Implementing combined assurance: insights from multiple case studies

Abstract

Purpose – This purpose of this paper is to investigate how to implement a combined assurance program. Design/methodology/approach – This paper uses qualitative data obtained through semi-structured interviews with six multinationals at different stages of combined assurance implementation maturity. Findings – The paper finds that organizations are still learning through combined assurance implementation because no organization seems to have attained a mature combined assurance program. Nevertheless, our descriptive findings reveal that a successful combined assurance implementation follows six important components. Research limitations/implications – One limitation of this study is that, as the organizations studied are at different stages of combined assurance program implementation, data may have comparability issues. Another limitation is that different interviewees were studied from one case to another. Practical implications – The results have implications both for organizations that do not yet have a combined assurance program in place and for those currently at the implementation stage. It has also implications for chief audit executives who are good candidates to lead a combined assurance implementation and for regulators, as the study describes combined assurance as an important accountability mechanism that helps boards and audit committees exercise their oversight role properly. Originality/value – The study is the first to address combined assurance implementation. It complements the study of the Institute of Internal Auditors UK and Ireland (2010), which identifies the reasons for failed attempts to coordinate assurance activities, by illustrating combined assurance implementation through six international case studies of organizations at different combined assurance implementation stages.