1 | P a g e

Dear Members:

One of the Chapter’s premier events will be held on May 5, 2017 at the United Federation of Teachers (UFT). The Annual Audit Seminar attracts 200-300 of your internal audit peers in a one day event. This year’s theme is Risk and Internal Audit. With two keynote presentations and three separate tracks, there is something for everyone. Please take a look at the program details. I look forward to seeing you there. After the seminar on May 5, 2017, at 4:30pm we will be holding our Annual Meeting to elect the Executive Committee for the upcoming year and several Board of Governors. The event is free and will include light refreshments. We continue to hold monthly Chief Audit Executive Roundtables to provide engaging conversation. If you are Chief Audit Executive and would like to participate in one of these meetings, please notify Stacey.Johnson@bnymellon.com. Thanks to all that attended the February 17th workshop at the Hard Rock Café. It was a very successful event. The last two workshops for the Chapter year are on March 24th and April 12th. Both events will be held at Baruch College. We look forward to seeing you.

Sincerely,

Alex Cacanando

NY Chapter President of the Institute of Internal Auditors

Platinum Chapter

MARCH 2017 NY IIA Chapter Website Link

Knowledge Through Sharing and Learning

News (Click links here to go directly to areas)

Events and Workshops 3 - 11

Certification Corner 12 – 14

Member News 15 - 19

2 | P a g e

In This Issue

Message/Events/Information Page (follow link)

President’s Message

Upcoming Events and Workshops

Nominations for 2017-2018 BOG and Executive Committee

March 24, 2017 workshop

April 12, 2017 workshop

June 15, 2017 training offered by Skytop Strategies

New Legal and Regulatory Terrain for Risk Management

1

3

4

5

9

11

Certification Corner

CIA Part 3 Exam Prep – Special Course Offering

CIA Learning System

IIA Certification Discount – March only

12

13

14

Member News

IIA NY Chapter – New Certified Members

IIA Announcements

Government Audit Conference – Attendee Reflection

Information on the NY Chapter IIA App

15

16

17

19

3 | P a g e

Upcoming Events and Workshops

March 24, 2017 (Baruch)

(AM) Hot Topics and Digital Issues

Presented by Ernst & Young LLP

Luncheon: Working with Regulators

Presented by Scott Kenney, Moody’s

(PM) ERM Risk Governance

Presented by Michael Lynn, Vice Chair Global

IT Guidance Committee for IIA

(PM) “New York DFS Part 504 Regulation - Path

to Certification” JUST ADDED

Presented by:

Gokul Kallambunathil and Mark Scarmozzino,

CAMS Director of Business Development,

ACA Telavance

April 12, 2017 (Baruch) DATE CHANGE

NOTE WORKSHOP TOPICS HAVE

CHANGED

(AM) Cybersecurity and Construction Audit

Presented by Jim Sidoti, Experis

Luncheon: Using qualitative research techniques

to structure an internal audit

Presented by: Dr. Roger Mayer, SUNY

College at Old Westbury

(PM) Data Analytics

Presented by ACL ------------------------------------------------------

For more information, contact either:

Ellen Issacs

ellenisaacs.iia@gmail.com

Alex Cacanando 917.853.6369

Alex.Cacanando@Protiviti.com

April 20, 2017 (Baruch)

NY Metro Area Audit Executive Summit

Unique and innovative full day event

THIS EVENT IS EXCLUSIVELY FOR

CHIEF AUDIT EXECUTIVES

Contact Alex Cacanando for more information

(Alex.Cacanando@Protiviti.com)

May 5, 2017 – SAVE THE DATE

43rd Annual Audit Seminar

(United Federation of Teachers (UFT))

THEME: RISK AND INTERNAL AUDIT

RESPONSIBILITIES

Additional Details available soon

May 5, 2017

Annual Membership Meeting to elect officers

of the NY Chapter of IIA

Time: 4:30pm

Place: (United Federation of Teachers

(UFT))

Cost: FREE for IIA members

----------------------------------------------------

Note: Specific Speakers and Topics Subject to

change

4 | P a g e

Nominations for Officers and Governors To be elected at Annual Membership Meeting

May 5, 2017 5:30pm

United Federation of Teachers 52 Broadway, NYC

Executive Committee

For the Chapter Year 2017 – 2018 President – Scott Kenney

Executive Vice President – Uday Gulvadi

VP of Professional Development – Ellen Issacs

VP of Professional Services – Matt Meisel

VP & Secretary – VACANT

VP & Treasurer – Carlos Garcia

Board of Governors

Term – 2017 – 2020 Paulette Mullings Bradnock

John Fitzpatrick

Laura Lowenhaupt

Jeff Super

Raquel Marin-Oquendo

***There will be a complimentary cocktail hour for all members

after the May 5, 2017 Annual Audit Seminar where we will hold

the elections for the upcoming Chapter Year. Please join us.

5 | P a g e

New York Chapter: Institute of Internal Auditors

Announcing our March 24, 2017 Workshop:

REGISTRATION IS OPEN -March 24 Workshop registration link

Date: Friday, March 24, 2017

Time: 8:30 AM – 4:30 PM Location: Baruch College

55 Lexington Avenue, NYC

Morning Workshop - 8:30 am - 11:30am (3 CPE)

Presenter/Speaker – David Kahan, Senior Manager, Ernst & Young LLP

Topic – Digital Innovation in the Financial Services Sector and the Role Internal Audit Plays

What is Digital and how is it changing the Financial Services sector, and what does it mean to

Internal Audit functions?

o Agenda:

What is FinTech?

Trends and areas of Innovation by Sector

Forming an IA Approach to Digital

Internal Audits Role

David is a Senior Manager within the Advisory Services practice of Ernst & Young LLP’s Financial

Services Office. He has over twelve years of financial services experience, specifically within the

banking and capital markets and insurance industries. He has served clients in a multitude of areas

including risk management and regulatory compliance focused within the internal audit domain. He

holds a BS in Management Information Systems and Finance from Binghamton University.

Nikhil Lele is a Principal in EY's Financial Services Nikhil is a Principal in EY's Financial Services

Office, and is the Strategic Insights and FinTech Strategy leader in the Americas FSO. In his role, Nikhil

leads EY's business strategy, innovation strategy, strategic analytics solutions, and FinTech and disruptive

innovation solutions serving clients across the banking, capital markets, wealth and asset management,

and insurance sectors. Nikhil holds an MBA from The Wharton School of the University of Pennsylvania

and earned his BS in MIS and Computer Science from The College of New Jersey.

6 | P a g e

Please note: Lunch is served from 11:30am - 12:30pm

Luncheon Workshop Presentation: 12:30pm – 1:30pm (1 CPE)

Presenter: Scott Kenney, Senior Vice President and General Auditor of Moody’s Corporation

Topic: Working with Regulators

The PCAOB, created by the Sarbanes-Oxley (SOX) Act of 2002, oversees the auditors of public

companies in order to protect the interests of investors and further the public interest in the preparation

of informative, fair, and independent audit reports. Mr. Powers will focus on in SOX IT controls, their

importance and common issues.

Overview of Discussion

a. Overview/mission of PCAOB

b. Importance of Information Technology General Controls (ITGCs)

c. Audit issues recognized by IT audit inspectors

d. How IT auditors can assist

Scott Kenney is Senior Vice President and General Auditor of Moody’s Corporation. Mr. Kenney reports

jointly to the Chairman of the Audit Committee of Moody’s Corporation and Moody’s Chief Executive

Officer. Mr. Kenney was appointed General Auditor in March 2015. In this role he is responsible for

overseeing Moody’s Global Internal Audit function, including providing an independent oversight

function that evaluates the processes and controls over the organization’s financial, technology, ratings

and operational activities.

Prior to joining Moody’s, Mr. Kenney was a Managing Director at Deloitte from 2008 to 2015 serving

as leader to several internal audit departments, external financial statement audits, Sarbanes-Oxley

compliance efforts and large regulatory compliance engagements. He served in a variety of positions at

Deloitte from 1997 to 2015, served as Global Director of Compliance for Take Two Interactive during

2005 and Internal Auditor at Staff Builders Home Health Care from 1995-1997.

Mr. Kenney currently serves on the Board of Governors for the New York Institute of Internal Auditors.

He has served as President, Executive Vice President and various Vice President positions within the

New York Chapter over the past 10 years.

Mr. Kenney holds a BS in Accounting from the University of Scranton and is a Certified Public

Accountant licensed in New York. Mr. Kenney is also a Certified Information Systems Auditor (ISACA),

Certified Informational Technology Professional (AICPA), Certified in Risk and Information Systems

Controls and a Chartered Global Management Accountant.

7 | P a g e

Afternoon Workshop: 1:30pm – 3:00pm (1.5 CPE)

Presenter: Michael Lynn, Vice Chair Global IT Guidance Committee for the IIA

Topic: ERM Risk Governance – Appetite, Aggregation and Acceptance Challenges

A case study on IT related risks

This session is intended to give an overview of ERM models and specific challenges related to the

establishment of ERM governance that require internal audit awareness and focus. Some very simple

enterprise level concepts underlying risk governance are not so easy to actually adopt and still maturing

in most companies. We also use a quick case study to flesh out some common risk governance and

acceptance issues for IT related risks.

Context – What is the current state of ERM? Drivers -New COSO ERM Framework; ISO 31000;

Many Regulators and expectation of rating agencies as part of good Corporate Governance;

Required by IIA standard 2120

Purpose of Presentation – summarize some key audit challenges in reviewing ERM and its key

elements; where can audit champion or add value in reviewing their firm’s risk management

process; audit’s role and what it should or should not do related to risk management activities

Preliminary look at case study and initial observations

What is Risk Governance?

Risk Appetite… so easy to define?

Aggregation and Disaggregation of Risk

Risk Acceptance and challenges

Who owns IT risk?

A case study

Key Success Factors for an effective ERM function… culture, culture, culture

Michael Lynn is vice chair of the Institute of Internal Auditors (IIA) newly formed global IT Guidance

Committee and past vice chair of the IIA’s global professional issues committee (providing guidance and

preferred practices for the internal audit profession). In 2016, Mike established ARG Oversight LLC

(an Audit, Risk and Governance consulting and toolset venture), after leaving AIG in 2015 where he was

a Managing Director with audit oversight for IT Strategy, Security, Risk, Compliance and Infrastructure.

He led the IIA’s response to the revised COSO framework in 2012 and led a work stream to formulate

the IIA’s response to the new COSO ERM exposure draft in 2016 and was part of a high level work

team to revise the professional standards and their framework for the IIA.

He left the AXA Group in 2013, after spending over 20 years in various Audit, Risk Management and

Compliance leadership roles, including a three-year assignment in Paris where he led the Global Internal

Audit function. His last role was Senior Vice President of AXA Technologies where he established and

headed up the internal audit, risk management and SOX/Compliance functions for IT Infrastructure

operations. Mike has spent over 30 years in audit and risk management including 7 years at Ernst &

Young and several years as Deputy Director for Dun & Bradstreet. Michael obtained his BBA in

Accounting and an MBA in Finance, both from Pace University, and has earned a CPA license and

has a CRMA from the IIA.

8 | P a g e

Afternoon Workshop: 3:00pm- 4:30 (1.5 CPE)

Presenter: Gokul Kallambunathil and Mark Scarmozzino,

CAMS Director of Business Development,

ACA Telavance

Topic: “New York DFS Part 504 Regulation - Path to Certification”

On June 30, 2016, the New York State Department of Financial Services (“DFS”) issued a Final Rule

(Regulation 504) requiring regulated institutions to maintain “Transaction Monitoring and Filtering

Programs” The Final Rule applies to all banks, trust companies, private banks, savings banks, and

savings and loan associations chartered under New York Banking Law and all New York-licensed

branches and agencies of foreign banks. Sanctions Filtering Program scope is limited to the detection

of transactions prohibited by Office of Foreign Assets Control (“OFAC”) sanctions regulations.

Gokul Kalambunathil is a Senior Vice President at ACA Telavance, and is a founding Partner &

Member of the Senior Leadership Team at the firm. Gokul had direct responsibility for working with

existing clients of ACA Telavance.

He has over 23 years of progressive experience in Financial Services and Information Technology, and

is a Certified Anti Money Laundering Specialist (“CAMS”). Gokul has a wide range of experience in

the financial services domain, including Regulatory Compliance Advisory services, Information

Technology, Business Analysis, and Data Modeling & Analytics. Gokul has deep expertise in

compliance with regulations such as the Bank Secrecy Act & USA Patriot Act and the Office or

Foreign Assets Control (“OFAC”). Gokul has a Master's degree in Computer Applications (MCA)

from Bharathiar University, Coimbatore, India.

Mark Scarmozzino is the Director of Business Development for ACA Telavance, and has over 30 years

of global banking and financial services industry experience, including extensive expertise in

Enterprise Risk Management, BSA/AML & Global Sanctions compliance, and Fraud detection,

mitigation and risk management.

Mark is certified as an Anti-Money Laundering Specialist (“CAMS”) by the Association of Certified

Anti-Money Laundering Specialists (“ACAMS”), and has extensive experience in software tools and

technology for the financial services industry. He is a frequent speaker at industry trade associations

and compliance round table sessions.

CPEs Available:

7 credits for full day workshop

3 credits for half-day workshop

1 credit for luncheon presentation

Registration Fees: IIA Members

Full Day, IIA Member: $175

Luncheon Only - Member: $60

Half day including Lunch - Member: $90

Half day without Lunch, IIA Member:

$80

Registration Fees: Non- Members

Full Day, Non-Member: $195

Luncheon Only Non-Member: $70

Half day with Lunch Non-Member: $100

Half day without Lunch Non-Member

$90

9 | P a g e

REGISTRATION WILL BE AVAILABLE SOON

MEMBERS WILL RECEIVE NOTIFICATION WHEN REGISTRATION IS OPEN Date: Wednesday, April 12, 2017 Time: 8:30 AM – 4:30 PM

Location: Baruch College 55 Lexington Avenue, NYC

Morning Workshop - 8:30 am - 11:30am (3 CPE)

Presenter/Speaker – Jim Sidoti, Experis

Topic – CyberSecurity and Construction Audit

Sophisticated hackers exploit vulnerabilities to steal information and money and are developing capabilities to disrupt, destroy, or threaten the delivery of essential services. In this session, you will learn about cybersecurity and the importance of protecting your company against any vulnerabilities to a wide range of risk from both physical and cyber threats and hazards. The session on construction auditing will cover mitigating financial risk and ensuring construction dollars are spent wisely by ensuring that appropriate controls are established over rigorous project management and a risk management program. This session will also cover how to effectively establish audit coverage to achieve "risk based" cost avoidance and cost recovery results and will explore types of fraud common to construction. Jim Sidoti is a Business Development Manager at Experis™, the global leader in professional resourcing and project-based solutions. Experis accelerates organizations' growth by intensely attracting, assessing and placing specialized expertise in IT, Finance and Engineering to precisely deliver in-demand talent for mission-critical positions and projects. Please note: Lunch is served from 11:30am - 12:30pm

Luncheon Workshop Presentation: 12:30pm – 1:30pm (1 CPE) Presenter: Dr. Roger Mayer, SUNY College at Old Westbury

Topic: Using qualitative research techniques to structure an internal audit

10 | P a g e

Dr. Roger Mayer is an assistant professor of accounting at the SUNY College at Old Westbury where he teaches advanced auditing at the graduate MS in Accounting program. He has over 15 year experience in internal auditing including seven years at the level of director of director of internal audit. Dr. Mayer has presented at over 20 professional and research symposiums including sessions sponsored by the IIA, ACL, Healthcare Financial Management Association (HFMA), and the American Accounting Association. He has published in multiple academic and professional journals on topics related to governance, audit, and healthcare. He was co-chair of the HFMA Audit and Compliance Manhattan group in 2010 and 2011.

Afternoon Workshop: 1:30pm – 4:30pm (3 CPE) Presenter: ACL - Presenter to be determined Topic: Data Analytics The session will cover the importance of data preparation and presentation techniques using ACL with the goal of adding value to your organization in business problem-solving with real-world analysis to provide the most relevant analyses for management’s use. The session will also discuss the knowledge and skills necessary for data analysis.

CPEs Available:

7 credits for full day workshop 3 credits for half-day workshop 1 credit for luncheon presentation

Registration Fees: IIA Members

Full Day, IIA Member: $175 Luncheon Only - Member: $60 Half day including Lunch - Member: $90

Half day without Lunch, IIA Member: $80

Registration Fees: Non- Members

Full Day, Non-Member: $195

Luncheon Only Non-Member: $70

Half day with Lunch Non-Member: $100

Half day without Lunch Non-Member $90

11 | P a g e

UPCOMING TRAINING New Legal and Regulatory Terrain for Risk Management

Presented by: Skytop Strategies

Date: June 15, 2017

Where: BARUCH COLLEGE, 55 LEXINGTON AVE. NEW YORK, NY

Click the following link for detail agenda and more information, including registration

Training - new legal and regulatory terrain

12 | P a g e

CERTIFICATION CORNER

CERTIFIED INTERNAL AUDITOR Earn the most sought-after credential in the Global Internal

Audit Profession!

Pass the Certified Internal Auditor Exam – Part 3

A comprehensive training class is being offered:

WHEN: April 1, 8 and 22, 2017

LOCATION: TBD

This course will expand your internal audit knowledge and prepare you for the Certified Internal Auditor (CIA) exam.

For more details email: passcia@msn.com

13 | P a g e

Certified Internal Auditor Exam

Prepare to Pass The IIA's CIA Learning System® Are you looking for the best way to prepare for the Certified Internal Auditor® (CIA®) exam?

The Institute of Internal Auditors’ CIA Learning System teaches the entire global CIA exam

syllabus. Our study tools offer customization, convenience and mobility so you can make the

most of your valuable study time. Begin your studies today!

Choose the study option that best suits your schedule and study preferences.

Create a customized SmartStudy™ plan based on your areas of strength and weakness.

Learn the entire global CIA exam syllabus in a concise and easy-to-understand format.

Travel light and access your reading materials via your e-reader device.

Study on-the-go with interactive online study tools that are optimized for your mobile

device.

Click here for more on The IIA CIA learning system. CIA learning For additional questions or inquiries, please reach out to the VP & Secretary – Tracey Thomas at tracey.thomas@citi.com

The IIA is also offering discount as follows:

Certified Internal Auditor (CIA) Exam® Practice Questions

See link for further details: CIA Exam Practice Questions Discount

Order your copy today!

14 | P a g e

IIA Certification Discounts in March

Train More. Gain More. Save More in March. Seminar, OnDemand & On-Site Group Training Offers

At The IIA, we’re the experts on delivering the latest core competency, emerging issues, and leadership skills training.

For a limited time, The IIA is offering three ways to save on 2017 training booked in March. Whether it’s sharpening individual skills or tackling team development, take advantage of these limited time offers.

Follow this link for more information on the following: IIA training

New York courses offered April 4 to 7 at MetroTek Training Facility

15 | P a g e

MEMBER NEWS

In this section of the IIA NY chapter newsletter, we would like to highlight the members of our chapter who have achieved new IIA certifications, news from our members and

any other exciting events

IIA NY Chapter New Certified Members

Congratulations to the following members who have completed the requirements for the certifications listed in February 2017

If you have any questions, please reach out to our Certification Committee Chair

Tracey Thomas at Tracey.Thomas@citi.com

Svitlana Pasquale

Jiyao Li

Certified Internal Auditor (CIA)

Ling Sien Siew

Conall McGonagle

Certification in Risk Management Assurance

(CRMA)

Lijun Wang

Certified Financial Services Auditor (CFSA)

16 | P a g e

FROM THE IIA – ANNOUNCEMENTS

Available now on the IIA website are the following:

** New Standards Enhancements Now in Effect

In accordance with The IIA’s continued effort to meet the demands of today’s business environment, the

International Standards for the Professional Practice of Internal Auditing continue to evolve. Practitioners

around the world weighed in on proposed changes to the Standards in 2016, and the resulting changes and

updates became effective on Jan. 1, 2017.

The key changes include: The inclusion of two new standards. Alignment of the Standards to the Core Principles. Updates to existing standards.

Implementation Guides are available to help internal auditors conform to the updated Standards.

Learn more about the changes and ensure your guidance library is up-to-date.

1. Brexit, Trump Victories Signal Changing Risk Landscape

The outcomes of the Brexit and U.S. presidential elections reflected deep dissatisfaction with government

and a profound desire for change by a significant part of the voting public. Simply put, change affects risk.

Read the full InternalAuditor.org blog post from IIA President and CEO Richard Chambers.

**NEW! COSO Certificate program Is Now On Demand

The IIA is now offering two options to earn the COSO Internal Control Certification. You can choose a

blend of self-paced and live, interactive seminar training or a convenient, on-demand learning format. Both

options offer you a unique opportunity to develop your expertise in designing, implementing, and

monitoring a system of internal control.

Click here for more information - https://na.theiia.org/training/Pages/COSO-Certificate.aspx

** Steps for internal audit to evaluate corporate culture

Identifying the corporate culture, then quantifying and measuring are key steps for internal auditors to

mitigate conduct risk, according to CEB. Measuring corporate culture is a challenge, with CEB data

showing only 37% of audit teams review culture as part of existing engagements.

CEB Blogs (11/29)

17 | P a g e

IIA Member Reflection on Government Audit Conference

On Friday, January 27, 2017, the Institute of Internal Auditors New York Chapter held is 6th Annual Government

Audit Conference at the Hotel Pennsylvania, on the Sky Top 18th Floor, in midtown Manhattan. The conference

atmosphere was relaxed, the event was scheduled from 8:30am to 4:30pm, and attendees were eligible to receive

7 CPEs.

The first speaker was Angela Witzany, IIA Global Chairman of the Board and Head of Internal Audit at

Sparkassen Versicherung AG, in Vienna Austria. Her topic was “Audit Never Sleeps”. She started off her

presentation showing a video regarding the 75th IIA International Conference, held in New York City in 2016.

She then discussed the IIA, its history and her experiences as Global Chairman, where she followed up by

encouraging everyone to volunteer and become involved with the IIA. She then turned to her role as an internal

auditor in her organization, discussing her trials and the obstacles global internal auditors face in this day and age.

Ms. Witzany discussed topics such as various types of risk, the opportunity to add value, and a mission for internal

auditing. She ended by discussing internal auditors as being trusted advisors and the top skills needed to be

successful: analytical/critical thinking, communication, and accounting.

Michael Fritz of Deloitte was the speaker immediately following Angela Witzany. Mr. Fritz shared being an

auditor for the MTA and his session topic was entitled “Auditing Big Data”. Mr. Fritz included a quick review

of audit tools from the comptometor to the automated programs we use today, even showing videos regarding

Deloitte technology and artificial intelligence in use. He stated that professional judgment and skeptism will

never be replaced by technology but zeroed in on the important chances and risks technology has brought to the

profession.

The third and last morning speaker was Alla Kleytman, of Con Edison. Her topic was “Auditing Culture”. Ms.

Kletman defined corporate culture and discussed the indignities that lack of proper culture contributes towards.

She discussed the components of a great corporate culture, soft controls, and internal audits role in cultivating

corporate culture through evaluation.

After Ms. Kletman, we broke for lunch allowing reflection, discussion, and networking.

Following the lunch period, Stephen Morgan discussed Emerging Issues in the Public Sector. He discussed how

there were not many books regarding performance auditing but noted that professional organizations provided

good guides, as did the country of Canada. He further discussed the roles of auditors in auditing and the need to

review the assumption of emerging issues.

The last speaker of the day was Milan Shah, the Director of Internal Audit at ConEdison, and his topic was Critical

Thinking. His presentation encompassed lots of inspirational slides, videos and an interactive exercise showing

how people think differently. He impressed upon everyone in attendance how critical thinking skills can be

improved and discussed the many obstacles and impediments to mastering the skill of critical thinking.

The conference was very interesting with an enormous amount of valuable information was shared. The benefit

individuals perceived in the information was seen in how people spent time taking pictures of slides used, trying

to capture necessary information for continued professional development.

18 | P a g e

19 | P a g e

REMINDER – THE NY CHAPTER IIA APP FOR

IOS AND ANDROID DEVICES AND THROUGH

GOOGLE PLAY IS AVAILABLE!!!

YOU CAN ACCESS ALL NEW YORK IIA CHAPTER

INFORMATION ON YOUR HANDHELD DEVICES. JUST

DOWNLOAD THE APP BY SEARCHING FOR THE “NEW YORK

IIA”. LINKS ARE PROVIDED BELOW FOR YOUR REFERENCE.

YOU CAN FIND INFORMATION RELATED TO:

1. WORKSHOPS

2. TRAINING AND EVENTS

3. JOB POSTINGS

4. ARTICLES

5. NEWSLETTERS

https://itunes.apple.com/us/app/new-york-iia/id1083422085?mt=8

https://play.google.com/store/apps/details?id=com.goodbarber.iianychapter&hl=en