Fraud Prevention, Detection, and Internal Controls

Similar documents
Fraud Detection and Prevention

Cash Receipting: Fraud Prevention and Internal Controls

Cash Receipting: Fraud Prevention and Internal Controls

Eric Kinsherf, CPA MMAAA Conference June 12, 2018

Fraud Prevention Training

FRAUD SCHEMES. South Carolina HFMA Finance & Reimbursement Forum. November 13, 2012 WITH RELATED INTERNAL CONTROLS

Can You Spot Fraudsters?

FRAUD DETERRENCE AND DETECTION

- Excessive gambling or investment habits - Strong challenge to beat the system - Undue family pressure such as divorce - Overwhelming desire for pers

SMALL BUSINESS FRAUD ASSESSMENT INTERNAL CONTROL QUESTIONNAIRE Download your risk assessment form at

Ten Payment Fraud Protections

Christopher Dawkins, CPA, CIA Director of County Audit Phil Diamond, CPA Orange County Comptroller s Office

Moving the Needle: Fighting Fraud from the Inside Through Audit. Mary Breslin, CFE, CIA President Empower Audit Training and Consulting

Financial Controls Checklist

Fraud Risk Management

OUTSMART FRAUD. Strategic Internal Controls to Prevent Business Fraud

Employee Dishonesty: Prevention and Detection

2/27/2017. Segregation of Duties/ Internal Controls. Objectives. Agenda

Virginia Association of School Business Officers Getting Reacquainted with Internal Controls Presented by John S. Aldridge, CPA

Committee for Senior Business Administrators. Segregation of Duties

Internal Controls for Deans, Directors and Chairs

Contract and Procurement Fraud

STATE OF MINNESOTA OFFICE OF THE STATE AUDITOR

How to Prevent Financial Fraud at Your Church VONNA LAUE

Karen L. Mosteller, CPA, CHBC

OVERVIEW 4/19/10. Internal Controls and the Audit Process May 4, 2010 OVERVIEW. Definition and historical perspective of internal auditing

Petty Cash and Change Funds. Inventories (Equipment and Supplies)

OCCUPATIONAL FRAUD IN GOVERNMENT AND STEPS TO PREVENT AND DETECT IT

LOYOLA MARYMOUNT UNIVERSITY POLICIES AND PROCEDURES

Fraud in the Insurance Industry How it Can Impact Your Agency

STUDY UNIT TEN INTERNAL AUDIT RESPONSIBILITIES FOR FRAUD

Fraud Awareness February 27, 2015

Information and and training provid v ed by Smith Elliott Elliott Kearns & Compan

EMPLOYEE FRAUD OPPORTUNITIES CHECKLIST

Presented by Ed Williamson and Erica Bailey

Contract and Procurement Fraud. Fraud in Procurement without Competition

Fraud Prevention: How to Identify and Protect Your Higher Ed Institution

38 Years of Excellent Client Service New COSO Model and How Internal Controls Help to Reduce Opportunity for Fraud

OTHER PEOPLE S MONEY: THE BASICS OF ASSET MISAPPROPRIATION

This Questionnaire/Guide is intended to assist you in decision making, as well as in day-to-day operations. Best Regards,

Embezzlement & Fraud How You Can Protect Yourself. Pam Newman, CMA,CFM, MBA

How to Keep Your Bookkeeper from Robbing Your Business Blind. Jen Deal CPA (252)

Fraud Prevention and Detection Michael Schulstad, CPA/CFF/CGMA/FBI (ret)

INTERNAL CONTROL HANDBOOK

Review and Implementation. Of Practice Internal Controls

GBAS Business Administrator Institute: Presenter: Brian Mikell, Chief Audit Executive Office of Audit and Compliance Review

FRAUD IN GOVERNMENT AN OPEN DISCUSSION. Presented By William Blend, CPA, CFE

What Happens When Internal Controls Fail

INTERNAL CONTROLS REVIEW PROGRESS REPORT Yellow highlighted items have been completed/validated since last report in August 2016

AICC 2017 ANNUALMEETING PRESENTED BY MITCHELL E. KLINGHER CPA PROTECTING YOUR COMPANY FROM EMPLOYEE THEFT

Office of Financial Services June 30, 2017

INTERNAL CONTROLS REVIEW PROGRESS REPORT Highlighted items have been completed since last report in January 2016

Fraud Prevention, Detection and Control. Elizabeth Coles, CPA Aldrich CPAs + Advisors LLP

Internal Control: The Human Risk Factor

Internal Control: The Human Risk Factor

Fraud Detection and Prevention

716 West Ave Austin, TX USA

The Episcopal Diocese of Kentucky

Changing Your Paradigm on Risks and Controls

Module 1: Safeguarding District Resources: Roles & Responsibilities

CORP Appendix A CORPORATE POLICY. Attachments: Related Documents/Legislation: Revenue Administrative Policy

Division of Student Affairs Internal Control Questionnaire FY 2011

Internal Control Evaluation

Segregation, Frustration, and Transformation of Duties

With Jodi Kippe, CPA & Partner Retail Dealer Practice at Crowe Horwath LLP. Moderated by Mike Bowers, Executive Editor at DealersEdge

Laurie Beets. PDG 27 th National College & University Bursars & SFS Conference

Fraud Awareness and Prevention

Whether you take in a lot of money. or you collect pennies

Internal Control: The Human Risk Factor

With Jodi Kippe, CPA & Partner Retail Dealer Practice at Crowe Horwath LLP. Moderated by Mike Bowers, Executive Editor at DealersEdge

Effective Internal Control Strategies

Finance Committee, Board of Health Elizabeth Bowden, Interim Director of Administrative Services FINANCIAL CONTROLS CHECKLIST

FRAUD AWARENESS UPDATE

Community College Audit and Compliance Workshop. VAVRINEK, TRINE, DAY & CO., LLP April 15, 2014

BFSv9 Internal Controls Guidance

10/6/2018. Frank Gorrell, MSA, CPA, CGMA. Payroll fraud happens! No organization is immune! We ll checks the stats We ll review controls

Seattle Public Schools Office of Internal Audit

Alyssa G. Martin, CPA Brandon Tanous, CIA, Using the COSO CFE, CGAP, CRMA Framework to Develop a Strong and Preventive Control Environment

Cash Reconciliations and Cash Handling

INTERNAL CONTROLS REVIEW PROGRESS REPORT Yellow highlighted items have been updated since last report in October 2017

MSD Internal Control Policy 01/16/08. Metropolitan Sewerage District of Buncombe County Internal Control Policy

Contract and Procurement Fraud

INTERNAL CONTROLS REVIEW PROGRESS REPORT Yellow highlighted items have been updated since last report in October 2016

Fraud Risk Management

INTERNAL CONTROLS REVIEW PROGRESS REPORT

Agenda. P-Card Misuse and Fraud 9/18/2017

SAN FRANCISCO COURT APPOINTED SPECIAL ADVOCATE PROGRAM

Annual Audit and Other Financial Matters

APPENDIX 2 COMMUNITY DEVELOPMENT COMMISSION FINANCIAL CHECKLIST REQUIRED FOR ALL APPLICANTS (A SITE VISIT MAY BE CONDUCTED LATER)

Marine Bureau Cash Handling Operations Audit

Internal Controls Checklist

Accounting Systems and Recordkeeping for A/E Firms ACEC/MD Small Business Enterprise Committee October 13, 2017

Week 3: Fraud, Procure to Pay Process Controls

Chapter 7 Internal Controls

A Practical Guide To Internal Controls

Financial Transactions and Fraud Schemes

SURPRISE CASH COUNTS O N T H E R O A D A R E A T R A I N I N G B U R N E T, T E X A S. P r e p a r e d B y : T i a n a L a f a e l e 0 1 / 2 5 / 1 8

WALLA WALLA PUBLIC SCHOOLS ASB and ACCOUNTING GUIDELINES

Diocese of Covington Policies & Procedures Manual Section: Compliance Accounting Policy: Internal Control & Segregation of Duties

EGYPTIAN AREA AGENCY ON AGING Fiscal Monitoring Program

Transcription:

Fraud Prevention, Detection, and Internal Controls Budget, Accounting and Reporting Council May 28, 2015 Sherrie Ard, CPA, CFE Financial Management Specialist Local Government Performance Center

Local Government Performance Center Offers training and resources to: Help local governments evaluate programs and services Performance measurement Improve the value of services to citizens Lean academy Communicate with citizens Financial management and Technical Assistance No cost to local governments 2

FRAUD 3

Objectives Fraud overview and statistics Why internal controls are important Common cash receipting and payment schemes Case studies Purchase cards next big thing What to do if fraud happens to you 4

Fraud Statistics and overview 5

2014 ACFE report to the nations 6

How occupational fraud is committed Association of Certified Fraud Examiners research into occupational fraud has revealed consistent and clear patterns about the form fraud schemes take and the relative cost of each scheme type. 7

Occupational fraud categories Asset Misappropriation Corruption Financial Statement Fraud 85.4% 36.8% 9% 8

Occupational fraud and abuse Typical organization loses 5% of revenues each year to fraud Global loss to fraud $3.7 trillion 9

Victim organizations 17.8% - Banking and financial services 10.3% - Government and public administration 8.5% - Manufacturing Median loss in study was $145,000 (22% lost at least $1 mil) Median duration until detection was 18 months 10

2014 State Auditor s Reports 2014 misappropriation by category $244,445 $222,116 Total $279,938 $797,302 $50,803 payroll Other Payments Cash receipting 11

Method of detection Category Percentage Tip 42.2% Management review 16.0% Internal audit 14.1% By accident 6.8% Reconciliation process 6.6% Examine documents 4.2% External audit 3.0% Surveillance 2.6% Notified by law enforcement 2.2% IT controls 1.1% Confession 0.8% Other 0.5% 12

Occupational fraud and abuse The higher the perpetrator s level of authority, the greater the loss The presence of anti-fraud controls is associated with: Reduced fraud losses Shorter duration 13

Association of Certified Fraud Examiners Fraud Triangle RATIONALIZATION 14

Internal Controls 15

What is internal control? Internal controls are the practical techniques employed by management to accomplish its objectives and meet its responsibilities. Internal controls are essentially an inextricable part of how management conducts its business. Management (not the internal or external auditors) is primarily responsible for the effectiveness of internal controls. It is a basic principle of good management that authority and responsibility should not be separated. ~GFOA 16

COSO Framework Committee of Sponsoring Organizations of the Treadway Commission (COSO) Framework Control environment Risk assessment Control activities Information and communication Monitoring 17

Framework of internal controls should: 1. Create & maintain an environment conducive to control 2. Ensure that risks from inside and outside the entity are assessed and managed on an ongoing basis 3. Result in the design and implementation of appropriate policies and procedures 4. Provide for the appropriate communication of information both inside and outside the entity 5. Monitor the effectiveness of control-related policies and procedures as well as the resolution of potential problems identified by controls 18

Designing internal controls Management is in a position to establish and maintain internal controls and is held primarily accountable for their proper functioning. When designing/establishing internal controls break the system into locations and segments. Evaluate: Will I be able to identify a loss? Will I identify the entire loss? Will I be able to identify who is responsible? 19

Why are internal controls important? Effective internal controls Protect employees Safeguard public resources Assist in fraud prevention 20

Common Cash Receipting Schemes 21

Common Cash Receipting Schemes: Theft of cash before it is recorded Theft of cash after recorded in the records Skimming Larceny 22

Theft of cash before it is recorded Unrecorded cash receipts Theft of incoming checks Check for cash substitution Lapping Funds disappear from safe

Theft of cash after it is recorded Use of co-worker s access False voids or refunds Adjustments or discounts Missing deposit

Study Cash receipting January 1, 2005 January 4, 2011 25

Case study How was it detected? A County employee was comparing Probation Services transmittal information to the amount recorded by the Treasurer s Office and determined deposits were late. 26

Case study What did we find? Misappropriation totaled at least $62,150 Amount Category (Misappropriation and Questionable) $51,816 Fees not deposited (M) $10,334 Checks substituted for cash removed from the deposit (M) $30,772 Unsupported voids and cash shortages (Q) $734,894 Adjustments to customer accounts (Q) 27

Case study How was the fraud concealed? One employee was responsible for both collecting and reconciling daily cash receipts as well as making bank deposits Bank deposits were not made within 24 hours as required by state law (RCW 43.09.240) Destruction of records 28

Case study Lessons Learned: Trusted employee, with complete access to key systems, including cash-receipting, bank deposits and account adjustments. No one independently monitored cash/check composition or adjustments. No one reconciled the system transactions, manual receipts or collection agency payments with the bank deposits. 29

Case study What happened to the employee? Found guilty by a jury verdict of nine counts of seconddegree theft and one count of misappropriation of accounts by a public officer. 30

Case study Were there any red flags? Trusted employee with complete access and very little monitoring Modes did not agree Lack of supporting records High volume of voids/adjustments Deposits not made timely 31

Cash handling controls Documented policies and procedures should be communicated directly from management. Segregation of duties - one individual should not have control over the entire accounting transaction (authorization, recording and custody) Mail should be opened by someone independent of cashier, accounts receivable bookkeeper, or other accounting employees who may initiate or post journal entries. 32

Cash handling controls Is the cashier restricted from gaining access to the accounts receivable records and bank and customer statements? Is the person who makes postings to the general ledger independent of the cash receipts and accounts receivable functions? Does a person independent of the cashier or accounts receivable functions handle customer complaints? Are areas where physical handling of cash takes place reasonably safeguarded? 33

Cash handling controls Review receipt sequence. Are receipts used in sequential order? Are all the receipt numbers accounted for? Are cash receipts deposited intact daily? Safeguard and limit access to receipts awaiting deposit. How long has it been since the safe combination was changed? Review bank reconciliations. Are they timely? Do reconciling items make sense? 34

Cash handling controls Compare bank deposits to receipt records and verify the modes of payment agree. Does the total deposit make sense? Look for deposits not made daily or intact. Create and review error reports. (voids and adjustments) Are they authorized, supported and legitimate? Perform surprise cash counts Are employees who handle receipts bonded? 35

Cash Handling controls Spot check customer accounts, such as utilities. Are payments posted timely to the correct account in the correct amount? Customer billings should detail the prior balance, payments made, adjustments to the account and the current amount due. Review employee account activity. Review security deposit refunds. 36

Cash receipting misappropriations A School District employee misappropriated at least $20,463 by not depositing cash payments that were paid for District services. He also did not pay for services that he received. A City office technician, working as a cashier at a Community Center misappropriated at least $14,491 by canceling valid transactions and removing the cash. 37

Common Payment Schemes 38

Personal Purchases Items for personal use delivered to the entity or employee s residence 39

Purchase and Return Step 1: Purchase items. Step 2: Fraudster returns items and keeps the cash, check or gift card 40

Fictitious Vendor Employee sets up a business or uses an existing, legitimate business as a front 41

Direct Pay Make a check payable to themselves or transfer funds into their account 42

Employee Reimbursements Reimbursement for personal purchases, inflated mileage, travel that didn t happen or duplicate payments 43

Accounts payable system Manual warrants Electronic transfers Advanced travel Revolving or imprest accounts Petty cash Open vendor accounts Credit or purchase cards

The next big thing? What is our prediction for largest scheme type in 2015? Procurement and credit cards Preview of lessons learned 45

How to avoid credit/purchase card fraud? Develop a written policy Allowable uses Prohibited uses No personal use Responsibilities What happens if policy is not followed Have everyone with card responsibilities sign off on policy 46

How to avoid credit/purchase card fraud? Records Require original, itemized receipts Think about who will be responsible for retaining them Where are they stored? Banking controls Consider setting a monthly limit Consider limiting allowable vendors Ask if supervisors/ap can have read-only access into credit card account 47

How to avoid credit/purchase card fraud? Review Who is responsible for what? Employee Supervisor knowledgeable of activities Accounts payable Documentation of review Step back analysis Who actually needs a card? Is the volume of transactions necessary and reasonable? Does the credit card holder ask for personal reimbursements? 48

Study Payments June 2008 August 2010 49

Case study How was it detected? Management noticed unusual transactions on the Department s Corporate Travel Account while the former employee was on vacation. It determined the charges were personal charges. 50

Case study What did we find? Misappropriation totaled at least $252,059 Amount Category $204,340 Procurement card purchases $ 39,350 Travel card purchases $ 1,612 Personal or already reimbursed charges $ 6,757 Unearned leave 51

Case study How was the fraud concealed? The employee s job responsibilities were not segregated. One person was responsible for approving, processing, monitoring and reconciling transactions which included procurement card and corporate travel charges. The online procurement card system allowed any authorized user to perform both the cardholder and reconciler certification that charges were appropriate. As a result, the Administrative Manager routinely performed both certifications. The former employee circumvented controls by using falsified documents to request an increase in his procurement card limit. 52

Case study Lessons Learned: Management did not sufficiently oversee and review the employee s procurement card activities. Actual travel charges were not reviewed for the employee whose job responsibilities rarely required travel on official business. The employee circumvented controls by falsifying records and requesting reimbursement for personal travel and previously reimbursed expenses to another individual. Management did not require employee to submit leave slips when taking time off and ensure that the leave was recorded on the timesheets, reconciled to leave slips and deducted from leave balance. 53

Case study What happened to the employee? Charged with seven counts of first-degree theft and 12 counts of second-degree theft. 54

Case study Were there any red flags? Trusted employee with complete access and very little monitoring Lack of supporting records Credit card had high transaction limit Employee had access to the travel account but did not travel as part of job duties At the time of hire, the employee was facing felony theft charges for another incident and had a criminal conviction for theft in another state 55

Payment misappropriations An city recreation program coordinator who was in a supervisory role, created a fictitious company on PayPal and used purchase cards assigned to other employees to make at least $117,410 in purchases from the vendor. A university financial accountant recorded fake vendor expenses in order to wire payments to her personal account as well as accounts of her sister and a friend, which led to a loss totaling $56,000. 56

Payments internal controls Establish policies and procedures and ensure they are enforced (practice = policy) Scanned documents Only pay original invoices Ensure payments made outside normal process are approved, supported and for a public purpose

Purchase card internal controls Review credit card bills and support documentation to ensure the purchases are approved, supported and for a public purpose Take a step back and look at your credit card use. Is it appropriate and necessary? Establish written agreements with banks, to include processing procedures, and security requirements

Purchase card internal controls Adopt written policies and procedures for internal staff Employee responsibility communicated and signed Ongoing training Periodic audits of card activity and documentation of purchases by vendor Timely reconciliation by cardholders and supervisors Segregation of duties for payment approvals accounting and reconciliations

General fraud prevention Establish strong policies and ensure staff are trained Let them know you are looking Segregation of duties Cross train duties Mandatory vacations 60

Fraud happens What to do if it happens to you: Immediately notify State Auditor s Office Don t wait do it 61

State agencies and local governments shall immediately report to the state auditor s office known or suspected loss of public funds or assets or other illegal activity. 62

Fraud happens What to do if it happens to you: Fill out a report on the Web at www.sao.wa.gov Investigations Fraud Program Report a Suspected Fraud (RCW 43.09.185). It only takes a few minutes! 63

64

Do s and Don ts 65

Fraud happens What to do if it happens to you: Do consider filing a police report (consult the State Auditor s Office about timing). Don t enter into a restitution agreement with an employee (State Auditor and Attorney General written approval is required, RCW 43.09.260). 66

Fraud happens What to do if it happens to you: Do protect accounting records from loss or destruction. Don t try to be the investigator. But do start a record and or timeline: how it came to your attention, records of conversations, etc. 67

Fraud happens What to do if it happens to you: Do remove access to financial system, bank account and credit cards. Don t physically prevent an employee from leaving the room or leaving the building. 68

Fraud happens What to do if it happens to you: Do ensure personnel action is taken for violating policies and procedures, NOT for misappropriating public funds. Don t agree to let the employee repay money to make it go away. 69

Summary Remember the fraud triangle Effective controls can limit the opportunity When designing internal controls, break down the system into segments and analyze: If you could identify a loss If you could identify who is responsible. RATIONALIZATION 70

Summary Beware of the trusted employee trap Who has the most access to funds? Sometimes good people do bad things. Remember your auditor doesn t review every transaction. Don t rely on auditors to find the fraud. That is your job! 71

Contacts Sarah Walker, CFE Fraud Manager (509) 454-3621 Sarah.Walker@sao.wa.gov Sherrie Ard, CPA, CFE Local Government Performance Center (360) 260-6408 Sherrie.Ard@sao.wa.gov 72

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback