Compliance Auditing & Monitoring
|
|
- Claude Hubbard
- 6 years ago
- Views:
Transcription
1 November 16, Compliance Auditing & Monitoring 3.02 Auditing and Monitoring for Compliance Karen R. Lines, Esq. Associate General Counsel Genentech, Inc. South San Francisco, CA Sheryl Vacca, CHC West Coast Practice Leader, Life Sciences & Health Care Regulatory Deloitte & Touche LLP Deloitte Development LLC. All rights reserved.
2 Building the Emerging Model Board & Executive Committee Corporate Compliance Program Financial Risk Regulatory Risk Systems/IT Risks Operational Risks Code of Conduct Corporate Policies Compliance Standards Standard Operating Procedures Day-to-Day Operations Departmental Procedures Copyright Deloitte Development LLC. All rights reserved. 1 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 1
3 The Compliance Program Design Dilemma Designing an integrated compliance program that operates as one unit rather than many silos is challenging The business s processes and operations often function in silos The compliance-related risks touch every aspect of the organization s business & are difficult to compartmentalize The design should be based upon the organization s business strategies The design should result in an organization-wide compliance monitoring plan Risk Mitigation Business Processes Business Strategy Monitoring Copyright Deloitte Development LLC. All rights reserved. 2 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 2
4 Create a Compliance Crosswalk Monitoring plan should be designed with the Compliance Program dilemma in mind. Monitoring creates the crosswalk between the Business Strategies and the Risk Areas. Vaccines will be available for the public Monitoring Quality Control and Drug Safety Business Strategy Will be impacted by many risk areas Monitoring Risk Area Apply to more than one business strategy Copyright Deloitte Development LLC. All rights reserved. 3 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 3
5 Focus on Regulatory Risks and Controls The vast majority of health care/life science regulatory & compliance program requirements align with Sarbanes & Internal Audit standards. Sarbanes Calls for evaluation of internal controls COSO Standards Compliance with laws and regulations Federal Sentencing Guidelines Calls for evaluation of internal controls HHS Office of Inspector General Regulatory-specific standards Employee Training Compliance Audits Copyright Deloitte Development LLC. All rights reserved. 4 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 4
6 How Sarbanes 404 Integrates into your Auditing and Monitoring Objectives Operations Financial reporting Compliance Components of a 404 Readiness Monitoring Information & Communication Control Activities Risk Assessment Control Environment Copyright Deloitte Development LLC. All rights reserved. 5 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 5
7 Auditing and Monitoring Cycle Define Review Scope & Assumptions Reaudit Develop Review Criteria Define Review Sample Define Methodology Education, Remedial Action Finalize Report & Corrective Action Plan Review Process for Each Risk Area Test Inter-rater Reliability with Multiple Reviewers Conduct Review Obtain Management Response Validate Findings Document Observations & Findings Copyright Deloitte Development LLC. All rights reserved. 6 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 6
8 Continuous Monitoring Cycle Monitoring never ends each review leads to the next, and the monitoring plan and unplanned issues drive additional monitoring activities. It is a continuous process Re-audit and add new audits to the cycle Finalize Report & Corrective Action Plan Define Review Scope & Assumptions Finalize Report & Corrective Action Plan Develop Review Criteria Define Review Scope & Assumptions Develop Review Criteria Finalize Report & Corrective Action Plan Define Review Scope & Assumptions Obtain Management Response Obtain Management Response Define Review Sample Document Observations & Findings Define Review Sample Develop Review Criteria Document Observations & Findings Conduct Review Document Observations & Findings Test Interrator Reliability Conduct Review Conduct Review Test Interrator Reliability Define Review Sample Re-audit and add new audits to the cycle Copyright Deloitte Development LLC. All rights reserved. 7 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 7
9 Practical Considerations Related to Auditing and Monitoring Strategy Developing your Auditing and Monitoring Plan Deciding what to monitor Prioritize Risk Areas Internal Factors, i.e.: any system changes, people changes, new practice, etc. External Factors, i.e.: new regulation, national and local enforcement activity Compliance Program evaluation Identify controls that make the process work : PROCESS AUDIT Determine overall purpose effective: OUTCOMES AUDIT Resources available to execute plan Consider integration with Internal Audit Plan Identify timeframes for audits Communication and Commitment to Plan Copyright Deloitte Development LLC. All rights reserved. 8 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 8
10 Developing Your Audit Approach Deciding the scope Narrow down the purpose of the audit Avoid scope creep before you start Resources available to execute the audit Methodology Sample size determination Communication/Reporting Results Copyright Deloitte Development LLC. All rights reserved. 9 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 9
11 Sampling Methodologies Things to Consider: The purpose of the sample or the review objective The universe/population/sources of data The size of the sample What you are going to do with the results Copyright Deloitte Development LLC. All rights reserved. 10 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 10
12 Sampling Methodology What should you consider before you decide what your sample size will be? Who do you expect to share the information with and what is their frame of reference? Are you trying to figure out whether there is really a problem? What is the organization s perspective on fixing problems? What resources are available to audit this area? Does Senior Management agree this risk area is important? What is the worst case scenario if this audit reflects unfavorable outcomes? Attorney/Client Privilege? Copyright Deloitte Development LLC. All rights reserved. 11 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 11
13 Purpose of the Sample Is the review for: Self - disclosure? Education? Part of an on-going monitoring plan? Response to the federal government, subpoena, carrier or FI? Known risk area? Copyright Deloitte Development LLC. All rights reserved. 12 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 12
14 Other Considerations Priority Internal External Timeframe of data collection concurrent retrospective Availability of data Manual Leverage Technology Copyright Deloitte Development LLC. All rights reserved. 13 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 13
15 Leveraging Technology Tools Pros Cons Manual Checklists Low cost No training required Easy to customize Administration effort (collation of results) Reporting effort Sophistication of solution Excel based Spreadsheets (signoff process administered via or on central server) Access based Databases Low cost Simple, adaptable Limited user training Limited IT involvement Low cost Simple, adaptable Limited user training Limited IT involvement Enhanced reporting options Ongoing maintenance Limited scalability Limited reporting Many efforts remain manual Accessibility (not web enabled) Limited scalability Training may be required No transparent dashboard reporting Web based Assessment Systems Increased functionality Usable for sophisticated, complex cos. Improved reporting (dashboard) Scalable Technology implementation effort & cost Significant IT involvement Ongoing maintenance security, reporting Copyright Deloitte Development LLC. All rights reserved. 14 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 14
16 Practical Application : Case Study Risk Area Review Process Compliance Compliance Training Training Define Review Scope & Assumptions Develop Review Criteria Conduct Review Managed Managed Care Care Contracting Contracting Document Findings and Observations Obtain Management Response Finalize Report & Corrective Action Plan Copyright Deloitte Development LLC. All rights reserved. 15 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 15
17 Case Study Risk Area Compliance Compliance Training Training Managed Managed Care Care Contracting Contracting Review Process Define Review Scope & Assumptions Conduct interviews with Business Process Owners Review Policies & Procedures Review Education and Training materials Document scope & assumptions Develop Review Criteria Test Review Criteria Enter criteria into database Conduct Review Review documentation Enter findings into database Document Findings and Observations Query database for exception findings Summarize observations Develop recommendations Obtain Management Response Share findings with Business Process Owners Obtain reactions to recommendations Draft a Corrective Action Plan Finalize Report & Corrective Action Plan Copyright Deloitte Development LLC. All rights reserved. 16 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 16
18 Corrective Action Plan Area of Focus Finding Recommendation Management Action Plan Acct/Timeframes 1. Contract load 1. 20% data errors in contract load Periodically review data entry Develop a periodic review system Accountable Party: 2. Etc. Etc. John Smith, VP Timeframe: 2 nd Quarter Copyright Deloitte Development LLC. All rights reserved. 17 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 17
19 Sample Report Card Develop the Report Card Department Privacy Inducements Risk Area Privacy Notice Employee Training Admissions Customer Service Or Complaints Employee Discipline Authorizations Minimum Necessary Access to Records Marketing Amendment of Records Confidential Communications Facility Directory Medical Records Business Associate Agreements Copyright Deloitte Development LLC. All rights reserved. 18 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 18
20 Integration into Business Strategy Use monitoring findings to develop and document ROI Assist the business process owners to identify root cause of findings Use corrective action to enhance efficiency and mitigate risk Organization-wide (vs. silo) allow program leverage Copyright Deloitte Development LLC. All rights reserved. 19 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 19
21 Summary An effective Auditing and Monitoring approach provides a method to: Assist in identifying risk to the business that may have been otherwise undetected internally Assist by identifying if the controls developed to remediate a risk are working and have actually helped to mitigate the risk Assist with preventing a real and/or potential risk from escalating by early detection through auditing which may help avoid additional harm to the company s business Provides a good faith organization the ability to approach their real and/or potential risk weaknesses with a reasonable, scaleable method Auditing and Monitoring is a critical element for an effective compliance program which helps to drive compliance and behavior. Copyright Deloitte Development LLC. All rights reserved. 20 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 20
22 Karen R. Lines, Esq. Associate General Counsel Genentech, Inc. South San Francisco, California (650) Ms. Lines is Associate General Counsel with Genentech, Inc. in South San Francisco, California. Genentech, Inc. is a biotechnology company that discovers, develops, manufactures and markets human pharmaceuticals for significant unmet medical needs. She manages a team of lawyers responsible for providing legal advice and guidance to Genentech s commercial organization. In the past few years, much of her focus has been on leading ongoing efforts to enhance Genentech s Commercial Compliance Program. She began her legal career in private practice in Wilmington, Delaware. Ms. Lines is admitted to the practice of law in California, Delaware and Pennsylvania. Sheryl Vacca, CHC West Coast Practice Leader Life Sciences and Health Care Regulatory Deloitte & Touche LLP (714) svacca@deloitte.com Ms. Vacca is the West coast Leader for Deloitte & Touche s National Life Sciences and Health Care Regulatory practice. She has assisted several life science companies develop their compliance programs, investigations, perform risk assessments and develop auditing and monitoring plans for the compliance department. She has significant experience consulting with life sciences and health care organizations on compliance issues including self disclosure, writing plans of correction, implementing systems in response to plans of correction, implementing QA systems and general regulatory compliance. Copyright Deloitte Development LLC. All rights reserved. 21 Confidential and Proprietary Material of Deloitte Consulting. Copyright 2002 Deloitte Consulting (US) LLC. All Rights Reserved 21
Measuring Compliance Program Effectiveness
Measuring Compliance Program Effectiveness Measuring Compliance Program Effectiveness: A Resource Guide HCCA Hawaii Regional Debbie Troklus, CHC-F, CCEP-F, CCEP-I, CHRC, CHPC Aegis Compliance and Ethics
More informationCompliance Plans. Kelly S. McIntosh July 20, 2017
Compliance Plans Kelly S. McIntosh July 20, 2017 Roadmap The importance of compliance and compliance programs Common compliance issues know your risk areas! Guidance for drafting or updating your compliance
More informationEuropean CEI. Compliance 101
European CEI Compliance 101 Debbie Troklus, CHC-F, CCEP-F, CHRC, CHPC, CCEP-I Managing Director Aegis Compliance and Ethics Center dtroklus@aegis-compliance.com Sheryl Vacca, CHC- F, CCEP-F, CCEP-I, CHRC,
More informationBUILDING AN EFFECTIVE COMPLIANCE PROGRAM
BUILDING AN EFFECTIVE COMPLIANCE PROGRAM April 22, 2010 Joseph L. Barloon Partner Litigation & Government Enforcement, Skadden Arps Slate Meagher & Flom LLP WMACCA Conference Julie A. Bell April 22, 2010
More informationQuality Assessments what you need to know
Quality Assessments what you need to know Patty Miller, Partner Deloitte & Touche LLP Cavell Alexander, VP-Internal Audit Intermountain Healthcare Overview of requirements Scope of assessment Approaches
More informationProposed Attestation Requirements for FR Y-14A/Q/M reports. Overview and Implications for Banking Institutions
Proposed Attestation Requirements for FR Y-14A/Q/M reports Overview and Implications for Banking Institutions O Background n September 16, 2015, the Board of Governors of the Federal Reserve System ( Federal
More informationContinuous Auditing - A Delicate Chemistry
Continuous Auditing - A Delicate Chemistry Continuous Auditing - A Delicate Chemistry - WeiserMazars LLP s Governance, Risk and Compliance (GRC) Group WeiserMazars LLP is an independent member firm of
More informationJust cause terminations cannot be actioned unless due process is confirmed by the Deputy Minister, BC Public Service Agency.
Policy The objective of this administrative policy is to clarify the employer s roles, responsibilities and procedures with respect to just cause employment termination decisions under section 22(2) of
More informationLeveraging IT risk management to boost competitive advantage
Pharmaceuticals and Life Sciences Leveraging IT risk management to boost competitive advantage Achieving integrated information technology, governance, risk, and compliance Table of contents The heart
More informationPartnering with the business to create a successful self-service analytics framework
Partnering with the business to create a successful self-service analytics framework Times are changing; the evolution of an agile but controlled approach to BI It s widely known that the landscape of
More informationCHECKLIST. 7 Steps to Conducting The Perfect Audit
7 Steps to Conducting The Perfect Audit Summary Conducting an audit can be tricky. That s why it s important to have policies and procedures in place to keep you on a smooth track from your initial contact
More informationQuality Management as Knowledge Sharing: Experiences of the Napa County Health and Human Services Agency
Journal of Evidence-Based Social Work ISSN: 1543-3714 (Print) 1543-3722 (Online) Journal homepage: http://www.tandfonline.com/loi/webs20 Quality Management as Knowledge Sharing: Experiences of the Napa
More informationWhite Paper. Effective and Practical Deployment of COSO: Entity Level Control and Lessons Learned. July 10, 2008 THE ROBERTS COMPANY, LLC
THE ROBERTS COMPANY, LLC Compliance Services: IT and Business Processes 3394 Holly Oak Lane, Escondido, CA 92027 TEL: 760.550.2160 * FAX 760.839.2160 E-mail: robertputrus@therobertsglobal.com http://www.therobertsglobal.com/
More informationSOLUTION BRIEF RSA ARCHER AUDIT MANAGEMENT
RSA ARCHER AUDIT MANAGEMENT INTRODUCTION Internal audit departments are struggling to deliver strategic leadership, coordinated assurance and other services their stakeholders need, but this task isn t
More informationINSIDE. 2 Introduction 12 Conclusion 4 6. How Prepared Are Corporate Law Departments?
INSIDE 1 A Message From Morrison & Foerster s Global Risk & Crisis Management Chair 7 How Prepared Are Corporate Law Departments? 2 Introduction 12 Conclusion 4 6 Risk and Crisis Management: An Emerging
More informationCorporate Practice Center
Corporate Practice Center Maintain and grow your corporate practice with expert guidance and a complete set of tools and resources all integrated into one powerful legal research platform. Corporate Practice
More informationSAP S/4HANA Finance The Finance Labs The Art of the Possible
SAP S/4HANA Finance The Finance Labs The Art of the Possible SAP S/4HANA Finance represents one of the most significant advancements in the world of finance enterprise applications. How will you use it
More informationGaining Financial Integrity Through Improved Internal Controls
Gaining Financial Integrity Through Improved Internal Controls SAP Management of Internal Controls Tool PwC and SAP Sarbanes-Oxley 404 Web Conference Series March 2004 William R. Shipley, Partner, IT Advisory
More informationStep-by-step CRM data analytics for sales teams. How to go beyond metrics and find actionable insights to improve sales performance
Step-by-step CRM data analytics for sales teams How to go beyond metrics and find actionable insights to improve sales performance On average, On average, Finding insights is hard don t make it any harder
More informationArticle from: CompAct. April 2013 Issue No. 47
Article from: CompAct April 2013 Issue No. 47 Overview of Programmatic Framework and Key Considerations Key elements Description Items to consider Definition and identification of EUCs The statement that
More informationERM: Risk Maps and Registers. Performing an ISO Risk Assessment
ERM: Risk Maps and Registers Performing an ISO 31000 Risk Assessment Agenda Following a Standard? Framework First Performing a Risk Assessment Assigning Risk Ownership Data Management Questions? Following
More informationSheryl Vacca, CHC-F, CCEP-F, CHRC, CCEP-I, CHPC. SVP/Chief Compliance & Audit Officer University of California
Sheryl Vacca, CHC-F, CCEP-F, CHRC, CCEP-I, CHPC SVP/Chief & Audit Officer University of California Sheryl.vacca@ucop.edu Odell Guyton Director of Microsoft Corporation What is our framework? Strong Ethics
More informationA COMPLIANCE PROGRAM
GLOBAL COMPLIANCE PROGRAM: Case Study June, 2004 Princeton 1 Respect for People Integrity Creativity Empowerment Networking Courage Sense of Urgency A COMPLIANCE PROGRAM an internal management system that
More informationThe Red (Book) Rocks The Latest and Greatest Audit Standards
The Red (Book) Rocks The Latest and Greatest Audit Standards Presenter Toni Stephens Chief Audit Executive The University of Texas at Dallas Insert Logo Here Course Objectives Explain the development of
More informationComputer Programs and Systems, Inc. Code of Business Conduct and Ethics
(as of January 28, 2013) Introduction This sets forth the guiding principles by which we operate Computer Programs and Systems, Inc. (the Company ) and conduct our daily business with our stockholders,
More informationMitigating compliance risk Implications for global supply chains
Mitigating compliance risk Implications for global supply chains The global supply chain compliance landscape is more dynamic today than during any other time in history. Increased stakeholder expectations,
More informationUnderstanding employee engagement after a corporate acquisition A global communications company. EngagePath client spotlight
Understanding employee engagement after a corporate acquisition A global communications company EngagePath client spotlight Situation Following a complex corporate acquisition, a global communications
More informationQuarterly accounting roundup: An update on important developments The Dbriefs Financial Reporting series Robert Uhl, Partner, Deloitte & Touche LLP
Quarterly accounting roundup: An update on important developments The Dbriefs Financial Reporting series Robert Uhl, Partner, Deloitte & Touche LLP Chris Chiriatti, Managing Director, Deloitte & Touche
More informationMcKesson at-a-glance America s oldest and largest healthcare services company
Leveraging Ethics and Compliance Program Assessments to Enhance Program Effectiveness and Manage Risk SCCE Compliance and Ethics Institute October 6, 2013 Amii Barnard-Bahn Chief Compliance & Ethics Officer
More informationTop 35 Reasons You Need Contact Center Performance Management
Top 35 Reasons You Need Contact Center Performance Management February 2014 Sponsored by: - 1 - DMG Consulting LLC Table of Contents Introduction... 1 Real-Time and Historical CCPM... 1 Top Reasons to
More informationDelta Dental of Michigan, Ohio, and Indiana. Compliance Plan
Delta Dental of Michigan, Ohio, and Indiana Compliance Plan Procedure #: 420-29 Issue Date: 5/15/2013 Last Revised Date: 5/23/2016 Last Review Date: 5/23/2016 Next Review Date: 5/23/2017 Title: Compliance
More informationTOP TRENDING THE MAGAZINE. Menu. 1 of 5 5/16/16 11:26 AM. Legal Hoarder. Show Your Age? Beating the Legal Gender Gap: Tips on Achieving the Improbable
Menu TOP TRENDING 1 2 3 4 5 Legal Hoarder Tendencies: Do Your Contracts Show Your Age? Beating the Legal Gender Gap: Tips on Achieving the Improbable Thriving Through Transformation: How PayPal s Emily
More informationA guide to assessing your risk data aggregation strategies. How effectively are you complying with BCBS 239?
A guide to assessing your risk data aggregation strategies How effectively are you complying with BCBS 239? This page was left blank intetionally. BCBS 239: A guide to assessing your risk data aggregation
More informationPortfolio Management In An Agile World
Portfolio Management In An Agile World Rick Austin VP, Enterprise Engagements Principal Consultant 2017 @rickaustin, @leadingagile @GoAgileCamp #AgileCamp2017 2 RICK AUSTIN Information Technology Director
More informationExaLink services Pricing and contracts
Pricing and contracts Focus on maximizing your revenue, not running your software systems. Client experience that feels like an extension of the team. Adopting managed services is known to be an efficient
More informationThe Future of Internal Auditing:
Internal Audit The Future of Internal Auditing: Changing Internal Audit s Value Proposition October 12, 2010 Istanbul, Turkey Presented by: Naman Parekh Partner, Agenda Background of the 2012 Study Key
More informationConducting Effective Internal Investigations. From Workplace Harassment to Criminal Conduct and Everything in Between
Conducting Effective Internal Investigations From Workplace Harassment to Criminal Conduct and Everything in Between Presenters Christopher G. Keim Partner, Management Committee Chris is a trial lawyer
More informationRethink your ERP Strategy with S/4HANA. Deloitte Consulting Switzerland
Rethink your ERP Strategy with S/4HANA Deloitte Consulting Switzerland 31/03/2017 Complex and heterogeneous ERP systems slow down innovation 40% executives worry that their organisations will not keep
More informationDon t make the same mistake twice! Avoiding repeat violations of Reliability Standards
Don t make the same mistake twice! Avoiding repeat violations of Reliability Standards 17 November 2010 www.morganlewis.com www.ey.com Welcome to Don t Make the Same Mistake Twice! Avoiding Repeat Violations
More informationThink logically about logical separation
Part of the #Tech @the heart of M&A series on M&A technology topics 11 11 During a carve-out, asset sale, or spin-off, there is often insufficient time or readiness to fully separate the Information Technology
More informationIt s time to revisit your anti-corruption compliance program How to design an effective and defensible compliance program in response to global trends
It s time to revisit your anti-corruption compliance program How to design an effective and defensible compliance program in response to global trends Many legal and compliance officers are revisiting
More informationYour Guide to the Compliance Process
Your Guide to the Compliance Process Our Commitment and Your Responsibilities Disciplinary Action Guidelines Guidance for Managers Investigations Process Overview US Reporting Process Overview Corporate
More informationSouthwest Airlines Co. Code of Ethics
Southwest Airlines Co. Code of Ethics Introduction Southwest Airlines Co. is committed to maintaining the highest standards of ethical business practices and legal and regulatory compliance. We place a
More informationModel Job Descriptions for an Overtime-Exempt Account Manager & an Overtime-Exempt Recruiter
Model Job Descriptions for an Overtime-Exempt Account Manager & an Overtime-Exempt Recruiter Prepared by: William S. Josey, Esq. William S. Josey, LLC willisj@aol.com 813-390-6045 Commissioned by: Mark
More informationInternal Audit Quality Analysis Evaluation against the Standards International Standards for the Professional Practice of Internal Auditing (2017)
Internal Audit Quality Analysis Evaluation against the Standards International Standards for the Professional Practice of Internal Auditing (2017) Assessor 1: Assessor 2: Date: Date: Legend: Generally
More informationImplementing a corporate legal process outsourcing solution. Key considerations before embarking on the legal service delivery transformation journey
Implementing a corporate legal process outsourcing solution Key considerations before embarking on the legal service delivery transformation journey You read it online every day: increasing regulations
More informationThe Impact of Quality Culture on Quality Risk Management. FDA Perspective on Quality Culture; how it Impacts Risk Management
The Impact of Quality Culture on Quality Risk Management FDA Perspective on Quality Culture; how it Impacts Risk Management Teresa Gorecki Practice Lead Compliance Architects Agenda The WHAT Definitions
More informationIPO Readiness. Sarbanes-Oxley Compliance & Other Considerations. Presented by:
IPO Readiness Sarbanes-Oxley Compliance & Other Considerations Presented by: IPO Readiness Enhanced Financial / Legal compliance SEC / Stock Exchange Compliance Entity Structure / Registration Filing Requirements
More informationExtended Enterprise Risk Management
Extended Enterprise Risk Management Driving performance through the extended enterprise October 2015 A network within a network The Extended Enterprise is the concept that an organization does not operate
More informationElements of a Successful Compliance Management System and Vendor Management Rules of the Road
Elements of a Successful Compliance Management System and Vendor Management Rules of the Road Jonathan L. Pompan Partner, Venable LLP jlpompan@venable.com 202.344.4383 Katherine M. Lamberth Associate,
More informationAntitrust and Compliance
Antitrust and Compliance Society of Corporate Compliance and Ethics Roxane C. Busey Baker & McKenzie Chicago, IL September 14, 2010 1 ANTITRUST AND COMPLIANCE TABLE OF CONTENTS Page I. INTRODUCTION...
More informationBritish Gas Report to Ofgem in response to Ofgem s open letter on Supplier Complaints Handling dated 26th September 2014
British Gas Report to Ofgem in response to Ofgem s open letter on Supplier Complaints Handling dated 26th September 2014 britishgas.co.uk 1. Introduction from Ian Peters Managing Director British Gas One
More informationTake 3 Improving patient outcomes
Life Sciences & Health Care Take 3 Improving patient outcomes Take three minutes for a crash course on analytics. www.deloitte.com/us/take3 Lessons from PV leaders Using safety data insights to improve
More informationCompliance Program Effectiveness Guide
Compliance Program Effectiveness Guide June 2017 This Guide is a comparison of: Compliance Program Elements New York State, Social Services Law 363-D Office of Inspector General (OIG) Compliance Program
More information1. Each employee is responsible for managing college records in a responsible and professional manner.
Policy O-6.2 Approved By: College Executive Team Approval Date: February 26, 2003 Amendment Date: November 25, 2009 Policy Holder: VP Administration Purpose / Rationale RECORD MANAGEMENT The purpose of
More informationAchieving Regulatory Chemical Compliance: Strategies & Approaches that Reduce Risk & Lower Costs
Achieving Regulatory Chemical Compliance: Strategies & Approaches that Reduce Risk & Lower Costs Presented by: Laura Casey Anne Sefried Sponsored By: Wednesday, August 18, 2013 2:00 p.m. to 3:00 p.m. Eastern
More informationUDAAP Trends & Requirements
Today s Panelists Rebecca Frederick Principal Analyst Deluxe Corporation Gaye Connell Moderator Garland Group 2 Important Note This presentation is provided for informational purposes only with the understanding
More informationInternal Audit and Technology Sustainable Analytics
Internal Audit and Technology Sustainable Analytics Neil While, Partner, Internal Audit Analytics Deloitte Advisory December 14, 2015 0 The Four Faces of the Chief Auditor 1 Copyright 2015 Deloitte Development
More informationQuestions And Answers. Conducting Effective Internal Investigations
Questions And Answers Conducting Effective Internal Investigations Kevin J. Smith and Lindsay R. Colvin Stone Conducting internal investigations in the wake of an employee complaint can be an overwhelming
More informationFraud Detection and Prevention
Fraud Detection and Prevention Presented by: Louise Hanson, Moss Adams LLP Emily Ogden, Moss Adams LLP April 24, 2014 1 DISCLOSURE STATEMENT The material appearing in this presentation is for informational
More informationBanner by Ellucian Customer Survey Results
MARKET INSIGHTS SERIES Banner by Ellucian Customer Survey Results March 2016 www.thetambellinigroup.com Table of Contents Acknowledgements...3 Copyright and Terms of Use...3 Disclaimer...4 Executive Summary...5
More informationFreedom of Information (FOI) Policy
Freedom of Information (FOI) Policy Subject Freedom of Information Act (2000) Policy number Tbc Approved by Trust Executive Group Date approved March 2015 Version 2 Policy owner Director of Communications
More informationTHE INTELLIGENT CHOICE FOR EDISCOVERY
THE INTELLIGENT CHOICE FOR EDISCOVERY FULL END TO END EDISCOVERY SERVICES FROM ELECTRONIC DATA COLLECTION THROUGH TO PROCESSING, REVIEW AND PRODUCTION WHO IS MILLNET? EDISCOVERY EXPERTISE Millnet is one
More informationLeading Unit Level Planning
Innovation Insight Series Number 1 http://www.psu.edu/president/pia/innovation/ Leading Unit Level Planning Issues you can address through the integration of planning, improvement, and assessment We need
More informationAN AUDIT OF INTERNAL CONTROL THAT IS INTEGRATED WITH AN AUDIT OF FINANCIAL STATEMENTS: GUIDANCE FOR AUDITORS OF SMALLER PUBLIC COMPANIES
1666 K Street, NW Washington, D.C. 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8430 www.pcaobus.org PRELIMINARY STAFF VIEWS AN AUDIT OF INTERNAL CONTROL THAT IS INTEGRATED WITH AN AUDIT OF FINANCIAL
More informationEnterprise Risk Management
Compliance, Audit, Risk Management and Legal Affairs Committee Enterprise Risk Management Higher Education Scorecards, Performance Based Metrics, and Faculty Compensation Alan D. Phillips Vice President
More informationIPSec Professional Risk Victorian Protective Data Security Standards Compliance Services Overview in Brief
IPSec Professional Risk Victorian Protective Data Security Standards Compliance Services Overview in Brief Date: March 2017 Copyright & Confidentiality This document is copyright IPSec Pty Ltd (IPSec).
More informationProject Prioritization as a Key Element in IT Strategic Demand Management
Project Prioritization as a Key Element in IT Strategic Demand Management Igor Aguilar Alonso School of Computer Science, Technical University of Madrid, Madrid, Spain iaguilar@zipi.fi.upm.es José Carrillo
More informationEmpower your field technicians. A smarter approach to managing field assets using mobile tools
Empower your field technicians A smarter approach to managing field assets using mobile tools Empower your field technicians A smarter approach to managing field assets For many organizations, the workforce
More informationAudit Committee Financial Experts
January 2003 Bulletin 03-13 Audit Committee Financial Experts If you have questions or would like additional information on the material covered in this Bulletin, please contact the author: Robert K. Morris
More informationLeverage T echnology: July 19 th, 2013 Adil Khan. Move Your Business Forward. Copyright. Fulcrum Information Technology, Inc.
Life After ERP Go-Live: Navigating to Nirvana Learn how leading organizations are utilizing Advanced Controls to make systematic improvements in their ERP systems to achieve expected benefits of ERP systems
More informationIT Audit at Brown. A collaboration between the Information Technology and Internal Audit Teams
IT Audit at Brown A collaboration between the Information Technology and Internal Audit Teams Page 1 Agenda Objective Risk Management Overview Internal Audit at Brown IT Audit at Brown Frequently Asked
More informationFederal Compliance Checklists, Checklist: Conducting Employment Investigations
Employment Checklists Federal Compliance Checklists Work Rules and Employee Conduct Checklist: Conducting Employment Investigations Checklist: How to Conduct Employment Investigations Purpose: A prompt,
More informationSETTING POLICIES and GUIDELINES for CONDUCTING INTERNAL INVESTIGATIONS
SETTING POLICIES and GUIDELINES for CONDUCTING INTERNAL INVESTIGATIONS Al Gagne, CCEP Director, Ethics & Compliance Textron Systems Corporation SCCE Internal Investigations Workshop November 11-12, 2010
More informationUNDERSTANDING THE NEED FOR A HELP DESK SOLUTION. How to select the right help desk solution for your organization
UNDERSTANDING THE NEED FOR A HELP DESK SOLUTION How to select the right help desk solution for your organization UNDERSTANDING THE NEED FOR A HELP DESK SOLUTION INTRODUCTION Every business, no matter which
More informationBreak from the Law: A City Bar Initiative for Practicing and Re-entering Lawyers
Break from the Law: A City Bar Initiative for Practicing and Re-entering Lawyers 2008-2009 PROGRAM SERIES Not all attorneys' careers are linear. Many take a break from their practices to pursue other opportunities
More informationMiMedx Group, Inc. Code of Business Conduct and Ethics
MiMedx Group, Inc. Code of Business Conduct and Ethics 1. Introduction. 1.1 The Board of Directors of MiMedx Group, Inc. (together with its subsidiaries, the "Company") has adopted this Code of Business
More informationCyber Security. & GRC Metrics That Tell a Story! Presented by: Swarnika Mehta Manager, KPMG Cyber Security Services
Cyber Security & GRC Metrics That Tell a Story! Presented by: Swarnika Mehta Manager, KPMG Cyber Security Services Eva Benn Senior Associate, KPMG Cyber Security Services Contents 2 Introduction In the
More informationagility made possible
SOLUTION BRIEF Identity and Access Governance How can I address identity and access governance within my organization to reduce risks? agility made possible With CA GovernanceMinder, you can address identity
More informationORACLE FUSION FINANCIALS CLOUD SERVICE
ORACLE FUSION FINANCIALS CLOUD SERVICE THE NEW STANDARD FOR FINANCE KEY FEATURES Innovative embedded multi-dimensional reporting platform Simultaneous accounting of multiple reporting requirements Role-based
More informationInformation Technology Risks in Today s Environment
Information Technology s in Today s Environment - Traci Mizoguchi Enterprise Services Senior Manager, Deloitte & Touche LLP Agenda Overview Top 10 Emerging IT s Summary Q&A 1 Overview Technology continues
More informationATM Webinar Questions and Answers May, 2014
May, 2014 Debit Network Alliance LLC (DNA) is a Delaware Limited Liability Company currently comprised of 10 U.S. Debit Networks and open to all U.S. Debit Networks. The goal of this collaborative effort
More informationBudgetary Resource Risk Management Unliquidated Obligations (ULOs) - Recovery and Prevention September 2014
Improving Resource Effectiveness Budgetary Resource Risk Management Unliquidated Obligations (ULOs) - Recovery and Prevention September 2014 Christina Canavan Senior Manager in the Federal Advisory practice
More informationCOSO Internal Control Integrated Framework Proposed Update
COSO Internal Control Integrated Framework Proposed Update Presented by: Dustin Birashk September 20, 2012 1 DISCLOSURE STATEMENT The material appearing in this presentation is for informational purposes
More informationDIGITAL STRATEGY SUMMARY
DIGITAL STRATEGY SUMMARY 2014-2015 Maria MacGunigal, CIO OUR STORY: We are at an important point in history where technology is pervasive in almost all aspects of our lives. Government is expected more
More informationThe future of the deal
The future of the deal Total M&A Solution Discover the future of the deal For clients at key stages of the transaction lifecycle, Total M&A Solution illuminates information related to an M&A deal and helps
More information) ) ) ) ) ) See Section 104(g)(2) of the Act, 15 U.S.C. 7214(g)(2); PCAOB Rule
peadb 1666 K Street, NW Washington, D.C. 20006 Telephone: (202 207-9100 Facsimile: (202862-8430 www.pcaobus.org OBSERVATIONS ON THE INITIAL IMPLEMENTATION OF THE PROCESS FOR ADDRESSING QUALITY CONTROL
More informationQuality Assurance QA STANDARD OPERATING PROCEDURE FOR FDA or Pharmaceutical Sponsored Audits
Quality Assurance QA 601.01 STANDARD OPERATING PROCEDURE FOR FDA or Pharmaceutical Sponsored Audits Approval: Nancy Paris, MS, FACHE President and CEO 24 May 2017 (Signature and Date) Approval: Frederick
More informationSantander Holdings USA, Inc.
Santander Holdings USA, Inc. WHISTLEBLOWER OPERATING POLICY Table of Contents 1. INTRODUCTION... 3 1.1 PURPOSE OF DOCUMENT... 3 1.2 SCOPE... 3 1.3 DOCUMENT APPROVAL AND MAINTENANCE... 3 1.4 DEFINITIONS...
More informationUSC Compliance and Ethics Program Governance and Standards
Background The following elements of an effective compliance program come from the Federal Sentencing Guidelines, but also are incorporated into federal and state regulations and administrative guidance.
More informationFDA Initiatives and Regulatory Trends for Life Sciences. Larry Spears President L. Spears Consulting
FDA Initiatives and Regulatory Trends for Life Sciences Larry Spears President L. Spears Consulting Before We Begin If you experience technical problems, please contact GoToMeeting Technical Support at
More informationProcess. Developing and Managing the Risk Management Corrective Action Plan. Process. Session No Page 1 WELCOME. Agenda.
Developing and Managing the Risk Corrective Action Plan WELCOME Developing and Managing the Risk Corrective Action Plan Welcome to Session No. 1134 Developing and Managing the Risk Corrective Action Plan
More informationTurning Data into Insights Information Management with Deloitte and Informatica
Turning Data into Insights Information Management with Deloitte and Informatica A strategic approach to gaining insights from your data Deloitte enterprise application strategy and implementation services
More informationDeveloping a Successful Product
Developing a Successful Product What is the appropriate level of governance? Kelly Cusick, Deloitte Consulting LLP March 30, 2014 Antitrust Notice The Casualty Actuarial Society is committed to adhering
More informationTactical Implementation of Enterprise Risk Management
Tactical Implementation of Enterprise Risk Management Presented by: Glen Cooper Copyright Tactical Implementation of ERM CONGRATULATIONS YOU HAVE SUCCESSFULLY MADE YOUR BUSINESS CASE AND ACHIEVED MANAGEMENT
More informationCASE BY CASE: CENTRALIZING & STANDARDIZING INCIDENT INTAKE, INVESTIGATION AND MANAGEMENT
CASE BY CASE: CENTRALIZING & STANDARDIZING INCIDENT INTAKE, INVESTIGATION AND MANAGEMENT INTAKE REPORTING CHANNELS Allegations of misconduct can be reported via one of three primary reporting channels:
More informationReport on Inspection of Deloitte LLP (Headquartered in Toronto, Canada) Public Company Accounting Oversight Board
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8433 www.pcaobus.org Report on 2014 (Headquartered in Toronto, Canada) Issued by the Public Company Accounting Oversight
More informationTechnology Deployment and Operations Technician
LIT Job Description Job Family: Job Title: Department Name: Level: Deployment and Operations Technology Deployment and Operations Technician Learning and Information Technology (LIT) ITB Revised: May 20,
More information36th Board Meeting Prioritized Action Plan (PAP) to Accelerate Management for Impact For Board Information
36th Board Meeting Prioritized Action Plan (PAP) to Accelerate Management for Impact For Board Information GF/B36/27 Montreux, Switzerland 16-17 November 2016 Prioritized Action Plan Help the Secretariat
More informationSOLUTION BRIEF RSA ARCHER REGULATORY & CORPORATE COMPLIANCE MANAGEMENT
RSA ARCHER REGULATORY & CORPORATE COMPLIANCE MANAGEMENT INTRODUCTION Your organization s regulatory compliance landscape changes every day. In today s complex regulatory environment, governmental and industry
More information