Abstract
Performance auditing as an audit discipline has developed seriously since the late 1970s. Owing to its developing nature, however, it has been noted that it lacks formal audit methodologies. One of such audit methodology is in the specific design of an audit programme; this is important as the audit programme forms the basis of the audit. This paper presents a methodology for creating an audit programme specifically for performance auditing and further presents this in a model format. To develop this methodology, grounded theory was applied. The audit methodology and model were evaluated against the International Organization of Supreme Audit Institutions (INTOSAI) performance audit standards and were also tested in two private-sector companies. The proposed audit methodology is based on the relationship between process, risk, control and the audit programme; it uses risk-based auditing, and the specific performance audit objectives are inverted to form the primary performance risk; in addition, benchmarks and criteria are included; the model caters for both high-level and detailed information. This methodology and model benefits both performance auditors and business managers. Key words: Performance audit, audit programme, risk, control, risk-based auditing, efficiency, effectiveness, economy, International Organization of Supreme Audit Institutions (INTOSAI), grounded theory.
Highlights
Assessing risk is the core function of an audit (Hayes et al, 2005: 23) and the audit programme comprises the auditor’s plan of action (Dickinson, 1982: 84)
This paper presents a methodology for creating an audit programme for performance auditing and further presents this in a model format
Meticulous preparation of the audit programme is important in order to define the audit questions, the information needed and the audit design (International Organization of Supreme Audit Institutions (INTOSAI) and International Standards of the Supreme Audit Institutions (ISSAI), 3000: s.2.1), and to specify the analytical procedures and tests of detail to be performed in response to identified risks (Patrick and Van Esch, 2007: 233)
Summary
Assessing risk is the core function of an audit (Hayes et al, 2005: 23) and the audit programme comprises the auditor’s plan of action (Dickinson, 1982: 84). Meticulous preparation of the audit programme is important in order to define the audit questions, the information needed and the audit design (International Organization of Supreme Audit Institutions (INTOSAI) and International Standards of the Supreme Audit Institutions (ISSAI), 3000: s.2.1), and to specify the analytical procedures and tests of detail to be performed in response to identified risks (Patrick and Van Esch, 2007: 233).
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
