WORKSHOP 84 STREAMLINING COMPLIANCE THROUGH GRC INTEGRATING A-123 UPDATES AND MORE!
|
|
- Lenard Arnold
- 5 years ago
- Views:
Transcription
1 WORKSHOP 84 STREAMLINING COMPLIANCE THROUGH GRC INTEGRATING A-123 UPDATES AND MORE!
2 BOB THORSON ACCENTURE Bob Thorson is a Senior Manager in Accenture Federal Service s Defense Practice, specializing in Governance, Risk, and Compliance (GRC) tools and human capital solutions. Bob currently oversees DLA s SAP GRC implementation, working to automate their internal controls testing and documentation, and the Department of the Navy s (DON) Managers Internal Control Program (MICP) contractor support, working to create the DON Statement of Assurance. In addition to being Accenture s financial GRC capability lead, Bob has an extensive background in organizational job design, training, and change management. 2
3 SIMONE REBA ACCENTURE Simone Reba is a senior financial manager with Accenture Federal Services, primarily focused on supporting the Department of Navy Financial Improvement Program (FIP). Prior to her move to Accenture, Reba served 30 years with the Defense Logistics Agency (DLA), culminating in her induction into the Senior Executive Service in May 2007 as the DLA s Deputy Chief Financial Officer (CFO). As Deputy CFO, she oversaw and provided guidance to all core financial functions budget, accounting, audit, and process management, served as the Agency budget officer, and the Agency s audit readiness program manager. As Agency s Audit Readiness Program Manager, she successfully led DLA s 27,000 DLA employees to a successful financial statement audit readiness assertion in FY 2015, making DLA the first Defense entity of its size and complexity to assert readiness (two years ahead of the 2017 Congressional Mandate 3
4 NAVIGATING A-123 UPDATES 4
5 OMB A-123 UPDATES WHAT S CHANGED? Takes an Enterprise Risk Management based approach for more effective internal controls, integrating risk management and internal controls Creates a holistic portfolio view of risk, providing agencies greater visibility into uncertainties, enabling better decision making Requires documentation of compliance with 17 GAO Green Book principles Requires creation of a Senior Management Council (or similar existing group) to provide oversight and governance in establishing risk profiles, overseeing operation of an effective system of internal control and implementing an ERM Enterprise Risk Management Establishes an ERM program integrating risk and internal controls throughout all management processes, including budget, strategy, accounting, and audits Internal Controls and System Assessments Increased documentation requirements will require a solid reporting structure for compliance, leveraging an SMC to manage towards an annual Statement of Assurance, that now includes a summary of an Agency s risk profile Deficiencies and Reporting To receive the most benefit from the A-123 revisions, agencies should promote comprehensive corrective action plan documentation and follow-up 5
6 INTEGRATION OF PERFORMANCE, RISK AND INTERNAL CONTROLS Why Reduce risk and cost of mitigation Revised GAO Green Book GAO Fraud Risk Management Framework Upcoming Fraud Reduction and Data Analytics Act OMB A-11 What Agencies Have to Do Develop ERM implementation plan Include findings from Risk Profile as a component of Strategic Review meetings Provide assurance (SOA) on the effectiveness and efficiency of IC over ALL processes & reporting Include risk profile in SOA Integrate ERM and IC Update Risk Profile: Annually by June 3rd Document evidence to substantiate Green Book compliance Leverage/create Senior Management Council (SMC) to: provide risk appetite, risk profile, IC and ERM governance Increases performance - streamlined processes that: o o o Value Reduces business operations cost Reduces mitigation, CAP & compliance cost Increases effectivenss Reduces risk Increases accountability Increases transparency
7 DLA S JOURNEY 7
8 DLA s Mission, Vision, and Values Mission America s Combat Logistics Support Agency, the Defense Logistics Agency (DLA) provides effective and efficient worldwide support to Warfighters and other customers Vision Warfighter-focused, globally responsive, and fiscally responsible supply chain leadership Values Warfighter s needs guide DLA Integrity defines DLA Diversity strengthens DLA Excellence inspires DLA 8
9 What is DLA? DLA is the largest agency within the DoD Provides technical and logistics services to military services and several agencies Supplies almost every consumable item military services need to operate, from food to fuel DLA Statistics Military and civilian personnel (48 states and 28 countries) Over 25,000 Items managed in 9 supply chains ~6M Requisitions per day Over 100,000 Contract actions per day (new awards and mods) 9,000+ Annual Revenue $34B Weapon systems supported ~2,400 Distribution centers managed worldwide 25 Support items annually for 112 nations $2.1B 9
10 EBS Enclave Enterprise Business System (EBS) EBS is DLA s enterprise approach utilizing necessary leading edge technology, to allow DLA to focus on its core business Re-engineered and transformed how DLA does business Enables DLA to consistently deliver new capabilities, minimizes transition risk to DLA and the warfighter Integrates all enterprise system capabilities Financial system of record Single face to customers, suppliers, and external stakeholders External Portal Web/Application Services/SOA Netweaver/WAS, SAP PI WS, BEA Web Logic,Tomcat Enterprise Portal (Internal) - SAP Enterprise Portal, Role, Navigation Smart Forms Terminal Services Adobe Citrix (SAPGUI, BEX) Direct Web Services Microsoft IIS SAP SCM SAP HANA Sidecar SAP BW SAP CRM SAP SRM SAP ECC JDA Manu GRC Access Controls Process Controls Risk Management Greenlight/ Laserfocus 10
11 GRC Audit Readiness Goals Eliminate or mitigate Segregation of Duties violations within the System Access Profiles (Job Role) Establish enterprise process to prevent recurrence of violations with future access profile maintenance or creation Guard against employee fraud, abuse, mistakes, and mistake cover-ups Implement a tool to manage risk, reduce costs, and minimize complexity to support day-to-day management efforts across DLA Pass FISCAM and Internal Controls A-123 audit 11
12 Existing Control Environment Manual Control testing conducted through extensive coordination, meetings and collaboration to determine: Program or process to be tested Testers, reviewers, approvers Site locations Controls to test TOD/TOE Monitoring: data collection, storage, remediation Reporting Enterprise Risk E2E Program/Process Control Test Inability to adapt to a constant and evolving environment P2S Law Enforcement Support Office (LESO) Annual Physical Inventory Inspection Improper Handling of controlled material P2S Safeguarding of control substances Verification of storage vault, vault log, personnel clearances, alarm monitoring, and quarterly inventories 12
13 GRC Implementation Timeline June 2013: Established enterprise access control processes & procedures March 2014: SAP GRC Access Controls identifies and monitors risks for enterprise systems based on enterprise SoD ruleset June 2014: Implemented Emergency Access Management (EAM) for IT Production Support users June 2015: Redesigned end user system access to remove or mitigate SoD violations and implemented ongoing monitoring of SoD violations using Access Violation Management September 2016: Implemented SAP GRC Process Controls and Risk Management for internal control documentation and testing June 2017: Implementing automated monitoring and policy management through SAP GRC 13
14 AUTOMATING COMPLIANCE 14
15 SAP GRC PROCESS CONTROL CONVERGENCE OF COMPLIANCE PROCESS MANAGEMENT AND CONTINUOUS CONTROLS MONITORING Certify and Sign-off (302, Designs, ) One system for end-to-end enterprise control management Deploys controls using riskbased approach Document Test Monitor Certify Review Exceptions Test Automated Controls Business Processes IT Infrastructure Test Manual Controls Remediate Issues Perform Self- Assessments Automatically monitors controls in multiple enterprise applications Detects global risks and prioritizes corrective action Process-Control-Objective-Risk
16 CONTINUOUS CONTROL MONITORING (CCM) AUTOMATING COMPLIANCE CCM enables GRC users to continuously monitor and report on master data, business transactions, and configuration changes, enabling: Improved oversight of key business controls Rapid response to identified deficiencies Significant reduction in compliance cost and effort Source: SAP 16
17 CONTINUOUS CONTROL MONITORING (CCM) AUTOMATING COMPLIANCE Automates running reports or monitoring tables in other systems Results are returned to GRC tool and sent to identified users for review Integrates easily with many different systems Enables automation of compliance testing Examples of automated controls include: Monitoring of high dollar transactions Timely resolution of key interface failures Monitoring compliance of cyber security standards Reliability and Consistency of Testing Cost of Compliance 17
18 QUESTIONS? 18
Department of Navy Audit Update
Department of Navy Audit Update Northern Virginia Chapter Association of Government Accountants April 28, 2017 Victoria Crouse, Chief Strategy Officer Agenda What We ve Done Journey to Date: Key Milestones
More informationRef: (a) Federal Managers' Financial Integrity Act of 1982, P.L (b) OMB Circular A-123 (c) DoD Instruction 5010.
DEPARTMENT OF THE NAVY BUREAU OF MEDICINE AND SURGERY 7700 ARLINGTON BOULEVARD FALLS CHURCH, VA 22042 IN REPLY REFER TO BUMEDINST 5200.13B BUMED-M81 BUMED INSTRUCTION 5200.13B From: Chief, Bureau of Medicine
More informationDepartment of the Navy Audit and Internal Controls
Department of the Navy Audit and Internal Controls Mr. Joe Marshall Acting Assistant Secretary of the Navy Financial Management & Comptroller Ms. Ann-Cecile McDermott Assistant Deputy Commandant, Programs
More informationFrom Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance
Sharon Hale and John Argodale May 28, 2015 2 From Dictionary.com Enterprise: A project undertaken or to be undertaken, especially one that is important or difficult or that requires boldness or energy
More informationDetect. Resolve. Prevent. Assure.
Detect. Resolve. Prevent. Assure. The Emerging Mandate: Continuous Monitoring of Enterprise Business Controls to Achieve Risk Intelligence In every industry, companies of every size are witnessing unprecedented
More informationThe Next Level of Controls Automation: How you can fully automate controls testing in financial systems by combining MetricStream and IRC
The Next Level of Controls Automation: How you can fully automate controls testing in financial systems by combining MetricStream and IRC Christina Spies, Infor, Account Executive Infor Risk and Compliance
More informationFinancial Management in the Federal Government:
Financial Management in the Federal Government: Considerations regarding the integration of OMB Circular No. A-123 and enterprise risk management for the Centers for Disease Control and Prevention (CDC)
More informationGood Governance and Anti-Corruption: The Role of Supreme Audit Institutions (SAIs)
Good Governance and Anti-Corruption: The Role of Supreme Audit Institutions (SAIs) Phillip Herr, Ph.D. Managing Director, Physical Infrastructure Issues U.S. Government Accountability Office The Vision
More informationReport No. DODIG U.S. Department of Defense OCTOBER 28, 2014
Inspector General U.S. Department of Defense Report No. DODIG-2015-010 OCTOBER 28, 2014 Defense Logistics Agency Did Not Fully Implement the Business Enterprise Architecture Procure to Pay Business Process
More informationA Financial Executive s Guide to Internal Controls & Fraud Prevention in the Cloud
A Financial Executive s Guide to Internal Controls & Fraud Prevention in the Cloud July 2018 Greenlight Technologies. All rights reserved. 1 Speakers James Rice Vice President of Customer Solutions Greenlight
More informationFraud Risk Management
Fraud Risk Management Fraud Risk Management Overview 2017 Association of Certified Fraud Examiners, Inc. Discussion Questions 1. Does your organization follow a specific risk management model? If so, which
More informationSAP Road Map for Governance, Risk, and Compliance Solutions
SAP Road Map for Governance, Risk, and Compliance Solutions Q4 2016 Customer Disclaimer The information in this presentation is confidential and proprietary to SAP and may not be disclosed without the
More informationCONTINUOUS AUDITING - UPDATE. Travis S. Moser, CISA
CONTINUOUS AUDITING - UPDATE Travis S. Moser, CISA CONTINUOUS ASSURANCE FRAMEWORK Third Line of Defense: IA provides independent assurance Second Line of Defense: Functions oversee risks First Line of
More informationImproving Accountability With Better Contractor Oversight
WHITEPAPER PAPER WHITE Improving Accountability With Better Contractor Oversight COTS solution delivers accuracy, visibility, productivity. With over 98 percent of defense leaders utilizing contracted
More informationLeveraging Data Analytics as a Force Multiplier. June 2017
Leveraging Data Analytics as a Force Multiplier June 2017 1 Agenda Introduction Approach to Data Analytics Use Cases and Applications Keys to Success Questions and Answers 2 Introduction Paulette Freese,
More information21st Century Logistics for a 21st Century Military
21st Century Logistics for a 21st Century Military 21st Century Logistics for a 21st Century Military The numbers themselves describe the extent of the challenge: A $32 billion organization that handles
More informationU.S. Census Bureau Enterprise Risk Management Program Operationalizing ERM A Top-down, Bottom-Up Approach
U.S. Census Bureau Enterprise Risk Management Program Operationalizing ERM A Top-down, Bottom-Up Approach Dr. Nancy Potok Deputy Director and Chief Operating Officer The Landscape Constitutionally mandated
More informationWashington Metropolitan Area Transit Authority Board Action/Information Summary
Washington Metropolitan Area Transit Authority Board Action/Information Summary Action Information MEAD Number: 201804 Resolution: Yes No TITLE: Board Audit Awareness Training PRESENTATION SUMMARY: The
More informationManaging Risk in Your P2P Process: 10 Ways that Automation Can Help Mitigate Risk
Managing Risk in Your P2P Process: 10 Ways that Automation Can Help Mitigate Risk Chris Doxey, CAPP, CCSA, CICA, CPC President, Doxey, Inc. chris@chrisdoxey.com 571-267-9107 Agenda Introduction to Risk
More informationInternal Control. Meeting Federal Requirements for Accountability. Robert Black, Senior Instructor 3 June 2016 PDI Orlando, FL
Internal Control Meeting Federal Requirements for Accountability Robert Black, Senior Instructor 3 June 2016 PDI Orlando, FL Internal Control Is EVERYONE S RESPONSIBILITY! Control Failure Examples Upper
More informationUSDA Shared Services Journey
USDA Shared Services Journey USDA was named as an SAP Federal Financial Shared Services Provider in May 2014, able to offer financial system services within the federal government. This was in response
More informationAudit Trends & Framework for Improved Financial Reporting. Data Quality, Integrity, and Reliability
Audit Trends & Framework for Improved Financial Reporting Data Quality, Integrity, and Reliability Agenda Audit Readiness vs. Audit The Complexity of the DoD Environment The Role of Analytics Factors Contributing
More informationSecure Your ERP Environment with Automated Controls Naomi Iseri,Sr. GRC Solution Consultant
Secure Your ERP Environment with Automated Controls Naomi Iseri,Sr. GRC Solution Consultant Agenda Introductions & Objectives Why Automate Controls What types of Automation Controls Do I Need When to Implement
More informationHelping government agencies achieve mission success. Government and Public Sector (GPS)
Helping government agencies achieve mission success Government and Public Sector (GPS) Table of contents 2 Government and Public Sector (GPS) Who we are Our purpose... 4 What we do Our perspective... 8
More informationINTERNAL CONTROL: COMPLIANCE, OPERATIONAL AND FINANCIAL
INTERNAL CONTROL: COMPLIANCE, OPERATIONAL AND FINANCIAL SECTOR / INTERNAL AUDIT NON-TECHNICAL & CERTIFIED TRAINING COURSE The course then tackles controls at board and senior management level and into
More informationUnderstanding Internal Controls. Federal Highway Administration New Mexico Division
Understanding Internal Controls Federal Highway Administration New Mexico Division Agenda and Objectives Defining and discussing the importance of internal controls Internal Controls organization, policies,
More informationFederal CFO Insights Real solutions to win the fight against improper payments and fraud, waste and abuse
Federal CFO Insights Real solutions to win the fight against improper payments and fraud, waste and abuse Background Federal agencies continue to make great strides to reduce improper payments and to mitigate
More informationDEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY
DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY WARFIGHTER FOCUSED, GLOBALLY RESPONSIVE SUPPLY CHAIN LEADERSHIP 2010 DLA Enterprise Supplier Conference and Exhibition Mr. Mark Lieberman
More informationDepartment of Defense Financial Improvement and Audit Readiness
Department of Defense Financial Improvement and Audit Readiness National PDI Workshop #66 June 3, 2016 End Game Strategy for Audit 2017 and 2018 Making the Final Assault on the Audit Summit Alaleh Jenkins,
More informationa GAO GAO DEFENSE MANAGEMENT Tools for Measuring and Managing Defense Agency Performance Could Be Strengthened
GAO United States Government Accountability Office Report to the Committee on Armed Services, U.S. Senate September 2004 DEFENSE MANAGEMENT Tools for Measuring and Managing Defense Agency Performance Could
More informationDOD MANUAL , VOLUME 2 DOD MANAGEMENT OF ENERGY COMMODITIES: RECORDS RETENTION AND FORMS MANAGEMENT
DOD MANUAL 4140.25, VOLUME 2 DOD MANAGEMENT OF ENERGY COMMODITIES: RECORDS RETENTION AND FORMS MANAGEMENT Originating Component: Office of the Under Secretary of Defense for Acquisition and Sustainment
More informationA Guide to IT Risk Assessment for Financial Institutions. March 2, 2011
A Guide to IT Risk Assessment for Financial Institutions March 2, 2011 Welcome! Housekeeping Control panel on the right side of your screen. Audio Telephone VoIP Submit Questions in the pane on the control
More informationWinning the Procure-to-Pay Battle
Winning the Procure-to-Pay Battle Procure Pay Rebecca Beck Director of Finance - DFAS Columbus DFAS Today Supports more people than any other financial agency Pays more vouchers, accounts, and appropriations
More informationUN-HABITAT ENTERPRISE RISK MANAGEMENT IMPLEMENTATION GUIDELINES
UN-HABITAT ENTERPRISE RISK MANAGEMENT IMPLEMENTATION GUIDELINES April 2015 1 P a g e UN-Habitat ERM Implementation Guidelines April 2015 UN-HABITAT ENTERPRISE RISK MANAGEMENT IMPLEMENTATION GUIDELINES
More informationTHE GEORGIA DEFENSE EXCHANGE & GTPAC COMMUNITY Creating the Next: Defense Innovation Conference January 14, 2019
THE GEORGIA DEFENSE EXCHANGE & GTPAC COMMUNITY Creating the Next: Defense Innovation Conference January 14, 2019 EMPOWERING ORGANIZATIONS THROUGH DATA The Simple VUE is a consulting services company that
More informationContinuous Auditing. What This Guide Covers. What This Guide Covers. What This Guide Covers. Environment Check. A Brief History
Continuous Auditing Global Technology Auditing Guide 3 Brief history Environment check COSO ERM Benefits Key concepts www.theiia.org 2 Relationship of continuous auditing, continuous monitoring, and continuous
More informationEssential IT Considerations for Sarbanes-Oxley Act
Essential IT Considerations for Sarbanes-Oxley Act Fulcrum Information Technology, Inc. 2050 North Collins Blvd, Suite 125 Richardson, Texas 75080 Phone: 972-312-8500 Fax: 214-242-3939 Table of Contents
More information4 th Estate Services Requirements Review Board (SRRB) Frequently Asked Questions
4 th Estate Services Requirements Review Board (SRRB) Frequently Asked Questions SRRBs General Background What is a Services Requirements Review Board (SRRB)? An SRRB is a structured review process chaired
More informationTake Identity and Access Management to the Next Level Securely. Matthew Pecorelli
Take Identity and Access Management to the Next Level Securely Matthew Pecorelli 0 In This Session You will understand the key drivers behind Accenture s decision to migrate to the SAP NetWeaver Identity
More informationAudit of Policy on Internal Control Implementation (Phase 1)
ASSISTANT DEPUTY MINISTER (REVIEW SERVICES) Audit of Policy on Internal Control Implementation (Phase 1) Reviewed by ADM(RS) in accordance with the Access to Information Act.. Final report: June 2016 1850-3-014
More informationSAP ChaRM Implementation at CNP Diane Leal CenterPoint Energy Prakash Lingidi CenterPoint Energy
SAP ChaRM Implementation at CNP Diane Leal CenterPoint Energy Prakash Lingidi CenterPoint Energy About CenterPoint Energy, Inc. Electric Transmission & Distribution Natural Gas Distribution Interstate
More informationAFMO. Army Financial. Management Optimization. Driving Change in Financial Management across the Army Enterprise
AFMO Army Financial S Management Optimization Driving Change in Financial Management across the Army Enterprise Army Financial Management Optimization 1 The changing world around us We live in a changing
More informationUsing Enterprise Risk Management to Reduce Costs and Enhance Performance in a Time of Fiscal Stress
KPMG GOVERNMENT INSTITUTE Using Enterprise Risk Management to Reduce Costs and Enhance Performance in a Time of Fiscal Stress 2013 MACPA Government & Not for Profit Conference Jeffrey C. Steinhoff, Executive
More informationConduct gap analyses to determine weapons and ammunitions requirements. Fully resource weapons and ammunition requirements
Great power competition, characterized by increased complexity, interdependence, and uncertainty Unprecedented rate of technological change that is transforming societies, economies, and military capabilities
More informationMinimizing fraud exposure with effective ERP segregation of duties controls
Minimizing fraud exposure with effective ERP segregation of duties controls Prepared by: Luke Leaon, Manager, RSM US LLP luke.leaon@rsmus.com, +1 612 629 9072 Adam Harpool, Manager, RSM US LLP adam.harpool@rsmus.com,
More informationMaximizing value from your lines of defense
Insights on governance, risk and compliance December 2013 Maximizing value from your lines of defense A pragmatic approach to establishing and optimizing your LOD model Contents Introduction Are you getting
More informationReinforcing the Three Lines of Defense SAP software for risk management, process control, and audit management
Reinforcing the Three Lines of Defense SAP software for risk management, process control, and audit management Three Lines of Defense Building confidence and trust The three-lines-of-defense framework,
More informationPlugging the Gaps in Financial Controls Monitoring
Plugging the Gaps in Financial Controls Monitoring Finance organizations are under duress to improve overall governance and are bearing substantial costs in maintaining monitoring and audit functions.
More informationGCN Award Winner for Government Agency IT Achievement
GCN Award Winner for Government Agency IT Achievement - 2008 AGENCY U.S. Navy-Navy ERP Program Project: The Navy Enterprise Resource Planning Program (ERP) Nomination Submitted by: US Navy Navy ERP Program
More informationProactively Managing ERP Risks. January 7, 2010
Proactively Managing ERP Risks January 7, 2010 0 Introductions and Objectives Establish a structured model to demonstrate the variety of risks associated with an ERP environment Discuss control areas that
More informationUNITED STATES MARINE CORPS MARINE CORPS BASE 3250 CATLIN AVENUE QUANTICO VIRGINIA IN REPLY REFER TO: MCBO 5200.
UNITED STATES MARINE CORPS MARINE CORPS BASE 3250 CATLIN AVENUE QUANTICO VIRGINIA 22134 5001 IN REPLY REFER TO: MCBO 5200.3 B 64 MARINE CORPS BASE ORDER 5200.3 From: Commander To: Distribution List Subj:
More informationRapidly Reduce Segregation of Duty Violations in Oracle EBS R12 Responsibilities Session ID#: 15042
Rapidly Reduce Segregation of Duty Violations in Oracle EBS R12 Responsibilities Session ID#: 15042 Responsibility templates from a catalog of pre-configured ERP roles. Workflow to update, review as well
More informationINFORMATION ASSURANCE DIRECTORATE
National Security Agency/Central Security Service INFORMATION ASSURANCE DIRECTORATE CGS Portfolio Management Portfolio Management is the process of analyzing, selecting, controlling, and evaluating needs
More informationDoD Business Transformation and Environmental Liabilities Recognition, Valuation and Reporting
DoD Business Transformation and Environmental Liabilities Recognition, Valuation and Reporting Office of the Deputy Under Secretary of Defense for Installations and Environment ODUSD(I&E) Business Enterprise
More informationMIS 5121: ERP Systems - Course Schedule
Introduction 12-Jan 1 19-Jan 26-Jan 2 What is ERP? SAP Modules and functionality and its relation to Business Cycles AGAS: 3.1.3 (Figure 3.2) Real World: Control Failures - Enron Case The Importance of
More informationCompliance in Multiple Regulatory Settings. a Holistic Approach
Compliance in Multiple Regulatory Settings a Holistic Approach Vanessa Balogh Key Problems Compliance with multiple regulations FDA, SOX, HIPAA,GLBA,BASEL II, PCI, more Lack of transparency, ownership
More informationDCMA Instruction Stewardship
DCMA Instruction 4301 Stewardship Office of Primary Responsibility Stewardship Capability Effective: July 18, 2018 Releasability: Cleared for public release Incorporates: DCMA-INST 117, Government Purchase
More informationLearn to streamline User Provisioning process in Oracle Applications with workflows
Give me a lever long enough and a fulcrum on which to place it, and I shall move the world - Archimedes Copyright. Fulcrum Information Technology, Inc. Learn to streamline User Provisioning process in
More informationProperty Management & Accountability (PM&A)
Property Management & Accountability (PM&A) A Modern Approach to Coordinating Operational & Financial Management Functions in a FIAR Environment June 2014 What is FIAR? DoD initiative to obtain and sustain
More informationCENTRAL FLORIDA EXPRESSWAY AUTHORITY
CENTRAL FLORIDA EXPRESSWAY AUTHORITY Prior Audit Recommendations Follow-Up August 31, 2017 Internal Audit, Risk, Business & Technology Consulting TABLE OF CONTENTS 3 Executive Summary 5 Status of Past
More informationRoad to Self Governance
Road to Self Governance Transform internal controls; sustain business performance 8 January 2015 Contents 1. Setting the Context 2. What needs to be done 3. Perspectives on IFC coverage 4. Leveraging IFC
More informationLandscape Deployment Recommendations for SAP Assurance and Compliance Software for SAP S/4HANA. SAP SE November 2017
Landscape Deployment Recommendations for SAP Assurance and Compliance Software for SAP S/4HANA SAP SE November 2017 Disclaimer This presentation outlines our general product direction and should not be
More informationGuidance Note: Corporate Governance - Audit Committee. March Ce document est aussi disponible en français.
Guidance Note: Corporate Governance - Audit Committee March 2015 Ce document est aussi disponible en français. Applicability The Guidance Note: Corporate Governance Audit Committee (the Guidance Note )
More informationHow to Maximize Your Internal Controls Program. June 15, 2017 Atlanta, GA
How to Maximize Your Internal Controls Program June 15, 2017 Atlanta, GA Sarbanes-Oxley Update June 15, 2017 Rick Warren Principal patrick.warren@pwc.com Andres Leal Director andres.m.leal@pwc.com 3 Agenda
More informationInternal Control in Higher Education
Internal Control in Higher Education Daniel Adams Office of Audit Services Audit Services Mission To provide assurance and advisory services that are independent, objective and risk-based in order to protect
More informationB U S I N E S S R I S K M A N A G E M E N T L T D
B U S I N E S S R I S K M A N A G E M E N T L T D Governance, Risk and Compliance (GRC) After completing this course you will be able to Course Level Understand the requirements and benefits of GRC Develop
More information1 POSITIONING FOR THE FUTURE
1 POSITIONING FOR THE FUTURE Summary As the largest source of development financing for Latin America and the Caribbean (LAC), the Inter-American Development Bank (IDB) Group plays an integral role in
More informationDEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY
DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY Tinker and the Primes 2017 Achieving Acquisition Solutions Through Strategic Partnerships and Industry Engagement Mr. Matthew Beebe Director,
More informationGAO ORGANIZATIONAL TRANSFORMATION. Military Departments Can Improve Their Enterprise Architecture Programs
GAO United States Government Accountability Office Report to the Committee on Armed Services, U.S. Senate September 2011 ORGANIZATIONAL TRANSFORMATION Military Departments Can Improve Their Enterprise
More informationTaking a Global, Value Added Approach to Compliance: Designing, Automating and Implementing an Integrated Controls Management Process
Taking a Global, Value Added Approach to Compliance: Designing, Automating and Implementing an Integrated Controls Management Process November 7, 2006 Webcast Today s Speakers Peter Paul Brouwers Partner,
More informationRouteONE Helping enhance the real value from SAP GRC Access Control
RouteONE Helping enhance the real value from SAP GRC Access Control Contents Business context: Governance, risk and compliance Implementation: A challenge in itself Approach overview: SAP GRC Access Control
More informationENTERPRISE RISK MANAGEMENT USING DATA ANALYTICS. Dan Julevich and Chris Dawes April 17, 2015
ENTERPRISE RISK MANAGEMENT USING DATA ANALYTICS Dan Julevich and Chris Dawes April 17, 2015 Agenda ERM What, Why, How? ERM Keys to Success Fail, Survive, or Thrive? ERM Current State Overview ERM Leading
More information2013 COSO Internal Control Framework Update. September 5, 2013
2013 COSO Internal Control Framework Update September 5, 2013 Agenda 2013 COSO IC Framework Topic Minutes The update process 5 What is not changing / What is changing 5 The 17 principles and changes to
More informationWhat s New In GAO s Revised Greenbook
What s New In GAO s Revised Greenbook Association of Government Accountants, KC Chapter Fall 2014 Professional Development Seminar November 10, 2014 Michael A. Fiene Chief, USDA/FSA-Internal Control and
More informationSEC302 Umoja Security GRC Analysis. Umoja Security GRC Analysis Version 8 1
SEC302 Umoja Security GRC Analysis Umoja Security GRC Analysis Version 8 Last Copyright Modified: United 16-August-13 Nations 1 Agenda Course Introduction Module 1: User Access Risk Analysis Overview Module
More informationCOMPANY OVERVIEW. Kirby Brace Chief Operating Officer (c) (t) Prepared for: General Distribution
WE CARE ABOUT PEOPLE, PERFORMANCE AND RESULTS FOR OUR CUSTOMERS. IN EVERYTHING WE DO, WE ARE COMMITTED TO INDUSTRY LEADING SOLUTIONS AND ARE PASSIONATE ABOUT THE BUSINESS OF GOVERNMENT. Prepared for: General
More informationEnterprise Business System Was Not Configured to Implement the U.S. Government Standard General Ledger at the Transaction Level
Report No. DODIG-2013-057 March 20, 2013 Enterprise Business System Was Not Configured to Implement the U.S. Government Standard General Ledger at the Transaction Level Report Documentation Page Form Approved
More informationFEATURE ARTICLE Changes to Foreign Military Sales Administrative Surcharge Structure and Rate
FEATURE ARTICLE Changes to Foreign Military Sales Administrative Surcharge Structure and Rate By Beth M. Baker Defense Security Cooperation Agency Background On 15 March 2006, the Defense Security Cooperation
More informationBoards and internal audit: Working together to strengthen risk management
Boards and internal audit: Working together to strengthen risk management Growing demands on boards The role of the board has always been an important and demanding one, but today s board members face
More informationLos Alamos National Lab. Observations from Audit Procedures June 30, 2005
Los Alamos National Lab Observations from Audit Procedures June 30, 2005 Table of Contents Page Your Needs and Expectations 3 Background 4 Risk Assessment 5 Audit Strategy 7 Details of Work Performed 9
More informationENTERPRISE RISK MANAGEMENT
ENTERPRISE RISK MANAGEMENT PROFILE AND BACKGROUND JOHN TOSCANO, CPA, PARTNER 959-200-7211 john.toscano@cohnreznick.com John Toscano, CPA is a partner with CohnReznick LLP and leads the Firm s Independent
More informationTaking ERM to a. 6 GRC Today / October 2015
GLOBAL SCALE 6 GRC Today / October 2015 Global Scale lobal events highlighted by G business scandals, failures, information theft, and natural disasters have shone the spotlight yet again on risk management
More informationStephen Welby Director, Systems Engineering Office of the Under Secretary of Defense (AT&L)
Stephen Welby Director, Systems Engineering Office of the Under Secretary of Defense (AT&L) DISTRIBUTION STATEMENT A -- Cleared for public release by OSR on 22 October2010 SR 11-S-0183 10/26/10 1 We are
More informationand then to manage them after award as shown in Figure Vol. 2 Management RFP No. QTA0015THA
General Services Administration (GSA) Enterprise Infrastructure Solutions (EIS) 2.1.2.1 Organization We have established the Level 3 EIS Contractor Program Management Office (CPMO) (depicted in Figure
More informationThe Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be
Enterprise Risk Management The Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be 2 Enterprise Risk Management Table of content 1. Introduction...05 2. Takeaways...07 3. Key
More informationEvoke Research and Consulting, LLC 2450 Crystal Drive, Suite 1050 Arlington, VA
GENERAL SERVICES ADMINISTRATION Federal Acquisition Service Authorized Federal Supply Schedule Pricelist (Catalog) On-line access to contract ordering information, terms and conditions, up-to-date pricing,
More informationEnterprise Risk Management Aligning Risk With Strategy and Performance
Enterprise Risk Management Aligning Risk With Strategy and Performance Jeff Thomson, CMA, CAE President and CEO Institute of Management Accountants 1 Learning Objectives Understand how integrating the
More informationChanging Landscape. Contractors perform vital services in support of the entire DoD mission and team
1 1 Changing Landscape What was once performed by uniformed military may now be provided by contractors Contractors perform vital services in support of the entire DoD mission and team Maintain combat
More informationGlobal car and heavy equipment rental company, improves employee productivity with ERP Role Designer/Monitor
Global car and heavy equipment rental company, improves employee productivity with ERP Role Designer/Monitor FulcrumWay Leading Provider of Enterprise Risk Assessment Mitigation and Remediation Solutions
More informationIntelligent Supply Chain
Intelligent Supply Chain Defense Logistics Agency Mr. Mark Lieberman Program Manager, Automatic Identification Technology, Defense Logistics Agency Headquarters Agenda The DLA Enterprise Experience with
More informationUNCLASSIFIED. FY 2016 Base FY 2016 OCO
Exhibit R-2, RDT&E Budget Item Justification: PB 2016 Air Force Date: February 2015 3600: Research, Development, Test & Evaluation, Air Force / BA 6: RDT&E COST ($ in Millions) Prior Years FY 2014 FY 2015
More informationDefense Procurement & Acquisition Policy Acquisition Exchange Program. Project Description #1
Defense Procurement & Acquisition Policy Acquisition Exchange Program Project Description #1 Opportunity: FAR/DFARS Projects Organization: OUSD(AT&L)DPAP/DARS Posting Date: May 15, 2006 Closing Date of
More informationInternal Financial Controls (IFC) ICAI Seminar October 8, 2016
Internal Financial Controls (IFC) 1 ICAI Seminar October 8, 2016 Financial Reporting Assertions 3 Effective Internal Controls over Financial Reporting All Significant Accounts considered Minor or few internal
More informationGOVERNANCE AES 2012 INFORMATION TECHNOLOGY GENERAL COMPUTING CONTROLS (ITGC) CATALOG. Aut. / Man. Control ID # Key SOX Control. Prev. / Det.
GOVERNANCE 8.A.1 - Objective: Information Technology strategies, plans, personnel and budgets are consistent with AES' business and strategic requirements and goals. Objective Risk Statement(s): - IT Projects,
More informationPRIVY COUNCIL OFFICE. Audit of PCO s Accounts Payable Function. Final Report
[*] An asterisk appears where sensitive information has been removed in accordance with the Access to Information Act and Privacy Act. PRIVY COUNCIL OFFICE Audit and Evaluation Division Final Report January
More informationENTERPRISE RISK MANAGEMENT
UN-Habitat ENTERPRISE RISK MANAGEMENT 01 02 Produced by: UN-Habitat Advocacy, Outreach and Communications (AOC) For comments or suggestions: advocacy@unhabitat.org UN-Habitat ENTERPRISE RISK MANAGEMENT
More informationWhat s New in Government Internal Control Standards? Going Green
What s New in Government Internal Control Standards? Going Green Page 1 Session Objective To discuss GAO s revision to the Standards for Internal Control in the Federal Government (Green Book) Page 2 What
More informationInternal Controls Optimization
Internal Controls Optimization PricewaterhouseCoopers LLP Controls optimization Background on Internal Controls Background on Internal Controls Business advances that have offered growth and opportunity
More informationCorporate Governance. Information Request List Family- or Founder-Owned Unlisted Companies. Commitment to Corporate Governance
Commitment to Corporate Governance 1. Policies relating to corporate governance. What written policies, codes or manuals have been elaborated that set out the company s approach to governance, the respective
More informationLeverage T echnology: Turn Risk into Opportunity
Give me a lever long enough and a fulcrum on which to place it, and I shall move the world - Archimedes Copyright. Fulcrum Information Technology, Inc. Enhance security, improve helpdesk productivity,
More information