization
   1. Financial Auditing
      1. Education – Accounting/CPA
      2. Lack of IT control principles
      3. CISA – 200 multiple choice questions
   2. IT Auditors
      1. IT experienced individuals – learn Audit & control principles
      2. Financial auditors – learn Information Technology ‘principles’
         1. low tech versus high tech elements
         2. IT scope is too broad
            1. Operating systems – Windows/UNIX/etc.
   3. Integrated Audit
      1. Add low tech skills to Financial audit staff
      2. Devote IT Auditors to hi-tech issues
         1. network/infrastructure
      3. Team auditing
         1. application/system reviews
         2. compliance assessments – SOX
   4. IT audit risk
      1. Risk assessment of new technology
      2. Team audits or IT audits related to business risk
2. IT Controls 101
   1. General controls –what do we know about the GC environment? Who can do what? What are critical functions of business process & how does the system work?
      1. Low tech examples
      2. Hi tech examples
   2. Application controls –what technology is used to achieve the requirements of the business process? Is this technology vulnerable? (i.e. wireless PO entry)
      1. Lo-tech examples
      2. Hi-tech examples
   3. End User Controls
      1. IT principles applied
3. Audit techniques
   1. Art or science
      1. every situation can be different based on development and infrastructure choices
   2. Integrate control review into program development cycle
   3. Show me … not tell me
      1. eliminate the ‘snow job’
   4. How to recognize when the water’s too deep
      1. are there gators in there, too?
   5. Tools
      1. go from not possible to gotcha
   6. What to do if …
      1. purchased software
      2. service organization
   7. The Big 3 controls – priority issues in most audits
      1. controls over change
      2. access controls
      3. data management
   8. Computer assisted audit tools
   9. Creating the solution
      1. financial audit responsibility?
      2. IT Auditing staff?
   10. Is this an ongoing need
       1. document
       2. secure
4. Resources for specific control issues
   1. Internet
      1. ISACA
      2. AUDITNET
         1. volunteer contributions
      3. white papers

Rod Scott has over 25 years experience in Information Technology and IT Auditing. He is a specialist in Sarbanes-Oxley IT Control Assessments and IT Auditing.

Rod started with Caterpillar Inc. in 1967 and held various positions in IT and IT Auditing before retiring in 2000.  His most recent assignments were Project Manager for SAP implementation in Northern Ireland (1998-2000), Information Technology Manager for Caterpillar France (1994-1998) and Corporate IT Audit Manager (1990-1994).

As the first Corporate IT Audit Manager he reported directly to Corporate General Auditor.  He assisted in the planning and direction of the Corporate Audit department through the implementation of the ADM Plus software.  He was solely responsible to plan the activities and direct eight staff auditors specializing in information technology.  He was responsible to identify security and control exposures in software, hardware and administration, in the worldwide, Caterpillar IT environment.  This scope included the central data center and all domestic and foreign subsidiaries, including IBM and DEC mainframes, PC's and the worldwide telecommunications network. He performed audits in more undefined areas such as major new software and where radical changes are occurring in functional responsibilities (i.e. due to facility modernization programs and reorganization into Business Units) and performed information technology audits at key facilities.  He was responsible to determine policy requirements in the security and control of information technology resources.  He defined critical issues (such as encryption and improved authentication) and communicated to all levels of management.

From 1980 to 1990, Rod worked at various levels of responsibility within the Corporate Audit department, starting as the first IT Auditor for the company.  He progressed to Supervisor and then Manager (see above).  At all levels of responsibility Rod performed major IT audits of critical business units and new technology.  He also was relied upon to identify the new developments that posed control concerns for the company and audit those developments in various stages of implementation.

From 1967 to 1980, Rod worked in various responsibilities and locations within the IT function, including systems programming, software development, user training and liaison, and large scale systems support.

With Caterpillar Inc. he had extensive experience in manufacturing and logistics and as a consultant has had experience with manufacturing, medical and telecommunications clients.

Rod graduated from the University of Wisconsin-Milwaukee with a BBA in production Management and earned an MBA from the University of Wisconsin-Milwaukee in 1975.  He passed the Certified Internal Auditor exam in 1993.

Mark your calendars:  

• Spring CIA Review with Dr. Glenn Sumners will be held February 15-18, 2008 at UTD-SOM.

• Annual Fraud Seminar will be held March 28, 2008 at a site TBD.

Dallas Chapter Leadership Roles

The Nominating Committee is in the process of identifying candidates to serve as Officers and Board of Governors for the Dallas Chapter for the year beginning June 1, 2008.  Most Officers have previous volunteer experience serving as Officers and/or Committee Chairs/Members.  And members of the Board of Governors are made up of past Chapter Presidents and CAE’s/Audit Directors/ Senior Managers.  Some of the attributes that make a successful leader are:

• Passion for the profession
• Enthusiastic
• Team builder with determination, vision, and strategic thinking
• Available, willing, and committed to serve
• Competent and professional experience in internal auditing
• Committed to The IIA and Dallas Chapter’s objectives
• Have integrity and lack of conflicts of interest
• Have support of the employee
• Reliable
• Proven record of attendance and volunteering in The IIA or Dallas Chapter

If you are interested in serving in a Dallas Chapter leadership role, simply complete the online Candidate Information Form at http://dallasiia.org/Candidate_Information_07.htm.  The deadline to complete the online form is December 31, 2007.

If you have any questions or would like to discuss serving as an Officer or member of the Board of Governors, please contact Pamela Krakosky, Nominating Committee Chair, at pkrakosky@verizon.net or 972-849-3440.

IIA Research Foundation

The Research Foundation sponsors an annual contest for chapter research projects.  For 2007 the Dallas Chapter won first place for their research project entitled Insider Trading from the Internal Auditor’s Perspective, which was authored by Mary Curtis and Julius Mwangi.  The Austin chapter won second place for its research entitled Survey on Audit Committee Relationships: A Research Project.  These and other chapter research projects (dating back to 2001) are available free for downloading from the IIA website at:  http://www.theiia.org/research/research-reports/chapter-sponsored-research-list/.

Congratulations to the Newest CIA’s, CCSA’s, CFSA’s, and CGAP’s!

A ceremony honoring the Dallas Chapter’s newest CIA’s, CCSA’s, CFSA’s, and CGAP’s was held on November 1, 2007. Congratulations to the following for passing the exams!

Special Congratulations to Certificate of Honor Awardee!

Special congratulations go to Walter Lowe for earning the prestigious William S. Smith Certificate of Honor Award from the IIA.  The William S. Smith Certificate of Honor is presented to the 25 candidates with the next-highest scores following those of the gold medalist and Certification of Excellence recipients.  For more information and award winners, see http://www.theiia.org/certification/why-become-certified/certification-awards/?search=Certificate%20of%20Honor

Mark your Calendars

The next Dallas Chapter review courses, featuring live training by Dr. Glen Sumners of Louisiana State University, will be offered as follows at UT Dallas:/p>

• February 15-18, 2008
• September 5-8, 2008

Reminder…New Computer-based Testing Begins February 2008

Visit the IIA’s web site for more information: www.theiia.org.

The IIA Announces New CIA Exam Preparation Materials

If you are planning to take the CIA exam this year, now is the time to begin preparing and there’s no better way than through The IIA CIA Learning System. Orders will begin shipping April 1, so place your order today. Visit www.learncia.com or call +1-877-442-2425.

Report Your Speaking and Writing

It's time again for the survey to determine which IIA Dallas Chapter members have submitted articles or spoken since November 1. Each speaking engagement on internal auditing that a Dallas Chapter member completes will earn the Chapter 1 credit per CPD hour. Each full article, Roundtable article, Fraud Finding, etc. submitted that meets basic editorial guidelines will earn 5 credits. For each full article published 20 credits are earned. Each internal audit related article published in any other trade or professional journal that is authored by a chapter member is 5 credits.

To report your writing and speaking go to http://dallasiia.org/Speaking.htm and complete the provided form by December 15, 2007.
 

Career Opportunities

Are you currently in the job market either voluntarily or involuntarily? Let the Employment Committee help you. Send us your resume and we will include you in our resume database. We receive calls from recruiters and hiring managers for open positions and will forward your resume if there is a match. We get calls for staff to director levels, IT to finance, local to out of town. All inquiries will be handled confidentially.

If you have any questions, please contact Greg Dubis at 972-431-5946 or send him an e-mail at gdubis@jcpenney.com.  We look forward to helping you.

Griffin Consulting Search Group  (11/19/07)

Is an Independent Boutique Recruiting Firm that has specialized in the recruitment & placement of Accounting and Audit Professionals for over 10 years in the DFW area. We are currently seeking Audit professionals for the following positions:

To apply online or to see a list of our other current openings please visit our website at www.gcsearchgroup.com.

We look forward to hearing from you!
Michelle Griffin, CPA, Principal

Delong Consulting Services, L.C.  (11/1/07)

DELONG CONSULTING SERVICES, L.C.
AUDIT CONSULTANT

Delong Consulting Services, L.C. is a leading provider of outsourced internal audit services to financial institutions in the Dallas/Fort Worth Metropolitan area.  The Company was established in 1996, and provides services to twenty banks/thrifts with assets ranging from $100 million to $3 billion.  The Company provides a professional atmosphere, with the benefits of working for a small company.

We are currently seeking an Audit Consultant located in North Dallas, to conduct internal audits of our Dallas clients.

Responsibilities include:

• Conducting internal audits
• Developing and updating SOX design documentation
• Developing and updating internal audit SOX testing programs
• Presentations to Senior Management of clients
• 0 – 5% travel

The qualified individual should possess:

• Internal audit experience, preferably in a bank environment
• Excellent oral and written communication skills
• Works well individually and with others
• Bachelors degree in Accounting or Business
• Professional designation preferred

Benefits:

• Excellent salary
• Outstanding working environment
• All bank holidays paid
• Company matching retirement plan
• Medical and life insurance

Qualified candidates should send their resumes via e-mail to auditconsultants@sbcglobal.net or fax (817) 318-0513.

TXU  (10/30/07)

Audit Specialist I – II
Dallas, TX

Description

Plans, directs, and completes complex audits of TXU Retail and/or Luminant Energy activities, utilizing sophisticated audit and risk management techniques to perform required duties. This position will primarily perform process audits and compliance reviews, and will be involved in the evaluation and development of controls associated with major processes.

Key accountabilities include

• Through interviews and research, gain an understanding of the activities being audited, and document the process.
• Develop the audit objectives and scope, and communicate them to the client.
• Assess the risks associated with the activities being audited, evaluate the controls designed to manage them, test the controls for compliance, issue recommendations to close control gaps, and prepare the audit report.
• Produce work papers and reports that are consistently well organized, accurate, clear and concise.
• Obtain client ownership for recommendations stemming from the audit.
• Participate on task force and project teams, such as business process improvements, systems development, etc., and provide controls consulting.
• Help develop an annual risk-based audit plan.

Qualifications

• Bachelors degree in Accounting or other appropriate discipline.
• Five to ten years of relevant audit experience desired.
• Knowledge of (1) retail business processes and systems or (2) commodity risk terminology, control activities and measurement techniques is highly desirable.
• Graduate degree in a business discipline and/or certification (CPA, CIA, etc.).

To Apply go to www.TXUCorp.com or email resumes to nancy.shaikh@txu.com

Contact:
Nancy Shaikh
Energy Future Holdings Internal Audit
Phone: (214) 812-3632

Children’s Medical Center Dallas  (10/29/07)

Senior Internal Auditor

Children’s Medical Center Dallas is currently seeking a Senior Internal Auditor for our Internal Audit Department.  Internal Audit reports to the Chief Compliance Officer and the Audit Committee of the Board of Directors. This position will report to the Manager of Internal Audit and will be required to:

• Develop audit programs to conduct financial and operational audits.
• Document and evaluate operational risks and related internal controls procedures.
• Draft audit reports and make recommendations to improve the efficiency and effectiveness of internal controls or business processes
• Perform follow-up procedures to evaluate the status of agreed-upon recommendations.
• Assist the Compliance Department with special projects.

The ideal candidate for this position will be a CPA with a combination of Big 4 public accounting and internal audit experience.  Qualified candidates must possess the following:

• Bachelor's Degree in Accounting required.
• Master's Degree in Accounting or MBA Preferred.
• 3-5 years recent public accounting or internal audit experience required.
• CPA or CIA certification required.
• Ability to plan and complete audits in accordance with International Standards for the Professional Practice of Internal Auditing, within established deadlines.
• Ability to interact professionally with all levels of management.
• Ability to step back from details and consider the "big picture."
• Advanced knowledge of MS Office (Access, Excel, PowerPoint and Word).
• Knowledge of flowcharting software (Visio) preferred.

Children’s Medical Center Dallas is a private, not-for-profit hospital that is the only academic healthcare facility in North Texas dedicated to the comprehensive care of children from birth to age 18. As the primary pediatric teaching facility for the University of Texas Southwestern Medical Center at Dallas, the medical/dental staff at Children’s conducts research that is instrumental in developing treatments, therapies, and greater understanding of pediatric diseases.

Children’s is licensed for 411 beds, has more than 50 subspecialty programs and is the only pediatric hospital in the Southwest with a designated Level I trauma center. To better serve the region’s growing pediatric population, the 72-bed Children’s Medical Center Legacy will open in 2008 in Plano, Texas. Children’s enjoys a stellar reputation as one of the finest pediatric facilities in the United States.  The Joint Commission awarded Children’s an “outstanding” ranking, and both U.S. News & World Report and CHILD magazines have named Children’s as one of the nation’s top pediatric providers.  In 2006, the Dallas Business Journal recognized Children’s as a “Best Place to Work.”  Children’s makes life better for the patients it sees during more than 340,000 visits each year.

Please apply on line at www.childrens.com.  The position is No. 5400 and is posted under Careers/Professions/Auditing…  Questions may be addressed to carrie.smith@childrens.com.

Equal Opportunity Employer

Guaranty Bank  (10/19/07)

GUARANTY BANK:
Guaranty Bank ("Guaranty") is an $18 billion full service bank with more than 149 offices in Texas and in California. Guaranty offers a full range of consumer deposits and loan products. Additionally, Guaranty is nationally recognized as a real estate lender and a provider of financing programs for middle market companies. Guaranty provides homeowners with mortgage products through correspondent and retail lending programs. Guaranty Insurance Services, Inc. ("GISI") and its related entities offer a comprehensive range of financial products and services, including personal and commercial lines, annuities, life and health insurance, and risk advisory services. GISI is ranked in the top 1% of insurance agencies in the nation and is the second largest in the state of Texas.

JOB DESCRIPTION:
The purpose of this position is to plan, perform, and/or supervise audit projects as assigned by audit management. These audit projects will verify through test procedures that Guaranty Bank and its subsidiaries have established and are maintaining an adequate system of internal controls and are complying with documented policies, procedures, laws and regulations applicable to these entities. Primary responsibilities include planning assigned audit projects addressing such areas as auditee communications, scope determination, staff assignments, deadlines, project updates with audit management; Preparing or supervising preparation of appropriate systems documentation, identifying established internal controls; Determining and applying, or supervising application of necessary audit procedures to verify compliance with established policies and procedures, as well as laws and regulations pertaining to Guaranty Bank and its subsidiaries; Documenting, or supervising documentation of audit procedures and test results appropriate for review by audit management and third parties, including but not limited to regulatory agencies of the bank and its subsidiaries as well as the bank’ s external audit firm; Preparing formal reports on all completed audits for issuance to executive management and the Audit Committee of the Board of Directors; Assisting on the annual Sarbanes-Oxley Section 404 project and the annual financial audit of the bank and its subsidiaries.

MINIMUM REQUIREMENTS:
Bachelor’s degree required with a minimum of 9 hours of accounting. An Accounting degree is a strong plus. Minimum three to five years of relevant audit experience is required that demonstrates a working knowledge of the principles of accounting as well as audit and business concepts. Professional certifications related to the audit field are preferred. The Certified Public Accountant (CPA) designation is considered the primary certification of interest, with the Certified Internal Auditor (CIA) and Certified Bank Auditor (CBA) also considered. Candidate must have the ability to supervise lower level audit staff on a project basis as well as the ability to interact with other internal auditors, external audit firm, or regulatory agencies and personnel receiving audit coverage. Ability to communicate effectively both verbally and in written format to all employee levels, including executive management is required.

TO APPLY:
Please visit our website a www.guarantybank.com, click on “career opportunities” and apply to requisition #23130.

SolomonEdwardsGroup  (10/12/07)

SolomonEdwardsGroup (SEG) is a leading business consulting and accounting services provider, delivering proven solutions to complex business issues in areas such as corporate performance management, enterprise risk management, internal audit, regulatory compliance, transaction services, system integration support, SEC advisory services and business process improvement.

SEG is a high-growth, private company that has expanded into the Dallas / Fort Worth market and continues to build our local team.  We are seeking to hire a Manager / Senior Manager for our Enterprise Risk Management (ERM) practice.

Our ERM practice focuses in the following areas:

• Internal Audit Outsourcing and Co-sourcing
• Compliance, Financial, Operational and Information Technology audits
• Sarbanes-Oxley Advisory and Compliance
• External Assessments of Internal Audit Departments

Ideal candidates are currently or have served as audit managers with banking/financial services experience.  Big 4 experience is a plus but not a requirement.  The candidate's audit experience must include both financial and operational audits. Our strategy is to target high-caliber candidates and offer them the ability to continue developing their career as a key member of our high performing team with competitive salary and benefits while offering increased work / life balance and the ability to have an impact on our clients and our organization.  These positions qualify for a stock option grant and annual bonuses.

Requirements:

• Bachelors Degree in Accounting, Finance, or Business; advanced degrees are highly desirable
• CIA certification
• CPA experience a strong plus
• Financial services, especially banking or lending experience
• Strong analytical, interpersonal, oral and written communication skills

Send resume to Marcie Podesta
mpodesta@solomonedwards.com
(972) 505-2021

SolomonEdwardsGroup, LLC (SEG) is a national CFO services firm built to support all of the non-attest finance, accounting, audit and consulting needs that typically fall within the scope of the CFO and their organization.  We recognize in today’s finance and accounting environment that resources are limited and risk and responsibilities are never ending.  Our model and expertise uniquely bring talent, perspective, and action to address your most pressing challenges related to talent management, accounting and finance operations, risk and regulatory compliance, and strategic performance.  SEG Business consulting and advisory (BCA) services include SEC advisory, complex transaction research, Sarbanes-Oxley compliance, corporate governance, regulatory risk and control, internal audit co-sourcing, IT audit, fraud and forensic services, financial process optimization, business decision support, close acceleration, planning, budgeting, consolidations and management reporting design enhancements, and system implementation support and data validation services.

Founded in 1999, SEG has nine offices across the country including its corporate headquarters in suburban Philadelphia, Atlanta, Boston, Chicago, Dallas/Fort Worth, Houston, Kansas City, North New Jersey, and Washington, D.C.

AT&T  (8/17/07)

Corporate Auditor
Dallas, TX

An exciting opportunity to advance your career with the World’s Most Admired Telecommunications Company, AT&T.  As a Corporate Auditor you will be responsible for planning and performing reviews of business operations and evaluating internal controls that result in cost-effective, value-added audits.  Additional challenges include developing innovative audit plans based on risk analysis, testing and evaluating key business controls and communicating audit results to various levels of management.  This position allows exposure and potential transition to other business units within AT&T across a wide range of operations and locations.  There is 10-20% travel associated with this position.

Qualified candidates have a minimum of 2 years experience in Public or Industry audit along with a functional business understanding in some of the areas of sales, finance, procurement, billing, inventory management, risk analysis, information systems, network, marketing, customer service and operations.  The selected candidate will have strong critical thinking and analytical skills coupled with strong interpersonal, oral and written communication expertise.  Proficiency in Microsoft Word and Excel along with the ability to adjust to a constantly changing environment are necessary in this role.  The final candidate will also possess a Bachelors degree in Accounting, Finance or Business; however, a CPA, CIA, or CFE is most desirable.

At the AT&T family of companies, our success depends on the determination and dedication of our employees, and it's important that our employees know we value them. We recognize that work is just one of many important things in your life and your needs may change over time. So we've designed a benefits package that allows our employees to plan for their future, offering protection and value today and tomorrow.

Not only does the AT&T family of companies offer excellent compensation packages, but we also have outstanding benefits (medical/dental/vision insurance, education assistance, family care benefits, pension, savings plan), and an environment conducive to personal and professional growth.

If interested, please submit your resume to rp1077@att.com.  Please reference Dallas, TX  Corporate Auditor position.

Comments, questions, suggestions?
Contact the webmaster@dallasiia.org

© Dallas Chapter Institute of Internal Auditors
P. O. Box 261747, Plano, TX 75026-1747

The following links will take you to our web site, http://dallasiia.org: