INTERNAL CONTROLS ON OUR CAMPUS. Kara Kearney-Saylor Director of Internal Audit, UB

Similar documents
Financial Resources: Control of finances The institution exercises appropriate control over all its financial resources.

Internal Control 2015 Training

AUDITING. Auditing PAGE 1

EY Center for Board Matters. Leading practices for audit committees

Fraud Prevention: How to Identify and Protect Your Higher Ed Institution

Strengthening Control and integrity: A Checklist for government Managers

KING III COMPLIANCE ANALYSIS

Guide to Internal Controls

Fraud Prevention and Detection Michael Schulstad, CPA/CFF/CGMA/FBI (ret)

CITIBANK N.A JORDAN. Governance and Management of Information and Related Technologies Guide

Internal Control in Higher Education

Presented by Ed Williamson and Erica Bailey

Diving into the 2013 COSO Framework. Presented by: Ronald A. Conrad

Financial Internal Controls Initiative. Martha Kerner Assistant Vice Chancellor for Business Services

38 Years of Excellent Client Service New COSO Model and How Internal Controls Help to Reduce Opportunity for Fraud

Texas Workforce Commission

An Overview of the 2013 COSO Framework. August 2013

Fraud Risk Management

Audit Committee Charter

Prince William County Public Schools Annual Audit Plan

TO MEMBERS OF THE COMMITTEE ON COMPLIANCE AND AUDIT: DISCUSSION ITEM

1. Definition & Mission

Corporate Governance. Information Request List Family- or Founder-Owned Unlisted Companies. Commitment to Corporate Governance

In Control: Getting Familiar with the New COSO Guidelines. CSMFO Monterey, California February 18, 2015

Corporate Governance Principles 2015

CHARTER OF THE AUDIT COMMITTEE NATIONWIDE MUTUAL INSURANCE COMPANY NATIONWIDE MUTUAL FIRE INSURANCE COMPANY NATIONWIDE CORPORATION

The COSO Risk Framework: A reference for internal control? Transition from COSO I to COSO II

AUDIT COMMITTEE OF THE BOARD OF DIRECTORS

Effective implementation of COSO s new anti-fraud guidance

Internal Control Awareness: Tips for Improving Business Practices

Integrating Corporate Compliance Programs into Enterprise Risk Management Programs

EFFICIENT USE OF AUDIT COMMITTEES

Internal Control at OSU COSO & Enterprise Risk Management. Oregon State University Board of Trustees Executive & Audit Committee Educational Session

FEDERAL HOME LOAN BANK OF INDIANAPOLIS CHARTER FOR THE AUDIT COMMITTEE

City Auditor s Office 2017/18 Annual Audit Plan

Policy and Procedures Date: November 5, 2017

Sample Corporate Risk Management Policy

Strengthening Your Enterprise Risk Management Process

Catching Fraud During a Recession Through Superior Internal Controls. FICPA s 25 th Annual Accounting Show. J. Stephen Nouss September 29, 2010

Sarbanes-Oxley Act of 2002 Can private businesses benefit from it?

Advisory Services. Global process ownership: implications for organizations. Global process ownership as a concept. by Lisa Janke and Neel Garg

identifying areas for improvement with respect to the Institute s research administration internal control structure.

Using a Compliance Program Assessment for Strategic Impact

Internal Control Questionnaire and Assessment

The University of Texas at San Antonio. Internal Audit Annual Report For Fiscal Year As required by the Texas Internal Auditing Act

Terms of Reference of the Audit Committee

CHARTER FEDERAL RESERVE BANK OF RICHMOND BOARD OF DIRECTORS AUDIT AND RISK COMMITTEE

Regents of the University of Michigan Committee Charters Last updated June 17, 2010

AUDIT COMMITTEE CHARTER AS AMENDED AS OF MAY 6, 2015

F5 NETWORKS, INC. AUDIT COMMITTEE CHARTER AS AMENDED AND RESTATED BY THE BOARD OF DIRECTORS OF F5 NETWORKS, INC. APRIL 21, 2017

Informal Consultation on Oversight Matters. September 2017

Risk Management Developing an Effective Audit Plan

To: Identify your chief goals and objectives Identify risks Prioritize the risks to achieving objectives Determine which controls/processes to review

Internal Control Questionnaire and Assessment

International Finance Corporation

BIOSCRIP, INC. CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS

Compliance Risk Management

METROPOLITAN TRANSPORTATION AUTHORITY

Internal audit strategic planning Making internal audit s vision a reality during a period of rapid transformation

UC MERCED INTERNAL AUDIT ANNUAL REPORT. Fiscal Year in Review

University Risk Management Topics Assigned to Committee

AGA Gulf Region PDT COSO and the Green Book: An Enhanced Internal Control Framework

TERMS OF REFERENCE OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS

Application of the King IV Report on Corporate Governance for South Africa 2016 (King IV)

CHICAGO HOUSING AUTHORITY The Office of the Inspector General

Checklist for Higher Education

Continuous Auditing. What This Guide Covers. What This Guide Covers. What This Guide Covers. Environment Check. A Brief History

W. R. GRACE & CO. CORPORATE GOVERNANCE PRINCIPLES

IT Audit at Brown. A collaboration between the Information Technology and Internal Audit Teams

The Institute of Directors of South Africa ( IoDSA ) is the convener of the King Committee and the custodian of the King reports and practice notes.

INTERNAL CONTROLS AUDITOR JOHN BYRD, SENIOR AUDITOR TONYA CARRIGAN, SENIOR AUDITOR

GOODWILL INDUSTRIES OF COLORADO SPRINGS

Non-SEC Regulated Charter. Organization. Statement of Policy. Responsibilities

Office of Internal Auditing

Revised IT Governance Charter Toolkit

AUDIT COMMITTEE NOVEMBER 2017

COSO Framework Update Webcast. May 23, 2013

TRANS HEX GROUP LIMITED REGISTER OF APPLICATION OF THE KING IV PRINCIPLES

AMENDED AND RESTATED ON SEMICONDUCTOR CORPORATION CORPORATE GOVERNANCE PRINCIPLES

NORFOLK SOUTHERN CORPORATION. Committee s Role and Purpose

ACADEMIC DIVISION ENTERPRISE RISK MANAGEMENT (ERM) GARY NIMAX ASSISTANT VICE PRESIDENT FOR COMPLIANCE AND ENTERPRISE RISK MANAGEMENT

The Current State of Risk Management Maturity for Belgian Organizations kpmg.com/be

TAB G Compliance and Ethics Program

Successful ERM Program Standards. Definitions of Enterprise Risk Management (ERM)

Finance Division Strategic Plan

Dr. Carol Cartwright April 28, Oregon Institute of Technology

The most commonly applied model for designing and auditing internal

Internal Audit Charter

Enterprise Risk Management One University s Approach. Assessing and Managing Risks at Texas A&M University

From Dictionary.com. Risk: Exposure to the chance of injury or loss; a hazard or dangerous chance

Charter for Enterprise Risk Management

B U S I N E S S R I S K M A N A G E M E N T L T D

What s happening at COSO & The importance of Tone at the Top

INTERNAL AUDIT Fraud Investigation Process Campus Administrative Training Series April 24, 2017

AUXILIARY ORGANIZATIONS

3.6.2 Internal Audit Charter Adopted by the Board: November 12, 2013

Accomplishments Audit Operations

Tab No. F-2 TERMS OF REFERENCE FOR THE AUDIT COMMITTEE

ARMSTRONG WORLD INDUSTRIES, INC. AUDIT COMMITTEE CHARTER

Board of Trustees Committee Charters

Transcription:

INTERNAL CONTROLS ON OUR CAMPUS Kara Kearney-Saylor Director of Internal Audit, UB 1

Select headlines over the past 12 months.. Dennis Black under investigation for UB spending Former UB VP Dennis Black Pleads Guilty To Stealing $320,000 UB attempts to tighten financial controls State Inspector General's Office says probe into UB embezzlement continues 2

What Happened? Agency Accounts FSA Board VP of University Life and Services 3

Control Breakdowns Inadequate Segregation of Duties Decentralized Billing and Accounts Receivables Lack of Organizational Governance for FSA Board Composition Fiduciary Responsibility Insufficient documentation and/or authorization No professional skepticism External Auditors 4

Why? - Fraud Triangle 5

STRATEGIC INTERNAL CONTROLS What is the University doing? 6

COSO Framework: A strong internal control process can prevent fraud! 7

Strategic Resource Allocation and Management University Mission How mission is carried out Strategic Plan Align resources to fulfill plan Operating Budget Capital Budget Debt Policy Put resources into action Accounting Standards Business Practices Internal Controls Monitor results against plan Performance Measures Audits Monitoring & Reporting 8

9 VPFA Strategic Priorities Organize, align, and finance VPFA functions and services in a manner that ensures both flexibility and sustainability for the future. Realign and reinvigorate Internal Audit Function Moved reporting for Accounts Payable and Travel from Procurement to Financial Management. Reinvigorated Policy Library business processes and performance metrics to be more inclusive of campus stakeholders and to ensure more timely policy creation. Support the goals of Realizing UB2020 and implement models of operational excellence. Conduct an enterprise risk assessment for the university and implement coordination structure for compliance activities. Created and hired Director of Business Compliance and Internal Controls ERM implementation underway Implement UB anonymous hotline and attendant university educational tour. Completed 9

10 VPFA Strategic Priorities Implement an Integrated Resource Planning model across the university and its affiliates. Enhance risk management activities with affiliated entities. Began annual budget meetings with auxiliary enterprises in 2014. Implement strategic business systems and process improvements that enhance efficiency, effectiveness, and customer service. Partner with the Chief Information Officer in major areas of focus: Implement Strategic Procurement system (web-based procurement) Fall 2017 Implement etravel Fall 2017 Further enhance SIRI to meet university data and reporting needs (ongoing) Implement new Budget / Planning enterprise system (underway RFP stage) Improve facilities management system (underway in concert with Six Sigma review results) 10

Monitoring Activities Internal Audit Process Our Internal Audit function strives to deliver on-going assessment of financial, regulatory, and operational risks and control effectiveness to key stakeholders at UB. As part of their mission, Internal Audit provides the role of meaningful business partner and trusted advisor that promotes a culture of governance, accountability and compliance while dedicated to the achievement of UB s mission and goals. Internal Audit continues to focus on these critical success factors: Execute an efficient and effective audit process Cultivate a strong audit team capable of adequately responding to risk Emphasize Internal Audits resources on UB s highest risks Provide impactful reporting to UB Stakeholders Ensure conformance with the Institute of Internal Audit s International Standards 11

Risk Assessment Enterprise Risk Management (ERM) As defined by COSO, ERM is a system, applied in strategy setting and across the enterprise, designed to identify potential events that may affect the entity, and manage risk to be within its risk appetite, to provide reasonable assurance regarding the achievement of entity objectives. 12

The President The President oversees the ERM process and assesses whether, from a governance perspective, the process is developing an appropriate framework for identifying and managing key risks facing the University. On a rotating basis, risk owners may brief the President regarding management plans for critical risks. ERM Executive Sponsors These are the owners of the ERM process. They will review high level risks facing UB periodically and determine the appropriate level of risk appetite/tolerance. University Provost CIO VP, Finance and Administration ERM Steering Committee The ERM Steering Committee is charged with conducting an initial assessment of the full range of risks facing UB. Meeting on a quarterly basis, the committee is then responsible for oversight of the process, including: identifying the key risk areas, assessment of team results, risk management plans, and progress of risk management. From the work completed by the teams, the committee will also develop a University wide heat map. Provost Office Controller Human Resources Research Administration VP, Research President s Office Athletics Communications University Facilities VP, Student Life VP, Communications Resource Planning Admissions / Enrollment Internal Audit (IA) IA will serve as facilitators for the process, including leading the process, educating participants in risk management and mitigation, conducting meetings, and maintaining records. Academic Representatives Emergency Planning General Counsel Alumni Relations Student Life 13

WHAT SHOULD YOU BEING DOING? 14

Commit to a strong Control Environment Clearly and consistently communicate a commitment to ethical values Independent, capable Board of Directors Establish clear lines of responsibility and authority over financial activities Attract, develop, and retains financially competent employees Hold individuals accountable for controls surrounding financial activities such as segregation of duties, appropriate authorization and documentation, and reconciliations. 15

16

Policy Statements Control Activities Adhere to UB Policies April 2016 - Fraud and Irregularities Awareness and Reporting Policy - Fraud and Irregularities January 2017 - Safeguarding Cash and Cash Equivalents Policy - Safeguarding Cash April 2017 - External Audit Activity Policy - External Audit Activity May 2017 - Internal Controls Policy - Internal Controls September 2017 - Allowable Use of Funds (30 day review) - Allowable Use of Funds November 2017 - Ethics Policy (with the Policy Review group) 17

Information and Communication Ethics Hotline UB launched a secure, confidential reporting hotline called EthicsPoint EthicsPoint is a comprehensive and confidential tool that provides anonymous reporting to assist management and employees in working together to address fraud, abuse and other misconduct in the workplace. 18

External Audit Document Reconciliation Information and Communication Initial Detection of Fraud Other Account Reconciliation By Accident Management Review Internal Audit Tip Internal Audit and Reporting Hotline will help identify and limit exposure from Fraud 0% 5% 10% 15% 20% 25% 30% 35% 40% 45% 2014 2016 Internationally gathered data provided by private industry, NGOs, and government data. The survey and its results are reported in the 2016 Global Fraud Survey by the Association of Certified Fraud Examiners. 19

A FINAL BIT OF CONTEXT 20

Fraud Occurs in Governments Too February 17, 2017 Investment advisory services are offered through CliftonLarsonAllen Wealth Advisors, LLC, an SEC-registered investment advisor. 2017 CliftonLarsonAllen LLP WEALTH ADVISORY OUTSOURCING AUDIT, TAX, AND CONSULTING

Type of Victim Organization Frequency and Median Loss 2017 CliftonLarsonAllen LLP WEALTH ADVISORY OUTSOURCING AUDIT, TAX, AND CONSULTING 22

23

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback