Quality Assurance Review

James B. Yard CPA, CIA, CISA 
Tony P. Ielase, CISA

Whether electing a full external assessment or a self-assessment with independent external validation, a Quality Assurance Review (QAR) allows audit committees and chief audit executives to evaluate the activities of their internal audit (IA) function and determine whether policies, procedures and practices of the function adhere to The Institute of Internal Auditors’ (The IIA) Core Principles, International Standards for the Professional Practice of Internal Auditing (Standards) and the Code of Ethics.

Our experienced professionals leverage our Internal Audit Strategic Framework to assess your internal audit function’s activities against leading practices of other internal audit functions we have observed, and provide insights and recommendations to elevate the performance and value of the function to stakeholders.

Schneider Downs’s Internal Audit Strategic Framework

Internal Audit Strategic Framework

Our QAR professionals are required to meet the qualification requirements as defined in Standard 1312 - qualified, independent reviewer or review team from outside the organization. The Standard defines qualified individuals as persons with the technical proficiency, business experience and educational background appropriate for the audit activities to be reviewed. For this reason, QARs are conducted by the management of our practice. In addition, many of our QAR professionals also have experience in industry within internal audit functions and have also served as a Chief Audit Executive (CAE) so they know the challenges of leading an IA function and thus will provide practical, non-theoretical recommendations where appropriate.

Quality Assurance Review Process

What does our QAR process look like?

Data Collection
  • Conduct interviews of key stakeholders (i.e., audit committee, executive management, IA team members)
  • Develop questionnaire for other stakeholders 
  • Collect key documents that will support the QAR (i.e., risk assessment, IA charter, working papers, IA reports, Quality Assurance results, IA resumes, etc.)
  • Assess documentation against the IIA Standards
  • Review sample of executed audits to ensure compliance with existing IA policies and IIA Standards
  • Leverage our SD Internal Audit Strategic Framework to assess areas for improvement
  • Summarize and analyze interview/questionnaire results and develop positive themes and potential areas for improvement
  • Report on conformance with the IIA Standards (Generally Conforms, Partially Conforms, Does Not Conform)
  • Identify IA’s areas of strength
  • Identify areas for improvement based on stakeholder feedback and our experience with leading practice recommendations

Results include an overall assessment with conformance  against the IIA Standards, as well as a high level roadmap for the most impactful opportunities for improvement, and detailed assessment against our SD Internal Audit Strategic Framework – highlighting both strengths and value add recommendations.

Ready to get started?

Contact us to learn more about our Quality Assurance Review services.

About Schneider Downs Risk Advisory 

Our team of experienced risk advisory professionals focus on collaborating with your organization to identify and effectively mitigate risks. Our goal is to understand not only the risks related to potential loss to the organization, but to drive solutions that add value to your organization and advise on opportunities to ensure minimal disruption to your business.

Explore our full Risk Advisory Service offerings at www.schneiderdowns.com/risk-advisory-services or contact the team at [email protected].


case studies

Let’s discuss preventing ransomware attacks on your company. Email me directly <a href='mailto:twarren@schneiderdowns.com?cc=contactSD@schneiderdowns.com'>here</a>.
big problem:
Let’s discuss preventing ransomware attacks on your company. Email me directly here.
big thinking:
Company impacted by ransomware.
Let’s discuss opportunities to reduce your company’s tax burden. Email me directly <a href='mailto:dmorally@schneiderdowns.com?cc=contactSD@schneiderdowns.com'>here</a>.
big problem:
Let’s discuss opportunities to reduce your company’s tax burden. Email me directly here.
big thinking:
Inefficient tax credit realization.

our thoughts on

Individual Tax Filing Season to Begin January 24

Learn more about US individual tax filing season beginning when the agency starts accepting and processing 2021 tax returns on January 24, 2022.

read more >

New Pennsylvania Electronic Payment Requirements for Personal Tax Payments Greater than $15,000 Beginning January 1, 2022.

Learn more about the January 1, 2022 requirement that personal income tax payments equal to or greater than $15,000 must be paid electronically.

read more >

Schneider Downs Trucking Industry Whitepaper Series Update

Explore critical topics facing the trucking industry in our State of the Industry whitepaper series from Schneider Downs and the Ohio Trucking Association.

read more >

Apache Log4j Vulnerability Update – Government Responses and Ransomware Activity

The article provides a comprehensive update on government responses and ransomware activity associated with the Apache Log4j vulnerability.

read more >

Apache Log4j Vulnerability Update

Learn more about the Apache Log4j remote code execution vulnerability and why this is already regarded as one of worst software flaws in years.

read more >

contact us