SAS 145: A roadmap towards risk-based auditing

The AICPA Auditing Standards Board (ASB) has recently issued an update to the risk assessment standards, SAS 145, Understanding the Entity and Its Environment and Assessing the Risk of Material Misstatement. This standard was developed to address gaps in risk assessment procedures identified by practice monitoring programs worldwide, and is intended to help auditors focus their time on the areas of greatest risk of material misstatement in an audit engagement.

With the ASB’s strategic objective of converging with the International Standards on Auditing (ISA) SAS 145 used ISA 315 (revised 2019), Identifying and Assessing the Risks of Material Misstatement,  as a starting point.

SAS 145 will likely require firms to take a more data-driven approach to risk assessment and, when coupled with SAS 142, enable firms to rely less on substantive tests of detail and more on analytics. While SAS 145 is effective for audits of financial statements for periods ending on or after December 15, 2023, the standard presents such a fundamental shift in methodology that firms are thinking about their strategy now ahead of the 2022 busy season.

 

Roadmap of activities

Due to the lead time of understanding SAS 145 and the required change management processes to update existing audit methodology, we suggest firms consider the following timeline for implementation:

Graphic showing the SAS 145 implementation timeline

SAS 145 implementation timeline

What’s changing?

The executive summary of the standard outlines several of the substantive changes but here are the three areas that we believe firms will struggle with from a procedural perspective.

The standard itself explains the key areas of enhancement:

  • “Requirements and guidance related to the auditor’s risk assessment, in particular, obtaining an understanding of the entity’s system of internal control and assessing control risk”
  • “Guidance that addresses the economic, technological, and regulatory aspects of the markets and environment in which entities and audit firms operate”

It’s important to note that SAS 145 does not alter the fundamental concepts of audit risk. Rather, the document provides clarification of certain aspects of risk identification and the assessment of material misstatement to improve overall audit quality.

For more information on how AI-enabled audit data analytics supports your team

Download our free audit approach white paper: MindBridge Audit Approach

The spectrum of inherent risk

SAS 145 takes a more granular approach to inherent risk and introduces new concepts to assist auditors in understanding the new requirements. This includes inherent risk factors (events or conditions that influence the susceptibility to misstatement of an assertion, such as fraud or error) and the spectrum of inherent risk:

“Depending on the degree to which the inherent risk factors affect the susceptibility of an assertion to misstatement, the level of inherent risk varies on a scale that is referred to as the spectrum of inherent risk. The spectrum of inherent risk provides a frame of reference in determining the significance of the combination of the likelihood and magnitude of a misstatement.” – SAS 145, page 12

The risk factors require the auditor to look at complexity, subjectivity, change, uncertainty, susceptibility to misstatement due to bias or fraud, qualitative or quantitative significance, and volume or lack of uniformity (ref. SAS 145, paragraphs A10-11). Then, the likelihood and magnitude of a possible misstatement should be assessed to determine where on the spectrum of inherent risk it falls. The higher the combination of likelihood and magnitude, the higher on the spectrum it falls; the lower the combination, the lower it falls.

Spectrum of inherent risk Source: IAASB

According to paragraph A245, these assessments should be done at the assertion level. Firms will need to evolve their methodology to incorporate a fuller assessment of inherent risk, that trigger items such as significant risks and appropriate audit responses.

Enhanced requirements regarding IT general controls

“The auditor should, through performing risk assessment procedures, obtain an understanding of the entity’s information system and communication relevant to the preparation of the financial statements.” – SAS 145, paragraph 25

The standard puts an increased focus on understanding and evaluating IT General Controls (ITGC) as they pertain to financial statement generation. This includes these steps that the auditor must take:

  • Identifying IT applications and other aspects of the environment that are subject to risks arising from the use of IT (ref. SAS 145, paragraph 28)
  • Identifying the related risks arising from the use of IT and the controls to address them (ref. SAS 145, paragraph 29)
  • Evaluating the effectiveness of controls in addressing risks of material misstatement (ref. SAS 145, paragraph 30)
  • Determining whether such controls have been implemented (ref. SAS 145, paragraph 30)

An ITGC example to consider is that many firms have long used data tools to mechanically validate the completeness of their general ledger (GL) and assess their GL platform by comparing the results with their trial balances. As these use cases and complexities grow, validation of data at the beginning of the audit engagement will become critically important in the testing and documentation of a client’s IT environment.


New stand-back provision

The standard has a new provision that supports the evaluation of completeness, referred to as the “stand-back provision”. This provision requires the auditor to evaluate whether their determination of material classes of transactions, account balances, or disclosures as not significant (i.e., no relevant assertions identified) remains appropriate.

While there aren’t any documentation provisions cited specifically for this section, we anticipate firms needing to create procedures and documentation around the stand-back provision.


How MindBridge is helping firms to comply

For the three areas identified above, here’s how MindBridge’s audit data analytics features help firms adapt to SAS 145:

  1. Spectrum of inherent risk – key to this new requirement is identifying, understanding, and evaluating different risk factors. MindBridge control points are designed to compare client data against pre-defined areas of risk, providing visualizations and reports to understand levels of risk (risk scores), identify unusual transactions, and drill-down into the details.
  2. IT general controls – The MindBridge data ingestion process (or extract, transform, and load) includes a series of checks and validation steps that verify the client’s data sets and automatically identify areas that require further information or pose areas of risk.
  3. Stand-back provision – As MindBridge analyzes 100% of the client’s transaction data, assessments and data exploration can be performed on any data subset at any time, including the modification of analysis criteria. This multi-faceted approach means you can re-evaluate prior assessments and adapt to new information quickly.


Conclusion

With the release of SAS 145, firms should plan and implement their strategy now to be compliant by December 15, 2023. The timeline defined here offers a progressive approach to SAS 145 implementation and, combined with the risk assessment capabilities of MindBridge, positions firms towards a stronger audit approach and value for clients.

Building trust in artificial intelligence for audit

Blog post header; blue cubes moving on a conveyor belt towards a green gate.

With the advent and growth of artificial intelligence (AI) in audit, the topic of trust comes up repeatedly in discussions. Auditors have always relied on their credibility to build and maintain relationships with clients. Auditors must build their own confidence in AI technologies before convincing clients and regulators that they have achieved the same level of assurance, if not more, than traditional methods.

At MindBridge, we have been asking ourselves for some time: How can we build this confidence for our customers?

To support auditors in their assessment of AI as a viable option, we commissioned a third-party audit of the algorithms used in our risk discovery platform. This independent assessment by UCLC (University College London Consultants) is an industry first, providing a high level of transparency to any user of MindBridge technology and assurance that our AI algorithms operate as expected.

While the independent report is only available to customers, we’ll summarize the activities and results here.

Ethical AI and MindBridge

AI and machine learning (ML) are the most influential and transformative technologies of our time, leading to legitimate questions around the creation and application of these systems. Will AI-based algorithms influence potentially life-altering decisions? How are these systems secured? Are audit firms required to prove the credibility of their AI tools?

The ethics of AI sees continual press and social media coverage because the technology shapes how we interact with the world, and defines how aspects of the world interact with us.

“AI ethics is a set of values, principles, and techniques that employ widely accepted standards of right and wrong to guide moral conduct in the development and use of AI technologies.”

The biggest companies, from Amazon to Google to Microsoft, recognize the ethical issues that arise from the collection, analysis, and use of massive sets of data. The ICAEW, in its “Understanding the impact of technology in audit and finance” paper, says that it is “crucial for the regulators to develop their capabilities to be in a position to effectively regulate these sectors in the face of advances in technology.”

MindBridge has long realized that transparency and explainability are critical for the safe and effective adoption of AI, with a demonstrated commitment to the ethical development of our technology.

Why third-party validation matters

“80% of respondents say auditors should use bigger samples and more sophisticated technologies for data gathering and analysis in their day-to-day work. Nearly half say auditors should perform a deeper analysis in the areas they already cover.”

Audit 2025: The Future is Now, Forbes Insights/KPMG

The most significant difference between traditional audit approaches and an AI-based one is in the effectiveness of the auditors’ time. An AI audit analytics platform can search 100% of a client’s financial data such that auditors can avoid large samples in low risk areas, focusing their time instead on areas of high judgement and audit risk. 

Due to the increased effectiveness of AI-based tools, regulators, audit firms, and their clients now consider data analytics an essential part of the industry’s business operations. With such a widespread impact, no one should blindly trust technology that has the potential for misinterpretation or misuse.

Auditors are known for assessing risk and gaining reasonable assurance. AI is just another example where skilled, third-party technology validation must be performed.

How the audit of MindBridge algorithms was achieved

The third-party audit of MindBridge algorithms was performed by UCLC, a leading provider of academic consultancy services supported by the prestigious UCL (University College London). UCLC’s knowledge base draws from over 6,500 academic and research staff covering a broad range of disciplines, and includes clients from international organizations, multinational enterprises, and all levels of government. UCL’s reputation as a world leader in artificial intelligence meant they were the right partner for MindBridge in completing this audit.

The goal of the audit was to verify that the algorithms used by our automated risk discovery platform are sufficient in three areas:

  1. The algorithms work as designed
  2. What the algorithms do while operating
  3. Sufficiency of MindBridge processes with regards to algorithm performance review, the implementation of new algorithms, and algorithm test coverage

For auditors and the accounting industry, the importance of this type of report cannot be understated:

“Auditors have to document their approach to risk assessment in a way that meets the auditing standards. They are also required to clearly document conclusions they make over the populations of transactions considered through the course of audit. Where this analysis is being conducted through MindBridge, there is therefore a burden of proof to demonstrate that the software is acting within the parameters understood by the auditor.”

– 3rd Party Conformity Review (Algorithm Audit) for MindBridge, UCLC

The first step was for the UCLC auditors to identify potential risks in the MindBridge algorithms across four sets of criteria:

Robustness of the algorithm

Split into correctness and resilience, this set of criteria validates that the algorithms perform as expected, react well to change, and are documented well. Generally, these are rated against the ability of the algorithm to score risk properly and work properly across a range of inputs and situations.

For example, many of the techniques employed by MindBridge audit analytics are used to identify unusual financial patterns, such as those required by the ISA 240 standard. One set of these techniques falls under “outlier detection,” a form of ML that doesn’t require pre-labelled training data and as such, reduces the potential to bring bias into the analysis.

The limitation of this unsupervised ML is that it has no deep or specific knowledge of accounting practices. MindBridge adopts the concept of an ensemble, or augmenting with different techniques, to bring domain expertise into the analysis. Called Expert Score, this allows the analysis to identify the relative risk of unusual patterns by combining human expert understanding of business processes and financial monetary flows with the outlier detection.

AI explainability

Split into documentation and interface components, this set of criteria validates that the algorithms and their purposes are easy to understand for users. This is critical for financial auditors in providing clear and meaningful expectations and key to building confidence in their clients.

“When making use of third-party tools, audit trails are vital, and auditors should ensure that they are able to obtain from providers clear explanations of a tools function, including how it manipulates input data to generate insights, so that they are able to document an audit trail as robust as one that could be created with any internally developed tool.”

Response to Technological Resources: Using technology to enhance audit quality, Financial Reporting Council

Privacy

These criteria apply to the effectiveness of controls relevant to the security, availability, and processing integrity of the system used to process client information. Privacy is closely linked to the prevention of harm, whether financial or reputational. AI systems must guarantee privacy and data protection throughout the lifecycle and be measured against the potential for malicious attacks.

Bias and discrimination

This applies to the effectiveness of controls in place to prevent unfairness in AI-based decision making. As MindBridge algorithms don’t use or impact data from identifiable individuals, this category presents limited risk.

Methodology

The assessment was done by conducting numerous tests and research to grade performance along a scale from “faulty” to “working as intended or passed the tests” for the sets of criteria above. This included:

  • Using different settings and data as input into the AI algorithms and recording the results
  • Comparing the results of validation code against the results of the AI platform code
  • Conducting interviews with the CTO and key data science, software development, and infrastructure personnel to determine processes and controls for systems development, operationalization, security, and testing
  • Assessing the data science and software development expertise of the MindBridge team

The UCLC auditors were granted a level 7, or “Glass-box,” access to the algorithms. This is the most transparent level available to an assessment and allowed the audit to cover all details of the algorithms.

Graph showing 7 levels for information concealed versus feedback detail trade-off curve

All MindBridge algorithms passed the assessment and the auditor’s report is available upon request to customers, regulators, and others who must rely on our algorithms.

Conclusion

With completion of the independent, third-party audit of its algorithms, MindBridge demonstrates clear evidence for AI-based tools to support the financial audit process safely and effectively. Through this assessment, MindBridge further enables the audit of the future by helping firms build confidence with their clients on the value of making AI and audit analytics an essential part of business operations.

For auditors, this announcement makes it easier to place further reliance on the results of the MindBridge artificial intelligence, allowing auditors to sample fewer items and spend more time where it matters most. It’s a key stepping stone in building credibility for AI in audit, and we hope that such third-party algorithm audits become the standard across the sector.

To learn about MindBridge’s most recent verification journey with Holistic AI visit our blog.

For more information on how AI and automated risk discovery supports your firm, download this free eBook now:

Automated risk discovery: What is it, and how firms can achieve it

Audit standards don’t need to change. Our approach to innovation does.

Audit standards - Innovation in the approach

If there is one thing that COVID-19 taught us, the audit industry can implement wide-reaching change at scale. In a matter of weeks we witnessed audit partners driving the adoption of video calling software, new headsets appearing, and people’s home desks being upgraded. It wasn’t long before palm-tree laden beaches were appearing as backgrounds on Zoom calls, something I couldn’t have imagined a few years ago.

Following the onset of COVID-19, many of these tools became a lifeline for accounting firms, who had to quickly change the way they operate, shifting to remote digital practices.

Despite the fast pace of change for these operational parts of audit, little has changed for the core ways that auditors generate assurance. Whilst the impact and take-up of data analytics and artificial intelligence is accelerating, there are still some oft-quoted roadblocks to wide-spread reliance on these techniques. “As a profession and including our regulators, we must up the ante on making analytics a mandatory part of the audit process” recently noted Becky Shields, Head of Digital Transformation at Moore Kingston Smith. 

Often the finger is pointed at the audit standards or regulators as major blockers of innovation. “They do not allow or require new technologies” is a perspective I’ve heard a few times, and comes in a few guises. Either in pointing specifically to the audit standards, or in a general comment that such innovation isn’t required by the PPC, a checklist commonly used by audit firms in the US.

Is it true that the standards and regulations themselves are standing the way of innovation? Or do we as an industry struggle to see value from innovation and change the way we think about assurance?

 

The audit standards – fit for purpose

Let’s take a quick look at the audit standards. All the checklists and expectations for a good quality audit start with the standards, after all.

The Public Company Accounting Oversight Board (PCAOB), which regulates auditors of publicly traded companies in the United States, recently explored whether there is a need for changes to standards, guidance, or other regulatory actions in light of technological advancements like AI. 

In their report, the PCAOB stated that its “auditing standards are not precluding or detracting from firms’ ability to use technology-based tools in ways that could enhance audit quality (for example, to perform more thorough and better-informed risk assessments).” The PCAOB did, however, acknowledge that the current standards “do not explicitly encourage” the use of technology-based audit tools, which isn’t a surprising revelation. 

Encouragingly, the PCAOB praised the capabilities of technology-based audit tools, noting that they can “enhance the auditor’s ability to efficiently and effectively analyze larger volumes of data, and in more depth, than when using manual audit technologies alone.” The Board also stated that technology-based tools could assist auditors with addressing the requirements in PCAOB risk assessment standards, a view that we at MindBridge share.

The PCAOB is not alone in its assessments. Across the pond, the UK’s Financial Reporting Council (FRC) recently consulted stakeholders regarding the use of technology to enhance audit quality. In a December 2020 report outlining its findings, the FRC noted: “Respondents also agreed that whilst additional application material and guidance would be beneficial, the current assurance model and audit standards do not represent a significant impediment to the development and deployment of technology in audit.” The report also noted that nearly all the respondents agreed that technology use could “significantly improve audit quality.”

These are views that are largely shared by the international standards setters at the IAASB. In a June 2020 update from the Technology Working Group they stated “The ISAs are flexible in terms of how audit procedures may be performed – manually, involving the use of , or a combination of both.” Whilst there has been fewer statements of this kind from the AICPA, the convergence between the AICPA and the ISA’s will likely mean that those following the American Clarified Statements on Auditing Standards will be in a similar position.

Whilst not a look at the standards, Chartered Professional Accountants of Canada (CPA Canada) has issued publications which encourage their members to adopt new technologies into their practices to stay relevant: “Firms left behind during the ADA implementation are more likely to see their situation deteriorate further with each new wave of emerging technologies. Therefore, there is a pressing need for accounting firms to develop and implement a long-term ADA adoption and use strategy that will allow them to continue with the next generation of analytics using Big Data and prepare for the use of analytics related to the .”

It’s the opinion of the standards-setters, whether in the US or internationally, that audit standards are fit for purpose. Reading the standards themselves, this isn’t hugely surprising.The standards are principles based and lay out a framework under which firms are free to rely on data-driven techniques for evidence. Regulators, methodology providers, and firms must interpret these standards to create their own workflows.

If the standards are fine, perhaps it is the regulators that are standing in the way of innovation?

 

Speak softly and carry a big stick – the role of the regulator

Whilst often the standards setters and regulators are the same body, it’s worth making the distinction between these two roles. The standards are high level and principles based. The regulators, whether it is the PCAOB, the FRC, or any of the others, are entrusted with the interpretation and enforcement of the standards. The goal is to maintain a level of audit quality amongst audit firms, and to make sure the audit is delivering on its mission to society as a whole.

Largely, regulators focus on after-the-fact punitive measures to ensure audit quality. Whether through the reputational damage caused by releasing their public inspection results, fines or action taken against individual audit partners, regulators and the regulatory process focus their attention on completed audit files.

When looking at these audit files, auditors and regulators are applying a shared sense of what good looks like. There is a cultural norm for audit files. These expectations change from market to market, and from sector to sector. The audit file for a large bank will look nothing like the audit file for the small non-profit down the road. With new technologies changing the way that assurance is generated, the expectations of those that enforce quality have to keep pace with the rest of the market. How do regulators know what good looks like when assessing a revolutionary new technique?

As firms innovate, they change their audit file and assurances models. They may do in a way that does not fit with the regulator’s or peer’s expectations for what a good quality audit looks like. This dynamic makes firms rightly nervous about putting together an audit file that looks nothing like other files in the same sector. The fear of the regulator is a real deterrent to trying new things – why stick your head above the parapet when the checklist is accepted.

We often see auditors request for greater levels of guidance from the regulators. It’s a theme that was echoed in much of the recent research from the regulatory bodies, and would be surely welcome. But the regulators are in a difficult position, as innovation often requires an agile, experimental and iterative approach. How can the regulator’s possibly create guidance for techniques that are under drastic evolution from one year to the next?

 

Safe spaces and dialogue

Regulators across the US, Canada, and the UK have a major role to play in encouraging and fostering innovation. Dialogue with auditors is a good place to start, and in our experience regulators are open to speaking with firms innovating on their audit approach. Even better would be the establishment of safe spaces for firms and the regulators to collaborate on innovative techniques. It’s an approach that the UK financial regulator, the FCA, has implemented well with its Digital Sandbox and TechSprints

This kind of collaboration between firms and regulators would allow both to explore new ways of creating assurance, and to receive feedback in a low pressure environment. It’s a classic approach for exploring new ways of thinking. It also has the potential to enable firms to innovate on real data; another key requirement to truly exploring new ways to generate assurance. Given the opportunity for artificial intelligence to change the way that the industry works, now seems like as good a time as any.

There’s also an opportunity for firms to create their own safe-spaces for innovation. Asking a separate team to try a new technique or technology alongside the traditional checklist is one such approach. This allows a side by side comparison, and an opportunity to assess what level of assurance both are generating. It provides a place where auditors can ask ‘what do I actually learn about my client from doing it this way’, without the regulators breathing down their neck. The firm can always take these experimental working papers to their regulator if they want feedback.

 

Where’s the carrot? Firms need incentives to innovate

In the end, firms need to gain a competitive advantage in the market from innovation. If they didn’t, there is no point in them innovating. Often innovation drives improved audit quality, so the firm must translate this into bigger and better client wins, or eliminate work they were previously conducting. 

Publicly released inspection reports from the regulators are one key public facing measure of audit quality, but it is hard for everyone involved to tell whether their particular audit is one that is deficient in some way. The large delay between the audit work happening and the release of these public results also undermines the value that these inspections play. 

Whilst the regulators could consider ways to make the audit process and its outputs more transparent, firms also have the opportunity to talk about the results of their audit much more openly with their clients and prospective clients. Greater transparency into the audit process and its outputs make it more likely that innovative firms will reap the rewards from pushing the boundary. 

The capabilities that technology-based tools can bring to the audit process mean that clients expect more from their auditors than ever before. Rather than a hindsight perspective, clients want a “forward-looking view”, with deeper insights that add value. Clients no longer want a financial checklist, according to Audit 2025: The Future is Now, a report from Forbes Insights and KPMG. Firms that maintain the “if it’s not broken, don’t fix it” attitude about their methodology are increasingly losing ground in the market.

“Clients want their auditors to take things to the next level to weigh and prioritize risks and opportunities based on their in-depth knowledge of the organization, its controls and processes, so more-informed decisions can be made to guide the organizations forward,” the report stated. Openly presenting the findings, particularly aided by visualisations, cements the auditor’s position as a fountain of knowledge about a company.

That forward-looking expectation also means that more clients expect their auditor to stay current with technology and adapt as new tools become available. As a result, clients “rightly believe that technology has improved the quality of audit,” noted the KPMG/Forbes Insights report. 

So it’s no surprise that 78% of KPMG/Forbes Insights respondents believe auditors should use more sophisticated technologies for gathering data, and nearly 80% think auditors should analyze bigger samples.

 

A wider range of skills needed for tomorrow’s audit

The pace of change is accelerating in the audit market, and it seems clear that today’s innovations will define how we generate assurance in tomorrow’s audit.

The skill set of auditors has to expand in order to facilitate the audit process of tomorrow. That shift necessitates an adjustment in attitudes and mindsets to benefit the industry at large. In order for these changes to be successful, change needs to happen at every level of the industry, from the junior associates joining our firms, through the partners and regulators. 

Among the sought-after skills that clients want their auditor to have, the KPMG/Forbes Insights report found that 67% of clients are looking for increased technology skills, while 66% want better communication skills, 65% for critical thinking skills, and 59% for investigative financial skills. They are not looking for the old-school, number-crunching accountant any more. Considering they are obsessed with learning patterns and identifying anomalies in data, It is time for us to learn from what the data scientists are doing.

Given the massive skills and talent gap that the audit industry is facing, It’s also worth pointing out that teaching these skills is an opportunity for firms to keep their best staff around for longer.  Many like-minded organizations, including MindBridge, have also taken an interest in preparing tomorrow’s accountants and auditors with the tools and knowledge they need to succeed before they reach the workforce.

 

The data revolution is an opportunity for auditors

The audit sector is known for being stuck in its ways. We’re the number-crunching, adhering to regulations, checklist-oriented type. Sometimes, we follow those traits to a fault. As technology proliferates and data volumes grow, modern businesses are putting data front and center. This introduces both risk and complexity, but also an opportunity for data savvy auditors to provide leadership in the data driven world.

By encouraging more curiosity, creativity, and experimenting across the industry, we can hopefully adjust attitudes and mindsets regarding technology-based tools and audit standards. 

The future of audit is being reshaped by technology, there is no dismissing that. However, the industry must ensure it is keeping pace with the broader economy. Instead of looking for excuses to resist change, collectively, we need to find ways around any obstacles so that the accounting industry becomes a leader in innovation, resilience, and agility. We can’t wait to be told by regulators what tools to use ​​ it’s crucial to change attitudes and embrace the changes that are happening now. 

A study by the Harvard Business Review summed it up perfectly: “If more and more companies methodically dismantle blockers to innovation and encourage employees to experiment, perhaps we will finally see the gap close between leaders’ innovation goals and reality.”

An opportunity in the crisis: Is bridging the career cliff for women the key to fighting accounting staffing shortages?

Bright green arrows moving towards a bigger beige arrow.

Every business in every industry right across the world has had massive challenges over the last 16 months. There’s nothing ‘standard’ about our standard operating procedures anymore. Almost every business has been forced to adapt – and those that haven’t been forced have definitely given more thought to business continuity, business risks, and threats to their operating model.

Lately, it seems necessary to become comfortable with change, and we are also seeing a willingness to pivot. The idea that we get up, go to work, and come home is not the same as it was pre-March 2020, and likely will never be.

For the accounting industry, the pandemic has exacerbated the talent challenges we traditionally face:

  • International travel restrictions prevent us from accessing secondee resources
  • Post busy-season burnout is now more prevalent, with reporting deadline extensions removing any workflow troughs that were once a saving grace
  • What was previously an ‘earned privilege’ – working from home and general work flexibility – is now a day one baseline expectation
  • Because challenges are profession-wide, we’re losing more and more talent to commercial roles in the industry, as qualified professionals start the path to CFO, where, let’s face it, the pay and recognition are better than we’re used to delivering in our accounting firms

We absolutely do have a pipeline issue, no doubt.  Many students are enticed away from accounting studies into bright shiny STEM subjects at university.  We also have a persistent gap between the skills we’d love in our team and the skills we have today in the workforce. There are not enough data and tech savvy unicorn accountants to go around.

But our immediate challenge is in simply getting the work done: we do not have enough people! 

The laws of supply and demand are in full swing. Salary expectations are through the roof, with the Big 4 and even large mid-tiers poaching any senior staff they can get, offering massive salaries and signing bonuses.  We need people in our firms like we all need oxygen.

But what if there was a readily available talent pool that we’ve overlooked in the past? A talent pool that could not only assist with our acute capacity issues today, but could build resilience within our teams, even support our brands becoming employers of choice.  We should all go for it, right?

What is the Career Cliff?

We’re all likely familiar with the glass ceiling – an unacknowledged barrier to advancement in a profession, especially affecting women and minorities.  What worldwide data shows us, is that not only is advancement in our firms challenging for women, but that our profession is losing women all together – a career cliff, if you like.

Very consistently across the globe we see gender parity in our graduates of accounting and finance degrees, for example, as reported by the Financial Reporting Council below.

A graph showing the percentage of female accounting students enrolled on professional accounting courses with accounting bodies registered in England, Wales, Scotland and Northern Ireland (Financial Reporting Council, 2016)

But by the time our graduates progress to their mid-career level, we start to lose women from our firms.  On average, we are able to maintain a nice even mix through Associate and Manager levels only to see our women suddenly fall from the career cliff, with only half still remaining at Partner level.

Graph showing the percentage of women in roles as they climb the firm's ladder.
Source:
https://www.aicpa.org/content/dam/aicpa/career/womenintheprofession/downloadabledocuments/2019-cpa-firm-gender-survey.pdf

 

Where do all the women go?  Perhaps the more relevant question is – WHY do all the women go?

A Handful of Whys

Across global geographies, accounting industry membership bodies and regulatory authorities regularly report on all elements of the profession, including remuneration and diversity of representation.  Consistently, all of these bodies confirm evidence of a gender pay gap, the mere existence of which is discouraging to the plight of ambitious women in our industry: : 

 

In addition to this, and discouragingly, the same data also indicates that the majority of men in the industry believe that the gender pay gap is a myth.   

“70 percent of male respondents don’t think this issue exists”
source: CA ANZ 2021 Remuneration Survey

As Marian Wright Edelton said “you can’t be what you can’t see,” and our industry has significantly lower representation of women in senior leadership. The AICPA’s 2019 US CPA Firm Gender Survey, data collected by the Australian Financial Review and the UK’s Top 50+50 survey all confirm roughly an 80:20 split of male and female partners in our firms.  So after achieving parity at most levels of the firm as team members progress, once women reach director and partner level – off the career cliff they tumble.  

Women frequently leave our esteemed profession because they don’t believe they can achieve the balance and workplace flexibility they need to perform at their A-Game at work and in life.   Whatever the reason, the traditional commute and requirement to be physically in the office can significantly affect balance, happiness, and even productivity.  So we see women leaving our firms. Some start their own consultancy. Some leave the profession altogether.  

The Opportunity

Gender and moral obligation aside, increasing diversity in our firms is proven to be a sound business strategy resulting in significant commercial outcomes. McKinsey’s most recent Delivering Through Diversity report found that firms that embrace diversity on their executive teams:

  • were more competitive, and 
  • 21% more likely to experience above-average profitability

Encouragingly, there are also wins in the journey, rewards for all efforts, with research showing that financial performance increases in line with increased diversity in leadership.

 

A graph showing executive teams with more than 30% women are more likely to outperform those with fewer or no women.
Source:
McKinsey – Diversity Wins: How inclusion matters

We have the opportunity to access the critical capacity we need right now and build resilience in our talent succession pipelines when we work deliberately to entice women back to our firms and help them bridge the career cliff.

But how?

A classic accounting adage – “what gets measured gets done.”  Our competitors have an advantage if anyone in our firm perceives that they’re underpaid. We can mitigate this perception by performing regular gender pay audits to identify inequities and make the necessary corrections.  In the UK, mandatory gender pay gap reporting is creating an awareness and accountability loop that has had a real impact since its introduction in 2017 with the gender pay gap closing by almost 20% across the reporting group.    

We should be proud about our ambitions for diversity and inclusion, so let’s set targets and publicise why diversity is important for our firms and the profession in general. The AICPA Survey reported only 6% of US firms surveyed have a formal gender component embedded in their succession plans. And, so for our firms that adopt this deliberate and transparent action, this is a huge opportunity to attract top female talent.   Julie McKay, partner and chief diversity, inclusion and wellbeing officer at PWC Australia, said recentlyTargets have assisted the firm to move from 19% women in the partnership in 2016 to more than 30% in 2021.” 

Today’s workforce, regardless of gender, expects workplace flexibility. US firms supporting flexible work arrangements reported the significant impacts on attraction and retention of all staffand this was pre-Covid!

Graph showing the percentage of firms that said MWAs helped address top staffing concerns.

Supporting workplace flexibility that allows all team members, but especially women to better balance the demands of their home life with work is mission-critical to attracting, retaining and promoting women in our firms.. 

In a Covid-induced state of flux, the landscape is perfect to shift the way we think about retaining talent in our firms.  In particular, the way we retain, promote and win-back women. 

At MindBridge, we’re passionate about empowering future female leaders of STEM.  Through our HERoes program, we’re engaging women to change the future of the technology industry.  

Read more about the MindBridge HERoes program HERE.

Top 3 automated risk assessment tools

An abstract image depicting the importance of finding and implementing technologies to automate rote tasks in risk assessment

Managing potential risks in financial data is a monumental task. But thanks to the latest digital audit tools and AI audit software, automation is now revolutionizing this domain. Here, we delve into the top 3 automated risk assessment tools that are making waves in the industry.

The adoption of new risk management processes has been a focal point of discussion in the business world generally. But, financial institutions are particularly focused, lately, on updating their procedures and processes in a post-pandemic, largely remote world. While pandemic talk may sound like a broken record at this point, it’s still an important consideration, even as the world becomes vaccinated and business begins to open up. 

As businesses, we are not out of the woods yet.

Fortunately, new technologies spurred by automation are making it easier than ever for organizations to invest in more effective risk assessment tools. 

As a report from Deloitte notes: “Latest technologies have the potential to fundamentally transform risk management. In addition to substantially reducing operating costs, these and other technologies can provide risk management with new capabilities including building controls directly into processes, prioritizing areas for testing and monitoring, deploying automated monitoring of limits with defined escalation, addressing issues in real-time to improve the enterprise-wide view of risk, and providing decision support.”  

In addition to providing more efficient processes and a holistic view of risks facing an organization, improving the risk management function facilitates the detection and assessment of new risks that have emerged over the past decadeCybersecurity, business model, and contagion risks are examples of some of the more recent risks that firms must now contend with. How an organization handles these risks can be the deciding factor on whether or not they sink or swim. 

Kristina Davis, a partner with Deloitte Risk and Financial Advisory, explained in an article: “Organizations that proactively construct advanced risk management capabilities to keep pace with transformative change have the opportunity to gain competitive advantages.”

Wondering where to start with updating your risk assessment processes? Here are 3 top tools to help your organization automate risk assessment.

3 tools to automate risk assessment

LogicGate: GRC in the cloud

 

As LogicGate describes it, they’re creating more than just software – they’re creating peace of mind with their automated risk assessment tool.

LogicGate provides cloud software solutions for automating governance, risk, and compliance (GRC) processes through its Risk Cloud platform. The software empowers organizations to change disorganized risk and compliance processes into enhanced enterprise risk management operations that increase efficiencies. 

What is GRC? According to CIO.com, GRC is a tailored way to align a company’s IT with business goals while also managing risk and meeting compliance obligations. In addition, a GRC framework can offer numerous benefits for organizations that take the time to implement one properly, such as better decision-making, improved IT investments, and the elimination of silos.

With LogicGate’s enterprise technology, process owners have full control with a no-code-needed app builder, pre-built templates, and the ability to craft workflows that suit their needs. The result is a customized solution that provides a comprehensive view of risk programs.

In an effort to make things even more flexible for users, the company recently expanded its integration offerings. LogicGate’s Risk Cloud now integrates with hundreds of platforms via the new Risk Cloud Connect, which works seamlessly with many core business systems, including Jira, Slack, DocuSign, and more.

 “We’re on a mission to give risk and compliance professionals a single source of truth to make better, more informed decisions with their data,” said Jon Siegler, LogicGate’s chief product officer, in a press release.

Fusion Risk Management: Resilience meets efficiency

Fusion Risk Management originated as an idea scribbled by its co-founders on a restaurant tablecloth. Since then, it has become a well-respected cloud-based software solution focused on operational resilience, encompassing business continuity, risk management, IT risk, and crisis and incident management.

The company aims to help organizations anticipate, prepare, respond, and, perhaps most importantly, learn in any situation by providing them with the risk assessment tool to be successful. And because every organization is different, Fusion’s integrated suite of platform capabilities can be custom-tailored to fit a company’s unique needs.

Fusion’s products and services take organizations beyond legacy solutions, enabling them to make decisions backed by data with a flexible and inclusive approach to achieve operational resilience and mitigate risks.

Fusion’s flagship offering is the Fusion Framework System, which allows organizations to maintain resilience through a single platform, thereby eliminating the need for multiple disconnected modules across various risk areas. The company also recently launched Fusion Analytics, a new system capability that allows users to compile all relevant and required data into a single platform, which helps eliminate operational silos and foster collaboration by allowing teams to work together from anywhere.

“In today’s highly competitive market, businesses must demonstrate they have a robust operational resilience program and can make important, difficult decisions fast, at the speed of business. This especially holds true during times of market turbulence and volatility,” Brian Molk, Fusion’s Chief Product Officer, said in a press release.

 

MindBridge: The future of automated risk discovery

At MindBridge, we’re all about changing the world and creating a better future for all by improving the global financial system – one organization at a time.

Since our founding in 2015, MindBridge has become the world’s leading AI-powered risk discovery platform for financial integrity. We’re here to help auditors, accountants, and financial professionals become more efficient and successful.

From transactional risk reviews to organizational process improvements, MindBridge users have the AI-embedded tools, visualized analytics, and comprehensive resources needed for more robust and holistic analysis, assessments, and advisory services.

So, how does it work? MindBridge’s Ensemble AI technology compares data against 28 capabilities, or “control points,” to identify the level of risk in 100% of transactions in a given data set. The results far outweigh what would be achieved by running each capability separately, which is why more than 8,000 firms worldwide use MindBridge’s platform, including well-established institutions like the Bank of England and the Bank of Canada, and major firms such as Dixon-Hughes Goodman and Cherry Bekaert. 

“Using MindBridge, we now have a standard way to do journal entry testing. And I feel a lot more confident about our selections now than almost any other method that we could come up with,” explained Jonathan Kraftchick, a partner with Cherry Bekaert LLP, of the firm’s adoption of MindBridge. “MindBridge is the future of auditing.”

And there you have it: 3 tools to automate risk assessment.

To read more on how other organizations have adopted MindBridge to improve their risk discovery, check out our case studies and customer stories.

To book a demonstration or hear from an expert, schedule some time with our team

The state of accounting staffing: How firms can fight shortages

Abstract imagery depicting a search, location, and growth into the accounting staffing field.

The Big 4 are gobbling up all the new grads, and smaller firms are struggling to find the incredible talent coming out of accounting schools around the world. What can they do to set themselves apart, and tackle the beast of accounting staffing?

As countries around the world begin to emerge from the COVID-19 pandemic, small business owners and corporations are discussing ways for their employees to work in our new reality. Some have seen growth, some have struggled. But, beyond performance, COVID-19 has been a wake-up call for many, teaching business leaders the value of remote work, and expanding their talent pool. 

Accounting firms are continuing to analyze and assess the performance of remote workers, client satisfaction, and more to determine the best way forward. 

It seems like this would be a great time to hire additional workers, right? Or, at least to review hiring processes, staffing, and other recruitment initiatives. 

Well, it certainly would be if there were workers available. Unfortunately for the accounting realm, we are facing a severe global skills shortage

It’s not just the finance sector that is struggling to find workers, though. Around the world, numerous industries are grappling with an unprecedented talent deficit

In the United States, there were a record 9.3 million job openings in April 2021, while the United Kingdom saw advertised job vacancies jump 45% between the end of March and mid-June. So, it goes without saying that the competition for retaining and acquiring talented workers is fierce.

A CNN graph from the US Bureau of Labor Statistics and the UK Office for National Statistics on the rising number of open roles in each respective country.

While higher wages might seem like the easiest answer, it’s not quite that simple.

The challenges of accounting staffing

A persistent skills gap

It’s no secret that job openings and required skills in the accounting industry aren’t the same as they used to be. While there is vast potential with the continual adoption of financial technology and tools, finding talent with the appropriate skill set to fully utilize said tools is challenging. On top of that, recruiters focusing on accounting staffing have to compete for talent against industry competitors like the Big 4, as well as various tech companies. 

An adept ability to crunch numbers and implement Excel formulas used to suffice for a job in finance. However, as technologies have evolved and many innovative tools can now automate rote and tedious tasks like these, accounting firms are expanding their expectations to include digital skills such as data analytics and business modelling in candidates. However, the academic side of the equation has struggled to keep up to the evolving industry by offering an accounting curriculum that covers these ‘new’ skill sets. 

And therein lies a major crux of the skills gap plaguing the accounting industry: bridging the gap between academic and workforce expectations for new accounting graduates. Today’s students will become tomorrow’s accountants. As such, they need to be prepared for real world situations, which increasingly includes using and understanding the tools that are reshaping their roles, and the larger finance sector.  

Retention struggles

Recruitment isn’t the only staffing issue the accounting sector is wrestling with. Retention has been a struggle for the financial industry since the 2007 financial crisis

 As an article from Thomson Reuters put it: “High turnover rates have practically become synonymous with accounting firms, sometimes reaching up to 30% at large audit firms.”

According to the latest Inside Public Accounting annual survey, staff turnover averaged 13.7% across all accounting firms, with the most significant increase in turnover rates from firms in the $10 million to $30 million range.

There is also another retention threat looming on the horizon. As COVID-19 restrictions ease, ‘The Great Resignation’ is an emerging employment hurdle that companies will need to grapple with. 

“According to a recent report by job site Monster.com, a staggering 95% of workers are considering changing jobs, and 92% are willing to switch industries to find the right position.”

There is some good news when it comes to lowering turnover rates, though. The ability to improve employee retention rests almost entirely in the employer’s control.

How to address accounting staffing issues

The remote work conundrum 

Even as things return to “normal,” work will never be the way it was pre-pandemic.

 Zoom meetings and PJs have become our new norm. As a result, people have become accustomed to the flexibility of remote work. Many enjoy being able to grab groceries in the middle of the day, take an afternoon break to go for a run, or pick up their kids from school without having to worry about being absent from the office. So, it’s not surprising that many are resisting going back to the nine-to-five grind.

A person stares out of their window while working from their kitchen table, potentially considering their next career move.

“The EY 2021 Work Reimagined Employee Survey found that more than half (54%) of employees surveyed worldwide would quit their job if they aren’t offered enough post-pandemic flexibility on when and where they work.”

“Flexible working is the new currency for attracting and retaining top talent,” noted Liz Fealy, who leads EY’s global workforce advisory group. Interestingly enough, many firms are still considering returning to brick and mortar offices. 

According to AccountingToday, 61% of accountants plan to keep their current brick and mortar office footprint. Though, many have cited that this workspace will primarily be used for client meetings, training sessions, and other administrative work.

So, as you can see, the future of accounting staffing seems to depend on who you ask.

 However, having a company plan for full remote or hybrid work models goes far beyond the immediate post-pandemic return-to-work response.

 A PwC report on the Canadian workforce found that financial services employees have a higher preference for remote working than any other industry the survey measured. 58% of financial services employees say their ideal workplace is entirely or mostly remote, compared to 34% for employees surveyed across all industries.

“In addition to retaining current talent, flexible work arrangements are paramount to attracting new talent from the Gen Z workforce. In a survey of Gen Zers by the Association of Chartered Certified Accountants (ACCA), 23% listed flexible working arrangements/working from home as being one of their top five attractions for employment”

A person sits on their couch working from their tablet, accompanied by their orange tabby cat.

All of this isn’t to say that remote work is a perfect or easy solution. Far from it. It also doesn’t suit every person or every position. Then, how do companies deal with remote work arrangements moving forward? 

For starters, being open and transparent and asking employees for input on what they need and want going forward. This includes ensuring they have the right tools that not only enable but also enhance remote work. For example, tools utilizing artificial intelligence (AI) and automation are beneficial in helping workers maintain productivity and collaboration outside of the traditional office space.

Investing in upskilling

People are a company’s greatest asset. But, the need to invest in that asset is often forgotten. 

Organizations that have invested in upskilling their employees’ tech capabilities have seen the return on investment: one survey from PwC found that 74% of those who reported an improvement in talent retention and recruitment because of digital investments said “the level of improvement met what was expected or even more.” What’s more, CEOs who have made investments in their upskilling programs are more optimistic about their company’s growth prospects than those who haven’t.

 From an ACCA report, 49% of Gen Z respondents ranked “opportunities to continually acquire new capabilities/learning” as one of their top five attractions for employment – more than any other factor listed. The report also notes that eagerness to learn, combined with Gen Z being “’fantastic ambassadors and early adopters’ of tech … could help the rest of the business adopt digital.” In fact, 91% of Gen Zers said they expect to update their capabilities continually to remain employable in the future. Younger generations are more than willing to learn new skills, and it’s up to organizations to capitalize on the opportunity. 

What’s more, an upskilling program is one way that companies can overcome the very same, growing skills gap affecting the accounting industry today. 

Firms need to realize that the “old-school” accounting skill set won’t suffice. Investing in new technologies and exploring different ways of working must be prioritized for every accounting organization. A case in point: 82% of financial services employees believe upskilling would improve their job performance.

Two people sit at a conference table discussing a presentation on risk management, threats, and more.

Moreover, younger generations like millennials and Gen Z believe that technology can make them more effective at work. Many even feel constrained by what they view as “outdated traditional working practices.” Younger employees entering the accounting workforce have no desire to plug numbers into Excel for hours on end. They want the skills and ability to use the latest technology that is rapidly changing the industry.

Of course, the onus isn’t on accounting firms alone. As was noted earlier, there is a need to ensure that the academic curriculum is adequately preparing new graduates for the accounting work they will undertake in the field, including using AI and automation technologies that are becoming all the more prevalent in accounting. That’s why many organizations, including MindBridge, are committed to helping students receive hands-on training with new technologies by bringing AI and data analytics into the classroom.

The MindBridge University Alliance program allows educators to easily teach their students the importance of AI and data analytics for accounting and financial services.

Embracing technology

Investment in technology is the common theme for solving the shortages in accounting staffing.

 We’ve said it before, but it’s worth repeating: it is not accounting technology replacing accountants – it’s accountants adopting technology that are replacing those who are not. As we say at MindBridge, while our technology may be AI-embedded, it’s human-powered.

Technology like AI and automation is becoming the new norm in the accounting industry. Firms that embrace and invest in these innovations are the ones who will continue to thrive — both in terms of attracting clients and employees. Firms that invest in technology are far more likely to recruit new and upcoming talent while retaining existing staff by differentiation from the thousands of other firms in the market vying for the same qualifications.

 Of course, implementing new technology into your business practice doesn’t happen overnight, and it’s a process that may require brushing up on some change management best practices. But finance teams need to start investing now in long-term solutions that will position them and their workers for success. Because just like remote work, AI and automation are here to stay.

For more articles like this one, visit our blog

To learn more about how the MindBridge Audit Approach can benefit your firm, download our briefing paper

4 steps to improve risk management

Risk management is a broad and overarching term. It reaches to and beyond finance, touching every aspect of an enterprise’s operations. Especially for enterprises, the intermingling of all risk-related activities across an organization is important not only to understand, but to build management strategies around. 

This methodology is known as enterprise risk management (ERM):

“ERM is a process, effected by an entity’s board of directors, management and other personnel, applied in strategy setting and across the enterprise, designed to identify potential events that may affect the entity, and manage risk to be within its risk appetite, to provide reasonable assurance regarding the achievement of entity objectives.”

Therefore, a holistic approach to risk management is considered to be the standard for risk officers and other members of the executive team. 

In this article, we’re listing five ways that businesses can improve their financial reporting and controls risk by creating a plan of action to integrate into their larger ERM processes.

1. Understand the breadth and importance of risk management

As mentioned, risk management is an umbrella term that essentially identifies potential and actual risk and empowers a business with the necessary tools to adequately identify and deal with potential risks such as fraud, material misstatement, and more. 

Fraud is a major challenge for most enterprises. COVID-19 proved this to be extraordinarily true. A survey carried out by LIMRA showed that 42% of its respondents had already experienced increases in attempted fraud since the pandemic began. 

As noted by the Corporate Finance Institute, assessment and management of risks is the best way to prepare any enterprise for circumstances that may get in the way of progress and growth. When a business evaluates its plan for handling potential threats and then develops those structures to address them, it will inevitably create risk tolerant processes that future-proof the organization. An in-depth risk management plan is also a sign to investors and higher-level stakeholders of the stability of your organization. 

In addition, progressive risk management ensures risks of a high priority are dealt with as aggressively as possible. Management will thus have the necessary information that they can use to make informed decisions and ensure that the business remains profitable which, believe it or not, is also important to stakeholders.

2. Decide how to manage risk

There are many ways to manage financial risk, and they can be best summarized using the 4Ts model; transfer, treat, terminate and tolerate.

Risk transfer means to assign an individual, group, or third party to be responsible for the risk. This method absolves the transferer of the risk implications, while compensating the person or entity receiving the risk for taking it on. More often than not, transferring risk simply means getting insurance; for example, an enterprise may work with a commercial insurance entity to offload potential financial risk for themselves, their stakeholders, and investors.

Treating risk is the next layer to consider in a case of financial risk in cases where the risk cannot be offloaded through insurance or other means. This is done by performing actions that reduce the likelihood of the risk occurring or minimizing its impact before it inevitably occurs. The best way to treat risk is to ensure that your team is equipped to predict and handle these risks as they come up. Training your team is vital.

The next method to manage risk is through terminating. Just like with treating risk, terminating risk is achieved by altering processes or practices to eliminate the risk completely. This could mean removing the process or area that is causing actual or potential risk to occur, as well. 

The final category is tolerating risk. This step is part of the overall risk management process, as organizations determine the level of risk that they are willing to accept in any given situation or area. When it comes to finances, an organization must consider the amount of financial loss they are willing to risk to perform any number of activities.

These steps and processes can be applied to risk management in a similar manner. However, the detection and investigation of individual financial risk events is much more specific and technical, requiring the expertise of auditors and accountants.

3. Employ tools, automate risk management

Enterprise risk management tools now go beyond traditional spreadsheet-based software. According to McKinsey & Co., 66% of enterprises were piloting or using automation technology in 2020, with predicted increases to come. 

Here are two key areas companies are exploring in 2021:

Robotic Process Automation (RPA) — This technology provides rules to “bots” which mimic simple, repetitive processes that humans often do. This could mean automating the compilation, download, and circulation of an ERM-related report. However, some other highly popular use-cases are onboarding, third-party screening, due diligence, and compliance monitoring. Upon implementing this technology, businesses report reduction of input errors, less human handling of sensitive information, and faster input and processing for overall time savings. Additionally, Gartner reports that “88% of corporate controllers expect to implement RPA in 2021.”

Risk Discovery Artificial Intelligence (RD AI) — According to research conducted by the Public Company Accounting Oversight Board (PCAOB), one of their biggest concerns as the audit industry develops is “over-auditing” due to lack of understanding of company risks. MindBridge’s RD AI platform finds potential risk across 100% of financial data, and explains these findings in a transparent way. The ensemble AI engine finds potential risks with 10x the effectiveness of rules-based tools, and at over 2000x the speed of manual entry. An ERM framework with deep accuracy, efficiency and effectiveness gains can be enhanced by the 4Ts in the figure below:

 Flow chart depicting the combination of the ERM process and the 4 T's of risk management.
Figure: ERM enhanced by the 4Ts model

 

4. Review risk management processes often

The final and most important way to improve your risk management is to review continuously. Meaning, check in on your risk management processes as often as you can. Set up a schedule of monthly, quarterly, or even yearly reviews. 

Even the strongest risk management processes are at the mercy of ever-changing external and internal factors.

An effective risk management plan will implement an ongoing basis to accommodate these changes, ensuring that it continues to be as effective as possible.

 For example, the Enterprise RIsk Resilient EcoSystem, a framework designed to incorporate the needs of larger organizations, is a testament to the need for an evolving mindset regarding risk management.

Diagram of the Enterprise Risk Resilient EcoSystem from Baker Tilly, speaking to the "modern world" and the need for flexibility in corporate risk management.

According to Jonathan Marks of Baker Tilly, the 8th largest accounting firm in the United States, 

“The Enterprise Risk Resilient EcoSystem is more complete than other published frameworks and is more reflective of the current state of “our modern world” and where we need to focus. Why? Regulators are expecting organizations to be using a data driven audit process and using the results or feedback to continually enhance their compliance program.”

 He continues:

“This means organizations should be strongly considering adding technology like MindBridge to the equation. It also means that if compliance, audit, and the general counsel are not working harmoniously there is a possibility risks will not be properly addressed increasing the likelihood of fraud.”

To learn how you can implement MindBridge into your risk management process, or to learn more about the MindBridge Audit Approach, click here.

For more articles like this one, visit the MindBridge blog

How to prepare accounting students for an evolving industry

Abstract imagery of growth, development, evolution, education, and the future.

Preparing for an accounting career is much more complex than you may think.

Once upon a time, our grade school teachers drilled into us that we wouldn’t always have calculators in our hands to help tackle the world’s everyday math problems. Little did they know that our smartphones would be cleverly fitted with a default calculator app, perfectly for the palms of our hands.

In the latest acknowledgement of this phenomenon, it seems that today’s accountants are facing a similar issue – the industry is moving too quickly for educators to catch up, and to prepare their students properly for a shifting accounting career.

Which begs the question, is it time to update the curriculum?

Changes for the 21st century

Technological advancements: Accounting, audit, and beyond

A lot has changed since the last generation of accountants began their careers, and the consensus among them is that they are looking for today’s graduates to be agile, flexible, and adaptable with whatever technologies are thrown their way. 

Whether it be for spreadsheets, tax preparation, research software, communication, and data analytics — today’s professional accountants use technology constantly

A learned profession like accounting requires years of study, licenses, and a mindset that recognizes the need for continuous learning. In an article for CPA Journal, Stephanie M. Bryant, the Executive Vice President and Chief Accreditation Officer at the Association to Advance Collegiate Schools of Business (AACSB) International, writes about the large skills gap she experienced when she began her first professional accounting job: “It was my job to be an expert,” she writes. “The difference between making a grade in a class and working on a real client issue was quite a wake-up call for me.”

“It was my job to be an expert,” she writes. “The difference between making a grade in a class and working on a real client issue was quite a wake-up call for me.”

Years later, she said, the skills gap has persisted, with the theory portions being extensive in the curriculum while major gaps related to the currency and relevance of actual accounting practices persist. In particular, a student’s ability to synthesize and apply information critically — with or without the use of ever-changing technology. “It is essential that students develop technological agility and a growth mindset to be successful in today’s work environment.” 

Bridging the gap: Theory vs reality

When AACSB-accreditation was introduced for business programs, it helped establish a standard of quality that ensured the curriculums met the needs found in professional settings. But still, gaps persisted. 

According to the same CPA Journal article, in 2018, a task force of 19 highly respected accounting educators and accounting practitioners—including leaders from the National Association of State Boards of Accountancy (NASBA), the Institute of Management Accountants (IMA), the AICPA, and public accounting—worked for almost 20 months to develop updated accounting standards that would bridge the gap between academic and workforce expectations for new accounting graduates.

It was determined that, since accounting is a rapidly changing field, schools intend to prepare students for an accounting career it must ensure their content is reflective of the work new graduates will be expected to do by reviewing their courses and curriculum regularly.

A student learns about AI and audit technology remotely while working from a well-lit cafe.

In an article from CFODive, Paul Clancy, Senior visiting lecturer of finance at Cornell University spoke to the changes, addressing that the fundamental qualities to succeed are much the same; strong analytical skills, critical thinking skills, perseverance, integrity and teamwork. He noted that “these skills, many of which are developed at your university or college, can continue to be honed throughout life.”

An accounting career in our virtual world

A new challenge that today and tomorrow’s accountants must face is our virtual reality. No, not video games. Remote accounting and audit work has created new obstacles for today’s financial professionals that the next generation need to prepare for. 

As much as we’re all looking forward to getting “back to normal,” many doubt that fully remote or hybrid financial work is going anywhere.

A professor working on their accounting curriculum remotely from an outdoor cafe.

In light of this, educators must stress the importance of remote work and learning by introducing engaging tools and platforms for their students. We’ve all taken a class from home that we’ve written off as “too easy,” or “not worth our time.” But, given the not-so-distant future of physically-distant accounting, it’s time for students and educators to take things more seriously.

For many accountants, searching for tools that enable and enhance remote work has been crucial. Continuing to thrive outside of the office requires a different mindset, approach, and specific tools. Tools that utilize artificial intelligence, machine learning, and more automation-based technologies are making their way into tech stacks around the world. 

But, just because they can make work more efficient, doesn’t make them simple to learn.

Technological agility and resilience

Moreover, agility has become a crucial skill for new finance teams. New graduates are beginning to recognize the importance for finance professionals to broaden their digital skills to include data analytics, risk management, cybersecurity and business modeling into their repertoire.

With that, the 2018 standards incorporated a theoretical shift to include technological agility as a new focus. Today’s accounting students must be able to adapt to new technologies quickly and continuously. Specifically, a focus on artificial intelligence and data analytics are of particular interest, but are frequently missing from university and college classrooms.

To find out more, we spoke with an active educator in a university accounting classroom.

Ann Vanstraelen, Full Professor of Accounting and Assurance Services and Chair of the Department Accounting Information Management (AIM) at Maastricht University in the Netherlands, had been searching for a way to better incorporate emerging technologies like AI into their curriculum.

She notes the traditional, “old way” of teaching accounting was to teach Excel skills and then assign a project that would reinforce those particular Excel skills. However, to be more effective and prepare students for real world circumstances, Vanstraelen notes, educators must expose students to a problem, ask them how best to address it, and require them to identify the different pathways to a solution. 

This involves determining which current technologies and datasets to use, where the relevant sources are, and how they would integrate and synthesize facts to create a solution. 

According to Vanstraelen, this mindset is paramount to success in the new age of accounting:

“Students hear about AI in the news and media quite extensively and want to learn more about it. By the time they graduate, students need to understand data analytics in a context beyond the textbook.”

Thankfully, Vanstraelen came across the Mindbridge University Program, which allowed her to integrate these topics into her existing curriculum at no extra cost. Plus, the students love it.

“They are positively surprised that they get to use it in such a hands-on fashion in our bachelor auditing and fraud detection course and appreciate that we’re letting them see how it actually works and how it’s used in real accounting practices.”

Like MindBridge, many organizations are beginning to explore the value of preparing the professionals of tomorrow with tools and knowledge today. The accounting world is rapidly evolving. Without the proper technology and knowledge, tomorrow’s accountants and auditors will graduate unprepared. We believe it is our duty to help educators bridge the gap between books and technology, theory and reality, education and an accounting career. 

Read on to learn more about how the MindBridge University Alliance Program is helping students and educators get ahead.

How companies and firms are helping to bridge the gap from school to an accounting career

In 2018, MindBridge launched the University Alliance Program, an initiative designed to introduce the next generation of accountants and auditors to the power of artificial intelligence in augmenting the financial processes.

Since then, the University Alliance Program has been adopted by over 100 universities and colleges around the world. The curriculum offers educational materials with hands-on case studies and training, allowing students to learn and experience the power of artificial intelligence and data analytics in performing a financial analysis using MindBridge. With the material being incorporated into advanced audit, data analytics, accounting information systems, and fraud investigation courses. 

Here’s an example of a classroom case study would look like:


Finding fraud using AI

Background
  • Introduce students to the fictitious story of a construction company whose practices raised some red flags during audit planning
  • A general ledger data set is provided with the case study
Task
  • Upload the provided data set into MindBridge and adjust the risk scoring engine as per instructions
  • Identify potentially fraudulent transactions using a combination of AI-generated insights and professional judgement
Learning outcome
  • Students get insights into the applications of AI for audit
  • Students get introduced to AI-human partnerships

Ryan Teeter, a Clinical Assistant Professor at the University of Pittsburgh has incorporated MindBridge into his graduate courses, and after finding success, wants to bridge the content into his undergraduate classes as well. “Being able to have something that is straightforward and shows the different techniques while also piquing the undergraduates interest toward data analysis, risk scoring, and applied statistics are areas that are very useful,” he said.

Professors from around the world are seeing the value of bringing AI and data analytics into their classrooms. To learn more about them, check out our case studies and customer stories.

For more information on how you can participate in the MindBridge University Alliance Program, or to apply, click here.

A fireside chat with Russ Jones: Shopify, AI, and the future of the CFO

Russ Jones, former CFO of Shopify, chatting with Clubhouse group, Accounting and Finance Tech.

Unless you’ve been living under a rock for the past several years, you’re well aware that Shopify is one of the biggest IPO success stories in recent history. One of the individuals who was integral in taking Shopify public in May 2015 (and doing so successfully) is Russ Jones, former CFO of the Canadian tech giant from 2011 to 2018. 

Recently, our very own founder hosted a virtual fireside chat with Russ.

Given Russ’s experience, it’s no surprise that he had a wealth of insightful information to share – from his time with Shopify and taking the company public, to how best to present financial information, and what the future holds for CFOs.

Below is an excerpt highlighting some of the key discussion points between Solon and Russ. 

This interview transcript has been edited for clarity and length.

 Solon Angel: Russ, instead of me talking about you, why don’t you introduce yourself and tell us a bit more about yourself?

 Russ Jones: Sure. I’m a CPA, and I’ve been in the industry for 40 years now, so I’ve been around the block a little bit. My most recent full-time role was the CFO at Shopify, which I joined when the company was 50 employees and my team was a part-time accountant and the CEO’s mother-in-law. I took public in 2015, and then I positioned myself as the first official retiree from Shopify. I retired about three years ago, and since then I’ve been doing a number of board and advisory engagements.

Solon: What got you interested in finance in the first place?

 Russ: I really credit it back to an excellent high school teacher who was a CPA and then decided to teach. I had that individual for both accounting and economics courses, and I did quite well in those. I found a lot of interest on the finance side, in numbers and thinking about businesses. The skills that you get opens up a number of doors. Because you have that finance skill set, you get involved in lots of the conversations, so it allows you to understand and add value to a business and partake in a lot of the decisions that get made.

 Solon: When you mentioned Shopify and how early you joined them as CFO, at an early stage like that, did you know one day you would take them public? Did you see that this company could be a unicorn and Canada’s most valuable tech company?

 Russ: Absolutely not. Although I had a number of signals that I used to sort of gauge opportunities. One of the things was that Shopify, as a Canadian company, had tier-one U.S. VC (venture capital). So, to me, that’s always a good indicator. 

The other thing that attracted me was that the thing the company needed to get to the next level was a skill set I brought to the table. I was the grey-haired person in the room helping these young entrepreneurs to keep the company going and scaling. 

The last thing I really liked was the business model; Shopify is a business where you get paid every day. Having been involved in companies that are doing enterprise software where at 11 o’clock on the last night of the quarter you don’t know whether you’re going to do five or 10 million dollars, it’s actually nice to have a company where you know you’re going to get some revenue every day. So, those three things are what attracted me .

 Solon: Looking back, what was the biggest problem that you had dealing with financial operations at Shopify? What was your biggest success?

 Russ: Right from day one that I joined Shopify – and this goes back to your question about did I think they would go public – obviously at that stage, no one knew, but my view is that you always build a company so that it could go public. On the scaling side, the biggest issue is how to introduce finance requirements and controls in a very entrepreneurial-type environment. you really want not to be seen as just a sort of police force of the company and always saying no. And so, about creative ways you can add value and assist in the company’s growth versus becoming an impediment there. 

One of the things we always thought about at Shopify is in the same way that tech companies think about building up technical debt over time, how do you keep reducing managerial debt. A lot of companies, if something goes wrong, they’ll introduce a whole process to make sure it never happens again. I think a better approach is if someone has done something wrong, deal with that. Don’t introduce something that’s going to slow the company down. 

The other point I would like to hammer home is that there is a difference between going public and being public. These days, it can be faster for a company to go public. But if you’re not ready to be public, that’s where a lot of the challenges arise. It’s important to think about both things – am I ready to go public, and am I ready to be public?

Telling the story of the numbers as CFO

Solon: In your time with Shopify, what was your experience with internal and external audits? Were they effective?

 Russ: I think on external audit, to start down that path as soon as you’re ready is a good discipline to have. It also forces some operational best practices within the finance group and the company itself. In terms of the internal audit function, that is one you can start to add a little bit later in terms of the function itself, though the underlying controls you should start to put in place early on because trying to add them later is never the most effective way of doing it.

“As the finance leader, you need to be able to transition into the story of the numbers versus just the numbers themselves”

I think there are a couple of even more important things. As the finance leader, you need to be able to transition into the story of the numbers versus just the numbers themselves. I think that’s the real skill. The other thing to think about is what are the key metrics that I need to talk about to explain the company and how the company is run. But, on the flip-side, you also think about metrics you don’t want to talk about how do you answer questions around that.

An example is that, for Shopify, one of the metrics we didn’t want to talk about was the unit churn number. The reason for that is the role of Shopify as a platform is to allow lots of different merchants to try to start their business. The whole philosophy of making it easy to get up and running and making it very cost-effective was really ingrained into the company. The best way to keep your unit churn number down is not to have people join the platform who aren’t going to be successful, so you make it tougher for them to join. We never did talk about that externally, but every investor we met with would ask us that question. The way that we dealt with this is we had a revenue retention number of over 100%. So that way, we could explain that not every merchant is going to be successful, but the ones staying on the platform generate more revenue as a cohort month over month.

Solon: That is a very important point. I think a lot of people underestimate the power of positioning facts in a meaningful and valuable way for people to understand.

Russ: And as you move up in finance in terms of leadership roles, that ability to summarize and present the information is the real skill that gets developed over time. I see that as a tipping point for some people that, for example, would send the board Excel workbooks with just reams and reams of information, where really at that level you want one or two slides that tell the story and then you can answer questions. 

The current and future role of the CFO

Solon: To what extent is a CFO involved in managing and mitigating risk for a company like Shopify? Does that role change when the organization gets larger?

Russ: I think risk is something that companies have from the very beginning. As bigger, you start, on both the finance and the legal sides, hiring people that spend a larger percentage of their time on just that. But is a cross-company type of thing. The high-level risks that a company deals with aren’t just financial risks or legal risks; they’re operational risks to a large degree. Understanding what those risks are and making sure that the right group is taking care of them is  an important part of any fast-growing company.

“As data and machine learning and artificial intelligence become more important, I think there is a real role for finance to play”

 Solon: When thinking of the finance industry at large and the role of CFOs and finance professionals, what concerns you the most today in what you see in the profession?

 Russ: Yes, there are concerns, but I’m also excited about all of the opportunities out there. I think the one concern I have is with the industry right now and the number of SPACs (special purpose acquisition companies) out there chasing companies. I do worry about companies that aren’t ready to go public starting to go public. But having said that, I do believe the finance role itself is expanding. As data and machine learning and artificial intelligence become more important, I think there is a real role for finance to play. So, overall, I would say I’m quite excited about it.

For more industry and thought provoking articles, visit our blog.

PCAOB makes room for technology: What does it mean for auditors?

An abstract image of growth and development to symbolize the adoption of new technologies and processes by storied firms and businesses.

In the last decade, technology has altered the ways in which we work and live. This has become increasingly true in the auditing profession. 

According to Audit 2025: The future is now, a report released by KPMG and Forbes Insights that surveyed 200 CFOs, chief audit officers, chief tax officers and other financial executives, “the financial audit is poised for profound and rapid change.” That is, technology, combined with the expertise of today’s skilled auditor, allows audit professionals the opportunity to take a deeper look into an organization’s financial facets and provide more informed insights.   

The Public Company Accounting Oversight Board (PCAOB), which regulates audits of publicly listed companies in the United States, recently released their own report, the Data and Technology Research Spotlight, which provides timely and relevant observations for auditors and stakeholders on the current and future of audits and technology-based tools being implemented in the industry. 

It’s a mouthful, but essentially those responsible for regulating public audits in the United States are beginning to respond and acknowledge the transition we’ve been tracking  (and encouraging) for a few years now: audit approaches using technology-based tools.

In the KPMG-Forbes report, 80% of respondents said that auditors should use bigger samples and more sophisticated technologies for data gathering and analysis. As technology blazes a trail through the audit space, more firms, organizations, and boards are taking notice.

Back to PCAOB report, it included an interesting statement on standards:

“PCAOB auditing standards do not preclude audit firms’ use of technology-based tools during an audit but our current standards do not explicitly encourage the use of such tools.”

While far from an endorsement, the PCAOB is the most recent major organization in the audit space to recognize the value of technology to increase the quality and efficiency of risk assessment and discovery.

In the same KPMG-Forbes report, however, 66% of respondents noted that the regulatory environment as their biggest challenge to enhancing the role of the auditor:

A graph from Forbes and KPMG showing poll data from auditors on what is holding them back from integrating technology into their methodology, and from enhancing their roles.

Source: KPMG & Forbes, Audit 2025: The future is now

In light of this report, and the reality of auditors and accountants, we asked ourselves, what does this mean for not only public companies, but organizations everywhere that are still on the fence about integrating potentially groundbreaking technologies into their audit work?

What does this mean for the audit industry?

The use of technology in audits is not new. Currently, many of the firms governed by the AICPA’s regulations and standards  use technology in their audit approach to help augment their audits and enhance their judgement

In the PCAOB report, the board considered that “guidance or changes to the standard may be needed, given the increasing prevalence of technology-based tools and the increasing availability and use of information from sources external to the company, both in financial reporting and as audit evidence.” 

Beyond the admittance of such “technology-based tools” into public audit, this also speaks to the need to update standards and regulations that may inhibit their use. This is a major step for any regulator as, historically, audit standards have struggled to reconcile the advent of tools that may increase audit quality and efficiency with storied rules that attempt to define a “quality audit.”

A full meeting room discussing a presentation on the utility of technology to augment audits and enhance the judgement of auditors.

The AICPA and ICAEW (covering North America and England & Wales, respectively) are two major regulatory and oversight bodies that are both grappling with their relationship to new and upcoming technological advancements in accounting. AICPA, through CPA.com, are planning for the introduction of DAS (the Dynamic Audit Solution), a solution that looks to combine technology and traditional audit to bridge the gap between innovation and regulation. 

The PCAOB’s stance on technologically-augmented audits has given fintech innovators—and the firms that employ their technology—room to breathe, and to consider their relationship with the long-established audit industry.

So, where do we go from here?

The PCAOB’s Digital Technology Spotlight did more than open the door for technology in public audit, though: it outright listed the benefits of digitally-augmented risk assessment for auditors, firms, and businesses everywhere.

Reports conducted like the PCAOB and Audit 2025 show that technology-based audits reap huge benefits for firms and businesses. One potential benefit noted in the PCAOB report posits that these tools provide auditors with more persuasive evidence and confident findings in their risk assessments. This corresponds with a finding in the KPMG-Forbes report which showed that 62% of respondents want their auditor to articulate a clearer point of view on critical issues. 

“62% of respondents want their auditor to articulate a clearer point of view on critical issues.”

Other benefits mentioned include automating certain aspects of repetitive or less complex audit procedures like reconciling account balances to the general ledger, vouching sales transactions to subsequent cash receipts, or preparing confirmations to be sent to third parties. 

With the positives mounting, it’s understandable why organizations like the PCAOB felt it necessary to take a stand on this issue, and to formalize it into their standards (albeit off-handedly). However, it was also interesting to see the benefits specifically tied to public audit.

For example, in certain instances, the PCAOB Spotlight found that technology-based tools can aid auditors in analyzing data for indicators of management bias and the ability to provide auditors with information that could even suggest revisions to their planned audit response. 

Many more benefits weren’t mentioned in the PCAOB Spotlight, however. Like what automating recurring tasks can allow auditors to do, such as expanding their skill set, and allowing them more time to communicate with clients and stakeholders. Nor did it mention the marketing potential for firms utilizing AI and other hot-button technologies, from a branding perspective. 

Ultimately, this report is yet another example of the wider audit and accounting community recognizing the value of technology and embracing it. Given that, you may be wondering how you, your firm, or your business can begin to leverage technology for the betterment of your audits.

Thankfully, we have you covered.

How to integrate technology into your audits

With the addition of technology to your audit methodology also comes many changes to the way data is collected, analyzed and controlled in your firm, department, or business. This can seem daunting; the idea of implementing new policies and procedures and updating a methodology that has been so good to you for so long isn’t easy. 

But this change is good.

A man reviews financial data for a client's audit.

As mentioned, utilizing technology in your audit assessment has taken a long road to regulatory acceptance; technology moved too quickly to be tested and proven against the manual means of gathering and analyzing data — the person behind the calculator punching numbers worked, it seemed. However, now that both private and public regulatory boards are starting to recognize the power that using technology-based tools have in conducting audits, there is no reason not to accept the future of audit: technology.

The MindBridge Audit Approach works to empower auditors and finance teams with AI-enabled technology to automate tedious processes and provide deeper insight into financial data. 

From the planning, gathering, and analyzing stages, MindBridge’s technology allows users to analyze 100% of transactions to spot anomalies and potential risks faster. We appreciate the importance of understanding 100% of the process as well. 

It’s like cooking: you need a great recipe to make a great meal. If you go in blind, you may not like what comes out of the oven.

Audits should be treated with the same transparency, thoroughness, and detail. Which is why the MindBridge Audit Approach requires an understanding of your business and objectives, conducting preliminary risk assessments, evaluating internal controls, and building a plan for successful audit engagements.

Our Audit Approach Briefing Paper offers you a practical introduction to revamping your audit approach using MindBridge.

Tech-driven audit approach: What you need to know

Audit data going through technology

Deciding on the best audit approach isn’t a cookie-cutter process. While a long-standing relationship with a client or in-depth industry knowledge can give auditors a leg up, defining an effective audit approach requires careful consideration and planning for every engagement.

After all, your audit teams understand that every client is unique. So, deciding on the best ways to approach an audit will be too. Everything from the client’s objectives and business operations to known or unknown risks, internal controls, and much more will determine how you and your team go about any particular audit.

However, there’s something else you may need to think about that often goes unmentioned: the role of technology in your audit approach.

As this pandemic continues to propel widespread digital transformation and standards evolve to embrace new technologies, there is a growing need for auditors to consider updating their audit methodology too.

After all, a tech-driven audit approach can not only help auditors work more efficiently, but it may also allow them to deliver greater value to their clients. Whether it’s AI auditing software or other financial automation tools, technology serves to complement traditional auditing processes and lays a foundation for even better financial insights over time.

How does a tech-driven audit approach differ from a traditional audit?

A tech-driven audit approach considers the use of technology right from the get-go. It means there’s already some level of buy-in from management about auditing technologies, so your people are trained on the tech you’re using. You might even have data handling processes set up to fully leverage the capabilities of the new auditing solution.

While reaching this level of technological adoption might seem overwhelming, it shouldn’t have to be. With a little support on your side from the right vendor and a solid change management plan, you’ll be able to easily trial new technologies and reach higher levels of adoption at your own pace.

Then, as you go into new audit engagements over time, it’ll become second nature for you to think about the role of technology, how it will complement your existing methodologies, and how it may support your resources. From the planning stages right through to completion, you’ll consider how to automate manual tasks, get extra validation and assertion, and perhaps even uncover new insights that are buried in the mounds of client financial data.

In other words, implementing a tech-driven audit approach means you’re thinking ahead about how to best use the technology to deliver a quality audit. And you’re identifying the specific procedures or tasks where the auditing technology will be most beneficial.

What are the key factors to consider in a tech-driven audit approach?

Defining a tech-driven audit approach isn’t entirely different than a traditional one. It just requires another layer of consideration about how the technology fits into your methodologies. Below, we’ll explore what a tech-driven audit approach might look like and the areas where technological considerations can be made.

Understanding the client’s business and objectives

Whether you use technology in your audit or not, getting to know your client is a given. You’ll need to consider the industry they’re in, their business operations, their audit objectives, and other unique factors that pertain to the organization to achieve an effective assessment.

When defining objectives, it’s also important to consider those beyond the financial statement audits too. In fact, in a recent Deloitte report, 95% of the 351 c-suite, finance, and audit committee executives polled said that audits should provide additional value beyond an independent report on the historical financial information. Essentially, clients are looking for deeper insights, analysis, and recommendations.

When you implement a tech-driven audit approach, your audit team will be able to automate manual tasks and work more efficiently. That’ll allow you to assign extra resources to added-value services such as helping your client uncover new insights. Using technology, you’re essentially able to broaden your service offering and point your clients towards new opportunities that will positively impact their business.

At this stage, you’ll also need to understand what financial software your client is using and how you’re going to best access the information you need. With all this in mind, here are a few questions to ponder to map out your tech-driven audit:

Conducting the preliminary risk assessments

Identifying risks of material misstatement and their relative significance is an integral part of defining your audit approach. Because when you have a good understanding of the potential risks at play, you’re better able to plan for and execute a comprehensive and high-quality audit.

At this stage, auditors will look over balance sheets and income statements to spot any obvious inconsistencies. They might also dive into subledger data and run some preliminary testing on journal entries. The challenge here is that a traditional audit approach will leave so much data untouched and unexamined.

In a tech-driven audit approach, this is a key area where your audit technology can really make a difference. For instance, if you’re using an AI auditing platform, you’ll be able to test 100% of your client’s financial data and dive into accounts receivable and accounts payables subledgers  to see if any other anomalies stand out. This allows your team to conduct a deeper level of preliminary risk analysis and potentially uncover risks that weren’t on your radar.

Consider the following on risks assessment when building a tech-driven audit:

  • How can you use your auditing technology to get a clearer picture of the financial risks?
  • Does your technology allow you to filter results and dive into your client’s financial data to get a better understanding of those risks?
  • If you save time by automating risk assessment procedures, where else can you apply resources to offer your clients more value?

Evaluating the company’s internal controls

Evaluating the effectiveness of the company’s internal control over financial reporting is another critical component in your audit. Your auditors will likely perform a series of tests to validate how well internal controls are being upheld within the company.

In a tech-driven audit approach, the technology can either complement or replicate manual testing procedures to achieve higher levels of assurance. The technology might also point your team to riskier data that will then open up new conversations with your clients about potential weaknesses in internal controls.

For example, our AI auditing software automatically identifies control points to spot high-risk transaction data. The auditing team can also adjust these control points and use other capabilities within the platform to recreate traditional control testing models.

All of this will allow your team to move forward with greater confidence in the audit engagement while ensuring high levels of accuracy and diligence. Here’s more to think about:

  • Does your technology complement internal control testing or replicate manual processes?
  • What control testing models can you effectively carry out using your technology?
  • Can you adapt control points and testing to different clients and industries?

Building the plan for the audit engagement

Putting together the audit plan outlines why, how, and when you’re going to execute the audit procedures. These include everything from the planned nature, timing, and extent of risk assessment procedures, controls tests, substantive procedures, and any other relevant audit tasks.

When putting together the audit plan, an auditor will usually provide examples and reports that justify why certain procedures will be critical for the audit. In a tech-driven audit, it’s important to consider how your technology can back up your findings and assessments and help you build a more complete plan.

This could include exporting powerful visual graphs and data that support your audit plan and substantiate the details of specific procedures. Ultimately, this gives the client a snapshot view of where the auditors have identified risks and why certain procedures are warranted.

Here are some tech-focused questions to consider when creating your audit plan:

  • Does your technology allow you to easily export information to build a better audit plan?
  • Can you customize graphs or visuals to support the findings of your preliminary risk assessment?
  • Can you easily share information with your client to help steer conversations about the audit plan or other potential opportunities?

Are you ready to embrace a tech-driven audit approach?

The role of technology in audits is growing every day. More auditors are not only embracing new tools such as AI auditing software to support their audit strategies, but industry standards are also evolving to accommodate higher levels of automation in audit practices. Even the AICPA has announced the ‘Dynamic Audit Solution Initiative’, promising to create a new, innovative process for auditing using technology.

Auditors who stick with the traditional audit approach for fear of change are going to be left behind.

If you’re ready to implement a tech-driven audit approach using AI auditing software, know that the partner you choose can make all the difference. At MindBridge, we support our clients through the technology adoption process and offer value-add services that help you reach company-wide success.

Want to hear about what it’s like transitioning to a tech-driven audit approach? Read how Dixon Hughes Goodman LLP (DHG) embraces the power of AI to move their auditing practices forward.

Change management: What is it, and why is it important?

Change is scary. But with a little risk, a lot of planning, and some extra effort comes an opportunity for growth and reward. That’s what makes change management so important.

As a manager, department head, or executive how do you know when it’s time for change? How do you invoke change within an organization, and how do you get others on board?

Studies in what’s known as change management have shown that there is no one single answer to what most influences and leads to successful transformation initiatives.

In recent years, change management strategies have focused on soft factors like culture, leadership, and motivation. Each of these play a key role in a successful transition. But, for change to truly take hold, it’s also important to focus on the hard factors like duration, integrity, commitment, and effort.

In this article, we’ll discuss the definition of change management, address corporate responsibility during the process, what you and your team need to do to be successful, and show you the best ways to implement transition skills  and best practices into your organization and projects.

What is change management?

Change management is a big, daunting term, let alone task. It’s a rather condensed way of explaining the process when an organization takes on projects or initiatives to improve performance, address key issues, and seize new opportunities. These endeavors may require companies to shift their methodologies, roles, organizational structures, and perhaps even the types of and uses for technology.

Successful transitions dependent upon four core principles. These principles are important to understand before undertaking a large shift in processes or anything else, no matter what the context:

  1. Understanding change – Understand the questions that need to be asked, the why, and the “ins and outs” of the change.
  2. Planning change – This looks different for every organization, but can include achieving high-level sponsorship, identifying stakeholder involvement, and motivational techniques and establishing a team responsible for managing the change.
  3. Implementing change – Roll out the change, ensure everyone has been trained on the new process, technology, etc, knows what their role is and the importance they play in affecting change.
  4. Communicating change – Tools to help everyone understand why the change is happening, the positive effects that will come and the steps to required to ensure success.

Now, that’s just a brief overview. Here’s an in-depth review of these four principles, and how each of them help you work toward successfully-managed change in your organization.

Understanding change management, implementing best practices

Understanding change management begins by understanding its three important levels

According to Prosci, a change management solution, the three levels are: 

  • Individual 
  • Organizational 
  • Enterprise 

In this model, enterprise change management is therefore dependent on both successful individual change management and organizational change management. Each of these aspects build onto one another to enact lasting, ingrained change across your department, team, or organization.

Individual change management – This will require tapping into the mind of your employees. It requires understanding how people experience change and what they need to handle it successfully, and thrive post-implementation. 

ADKAR is a great acronym created by Prosci founder Jeff Hiatt that represents the five tangible and concrete outcomes required for individual staff. 

The acronym stands for:

A – Awareness of the need for change
D – Desire to support the change
K – Knowledge of how to change
A – Ability to demonstrate skill and behaviors
R – Reinforcement to make the change stick

A – Awareness of the need for change
D – Desire to support the change
K – Knowledge of how to change
A – Ability to demonstrate skill and behaviors
R – Reinforcement to make the change stick

For success at the individual level of change management, companies need to be able to communicate these five ADKAR elements to their employees in order for them to understand why the necessity of the change, where the change is coming from, how they can support the change, and how they will be impacted from it and the benefits the change represents.

Organizational change management – These are the steps and actions taken at a project level to support the individuals impacted by the ongoing change process. It starts by identifying the groups or people who will need to change, and in what ways. Once identified, successful organizational change management requires a customized plan for each individual to ensure that they receive the awareness, leadership, and training they need to be successful going forward.

Individual employees are at the center of successful change management processes; their success or failure will determine the success or failure of the processes that are changing organizationally. 

Enterprise change management – This is the ‘final’ level of change management and essentially means that effective change management is embedded into your organization’s roles, structures, processes and leadership competencies. When it comes to enterprise change management, newly-implemented processes are consistently applied to initiatives, leaders will have the skills to guide their teams through the change, and staff will know what to ask for to be successful.

When embedded into your structure, enterprise change management capability means that individuals embrace change more effectively, and the organization itself is able to respond faster to market changes, embrace strategic initiatives, and adopt new technology much more rapidly. 

Now that we’ve established the benefits and principles of managing change, how does it work, exactly?

Learn more about how MindBridge can help you sample less, and discover more.

A – Awareness of the need for change
D – Desire to support the change
K – Knowledge of how to change
A – Ability to demonstrate skill and behaviors
R – Reinforcement to make the change stick

How does change management work?

Change management relies on cohesive effort between management and employees to lead a successful transition. If leadership is not able to create a solid plan, and if employees are unable to “embrace and learn a new way of working, the initiative will fail.”

Take transitioning financial technologies and processes, for example. As technology improves and data sets increase, financial professionals and their departments are feeling the pressure to do more in less time. The trouble comes when the quality of work suffers as a result of the attempt to marry efficiency with quality. This is especially true of risk management and discovery. 

Platforms like MindBridge help organizations discover the known and unknown risk in their financial data sets. They can analyze 100% of transactions, provide insights to better communicate analysis with stakeholders, and ultimately produce higher quality work in a fraction of the time.

But, all of this requires a solid, well-executed change management plan. While new technologies are increasingly turnkey, unlocking their full potential takes buy-in at all levels of an organization, and investment in the principles of change. 

At MindBridge, we strive to enable our customers with the tools, resources, and support they need to successfully transition their financial processes. But, for the organizations themselves, there is still work to do. 

When it comes to changing any process or technology, the status quo is always simpler. But, those who are truly committed to growth and the future of their organizations aren’t content with the easy way out.

By integrating proper change management in the deployment process, companies and departments will be able to get employees on board and involved in the process to ensure as smooth a transition as possible. There will be headaches, and you may be uncomfortable. But that’s how change management works. If it were easy, everyone would be successful.

How to plan for transition

To help plan for the transition process, Harvard Business Review discusses the hard factors that need to be discussed more (along with soft factors like culture, leadership and motivation) when implementing change management strategies. These factors allow companies to measure, communicate and influence elements quickly to affect transformation. Before they start, companies need to understand the time allotted to complete the change, the number of people required to execute it, and the financial results that intended actions are expected to achieve. 

To help lead a successful change management operation, there are four specific factors companies can use to determine the outcome and create a path to success:

Duration – The length of time it will take until the change program is complete, and the length of time between reviews built to measure success

Integrity – The ability to select the best staff to lead the program. Look for problem solving skills, results & methodological oriented individuals

Commitment – The level of enthusiasm and resilence  from both management and employees to affect this change

Effort – Calculate the amount of time and effort beyond existing responsibilities, resources that are over stretched may compromise the change program or normal operations.

For future transitions

Change management requires focus, organization, and motivation. Not everyone will be willing to accept and help to invoke this change at the same time. The source of resistance is often individuals or groups, but it can also be systems or processes that are outdated or that fail to fit current business conditions.

Ways to mitigate these obstacles include rewarding flexibility, creating role models for change and repeating the key messages and goals of the project throughout the entire change program.

This is where the message of the “bigger picture” becomes crucial, if employees feel separated from the goals they will question their motivations. But by showing the concrete benefits of change for them, their department, and the organization more largely, you can demonstrate how all this added effort will lead to gains in the future.

For more on creating an effective transition strategy, watch our webinar, Change management 101: Strategies for leading change when adopting AI.

For more articles and resources like this one, visit our blog.

Ready to embrace AI to strengthen your remote audit?

Contact our team to schedule a demo of the MindBridge risk discovery platform.