Building the Foundation of Compliance

Slides:



Advertisements
Similar presentations
Internal Control Integrated Framework
Advertisements

Internal Control in a Financial Statement Audit
Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update.
Chapter 10 Accounting Information Systems and Internal Controls
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Prepared by Wa'el Bibi,CPA,CIA,CISA1 Internal Control Integrated Framework An Overview.. Bibi Consulting COSO’s Source: COSO’s Internal Control Integrated.
Internal Control.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
INTERNAL CONTROL. INTERNAL CONTROL DEFINED  INTERNAL CONTROL IS A PROCESS - EFFECTED BY AN ENTITY'S BOARD OF DIRECTORS, MANAGEMENT, AND OTHER PERSONNEL.
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
6-1 McGraw-Hill/Irwin ©2002 by The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 Internal Control Evaluation: Assessing Control Risk.
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.
Internal Control and Control Self-Assessment
Central Piedmont Community College Internal Audit.
Transitioning to the COSO 2013 Update.  Released on May 14, 2013  Designed to build upon the foundation of the 1992 Framework  Will supersede the 1992.
Chapter 07 Internal Control McGraw-Hill/IrwinCopyright © 2014 by The McGraw-Hill Companies, Inc. All rights reserved.
Introduction to Internal Control Systems
INTERNAL CONTROL OVER FINANCIAL REPORTING
Implementation Issues of Sarbanes-Oxley CASE Presentation September 23, 2004 By Denise Farnan.
Chapter Three IT Risks and Controls.
Internal controls. Session objectives Define Internal Controls To understand components of Internal Controls, control environment and types of controls.
Copyright T. Rowe Price. All rights reserved 1 Ms. Deborah D. Seidel of T. Rowe Price Financial Services Vice President and Manager of Compliance.
Chapter 5 Internal Control over Financial Reporting
Considering Internal Control
Introduction In 1992, the Committee Of Sponsoring Organizations of the Treadway Commission (COSO) published Internal Control-Integrated Framework (1992.
Internal Control in a Financial Statement Audit
Learning Objectives LO5 Illustrate how business risk analysis is used to assess the risk of material misstatement at the financial statement level and.
Evaluation of Internal Control System. Learning Objective 1 Contrast management’s need for internal control with the auditor’s need to consider internal.
The Connection between Risk Management and Internal Control in Organizations Mag. Norbert Wagner Budapest,
The Audit as a Management Tool Vermont State Auditor’s Office – April 2009.
Chapter 6 Internal Control in a Financial Statement Audit Copyright © 2014 McGraw-Hill Education. All rights reserved. No reproduction or distribution.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
S5: Internal controls. What is Internal Control Internal control is a process Internal control is a process Internal control is effected by people Internal.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
©2012 Prentice Hall Business Publishing, Auditing 14/e, Arens/Elder/Beasley Section 404 Audits of Internal Control and Control Risk Chapter.
Internal Audit & Internal Controls Companies Act 2013.
Copyright © 2007 Pearson Education Canada 9-1 Chapter 9: Internal Controls and Control Risk.
Chapter 5 Evaluating the Integrity and Effectiveness of the Client’s Control Systems.
Internal Controls For Municipalities Vermont State Auditor’s Office – August 2008.
©©2012 Pearson Education, Auditing 14/e, Arens/Elder/Beasley Considering Internal Control Chapter 10.
Copyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall. Chapter
Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.
#127 – Risk Management Basics Deborah Frazer, CPA CISA CISSP Senior Director, Internal Audit PalmSource, Inc.
Internal Control. McGraw-Hill/Irwin © 2004 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition A process...designed.
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
©2005 Prentice Hall Business Publishing, Auditing and Assurance Services 10/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 10.
Auditors’ Dilemma – reporting requirements on Internal Financial Controls under the Companies Act 2013 and Clause 49 of the Listing agreement V. Venkataramanan.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2008 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
SUNY Maritime Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal controls.
SUNY Maritime College Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal.
Modern Auditing: Assurance Services and the Integrity of Financial Reporting, 8th Edition William C. Boynton California Polytechnic State University at.
Internal Control in a Financial Statement Audit
Chapter 3 Internal Controls.
South Texas College Fraud Awareness and Internal Controls
Internal Control in a Financial Statement Audit
Chapter 4 Internal Controls McGraw-Hill/Irwin
Internal control objectives
Internal Control Integrated Framework
Office of Internal Audits
A Framework for Control
Building the Foundation of Compliance
COSO Internal Control s Framework
Internal control - the IA perspective
Federal Government Standards For Internal Control – Green Book
Tim Grow, CPA Charleston Office Managing Shareholder
Internal Controls Policies and Procedures
INTERNAL CONTROLS AND THE ASSESSMENT OF CONTROL RISK
Internal Control Internal control is the process designed and affected by owners, management, and other personnel. It is implemented to address business.
Presentation transcript:

Building the Foundation of Compliance Creating a Financial Aid Risk Assessment and Quality Control Plan

Agenda COSO model of Internal Controls Identifying areas of importance within the financial aid office Determining risk factors Assessing the risks of the areas and documenting in a risk assessment. Different types of quality control reviews and the time each type takes and information each produces. How to take the risk assessment and make a quality control review plan.

COSO Framework In 1992, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) developed a model for evaluating internal controls. This model has been adopted as the generally accepted framework for internal control and is widely recognized as the definitive standard against which organizations measure the effectiveness of their systems of internal control. 

COSO Framework The COSO model defines internal control as “a process, effected by an entity’s board of directors, management and other personnel, designed to provide reasonable assurance of the achievement of objectives in the following categories: Effectiveness and efficiency of operations Reliability of financial reporting Compliance with applicable laws and regulations”  In an “effective” internal control system, the following five components work to support the achievement of an entity’s mission, strategies and related business objectives.

COSO Framework Control Environment Risk Assessment Control Activities Information and Communication Monitoring Activities

Control Environment Integrity and Ethical Values Commitment to Competence Board of Directors and Audit Committee Management’s Philosophy and Operating Style Organizational Structure Assignment of Authority and Responsibility Human Resource Policies and Procedures Code of Conduct

Risk Assessment Company-wide Objectives Process-level Objectives Risk Identification and Analysis Managing Change

Control Activities Security (Application and Network) Application Change Management Reconciliation Verifying Information Business Continuity/Backups

Information and Communication Policies and Procedures Quality of Information Effectiveness of Communication

Monitoring Activities Ongoing Monitoring Separate Evaluations Reporting Deficiencies

What is a Risk Assessment? A systematic process of evaluating the potential risks that may be involved in a projected activity or undertaking. An identified list of programs or processes that have been evaluated to determine where risks exist

Financial Aid Risk Assessment Identify programs Federal Funds (Pell, Federal Work Study, Sub Loans, etc..) State Funds (TEXAS Grant, TEOG, CAL loan, etc.) Institutional Funds (Foundation Scholarships, TPEG, etc.) Outside Funds (Alternative Loans, Outside Scholarships, etc.) Non funding programs (Financial Literacy, Identify processes Automated Processes (Disbursement, SAP, etc.) Professional Judgment Processes (SAP appeals, Dependency Overrides, etc.) User Access Manual Processes (R2T4, Verification, etc.)

Types of Risk Inherent Risk Process Risk Change in Process If everything happens correctly what are the chances that it is still wrong? Process Risk How likely is the process to work correctly? Change in Process Was the process recently changed? Was the way you handle a specific program altered recently? Regulatory Interest What does the overseeing body (ED, THECB, etc.) view as areas of high concern? Audit Concern or Prior Year findings Where are Auditors going to look and how deeply will they look

Ranking Methodology For each program and process determine: How it ranks for each type of risk High, Moderate, Low and then Assign numeric values to the ratings Any variation of this works Place weighted values on the types of risk Determine the overall risk level for each item Every School will have differences in the rankings they come up with

Quality Control Review - File Take between one day and 2 weeks Limited in scope and outcomes are specific in nature Correcting a common error, finding notes are not detailed enough Pull a sample of students that participate in the program or who have the process touch their account/file. 30 is a good starting number for statistical purposes Look at the specifics for the individual program or process for the students chosen. Document what you have seen in a testing sheet Make recommendations on the results

Quality Control Review - Process Take between 2 weeks and 3 months Broad in scope and outcomes are both specific and general Process runs before a piece of information is complete in a students file, providing additional opportunities does not result in student improvement, Pull data that covers all areas of a process or program Do data analysis on the whole data pull Look for unexpected amounts, time delays, surprising student outcomes Preform File review (see previous slide) Make recommendations on the results

Creating a Quality Control Plan Determine the number of staff and how much of their time will be used completing the reviews Take the list of identified risks - determine which risks you want to focus on Determine if you want to do file reviews or process reviews for those identified risks Create a calendar/plan that allows you to track completion.

Questions

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.