COSO s ICIF Update. Discussion with PCAOB s Standing Advisory Group. March 24, 2011

Similar documents
COSO Internal Control Integrated Framework update. INTOSAI Subcommittee on Internal Control Standards

An Update of COSO s Internal Control Integrated Framework. December 2011

STANDING ADVISORY GROUP MEETING

Internal Control Integrated Framework. An IAASB Overview September 2016

COSO 2013: Updated internal control framework

Internal Control Integrated Framework. May 2013

Enterprise Risk Management Aligning Risk with Strategy and Performance COSO ERM Framework Update

A Discussion About Internal Controls February 2016

From Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance

AUDITING. Auditing PAGE 1

[RELEASE NOS ; ; FR-77; File No. S ]

BUSINESS CPA EXAM REVIEW V 3.0. For Exams Scheduled After March 31, 2017

An Overview of the 2013 COSO Framework. August 2013

The Updated COSO Internal Control Framework

Diving into the 2013 COSO Framework. Presented by: Ronald A. Conrad

LEVERAGING COSO ACROSS THE THREE LINES OF DEFENSE

2013 COSO Internal Control Framework Update. September 5, 2013

EFFICIENT USE OF AUDIT COMMITTEES

summary summary summary summary

The 2013 COSO Framework & SOX Compliance

Enterprise Risk Management. Applying enterprise risk management to environmental, social and governance-related risks.

COSO What s New, What s Changed, Why Does it Matter and Other Frequently Asked Questions

REPORT 2016/033 INTERNAL AUDIT DIVISION

Conducting an Audit Committee Self-Evaluation: Guidelines and Questions

In Control: Getting Familiar with the New COSO Guidelines. CSMFO Monterey, California February 18, 2015

FREQUENTLY ASKED QUESTIONS ABOUT INTERNAL CONTROL OVER FINANCIAL REPORTING

Heads Up. Control Integrated Framework. COSO Enhances Its Internal. In This Issue: Enhancements in the 2013 Framework

Enterprise Risk Management: Aligning Risk with Strategy & Performance June 26, :45 p.m. 4:45 p.m.

Introductions. An Overview of the COSO 2013 Framework. Christian Peo Sharon Todd. An Overview of the 2013 COSO Framework.

Speech by SEC Staff: Remarks before the 2007 AICPA National Conference on Current SEC and PCAOB Developments

EY Center for Board Matters. Leading practices for audit committees

Protecting Fixed Assets: Internal Controls for Non Profits

IAASB Main Agenda (March 2016) Agenda Item. Initial Discussion on the IAASB s Future Project Related to ISA 315 (Revised) 1

Effective implementation of COSO s new anti-fraud guidance

COSO Framework Update Webcast. May 23, 2013

IAASB CAG Public Session (March 2016) Agenda Item. Initial Discussion on the IAASB s Future Project Related to ISA 315 (Revised) 1

An Audit of Internal Control Over Financial Reporting Performed in Conjunction with An Audit of Financial Statements

Catching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010

COSO Internal Control Integrated Framework Proposed Update

Quality Sign off for Internal Audit Engagement. Name of Audit

2014 Global Council. Dubai, UAE 6-9 March 2014 DAY 2. globaliia.org

Evaluation: annual report

Negotiating in a Sarbanes-Oxley World

Fraud Risk Management

For the first time in the history of corporate financial reporting and. Management Reporting on Internal Control. Use of COSO 1992 in.

B S R & Co. LLP. Reporting on Internal. Reporting An Overview. Sarbanes Oxley Act (SOX) 28 December 2013

Brink's Modern Internal Auditing

NYSARC/CP Compliance Seminar: Risk Assessments. May 2, 2016 Robert Hussar and Melissa Zambri

The New COSO Framework: Avoiding Deficiencies and Driving Change

Audit of Entity Level Controls

Managing Fraud Risk: New Professional Guidance

That Was Then, This Is Now. COSO Updates its 1992 Classic Internal Control-Integrated Framework

Assessment of the Design Effectiveness of Entity Level Controls. Office of the Chief Audit Executive

Ramifications of the New COSO Framework & Recent PCAOB Actions

Corporate Governor. Providing vision and advice for management, boards of directors and audit committees Winter 2015

COSO Internal Control Integrated Framework Public Exposure Feedback Questions, December 2011

Prince William County Public Schools Annual Audit Plan

Group Internal Audit Charter

Sarbanes-Oxley Act of 2002 Can private businesses benefit from it?

Audit Committee Resource Guide

Charter for Enterprise Risk Management

COSO Updates and Expectations. IIA San Diego Chapter January 8, 2014

2014 Integrated Internal Control Plan. FRCC Spring Compliance Workshop April 8-10, 2014

IIA ERM Summit. Jim DeLoach and Steve Jameson August 22, 2010

Management Systems. Linkage. 26 March Text #ICANN49

INTERNAL AUDIT CHARTER SECURE TRUST BANK PLC

SOX FOR NPO S Focus on Control. Stephen L. Kuptz, CPA

Response ed to

IPO Readiness. Sarbanes-Oxley Compliance & Other Considerations. Presented by:

PART 6 - INTERNAL CONTROL

SAS Teleconference

Internal Financial Controls New perspectives as per Companies Act 2013 and CARO 2016

Moving Internal Audit Back into Balance

Internal Controls: COSO, the Uniform Guidance, and More!

June 2016 Issue 05/2016

CORRUPTION ERADICATION STRATEGIES AS PART OF IMPROVING GOVERNANCE IN THE PUBLIC SERVICE

AUDIT COMMITTEE OF THE BOARD OF DIRECTORS

INTEGRATING FORENSIC INVESTIGATION TECHNIQUES INTO INTERNAL AUDITING

Annual Assessment of the External Auditor

Minnesota District Freight Plans - Work Plan

Advisory Services Governance, Risk & Compliance

The Internal Control Framework

White Paper. Effective and Practical Deployment of COSO: Entity Level Control and Lessons Learned. July 10, 2008 THE ROBERTS COMPANY, LLC

IT Audit at Brown. A collaboration between the Information Technology and Internal Audit Teams

Fraud Risk Management

Audit and Advisory Services Integrity, Innovation and Quality

Should boards and CEOs care about COSO ERM 2017? By Tim J. Leech

Internal Controls and Risk Management Report

Corporate Governance Principles of Auditing: An Introduction to International Standards on Auditing - Ch 14

STANDARD-SETTING AGENDA OFFICE OF THE CHIEF AUDITOR JUNE 30, 2016

See your auditor clearly. Transparency report: How we perform quality audit engagements

Audit & Risk Committee Charter

Audit of the Management Control Framework (MCF) Spectrum Telecommunication Program (S/TP) Final Report. Audit and Evaluation Branch.

FINANCIAL INSTITUTIONS AUDIT COMMITTEE GUIDE FOR FINANCIAL INSTITUTIONS

STANDARD-SETTING UPDATE OFFICE OF THE CHIEF AUDITOR SEPTEMBER 30, 2017

ERO Enterprise Compliance Auditor Manual & Handbook Florida Reliability Coordinating Council, Inc. Spring Workshop April 8-10, 2014

Response ed to Re: PCAOB Rulemaking Docket Matter No. 028

Internal Oversight Division. Internal Audit Strategy

WELLS FARGO & COMPANY AUDIT AND EXAMINATION COMMITTEE CHARTER

Transcription:

COSO s ICIF Update Discussion with PCAOB s Standing Advisory Group March 24, 2011 Agenda Overview of COSO ICIF Project Objectives, Governance and Timetable Areas of Update and Overall Document Structure Impact Envisioned on Governance Principles, Fraud Deterrence, and SOX 404, including Transition 1

About COSO Formed in 1985 to sponsor the National Commission on Fraudulent Financial Reporting (i.e. the Treadway Commission) A voluntary private sector organization Sponsors: American Accounting Association (AAA) American Institute of Certified Public Accountants (AICPA) Financial Executives International (FEI) Institute of Management Accountants (IMA) The Institute of Internal Auditors (IIA) 3 Board Members David L. Landsittel Chairman Larry E. Rittenberg Chairman Emeritus Mark S. Beasley AAA Charles E. Landes AICPA Marie N. Hollein FEI Jeffrey C. Thomson IMA Richard F. Chambers IIA 4 2

Mission to provide thought leadership through the development of comprehensive frameworks and guidance on enterprise risk management, internal control and fraud deterrence designed to improve organizational performance and governance and to reduce the extent of fraud in organizations. 5 Timeline 1987: Treadway Commission Report 1996: Internal Control Issues in Derivatives 2004: Enterprise Risk Management Framework 2010: Fraud Study II - Fraudulent Financial Reporting: 1998-2007 2009: Guidance on Monitoring Internal Control Systems 1985 1990 1995 2000 2005 2010 1992: Internal Control Framework 1999: Fraud Study I - Fraudulent Financial Reporting: 1987-1997 2006: Guidance for Smaller Businesses on Internal Control over Financial Reporting 2010: Recent thought papers on current issues 6 3

Agenda Overview of COSO ICIF Project Objectives, Governance and Timetable Areas of Update and Overall Document Structure Impact Envisioned on Governance Principles, Fraud Deterrence, and SOX 404, including transition COSO ICIF Project Objectives The overall goal of the project is to update the ICIF Framework originally published in 1992 Enhancements are not intended to alter the five core components first developed in the original Framework However, there may be changes pertaining to the application of these components that could impact how organizations: Design, implement, and test internal controls Report to regulators (e.g., SOX 404) The updated Framework will be of relevance to auditors as well as management Relevance of the Framework around the globe is intended to be maintained, if not increased 8 4

Project Roles & Responsibilities COSO Board Provide overall ownership of of the the project Nominate the the Advisory Council Members Make final decisions on Oversee PwC and make any pending final decisions on the recommendations issues that emerge Correspond and communicate Oversee advisory with council, the Advisory regulatory Council and other members Oversee stakeholder regulatory dialogue dialogue Review and discuss project developments with PwC PwC Project Team Manage project execution Mobilize Gather input core and from extended project stakeholders team Gather Prepare data draft update for public exposure Draft update Collect and review public Prepare draft update for comments and draft final public exposure documents Collect and review public comments Lead periodic update meetings with COSO Board and Advisory Council Advisory Council Represent Serve as a your sounding organization board on in ICIF providing issues arising input (including during participation input gathering, survey; drafting may and provide exposure link stages to survey on your website) Establish a process for Establish obtaining a and process synthesizing for obtaining input from and respective synthesizing input sponsoring from your organization Review and comment on draft deliverables Solicit input and provide feedback from your organization to the Advisory Council 9 Overview of Project Plan & Timetable Assess and Envision Sept Jan Feb - Aug Sept - Dec Jan - June Develop vision and strategy for update Conduct research and identify preliminary areas for update and rationale Develop project plan Develop, test, and launch survey questions Design & Build Public Exposure Finalize 2010 2011 2012 Analyze and discuss survey results Engage PwC extended team, Advisory Council and other organizations for input Revise existing content and create new Vetting of the revised content by the COSO Board Develop process for collection of public comments Summarize nature of updates to project stakeholders Issue public exposure communications and follow-up Collect and process public comments Confirm significant revisions with COSO Board Finalize document Copy editing and publication 10 5

Agenda Overview of COSO ICIF Project Objectives, Governance and Timetable Areas of Update and Overall Document Structure Impact Envisioned on Governance Principles, Fraud Deterrence, and SOX 404, including transition Overview of Survey Results 653 responses as of Jan 31, 2011; over 700 responses to date Responses come from wide range of organizations and individuals Large, small and non-profit organizations well represented 1 in 4 respondents are international (27%) The majority of respondents have been using the Framework for over 5 years Overall, a large majority of respondents support updating, but not a major overhaul in the Framework 12 6

Areas of Update Envisioned Key Themes from All Sources Advisory Council Discussion Who Said It Survey Responses Offline Comments 1. Reflect implication of increased use of technology and greater complexity of operational environment 2. Incorporate lessons learned from SOX and cost / benefit considerations 3. Capture increased ethics, compliance and anti-fraud expectations 4. Broaden the scope of reporting beyond external financial reporting 5. Enhance the concept of risk oversight and role of risk assessment 6. Expand on governance roles in organizations 7. Demonstrate more clearly the linkages between the Framework components 13 Areas of Update Envisioned (cont.) Key Themes from All Sources Advisory Council Discussion Who Said It Survey Responses Offline Comments 8. Clarify and simplify language 9. Apply a more principles-based approach and provide basis for evaluating deficiencies 10. Maintain definition of internal control 11. Increase practical guidance to supplement the conceptual framework 12. Balance discussion of financial reporting with operations and compliance 13. Discuss performance management and incentives 14. Reduce US-centric perception of the Framework 14 7

Document Structure Two Products Contemplated: (1) A revised overall Framework encompassing (a) Reporting, (b) Operational and (c) Compliance objectives (2) A companion document focusing on application of the Framework to Financial Reporting Objectives (e.g. SOX 404) A focus on 20+ Principles drawn from the five components of the Framework It is generally expected that all principles will, to some extent, be present and functioning for a organization to have effective internal control When a principle is not being met, some form of internal control deficiency exists Attributes representing characteristics associated with the principles 15 Agenda Overview of COSO ICIF Project Objectives, Governance and Timetable Areas of Update and Overall Document Structure Impact Envisioned on Governance Principles, Fraud Deterrence, and SOX 404, including Transition 8

Impact on Governance Will enhance the notion of governance as the concept pervades organizations more broadly than as defined or inferred in the original Framework Will incorporate lessons learned from root causes of failures in corporate governance of recent years Will make more robust the discussion of Tone at the Top 17 Impact on Fraud Deterrence Will expand discussion of safeguarding of assets to include considerations of: - Fraud - Misrepresentation of financial statements - Corruption Will incorporate anti-fraud expectations of internal control by expanding on: - Control environment to capture anti-fraud expectations in establishing the Tone at the Top - Risk assessment to consider potential fraud schemes - Control activities to address the risk of fraud - Information and communication to support anti-fraud program - Monitoring to evaluate and report any deficiencies of the anti-fraud program or occurrences of fraud 18 9

Impact on SOX 404 Attestation and related transition issues Updated Framework intended to remain consistent with SEC suitability criteria Updated Framework will be an evolution from the original Framework An appendix to the ICIF will highlight significant changes in the updated Framework as compared with the original framework A companion document will assist organizations in meeting financial reporting objectives Greater clarity contemplated around the basis for determining significant deficiencies and material weaknesses COSO anticipates that regulators will provide any needed transition guidance to filers 19 10

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback