Preparing for a Compliance Audit under Mandatory Reliability Standards
|
|
- Hillary Tate
- 5 years ago
- Views:
Transcription
1 Preparing for a Compliance Audit under Mandatory Reliability Standards Dan Skaar March 1, 2010 Midwest Reliability Organization Background Reliability Standards are mandatory in the U.S. under Section 215 of the Federal Power Act (since 2007) and in other parts of Canada, subject to provincial authorities NERC, as the international Electric Reliability Organization, delegates its authorities to Regional Entities (Midwest Reliability Organization) Compliance and Enforcement of Reliability Standards is done under Rules called the Compliance and Enforcement Monitoring Program (CMEP) In the U.S., the Federal Energy Regulatory Commission approves any enforcement actions or Rules changes 2
2 Preparing for An Audit-Big Picture Understand the Mind of the Auditor Risk averse Seek Reasonable Assurance -show me [it s not about trust; its about demonstrating compliance] Risks, Controls, and Materiality Inherent Risk the risk linked to the activity itself assuming there are no related controls Control Risk - the risk that controls will not prevent, detect and correct errors Detection Risk risk that auditor will not detect a material problem function of audit procedure and its application by the auditor Three Phases to An Audit [reference GAO Yellow Book : MRO asserts that compliance audits should be conducted under the applicable performance audit standards] Planning: understanding the entity under audit Fieldwork: evidentiary review- overall sufficiency Reporting: conclusions and findings 3 Compliance Controls Culture of Compliance Significant mitigating factor for audit risk and enforcement actions How can you demonstrate it? Examples: Have a written program Senior management engagement early and often [MRO likes to see a very senior executive engaged in the audit] and review of draft audit reports Documentation readily available (ability to get information quickly) Understanding of how to demonstrate compliance Single points of contacts On going compliance training, including the field staff [documents are marked that are compliance mandatory] and buy in Cooperation [flexibility for change to schedule, provide additional information, etc.] Continuous and tested [internal self assessments, self reporting, training] Complete the internal compliance control survey Bottom line: Effective compliance programs Detect, Report, and Correct [refer to Commission guidance, US sentencing guidelines, NERC sanction guidelines, COSO framework] 4
3 Interview Preparation Part of an audit relies on interviews of Subject Matter Experts and others Those who will be interviewed should: Exhibit clear communications Not be defensive; be open, but not flippant Listen to the questions and discussion Not guess, provide alternatives to demonstrate compliance; not everyone demonstrates compliance the same way, get adequate clarifications to accurately address the question Know that auditors like to corroborate answers from interviews with other sources; so help the auditors corroborate your answers 5 Don t Confuse Enforcement with Compliance Compliance: the burden is on the entity to provide sufficient evidence to be reasonably assured of compliance [known as the man on the street test ] Enforcement: the burden is on the Region [closer to absolute assurance ] 6
4 Segregating Compliance from Enforcement Reaching Absolute Assurance = Enforcement Action ENFORCEMENT COMPLIANCE ABSOLUTE ASSURANCE REASONABLE ASSURANCE Investigations and Findings Notices [INAVs, NOAVs, NOCVs] Settlements and Hearings Key considerations: harm, compliance culture, intent, compliance history, sufficiency/quality of evidence Sufficiency Relevance FINDINGS (Potential Wrong Doing) Appropriateness ( reliability ) Overall Assessment of Evidence Key considerations: risk, materiality, strength of internal (compliance) controls, applicability, legal context of Section 215 and provincial agreements CMEP Due Process GAO STANDARDS 1. Planning 2. Field Work 3. Reporting No Presumption of Wrong Doing Midwest Reliability Organization Documentation Retention Documentation Keep current and retain past versions and be able to produce them on request [ask the audit lead on the audit monitoring period of the applicable standards] Make sure retention policies align with obligation to produce evidence for an audit Operations Retain logs and communications of significant events [searchable is a plus] Protection Systems, Vegetation Management Retain all maintenance and testing records [database is a plus] Planning Retain studies, communications 8
5 Audit Packet 60 Day Notice [voluntarily using 90 day notices] Pre-Audit Survey High level overview and logistics Questionnaire Reliability Standard Auditor Worksheets (QRSAWs) Describe process to meet compliance with each requirement Identify supporting documentation, section, page numbers Identify Subject Matter Experts [SME] Single points of contacts are most helpful Provide response to general questions 9 Supporting Evidence Provide Identified Evidence Catalog Evidence By Standard Library approach for common documents, such as System Restoration Plan Evidence Naming Conventions Facility Ratings Methodology, FAC_008 , FAC008 Comments FAC_008_R1_D1, FAC_008_R2 D1 Doc1.pdf, Doc2.pdf, Doc3.pdf 10
6 Supplemental Evidence Requested prior to on-site fieldwork/webex (off-site) Provide in electronic format prior to visit/meeting Similar presentation as initial submittal-by Standard Requested on-site/webex (off-site) Provide in electronic format at end of each day Goal: Save trees-zero paper at the end of the day for the audit team 11 Tips Ask questions; don t assume Its fair to ask the auditors how can I demonstrate compliance with this standard [there should be no mysteries; its an open book test ] Its not fair to ask the auditors if I do this, will I be compliant [independent auditors cannot step in the shoes of an owner, operator or user of the bulk power system. We cannot assume the risk that we know how to operate, own and operate your system better than you. If you are not sure, self report] Request a pre-audit conference Provide an overview of your company and compliance programs; help the auditor understand your business Assign single points of contacts for providing the documentation to the auditor [ask the same of the auditor] 12
7 Tips Perform a self assessment once a year [use a peer company] as part of a systematic compliance program [not point in time compliance ] Be an advocate for you company. At the end of the day, if the auditor disagrees and makes a finding, you are protected through the due process steps in the enforcement Rules 13 Questions? QUESTIONS 14
Reliability Assurance Initiative Implementation Status
MIDWEST RELIABILITY ORGANIZATION Risk-Based Compliance Monitoring and Enforcement Reliability Assurance Initiative Implementation Status MRO Board of Directors Meeting October 5, 2016 Improving RELIABILITY
More informationMRO s CMEP Approach Ten-Year Retrospective and A Bright Future
MRO s CMEP Approach Ten-Year Retrospective and A Bright Future Sara Patrick, MRO Vice President, Compliance Monitoring and Regulatory Affairs Joint Standards and Compliance Committees Meeting August 3,
More information4.1 Violation Reporting Remedial Action Directives Mitigation Plans Internal Training Self Assessments...
NERC Compliance Monitoring and Enforcement Program Florida Reliability Coordinating Council, Inc. Table of Contents 1. Introduction... 1 2. Florida Reliability Coordinating Council Compliance Monitoring
More informationGeneral Engagement Plan Briefing Compliance Audits & Spot Checks
General Engagement Plan Briefing Compliance Audits & Spot Checks TEXAS RELIABILITY ENTITY, INC. TEM 10.0.76 805 LAS CIMAS PARKWAY, SUITE 200 AUSTIN, TEXAS 78746 (512) 583-4900 Contents INTRODUCTION...
More informationCompliance Monitoring and Enforcement Program Implementation Plan. Version 1.7
Compliance Monitoring and Enforcement Program Table of Contents TABLE OF CONTENTS NERC Compliance Monitoring and Enforcement Program... 1 Introduction... 2 NERC Compliance Monitoring and Enforcement Program
More informationPerforming a Successful Audit. Fundamentals of Auditing ERO Compliance Audit Process Jim Hughes Manager, Audit Assurance and Oversight
Performing a Successful Audit Fundamentals of Auditing ERO Compliance Audit Process Jim Hughes Manager, Audit Assurance and Oversight Objectives At the end of this session, participants will be able to:
More informationTransition into Risk Based Audit Reliability Compliance Using ISO31000 Methodology By: Ed Sattar
Transition into Risk Based Audit Reliability Compliance Using ISO31000 Methodology By: Ed Sattar 5910 Courtyard Drive Suite 170 Austin, Texas USA 78731, 866-385-2341 www.360factors.com Transition into
More informationInternal Controls. Your Silent and Invisible Workforce. MRO Performance and Risk Oversight Subcommittee (PROS) Compliance Committee
Internal Controls Your Silent and Invisible Workforce MRO Performance and Risk Oversight Subcommittee (PROS) JOSEPH DEPOORTER DIRECTOR NERC COMPLIANCE & GENERATION OPERATIONS, MADISON GAS AND ELECTRIC
More informationProcedure for Conducting On-Site Compliance Audits
Procedure for Conducting On-Site Compliance Audits CP-02 Rev. 7 The NERC Rules of Procedure and the Regional Delegation Agreement are the overriding documents that govern the implementation of the CMEP.
More informationCompliance Oversight Plan
October 31, 2017.0 MON-111 3000 Bayport Drive, Suite 600 Tampa, Florida 33607-8411 (813) 289-5644 - Phone (813) 289-5646 Fax www.frcc.com Table of Contents Page 3 of 13 Page 1.0 Purpose and Scope 4 1.1
More informationFRCC s Enforcement and More! (Revised with Information from the 2/19/15 FERC Order on RAI) FRCC Webinar
FRCC s Enforcement and More! (Revised with Information from the 2/19/15 FERC Order on RAI) FRCC Webinar February 19 & 26, 2015 Ground Rules All participants have been muted upon sign-on Please keep your
More informationCompliance and Enforcement in a Self Regulatory Model (Reliability provisions of Energy Policy Act of 2005)
Compliance and Enforcement in a Self Regulatory Model (Reliability provisions of Energy Policy Act of 2005) Daniel P. Skaar, President Midwest Reliability Organization September 14-17, 2008 midwestreliability.org
More informationOperationalizing Internal Controls
Operationalizing Internal Controls Terry Bilke MISO MRO Representative on the NERC Compliance and Certification Committee (CCC) MRO s 2017 CMEP Conference November 28, 2017 Agenda Quick survey NERC CCC
More informationWECC Internal Controls Evaluation Process
WECC Internal Controls Evaluation Process Ruchi Shah Manager, Compliance Risk Analysis & Phil O Donnell Manager, Operations & Planning Audit November 16, 2017 155 North 400 West, Suite 200 Salt Lake City,
More informationBritish Columbia United States Comparator: Standard-Making and Enforcement Functions
British Columbia United States Comparator: Standard-Making and Enforcement Functions Reliability Standards Currently in Effect Below is a link to a list of Mandatory Reliability Standards adopted in BC,
More informationDiscussion Paper for Regional Delegation Agreement Workshop and Invitation for Comments October 26, 2009
I. Background Discussion Paper for Regional Delegation Agreement Workshop and Invitation for Comments October 26, 2009 A fundamental component of the ERO s operation is the reliance on Regional Entities
More informationERO Enterprise Internal Control Evaluation Guide
ERO Enterprise Internal Control Evaluation Guide October 2014 I Table of Contents Preface... iii Introduction... iv Revision History... iv 1.0 Internal Control Evaluation...1 1.1 ICE role within the overall
More informationCompliance and Certification Committee Report on the ERO Enterprise Effectiveness Survey
Compliance and Certification Committee Report on the ERO Enterprise Effectiveness Survey December 2016 NERC Report Title Report Date I Table of Contents Preface... iii Introduction... iv Response Rates
More informationERO Enterprise Guide for Compliance Monitoring
ERO Enterprise Guide for Compliance Monitoring October 2016 NERC Report Title Report Date I Table of Contents Preface... iv Revision History... v 1.0 Introduction...1 1.1 Processes within the Overall Risk-Based
More informationHow I Learned to Stop Worrying and Love Cyber Security Or We have a CIP Audit scheduled. Now what do we do?
How I Learned to Stop Worrying and Love Cyber Security Or We have a CIP Audit scheduled. Now what do we do? Bobby Gray BPU NERC Compliance Officer Humble Citizen of the Free State of Kansas Disclaimer
More informationWATCH WORDS FROM THE PEER REVIEW PROCESS
WATCH WORDS FROM THE PEER REVIEW PROCESS Peer Review 3 NOT DOCUMENTED = NOT PERFORMED Vendor-obtained practice aids, checklists and forms are NOT audit evidence Sources of audit evidence Books, records,
More informationProcedure for Conducting Off-Site Compliance Audits
Procedure for Conducting Off-Site Compliance Audits CP-03 Rev.6 The NERC Rules of Procedure and the Regional Delegation Agreement are the overriding documents that govern the implementation of the CMEP.
More informationManitoba U.S. Comparator: Standard-Making and Enforcement Functions
Manitoba U.S. Comparator: Standard-Making and Enforcement Functions Key Organizations in Manitoba s Electricity Sector Legislative Framework: Government of Manitoba, Energy Division On April 1, 2012, mandatory
More informationWelcome! NERC 2016 Standards and Compliance Workshop Hyatt Regency St. Louis at The Arch. July 12-14, 2016
Welcome! NERC 2016 Standards and Compliance Workshop Hyatt Regency St. Louis at The Arch July 12-14, 2016 NERC Antitrust Compliance Guidelines It is NERC s policy and practice to obey the antitrust laws
More informationBenchmarking of audit regime against audit best practices
Benchmarking of against best practices Introduction 1. In February 2015, the Authority engaged PA Consulting Limited (PA Consulting) to develop a comparison framework to allow the Electricity Authority
More informationCompliance Operations Draft Reliability Standard Compliance Guidance for PER July 1, 2013
Compliance Operations July 1, 2013 Introduction The NERC Compliance department (Compliance) worked with the PER-005 informal ad hoc group (PER Group) in a review of pro forma standard PER-005-2. The purpose
More informationDRAFT Reliability Standard Audit Worksheet 1
DRAFT Reliability Standard Audit Worksheet 1 PER-005-2 Operations Personnel Training This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity: NCR Number: Compliance
More informationAudit Report Discussion
Audit Report Discussion NERC Regional Auditor Workshop February, 2011 1 Promoting RELIABILITY and Mitigating RISKS to the Bulk Power System Audit Report Discussion Purpose This discussion should be considered
More information5. Effective Date: See the Implementation Plan for IRO-006-EAST-2.
A. Introduction 1. Title: Transmission Loading Relief Procedure for the Eastern Interconnection 2. Number: IRO-006-EAST-2 3. Purpose: To coordinate action between Reliability Coordinators within the Eastern
More informationApproved at the 2/27/07 BOD Meeting 2007 Corporate Goals
Approved at the 2/27/07 BOD Meeting 2007 Corporate Goals The Board of Directors of NPCC Inc. and NPCC CBRE have established the following regional corporate goals for 2007 which are consistent with the
More informationJuan Carlos Ramirez, VP, AML/ATF & Sanctions Audit, Scotiabank. Compliance and Risk Management
Juan Carlos Ramirez, VP, AML/ATF & Sanctions Audit, Scotiabank Compliance and Risk Management Governance Service providers Operational Risk Fraud AML Sanctions Risk Management Compliance Assessment Financial
More informationAGA Gulf Region PDT COSO and the Green Book: An Enhanced Internal Control Framework
AGA Gulf Region PDT COSO and the Green Book: An Enhanced Internal Control Framework Isabelle Dikland, Director, MorganFranklin Consulting Timothy Grace, Director, MorganFranklin Consulting May 6, 2015
More informationWATCH WORDS FROM THE PEER REVIEW PROCESS
WATCH WORDS FROM THE PEER REVIEW PROCESS Peer Review 3 NOT DOCUMENTED = NOT PERFORMED Vendor-obtained practice aids, checklists and forms are NOT audit evidence Sources of audit evidence Books, records,
More informationPresented by Russ Hissom and Carol Arneson
Evidence Standards and Insights for NERC Compliance Audits Presented by Russ Hissom and Carol Arneson Baker Tilly Virchow Krause, LLP March 1, 2010 1 About Baker Tilly Virchow Krause Company Overview Firm
More informationInternal Auditing For Medicare Part D. The Medicare Part D Prescription Drug Program
Internal Auditing For Medicare Part D Scott Robinson, CPA Senior Internal Auditor CareFirst BlueCross BlueShield Health Care Compliance Association 6500 Barrie Road, Suite 250, Minneapolis, MN 55435 888-580-8373
More informationGrant Thornton LLP Re: Proposed Changes to Government Auditing Standards , 2017 Exposure Draft Grant Thornton LLP
July 6, 2017 Gene L. Dodaro Comptroller General of the United States United States Government Accountability Office 441 G St., NW Washington, DC 20548 Via Email to YellowBookComments@gao.gov Grant Thornton
More informationCompliance Monitoring and Enforcement Program Standards and Guidance
Compliance Monitoring and Enforcement Program Standards and Guidance This document is based on the standards found in the Yellow Book of the United States Government Accountability Office, produced by
More information2016 ERO Enterprise Compliance Monitoring and Enforcement Program Annual Report
2016 ERO Enterprise Compliance Monitoring and Enforcement Program Annual Report February 8, 2017 NERC Report Title Report Date I Table of Contents Table of Contents... ii Preface... iv Executive Summary...
More informationUnofficial Comment Form Project Cyber Security Supply Chain Risk Management
Project 2016-03 Cyber Security Supply Chain Risk Management DO NOT use this form for submitting comments. Use the electronic form to submit comments on proposed CIP-013-1 Cyber Security - Supply Chain
More informationCriteria for Annual Regional Entity Program Evaluation
Criteria for Annual Regional Entity Program Evaluation CCC Monitoring Program CCCPP-010-4 October 2016 NERC Report Title Report Date I Table of Contents Revision History... iii Preface... iv Executive
More informationChelan PUD Reliability Compliance Analyst Level Guide
Core Functions Education & Certifications Assist with monitoring, evaluating, and tracking external compliance requirements, deadlines and industry best practices, particularly as to FERC, NERC and WECC.
More informationReview of Compliance. Review completed 30 June 2015 Unclassified summary released October 2015
Review of Compliance Review completed 30 June 2015 Unclassified summary released October 2015 Contents Introduction... 3 Summary of Review... 3 Recommendations of the Review:... 4 Director s Response...
More informationOPERATIONAL EXCELLENCE ACROSS THE ERO ENTERPRISE: Adding Value to the Compliance Monitoring and Enforcement Program
OPERATIONAL EXCELLENCE ACROSS THE ERO ENTERPRISE: Adding Value to the Compliance Monitoring and Enforcement Program A Discussion Paper By the Midwest Reliability Organization I. INTRODUCTION This discussion
More informationFAC Facility Interconnection Requirements
FAC-001-3 Interconnection Requirements A. Introduction 1. Title: Interconnection Requirements 2. Number: FAC-001-3 3. Purpose: To avoid adverse impacts on the reliability of the Bulk Electric System, Transmission
More informationCompliance Operations Update
Compliance Operations Update The Reliability Assurance Initiative Earl Shockley, Senior Director of Compliance Operations 2013 NERC Standards and Compliance Fall Workshop September 26, 2013 Table of Contents
More informationNPCC 2008 Corporate Goals
NPCC Board of Directors Approved - 2/15/08 NPCC 2008 Corporate Goals The Board of Directors of NPCC have established the following corporate goals for 2008 which are consistent with the evolving long term
More informationInnovation and Internal Controls
Innovation and Internal Controls AGA Dallas Chapter January 25, 2018 Renee L. Hayden, CPA, CFE Interim Managing Director Center for Performance Excellence City of Dallas Training Objective: Learn About
More informationDRAFT Meeting Minutes Compliance and Certification Committee September 17, :00 p.m. - 5:00 p.m. ET September 18, :00 a.m.
DRAFT Meeting Minutes Compliance and Certification Committee September 17, 2014 1:00 p.m. - 5:00 p.m. ET September 18, 2014 8:00 a.m. - Noon ET Hyatt Regency Vancouver Vancouver, BC, Canada Introductions
More informationFERC/NERC Compliance Self-Assessments and Preparing for an External Audit. Introductions
FERC/NERC Compliance Self-Assessments and Preparing for an External Audit "Simplicity means the achievement of maximum effect with minimum means. Albert Einstein 1 Introductions Deena King Managing g Director,
More information1/12/2016. Standards for Internal Control in the Federal Government. Standards for Internal Control in the Government
Standards for Internal Control in the Federal Government Internal Control through the Years Standards for Internal Control in the Government GAO s Revised Green Book 1 2 Why the Green Book? What s in the
More informationImplementing Sound CASS Governance
Implementing Sound CASS Governance TISA Seminar 26 September 2012 Kevin Huby and Deb Weston Kinetic Partners 2010 Agenda What do we mean by CASS governance? Building a robust CASS oversight framework The
More informationEntity Risk Assessment
MIDWEST RELIABILITY ORGANIZATION Entity Risk Assessment NERC Workshop Reliability Assurance Initiative Dan Skaar, President and CEO April 3, 2013 Improving RELIABILITY and mitigating RISKS to the Bulk
More informationReliability Assurance Initiative ATC s Participation as a MRO Pilot
Reliability Assurance Initiative ATC s Participation as a MRO Pilot Doug Johnson Manager of Operational Compliance American Transmission Company LLC (ATC) atcllc.com MRO Pilot Project American Transmission
More informationCIMA. The future of business.
WHAT IS INTERNAL AUDIT? An internal audit is an independent assurance and consulting activity designed to add value to an organisation s operations and help it to achieve its objectives by evaluating and
More informationReliability Assurance Initiative. Sonia Mendonca, Associate General Counsel and Senior Director of Enforcement
Reliability Assurance Initiative Sonia Mendonca, Associate General Counsel and Senior Director of Enforcement Agenda Reliability Assurance Initiative (RAI) Overview 2015 ERO CMEP Implementation Plan Inherent
More informationInternal Control at OSU COSO & Enterprise Risk Management. Oregon State University Board of Trustees Executive & Audit Committee Educational Session
Internal Control at OSU COSO & Enterprise Risk Management Oregon State University Board of Trustees Executive & Audit Committee Educational Session OSU Internal Control Model - COSO The COSO framework
More informationCompliance Operations Update
Compliance Operations Update The Reliability Assurance Initiative Earl Shockley, Senior Director of Compliance Operations 2013 NERC Standards and Compliance Fall Workshop September 26, 2013 Table of Contents
More informationHAR658. Essential Skills for the Government Auditor - 9 hours
HAR658 Essential Skills for the Government Auditor - 9 hours Objectives CHAPTER 1 - What Is an Auditor? Learning Objectives: Contrast the objective and scope Cite the questions that auditors seek to answer
More informationTable of Contents. 2 Introduction: Planning an Audit? Start Here. 4 Starting From Scratch. 6 COSO s 2013 Internal Control Integrated Framework
Table of Contents 2 Introduction: Planning an Audit? Start Here 4 Starting From Scratch 6 COSO s 2013 Internal Control Integrated Framework 8 Preparing for a Planning Meeting 10 Preparing the Audit Program
More informationInternal Audit Charter
Internal Audit Charter 1. Purpose The purpose of this Charter is to state clearly the objectives and scope of esure Group s (esure) Internal Audit function. It also serves to outline the function s position
More informationFormat and organization of GAGAS Auditor preparation of financials is a significant threat to independence 3 party arrangements in government State
The Yellow Book = GAGAS GAGAS = Generally Accepted Government Auditing Standards Overlay of Generally Accepted Auditing Standards (GAAS) issued by the Auditing Standards Board GAGAS contains the framework
More informationSAMPLE BEC SuperfastCPA Review Notes
BEC 2018 SuperfastCPA Review Notes Table of Contents Corporate Governance 1 Internal Control Frameworks 1 Enterprise Risk Management Frameworks 6 Other Regulatory Frameworks and Provisions 10 Economic
More informationIT Audit at Brown. A collaboration between the Information Technology and Internal Audit Teams
IT Audit at Brown A collaboration between the Information Technology and Internal Audit Teams Page 1 Agenda Objective Risk Management Overview Internal Audit at Brown IT Audit at Brown Frequently Asked
More informationInternal Audit Charter
Internal Audit Charter 1. Purpose The purpose of this Charter is to state clearly the objectives and scope of esure Group Plc s (esure) Internal Audit function. It also serves to outline the function s
More informationAICPA CITP Credential Examination Series
Topic: COSO Framework Presenters: Al Chen and Virginia Collins Al Chen: Hello, and welcome to the AICPA CITP Credential Examination series. This podcast will assist you in preparing for the examination
More informationNERC Compliance Public Bulletin # Guidance for Entities that Delegate Reliability Tasks to a Third Party Entity
NERC Compliance Public Bulletin #2010-004 Guidance for Entities that Delegate Reliability Tasks to a Third Party Entity Version 2.0 July 16, 2015 Public Process Announcement I. Introduction This guidance
More informationInstitute of Internal Auditors 2019 CONNECT WITH THE IIA CHICAGO #IIACHI
Institute of Internal Auditors 2019 CONNECT WITH THE IIA CHICAGO CHAPTER: @IIACHI #IIACHI WWW.FACEBOOK.COM/IIACHICAGO HTTPS://WWW.LINKEDIN.COM/GROUPS/1123977 1 How to Build and Run an Effective Compliance
More informationPrinciples of Compliance Monitoring and Enforcement Program Activities
Agenda Item 3 Principles of Compliance Monitoring and Enforcement Program Activities Ed Kichline, Senior Counsel and Director of Enforcement Oversight Kristen Senk, ReliabilityFirst, Managing Enforcement
More informationHSE Assurance Overview
HSE Assurance Overview Agenda 1 2 3 4 5 Assurance Framework Three Lines of Defense Model Interview Techniques Lessons Learned Documenting findings BHP Risk and Assurance Hierarchy 3 Assurance Model Life
More informationReliability Assurance Initiative (RAI) Update. June 19, 2014, 3 pm 5 pm EDT Industry Webinar
Reliability Assurance Initiative (RAI) Update June 19, 2014, 3 pm 5 pm EDT Industry Webinar Administrative Items NERC Antitrust Guidelines It is NERC s policy and practice to obey the antitrust laws and
More informationNERC Standards and Compliance 101
NERC Standards and Compliance 101 Mallory Huggins, NERC Standards Developer Adina Mineo, NERC Senior Compliance Operations Auditor Standards and Compliance Spring Workshop April 1, 2014 Presentation Agenda
More informationAudit by Design: Moving Beyond Continuous Auditing - a Vision for Future Models
Audit by Design: Moving Beyond Continuous Auditing - a Vision for Future Models Kendall Tieck, VP Internal Audit, Workday, Inc. Professional Strategies S31 If you look in the rear view mirror too long
More informationFAC Facility Interconnection Requirements
FAC-001-2 Interconnection Requirements A. Introduction 1. Title: Interconnection Requirements 2. Number: FAC-001-2 3. Purpose: To avoid adverse impacts on the reliability of the Bulk Electric System, Transmission
More informationReview of Standards Becoming Enforceable in 2014
Review of Standards Becoming Enforceable in 2014 Laura Hussey, NERC Director of Standards Development Standards and Compliance Workshop April 3, 2014 New BAL and VAR Standards in 2014 BAL-001-1 Real Power
More informationEffective Date: See Implementation Plan for BAL B. Requirements and Measures
A. Introduction 1. Title: Balancing Authority Control 2. Number: BAL-005-1 3. Purpose: This standard establishes requirements for acquiring data necessary to calculate Reporting Area Control Error (Reporting
More informationEnterprise Risk Management Program Development Update. Finance & Audit Committee Meeting September 25, 2015
Enterprise Risk Management Program Development Update Finance & Audit Committee Meeting September 25, 2015 Enterprise Risk Management Presentation Topics Enterprise Risk Management ( ERM ) Overview Lead
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationERO Enterprise and Corporate Metrics
ERO Enterprise and Corporate Metrics Quarter 2 Status Mark Lauby, Senior Vice President and Chief Reliability Officer Corporate Governance and Human Resources Committee Meeting August 10, 2016 Leading
More informationRAI Compliance Activities Overview
RAI Compliance Activities Overview Updated on July 10, 2014 NERC Report Title Report Date I 3353 Peachtree Road NE Suite 600, North Tower Atlanta, GA 30326 404-446-2560 www.nerc.com 1. The End State Vision
More informationEthics and Financial Reporting: Delivering on the Commitment
An address by Bill MacKinnon, FCA Chief Executive, KPMG LLP To the EthicsCentre, Toronto Ontario February 27, 2003 (check against delivery) 1 Thank you The world of auditing and financial reporting has
More informationProcess Safety Culture and Environmental Management Systems. Bracewell LLP January 17, 2017
Process Safety Culture and Environmental Management Systems Bracewell LLP January 17, 2017 PROCESS SAFETY CULTURE ASSESSMENTS, INVESTIGATIONS, AND LITIGATION PROCESS SAFETY EVENT An unplanned or uncontrolled
More informationIncorporating Risk Concepts into the Implementation of Compliance and Enforcement Table of Contents
Incorporating Risk Concepts into the Implementation of Compliance and Enforcement Table of Contents I. Introduction and The Need for Change II. The Proposed Changes Promote BES Reliability III. Effective
More informationA. Introduction. B. Requirements. Standard PER System Personnel Training
A. Introduction 1. Title: System Personnel Training 2. Number: PER-005-1 3. Purpose: To ensure that System Operators performing real-time, reliability-related tasks on the North American Bulk Electric
More information1.0 PART THREE: Work Plan and IV&V Methodology
1.0 PART THREE: Work Plan and IV&V Methodology 1.1 Multi-Faceted IV&V Methodology Large, complex projects demand attentive and experienced IV&V and project management support to meet expectations. Monitoring
More informationKentucky State University Office of Internal Audit
Draft for Discussion Only P&P Manual Section - Policy# I. Function and Responsibilities MISSION Mission Statement Definition of Internal Auditing PURPOSE, AUTHORITY, RESPONSIBILITY Audit Charter STANDARDS
More informationStrategic Direction Outline
Strategic Direction Outline December 2016 155 North 400 West, Suite 200 Salt Lake City, Utah 84103-1114 Strategic Direction Outline 1 Background This document outlines the Board s strategic direction for
More informationBest Practices for Establishing a Cost-Effective Internal Audit Function. Article by Heidi Wier June 2016
Best Practices for Establishing a Cost-Effective Internal Audit Function Article by Heidi Wier June 2016 Best Practices for Establishing a COST-EFFECTIVE INTERNAL AUDIT FUNCTION BY HEIDI WIER The heightened
More informationU. S. GAO Government Auditing Standards Update The New Yellow Book
U. S. GAO Government Auditing Standards Update The New Yellow Book C H R I S T I N E H A R D E N, M B A, C P A, C G M A F E B R U A R Y 5, 2 0 1 9 2 0 1 9 G F O A A 3 5 TH A N N U A L C O N F E R E N C
More informationVERSION #1 WRITE ON YOUR SCANTRON!!!
ECON 132A WINTER 2009 MIDTERM #2 Name: Date: ANSWER ALL MULTIPLE CHOICE QUESTIONS ON GREEN SCANTRON ANSWER QUESTIONS 29 & 30 IN THE SPACE PROVIDED ANSWER THE SIMULATION ASSIGNMENT IN YOUR BLUE-BOOK, PUT
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationTable of Contents. Preface xi. Acknowledgments xv. Chapter 1: What We All Share 1. Need for Control Criteria 1
Table of Contents Preface xi Acknowledgments xv Chapter 1: What We All Share 1 Need for Control Criteria 1 Overview of the COSO Internal Control Integrated Framework 2 Holistic, Integrated View 3 Revised
More informationStandards for Internal Control in New York State Government 2016 Update
Standards for Internal Control in New York State Government 2016 Update Presented to the New York State Internal Control Association John F. Buyce Audit Director April 28, 2016 1 Last Revised in 2007 A
More informationA. Introduction. B. Requirements and Measures
A. Introduction 1. Title: System Restoration from Blackstart Resources 2. Number: EOP-005-3 3. Purpose: Ensure plans, Facilities, and personnel are prepared to enable System restoration from Blackstart
More informationReport on 2011 NPCC Culture of Compliance Survey Initiative
Report on 2011 NPCC Culture of Compliance Survey Initiative Development In September 2010, NPCC Staff began an initiative that would attempt to identify a registered entity s Culture of Compliance. NPCC
More informationNortheast Power Coordinating Council, Inc. Regional Reliability Standards Process Manual (RSPM)
Northeast Power Coordinating Council, Inc. Regional Reliability Standards Process Manual (RSPM) Development Procedure Adopted by FERC: XXXX XX, 20XX Approved by NERC Board of Trustees: XXXX XX, 20XX Approved
More informationBEFORE THE ONTARIO ENERGY BOARD OF THE PROVINCE OF ONTARIO
BEFORE THE ONTARIO ENERGY BOARD OF THE PROVINCE OF ONTARIO NORTH AMERICAN ELECTRIC ) RELIABILITY CORPORATION ) NOTICE OF FILING OF THE NORTH AMERICAN ELECTRIC RELIABILITY CORPORATION OF REVISIONS TO THE
More informationGETTING THE MOST OUT OF YOUR WOOLWORTHS SUPPLIER AUDIT
GETTING THE MOST OUT OF YOUR WOOLWORTHS SUPPLIER AUDIT Objectives of a WW Supplier Audit: How well a supplier conforms to the standard requirements Safe, quality products Brand protection Additional Supplier
More informationFrom Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance
Sharon Hale and John Argodale May 28, 2015 2 From Dictionary.com Enterprise: A project undertaken or to be undertaken, especially one that is important or difficult or that requires boldness or energy
More informationAuditing Collaboratively
Auditing Collaboratively RETHINKING THE AUDIT PROCESS TO ENHANCE VALUE Jim Pelletier, CIA, CGAP Nine Strategies and Four Tools for Auditing Collaboratively Beware the super chicken Mind your self importance
More information