Continuous Monitoring and Auditing

The City of Burbank

  • 20 May 2025

Continuous monitoring and auditing helps to identify issues in real time—whether it’s data breaches, unauthorized access, or financial anomalies.

We can now stay ahead of risks and spot problems before they snowball, streamline compliance and internal controls, cut cost, save time and boost accuracy.

Join Prof Miklos Vasarhelyi, regarded as the father of continuous auditing, and Dr Heejae Lee, head of the City of Burbank project, will share a real-world application, best practice, and emerging trends.

 

This is a CAPIA Forum event.

Background information

Join us for an exclusive webinar that dives into the transformative power of Continuous Monitoring and Auditing (CMA) in Government Accounting Information Systems. As public sector organizations face increasing demands for transparency, compliance, and efficiency, CMA offers a proactive approach to identifying anomalies, enhancing internal controls, and ensuring real-time oversight. This webinar presents top experts in auditing and information systems to explore how cutting-edge technologies and strategies can modernize financial oversight and drive accountability in public administration.

 

Whether you’re a financial officer, internal auditor, IT professional, or policy-maker, this event is your opportunity to stay ahead of the curve, gain valuable insights on integrating CMA into existing systems, and learn best practices from a current government project., Don’t miss this chance to lead the change in digital governance and public financial management.

 

Gain:

  • Insights into the implementation of a CMA project
  • Actionable knowledge to strengthen an institution’s financial integrity and decision-making capabilities.
  • Usage of visualization software and robotic process automation (RPA) for a CMA project.

Questions and Answers

Continuous auditing and monitoring are processes that use technology to provide real-time assurance and oversight of transactions, controls, and IT systems. Instead of conducting retrospective, periodic audits, CA/CM allows for the automatic extraction and analysis of data as transactions occur. This enables the early identification of irregularities and risks, facilitating proactive risk mitigation and enhancing the accuracy and efficiency of information systems in both private and public sectors.

CA/CM utilises various technologies to achieve its real-time capabilities. This includes data analytics, machine learning, and automated controls. For instance, the project with the City of Burbank used Python for data pre-processing, Microsoft PowerBI for data visualisation and dashboard creation, and Microsoft Power Automate for robotic process automation (RPA) to automate reporting and alerts. The integration of exogenous variables (external data) and generative AI (like GPT technology) is also being explored to enhance predictive capabilities and combine qualitative and quantitative information.

Based on the early development of continuous auditing, the core elements include recorded metrics (measuring system data), standards (benchmarks for comparison, including acceptable variance), and analytics to identify deviations. When recorded metrics exceed the acceptable variance from the standard, an alert is generated. Modern systems also incorporate exogenous variables (external data) to provide broader context and predictive power.

The sources highlight several applications, particularly in government accounting. The project with the City of Burbank focuses on using CA/CM to mitigate risks related to fund balance deficits, overspending against budgets, and errors or irregularities in month-end and year-end balances, ultimately reducing the risk of misstatement in financial reports. Another project with the state of Santa Catarina in Brazil uses CA/CM for procurement monitoring, comparing internal purchase prices with external sources like Amazon to detect potential fraud or significant variances.

Implementing a CA/CM system in government accounting typically involves several steps. First, identifying clear objectives is crucial, as this guides the entire process. Second, data needs to be extracted from the ERP system, ideally automatically. Third, this raw data requires pre-processing (cleaning, transforming, and structuring) into a format suitable for analysis. Fourth, the processed data is loaded into a platform where the CA/CM system is designed. Finally, dashboards, reports, and alerts are designed and automated to provide users with real-time insights and notifications of anomalies or risks.

Implementing CA/CM offers significant benefits, such as providing real-time assurance, allowing for proactive risk mitigation by identifying issues early (e.g., overspending before the year-end), improving efficiency by automating manual testing, and enhancing transparency and accountability. In the public sector, where the objective is often effective service delivery and responsible use of public funds rather than profit, CA/CM can help ensure funds are managed effectively, budgets are adhered to, and financial reporting is accurate and timely.

The integration of generative AI is seen as a significant future direction, allowing for the combination of qualitative and quantitative data to create more sophisticated monitoring capabilities. This could include harnessing information from social media to gauge public perception of service quality (e.g., street cleanliness, infrastructure issues). Future applications in the public sector could involve multi-dimensional reporting beyond traditional financials, including budgetary, infrastructure, service quality, and ESG metrics. However, challenges include ensuring data accessibility (though public sector data is often more readily available than private sector data), adapting standards over time, preventing attempts to manipulate the system (e.g., gaming price alerts), and requiring courageous leadership willing to make findings publicly available.

Guests

Sezer
Professor Miklos A Vasarhelyi
Dr Heejae Lee
Lourens Erasmus Head and Shoulders

+27 11 717 3300
info@goodgovernance.academy

Wits Business School, 2 St Davids Pl, St Andrew Rd, Parktown, 

Johannesburg, 2193, South Africa

Follow us on

© 2025 Good Governance Academy

Sezer Bozkus Kahyaoglu

Associate Professor of Finance at the Bakirçay University

Sezer is an Associate Professor of Finance at the Bakirçay University, in Izmir, Türkiye, and an academic associate of the University of South Africa (UNISA) and the University of Johannesburg. Her research interests mainly include Applied Econometrics, Time Series Analysis, Financial Markets and Instruments, AI, Blockchain, Sustainability, Corporate Governance, Risk Management, Fraud Accounting, Auditing, Ethics, Coaching, Mentoring, and NLP. Sezer is the associate editor of two indexed journals and the AI book series editor at Springer. Sezer is a Steering Committee Member at the Good Governance Academy Research Forum and a co-founding member of the registered Engaged Scholarship project, Continuous Auditing in Public Sector Internal Auditing (CAPIA).

Lourens Erasmus

Professor, Department of Financial Governance, College of Accounting Sciences, University of South Africa

Prof Lourens Erasmus is a professor in the Department of Financial Governance at the College of Accounting Sciences of the University of South Africa. His fields of academic interest are in public sector financial governance and internal auditing.

 

From 1 April 2019 he was appointed by the President of South Africa, to serve as a Commissioner on the Financial and Fiscal Commission (FFC), for a period of five years. The FFC conducts research and advises Parliament, Provincial Legislatures, and other stakeholders on amongst others, the annual division of revenue between the spheres of government.

 

Prof Erasmus is the chairperson of the Education and Professional Development Committee of the Southern African Institute of Government Auditors (SAIGA), chairperson of the UNISA College of Accounting Sciences Research Ethics Review Committee, and an affiliate member of the Chartered Institute of Government Finance, Audit and Risk Officers (CIGFARO).

 

Prof Erasmus is an NRF-rated researcher and Editor-in-Chief of the DHET accredited research journal, the Southern African Journal of Accountability and Auditing Research (SAJAAR). He is an Associate Editor of the Scopus listed, South African Journal of Accounting Research (SAJAR), and project leader of the registered Engaged Scholarship projects, Research on Audit Committees South Africa (RACSA), and Continuous Auditing in Public Sector Internal Auditing (CAPIA).

Terms and Conditions

  • The Good Governance Academy nor any of its agents or representatives shall be liable for any damage, loss or liability arising from the use or inability to use this web site or the services or content provided from and through this web site.
  • This web site is supplied on an “as is” basis and has not been compiled or supplied to meet the user’s individual requirements. It is the sole responsibility of the user to satisfy itself prior to entering into this agreement with The Good Governance Academy that the service available from and through this web site will meet the user’s individual requirements and be compatible with the user’s hardware and/or software.
  • Information, ideas and opinions expressed on this site should not be regarded as professional advice or the official opinion of The Good Governance Academy and users are encouraged to consult professional advice before taking any course of action related to information, ideas or opinions expressed on this site.
  • When this site collects private information from users, such information shall not be disclosed to any third party unless agreed upon between the user and The Good Governance Academy.
  • The Good Governance Academy may, in its sole discretion, change this agreement or any part thereof at any time without notice.

Privacy Policy

Link to the policy: GGA Privacy Policy 2021

The Good Governance Academy (“GGA”) strives for transparency and trust when it comes to protecting your privacy and we aim to clearly explain how we collect and process your information.

It’s important to us that you should enjoy using our products, services and website(s) without compromising your privacy in any way. The policy outlines how we collect and use different types of personal and behavioural information, and the reasons for doing so. You have the right to access, change or delete your personal information at any time and you can find out more about this and your rights by contacting the GGA, clicking on the “CONTACT” menu item or using the details at the bottom of the page.

The policy applies to “users” (or “you”) of the GGA website(s) or any GGA product or service; that is anyone attending, registering or interacting with any product or service from the GGA. This includes event attendees, participants, registrants, website users, app users and the like.

Our policies are updated from time-to-time. Please refer back regularly to keep yourself updated.

Search