Fraud Risk Management
|
|
- Randolf Simmons
- 6 years ago
- Views:
Transcription
1 Fraud Risk Management Fraud Risk Management Overview 2017 Association of Certified Fraud Examiners, Inc.
2 Discussion Questions 1. Does your organization follow a specific risk management model? If so, which one? Do you think this model adequately addresses the risks your organization faces? Why or why not? 2017 Association of Certified Fraud Examiners, Inc. 2 of 27
3 Discussion Questions 2. What are some of the risks your organization faces? Where does the risk of fraud fit into your organization s risk hierarchy? 2017 Association of Certified Fraud Examiners, Inc. 3 of 27
4 Discussion Questions 3. Does your organization have a formal risk management function? If so, are anti-fraud initiatives integrated into the risk management initiatives? 2017 Association of Certified Fraud Examiners, Inc. 4 of 27
5 Discussion Questions 4. How does your organization categorize the risks that are identified in the risk management process? 2017 Association of Certified Fraud Examiners, Inc. 5 of 27
6 Learning Objectives Analyze the current state of the risk management landscape. Compare different risk management frameworks. Recognize what fraud risk is and the factors that influence it. Understand the reasons for effectively managing fraud risk. Determine who is responsible for managing fraud risk within an organization Association of Certified Fraud Examiners, Inc. 6 of 27
7 Introduction to Risk Management Risk management involves: Identification of risks Prioritization of risks Treatment of risks Monitoring of risks 2017 Association of Certified Fraud Examiners, Inc. 7 of 27
8 Introduction to Risk Management Balances risk appetite with the ability to meet strategic, operational, reporting, and compliance objectives Requires a proactive, rather than reactive, approach 2017 Association of Certified Fraud Examiners, Inc. 8 of 27
9 2016 Report on Current State of Risk Management Initiatives Risk management initiatives appear relatively immature: 25% describe their risk management implementation as systematic, robust, and repeatable. 40% described their risk management processes as very immature or developing Association of Certified Fraud Examiners, Inc. 9 of 27
10 2016 Report on Current State of Risk Management Initiatives 56% are minimally or not at all satisfied with the nature and extent of reporting of key risk indicators to senior executives. More than half do not have risk oversight activities formally assigned to a board subcommittee. Boards of directors are placing greater expectations on management to strengthen risk oversight Association of Certified Fraud Examiners, Inc. 10 of 27
11 Risk Management Frameworks An entity s risk management program should be specifically tailored to its unique needs. However, the use of a framework can provide guidance and structure in developing the program Association of Certified Fraud Examiners, Inc. 11 of 27
12 COSO Enterprise Risk Management Integrated Framework (2004) 1. Internal environment 2. Objective setting 3. Event identification 4. Risk assessment 5. Risk response 6. Control activities 7. Information and communication 8. Monitoring 2017 Association of Certified Fraud Examiners, Inc. 12 of 27
13 COSO Enterprise Risk Management Integrated Framework (2004) 2017 Association of Certified Fraud Examiners, Inc. 13 of 27
14 COSO Enterprise Risk Management: 2016 Draft Revision Five interrelated components: 1. Risk governance and culture 2. Risk, strategy, and objective-setting 3. Risk in execution 4. Risk information, communication, and reporting 5. Monitoring enterprise risk management performance 2017 Association of Certified Fraud Examiners, Inc. 14 of 27
15 ISO Lays out 11 principles of effective risk management Provides guidance on developing both a framework and a process for managing risk that is based on those principles 2017 Association of Certified Fraud Examiners, Inc. 15 of 27
16 ISO 31000:2009 Risk Management Principles Creates value Integral part of organizational processes Part of decision making Explicitly addresses uncertainty Systematic, structured, and timely Based on the best available information Tailored Takes human and cultural factors into account Transparent and inclusive Dynamic, iterative, and responsive to change Facilitates continual improvement and enhancement 2017 Association of Certified Fraud Examiners, Inc. 16 of 27
17 ISO 31000:2009 (Source: ISO 31000:2009, Risk Management Principles and Guidelines ) 2017 Association of Certified Fraud Examiners, Inc. 17 of 27
18 Choosing a Risk Management Framework Might start with COSO or ISO framework as is But should customize to the organization and its needs based on: Organizational structure Nature of operations Environment(s) Size Nature of risks 2017 Association of Certified Fraud Examiners, Inc. 18 of 27
19 Fraud Risk Management Guide 2016 Published by COSO in collaboration with ACFE Five principles of FRM One aligned with each of the five components of internal control Supported by individual points of focus for each principle Not formally linked to COSO ERM 2016D, but several obvious connections 2017 Association of Certified Fraud Examiners, Inc. 19 of 27
20 IC FRM ERM IC 2013 Component FRM 2016 Principle ERM 2016D Component Control environment The organization establishes and communicates a Fraud Risk Management program that demonstrates the expectations of the board of directors and senior management and their commitment to high integrity and ethical values regarding managing fraud risk. Risk governance and culture Risk assessment The organization performs comprehensive fraud risk assessments to identify specific fraud schemes and risks, assess their likelihood and significance, evaluate existing fraud control activities, and implement actions to mitigate residual fraud risks. Risk, strategy and objective-setting 2017 Association of Certified Fraud Examiners, Inc. 20 of 27
21 IC FRM ERM IC 2013 Component FRM 2016 Principle ERM 2016D Component Control activities The organization selects, develops, and deploys preventive and detective fraud control activities to mitigate the risk of fraud events occurring or not being detected in a timely manner. Risk in execution Information & communication The organization establishes a communication process to obtain information about potential fraud and deploys a coordinate approach to investigation and corrective action to address fraud appropriately and in a timely manner. Risk information, communication & reporting 2017 Association of Certified Fraud Examiners, Inc. 21 of 27
22 IC FRM ERM IC 2013 Component FRM 2016 Principle ERM 2016D Component Monitoring activities The organization selects, develops, and performs ongoing evaluations to ascertain whether each of the five principles of fraud risk management is present and functioning and communicates Fraud Risk Management Program deficiencies in a timely manner to parties responsible for taking corrective action, including senior management and the board of directors. Monitoring risk management performance 2017 Association of Certified Fraud Examiners, Inc. 22 of 27
23 IC FRM ISO IC 2013 Component FRM 2016 Principle ISO Framework ISO Process Control environment The organization establishes and communicates a Fraud Risk Management program that demonstrates the expectations of the board of directors and senior management and their commitment to high integrity and ethical values regarding managing fraud risk. Mandate and commitment (4.2) Design of framework for managing risk (4.3) Establish the context (5.3) Risk assessment The organization performs comprehensive fraud risk assessments to identify specific fraud schemes and risks, assess their likelihood and significance, evaluate existing fraud control activities, and implement actions to mitigate residual fraud risks. Design of framework for managing risk (4.3) Implementing risk management (4.4) Risk Assessment (5.4): Identification Analysis Evaluation 2017 Association of Certified Fraud Examiners, Inc. 23 of 27
24 IC FRM ISO IC 2013 Component FRM 2016 Principle ISO Framework ISO Process Control activities The organization selects, develops, and deploys preventive and detective fraud controls activities to mitigate the risk of fraud events occurring or not being detected in a timely manner. Implementing risk management (4.4) Risk Treatment (5.5) Information and communication The organization establishes a communication process to obtain information about potential fraud and deploys a coordinate approach to investigation and corrective action to address fraud appropriately and in a timely manner. Implementing risk management (4.4) Monitoring and review of the framework (4.5) Communication and Consultation Throughout the Process (5.2) 2017 Association of Certified Fraud Examiners, Inc. 24 of 27
25 IC FRM ISO IC 2013 Component FRM 2016 Principle ISO Framework ISO Process Monitoring activities The organization selects, develops, and performs ongoing evaluations to ascertain whether each of the five principles of fraud risk management is present and functioning and communicates Fraud Risk Management Program deficiencies in a timely manner to parties responsible for taking corrective action, including senior management and the board of directors. Monitoring and review of the framework (4.5) Continual improvement of the framework (4.6) Monitoring and Review of Controls, Risks, etc. (5.6) 2017 Association of Certified Fraud Examiners, Inc. 25 of 27
26 IC ISO Association of Certified Fraud Examiners, Inc. 26 of 27
27 The Fraud Risk Management Process Establish a fraud risk management policy as part of organizational governance. Monitor the fraud risk management process, report results, and improve the process. Perform a comprehensive fraud risk assessment. Establish a fraud reporting process and coordinated approach to investigation and corrective action. Select, develop, and deploy preventive and detective fraud control activities Association of Certified Fraud Examiners, Inc. 27 of 27
28 What Is Fraud Risk? The vulnerability that an organization has to those capable of overcoming the three elements of the fraud triangle Comes from both internal and external sources Differs from other risks because fraud, by definition, entails intentional misconduct designed to evade detection 2017 Association of Certified Fraud Examiners, Inc. 28 of 27
29 Types of Fraud Risk Inherent risk risk present before management takes action Residual risk risk that remains after management takes action 2017 Association of Certified Fraud Examiners, Inc. 29 of 27
30 Factors Influencing Fraud Risk The nature of the business Economic conditions The operating environment The ethics and values of the company and its people Technology The legal environment The effectiveness of internal controls 2017 Association of Certified Fraud Examiners, Inc. 30 of 27
31 Who Is Responsible for Managing Fraud Risk? Team responsible for executing, monitoring, and ensuring success: Executive management Internal audit Audit committee Investigations group Compliance Controller s group IT Security Legal department Human resources 2017 Association of Certified Fraud Examiners, Inc. 31 of 27
32 Who Is Responsible for Managing Fraud Risk? The team should have a designated leader. Synergy and communication are keys Association of Certified Fraud Examiners, Inc. 32 of 27
ERM: Risk Maps and Registers. Performing an ISO Risk Assessment
ERM: Risk Maps and Registers Performing an ISO 31000 Risk Assessment Agenda Following a Standard? Framework First Performing a Risk Assessment Assigning Risk Ownership Data Management Questions? Following
More informationSample Corporate Risk Management Policy
Sample Corporate Risk Management Policy This document provides a sample Risk Management policy which includes an overview of the key roles and responsibilities of the various stakeholders. Risk Oversight
More informationFraud Risk Management
Fraud Risk Management Introduction Bethmara Kessler, CFE, CISA Campbell Soup Company 2017 Association of Certified Fraud Examiners, Inc. CPE Information 2017 Association of Certified Fraud Examiners, Inc.
More information2013 COSO Internal Control Framework Update. September 5, 2013
2013 COSO Internal Control Framework Update September 5, 2013 Agenda 2013 COSO IC Framework Topic Minutes The update process 5 What is not changing / What is changing 5 The 17 principles and changes to
More informationFraud Risk Management
Fraud Risk Management Developing a Fraud Risk Management Program 2017 Association of Certified Fraud Examiners, Inc. Discussion Questions 1. Which individual or group within your organization oversees
More informationCOSO Framework Update Webcast. May 23, 2013
COSO Framework Update Webcast May 23, 2013 Today s presenters Rob Kastenschmidt National Leader - Risk Advisory Services Sara Lord Partner - National Professional Standards Group Agenda Topic Minutes The
More informationThe COSO Risk Framework: A reference for internal control? Transition from COSO I to COSO II
The COSO Risk Framework: A reference for internal control? Transition from COSO I to COSO II S P E A K E R : D O T T. FA B I O A C C A R D I C O U R S E O F B U S I N E S S A U D I T I N G U N I V E R
More informationSuccessful ERM Program Standards. Definitions of Enterprise Risk Management (ERM)
1 Successful ERM Program Standards Enterprise Risk Management Vendor Management Business Continuity IT GRC Internal Audit Regulatory Compliance Manager William C. Hord V.P. of Enterprise Risk Management
More informationAudit Training-of-Trainers Workshop, November 2014, Vienna Components of internal control within organization
Audit Training-of-Trainers Workshop, 18-19 November 2014, Vienna Components of internal control within organization Andrei Busuioc, Senior Financial Management Specialist, CFRR Session objectives The session
More informationFrom Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance
Sharon Hale and John Argodale May 28, 2015 2 From Dictionary.com Enterprise: A project undertaken or to be undertaken, especially one that is important or difficult or that requires boldness or energy
More informationSample Strategy and Value Oversight Policy
Sample Strategy and Value Oversight Policy This document provides a sample Strategy & Value Oversight policy which includes a high level overview of the key roles and responsibilities of the various participants.
More information2013 New COSO 2013 Framework and Current Trends in Risk Management
2013 New COSO 2013 Framework and Current Trends in Risk Management Session 105 IASA 86 TH ANNUAL EDUCATIONAL CONFERENCE & BUSINESS SHOW Agenda COSO 2013 framework Overview Why the update? What has been
More informationRisk Management Culture: The Linkage Between Ethics & Compliance and ERM September 14, 2009
2009 Compliance and Ethics Institute Risk Management Culture: The Linkage Between Ethics & Compliance and ERM September 14, 2009 Table of contents Section 1 2 3 4 5 6 Learning objectives Why measure risk
More informationEnterprise Risk Management And Beyond. Copyright WHA Insurance
Enterprise Risk Management And Beyond Copyright WHA Insurance Presented by Jeff Griffin September 18, 2018 ERM And Beyond Today s goals are: 1. What is ERM and why it s important to your organization 2.
More informationAdvisory Services Governance, Risk & Compliance
Advisory Services Governance, Risk & Compliance Caribbean Association of Audit Committee Members Inc. 2010 Conference Caretakers of Integrity and Accountability: The Role of Internal Audit in Corporate
More informationInternal Control Integrated Framework. An IAASB Overview September 2016
Internal Control Integrated Framework An IAASB Overview September 2016 0 Table of Contents COSO & Project Overview Internal Control-Integrated Framework Illustrative Documents Illustrative Tools for Assessing
More informationInternal Control Integrated Framework. An IAASB Overview September 2016
Internal Control Integrated Framework An IAASB Overview September 2016 0 Table of Contents COSO & Project Overview Internal Control-Integrated Framework Illustrative Documents Illustrative Tools for Assessing
More informationEnhanced Risk Management Policy
Enhanced Risk Management Policy Approved By: City Council Category: General Administration Approval Date: September 12, 2001 Effective Date: September 12, 2001 Revision Approved By: Revision Date: August,
More informationIDI Internal Control System
Risk Assessment Monitoring Control Environment Information & Communication Control Activities IDI Internal Control System 2014 Contents Preface... 1 1. Introduction... 2 2. Context and Background... 2
More informationMETROPOLITAN TRANSPORTATION AUTHORITY
ENTERPRISE RISK MANAGEMENT AND INTERNAL CONTROL GUIDELINES Pursuant to Public Authorities Law Section 2931 Adopted by the Board on November 16, 2016 These guidelines apply to the Metropolitan Transportation
More informationSAMPLE BEC SuperfastCPA Review Notes
BEC 2018 SuperfastCPA Review Notes Table of Contents Corporate Governance 1 Internal Control Frameworks 1 Enterprise Risk Management Frameworks 6 Other Regulatory Frameworks and Provisions 10 Economic
More informationEnterprise Risk Management: Developing a Model for Organizational Success. White Paper
Enterprise Risk Management: Developing a Model for Organizational Success White Paper January 2009 Overview Less than a decade ago, Enterprise Risk Management (ERM) was an unfamiliar concept. Today, the
More informationThis policy establishes the approach to risk management at Sunshine Coast Council (Council) and outlines the guiding principles and framework.
Organisational policy Risk Management Policy Corporate Plan reference: Endorsed by Chief Executive Officer: Manager responsible for policy: A strong community In all our communitites, people are included,
More informationInformal Consultation on Oversight Matters. September 2017
1 Informal Consultation on Oversight Matters September 2017 Agenda Enterprise Risk Management & Internal Controls overview Proactive Integrity Reviews update Office of the Inspector- General update 2 3
More informationCatching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010
Catching Fraud During a Recession Through Superior Internal Controls FICPA s 25 th Annual Accounting Show J. Stephen Nouss September 29, 2010 1 Session Objectives Fraud Facts (2008 Association of Certified
More informationWhat s New In GAO s Revised Greenbook
What s New In GAO s Revised Greenbook Association of Government Accountants, KC Chapter Fall 2014 Professional Development Seminar November 10, 2014 Michael A. Fiene Chief, USDA/FSA-Internal Control and
More informationFinancial Management in the Federal Government:
Financial Management in the Federal Government: Considerations regarding the integration of OMB Circular No. A-123 and enterprise risk management for the Centers for Disease Control and Prevention (CDC)
More informationA Discussion About Internal Controls February 2016
A Discussion About Internal Controls February 2016 What we will cover today 001 Introductions 002 Defining Internal Controls 003 COSO Internal Controls Integrated Framework 004 Approach to Designing Internal
More informationContinuous Auditing. What This Guide Covers. What This Guide Covers. What This Guide Covers. Environment Check. A Brief History
Continuous Auditing Global Technology Auditing Guide 3 Brief history Environment check COSO ERM Benefits Key concepts www.theiia.org 2 Relationship of continuous auditing, continuous monitoring, and continuous
More informationSession 7: Corporate Governance
Session 7: Corporate Governance New York Bankers Association-Community Bank Auditors Group 2016 Internal Audit Training-June 6-8, 2016 MEMBER OF ALLINIAL GLOBAL, AN ASSOCIATION OF LEGALLY INDEPENDENT FIRMS
More informationContract and Procurement Fraud. Detection and Prevention
Contract and Procurement Fraud Detection and Prevention Introduction Procurement schemes have certain characteristics that make them particularly difficult to detect and prevent. Organizations can protect
More informationTexas Tech University System
Texas Tech University System October 31, 2017 ERM Overview Evolution of Risk Management Risk Traditional Definition The possibility that something bad or unpleasant will happen. Merriam-Webster Minimizing
More informationInternal Control Integrated Framework. May 2013
Internal Control Integrated Framework May 2013 0 Table of Contents COSO & Project Overview Internal Control-Integrated Framework Illustrative Documents Illustrative Tools for Assessing Effectiveness of
More informationRISK MANAGEMENT REPORT
RISK MANAGEMENT REPORT RISK POLICY STATEMENT Robust and effective management of risks is an essential and integral part of corporate governance. It helps to ensure that the risks encountered in the course
More informationStrengthening Your Enterprise Risk Management Process
Strengthening Your Enterprise Risk Management Process Belinda Mumma, Senior Consultant, Enterprise Risk Management Services bmumma@sollievo.com (866) 605-5664 x3400 Discussion Topics Definition of Enterprise
More informationIPPF Practice Guide. Assessing the Adequacy of
Assessing the Adequacy of Risk Management Using ISO 31000 December 2010 Table of Contents Executive Summary... 1 Introduction... 1 Risk Management in the Organization... 2 Internal Auditing and Risk Management...
More informationRisk Management Update ISO Overview and Implications for Managers
Contents - ISO 31000 highlights 1 - Changes to key terms and definitions 2 - Aligning key components of the risk management framework 3 - The risk management process 4 - The principles of risk management
More informationISO INTERNATIONAL STANDARD. Risk management Principles and guidelines. Management du risque Principes et lignes directrices
INTERNATIONAL STANDARD ISO 31000 First edition 2009-11-15 Risk management Principles and guidelines Management du risque Principes et lignes directrices http://mahdi.hashemitabar.com Reference number ISO
More informationEnterprise Risk Management
Enterprise Risk Management A Roadmap For Implementation June 12, 2018 Presented by: Speaker Name Marianne Turnbull CohnReznick LLP 4 Becker Farm Road Roseland, NJ 07068 P: 973-228-3500 E:marianne.turnbull@cohnreznick.com
More informationAUDITING. Auditing PAGE 1
AUDITING Auditing 1. Professionalism The International Professional Practices Framework (IPPF) is the conceptual framework that organizes authoritative guidance promulgated by The Institute of Internal
More informationIntegrating COSO s Fraud Risk Management Guide on an Enterprise Scale
Integrating COSO s Fraud Risk Management Guide on an Enterprise Scale September 15, 2017 Vincent Walden Partner EY Atlanta Delores White Director, Internal Audit Southern Company Scott Hulsey Chief Compliance
More informationAudit of Entity Level Controls
Unclassified Internal Audit Services Branch Audit of Entity Level Controls February 2014 SP-606-03-14E You can download this publication by going online: http://www12.hrsdc.gc.ca This document is available
More informationCOSO ERM: Integrating with Strategy and Performance. Michael Parkinson
COSO ERM: Integrating with Strategy and Performance Michael Parkinson Content The COSO Frameworks Risk (Enterprise) Risk Management The COSO risk management framework A few highlights Questions for management
More informationEnterprise Risk Management Aligning Risk With Strategy and Performance
Enterprise Risk Management Aligning Risk With Strategy and Performance Jeff Thomson, CMA, CAE President and CEO Institute of Management Accountants 1 Learning Objectives Understand how integrating the
More informationResearch paper on risk management in the light of the results of the global survey of 2012
Research paper on risk management in the light of the results of the global survey of 2012 November 2013 INTOSAI SUBCOMMITTEE ON INTERNAL CONTROL STANDARDS 1 Introduction The events that the global economy
More informationRISK MANAGEMENT FRAMEWORKS: Adapt, Don t Adopt. Here s a primer on how to use two well-known approaches.
RISK MANAGEMENT FRAMEWORKS: Adapt, Don t Adopt Here s a primer on how to use two well-known approaches. By Mark L. Frigo, CMA, CPA, and Richard J. Anderson, CPA As enterprise risk management (ERM) continues
More informationBoard Corporate Governance and Risk Committee
Policy Risk management Authorising Committee / Department: Responsible Committee / Department: Document Code: Board Corporate Governance and Risk Committee POL OPCEO Risk management Introduction The purpose
More informationCOSO 2013: Updated internal control framework
COSO 2013: Updated internal control framework Athens, 10 October 2013 Background COSO's structure and mission COSO 1 is a joint initiative of five sponsoring organizations - American Accounting Association
More informationTable of Contents. Preface xi. Acknowledgments xv. Chapter 1: What We All Share 1. Need for Control Criteria 1
Table of Contents Preface xi Acknowledgments xv Chapter 1: What We All Share 1 Need for Control Criteria 1 Overview of the COSO Internal Control Integrated Framework 2 Holistic, Integrated View 3 Revised
More informationEnterprise Risk Management: Aligning Risk with Strategy & Performance June 26, :45 p.m. 4:45 p.m.
Enterprise Risk Management: Aligning Risk with Strategy & Performance June 26, 2017 3:45 p.m. 4:45 p.m. Presented by: Marc Winkler Director P&G Associates 646 Highway 18 East Brunswick, NJ 08816 P: 877-651-1700
More informationUNHCRlHCP/ Antonio Guterres, United Nations High Commissioner for Refugees. Approval date: _::t_~_-_1-:...-_u_l--,~~_
1t'n' UNHCR ~ United Nations High Commissioner for Refugees Haut Commissariat des Nations Unies pour Ies retugi6s UNHCRlHCP/201417 Policy for Enterprise Risk Management in UNHCR Approved by: Signature:
More informationERM: Mandate & Commitment in 60 Minutes
ERM: Mandate & Commitment in 60 Minutes November 2 12:00 pm 1:30 pm EST Robin Flint, ARM, ASP, CEAS 1 Senior Risk Management Consultant ACWA JPIA Wendell Bosen, CPCU, ARM-P Senior Account Executive Moreton
More informationInterpreting the Energy Risks from EY s 2016 Global Fraud Survey
Interpreting the Energy Risks from EY s 2016 Global Fraud Survey SCCE Utilities & Energy Compliance and Ethics Conference Washington D.C. 2016 Global Fraud Survey - Approach Between October 2015 and January
More informationB U S I N E S S R I S K M A N A G E M E N T L T D
B U S I N E S S R I S K M A N A G E M E N T L T D Governance, Risk and Compliance (GRC) After completing this course you will be able to Course Level Understand the requirements and benefits of GRC Develop
More informationSTATEMENT ON RISK MANAGEMENT AND INTERNAL CONTROL
Chemical Company of Malaysia Berhad 89 MANAGEMENT AND INTERNAL CONTROL RESPONSIBILITY The Board is responsible for the review of the adequacy and effectiveness of the Group s system of risk management
More informationERM for Small to Mid-sized Companies
ERM for Small to Mid-sized Companies Session #304 Today s Presenters Greg Fritsky Jerry Ravi Rita Linterno Technology & Finance Transformation Consultant ERM / Internal Audit Specialist & Technology Consultant
More informationNYSARC/CP Compliance Seminar: Risk Assessments. May 2, 2016 Robert Hussar and Melissa Zambri
NYSARC/CP Compliance Seminar: Risk Assessments May 2, 2016 Robert Hussar and Melissa Zambri rhussar@barclaydamon.com mzambri@barclaydamon.com Agenda Introductions Compliance Risk Assessment Process OMIG
More informationAnti-Fraud Programs and Control Policy
Anti-Fraud Programs and Control Policy OVERVIEW This document provides an overview of the programs and controls Tahoe Resources Inc. ( Tahoe ) follows in order to evaluate fraud risk as it pertains to
More informationERM Retooled: Driving Performance by Revising and Enhancing Risk Management Governance Wipfli LLP
ERM Retooled: Driving Performance by Revising and Enhancing Risk Management Governance 2018 Wipfli LLP In September 2017, the Committee of Sponsoring Organizations (COSO) a committee that provides guidance
More informationIn Control: Getting Familiar with the New COSO Guidelines. CSMFO Monterey, California February 18, 2015
In Control: Getting Familiar with the New COSO Guidelines CSMFO Monterey, California February 18, 2015 1 Background on COSO Part 1 2 Development of a comprehensive framework of internal control Internal
More informationCharter for Enterprise Risk Management
for Enterprise Risk Management Prepared by: Shannon Sinclair Version: 1.2 Document Id: Date: Release Date TABLE OF CONTENTS TABLE OF CONTENTS... i 1. Background... 1 2. Objectives... 1 3. Scope... 2 3.1
More informationTo: Identify your chief goals and objectives Identify risks Prioritize the risks to achieving objectives Determine which controls/processes to review
1 Objective To: Identify your chief goals and objectives Identify risks Prioritize the risks to achieving objectives Determine which controls/processes to review In order to: Develop an effective Internal
More informationThe Ins and Outs: Audits Under FDICIA. Jennifer Gureckis and Kaylyn Landry BerryDunn February 27, 2018
The Ins and Outs: Audits Under FDICIA Jennifer Gureckis and Kaylyn Landry BerryDunn February 27, 2018 Presenters Jennifer Gureckis, CPA Kaylyn Landry, CPA Objectives Overview of Internal Controls over
More informationDeveloping an Integrated Anti-Fraud, Compliance, and Ethics Program
Developing an Integrated Anti-Fraud, Compliance, and Ethics Program Establishing an Effective Anti-Fraud, Compliance, and Ethics Function 2018 Association of Certified Fraud Examiners, Inc. Discussion
More informationWFP s 2018 enterprise risk management policy
WFP s 2018 enterprise risk management policy Informal consultation 24 July 2018 World Food Programme Rome, Italy Executive summary As a voluntarily funded organization, WFP depends on the confidence of
More informationIntroductions. Enterprise Risk Management. Thinus Nienaber. Why are You here? Where are You coming from? Where are You going?
Enterprise Risk Management PRESENTED BY Thinus Nienaber Introductions Why are You here? Where are You coming from? Where are You going? What do You expect? From the intervention? From Yourself? Let s share!
More informationEnterprise Risk Management Integrated with Strategy & Performance
Implementing the updated COSO ERM framework Enterprise Risk Management Integrated with Strategy & Performance Frank Balabyeki February 2, 2018 What is the Updated COSO ERM Framework? Key Changes to the
More informationFear, Uncertainty, Doubt
Fear, Uncertainty, Doubt However, ERM = Manageable OK, Back to The Bonadio Group Standard Enterprise Risk Management An Overview on Key Controls We Will Cover Why ERM ERM COSO basics Tangible benefits
More informationAdvisory on UNESCO s Enterprise Risk Management. Internal Oversight Service Audit Section. IOS/AUD/2016/05 Original: English.
Internal Oversight Service Audit Section IOS/AUD/2016/05 Original: English Advisory on UNESCO s Enterprise Risk Management July 2016 Auditors: Sameer Pise Dawn Clemitson Christian Muco EXECUTIVE SUMMARY
More informationPOLICY ON RISK MANAGEMENT
POLICY ON RISK MANAGEMENT This Policy was approved by the Board of Trustees on March 14, 2017. Table of Contents 1. INTRODUCTION... 1 2. OBJECTIVE... 1 3. APPLICATION... 1 4. POLICY... 1 5. ROLES AND RESPONSIBILITIES...
More informationKey Risks and Risk Based Management Update
Key Risks and Risk Based Management Update Recommendation That the Standing Policy Committee on Finance recommend to City Council: 1. That the information be received; and 2. That the proposed Key Corporate
More informationCommunity Bankers Conference
3rd Annual Regional and Community Bankers Conference The Federal Reserve Bank of Boston Disclaimer NEVER WRONG DON T COMPLETELY RELY UPON Recent Developments in Audit Practice SOX, FDICIA 112, Other Robert
More informationISO 31000:2009(E):Risk Management Principles and Guidelines
International Organization for Standardization ISO 31000:2009(E):Risk Management Principles and Guidelines Sections 4 through Section 5 First Edition: November 15, 2009 2 International Organization for
More informationREPORT 2015/077 INTERNAL AUDIT DIVISION
INTERNAL AUDIT DIVISION REPORT 2015/077 Advisory engagement to assist the International Trade Centre in its efforts to develop a risk management framework 29 July 2015 Assignment No. VE2014/350/01 CONTENTS
More informationEthics & Governance Program Plan 2019
Ethics & Governance Program Plan 2019 Version: 0.0 Issued: 31 January 2019 Copyright: Advanced Electronics Company Table of Contents SECTION 1. FORWARD... 3 1.1 INTRODUCTION... 3 SECTION 2. ACTIVITIES
More informationUN-HABITAT ENTERPRISE RISK MANAGEMENT IMPLEMENTATION GUIDELINES
UN-HABITAT ENTERPRISE RISK MANAGEMENT IMPLEMENTATION GUIDELINES April 2015 1 P a g e UN-Habitat ERM Implementation Guidelines April 2015 UN-HABITAT ENTERPRISE RISK MANAGEMENT IMPLEMENTATION GUIDELINES
More informationCOSO Internal Control Integrated Framework update. INTOSAI Subcommittee on Internal Control Standards
COSO Internal Control Integrated Framework update INTOSAI Subcommittee on Internal Control Standards Cees Klumper RA MBA CIA Member of the COSO Advisory Council Chief Risk Officer of the Global Fund to
More informationEffective implementation of COSO s new anti-fraud guidance
Effective implementation of COSO s new anti-fraud guidance In September 2016, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) published a new Fraud Risk Management Guide (Anti-fraud
More informationExecutive Teams and the Use of ISO in Decision Making. Scott Wightman, ARM-E National Director Gallagher ERM Practice
Executive Teams and the Use of ISO 31000 in Decision Making Scott Wightman, ARM-E National Director Gallagher ERM Practice Agenda Defining ERM Mission, Objectives and Uncertainty Governance and Risk Varying
More informationThe Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be
Enterprise Risk Management The Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be 2 Enterprise Risk Management Table of content 1. Introduction...05 2. Takeaways...07 3. Key
More informationCritical Success Factor in ERM Implementation
Critical Success Factor in ERM Implementation Mohd Shahari Idris 4 th & 5 th June 2014, Mandarin Oriental Hotel, KL Integrating Risk and Objectives VISION MISSION STRATEGY MAP ENTERPRISE RISK MANAGEMENT
More informationRisk Advisory SERVICES. A holistic approach to implementing effective governance, managing risk and maintaining compliance
Risk Advisory SERVICES A holistic approach to implementing effective governance, managing risk and maintaining compliance Contents Weaver's Risk Advisory Services 1 Enterprise Risk Management 4 Assessing
More informationSOLUTION BRIEF RSA ARCHER AUDIT MANAGEMENT
RSA ARCHER AUDIT MANAGEMENT INTRODUCTION Internal audit departments are struggling to deliver strategic leadership, coordinated assurance and other services their stakeholders need, but this task isn t
More informationEFFICIENT USE OF AUDIT COMMITTEES
AGENDA EFFICIENT USE OF AUDIT COMMITTEES BRENT YOUNG, CPA JERRY GAITHER, CPA Best practices related to: Audit Committee Process Internal Audit Risk Management 2 AUDIT COMMITTEE PROCESS AND PROCEDURES Audit
More informationEnterprise Risk Management Assessment Results
September 18-19, 2018 Enterprise Risk Management Assessment Results Board of Trustees Retreat Minnesota State Agenda ERM Process Overview ERM Roles & Responsibilities Minnesota State Strategic Objectives
More informationRAISING THE STANDARD THE NEW ISO RISK MANAGEMENT STANDARD
RAISING THE STANDARD THE NEW ISO RISK MANAGEMENT STANDARD Grant Purdy Associate Director, Broadleaf Capital International Chair, Standards Australia and Standards New Zealand Risk Management Committee,
More informationRisk Management Policy
9 Spokes International Limited Risk Management Policy Last Updated: May 2016 9 Spokes International Limited Risk Management Policy 1 Contents 1 Introduction... 3 2 Purpose... 3 3 Scope... 3 4 General roles
More informationStatement on Risk Management and Internal Control
INTRODUCTION The Board affirms its overall responsibility for the Group s system of internal control and risk management and for reviewing the adequacy and effectiveness of the system. The Board is pleased
More informationIn 1992, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) issued a
Checkpoint Contents Accounting, Audit & Corporate Finance Library Editorial Materials Audit and Attest Internal Control Communications Chapter 1 INTRODUCTION AND OVERVIEW 100 Background 100 Background
More informationDeveloping an Integrated Anti-Fraud, Compliance, and Ethics Program
Developing an Integrated Anti-Fraud, Compliance, and Ethics Program Introduction Eric Feldman, CFE, CIG Affiliated Monitors, Inc. 2018 Association of Certified Fraud Examiners, Inc. CPE Information 2018
More informationTaking ERM to a. 6 GRC Today / October 2015
GLOBAL SCALE 6 GRC Today / October 2015 Global Scale lobal events highlighted by G business scandals, failures, information theft, and natural disasters have shone the spotlight yet again on risk management
More informationRISK MANAGEMENT FRAMEWORK OF THE CGIAR SYSTEM
RISK MANAGEMENT FRAMEWORK OF THE CGIAR SYSTEM Approved by the System Council at its 5 th meeting (SC/M5/DP12) 10 November 2017 CGIAR System Organization Page 1 of 9 Introduction 1. The scope of CGIAR s
More informationSan Francisco Chapter. Presented by Scott Perry - Slalom Consulting
Presented by Scott Perry - Slalom Consulting Introductions Session Objectives Overview of Enterprise Risk Management The Role Of IT IT Governance Model IT Risk Assessment How IT Auditors Add Value Key
More informationBearing the Bad News Reporting to the Board on Internal Corruption. Peter Dent, National Leader Deloitte Forensics September 11, 2013
Bearing the Bad News Reporting to the Board on Internal Corruption Peter Dent, National Leader Deloitte Forensics September 11, 2013 Agenda Assessment of Risk in Canada Recent trends in enforcement activity
More informationRisk Management Policy
Risk Management Policy IPH Limited ACN 169 015 838 1. Introduction Organisations of all types and scale face internal and external factors and influences that make it uncertain whether and when they will
More informationAppendix A. Simplified Sample Entity-Level Control Matrices
Control Strategies: A Mid to Small Business Guide By Julie Harrer Copyright 2008 Hamlet ing Corp. Appendix A Simplified Sample Entity-Level Control Matrices Control Environment Possible Controls Integrity
More informationEstablishing Enterprise Risk Management in
Establishing Enterprise Risk Management in Management Practices Introductions/Opening Remarks Speakers: Cynthia Vitters, Chief Risk Officer, Federal Student Aid Mike Wetklow, Branch Chief, Office of Management
More informationWhy BSI? Our products and services. To find out more visit: bsigroup.com/en-au. Conclusion
Conclusion Risk-based thinking is not new Risk-based thinking is something you do already Risk-based thinking is continuous Risk-based thinking ensures greater knowledge and preparedness Risk-based thinking
More informationDeveloping an Integrated Anti-Fraud, Compliance, and Ethics Program
Developing an Integrated Anti-Fraud, Compliance, and Ethics Program Monitoring, Assessing, and Remediating the Program 2018 Association of Certified Fraud Examiners, Inc. Discussion Questions 1. How does
More informationRSA ARCHER MATURITY MODEL: AUDIT MANAGEMENT
RSA ARCHER MATURITY MODEL: AUDIT MANAGEMENT OVERVIEW Internal Audit (IA) plays a critical role in mitigating the risks an organization faces. Audit must do so in a world of increasing risks and compliance
More information