Who We Are

The Institute for Internal Controls was established in 2003, by a group of auditing professionals and educators who were concerned with the failure of the auditing and oversight professions in uncovering and preventing the high profile financial frauds that have occurred over the recent years. It is based in Southern New Jersey, outside of Philadelphia.

This professional certification organization is dedicated to promoting an effective internal controls environment in all organizations through accomplishment of its mission of education and professional certification. Each member of the institute designated as a Certified Internal Controls Auditor (CICA) or Certified Controls Specialist (CCS) has earned certification after a rigorous qualification process.

CICAs and CCSs come from various professions, including auditors, accountants, fraud and loss prevention specialists, attorneys, and educators. CICAs and CCSs possess expertise in the areas of internal controls, including: audit, review, design and implementation. CICAs and CCSs are employed by many major corporations and government agencies and others that provide auditing and consulting services. The Institute for Internal Controls encourages local chapters. Students majoring in accounting or specialized areas involving internal controls are encouraged to establish and join student chapters.


The Institute was created as a reaction of accounting professionals, consultants, and educators who were concerned with the failure of the various oversight organizations in preventing and detecting the massive financial failures that occurred in recent years. This, together with the present day announcements of continuing accounting irregularities, is causing a black mark on our profession that must be addressed. In addition to the regulatory changes that have been implemented during the last two years, the philosophy of The Institute is that there is a need to change the profession to address all areas of internal controls, including management controls, financial controls, operational controls, IT controls, physical security controls, and risk management.


The Mission of The Institute for Internal Controls is to promote an effective internal controls environment by enhancing the implementation of good internal control procedures in order to:

  • Deter and detect fraudulent activities;

  • Reduce waste and abuse; and

  • Increase efficiency, effectiveness and economy of operations.

To accomplish our mission, The Institute for Internal Controls:

  • Provides the professional certification of CICA and CCS to auditing and control specialists who demonstrate the highest skills in internal controls;

  • Sets the highest standards for admission and designation as a CICA and CCS;

  • Provides leadership to inspire confidence in the integrity, objectivity, and professionalism in the auditing profession and in the designation of CICA and CCS;

  • Requires all members to adhere to a strict Code of Ethics and Code of Conduct; and

  • Requires mandatory Continuing Professional Education (CPE) for continued certification.

Advisory Board

Governance for The Institute for Internal Controls is provided by the Advisory Board. The Advisory Board is headed by the Chairman. Its members are appointed and serve on a voluntary basis. All members of the Advisory Board must hold the CICA or CCS designation and be a member in good standing.

Dr. Frank Nasuti, Ph.D., CPA, CICA, CFE

is Chariman and founder of The Institute for Internal Controls. He has over 30 years of experience in internal controls. His past positions and experience include 10 years in internal controls consulting and forensic accounting, 10 years in internal audit position and Big 4 Public Accounting, and 10 years in law enforcement. He has extensive research experience and has taught in the doctorate and masters programs at Nova Southeastern University, Widener University, Rutgers University, and Temple University.

Professor Thomas Brinker, CPA, CICA, CFE,

is a professor of accounting at Arcadia University.

Donald Baker, DBA, CICA, CISA, CFE,

is an accounting instructor at Nova Southeastern University and a former VP of Audit for a major Florida Bank. He is also founder of Baker Associates, a forensic accounting firm located in Boca Raton, Florida.

Edmund J. Saunders, CICA, FCIB, CFE, C.Dip.A.F. (ACCA)

He is a recognized authority on Internal Control and Audit in Poland, and has served as an adviser to the Polish Ministry of Finance on Internal Control & Auditing. He is a renowned author in Internal Control matters, Founder and Honorary President of the Polish Institute for Internal Control & Auditing (PIKW) and former President of The Polish Institute of Banking. Previous posts held include; Audit Adviser to the Kuwait Investment Authority, Ministry of Finance in Kuwait, Group Senior Vice President, BAII Banking Group, Paris, Director of BAII PLC in London, Director of Internal Audit/Chief Inspector of European Asian Bank (Deutsche Bank) in Hamburg, and Second Vice President – Chase Manhattan Bank, New York.

Code of Ethics

All members of The Institute for Internal Controls must meet the rigorous criteria for admission. Thereafter, they must exemplify the highest professional, moral and ethical standards and must agree to abide by the Code of Professional Ethics and the Code of Professional Standards. Specifically each member of shall: Demonstrate a commitment to professionalism and due diligence in the performance of his/her duties. Not engage in any illegal or unethical conduct, or any activity, which would constitute a conflict of interest. Exhibit the highest level of integrity in the performance of all professional assignments and will accept only assignments for which there is reasonable expectation that the assignment will be completed with professional competence. In conducting audits, reviews, examinations, etc., will obtain evidence or other documentation to establish a reasonable basis for any opinion rendered. Not reveal any confidential information obtained during a professional engagement without proper authorization. Will reveal all material matters discovered during the course of an audit, review, examination, etc., which, if omitted, could cause a distortion of the facts. Strive to increase the competence and effectiveness of the professional services performed under his/her direction.

Code of Professional Standards

I. Preamble

The Institute for Internal Controls is an association of professionals committed to performing at the highest level of ethical conduct. Members of the Association pledge themselves to act with integrity and to perform their work in a professional manner. Members have a professional responsibility to their employers, clients, to the public interest and each other; a responsibility that requires subordinating self-interest to the interests of those served. These standards express basic principles of ethical behaviour to guide members in the fulfilling of their duties and obligations. By following these standards, all members of The Institute for Internal Controls shall be expected to demonstrate their commitment to excellence in service and professional conduct.

II. Applicability of Code The Code of Professional Standards shall apply to all members, regardless of type of membership. III. Standards of Professional Conduct

A. Integrity and Objectivity Members shall conduct themselves with the highest level of integrity. Members shall not sacrifice integrity for any reason. Prior to entering into any engagement, members shall investigate for potential conflicts of interest. Members shall disclose any potential conflicts of interest to all parties involved in the engagement. Members shall maintain objectivity in discharging their professional responsibilities within the scope of the engagement. Members shall not commit any discreditable acts, and shall always conduct themselves in the best interests of the reputation of the profession. Members shall not knowingly make any false statements or withhold any information that is vital to the engagement Members shall not commit criminal acts or knowingly induce others to do so.

B. Professional Competence Members shall be competent and shall not accept assignments where this competence is lacking. Members shall maintain the minimum program of continuing professional education required by The Institute for Internal Controls. All members holding the professional certification designation of Certified Internal Controls Auditor or Certified Controls Specialist must agree to embrace a commitment to professionalism combining education and experience. Members shall continually strive to increase the competence and effectiveness of their professional services.

C. Due Professional Care Members shall exercise due professional care in the performance of their services. Due professional care requires diligence, critical analysis and professional scepticism in discharging professional responsibilities. Conclusions shall be supported with evidence that is relevant, competent and sufficient. Members’ professional services shall be adequately planned. Planning controls the performance of any engagement from inception through completion and involves developing strategies and objectives for performing the services.

D. Understanding with Employers, Clients, & Auditees At the beginning of an engagement, members shall reach an understanding with those involved in the engagement about the scope and limitations of the engagement and the responsibilities of all parties involved. Whenever the scope or limitations of the engagement change significantly, a new understanding shall be reached with the parties involved in the engagement.

E. Communication with Parties Involved Members shall communicate to all parties involved in the engagement all significant findings made during the normal course of the engagement.

F. Confidentiality Members shall not disclose confidential or privileged information obtained during the course of the engagement without the express permission of proper authority or order of a court. This requirement does not preclude professional practice or investigative body reviews as long as the reviewing organization agrees to abide by the confidentiality restrictions.

IV. Standards of Engagement

A. Engagements All engagements shall be conducted in a professional, legal and thorough manner. The auditor’s or specialist’s objective shall be to obtain information and all supporting documentation that is complete, reliable and relevant. Members shall endeavour to establish effective control and management procedures for work papers and supporting documents. This is extended to all audit programs and work plans,

V. Standards of Reporting

A. General Members’ reports may be written or oral, as agreed in the engagement letter or similar document. There is no single structure or format that is prescribed for a member’s report; however, the report should not be misleading.

B. Report Content Members’ reports shall contain only information based on data that are sufficient and relevant to support the facts, conclusions, opinions and/or recommendations related to the engagement. The report shall be confined to subject matter, principles and methodologies within the member’s area of knowledge, skill, experience, training or education. All opinions, findings and recommendations must be supported in the work papers for auditing type engagements, or documentation in design or implementation projects.