SlideShare uma empresa Scribd logo

Entity Level Controls And

Transferir como PPTX, PDF
M
mkosinsk

November 8, 2011, presentation to IMA members detailing entity level controls to include the control environment, risk assessment, communication and monitoring aspects of internal controls.

1 de 42
Entity Level Controls and Fraud Michael Kosinski, CPA mkosinski@larsonallen.com 239-280-3517 ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP 1
Objectives • Discuss the nature of entity level controls • Review the operating environment and the proper structure to provide effective controls • Review the risk assessment process and considerations of organizational risks and fraud ©2011 LarsonAllen LLP 2
Is Greed Good? • Aggressive financial reporting What • Tax fraud Message • Personal expenses in the company Are • Unrealistic estimates You • Don’t tell the auditors Sending? ©2011 LarsonAllen LLP 3
People are your assets Staffing Levels Short Staffed Turnover Competence Inadequate Staffing Defined Roles Feedback ©2011 LarsonAllen LLP Compensation Evaluations 4
Internal Controls • ―MF Global Holdings Ltd.’s bankruptcy, the eighth-largest in U.S. history, is exposing a lack of internal controls that may have prevented a last-minute rescue of Jon Corzine’s futures broker.‖ Washington Post Nov 2, 2011 Functional Entity ©2011 LarsonAllen LLP 5
What are entity level controls? Influence the company’s culture Instills the tone of the company Attitudes, awareness, and actions of management ©2011 LarsonAllen LLP 6
Entity Level Controls Control Environment Monitoring Entity Risk Assessment Level Communication ©2011 LarsonAllen LLP 7
Is it enough just to say it? • ―Boards should be absolutely certain that the company is run properly from a fiduciary standpoint in every degree. I am a great believer in the audit committee having full access to the auditors in every way, shape, and form.‖— former Sunbeam Chairman Al Dunlap • ―You’ll see people who in the early days … took their life savings and trusted this company with their money. And I have an awesome responsibility to those people to make sure that they’ve done right.‖—former WorldCom CEO Bernard Ebbers ©2011 LarsonAllen LLP 8
Is it enough just to say it? • ―We are offended by the perception that we would waste the resources of a company that is a major part of our life and livelihood, and that we would be happy with directors who would permit that waste. … So as a CEO, I want a strong, competent board.‖—former Tyco CEO Dennis Kozlowski • ―It’s more than just dollars. You’ve got to give back to the community that supported you.‖—Adelphia founder John Rigas • People have an obligation to dissent in this company.‖— ©2011 LarsonAllen LLP former Enron CEO Jeffrey Skilling 9
Or do you have to live it? • ―It is not simply a case of having a set of procedures and processes, nor is it just about having controls in place. Reliance on a poor control is often worse than having no control at all. [The trustees must have] … a clear understanding of the business and what can go wrong.‖ - Tony Rawlins - (2001) ©2011 LarsonAllen LLP 10
11 The Control Environment ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
Control Environment Sets the tone Foundation for all other controls Provides structure and discipline Most cost effective and efficient control ©2011 LarsonAllen LLP 12
What does it look like? Ownership Integrity Accountability Oversight Philosophy Structure Responsibility Competence ©2011 LarsonAllen LLP 13
Soft Controls Integrity Competence Philosophy ©2011 LarsonAllen LLP 14
Integrity Articulate Inform Demonstrate Approaches Day to day activities New hires Investigate violations Vendor interactions Periodic updates Timelines and consistent Customer interactions Understandable Communicate actions Intolerance of violations Available Monitor compliance ©2011 LarsonAllen LLP 15
Competence Hire Train Sustain Approaches Critical Skills In-house Oversight Knowledge External Evaluate Ability Professional services Analyze roles Interviews Cost Benefit ©2011 LarsonAllen LLP 16
Oversight Establish Evaluate Review Approaches Independence Management Performance Responsibilities Risks Audit Skepticism Effectiveness Advisors Policies ©2011 LarsonAllen LLP 17
Philosophy Mitigate Diligence Processes Approaches Reporting risks Judgment Adjustments Suppliers Attitudes Estimates Customers Accounting principles Employees Authorization ©2011 LarsonAllen LLP 18
Structure Establish Align Maintain Approaches Organizational chart Roles Appropriate reporting Streamlined layers Functions Current job descriptions Reporting lines Processes Communication Clear roles ©2011 LarsonAllen LLP 19
Accountability and Responsibility Assign Articulate Review Approaches Responsibility Links Nature of position Authority Empowerment Key personnel Segregation Limits ©2011 LarsonAllen LLP 20
Small Business Challenges • Management influence • Segregation of duties • Qualified personnel • Limited oversight • Technology ©2011 LarsonAllen LLP 21
22 The Risk Assessment Process ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
Risk Assessment Identify Analyze Respond ©2011 LarsonAllen LLP 23
Risk Analysis Estimate Assess Managing Significance Probability the Risk ©2011 LarsonAllen LLP 24
Risk Assessment Reporting Risk Fraud Objectives Management Consideration • Establish • Risk • Assess Document Identification • Monitor Communicate • Organization and • Apply Principals Relationships • Anticipate and mitigate ©2011 LarsonAllen LLP 25
Reporting Objectives Identify • Significant accounts • Underlying transactions Assertions Capture • Review activities • Appropriately presented Activities Appropriate • Policies vs. industry • Detail vs. industry Policies ©2011 LarsonAllen LLP 26
Risk Analysis Aspects Business Competency Process Reassess IT Infrastructure Probability ©2011 LarsonAllen LLP 27
• Assertions and accounts Identify • Business processes and Support • Maps the internal controls Controls • Identifies controls and risks • Interacts with external parties Information • Suppliers, investors, creditors Internal vs. • Considers factors impacting reporting External ©2011 LarsonAllen LLP 28
Overall Risks - External Risks Customers and Competition Technology Company Regulation and Natural Economy Disasters ©2011 LarsonAllen LLP 29
Overall Risks - Internal Risks Information Personnel Technology Management Access to Nature of Assets Organization ©2011 LarsonAllen LLP 30
Fraud Considerations • Comprehensive brainstorming Assess • Consider override controls • Compensation practices Review • Incentives and pressures • Investigate and reporting Investigate • Remediation of instances • Consider fraud in management Oversight • Consider innternal audit ©2011 LarsonAllen LLP 31
32 Communication ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
Communication Objectives • Communication exists between management and governance to provide relevant information • All personnel receive a clear message about reporting, and internal controls • Communication is effective and absent of fears of retribution ©2011 LarsonAllen LLP 33
Communication to Employees Management IC Critical to all Roles and Relation of Job Unexpected Employees Responsibilities to Others Events ©2011 LarsonAllen LLP 34
Communication to Management Management Customer Operating Needs Issues Continuous Competition Improvement Misstatements ©2011 LarsonAllen LLP 35
External Communication Suppliers Shareholders Vendors Company Prospects Regulators Audit ©2011 LarsonAllen LLP 36
Facilitating Internal Control Communicate Financial Reporting Objectives • Financial reporting, IC, policies and responsibilities • Communicates IC information and code of conduct Develop Alternative Means of Communication • Mentoring and other channels • Whistleblower and anonymous hotlines Board of Directors • Open discussions with management • Communicate expectations for financial information ©2011 LarsonAllen LLP • Meets with external advisors and internal audit 37
38 Monitoring ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
Monitoring – Small Business • Tend to be informal • Based on ongoing activities • Examples – Significant variances from expectations – Inaccuracies in financial information – Operating issues and shortages – Customer and vendor complaints – Communications from third parties ©2011 LarsonAllen LLP 39
Ongoing Monitoring Normal Management Third party communication Supervision Reconciliations to physical assets Communications from auditors Certifications ©2011 LarsonAllen LLP 40
Ongoing Activities Management Third Party Supervision • Variances • Budget • Customer • Segregation of Comparisons payments duties • Benchmarking • Bank balance • Supervisor reconciliations reviews • Key statistics • Vendor • Adjustments statements • Approving • Noncompliance vendors from regulators • Review accuracy ©2011 LarsonAllen LLP 41
Ongoing Monitoring • Reconciliation to physical assets – Subsidiary schedules and bank statements – Fixed asset and inventory counts • Auditor Communication – How many adjustments were made – Deficiency communications • Certifications – Independent verifications – Not typical for small to mid sized businesses ©2011 LarsonAllen LLP 42

Recomendados

Essential Components of Financial Statement
Essential Components of Financial Statement Essential Components of Financial Statement
Essential Components of Financial Statement Invensis
 
Role Of Financial Management
Role Of Financial ManagementRole Of Financial Management
Role Of Financial Managementsanunai
 
Reporting and financial_statements_1
Reporting and financial_statements_1Reporting and financial_statements_1
Reporting and financial_statements_1Gr Capt Shiran Abeysinghe
 
Introduction to Basic Accounting Concept
Introduction to Basic Accounting ConceptIntroduction to Basic Accounting Concept
Introduction to Basic Accounting ConceptKamrul Hasan
 
Principles of accountancy or business accounting
Principles of accountancy or business accountingPrinciples of accountancy or business accounting
Principles of accountancy or business accountingDr V GURUMOORTHI
 
Ratio analysis
Ratio analysisRatio analysis
Ratio analysisJubayer Alam Shoikat
 
INTRODUCTION TO FINANCIAL MANAGEMENT
INTRODUCTION TO FINANCIAL MANAGEMENTINTRODUCTION TO FINANCIAL MANAGEMENT
INTRODUCTION TO FINANCIAL MANAGEMENT123vedapradha
 
Difference between management and Financial accounting.
Difference between management and Financial accounting.Difference between management and Financial accounting.
Difference between management and Financial accounting.VadivelM9
 

Recomendados

Essential Components of Financial Statement
Essential Components of Financial Statement Essential Components of Financial Statement
Essential Components of Financial Statement Invensis
 
Role Of Financial Management
Role Of Financial ManagementRole Of Financial Management
Role Of Financial Managementsanunai
 
Reporting and financial_statements_1
Reporting and financial_statements_1Reporting and financial_statements_1
Reporting and financial_statements_1Gr Capt Shiran Abeysinghe
 
Introduction to Basic Accounting Concept
Introduction to Basic Accounting ConceptIntroduction to Basic Accounting Concept
Introduction to Basic Accounting ConceptKamrul Hasan
 
Principles of accountancy or business accounting
Principles of accountancy or business accountingPrinciples of accountancy or business accounting
Principles of accountancy or business accountingDr V GURUMOORTHI
 
Ratio analysis
Ratio analysisRatio analysis
Ratio analysisJubayer Alam Shoikat
 
INTRODUCTION TO FINANCIAL MANAGEMENT
INTRODUCTION TO FINANCIAL MANAGEMENTINTRODUCTION TO FINANCIAL MANAGEMENT
INTRODUCTION TO FINANCIAL MANAGEMENT123vedapradha
 
Difference between management and Financial accounting.
Difference between management and Financial accounting.Difference between management and Financial accounting.
Difference between management and Financial accounting.VadivelM9
 
Chapter 1: Overview of Financial Management
Chapter 1: Overview of Financial ManagementChapter 1: Overview of Financial Management
Chapter 1: Overview of Financial ManagementMikee Bylss
 
Introduction to financial management
Introduction to financial managementIntroduction to financial management
Introduction to financial managementSrinivas Methuku
 
Financial management
Financial managementFinancial management
Financial managementKarpagam Academy of Higher Education
 
Account
AccountAccount
AccountNiyati Mehta
 
Financial management ppt @ mba
Financial management ppt @ mbaFinancial management ppt @ mba
Financial management ppt @ mbaBabasab Patil
 
GITMAN Chapter 2 Financial Statement Analysis
GITMAN Chapter 2 Financial Statement AnalysisGITMAN Chapter 2 Financial Statement Analysis
GITMAN Chapter 2 Financial Statement AnalysisMikee Bylss
 
Budgeting
BudgetingBudgeting
Budgetingsukesh gowda
 
Financial Planning
Financial PlanningFinancial Planning
Financial PlanningJohn Obote
 
5 Fiscal Management Techniques
5 Fiscal Management Techniques 5 Fiscal Management Techniques
5 Fiscal Management Techniques Karthik Ganeshan
 
International financial reporting standards (ifrs)ppt
International financial reporting standards (ifrs)pptInternational financial reporting standards (ifrs)ppt
International financial reporting standards (ifrs)pptIDBI Capital
 
Financial Reporting And Analysis
Financial Reporting And AnalysisFinancial Reporting And Analysis
Financial Reporting And AnalysisAbdullah Mir
 
Finance for non finance people ppt
Finance for non finance people pptFinance for non finance people ppt
Finance for non finance people pptLepipi
 
1.14 Assets
1.14 Assets1.14 Assets
1.14 AssetsVCE Accounting - Michael Allison
 
Introduction to financial management
Introduction to financial managementIntroduction to financial management
Introduction to financial managementSqjafery Jaf
 
Management Accounting Unit II.ppt
Management Accounting Unit II.pptManagement Accounting Unit II.ppt
Management Accounting Unit II.pptmanikandansMani2
 
Accounting Concepts
Accounting ConceptsAccounting Concepts
Accounting ConceptsNoman Rafiq
 
Working Capital Pdf
Working Capital PdfWorking Capital Pdf
Working Capital Pdfrachitsingh12
 
Introduction to financial accounting
Introduction to financial accountingIntroduction to financial accounting
Introduction to financial accountingNayyar Kazmi
 
Differences between Financial accounting vs Managerial accounting
Differences between Financial accounting vs Managerial accountingDifferences between Financial accounting vs Managerial accounting
Differences between Financial accounting vs Managerial accountingAbdul Motaleb
 
Presentation on Accounting Principles
Presentation on Accounting Principles Presentation on Accounting Principles
Presentation on Accounting Principles Zakir Khan
 
Internal Control COSO
Internal Control COSOInternal Control COSO
Internal Control COSOJesús Gándara
 
Internal controls myths and best practices
Internal controls myths and best practicesInternal controls myths and best practices
Internal controls myths and best practicesPamela Mantone
 

Mais conteúdo relacionado

Mais procurados

Chapter 1: Overview of Financial Management
Chapter 1: Overview of Financial ManagementChapter 1: Overview of Financial Management
Chapter 1: Overview of Financial ManagementMikee Bylss
 
Introduction to financial management
Introduction to financial managementIntroduction to financial management
Introduction to financial managementSrinivas Methuku
 
Financial management ppt @ mba
Financial management ppt @ mbaFinancial management ppt @ mba
Financial management ppt @ mbaBabasab Patil
 
GITMAN Chapter 2 Financial Statement Analysis
GITMAN Chapter 2 Financial Statement AnalysisGITMAN Chapter 2 Financial Statement Analysis
GITMAN Chapter 2 Financial Statement AnalysisMikee Bylss
 
Financial Planning
Financial PlanningFinancial Planning
Financial PlanningJohn Obote
 
5 Fiscal Management Techniques
5 Fiscal Management Techniques 5 Fiscal Management Techniques
5 Fiscal Management Techniques Karthik Ganeshan
 
International financial reporting standards (ifrs)ppt
International financial reporting standards (ifrs)pptInternational financial reporting standards (ifrs)ppt
International financial reporting standards (ifrs)pptIDBI Capital
 
Financial Reporting And Analysis
Financial Reporting And AnalysisFinancial Reporting And Analysis
Financial Reporting And AnalysisAbdullah Mir
 
Finance for non finance people ppt
Finance for non finance people pptFinance for non finance people ppt
Finance for non finance people pptLepipi
 
Introduction to financial management
Introduction to financial managementIntroduction to financial management
Introduction to financial managementSqjafery Jaf
 
Management Accounting Unit II.ppt
Management Accounting Unit II.pptManagement Accounting Unit II.ppt
Management Accounting Unit II.pptmanikandansMani2
 
Accounting Concepts
Accounting ConceptsAccounting Concepts
Accounting ConceptsNoman Rafiq
 
Introduction to financial accounting
Introduction to financial accountingIntroduction to financial accounting
Introduction to financial accountingNayyar Kazmi
 
Differences between Financial accounting vs Managerial accounting
Differences between Financial accounting vs Managerial accountingDifferences between Financial accounting vs Managerial accounting
Differences between Financial accounting vs Managerial accountingAbdul Motaleb
 
Presentation on Accounting Principles
Presentation on Accounting Principles Presentation on Accounting Principles
Presentation on Accounting Principles Zakir Khan
 

Mais procurados (20)

Chapter 1: Overview of Financial Management
Chapter 1: Overview of Financial ManagementChapter 1: Overview of Financial Management
Chapter 1: Overview of Financial Management
 
Introduction to financial management
Introduction to financial managementIntroduction to financial management
Introduction to financial management
 
Financial management
Financial managementFinancial management
Financial management
 
Account
AccountAccount
Account
 
Financial management ppt @ mba
Financial management ppt @ mbaFinancial management ppt @ mba
Financial management ppt @ mba
 
GITMAN Chapter 2 Financial Statement Analysis
GITMAN Chapter 2 Financial Statement AnalysisGITMAN Chapter 2 Financial Statement Analysis
GITMAN Chapter 2 Financial Statement Analysis
 
Budgeting
BudgetingBudgeting
Budgeting
 
Financial Planning
Financial PlanningFinancial Planning
Financial Planning
 
5 Fiscal Management Techniques
5 Fiscal Management Techniques 5 Fiscal Management Techniques
5 Fiscal Management Techniques
 
International financial reporting standards (ifrs)ppt
International financial reporting standards (ifrs)pptInternational financial reporting standards (ifrs)ppt
International financial reporting standards (ifrs)ppt
 
Financial Reporting And Analysis
Financial Reporting And AnalysisFinancial Reporting And Analysis
Financial Reporting And Analysis
 
Finance for non finance people ppt
Finance for non finance people pptFinance for non finance people ppt
Finance for non finance people ppt
 
1.14 Assets
1.14 Assets1.14 Assets
1.14 Assets
 
Introduction to financial management
Introduction to financial managementIntroduction to financial management
Introduction to financial management
 
Management Accounting Unit II.ppt
Management Accounting Unit II.pptManagement Accounting Unit II.ppt
Management Accounting Unit II.ppt
 
Accounting Concepts
Accounting ConceptsAccounting Concepts
Accounting Concepts
 
Working Capital Pdf
Working Capital PdfWorking Capital Pdf
Working Capital Pdf
 
Introduction to financial accounting
Introduction to financial accountingIntroduction to financial accounting
Introduction to financial accounting
 
Differences between Financial accounting vs Managerial accounting
Differences between Financial accounting vs Managerial accountingDifferences between Financial accounting vs Managerial accounting
Differences between Financial accounting vs Managerial accounting
 
Presentation on Accounting Principles
Presentation on Accounting Principles Presentation on Accounting Principles
Presentation on Accounting Principles
 

Destaque

Internal controls myths and best practices
Internal controls myths and best practicesInternal controls myths and best practices
Internal controls myths and best practicesPamela Mantone
 
Information System Architecture and Audit Control Lecture 2
Information System Architecture and Audit Control Lecture 2Information System Architecture and Audit Control Lecture 2
Information System Architecture and Audit Control Lecture 2Yasir Khan
 
Compliance audit under the Information Technology Act, 2000
Compliance audit under the Information Technology Act, 2000Compliance audit under the Information Technology Act, 2000
Compliance audit under the Information Technology Act, 2000Sagar Rahurkar
 
Security and Audit Report Sign-Off—Made Easy
Security and Audit Report Sign-Off—Made EasySecurity and Audit Report Sign-Off—Made Easy
Security and Audit Report Sign-Off—Made EasyHelpSystems
 
Tech Audit overview
Tech Audit overviewTech Audit overview
Tech Audit overviewedtech111
 
IT Audit methodologies
IT Audit methodologiesIT Audit methodologies
IT Audit methodologiesgenetics
 
International Auditing Standards (ISA)
International Auditing Standards (ISA)International Auditing Standards (ISA)
International Auditing Standards (ISA)Manon Cuylits
 
The information security audit
The information security auditThe information security audit
The information security auditDhani Ahmad
 
IT Audit For Non-IT Auditors
IT Audit For Non-IT AuditorsIT Audit For Non-IT Auditors
IT Audit For Non-IT AuditorsEd Tobias
 
Internal Audit Report Writing Best Practice
Internal Audit Report Writing Best PracticeInternal Audit Report Writing Best Practice
Internal Audit Report Writing Best PracticeDJones68
 
Audit Report
Audit ReportAudit Report
Audit Reportstudent
 
Audit Checklist for Information Systems
Audit Checklist for Information SystemsAudit Checklist for Information Systems
Audit Checklist for Information SystemsAhmad Tariq Bhatti
 
How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureNetwrix Corporation
 

Destaque (20)

Internal Control COSO
Internal Control COSOInternal Control COSO
Internal Control COSO
 
Internal controls myths and best practices
Internal controls myths and best practicesInternal controls myths and best practices
Internal controls myths and best practices
 
Audit rizkie hafizzah
Audit rizkie hafizzahAudit rizkie hafizzah
Audit rizkie hafizzah
 
Information System Architecture and Audit Control Lecture 2
Information System Architecture and Audit Control Lecture 2Information System Architecture and Audit Control Lecture 2
Information System Architecture and Audit Control Lecture 2
 
Compliance audit under the Information Technology Act, 2000
Compliance audit under the Information Technology Act, 2000Compliance audit under the Information Technology Act, 2000
Compliance audit under the Information Technology Act, 2000
 
Security and Audit Report Sign-Off—Made Easy
Security and Audit Report Sign-Off—Made EasySecurity and Audit Report Sign-Off—Made Easy
Security and Audit Report Sign-Off—Made Easy
 
Tech Audit overview
Tech Audit overviewTech Audit overview
Tech Audit overview
 
IT Audit methodologies
IT Audit methodologiesIT Audit methodologies
IT Audit methodologies
 
International Auditing Standards (ISA)
International Auditing Standards (ISA)International Auditing Standards (ISA)
International Auditing Standards (ISA)
 
5.4 it security audit (mauritius)
5.4 it security audit (mauritius)5.4 it security audit (mauritius)
5.4 it security audit (mauritius)
 
The information security audit
The information security auditThe information security audit
The information security audit
 
IT Audit For Non-IT Auditors
IT Audit For Non-IT AuditorsIT Audit For Non-IT Auditors
IT Audit For Non-IT Auditors
 
Internal Audit Report Writing Best Practice
Internal Audit Report Writing Best PracticeInternal Audit Report Writing Best Practice
Internal Audit Report Writing Best Practice
 
Audit Report
Audit ReportAudit Report
Audit Report
 
Audit report
Audit reportAudit report
Audit report
 
Presentation on router
Presentation on routerPresentation on router
Presentation on router
 
The Internal Audit Framework
The Internal Audit FrameworkThe Internal Audit Framework
The Internal Audit Framework
 
Audit Checklist for Information Systems
Audit Checklist for Information SystemsAudit Checklist for Information Systems
Audit Checklist for Information Systems
 
How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT Infrastructure
 
Checklist
ChecklistChecklist
Checklist
 

Entity Level Controls And

  • 1. Entity Level Controls and Fraud Michael Kosinski, CPA mkosinski@larsonallen.com 239-280-3517 ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP 1
  • 2. Objectives • Discuss the nature of entity level controls • Review the operating environment and the proper structure to provide effective controls • Review the risk assessment process and considerations of organizational risks and fraud ©2011 LarsonAllen LLP 2
  • 3. Is Greed Good? • Aggressive financial reporting What • Tax fraud Message • Personal expenses in the company Are • Unrealistic estimates You • Don’t tell the auditors Sending? ©2011 LarsonAllen LLP 3
  • 4. People are your assets Staffing Levels Short Staffed Turnover Competence Inadequate Staffing Defined Roles Feedback ©2011 LarsonAllen LLP Compensation Evaluations 4
  • 5. Internal Controls • ―MF Global Holdings Ltd.’s bankruptcy, the eighth-largest in U.S. history, is exposing a lack of internal controls that may have prevented a last-minute rescue of Jon Corzine’s futures broker.‖ Washington Post Nov 2, 2011 Functional Entity ©2011 LarsonAllen LLP 5
  • 6. What are entity level controls? Influence the company’s culture Instills the tone of the company Attitudes, awareness, and actions of management ©2011 LarsonAllen LLP 6
  • 7. Entity Level Controls Control Environment Monitoring Entity Risk Assessment Level Communication ©2011 LarsonAllen LLP 7
  • 8. Is it enough just to say it? • ―Boards should be absolutely certain that the company is run properly from a fiduciary standpoint in every degree. I am a great believer in the audit committee having full access to the auditors in every way, shape, and form.‖— former Sunbeam Chairman Al Dunlap • ―You’ll see people who in the early days … took their life savings and trusted this company with their money. And I have an awesome responsibility to those people to make sure that they’ve done right.‖—former WorldCom CEO Bernard Ebbers ©2011 LarsonAllen LLP 8
  • 9. Is it enough just to say it? • ―We are offended by the perception that we would waste the resources of a company that is a major part of our life and livelihood, and that we would be happy with directors who would permit that waste. … So as a CEO, I want a strong, competent board.‖—former Tyco CEO Dennis Kozlowski • ―It’s more than just dollars. You’ve got to give back to the community that supported you.‖—Adelphia founder John Rigas • People have an obligation to dissent in this company.‖— ©2011 LarsonAllen LLP former Enron CEO Jeffrey Skilling 9
  • 10. Or do you have to live it? • ―It is not simply a case of having a set of procedures and processes, nor is it just about having controls in place. Reliance on a poor control is often worse than having no control at all. [The trustees must have] … a clear understanding of the business and what can go wrong.‖ - Tony Rawlins - (2001) ©2011 LarsonAllen LLP 10
  • 11. 11 The Control Environment ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
  • 12. Control Environment Sets the tone Foundation for all other controls Provides structure and discipline Most cost effective and efficient control ©2011 LarsonAllen LLP 12
  • 13. What does it look like? Ownership Integrity Accountability Oversight Philosophy Structure Responsibility Competence ©2011 LarsonAllen LLP 13
  • 14. Soft Controls Integrity Competence Philosophy ©2011 LarsonAllen LLP 14
  • 15. Integrity Articulate Inform Demonstrate Approaches Day to day activities New hires Investigate violations Vendor interactions Periodic updates Timelines and consistent Customer interactions Understandable Communicate actions Intolerance of violations Available Monitor compliance ©2011 LarsonAllen LLP 15
  • 16. Competence Hire Train Sustain Approaches Critical Skills In-house Oversight Knowledge External Evaluate Ability Professional services Analyze roles Interviews Cost Benefit ©2011 LarsonAllen LLP 16
  • 17. Oversight Establish Evaluate Review Approaches Independence Management Performance Responsibilities Risks Audit Skepticism Effectiveness Advisors Policies ©2011 LarsonAllen LLP 17
  • 18. Philosophy Mitigate Diligence Processes Approaches Reporting risks Judgment Adjustments Suppliers Attitudes Estimates Customers Accounting principles Employees Authorization ©2011 LarsonAllen LLP 18
  • 19. Structure Establish Align Maintain Approaches Organizational chart Roles Appropriate reporting Streamlined layers Functions Current job descriptions Reporting lines Processes Communication Clear roles ©2011 LarsonAllen LLP 19
  • 20. Accountability and Responsibility Assign Articulate Review Approaches Responsibility Links Nature of position Authority Empowerment Key personnel Segregation Limits ©2011 LarsonAllen LLP 20
  • 21. Small Business Challenges • Management influence • Segregation of duties • Qualified personnel • Limited oversight • Technology ©2011 LarsonAllen LLP 21
  • 22. 22 The Risk Assessment Process ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
  • 23. Risk Assessment Identify Analyze Respond ©2011 LarsonAllen LLP 23
  • 24. Risk Analysis Estimate Assess Managing Significance Probability the Risk ©2011 LarsonAllen LLP 24
  • 25. Risk Assessment Reporting Risk Fraud Objectives Management Consideration • Establish • Risk • Assess Document Identification • Monitor Communicate • Organization and • Apply Principals Relationships • Anticipate and mitigate ©2011 LarsonAllen LLP 25
  • 26. Reporting Objectives Identify • Significant accounts • Underlying transactions Assertions Capture • Review activities • Appropriately presented Activities Appropriate • Policies vs. industry • Detail vs. industry Policies ©2011 LarsonAllen LLP 26
  • 27. Risk Analysis Aspects Business Competency Process Reassess IT Infrastructure Probability ©2011 LarsonAllen LLP 27
  • 28. • Assertions and accounts Identify • Business processes and Support • Maps the internal controls Controls • Identifies controls and risks • Interacts with external parties Information • Suppliers, investors, creditors Internal vs. • Considers factors impacting reporting External ©2011 LarsonAllen LLP 28
  • 29. Overall Risks - External Risks Customers and Competition Technology Company Regulation and Natural Economy Disasters ©2011 LarsonAllen LLP 29
  • 30. Overall Risks - Internal Risks Information Personnel Technology Management Access to Nature of Assets Organization ©2011 LarsonAllen LLP 30
  • 31. Fraud Considerations • Comprehensive brainstorming Assess • Consider override controls • Compensation practices Review • Incentives and pressures • Investigate and reporting Investigate • Remediation of instances • Consider fraud in management Oversight • Consider innternal audit ©2011 LarsonAllen LLP 31
  • 32. 32 Communication ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
  • 33. Communication Objectives • Communication exists between management and governance to provide relevant information • All personnel receive a clear message about reporting, and internal controls • Communication is effective and absent of fears of retribution ©2011 LarsonAllen LLP 33
  • 34. Communication to Employees Management IC Critical to all Roles and Relation of Job Unexpected Employees Responsibilities to Others Events ©2011 LarsonAllen LLP 34
  • 35. Communication to Management Management Customer Operating Needs Issues Continuous Competition Improvement Misstatements ©2011 LarsonAllen LLP 35
  • 36. External Communication Suppliers Shareholders Vendors Company Prospects Regulators Audit ©2011 LarsonAllen LLP 36
  • 37. Facilitating Internal Control Communicate Financial Reporting Objectives • Financial reporting, IC, policies and responsibilities • Communicates IC information and code of conduct Develop Alternative Means of Communication • Mentoring and other channels • Whistleblower and anonymous hotlines Board of Directors • Open discussions with management • Communicate expectations for financial information ©2011 LarsonAllen LLP • Meets with external advisors and internal audit 37
  • 38. 38 Monitoring ©2011 LarsonAllen LLP ©2011 LarsonAllen LLP
  • 39. Monitoring – Small Business • Tend to be informal • Based on ongoing activities • Examples – Significant variances from expectations – Inaccuracies in financial information – Operating issues and shortages – Customer and vendor complaints – Communications from third parties ©2011 LarsonAllen LLP 39
  • 40. Ongoing Monitoring Normal Management Third party communication Supervision Reconciliations to physical assets Communications from auditors Certifications ©2011 LarsonAllen LLP 40
  • 41. Ongoing Activities Management Third Party Supervision • Variances • Budget • Customer • Segregation of Comparisons payments duties • Benchmarking • Bank balance • Supervisor reconciliations reviews • Key statistics • Vendor • Adjustments statements • Approving • Noncompliance vendors from regulators • Review accuracy ©2011 LarsonAllen LLP 41
  • 42. Ongoing Monitoring • Reconciliation to physical assets – Subsidiary schedules and bank statements – Fixed asset and inventory counts • Auditor Communication – How many adjustments were made – Deficiency communications • Certifications – Independent verifications – Not typical for small to mid sized businesses ©2011 LarsonAllen LLP 42

Notas do Editor

  1. Integrity and ethical values. – through managements attitudes and actions they demonstrate character, integrity and ethical values. These values develop and set the standard of contact for the organizationCommitment to competence The entity is committed to competence in the requirements of particular jobs and in translating those requirements into knowledge and skills.Attention and oversight provided by a board of directors or audit committee (those charged with governance). The board of directors and/or audit committee is actively involved and has significant influence over the entity's internal control environment and its financial reporting.Management's philosophy and operating style. - Management's philosophy and operating style are consistent with a sound control environment and have a pervasive effect on the entity. Management analyzes the risks and benefits of new ventures, assesses turnover among employees, investigates and resolves improper business practices, views accounting as a means to monitor and control the various activities of the organization, and adopts accounting policies that reflect the economic realities of the business.Manner of assigning authority and responsibility - The entity assigns authority and responsibility to provide a basis for accountability and control.