Evaluation of Internal Audit Role as a Governance, Risk and Compliance Partner, Trusted Advisor and Value Driver to Implement Strategy

(Case Study of Indonesia’s Social Health Insurance Provider)

Authors

  • Tandid Nasal Universitas Indonesia
  • Lindawati Gani Universitas Indonesia

DOI:

https://doi.org/10.23887/jia.v7i2.47931

Keywords:

GRC partner, strategy, trusted advisor, value drive

Abstract

This study aims to evaluate the alignment of the scope of internal audit activities with the strategy of Indonesia’s Social Health Insurance Provider (BPJS Kesehatan). The perception of the added value provided by the internal audit is often described as hazy and enigmatic. Therefore, Eulerich and Lenz (2020) defined the internal audit role into three scopes: Governance, risk and compliance (GRC) partner, trusted advisor and value driver. This qualitative research uses a case study method by collecting internal organisational documents, questionnaire surveys and interviews. The results show that BPJS Kesehatan’s internal audit can act as both a GRC partner and a trusted advisor. However, its internal audit activity is not prepared and aligned with the implementation of the organisation’s strategy. The internal audit function is nevertheless moving towards aspects in which it may add more value to the success of the organisation’s strategy.

References

Anderson, U. L., Head, M. J., & Ramamoorti, M. (2017). Internal auditing: Assurance and advisory services (4th ed.). Lake Mary, FL: Internal Audit Foundation.

Bantleon, U., D’Arcy, A., Eulerich, M., Hucke, A., & Pedell, B. (2020). Coordination challenges in implementing the three lines of defense model. International Journal of Auditing, 23, 1–16.

Betti, N., & Sarens, G. (2018). Aligning internal audit activities and scope to organizational strategy: How the business environment and organizational strategy impact internal audit. Internal Audit Foundation, 3–27.

de Zwaan, L., Stewart, J., & Subramaniam, N. (2011). Internal audit involvement in enterprise risk management. Managerial Auditing Journal, 6(7), 586–604.

Deloitte (2020a). A call to action on the three lines model.

Deloitte (2020b). Modernizing the three lines of defense model: An internal audit perspective.

Dewan Jaminan Sosial Nasional (2022). Sistem monitoring dan evaluasi jaminan sosial (SISMONEV DJSN). Retrieved from http://sismonev.djsn.go.id/

Eisenhardt, K. M. (1989). Agency theory: An assessment and review. The Academy of Management Review, 14(1), 57–74.

Ellet, W. (2018). The case study handbook: A student’s guide. Harvard Business Review Press. Retrieved from https://books.google.co.id/books?id=ZrRlswEACAAJ

Eulerich, M. (2021). The new three lines model for structuring corporate governance – A critical discussion of similarities and differences. Corporate Ownership & Control, 18(2), 180–187. https://doi.org/10.22495/cocv18i2art15

Eulerich, M., & Lenz, R. (2020). Defining, measuring, and communicating the value of internal audit. Lake Mary, FL: Internal Audit Foundation.

IIA (2020). Three Lines Model. IIA.

IIA Netherlands and KPMG (2015). Strategy-related auditing. The Institute of Internal Auditors Netherlands (June 2015).

Jensen, M. C., & Meckling, W. H. (1976). Theory of the firm: Managerial behavior, agency costs and ownership structure. Journal of Financial Economics, 3(4), 305–360.

Kashyap, S., & Iveroth, E. (2021). Transparency and accountability influences of regulation on risk control: The case of a Swedish bank. Journal of Management and Governance, 25, 475–508.

Law No. 24 of 2011 concerning Social Security Administering Bodies.

Lestarini, A. H. (2021, October 13). Proteksi kesehatan jadi kebutuhan saat pandemi Covid-19. Retrieved from https://m.medcom.id/ekonomi/keuangan/zNAplBAK-proteksi-kesehatan-jadi-kebutuhan-saat-pandemi-covid-19

Miles, M. B., & Huberman, M. (1994). Qualitative data analysis: An expanded sourcebook. In CEUR Workshop Proceedings (p. 338).

Ramadhan, A. (2020, October 22). JKN jadi jaminan sosial kesehatan terbesar di dunia, sebut Kemenkeu. Antara News. Retrieved from https://www.antaranews.com/berita/1798361/jkn-jadi-jaminan-sosial-kesehatan-terbesar-di-dunia-sebut-kemenkeu

Sarens, G., & Abdolmohammadi, M. (2011). Monitoring effects of the internal audit function: Agency theory versus other explanatory variables. International Journal of Auditing, 15(1), 1–20. https://doi.org/10.1111/j.1099-1123.2010.00419.x

Sawyer, L. B., & Sawyer, L. B. (2019). Sawyer’s internal auditing: Enhancing and protecting organizational value (7th ed.). Institute of Internal Auditors. Retrieved from https://books.google.co.id/books?id=DZGkvQEACAAJ

Downloads

Published

2023-01-15

Issue

Vol. 7 No. 2: December 2022

Section

Artikel

License

Creative Commons License

JIA (Jurnal Ilmiah Akuntansi) is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License

Authors who publish with this journal agree to the following terms:

  • Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution Attribution-NonCommercial-NoDerivatives 4.0 International License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
  • Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  • Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) before and during the submission process, as it can lead to productive exchanges and earlier and greater citation of published work (See The Effect of Open Access).