The Internal Control Framework
|
|
- Monica Dorsey
- 6 years ago
- Views:
Transcription
1 The Internal Control Framework CA. Rajkumar S Adukia B.Com(Hons.) FCA, ACS,MBA, AICWA, LLB,Dip In IFRS(UK) rajkumarfca@gmail.com / To receive regular updates kindly send test to rajkumarfca-subscribe@yahoogropups.com 1
2 What Is Internal Control? A process effected by an entity s board of directors,management and other personnel,designed to provide reasonable assurance regarding the achievements of objectives in the following categories: Effectiveness & efficiency of operations. Reliability of financial reporting. Compliance with applicable laws and regulations. 2
3 What is External Control? Various measures that affect a company's operations, which are not enacted by the company but rather by the government or other organizations. External control includes any rule or regulation which has an effect on the actions of the company, and can include tax laws enacted by the government which affect the flow of money, a lease which restricts what a company can or can not do with their office space, and laws which prevent discrimination in the company's hiring procedure. 3
4 Evolution of Internal Control Chanakya 300 BC English Audit Specialist - Lawrence Dicksee 1905 COSO 1992 SOX
5 Today s organizations are concerned about: Risk Management Governance Control Assurance (and Consulting) 5
6 Why Internal Control? Management and control of risks Safeguarding the assets of the company Achievement of overall objectives of the organisation Effective and efficient operations Reliable and correct financial information (internal as well as external) Prevention and detection of fraud and errors 6
7 Internal control is a process. It is a means to an end, not an end in itself. Internal control is effected by people. It s not merely policy manuals and forms, but people at every level of an organization. Internal control can be expected to provide only reasonable assurance, not absolute assurance, to an entity s management and board. Internal control is geared to the achievement of objectives in one or more separate but overlapping categories. 7
8 The System of internal control The control environment Risk assessment The control activities and procedures Accounting, information and communication Monitoring and self assessment 8
9 Components Of Internal Control Control Environment. Risk Assessment. Control Activities. Information & Communication. Monitoring. 9
10 Limitations of Internal Control Judgement. Breakdowns. Management override. Collusion. Costs Versus Benefits. 10
11 11
12 What Internal Control Can Do It can help achieve performance & profitability targets. help prevent loss of resources. help ensure reliable financial reporting. help ensure compliance with laws. It can help an entity get to where it wants to go,and avoid pitfalls and surprises along the way. 12
13 What Internal Control Cannot Do It cannot ensure success. ensure the reliability of financial reporting. ensure compliance with laws and regulations. Internal controls,no matter how well designed and operated,can provide only reasonable assurance to management regarding achievements of an entity s objectives. 13
14 Internal control and internal audit Internal audit is a part of internal control Internal audit provides an objective, independent review of the organisation s activities, internal controls, and management information systems to help the board and management monitor and evaluate internal control adequacy and effectiveness. 14
15 Who is accountable for assurance that appropriate internal controls are in place? Management!!!! 15
16 Who s responsible for the performance of internal control activities? Everyone!!!!!! 16
17 Types of Internal Controls Directive Controls encourage good behavior, it s the right thing to do Incentive plans Recognition awards Training Policies and Procedures Promotions 17
18 Types of Internal Controls Preventative Controls prevent undesirable events from occurring Knowledge that someone is reviewing your work Segregation of duties Limited access Levels of authorization Security badges Business rule set-up in automated systems 18
19 Types of Internal Controls Detective Controls detect and correct undesirable events after they occur. Reconciliations Auditing Confirmations Exception reports Reviews done on a regular basis 19
20 Types of Internal Control Mitigating Controls Mitigate for the lack of an expected control. Cash handling lack of adequate staff for proper segregation of duties sharing with another area Software security/access regular monitoring of access for certain employees when software security is not adequate because of functional constraints. 20
21 IT Access Limitation Controls To create a record To change a record To approve a transaction By allowing read-only By requiring passwords Requiring time out limits By installing firewalls 21
22 Control Tools (Partial Listing) Formal Compliance programs Checklists Inspections Exception reports (i.e. Performance appraisals not completed, excessive overtime, duplicate payments etc.) Forms control (pre-numbered documents, filing by and verifying integrity of numerical sequence) Performance standards Physical safeguards (safes, locks, access cards, dual control over sensitive assets, cameras, alarms, guards, ID badges etc.) Simulated disaster recovery drills 22
23 Which of the following are examples of an internal control? Segregation of duties Passwords Bonus plans Reconciliations Staff Meetings Training on a new system Training in group dynamics Directions on how to complete expense reports Requiring original receipts for expense reports Managers being scrupulous in completing their own expense reports Managers telling employees to be scrupulous in completing their expense reports Standard price lists, with sales people allowed a maximum of 10% variance for negotiation 23
24 What happens when internal controls are not in place or break down? 24
25 FRAUD!!! 25
26 Internal Control Framework - Many models to choose from. COSO COCO Cadbury Report Deming Award TQM 12 Attributes Deep Learning Framework ISO 9000 Kings Report Treadway Commission 26
27 Internal Control Frameworks and Codes International Scenario Foreign Corrupt Practices Act (1977), Report of the National Commission on Fraudulent Financial Reporting (Treadway Commission Report, 1987); The Report on Internal Control Integrated Framework, issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO), in 1992 Internal control frameworks presented by the Cadbury Committee Report (Cadbury Report, UK); 27
28 Internal Control Frameworks and Codes International Scenario Internal Control: Guidance for Directors on the Combined Code (1999) The Criteria of Control Committee (CoCo Report, Canada) The King Committee (King Report, South Africa) The Report on Enterprise Risk Management Integrated Framework, issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO), in
29 Who Developed Models? COSO: The major accounting and audit professional organizations issued COSO in Criteria: The Canadian Comprehensive Auditing Foundation published Effectiveness Reporting and Auditing in the Public Sector in COCO: In November 1995, The Canadian Institute of Chartered Accountants (CICA) published Guidance on Control. ISO 9000 developed by the International Organization for Standardization (ISO) 29
30 Different Frameworks: Same Goals Frameworks provide a way of understanding our organizations. By having different groupings, each highlights some aspects of control more than others. The criteria in the frameworks provide a basis for understanding control in an organization and for making judgment about the effectiveness of control. 30
31 Different Frameworks: Same Goals Frameworks provide a systematic step by step method of evaluating and addressing the adequacy of controls in multiple dimensions of a business. Frameworks provide a standard review process. Frameworks provide a tool that helps management and audtiors evaluate the adequacy of controls in multiple dimensions of the business. It helps give a picture of how well all of the controls in all of the dimensions are working. 31
32 Using These Frameworks Gives a picture that focuses on what is important to users, that keeps things in perspective, and that is sensitive to shades of gray. Flexibility is allowed and creativity is required. Nothing magical about them--but they can allow you to have seemingly magical insights. 32
33 One More Tool in the Tool box CSA (Controlled Self Assessment) Questionnaires Unobtrusive Measures Structure Interviews Document Reviews Regression Analysis Integrated Control Frameworks And many more! 33
34 COSO Monitoring Activities Information and Communication Risk Assessment Environment 34
35 Coso ERM Framework OH
36 COSO - Cadbury COSO Control Environment Risk Assessment Control Activities Information and Communication Monitoring Cadbury Control Environment Identification of Risks, Control Priorities and Objectives Control Activities Monitoring and Corrective Action 36
37 Control Environment Provides an atmosphere in which people conduct their activities and carry out their control responsibilities. It serves as the foundation for the other components (COSO) Management must send a clear message to all personnel that control responsibilities are to be taken seriously, that each personal has a particular role in the control system and that each role relates to the role of others. (Cadbury) 37
38 Risk Assessment Management must assess risks to the achievement of specified objectives. (COSO) Is the process by which executive management identifies the risks arising from the organization s business and, since resources are always limited, establishes the priorities for control and particular control objectives. (Cadbury) 38
39 Control Activities Are implemented to help ensure that management directives to address the risks are carried out. (COSO) Are the detailed polices and procedures designed to achieve the company s control objectives and to provide management with reasonable assurance that their priorities for internal control are being addressed. They operate throughout the organization, potentially covering all levels. (Cadbury) 39
40 Key Control Activities Monitoring Control Environment Control Over Assets & Information Systems Segregation of Duties Authorization, Approvals, Verifications 40
41 Information & Communication Relevant information must be identified, captured and communicated in a form & timeframe that enables people to carry out their responsibilities. Information systems produce reports containing operational,financial and compliance related information that make it possible to run and control the business. Effective communication must occur in a broader sense,flowing down,across and up the organization. 41
42 Monitoring The entire process is monitored and modified as conditions warrant. (COSO) Monitoring and corrective action should produce sufficient evidence that the financial control system for which they are responsible is effective in practice. Monitoring is performed at a higher level than the routine checks built into the day-to-day routine and involves a greater degree of independence from those who operate the procedures. (Cadbury) 42
43 CRIME Control Activity Risks Information Monitoring Environment 43
44 COSO Matrix Control Environment Risk Operations Financial Reporting Compliance With Laws and Regulations Control Activities Information and Communication Monitoring 44
45 COCO Purpose A sense of direction. What are we here for? Monitoring and Learning A sense of evolution. What Progress? What Next? Commitment A sense of identity and values. Do we want to do a good job? ACTION Capability A sense of competence. What action do we need to take? 45
46 COCO Criteria: Purpose Objectives should be established and communicated. The significant internal and external risks faced by an organization in the achievement of its objectives should be identified and assessed. Policies designed to support the achievement of an organization s objectives and the management of its risks should be established, communicated and practiced so that people understand what is expected of them and the scope of their freedom to act. Plans to guide efforts in achieving the organization s objectives should be established and communicated. Objectives and related plans should include measurable performance targets and indicators. 46
47 COCO Criteria: Commitment Shared ethical values, including integrity, should be established, communicated and practiced throughout the organization. Human resource policies and practices should be consistent with an organization s ethical values and with the achievement of its objectives. Authority, responsibility, and accountability should be clearly defined and consistent with an organization s objectives so that decisions and actions are taken by the appropriate people. An atmosphere of mutual trust should be fostered to support the flow of information between people and their effective performance toward achieving the organization s objectives. 47
48 COCO Criteria: Capability People should have the necessary knowledge, skills and tools to support the achievement of the organization s objectives. Communication processes should support the organization s values and the achievement of its objectives. Sufficient and relevant information should be identified and communicated in a timely manner to enable people to perform their assigned responsibilities. The decisions and actions of different parts of the organization should be coordinated. Control activities should be designed as an integral part of the organization, taking into consideration its objectives, the risks to their achievement, the inter-relatedness of control elements. 48
49 COCO Criteria: Monitoring and Learning Environment should be monitored to obtain information that may signal a need to re-evaluate the organization s objectives or controls Performance should be monitored against the targets and indicators identified in the organization s objectives and plans. The assumptions behind an organization s objectives should be periodically challenged. Information needs and related information systems should be reassessed as objectives change or as reporting deficiencies are identified. Follow-up procedures should be established and performed to ensure appropriate change or action occurs. Management should periodically assess the effectiveness of control in its organization and communicate the results to those to whom it is accountable. 49
50 COCO: Sample Assessment Questions Purpose Do we understand our objectives? Are our plans responsive and adequate to change? Commitment Are critical decisions made by people with the necessary expertise, knowledge and authority? Capability Is there adequate information to allow us to perform our tasks? Monitoring and Learning Do we challenge the assumptions behind our objectives? 50
51 COSO and COCO s Definition of Internal Control Per COSO, Internal Control is: a process, effected by an entity s board of directors, management, and other personnel, designed to provide reasonable assurance regarding the achievement of objectives. Per COCO, Internal Control is those elements of an organization (including its resources, systems, processes, culture, structure and tasks) that, taken together, support people in the achievement of the objectives. 51
52 Objectives of Internal Controls Per COSO, organization s effectiveness and efficiency of operations; reliability of financial reporting; and compliance with applicable laws and regulations. Per COCO effectiveness and efficiency of operations reliability of internal and external reporting; and compliance with applicable laws and regulations and internal policies. 52
53 Key COSO and COCO Concepts Internal Control is a process. Internal Control is effected by people. Internal Control can be expected to provide only reasonable assurance. Internal Control is geared to the achievement of objectives. 53
54 Hard Controls - Soft Controls Policy and Procedures Organizational Structure Bureaucracy Restrictive formal processes Competence Trust Shared Values Leadership Expectations Commitment 54
55 What s More Important? Segregation of duties or ethical employees? Well written and thorough policy and procedures manuals or competent employees? Clear delineation of roles and responsibilities or a group of employees dedicated to accomplishing the organization s mission? 55
56 Soft Controls In the past, auditors have focused exclusively on the hard controls. As the Savings and Loan crises demonstrated, this has meant that auditors have often missed the really important issues that will dictate whether an organization succeeds and is operating at the most efficient and effective manner. COSO, COCO, Cadbury and the other control models highlight the need to examine soft controls and provide the analytical tools to do so. 56
57 Soft Factors lntegrity and ethical values Commitment to competence Management's philosophy and operating style Managing change Communication 57
58 Soft Control a useful, though not precisely definable term best explained with common characteristics and examples 58
59 Common Characteristics Hard controls tend to be: formal objective Quantitatively measurable the 'map" Soft controls tend to be: informal subjective intangible the real terrain 59
60 Examples Hard Controls Policy/procedure Organizational structure Bureaucracy Restrictive formal processes Soft Controls Competence Trust Shared Values Strong Leadership High expectations Openness Centralized decision making High ethical standards 60
61 CARO provisions Point 4 matters to be included in auditor s report (iv) is there an adequate internal control procedure commensurate with the size of the company and the nature of its business, for the purchase of inventory and fixed assets and for the sale of goods. Whether there is a continuing failure to correct major weaknesses in internal control. 61
62 The regulations Clause 49 of the Listing Agreement in India Sarbanes Oxley Act 2002 in US The Combined Code on Corporate Governance 2003 in UK Guidance for Directors on the Combined Code, Turnbull Committee (C.2 and C.3) 62
63 Clause 49 Corporate Governance Board of Directors Audit Committee Subsidiary Companies Disclosure of Contingent Liabilities Disclosures CEO/CFO certification Report on Corporate Governance Compliance 63
64 SOX Focus only on Financial reporting Information filed with SEC Section 404 Section 302 Setting up of independent audit committees Codes of conduct, whistle blowing procedures Greater involvement of the Board and the audit committees in control activities 64
65 SOX Section 404 Rules for reporting the evaluation of the internal controls relating to financial reporting Focus on compliance and accountability Standard for attestation engagements issued by Public Company Accounting Oversight Board (PCAOB) Audit standard 2 of June 2004, An Audit of Internal Control Over Financial Reporting Performed in Conjunction With an Audit of Financial Statements 65
66 SOX - Section 302 Responsibility for financial reports filed with SEC on signing officers Various certifications to be given by the signing officers 66
67 The Combined Code Maintain a sound system of internal control to safeguard shareholders investment and the company s assets. (Principle C.2) 67
68 Provision C.2.1 At least annual review of the effectiveness of the system of internal control Report to shareholders that review has been done. Review to cover all material controls, including financial, operational and compliance controls and risk management systems. 68
69 C.3 The board should establish formal and transparent arrangements for considering how they should apply the financial reporting and internal control principles and for maintaining an appropriate relationship with the company s auditors. 69
70 C.3.2 Main Role of the Audit Committee Review the internal financial controls unless expressly addressed by a separate board committee C.3.5 The audit committee should monitor and review the effectiveness of the internal audit activities. Where there is no internal audit function, the audit committee should consider annually whether there is a need for an internal audit function and make a recommendation to the board, and the reasons for the absence of such a function should be explained in the relevant section of the annual report. 70
71 Guidance for Directors on Combined Code The Turnbull Guidance Helps the directors to: assess how the Company has applied Code principle C.2 implement the requirements of Code provisions C.2.1 and C.3.5 report these matters to the shareholders in the annual report and accounts 71
72 The European framework The European Economic Reform White Paper of 2002 defines internal controls as creating standards for five key control elements: Control environment Performance and risk management Information and communication Control activities Audit and evaluation 72
73 The COSO framework of internal control The control environment Risk assessment The control activities Information and communication Monitoring 73
74 Questions/ Suggestions/ Comments??? 74
75 75
[RELEASE NOS ; ; FR-77; File No. S ]
SECURITIES AND EXCHANGE COMMISSION 17 CFR PART 241 [RELEASE NOS. 33-8810; 34-55929; FR-77; File No. S7-24-06] Commission Guidance Regarding Management s Report on Internal Control Over Financial Reporting
More informationUsing the COSO Map. Unpublished Article By Larry Hubbard
Unpublished Article By Larry Hubbard Internal Control Integrated Framework published by the Committee of Sponsoring Organizations (COSO) of the Treadway Commission How many times have we read articles
More informationIn Control: Getting Familiar with the New COSO Guidelines. CSMFO Monterey, California February 18, 2015
In Control: Getting Familiar with the New COSO Guidelines CSMFO Monterey, California February 18, 2015 1 Background on COSO Part 1 2 Development of a comprehensive framework of internal control Internal
More informationAN AUDIT OF INTERNAL CONTROL THAT IS INTEGRATED WITH AN AUDIT OF FINANCIAL STATEMENTS: GUIDANCE FOR AUDITORS OF SMALLER PUBLIC COMPANIES
1666 K Street, NW Washington, D.C. 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8430 www.pcaobus.org PRELIMINARY STAFF VIEWS AN AUDIT OF INTERNAL CONTROL THAT IS INTEGRATED WITH AN AUDIT OF FINANCIAL
More informationBusiness Context of ISO conform Internal Financial Control Assessment
Business Context of ISO 15504 conform Internal Financial Control Assessment By János Ivanyos, Memolux Ltd. (H), IIA Hungary Introduction In this paper the business context of the ISO/IEC 15504 [1] conformant
More informationSarbanes-Oxley Act of 2002 Can private businesses benefit from it?
Sarbanes-Oxley Act of 2002 Can private businesses benefit from it? As used in this document, Deloitte means Deloitte Tax LLP, which provides tax services; Deloitte & Touche LLP, which provides assurance
More informationInternal Control Questionnaire and Assessment
Bureau of Financial Monitoring and Accountability Florida Department of Economic Opportunity September 30, 2017 107 East Madison Street Caldwell Building Tallahassee, Florida 32399 www.floridajobs.org
More informationBOM/BSD 2/November 1994 BANK OF MAURITIUS. Guideline on Maintenance of Accounting and other Records and Internal Control Systems
BOM/BSD 2/November 1994 BANK OF MAURITIUS Guideline on Maintenance of Accounting and other Records and Internal Control Systems November 1994 Revised November 2013 Revised December 2017 TABLE OF CONTENTS
More informationAUDITING. Auditing PAGE 1
AUDITING Auditing 1. Professionalism The International Professional Practices Framework (IPPF) is the conceptual framework that organizes authoritative guidance promulgated by The Institute of Internal
More informationEFFICIENT USE OF AUDIT COMMITTEES
AGENDA EFFICIENT USE OF AUDIT COMMITTEES BRENT YOUNG, CPA JERRY GAITHER, CPA Best practices related to: Audit Committee Process Internal Audit Risk Management 2 AUDIT COMMITTEE PROCESS AND PROCEDURES Audit
More informationInternal Control Questionnaire and Assessment
Bureau of Financial Monitoring and Accountability Florida Department of Economic Opportunity September 15, 2016 107 East Madison Street Caldwell Building Tallahassee, Florida 32399 www.floridajobs.org
More informationPART 6 - INTERNAL CONTROL
PART 6 - INTERNAL CONTROL INTRODUCTION The A-102 Common Rule and OMB Circular A-110 (2 CFR part 215) require that non-federal entities receiving Federal awards (i.e., auditee management) establish and
More informationBrink's Modern Internal Auditing
Brink's Modern Internal Auditing A Common Body of Knowledge Seventh Edition ROBERT R. MOELLER WILEY John Wiley & Sons, Inc. Preface About the Author xix XXV PART ONE CHAPTER 1 FOUNDATIONS OF MODERN INTERNAL
More informationStatement on Risk Management and Internal Control
INTRODUCTION The Board affirms its overall responsibility for the Group s system of internal control and risk management and for reviewing the adequacy and effectiveness of the system. The Board is pleased
More informationIPO Readiness. Sarbanes-Oxley Compliance & Other Considerations. Presented by:
IPO Readiness Sarbanes-Oxley Compliance & Other Considerations Presented by: IPO Readiness Enhanced Financial / Legal compliance SEC / Stock Exchange Compliance Entity Structure / Registration Filing Requirements
More informationFREQUENTLY ASKED QUESTIONS ABOUT INTERNAL CONTROL OVER FINANCIAL REPORTING
FREQUENTLY ASKED QUESTIONS ABOUT INTERNAL CONTROL OVER FINANCIAL REPORTING Nature and Timing of the Reporting Requirement When must registrants begin to report on internal control over financial reporting?
More informationNegotiating in a Sarbanes-Oxley World
Negotiating in a Sarbanes-Oxley World Richard Pennington, J.D., C.P.M., Consultant SCOPEVision Consulting Ltd 303/324-7333, rpennington@scopevisionconsulting.com 91 st Annual International Supply Management
More informationInternal Financial Controls New perspectives as per Companies Act 2013 and CARO 2016
New perspectives as per Companies Act 2013 and CARO 2016 1 Contents: Background Meaning of IFC IFC on Financial Reporting Why IFC? Regulatory mandate Role of various authorities Components of IFC IFC under
More information2/27/2017. Segregation of Duties/ Internal Controls. Objectives. Agenda
Segregation of Duties/ Internal Controls 2017 WASBO Accounting Conference David Maccoux, Shareholder Objectives Discuss failures of internal controls to detect or prevent fraud and learn how to implement
More informationCorporate Governance Principles of Auditing: An Introduction to International Standards on Auditing - Ch 14
Slide 14.1 Corporate Governance Principles of Auditing: An Introduction to International Standards on Auditing - Ch 14 Rick Stephan Hayes, Roger Dassen, Arnold Schilder, Philip Wallage Slide 14.2 Corporate
More informationInternal Controls Integrating COSO
Community Action Partnership 2016 Annual Convention August 30 September 2, 2016 Austin, TX J.W. Marriott Austin Internal Controls Integrating COSO Thursday, September 1, 2016 9:15 am 10:45 am Presented
More informationHeads Up. Control Integrated Framework. COSO Enhances Its Internal. In This Issue: Enhancements in the 2013 Framework
June 10, 2013 Volume 20, Issue 17 Heads Up In This Issue: Enhancements in the 2013 Framework Effective Systems of Internal Control COSO Transition Guidance and Impact on Other COSO Documents Internal Control
More informationChecklist for Higher Education
Checklist for Higher Education The following section contains a checklist addressing issues of particular relevance to higher education. The guidance is considered best practice for higher education. The
More informationSARBANES-OXLEY INTERNAL CONTROL PROVISIONS: FILE NUMBER 4-511
SARBANES-OXLEY INTERNAL CONTROL PROVISIONS: FILE NUMBER 4-511 Submission from the Financial Reporting Council Introduction 1. The Financial Reporting Council (FRC) is the independent regulator responsible
More informationGATU Webinar Part 1 March 2017 Presented by Carol Kraus, CPA
GATU Webinar Part 1 March 2017 Presented by Carol Kraus, CPA Definition of Internal Controls COSO Internal Control Framework Internal Controls (2 CFR 200.303) Grantee responsibilities Awarding state agency
More informationCOSO Updates and Expectations. IIA San Diego Chapter January 8, 2014
COSO Updates and Expectations IIA San Diego Chapter January 8, 2014 Agenda Overview of 2013 Internal Control-Integrated Framework and Companion Guidance 2013 Framework General Enhancements by Component
More informationInternal Controls and Risk Management Report
42 Internal Controls and Risk Management Report Responsibility Our Board of Directors has the overall responsibility to ensure that sound and effective internal controls are maintained, while management
More informationThis charter defines the purpose, authority and responsibility of News Corporation s (the Company ) Corporate Audit Department.
CORPORATE AUDIT DEPARTMENT CHARTER PURPOSE This charter defines the purpose, authority and responsibility of News Corporation s (the Company ) Corporate Audit Department. The Institute of Internal Auditors
More informationOrganizational Governance: Guidance for Internal Auditors. - July
Position Paper Organizational Governance: Guidance for Internal Auditors - July 2006 - The Institute of Internal Auditors, 247 Maitland Avenue, Altamonte Springs, Florida 32701-4102, USA http://www.theiia.org
More informationEntity level controls Design/implementation 530 Page 1 of 9
Page 1 of 9 Entity Period ended Objective: To document the design and implementation of the following elements of internal control: Environment Assessment Financial Reporting (part of information systems)
More informationB S R & Co. LLP. Reporting on Internal. Reporting An Overview. Sarbanes Oxley Act (SOX) 28 December 2013
B S R & Co. LLP Reporting on Internal Controls over Financial Reporting An Overview Sarbanes Oxley Act (SOX) 28 December 2013 Agenda Sarbanes Oxley Key Sections COSO Framework Management Approach to ICOFR
More informationAssessment of the Design Effectiveness of Entity Level Controls. Office of the Chief Audit Executive
Assessment of the Design Effectiveness of Entity Level Controls Office of the Chief Audit Executive February 2017 Cette publication est également disponible en français. This publication is available in
More informationUnderstanding Internal Controls Office of Internal Audit
Understanding Internal Controls Office of Internal Audit July 2015 Objectives for this manual Provide guidance to help management understand their responsibility to ensure that internal controls are established,
More informationEvaluating Internal Controls
A SSURANCE AND A DVISORY BUSINESS S ERVICES Fourth in the Series!@# Evaluating Internal Controls Evaluating Overall Effectiveness, Identifying Matters for Improvement, and Ongoing Assessment of Controls
More informationSTARWOOD HOTELS & RESORTS WORLDWIDE, INC. CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS
STARWOOD HOTELS & RESORTS WORLDWIDE, INC. CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS Starwood Hotels & Resorts Worldwide, Inc. (the Company ) has determined that it is of the utmost importance
More informationSession 7: Corporate Governance
Session 7: Corporate Governance New York Bankers Association-Community Bank Auditors Group 2016 Internal Audit Training-June 6-8, 2016 MEMBER OF ALLINIAL GLOBAL, AN ASSOCIATION OF LEGALLY INDEPENDENT FIRMS
More informationAudit Training-of-Trainers Workshop, November 2014, Vienna Components of internal control within organization
Audit Training-of-Trainers Workshop, 18-19 November 2014, Vienna Components of internal control within organization Andrei Busuioc, Senior Financial Management Specialist, CFRR Session objectives The session
More informationInternal Financial Controls (IFC) ICAI Seminar October 8, 2016
Internal Financial Controls (IFC) 1 ICAI Seminar October 8, 2016 Financial Reporting Assertions 3 Effective Internal Controls over Financial Reporting All Significant Accounts considered Minor or few internal
More informationAuditing Standards and Practices Council
Auditing Standards and Practices Council PHILIPPINE STANDARD ON AUDITING 315 UNDERSTANDING THE ENTITY AND ITS ENVIRONMENT AND ASSESSING THE RISKS OF MATERIAL MISSTATEMENT PHILIPPINE STANDARD ON AUDITING
More informationINTERNATIONAL STANDARD ON AUDITING 315 UNDERSTANDING THE ENTITY AND ITS ENVIRONMENT AND ASSESSING THE RISKS OF MATERIAL MISSTATEMENT CONTENTS
INTERNATIONAL STANDARD ON AUDITING 315 UNDERSTANDING THE ENTITY AND ITS ENVIRONMENT AND ASSESSING THE RISKS OF MATERIAL MISSTATEMENT (Effective for audits of financial statements for periods beginning
More informationPolicy and Procedures Date: November 5, 2017
Virginia Polytechnic Institute and State University No. 3350 Rev.: 8 Policy and Procedures Date: November 5, 2017 Subject: Charter for the Office of Audit, Risk, and Compliance 1. Purpose... 1 2. Policy...
More informationAUDIT COMMITTEE CHARTER
- 1 - AUDIT COMMITTEE CHARTER I. ROLE AND OBJECTIVES The Audit Committee is a committee of the Board of Directors (the "Board") of Pembina Pipeline Corporation (the "Corporation") to which the Board has
More informationSelf Assessment Workbook
Self Assessment Workbook Corporate Governance Audit Committee January 2018 Ce document est aussi disponible en français. Applicability The Self Assessment Workbook: Corporate Governance Audit Committee
More informationAUDIT COMMITTEE OF THE BOARD OF DIRECTORS
AUDIT COMMITTEE OF THE BOARD OF DIRECTORS CHARTER COMPOSITION AND MEETINGS The Audit Committee assists the Board in fulfilling its oversight responsibilities. The Audit Committee shall consist of no less
More informationTransparency in the Workforce System Establishing Firewalls & Internal Controls
Transparency in the Workforce System Establishing Firewalls & Internal Controls Presented by the Today s Objectives Define internal controls Identify components of an internal control structure Discuss
More informationInternal Audit Appendix: IIA Standards
Accountability Modules Internal Audit Appendix: IIA Standards Return to Table of ontents The following section provides additional detailed steps to examine when evaluating an internal audit function.
More informationDIRECTOR TRAINING AND QUALIFICATIONS: SAMPLE SELF-ASSESSMENT TOOL February 2015
DIRECTOR TRAINING AND QUALIFICATIONS: SAMPLE SELF-ASSESSMENT TOOL February 2015 DIRECTOR TRAINING AND QUALIFICATIONS SAMPLE SELF-ASSESSMENT TOOL INTRODUCTION The purpose of this tool is to help determine
More informationSegregation of Duties
Segregation of Duties The Basics of Accounting Controls Segregation of Duties The Basics of Accounting Controls 2014 SP Plus Corporation. All rights reserved. No part of this publication may be reproduced,
More informationShould boards and CEOs care about COSO ERM 2017? By Tim J. Leech
Should boards and CEOs care about COSO ERM 2017? By Tim J. Leech Source: Conference Board December 2017 https://www.conferenceboard.org/blog/postdetail.cfm?post=6631 As globalization accelerates and the
More informationAUDIT OF CORPORATE SOCIAL RESPONSIBILITY
AUDIT OF CORPORATE SOCIAL RESPONSIBILITY CA. Rajkumar S. Adukia B.Com (Hons.), FCA, ACS, AICWA, LL.B, M.B.A, Dip In IFRS(UK), Dip In LL & LW Mob: 098200 61049/09323061049 Email: rajkumarfca@gmail.com/
More informationStrengthening Control and integrity: A Checklist for government Managers
Forum: Analytics and Risk Management Tools for Making Better Decisions Strengthening Control and integrity: A Checklist for government Managers By James A. Bailey The next contribution is based on a Center
More informationGovernance Guideline SEPTEMBER 2013 BC CREDIT UNIONS.
Governance Guideline SEPTEMBER 2013 BC CREDIT UNIONS www.fic.gov.bc.ca INTRODUCTION The Financial Institutions Commission 1 (FICOM) holds the Board of Directors 2 (board) accountable for the stewardship
More informationAchieve. Performance objectives
Achieve Performance objectives Performance objectives are benchmarks of effective performance that describe the types of work activities students and affiliates will be involved in as trainee accountants.
More informationBUSINESS CPA EXAM REVIEW V 3.0. For Exams Scheduled After March 31, 2017
For Exams Scheduled After March 31, 2017 CPA EXAM REVIEW BUSINESS UPDATES AND ACADEMIC HELP Click on Community and Support at www.becker.com/cpa CUSTOMER SERVICE AND TECHNICAL SUPPORT Call 1-877-CPA-EXAM
More informationnpliance IN 2008, MICROSOFT CORP. WAS FINED 899 MILLION Auditing for
IN 2008, MICROSOFT CORP. WAS FINED 899 MILLION EUROS (US $1.15 BILLION) BY EUROPEAN UNION REGULATORS for failing to comply with a 2004 antitrust order. The previous year, DaimlerChrysler paid a US $30
More informationSARBANES-OXLEY COMPLIANCE MANAGING CHANGING EXPECTATIONS January 20, 2017
SARBANES-OXLEY COMPLIANCE MANAGING CHANGING EXPECTATIONS January 20, 2017 Pat Mitchell Managing Director Internal Audit, Risk, Business & Technology Consulting CHANGES IN THE COST AND SCOPE OF SOX COMPLIANCE
More informationUnderstanding Changes to the Certified Internal Auditor Program for 2013
Understanding Changes to the Certified Internal Auditor Program for 2013 Certified Internal Auditor (CIA ) 2013 Content Change Overview: This document is provided by IIA Global Headquarters to explain
More informationAdvanced External Auditing [AU2] Examination Blueprint
Purpose Advanced External Auditing [AU2] Examination Blueprint 2014-2015 The Advanced External Auditing [AU2] examination has been constructed using an examination blueprint. The blueprint, also referred
More informationQuality Assessments what you need to know
Quality Assessments what you need to know Patty Miller, Partner Deloitte & Touche LLP Cavell Alexander, VP-Internal Audit Intermountain Healthcare Overview of requirements Scope of assessment Approaches
More informationSMITH & NEPHEW PLC TERMS OF REFERENCE OF THE AUDIT COMMITTEE
SMITH & NEPHEW PLC TERMS OF REFERENCE OF THE AUDIT COMMITTEE MEMBERSHIP 1. Members of the Audit Committee shall be appointed by the Board subject to annual re-election by shareholders at the AGM on the
More informationREPORT 2016/033 INTERNAL AUDIT DIVISION
INTERNAL AUDIT DIVISION REPORT 2016/033 Advisory engagement on the Statement on Internal Control project at the United Nations Joint Staff Pension Fund 25 April 2016 Assignment No. VS2015/800/01 CONTENTS
More informationCDK GLOBAL, INC. AUDIT COMMITTEE CHARTER Effective January 20, 2016
CDK GLOBAL, INC. AUDIT COMMITTEE CHARTER Effective January 20, 2016 I. Purpose The Audit Committee (the Committee ) of the Board of Directors (the Board ) of CDK Global, Inc., a Delaware corporation (the
More informationSee your auditor clearly. Transparency report: How we perform quality audit engagements
See your auditor clearly. Transparency report: How we perform quality audit engagements February 2014 Table of contents 1) A message from the CEO and Managing Partner Assurance 2 2) Quality control policies
More informationOSHKOSH CORPORATION BOARD OF DIRECTORS AUDIT COMMITTEE CHARTER. As Amended as of May 9, 2016
OSHKOSH CORPORATION BOARD OF DIRECTORS AUDIT COMMITTEE CHARTER As Amended as of May 9, 2016 Purpose The purpose of the Audit Committee of the Board of Directors ( Audit Committee ) shall include assisting
More informationIntegration Mgmt / Initiating Process Group 4.1 Develop Project Charter
1 Mgmt / Initiating Process Group 4.1 Develop Project Charter Project statement of work Business Case Contract Enterprise environmental factors Project charter Expert judgement 26/02/2013 18:22:56 1 2
More informationSOX106. Accounts Payable and Sarbanes-Oxley; Strengthening your Internal Controls- 10 hours. Objectives
SOX106 Accounts Payable and Sarbanes-Oxley; Strengthening your Internal Controls- 10 hours Objectives This course describes how Sarbanes Oxley requirements should be implemented as they pertain to accounts
More informationPresent and functioning: Fine-tuning your ICFR using the COSO update
Present and functioning: Fine-tuning your ICFR using the COSO update November 2014 With the COSO s 1992 Control Framework being superseded by the 2013 updated edition on December 15, 2014, now is the time
More informationTHE AUDIT COMMITTEE HANDBOOK
Summer 2009 THE AUDIT COMMITTEE HANDBOOK Ce document est également disponible en français. TABLE OF CONTENTS 1 INTRODUCTION 3... Part 1: ORGANIZATION OF THE AUDIT COMMITTEE 3... 1. Composition and Organization
More informationCOSO Internal Control Integrated Framework Proposed Update
COSO Internal Control Integrated Framework Proposed Update Presented by: Dustin Birashk September 20, 2012 1 DISCLOSURE STATEMENT The material appearing in this presentation is for informational purposes
More informationChapter 7 Internal Controls
Chapter 7 Internal Controls Establishment of and adherence to internal controls is a major part of managing an organization. Internal controls serve as the first line of defense in safeguarding assets
More informationShort, engaging headline
Short, engaging headline Internal controls over financial reporting Designing a healthy program that evolves to meet changing needs kpmg.ca In this series of white papers, KPMG s Risk Consulting practice
More informationOn the Revision of the Standards and Practice Standards for. Management Assessment and Audit concerning Internal Control
(Provisional translation) On the Revision of the Standards and Practice Standards for Management Assessment and Audit concerning Internal Control Over Financial Reporting (Council Opinions) Released on
More informationInternal Audit Technician Training program Modules & Outcomes
Internal Audit Technician Training program Modules & Outcomes Training modules supplementary to the Workplace Structured Training Training Module 1: Introduction Building the foundations Content Day 1
More informationBeyond Compliance. Leveraging Internal Control to Build a Better Business: A Response to Sarbanes-Oxley Sections 302 and 404
Beyond Compliance Leveraging Internal Control to Build a Better Business: A Response to Sarbanes-Oxley Sections 302 and 404 Note to Readers Regarding This First Edition April 2003: This document was published
More informationBIO-RAD LABORATORIES, INC. (the Company ) Audit Committee Charter
BIO-RAD LABORATORIES, INC. (the Company ) Audit Committee Requirements and Structure Audit Committee Charter The board of directors of the Company (the Board ) shall appoint an audit committee (the Audit
More informationInternal Audit Policy and Procedures Internal Audit Charter
Mission Statement Internal Audit Policy and Procedures Internal Audit Charter The mission of the Internal Audit Department is to provide independent and objective reviews and assessments of the business
More informationInternal Controls: Need Them, Have Them, Love Them
Internal Controls: Need Them, Have Them, Love Them Tiffany R. Winters, Esquire twinters@bruman.com Brustein & Manasevit Fall Forum 2010 Why Do We Have Internal Controls? The Federal Managers Financial
More informationFire Department Inventory Management Audit
Fire Department Inventory Management Audit With over $3 million spent annually on inventory, the Fire Department needs stronger inventory management practices and controls Independence you can rely on
More informationGROUP 1 AUTOMOTIVE, INC. AUDIT COMMITTEE CHARTER
GROUP 1 AUTOMOTIVE, INC. AUDIT COMMITTEE CHARTER The Board of Directors (the Board ) of Group 1 Automotive Inc. (the Company ) has heretofore constituted and established an Audit Committee (the Committee
More informationFRAUD RISK FACTORS CHECKLIST (Source: New AU Section 240, Appendix A)
Page 136 of 174 FRAUD RISK FACTORS CHECKLIST (Source: New AU Section 240, Appendix A) RECOGNIZING RISK FACTORS THAT SHOULD GET YOUR ATTENTION How to use the checklist: 1. Review this checklist towards
More informationWorking with the external auditor
Working with the external auditor 0 Audit committees have an essential role to play in ensuring the integrity and transparency of corporate reporting. The PwC Audit Committee Guide is designed to help
More informationInternal controls over Financial Reporting Key concepts. Presentation by Jayesh Gandhi at WIRC
Internal controls over Financial Reporting Key concepts Presentation by Jayesh Gandhi at WIRC Page 1 ICFR Key Concepts WIRC 28 May 2016 Agenda Scope and requirements Overview of internal controls as per
More informationAIST Investment Manager Operational Due Diligence Guidance Note February Investment Manager Operational Due Diligence Review Process
AIST Investment Manager Operational Due Diligence Guidance Note February 2017 Introduction The Australian Prudential Regulatory Authority (APRA) regularly communicates its expectations with the entities
More informationSharing experiences on audit quality. A selection of ideas and initiatives intended to assist the promotion of consistent audit quality in Australia
Sharing experiences on audit quality A selection of ideas and initiatives intended to assist the promotion of consistent audit quality in Australia About this paper This paper was prepared by staff at
More information4. Organic documents. Please provide an English translation of the company s charter, by-laws and other organic documents.
Commitment to Good Corporate Governance 1. Ownership structure. Please provide a chart setting out the important shareholdings, holding companies, affiliates and subsidiaries of the company. If the company
More informationA Discussion About Internal Controls February 2016
A Discussion About Internal Controls February 2016 What we will cover today 001 Introductions 002 Defining Internal Controls 003 COSO Internal Controls Integrated Framework 004 Approach to Designing Internal
More informationMINDEN BANCORP, INC. AUDIT COMMITTEE CHARTER
MINDEN BANCORP, INC. AUDIT COMMITTEE CHARTER Purpose The Audit Committee (the Committee ) of Minden Bancorp, Inc. (the Company ) is appointed by the Board of Directors to assist the Board in fulfilling
More informationSarbanes-Oxley Compliance Kit
Kit February 2018 This product is NOT FOR RESALE or REDISTRIBUTION in any physical or electronic format. The purchaser of this template has acquired the rights to use it for a SINGLE Disaster Recovery
More informationReport on Inspection of KPMG AG Wirtschaftspruefungsgesellschaft (Headquartered in Berlin, Federal Republic of Germany)
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8433 www.pcaobus.org Report on 2016 (Headquartered in Berlin, Federal Republic of Germany) Issued by the Public Company
More informationCRESCENT CAPITAL BDC, INC. AUDIT COMMITTEE CHARTER
CRESCENT CAPITAL BDC, INC. AUDIT COMMITTEE CHARTER I. Purpose The audit committee (the Audit Committee ) of Crescent Capital BDC, Inc., a Delaware corporation (the Company ), is appointed by the board
More informationFraud Prevention: How to Identify and Protect Your Higher Ed Institution
Fraud Prevention: How to Identify and Protect Your Higher Ed Institution November 16, 2017 Investment advisory services are offered through CliftonLarsonAllen Wealth Advisors, LLC, an SEC-registered investment
More informationCatching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010
Catching Fraud During a Recession Through Superior Internal Controls FICPA s 25 th Annual Accounting Show J. Stephen Nouss September 29, 2010 1 Session Objectives Fraud Facts (2008 Association of Certified
More informationWhite Paper. Effective and Practical Deployment of COSO: Entity Level Control and Lessons Learned. July 10, 2008 THE ROBERTS COMPANY, LLC
THE ROBERTS COMPANY, LLC Compliance Services: IT and Business Processes 3394 Holly Oak Lane, Escondido, CA 92027 TEL: 760.550.2160 * FAX 760.839.2160 E-mail: robertputrus@therobertsglobal.com http://www.therobertsglobal.com/
More informationIncreasing External Auditor Reliance
Increasing External Auditor Reliance Guiding Internal Auditors to realize the benefits of raising the bar on External Auditor Reliance. SOX Software Made Simple Table of Contents 1 Introduction 3 Factors
More informationFINANCIAL INSTITUTIONS AUDIT COMMITTEE GUIDE FOR FINANCIAL INSTITUTIONS
FINANCIAL INSTITUTIONS AUDIT COMMITTEE GUIDE FOR FINANCIAL INSTITUTIONS Dear clients and friends of the firm, Corporate governance is a significant area of focus for stakeholders of financial institutions.
More informationFinancial Statement Close Process
Financial Statement Close Process Process Control Objective Risk Control Considerations Segregation of Duties Accounting functions are properly segregated. Unauthorized and inaccurate transactions may
More informationFraud Risk Management
Fraud Risk Management Specific Anti-Fraud Controls (Process or Transaction Level) 2017 Association of Certified Fraud Examiners, Inc. Discussion Questions 1. Does your organization have adequate staffing
More informationEffective implementation of COSO s new anti-fraud guidance
Effective implementation of COSO s new anti-fraud guidance In September 2016, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) published a new Fraud Risk Management Guide (Anti-fraud
More informationEnterprise Risk Management: Developing a Model for Organizational Success. White Paper
Enterprise Risk Management: Developing a Model for Organizational Success White Paper January 2009 Overview Less than a decade ago, Enterprise Risk Management (ERM) was an unfamiliar concept. Today, the
More informationIntroduction to Fraud and Forensic Professional Oppurtunities for Chartered Accountants
WESTERN INDIA REGIONAL COUNCIL OF ICAI Introduction to Fraud and Forensic Professional Oppurtunities for Chartered Accountants Presented on 11 th March, 2017 By CA Vijay Kewalramani B. Com., LL. M., F.
More information