According to IIA guidance, if an internal auditor suspects fraud during an assurance engagement, what should the auditor do first?
According to IIA guidance, if an internal auditor suspects fraud during an assurance engagement, what should the auditor do first?
If an internal auditor suspects fraud during an assurance engagement, the appropriate first step according to IIA guidance is to determine whether any additional audit work needs to be performed. This ensures a thorough understanding of the potential issue, its extent, and impact, before escalating or taking further action such as launching an investigation. It helps preserve evidence and maintains the objectivity required to handle the situation appropriately.
Is B more appropriate rather than launching a investigation straight away ?
Is B not more accurate than C?
I think it is B