Digital audit: the future is already here and is going to stay
Published on Dec 3, 2020

Technology increased companies’ resilience and helped businesses survive the shock of the first months of the current crisis. But after those long months of lingering in the shadow of the global epidemic we can see that accelerated digital transformation has had its costs.

The rapid pace of new digital tool deployments changed the way companies organize internal and external processes and sometimes, because they were carried out on an emergency basis, it all happened too fast and caused serious problems.
The digitization of some areas has accelerated, but others are still waiting for transformation.
One of the areas that must go digital is the audit process. Many companies are aware of this, but the digitization of this complex area should be carried out based on specific assumptions and expected functionalities.
In this article, I want to present the audit trends of the near future. I will also show the possibilities offered by currently available IT solutions in this area.

The digital explosion

There is ample evidence that the digital transformation has accelerated. At C&F, we conducted a survey among companies and found out that more than half of them have implemented new digital tools due to the pandemic: apps to maintain business continuity (sales, logistics, customer support), tools and apps allowing for automatic work to save time and resources, tools and solutions allowing for digitizing further business areas.
(You can learn more about our study in the C&F Report “How companies deal with COVID-19? A wake-up call for digital transformation”).
So, the obvious aspects that affect business profitability and continuity were quickly digitized, which was justified by the needs that had to be met in the short term.
But at this early stage of the crisis hardly anyone took the auditing processes into account. And they are key to long-term profitability.

The landscape of how companies operate is changing as digitization continues. At the same time, sudden changes in the operation of companies entail the need for changes in other areas. An example of this is the rapid deployment of digital work environments that made remote work possible. This move contributed to maintaining the business continuity of many companies and keeping jobs. However, in many cases it caused serious security problems.

We weren’t prepared

As many as 60% of the managers who participated in our survey considered cyber security and data protection to be among the most important areas exposed to risks. And a Bitdefender study revealed that half of infosec specialists admitted that their companies had no contingency plan for any situation similar to the COVID-19 pandemic and a whopping 86% of them reported an increase in the occurrence of cyberattacks in recent time!

Audit of the future: a serious task

At the level of IT security, we will certainly adapt quickly. A much more serious task is faced by the audit, until recently a process in which technology did not play a large part.
The spring round of audits in companies this year was different than any other. Auditors — both external and internal — faced the need to carry out their tasks under unprecedented conditions of lockdowns, remote work, closed offices and limited access to documents.

The audit of the future will be digital. This will be forced by the current situation resulting from the consequences that the coronavirus epidemic has brought to business. After all, companies are undergoing major changes, someone has to effectively monitor the situation, assess risks and ensure that the company’s operations comply with the regulations (especially in the currently very dynamic world of the pharmaceutical industry).

Discussing the trends that will guide the development of audit in the near future, Gartner indicated that further developments in this area will have to take into account dynamic risk coverage, business risk partnership, built-in risk management, digital auditing (remote, continuous or forward-looking audits) and expertise-driven operational structure.

What I would add is that audit must be integrated into fully coordinated governance, risk and compliance (GRC) activities and information for all levels in any organization. Only when we are able to connect different dots in the organization in the area of audit, compliance and risk management, can we have the full spectrum of additional benefits, like a single version of the truth or process optimization.

Internal audit: what’s hot?

Every year, I look forward to the next edition of Deloitte’s Hot Topics for IT Internal Audit in Financial Services. The list of issues highlighted by Deloitte usually perfectly reflects the business reality. Its adequacy is particularly impressive in this recent edition:

1. Cyber Security
2. Operational Resilience
3. Cloud Governance and Security
4. Extended Enterprise Risk Management
5. Transformation and Change Assurance
6. Digital Risk
7. Data Governance
8. IT Strategy and Governance
9. Payments
10. System Development

It is also difficult to disagree with the opinion presented by Deloitte:

A deeper digital transformation and the use of data-driven auditing will not be merely required by Audit Committees as a nice-to-have, but in our view would be core for the development of a resilient and a high functioning function of the future.

We are already there!

What may be surprising is that digital tools to carry out digital audits and manage governance, risk and compliance already exist.

Their functionalities include, or rather should include (among others):

  • instant reports to manage all audit processes
  • tools designed to ensure that compliance needs are met
  • efficient evidence gathering
  • document approval and information flow as part of a robust workflow process
  • centralized company risk management with instant reporting
  • quality management
  • personal information (GDPR) management to ensure compliance with the GDPR

If you haven’t done so already, it’s worth starting the process of moving your audit into the digital future. Technologies and ready solutions are at hand. As an expert experienced in this field, I would be happy to elaborate on this topic if you would like to discuss it.

Written by

Jan Anisimowicz

Go To Expert Spotlight Page

This Article Tags

All Tags

Our Clients Success Stories

How during the pandemic we optimized vaccine production and delivery process?

During the pandemic, our client, a global pharmaceutical leader, needed to optimise its COVID-19 vaccine production and delivery processes. Our client had to rapidly implement business applications in order to increase production efficiency.

How we boosted a COVID-19 vaccine production by digitally enhancing manufacturing operations

In response to an unprecedented global pandemic, our client – one of the pharma industry leaders- set out to develop, test, mass produce and organize the global distribution of a COVID-19 vaccine.

How to manage national resources to fight COVID-19 in the cloud?

Availability of ICUs is one of the key factors to keep the death toll as low as possible. ICU-M has been one of the reasons Germany has been managing the pandemic relatively well, keeping the number of deaths per 1M population at the low end compared with other EU states.

Bringing a global pharma company out of the dark via a Single Source of Truth (SSOT)

To get the full picture of the global market situation, companies use various sources of data. But to effectively control and steer business activity at all levels on global scale they need a centralized and trustworthy data source.

How to restore effective sales in animal pharma ensuring high quality and reliability of data

Our solutions cover all aspects of customer and sales transactions processing for life science industry companies carrying out their sales activity on many markets in cooperation with wholesalers, distributors and retailers.

Can proper data management help restart a shutdown pharma production plant?

Introducing rigorous quality assurance and management tools into data integration to enable the fastest possible resumption of a production plant’s functioning shut down due to issues with ERP system implementation.

How we helped Boehringer-Ingelheim stabilize their data ecosystem

Data governance, data management and data quality are the basis for the effective integration of IT systems, especially when the organization implements new solutions.

How we made the slow and inaccurate CEESA reporting in an animal pharma company much faster and much more accurate

Abundance of data can have enormous potential for business, but it can also be a source of problems. With large-scale operations – and this is where international animal pharma players operate – automation and advanced analytical methods become essential to building value from data insights.

Improving the workflow of Randstadt’s HR with an employee self-service solution

Low-code is the perfect tool for creating scalable solutions that ensure employee empowerment and self-service for simple activities and tasks. This can significantly relieve HR departments of the overload of administrative matters.

See how we used low-code to enable our pharma client to stay transparent and compliant with European legislation

End-to-end, flexible low-code based solution integrated with all the peripheral systems in company to meet rigorous transparency regulations for the pharma industry.

Auditors — both external and internal — faced the need to carry out their tasks under unprecedented conditions of lockdowns, remote work, closed offices and limited access to documents.
The audit of the future will be digital. This will be forced by the current situation resulting from the consequences that the coronavirus epidemic has brought to business.

Latest Articles

Let`s Talk About a Solution

Questions?We’re here to answer them.

Our engineers, top specialists, and consultants will help you discover solutions tailored to your business. From simple support to complex digital transformation operations – we help you do more.

    We will only use the collected data for the following purposes:

    The Controller of your personal data is C&F S.A. with its headquarters in Warsaw, ul. Domaniewska 50, 02-672 Warszawa, Poland. We ask for your consent to the processing of your personal data collected using the form above. We may also collect other data as specified in our Privacy Policy.