Internal Control. Meeting Federal Requirements for Accountability. Robert Black, Senior Instructor 3 June 2016 PDI Orlando, FL

Similar documents
Understanding Internal Controls. Federal Highway Administration New Mexico Division

UNITED STATES MARINE CORPS MARINE CORPS BASE 3250 CATLIN AVENUE QUANTICO VIRGINIA IN REPLY REFER TO: MCBO 5200.

Standards for Internal Control in New York State Government 2016 Update

From Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance

AGA Gulf Region PDT COSO and the Green Book: An Enhanced Internal Control Framework

Ref: (a) Federal Managers' Financial Integrity Act of 1982, P.L (b) OMB Circular A-123 (c) DoD Instruction 5010.

Chapter 7 Internal Controls

CLIENT ALERT: INTERNAL CONTROL OVER FINANCIAL REPORTING

EFFICIENT USE OF AUDIT COMMITTEES

Financial Management in the Federal Government:

Contents Introduction II. Ethics, Independence, and Confidentiality III. Professional Standards IV. Ensuring Internal Control

WORKSHOP 84 STREAMLINING COMPLIANCE THROUGH GRC INTEGRATING A-123 UPDATES AND MORE!

An Audit of Internal Control Over Financial Reporting Performed in Conjunction with An Audit of Financial Statements

What s New in Government Internal Control Standards? Going Green

PART 6 - INTERNAL CONTROL

Internal Controls: Need Them, Have Them, Love Them

Minneapolis Public Schools Special School District No. 1 Minneapolis, Minnesota. Communications Letter of the Student Activity Accounts.

An Audit of Internal Control Over Financial Reporting Performed in Conjunction with An Audit of Financial Statements

Federal CFO Insights Real solutions to win the fight against improper payments and fraud, waste and abuse

Single Audit and Yellow Book / Govt. Audit Standards Update Presented by: William Blend, CPA, CFE

Policy and Procedures Date: November 5, 2017

Comparison of the PCAOB s Auditing Standards No. 5 and No. 2 (Certain key differences are highlighted by underlining)

Internal Control in Higher Education

Guidelines for Assessing the Acquisition Function

IAASB Main Agenda (December 2008) Page Agenda Item

Government Auditing Standards

INTERNAL CONTROL: COMPLIANCE, OPERATIONAL AND FINANCIAL

INTERNAL AUDIT POLICIES AND PROCEDURES OPERATING MANUAL

METROPOLITAN TRANSPORTATION AUTHORITY

Washington Headquarters Services ADMINISTRATIVE INSTRUCTION

In Control: Getting Familiar with the New COSO Guidelines. CSMFO Monterey, California February 18, 2015

RREGULATION ON INTERNAL CONTROLS AND INTERNAL AUDIT FUNCTION IN MICROFINANCE INSTITUTIONS. Article 1 Scope and Purpose

EXECUTIVE SUMMARY INTERNAL AUDIT REPORT. IOM Berlin DE NOVEMBER 2017

29 th Regional Conference of WIRC

U. S. GAO Government Auditing Standards Update The New Yellow Book

Internal Control Vulnerability Assessment (January 2011) Unit Name. Prepared by. Title. Reviewed by. Title. Reviewer s Comments

Department of Navy Audit Update

SA 265 COMMUNICATING DEFICIENCIES IN INTERNAL CONTROL

Audit Standards 6/23/2017. Outline. Let s Refresh. Changes to the IIA Standards

DEPARTMENT OF DEFENSE Defense Commissary Agency Fort Lee, VA DIRECTIVE. Internal Audit Activities

International Standards for the Professional Practice of Internal Auditing (Standards)

Corporate Governance Framework

Assessment of the Design Effectiveness of Entity Level Controls. Office of the Chief Audit Executive

Anti-Fraud Programs and Control Policy

How to Pass an ALGA Yellow Book Peer Review Training by the Association of Local Government Auditors (ALGA) Tampa, Florida September 20, 2013

SEC ESTABLISHMENT OF PANEL ON CONTRACTING INTEGRITY.

Format and organization of GAGAS Auditor preparation of financials is a significant threat to independence 3 party arrangements in government State

Appropriate Role of Contractors Supporting the Government Working Group: Presentation of Recommendations 12/16/2005

Community Bankers Conference

Internal Audit Charter

International Standards for the Professional Practice of Internal Auditing (Standards)

Chapter 6 Field Work Standards for Performance Audits

Corporate Governance. Information Request List Family- or Founder-Owned Unlisted Companies. Commitment to Corporate Governance

This training matters, because the auditors are coming.

Quality Control Review of Air Force Audit Agency s Special Access Program Audits (Report No. D )

Bank of Botswana Internal Audit Charter March 18, 2013 INTERNAL AUDIT CHARTER BANK OF BOTSWANA

Diving into the 2013 COSO Framework. Presented by: Ronald A. Conrad

Control Environment Toolkit: Internal Audit Function

Defense Procurement & Acquisition Policy Acquisition Exchange Program. Project Description #1

Single Audit Update: Internal Control over Compliance and the GAO s Green Book. MSBO s 80 th Annual Conference April 19, 2018

How to stop improper payments: A focus on government vendor risk

e. inadequacy or ineffectiveness of the internal audit program and other monitoring activities;

ISA 240 (Redrafted), The Auditor s Responsibilities Relating to Fraud in an Audit of Financial Statements

Audit and Risk Management Committee Charter

Improving Accountability With Better Contractor Oversight

McGraw-Hill/Irwin. Copyright 2013 by The McGraw-Hill Companies, Inc. All rights reserved.

[RELEASE NOS ; ; FR-77; File No. S ]

1/12/2016. Standards for Internal Control in the Federal Government. Standards for Internal Control in the Government

Department of Defense MANUAL

Internal controls over Financial Reporting Key concepts. Presentation by Jayesh Gandhi at WIRC

DOD MANUAL , VOLUME 2 DOD MANAGEMENT OF ENERGY COMMODITIES: RECORDS RETENTION AND FORMS MANAGEMENT

THE ARCG CHARTER. Issued in March 2008

Oversight Review March 16, External Quality Control Review of the Defense Logistics Agency Audit Organization. Report No.

An Examination of an Entity s Internal Control Over Financial Reporting That Is Integrated With an Audit of Its Financial Statements

Oversight Review January 27, Quality Control Review of Army Audit Agency's Special Access Program Audits. Report No.

REPORT 2016/033 INTERNAL AUDIT DIVISION

INTERNAL AUDIT PLAN AND CHARTER 2018/19

OPERATIONAL DIRECTIVE REF. OD.ED INTERNAL AUDIT AND INVESTIGATIONS CHARTER

Report on Inspection of KPMG AG Wirtschaftspruefungsgesellschaft (Headquartered in Berlin, Federal Republic of Germany)

ASMC National Capital Region PDI 9 March 2017

Management and Inspector General Road Rules in Enterprise Risk Management. June 16, 2016

2. Agenda and minutes. Is an agenda prepared and distributed in advance of board meetings? Are minutes prepared and approved after board meetings?

Department of Defense INSTRUCTION

Department of Health and Mental Hygiene Laboratories Administration

Department of Defense INSTRUCTION

COMPLIANCE AT LARGER INSTITUTIONS. November 11 13, Robert F. Roach Chief Compliance Officer New York University

This charter defines the purpose, authority and responsibility of News Corporation s (the Company ) Corporate Audit Department.

Internal Control Questionnaire and Assessment

4. Organic documents. Please provide an English translation of the company s charter, by-laws and other organic documents.

GARMIN LTD. Audit Committee Charter. (Amended and Restated as of July 25, 2014)

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)

FINAL AUDIT REPORT DEPARTMENT OF COMMUNITY AFFAIRS ETHICS PROGRAM AUDIT. Report No. A-1011EOG-008 OIG ACN 11-A002. Connie Schulze Contract Auditor

AUDITING. Auditing PAGE 1

SIGAR. USAID s Support for the American University of Afghanistan: Audit of Costs Incurred by the American University of Afghanistan M A R C H

Internal Audit Quality Analysis Evaluation against the Standards International Standards for the Professional Practice of Internal Auditing (2017)

CPA REVIEW SCHOOL OF THE PHILIPPINES M a n i l a AUDITING THEORY AUDIT PLANNING

Internal Audit Appendix: IIA Standards

BCE INC. BOARD OF DIRECTORS CHARTER (INCLUDING BOARD CHAIR POSITION DESCRIPTION)

What s New In GAO s Revised Greenbook

IMPACT AND IMPORTANCE OF INTERNAL AUDIT IN SUCCESSFUL MANAGEMENT OF THE ENTERPRISE

Transcription:

Internal Control Meeting Federal Requirements for Accountability Robert Black, Senior Instructor 3 June 2016 PDI Orlando, FL

Internal Control Is EVERYONE S RESPONSIBILITY!

Control Failure Examples Upper Big Branch Mine explosion 29 miners died. Worst in 40 years. 389 citations issued by MSHA. Gulf oil spill risk ignored, lax regulatory oversight, damage to environment, and economy of gulf Federal Financial Regulatory System failure to understand risks of sub-prime mortgage bundles Great Recession WIKI leaks poor control over access to classified documents by intel community exposure of U.S. classified info/embarrassment 3

Consider this: Major blowups do NOT come from a single internal control failure but rather from the cumulative effect of many small internal control failures.

Overview Definition of internal control Why we perform internal control Federal Managers Financial Integrity Act (FMFIA) requirements Control objectives and control activities Risk assessment and management GAO s Standards for Internal Control Internal control process Internal control review and testing Classifications of internal control deficiencies The corrective action plan (CAP) Internal control reporting

CONTROLLING: A Classic Management Function, but a Lack of Understanding Unfortunately, internal control is often improperly perceived as: A bean counter, financial, or auditing function Related only to budgeting and accounting Too administrative and not operational A paperwork exercise Not important to program managers Not critical to mission accomplishment

Discussion Question How do we better communicate the importance of internal controls?

Accountability Increasing Focus Use of resources is consistent with agency mission Programs and resources are protected from waste, fraud, and mismanagement Laws and regulations are followed Reliable/timely information is obtained, maintained, reported, and used for decision-making

Basic Provisions of the Integrity Act Agency Heads Report to the president and Congress annually: A statement of reasonable assurance on controls Any material weakness Will report annually on whether financial systems conform to government-wide requirements GAO Will prescribe internal controls standards OMB Will issue guidelines for agencies

FMFIA and OMB Circular A-123 Basic Reporting Requirements Separate statements of assurance required: Operational Controls Internal Controls over Financial Reporting (ICOFR) Financial Management Systems

GAO s Definition of Internal Control "An integral component of organization s management that provides reasonable assurance that the following objectives are being achieved: Effectiveness and efficiency of operations Reliability of financial reporting Compliance with applicable laws and regulations"

Sources Federal Managers Financial Integrity Act (FMFIA) GAO s Standards for Internal Control in the Federal Government (Green Book) OMB Circular A-123: Management's Responsibility for Internal Control DODI 5010.40: Managers Internal Control Program Procedures

Terms to Know Assessable unit Control objective Control activity Material weakness Reasonable assurance Risk Testing

GAO Standards The Green Book 9/14 Define the minimum level of quality acceptable for internal control in the government Provide criteria against which all management systems are to be evaluated Apply to all aspects of an agency s operations, programs, financial activities, and compliance Provide a general framework for management to develop detailed policies, procedures, and practices to fit its agency's operations and ensure that they are built into and are an integral part of operations Emphasize that the standards are reflected in and are an integral part of operations

The Five GAO Standards Control environment Risk assessment Control activities Information and communication Monitoring

The Three Major Types of Risk Inherent People Control

Risk Management Matrix

Risk Assessment Definitions Risk. The chance of something happening that will have a negative impact on objectives. It is measured in terms of consequences and likelihood. Likelihood. A qualitative description of a probability or frequency. Consequence. The outcome of an event expressed qualitatively or quantitatively, being a loss, injury, disadvantage, or gain.

Risk Assessment Matrix

Examples of Control Activities Top-level reviews of actual performance Reviews by management at the functional or activity level Management of human capital Controls over information processing Physical control over vulnerable assets Establishment and review of performance measures and indicators Segregation of duties Proper execution of transactions and events Accurate and timely recording of transactions and events Access restrictions to and accountability for resources and records Appropriate documentation of transactions and internal control

QUALITY How do we achieve QUALITY??????????? a. Working harder b. Getting more resources c. Having more fun on the job d. Through well-designed processes that allow us to efficiently deliver products that effectively accomplish mission and satisfy customers

Overview of Internal Control Process

Detail of Internal Control Process

Purpose of Internal Control Review (ICR) An ICR allows management to determine if: A positive and supportive control environment exists Laws, regulations, and other directives such as policies and procedures are being implemented as directed Material weaknesses are indicated Controls exist and are cost-effective Corrective actions are needed The agency might be vulnerable in areas covered by the ICR

MICP Process/Review Steps - DoDI 5010.40 Step 1 Identify areas to be reviewed along with any associated risks Step 2 Plan and carry out specific ICRs on key areas and risks Step 3 Determine condition of controls; report deficiencies

Internal Control Testing Methods Observation Document analysis Interviewing Transaction testing Surveys/questionnaires

Classifications of Internal Control Deficiencies Control deficiency Reportable condition Material weakness Controls may have either a design or operational deficiency or both.

Some Factors for Determining What Constitutes a Material Weakness 1. Significantly impair components of ability to achieve its objectives. 2. Result in use of resources in way that is inconsistent with DoD mission. 3. Violate statutory or regulatory requirements. 4. Result in significant lack of safeguards against fraud, waste, abuse, and mismanagement. Includes unauthorized use of property and misappropriation of funds. 5. Impair ability to obtain, maintain, report, and use timely information for decision-making. 6. Permit improper ethical conduct or a conflict of interest.

A Management Concept: Commander s Status Report on Mission Elements Affected by Internal Control Deficiencies Key Mission Element 1. Equipment readiness 2. Logistics training 3. Backlog of vehicle repairs Internal Control Deficiency 1. Insufficient inventory of critical item Mat. Wkness 2. Req d course for two logisticians not completed Ctl Deficiency 3. 35% scheduled maint. overdue Reportable Cond.

DOD Reported Material Weaknesses For 2015, DoD reported in its Agency Financial Report (AFR) 26 material weaknesses. 16 in internal control over financial reporting (ICOFR); e.g., in areas of fund balance with Treasury, military pay, civilian pay. 10 in non-financial operations; e.g., in areas of acquisition, security, force readiness, property. Note: 17 categories per DoDI 5010.40

Correcting Material Weaknesses Take timely action Set milestones with completion dates Follow up Periodically assess progress

DoD Levels of Material Weaknesses Installation or Activity Level Requires the attention of the head of an installation Major Command or Field Activity Level Permeates a major command or one or more of its installations / activities Component Level Permeates a component or one or more of its major commands or activities Requires component head attention DoD Level Merits OSD attention or exists in a majority of components Those not resolved at the SECDEF level are reported in the annual Statement

Reporting Levels in DoD Office of the Secretary of Defense Military departments Joint Chiefs of Staff Combatant commands Office of the Inspector General Defense agencies Field activities Other organizational entities

Statement of Assurance Represents the agency head s informed judgment as to the overall adequacy and effectiveness of internal controls within the agency Must take one of the following forms: Statement of assurance (unqualified) Qualified statement of assurance (qualified) Statement of no assurance

What Are We Assuring? Operations are effective, efficient, and meet objectives Financial and performance reporting are reliable and timely The agency complies with laws and regulations Programs are managed with integrity and follow high ethical standards The agency is protecting its assets The agency's approach considers the five standards of internal control

Sources of Information Leadership knowledge gained from daily operations of DoD Reviews conducted for purpose of assessing Internal Control OIG and GAO reports Program evaluations Audits of financial statements Reviews of financial systems under OMB circular A-123, App D Annual performance plans and reports pursuant to GPRAMA Annual reviews and reports under IPIA, IPERA, and IPERIA Other financial and performance audit reports Other reviews relating to DoD operations Components will consider deficiencies from all sources, BUT primarily

Benefits of Internal Control Provides management with added confidence regarding achievement of objectives Provides feedback on how effectively component is operating Helps reduce risks related to achieving components objectives Safeguarding of assets

Questions and Closing rblack@managementconcepts.com

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback