Project Management

Please login or join to subscribe to this thread

Audited Projects

linkedin twitter facebook   Construction   Information Technology   Quality  
avatar
Ayman Nassar President, Business Transformation Consultant| Intercontinental Networks Clarksville, Md, United States
Anyone familiar with any studies or statistics on audited projects in any industry? I am interested in knowing about general % of projects that undergo an audit of some type, even if its internal.
Sort By:
avatar
George Freeman Thought Leader | Author | Architect| Florida, United States
Hi Ayman,

In my four decades of experience, I’ve encountered two full external audits of my projects, so a tiny percentage overall. Both of the projects were international in scope, with my chartered portion of the project being the only one delivered in another country from the parent.

In other words, the external audits were a way for the parent company to do a “sanity check” on all aspects of my portion of the project. Even though we had pre-negotiated spies in place and all the normal project controls, this was still deemed necessary.

It was always painful, but both passed with no material issues, but always know, they will find areas for improvement, as they must justify the multiple six-figure costs associated with such activities.

In retrospect, cultural “risk tolerance” differences were the main contributor to the audit requirements, as the American project manager is a risk-slinging cowboy in disguise.
avatar
Ayman Nassar President, Business Transformation Consultant| Intercontinental Networks Clarksville, Md, United States
Hi George, thanks for sharing. A client of mine where I offered PMO project management, would do internal audits on all projects that needed to be SOX compliant (projects that handled revenue, orders, payments, etc..) our internal controls team would check that project managers followed process and documented approvals and captured all needed artifacts should an external audit occur. Those projects were not small in number almost 75% of all projects the organization would engage on a given year. It was a US multinational manufacturing public company.
...
1 reply by George Freeman
Aug 21, 2020 8:46 AM
George Freeman
...
Hi Ayman,

In my experience (nowadays), compliance-based standards (e.g., SOX, PCI, HIPAA) are so integrated into day-to-day operations of organizations that internal and external audits/reviews hardly raise an eyebrow. In other words, the word “audit” loses its sting.

So, in the case of regulatory compliance, I believe you can say that there is some type of audit/review 100% of the time – at least if you want to remain a going concern.
avatar
Abolfazl Yousefi Darestani Manager, Quality and Continuous Improvement| Hörmann-TNR Industrial Doors Newmarket, Ontario, Canada
It depends on industry, region, country, size, etc. You need to be more specific
avatar
Kiron Bondale Retired | Mentor| Retired Welland, Ontario, Canada
Ayman -

A lot depends on the industry the company operates in. Banks, for example, have well established internal audit departments which will audit a risk-based sample of projects each year. Usually each line of business's audit department might taken on up to a dozen projects so across a bank you might have quite a few projects audited, but they also have hundreds of projects each year.

The concept of statistically representative sampling doesn't apply - auditing needs to be risk-based to deliver the greatest bang for the buck, so the sample size will vary based on portfolio composition.

Kiron
avatar
George Freeman Thought Leader | Author | Architect| Florida, United States
Aug 20, 2020 9:17 PM
Replying to Ayman Nassar
...
Hi George, thanks for sharing. A client of mine where I offered PMO project management, would do internal audits on all projects that needed to be SOX compliant (projects that handled revenue, orders, payments, etc..) our internal controls team would check that project managers followed process and documented approvals and captured all needed artifacts should an external audit occur. Those projects were not small in number almost 75% of all projects the organization would engage on a given year. It was a US multinational manufacturing public company.
Hi Ayman,

In my experience (nowadays), compliance-based standards (e.g., SOX, PCI, HIPAA) are so integrated into day-to-day operations of organizations that internal and external audits/reviews hardly raise an eyebrow. In other words, the word “audit” loses its sting.

So, in the case of regulatory compliance, I believe you can say that there is some type of audit/review 100% of the time – at least if you want to remain a going concern.
avatar
Milena Ilieva Program Manager Global accounts| VMWare Vienna, Austria
Ayman,
I did regular (internal) project reviews and audits for large (starting from 0.5 Mio Euro to multi-million Euro total contract volume) IT systems integration projects and programs as part of my roles. I do not understand what statistics you are looking for here. I can only share my experience.
We reviewed everything, even during project reviews - financials, risks +their financial impact on PM, main contractual obligation of all parties (customer, our part, suppliers), any SLA, penalties, claims, ...
As Kiron pointed out, in some companies it can be well established process.
Milena
avatar
wael ahmed project manager| Red Sea Consultant asyut, AST, Egypt
depends on industry, region, country, size, etc.

Please login or join to reply

Content ID:
ADVERTISEMENTS

"If we knew what it was we were doing, it would not be called research, would it?"

- Albert Einstein

ADVERTISEMENT

Sponsors







Vendor Events

See all Vendor Events

Newsletters

Jun 3: The Career Problem Facing New PMs
May 20: Your PM Career as a Project Life Cycle
May 13: The Big Lie After Layoffs

See all newsletters