Emerging Audit and Internal Control Issues

Slides:



Advertisements
Similar presentations
Board Governance: A Key to Quality Organizations
Advertisements

MONITORING OF SUBGRANTEES
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
LOAN PARTICIPATIONS - ACCOUNTING AND REGULATORY ISSUES DeLeon & Stang, CPAs and Advisors Allen P. DeLeon, CPA (301)
CIP Cyber Security – Security Management Controls
Kenya AIDS Vaccine Initiative
Managed Funds Association’s Sound Practices for Hedge Fund Managers 2009 Edition.
Investments Institute of Insurance and Risk Management (IIRM) Hyderabad, India 15 November 2005 Arup Chatterjee – Advisor International Association of.
Chapter 4 Internal Control Bus 319 Accounting Information Systems.
Disaster Recovery and Business Continuity Ensuring Member Service in Times of Crisis.
Internal Audit. Session objectives Define Internal Audit To understand functions of Internal Audit To assess effectiveness of Internal Audit and reliance.
Gulf Coast Energy International Business Continuity / Disaster Recovery Planning and Design Proposal Prepared by Andrew Rolf, Felipe Torres, Pranay Jaiswal.
RBTC: Business Continuity 101 July 18, What is Business Continuity? Scenario Part 1 Why is BC important? What types of plans are needed? How do.
ISM Workshop 1 Independent Oversight Perspectives Michael A. Kilpatrick Deputy Director Office of Security and Safety Performance Assurance.
June 14, 2012Regina A. Stone Deputy Superintendent.
Chapter 3 Internal Controls.
Disaster Recovery Strategies & criteria for evaluation of information management strategies.
Effective Management and Compliance 1 ANA GRANTEE MEETING  FEBRUARY 5, 2015.
Association for Biblical Higher Education February 13, 2013 Lori Jo Stanfield Evaluator Team Training for Business Officers.
Enterprise Risk Management (ERM) ABN AMRO Business Unit North America (BU NA) Overview for ERM Committee April 11, 2007.
United States Department of Agriculture Food Safety and Inspection Service February William C. Smith Assistant Administrator Office of Program.
Risk Management & Corporate Governance 1. What is Risk?  Risk arises from uncertainty; but all uncertainties do not carry risk.  Possibility of an unfavorable.
“Integrating Property Management with Emergency Recovery” Ivonne Bachar, CPPM CF Director, Property Management Office Stanford University
Future of Credit Risk Management: Supervisory Approach to Basel II CIA Annual Meeting Session 4405 Ben Gully Director, Basel Implementation Division Office.
Managing Market Risk. Board of Directors The Boards defines –Market risk –Management policies –Procedures –Prudential risk limits –Review mechanisms –Reporting.
Data Governance 101. Agenda  Purpose  Presentation (Elijah J. Bell) Data Governance Data Policy Security Privacy Contracts  FERPA—The Law  Q & A.
This course, Essential Records Seminar, is part of
Internal/External Audit and Internal Controls February 23, 2000 David Dudley Federal Reserve Bank of NY.
ISO CONCEPTS Is a management standard, it is not performance or product standard. The underlying purpose of ISO 1400 is that companies will improve.
Chapter 3: Business Continuity Planning. Planning for Business Continuity Assess risks to business processes Minimize impact from disruptions Maintain.
S6: Internal Audit. Defining Internal Audit Internal Auditing is an independent, objective assurance and consulting activity designed to add value and.
EXPECT THE UNEXPECTED Prepare Your Business for Disaster.
Business Continuity Planning 101
Audit Planning, Understanding the Client, Assessing Risks and Responding Chapter 6.
Donald JG Chiarella, PhD, CISM, CDMP, PEM, CHS-CIA, MBA.
The CPA Profession Chapter 2.
Principles for Recovery and Resolution of a Financial Market Infrastructure ACSDA Senior Leadership Summit – November 16 & 17, 2015.
Outsourcing Policy & Procedures
Risk Management and the Treasury Function
CMS Policy & Procedures
and Security Management: ISO 28000
Continuity of operations planning
Chapter 4 Internal Controls McGraw-Hill/Irwin
A brief update to inform on current actions
CONTINUITY OF OPERATIONS PLANNING WORKSHOP #2
Business Continuity Plan Training
OFFICE OF THE AUDITOR GENERAL, NEPAL
Writing and Presentation
Audit Planning Presentation - Disaster Recovery Plan
Privacy Project Framework & Structure
Heritage Fund - Disaster Planning 101
Business Contingency Planning
Business Continuity Planning
Survey Readiness RIDEOUT HEALTH Kimberly Black
Safety Assessment Efficiency Group 2 - Exercise 1
County HIPAA Review All Rights Reserved 2002.
1 2 Please stand by! The webinar will begin shortly.
Business Impact Analysis
Continuity of Operations Planning
Developing and testing the Plan
INPUT OUTPUT ASSURANCE
Unit 7 Documentation Documentation
What is IT audit? An examination of how IT systems where implemented to ensure that they meet the organization’s business needs without compromising.
INTERNAL CONTROLS AND THE ASSESSMENT OF CONTROL RISK
Building Disaster Planning
Good practices for risk assessment and control activities
APRA PAIRS Model Ross Jones
Risk Management NDS Forum June 23rd 2010.
Management commitment and responsibility Safety accountability of managers Appointment of key safety personnel SMS Implementation Plan Coordination.
Presentation transcript:

Emerging Audit and Internal Control Issues AIBA Compliance Seminar June 13, 2013 Regina A. Stone, Deputy Superintendent

Business Continuity and Disaster Recovery Resolution Planning (tips) Agenda Business Continuity and Disaster Recovery Resolution Planning (tips) Common Examination Findings For Discussion Purposes Only

Business Continuity and Disaster Recovery

Emergency plan should include, but not be limited to: BCP/DR Emergency plan should include, but not be limited to: Protection of Personnel Continuity of Management Reconstruction of Essential Records Alternate Operating Headquarters For Discussion Purposes Only

Designate an Emergency Security Officer Plan Written (in detail) Designate an Emergency Security Officer Provide for Training of Personnel, and Be tested annually, if not semi-annually using a table-top exercise. Such test should be observed by internal audit. For Discussion Purposes Only

Protection of Staff should include: Accounting for health and safety of staff Identification of critical staff for resuming business A communication plan, and Staging of critical staff for business continuity. For Discussion Purposes Only

Record and Asset Protection Record and Asset protection should include: Financial record backed-up daily and stored off-site Activation of back-up site procedures Back-up site on a different power grid; and Full testing of plan, including readability of back-up tapes/disks; and computer access levels for staff. For Discussion Purposes Only

Internal Audit and Resolution Planning

Internal Audit Risk Matrix basis vs. Legal Entity basis Interconnected risk Interdependence risk Being able to “unplug” a business unit from the organization Pre- and Post reviews of organizational changes For Discussion Purposes Only

Due From/To Management Position Management Due From/To Position Due From/To Management Position Management Business Strategy Volume and Level of position Volatility of the position Exit strategy Contingent Funding Plan (today) For Discussion Purposes Only

Common Examination Findings

Common Examination Findings Control Functions: Independent Credit Review Function Quality Assurance within internal audit and compliance Better oversight over collateral Local risk management over counterparty, credit, market, liquidity risks, Including local stress-testing Audit Specific Comprehensive set of key risk indicators and risk assessment = Covering all aspects of the institution Document the audit sampling rationale Timely audit reports + audit of disaster recovery tests For Discussion Purposes Only

For Discussion Purposes Only

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.