Fraud Risk Management

Similar documents
Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Fraud Risk Management

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Triple C Housing, Inc. Compliance Plan

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

THE ARCG CHARTER. Issued in March 2008

DECISION. mb a5 EFSA Internal Control Framework. Internal Control Framework of the European Food Safety Authority. Decision No.

Contract and Procurement Fraud. Detection and Prevention

Audit Committee Performance Evaluation Form

7/27/2011. What are the Drivers to Governance? Governance

GOODWILL INDUSTRIES OF COLORADO SPRINGS

International Standards for the Professional Practice of Internal Auditing (Standards)

Fraud Risk Management Review March 18, 2010

Henkel s Compliance Management System (CMS)

Audit, Risk and Compliance Committee Terms of Reference. Atlas Mara Limited. (The "COMPANY") Amendments approved by the Board on 22 March 2016

Anti-Fraud Programs and Control Policy

Implementation Guide 2130

International Standards for the Professional Practice of Internal Auditing (Standards)

Lake County School District. Quality Assurance & Improvement Program. Internal Self-Assessment for. The Internal Audit Department

Internal Audit Best Practices for Community Banks. A CSH White Paper

EFFICIENT USE OF AUDIT COMMITTEES

Audit & Risk Committee Charter

WHISTLEBLOWER POLICY Whistleblower Policy and Procedures (the Policy ) of Canadian Solar Inc. and its Subsidiary Entities.

Tactics to Maximize Your Board's Role in Compliance

Fraud in focus March Fraud & Corruption in the Victorian Public Sector learnings and insight for 2017 and beyond

B U S I N E S S R I S K M A N A G E M E N T L T D

IDI Internal Control System

The Rye Ambulatory Surgery Center, LLC Compliance Plan

Chatham-Kent Health Alliance. Internal Control Framework Assessment - Executive Summary

SIAAB Guidance #02 Internal Audit Independence- Interaction with Agency Head, Senior Staff and Placement Within the Organizational Structure

Code of Corporate Governance

August 14, Dear Ms. Gula:

FEDERAL HOME LOAN BANK OF INDIANAPOLIS CHARTER FOR THE AUDIT COMMITTEE

This charter defines the purpose, authority and responsibility of News Corporation s (the Company ) Corporate Audit Department.

INTEGRITY COMPLIANCE GUIDELINES

SENIOR MANAGEMENT ASSESSMENT CRITERIA1

To: Identify your chief goals and objectives Identify risks Prioritize the risks to achieving objectives Determine which controls/processes to review

Effective implementation of COSO s new anti-fraud guidance

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)

BERMUDA MONETARY AUTHORITY

STATEMENT ON RISK MANAGEMENT AND INTERNAL CONTROL

FINAL ASSESSMENT M.C. DEAN, INC.

Fraud Risk in Difficult Economic Times - questions for directors to ask

Appendix A. Simplified Sample Entity-Level Control Matrices

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING

Internal Audit and SOX Best Practices

Fraud Risk Management

Managing Fraud Risk: New Professional Guidance

Government Auditing Standards

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

RREGULATION ON INTERNAL CONTROLS AND INTERNAL AUDIT FUNCTION IN MICROFINANCE INSTITUTIONS. Article 1 Scope and Purpose

Audit Project Process Overview 1/18/ Compliance and Audit Symposium. Agenda. How to Kick-start your. Audit Planning and Risk Assessment

THE IFRS WORKSHOP. Hilton Hotel. Saturday, 11 February /02/2017 Uphold Public Interest

KING IV TM APPLICATION REPORT

Fraud, bribery and corruption Protecting reputation and value

COSO What s New, What s Changed, Why Does it Matter and Other Frequently Asked Questions

King IV application report In pursuit of growth

CORPORATE GOVERNANCE THEORY, SCOPE AND IMPORTANCE

Office of the Auditor General: Follow-up to the 2013 Audit of Ethics, Tabled at Audit Committee May 25, 2017

ACCA Certified Accounting Technician Examination, Paper T5

IACA Compliance Benchmark Questionnaire

QUILTER PLC ( Quilter or the Company ) BOARD RISK COMMITTEE TERMS OF REFERENCE

PRACTICE GUIDE. Formulating and Expressing Internal Audit Opinions

IAASB Main Agenda (December 2008) Page Agenda Item

White Paper. Effective and Practical Deployment of COSO: Entity Level Control and Lessons Learned. July 10, 2008 THE ROBERTS COMPANY, LLC

Whistleblower Policy and Procedures. Supplement to the Guidelines for Business Conduct

Audit Committee Member Roles and Responsibilities

UNITY TRUST BANK PLC ( the Bank ) AUDIT AND RISK COMMITTEE

Utility Debt Securitization Authority

SA 265 COMMUNICATING DEFICIENCIES IN INTERNAL CONTROL

AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF THE TORONTO-DOMINION BANK CHARTER

OPERATIONAL RISK EXAMINATION TECHNIQUES

BERMUDA MONETARY AUTHORITY

Terms of Reference for the Governance Committee. November 9, 2017

SAMPLE BOARD PERFORMANCE EVALUATION: Prepared by DELOITTE & TOUCHE, 2013

The Ins and Outs: Audits Under FDICIA. Jennifer Gureckis and Kaylyn Landry BerryDunn February 27, 2018

Beyond Compliance. Leveraging Internal Control to Build a Better Business: A Response to Sarbanes-Oxley Sections 302 and 404

Risk management framework: compliance risk policy

Integrity. Purpose of the Checklist. Description

Audit and Risk Management Committee Charter

Case Report from Audit Firm Inspection Results

F: Compliance Audit Checklists: Organisational & Management Issues

THE GULF COAST CENTER CORPORATE COMPLIANCE PLAN

Bribery and Corruption

Company LOGO C B T. An Educational Computer Based Training Program

Department of Public Health OF SAN FRANCISCO

Disciplinary Action. POLICY: 6Hx28:3E-08. Responsible Official: Vice President, Organizational Development and Human Resources

Understanding Internal Controls. Federal Highway Administration New Mexico Division

Strengthening Control and integrity: A Checklist for government Managers

Risk assessment checklist - Not-for-Profit governance

Overseas Strategic Consulting, Ltd. s Combating Trafficking in Persons ( Anti-Trafficking ) Compliance Plan

FRAUD AWARENESS UPDATE

Audit Training-of-Trainers Workshop, November 2014, Vienna Components of internal control within organization

Corporate Governance/King III and Companies Act 71 of 2008 ( Companies Act ) reviews. [King III s apply or explain approach will be addressed below]

Quality Control Review of Air Force Audit Agency s Special Access Program Audits (Report No. D )

Delta Dental of Michigan, Ohio, and Indiana. Compliance Plan

Realizing the UN Global Compact Advanced 2017

UNITY TRUST BANK PLC ( the Bank ) AUDIT AND RISK COMMITTEE. Terms of Reference

METROPOLITAN TRANSPORTATION AUTHORITY

Transcription:

Fraud Risk Management Developing a Fraud Risk Management Program 2017 Association of Certified Fraud Examiners, Inc.

Discussion Questions 1. Which individual or group within your organization oversees the risk management process? How is risk management governed at the board level through a specific committee? 2017 Association of Certified Fraud Examiners, Inc. 2 of 27

Discussion Questions 2. How and where within the risk management model is fraud risk addressed within your organization? 2017 Association of Certified Fraud Examiners, Inc. 3 of 27

Discussion Questions 3. How does your organization assess the effectiveness of its risk management activities overall? How about its fraud risk management activities? How do you define success for this function? 2017 Association of Certified Fraud Examiners, Inc. 4 of 27

Learning Objectives Define the objectives of a fraud risk management program. Identify the steps in developing a fraud risk management program. Understand the components in an effective fraud risk management program. 2017 Association of Certified Fraud Examiners, Inc. 5 of 27

Objectives of a Fraud Risk Management Program Address fraud: Before it occurs prevention While it occurs detection After it occurs response 2017 Association of Certified Fraud Examiners, Inc. 6 of 27

Steps in Developing a Fraud Risk Management Program 1. Define program objectives. 2. Assess fraud risks. 3. Design program components. 4. Implement program components. 5. Communicate expectations. 6. Ensure compliance. 7. Identify and investigate violations. 8. Measure, evaluate, and report program effectiveness. 2017 Association of Certified Fraud Examiners, Inc. 7 of 27

Step 1: Define Program Objectives Tailor objectives to the organization s specific needs and goals. Include a clear, explicit definition of what the organization intends to accomplish. Weigh: Management s risk appetite Investment in anti-fraud controls Prevention of material frauds 2017 Association of Certified Fraud Examiners, Inc. 8 of 27

Step 1: Define Program Objectives Addressing Risk Appetite Every company has a different risk appetite. Management needs to address risk appetite in relation to fraud. The difference between risk appetite and risk tolerance should be understood. Neither suggest acceptance of identified fraud, only undetected acts. The non-monetary impact of fraud should be considered. 2017 Association of Certified Fraud Examiners, Inc. 9 of 27

Step 1: Define Program Objectives Establishing Context for Risk Management Means to identify and communicate objectives and parameters to be taken into consideration in risk management External context versus internal context 2017 Association of Certified Fraud Examiners, Inc. 10 of 27

Step 1: Define Program Objectives Establishing Context for Risk Management Considerations: Goals and objectives Responsibilities Scope Relationships Risk assessment methodologies Performance measurement Decisions to be made Studies and resources needed 2017 Association of Certified Fraud Examiners, Inc. 11 of 27

Step 1: Define Program Objectives Examining Previous Fraud Incidents Examine previous occurrences of fraud and determine how management s ideal fraud risk management program would have prevented, detected, and responded to them. Were fraud risks not fully understood? Were controls insufficient in design or operation? Were applicable controls overridden? Were any warning signs missed? 2017 Association of Certified Fraud Examiners, Inc. 12 of 27

Step 2: Assess Fraud Risks Identify and thoroughly understand risks faced by the organization. FRM initiatives developed without accurate fraud risk assessment will be: Ineffective in preventing fraud A waste of resources Potentially counterproductive 2017 Association of Certified Fraud Examiners, Inc. 13 of 27

Step 3: Design Program Components Considerations: Organizational culture Operating environment Specific risks Program objectives Risk appetite 2017 Association of Certified Fraud Examiners, Inc. 14 of 27

Step 3: Design Program Components 2017 Association of Certified Fraud Examiners, Inc. 15 of 27

Step 3: Design Program Components Initiatives to increase the anti-fraud culture and tone of the organization Fraud prevention controls Fraud detection controls Policies, processes, and procedures for investigating and responding to identified fraud 2017 Association of Certified Fraud Examiners, Inc. 16 of 27

Step 4: Implement Program Components Internal controls will only prevent or detect fraud if those responsible effectively fulfill their duties. 2017 Association of Certified Fraud Examiners, Inc. 17 of 27

Step 5: Communicate Expectations Communicate purpose and expectations of FRM program: Both formally and informally To all employees at all levels of the organization 2017 Association of Certified Fraud Examiners, Inc. 18 of 27

Step 6: Ensure Compliance Include mechanisms that monitor, identify, and address breaches in compliance. Designate an individual or team to monitor compliance and address noncompliance. Formal sanctions for intentional noncompliance must be well publicized, consistent, and firm. 2017 Association of Certified Fraud Examiners, Inc. 19 of 27

Step 7: Identify and Investigate Violations Implement clearly defined processes for investigating suspected frauds. 2017 Association of Certified Fraud Examiners, Inc. 20 of 27

Step 8: Evaluate the Program s Effectiveness Periodically evaluate program performance. Report results to upper management and the board of directors. Benchmark performance against internal expectations or best practices. 2017 Association of Certified Fraud Examiners, Inc. 21 of 27

FRM Program Components Commitment Fraud awareness training Affirmation process Conflict disclosure Fraud risk assessment 2017 Association of Certified Fraud Examiners, Inc. 22 of 27

FRM Program Components Reporting procedures and whistleblower protection Investigation process Corrective action Process evaluation and improvement Continuous monitoring 2017 Association of Certified Fraud Examiners, Inc. 23 of 27

Fraud Risk Management Principle No. 5 Fraud Risk Management Monitoring The organization selects, develops, and performs ongoing evaluations to ascertain whether each of the five principles of fraud risk management is present and functioning and communicates fraud risk management program deficiencies in a timely manner to parties responsible for taking corrective action, including senior management and the board of directors. 2017 Association of Certified Fraud Examiners, Inc. 24 of 27

Fraud Risk Management Monitoring Points of Focus Considers a mix of ongoing and separate evaluations Considers factors for setting the scope and frequency of evaluations Establishes appropriate measurement criteria Considers known fraud schemes and new cases Evaluates, communicates, and remediates deficiencies 2017 Association of Certified Fraud Examiners, Inc. 25 of 27

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback