DEPARTMENT OF THE NAVY “Re-Tuning the DON’s Internal Control Efforts” ASMC PDI Conference Navy/Marine Corps Service Day 2 June 2010.

Slides:

Advertisements

Similar presentations

Using Internal Control to Manage Risk Mary C. Braun, CPA, CGFM Management Concepts, Incorporated.

Advertisements

2 Breakout Session # 504 Michael P. Fischetti, Director, Office of Procurement and Assistance Policy Department of Energy Date April 15, 2008 Time10:45.

Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update.

OMB Circular A-123 Update: Where We Are and Where We Are Going Dana James Office of Federal Financial Management Office of Management and Budget May 8,

Managers’ Internal Control Program ICONO and ICOFR

C. Conger 6/7/2011 Financial Management Assurance & OMB Circular A-123 Integration with Contractor Assurance at Fermilab OMB Circular A-123: Management's.

Defense Contract Management Agency Quality Assurance Directorate Presented By: Michael Shields Executive Director, Quality Assurance March 15 th, 2011.

1  AGA-DC and GWSPCA 6 th ANNUAL CONFERENCE OMB Circular A-123, Appendix A Internal Control Over Financial Reporting Innovative Approaches Jerome A. Vaiana.

Technology Applications in the Age of Integrity Integrity Forum 2006 Tony Murphy Vice President, Worldwide Sales ACL Services Ltd.

Auditability Update ASMC National Capital PDI Navy Break-Out Session

Future Audit Environment

Internal Control.

OMB Circular A-123 – Management’s Responsibility for Internal Control Policy Applicability Sources of Information Assessment, Documentation and Reporting.

What’s New in Government Internal Control Standards?

Standards for Internal Control in the Government Going Green Standards for Internal Control in the Federal Government 1.

New Audit Risk Standards Are You Ready? John P. Langan, CPA Principal in Charge Public Service Group Metro, DC Office LarsonAllen LLP.

Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.

Board responsibility for internal control and risk management by Kiattisak Jelatianranat Chairman, The Institute of Internal Auditors of Thailand Director,

Chicagoland IASA Spring Conference

Department of Commerce Approach to Implementing A-123 A-123 Presentation May 23, 2006 Lisa Casias Deputy CFO and and Director for Financial Management.

Where Quality Talk is #1. QAP = Quality Assurance Program Transaction entry and approval moved from Business Affairs to Business Centers – Created a need.

Copyright © 2002 Open Applications Group, Inc. All rights reserved Project Definition Project name - RiskML Project Leader name – ? Date – 9/12/03.

1 Our Expertise and Commitment – Driving your Success An Introduction to Transformation Offering November 18, 2013 Offices in Boston, New York and Northern.

The Sarbanes-Oxley Act of PricewaterhouseCoopers Introduction of Panel Members The Sarbanes-Oxley Act of 2002 What Companies Should Be Doing Now.

1 Joint ASIA / BIA / TRIBAL Data Management Committee A Proposed Centralized Data Management Function Sponsored by the Assistant Secretary for Indian Affairs.

Photo by Karl Steinbrenner ARMICS Update: May 14, 2008 FOCUS.

Internal Management Controls Tri-SERVICE MEPRS CONFERENCE 28 August 2007.

Why is BCL Needed? BCL addresses long-standing challenges that have impacted the delivery of business capabilities The DepSecDef directed increasing the.

Implementation Issues of Sarbanes-Oxley CASE Presentation September 23, 2004 By Denise Farnan.

Chapter 5 Internal Control over Financial Reporting

Page 1 Internal Audit Outsourcing The Moss Adams Approach to Internal Audit Outsourcing Proposed SOX 404 Changes.

Considering Internal Control

Internal Control in a Financial Statement Audit

Standards for Internal Control in the Government Going Green Standards for Internal Control in the Federal Government 1.

Service Organization Reports – What Agencies Need to Know.

A DEPARTMENTAL PERSPECTIVE Drive Value through Compliance with the Green Book – Stop Checking the Box.

1 Today’s Presentation Sarbanes Oxley and Financial Reporting An NSTAR Perspective.

Office of Policy and Management State of Connecticut Presentation to the State Contracting Standards Board January 18, 2006 Office of Policy and Management.

Department of the Navy DON Business Transformation Update “The Role of OMB A-123, Appendix A (Federal Version of Sarbanes-Oxley)” Presented to: ASMC Washington.

1 OMB Circular A-123 Lessons Learned: Strategies for Sustained Compliance and Outlook for the Future Presented by Frank Petersen, Director Office of Quality.

1 © Material United States Department of the Interior Federal Information Security Management Act (FISMA) April 2008 Larry Ruffin & Joe Seger.

A Presentation to FMI January 2011 Betty-Anne Pratt, CA Provincial Comptroller Province of Manitoba.

OMB’s Management Watch List (MWL) & High Risk Projects List How to More Effectively Track, Analyze and Evaluate Your Agency IT Investments October 9, 2007.

Solutions Within Reach

Using OMB Section 508 reporting in addressing your agency's program maturity. How to Measure Your Agency's 508 Program.

University of Minnesota Internal\External Sales “The Internal Sales Review Process” An Overview of What Happens During the Review.

A Guide for Management. Overview Benefits of entity-level controls Nature of entity-level controls Types of entity-level controls, control objectives,

BSBPMG404A Apply Quality Management Techniques Apply Quality Management Techniques Project Quality Processes C ertificate IV in Project Management

Implementation Status Presented to: Berkeley Site Office Implementer : Minh Huebner January 4, 2007 Office of Management and Budget Circular A-123 (Appendix.

Public Law Government Charge Card Abuse Prevention Act of 2012 (Charge Card Act) REPORTS December 2013.

©2012 Prentice Hall Business Publishing, Auditing 14/e, Arens/Elder/Beasley Section 404 Audits of Internal Control and Control Risk Chapter.

1 Overview of PCAOB Auditing Standard No. 5 An Audit of Internal Control Over Financial Reporting that is Integrated with an Audit of Financial Statements.

Continuous Monitoring and Gaining External Audit Reliance.

©©2012 Pearson Education, Auditing 14/e, Arens/Elder/Beasley Considering Internal Control Chapter 10.

Copyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall. Chapter

Internal Audit Quality Assessment Guide

Seventeen (17) Principles of Internal Cont New Gov’t Internal Control Standards.

Auditors’ Dilemma – reporting requirements on Internal Financial Controls under the Companies Act 2013 and Clause 49 of the Listing agreement V. Venkataramanan.

SUNY Maritime Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal controls.

TOP Practices in Post Award Administration

Achieving Audit Success

Navy Defense Travel System Improper Payments Dashboard October 2017

Financial Oversight of the Federal-aid Program Financial Integrity Review and Evaluation (FIRE) Program Mark Newland, Financial Manager FHWA Indiana.

Defining Internal Control

Office of the Under Secretary of Defense (Comptroller) Financial Improvement and Audit Readiness Directorate DoD Financial Improvement and Audit Readiness.

Navy Defense Travel System Improper Payments Dashboard October 2017

QUALITY ASSURANCE AND IMPROVEMENT PROGRAM

Workshop Session I.

Sarbanes-Oxley Act of 2002 Presentation to

Presentation transcript:

DEPARTMENT OF THE NAVY “Re-Tuning the DON’s Internal Control Efforts” ASMC PDI Conference Navy/Marine Corps Service Day 2 June 2010

2 Agenda FMO Reorganization The Future of MIC Entity-Level Controls (What they are and why should we use them) Monitoring (Separate Evaluations vs. Ongoing Monitoring) Automated Assessment Tool (iFiCCS)

3 FMO Reorganization

Assurance & Risk Management A-123, Appendix A (ICOFR) Merging The Programs FIP MIC Attain AuditabilitySustain Auditability iFiCCS Segment Assertion The Future

FMO Reorganization (The People) Separate Organization within FMO for “Assurance and Risk Management” Functions: – FMFIA Compilation and Reporting, including ICOFR – Inventory Control over Risks and Controls – Assist and Control the Standardized Testing of Internal Controls – Assist and Monitor Corrective Action – Own and Operate DON’s Automated Assessment Tool – Technology (IT) Risk Management – Audit Assistance and Management

6 The Future of MIC

What the MIC can leverage from ICOFR Since OMB Circular A-123, Appendix A took effect in FY 2006, OUSD(C) has required specific deliverables in certain focus areas, to include: – Process flowcharts and narratives – Risk assessments – Control Analyses – Testing Plans and results – Reporting of deficiencies and corrective actions In short, OUSD(C) has implemented a fairly disciplined approach to documenting and testing a component’s internal control environment and activities

What the MIC can leverage from ICOFR Of these, which has the DON MIC Program required? – Process flowcharts and narratives – Risk assessments – Control Analyses – Testing Plans and results – Reporting of deficiencies and corrective actions The DoD and DON MIC Programs are moving toward having similar documentation and testing requirements for both financial and non-financial controls.

What ICOFR can leverage from the MIC Certification and reporting of assurance over internal controls – DON MIC Program has a well-established structure for assessable units to report assurance over their internal controls Use of Auditor Identified Control Deficiencies – DON MIC Program has an established process for reviewing audit reports from the oversight community – Working on a process for incorporating financial reporting audits and formalizing feedback to commands

NAVSEANAVSUP NAVAIR CFFC PACFLT SPAWAR SPECWAR CNIC COMSC FSASSP BUMED BUPERS NAVFAC RESFOR ONI DON MIC Program - Certification Statements CNO SECRETARY OF THE NAVY UNDER SECRETARY OF THE NAVY CMC ASN(M&RA) OLA OSBP ASN(I&E) ASN(FM&C) OGC ASN(RD&A) AUDGEN NCIS OPPA NAVIG CHINFO DON CIO JAG AAUSN ONR

SECRETARY OF THE NAVY UNDER SECRETARY OF THE NAVY NAVSEANAVSUP NAVAIR CFFC PACFLT SPAWAR SPECWAR COMSC FSASSP BUMEDNAVFAC RESFOR ONI BUPERS CNIC Proposed DON MIC Certification Statements will include certification over ICOFR CNO ICOFR Certification MIC Certification ICOFR Certification ICOFR Certification

The Future of MIC The DON MIC Program continues to evolve. In the future, you can expect that it will include: Three-tiered testing of financial and non-financial processes and controls – Department-level testing – Command-level testing – External assessment and assurance Certifications on both non-financial and financial reporting internal controls Incorporation of “Internal Controls over Financial Systems”

13 Entity-Level Controls

“The holy grail of risk assessment is finding controls that cover multiple risks ” Entity-Level vs. Transaction-Level – Entity-Level: Management Analysis of Payroll Expense – Transaction-Level: Supervisory Review and Approval “Entity” includes Department (DON) and Commands

Entity-Level Controls Types – Indirect Effect (Ethics, Code of Conduct, etc.) – Monitor Other Controls (Management Review of Metrics, Aging Reports, etc.) – Direct Effect (Management Analysis of Payroll Expense, Variance Analysis, etc.)

16 Monitoring

Costs and Level of Effort to Assess Internal Control Separate Evaluations - Samples, Samples, Samples - People, People, People = Ongoing Monitoring - Continuous Awareness - Fewer People =

18 Monitoring “An entity that perceives a need for frequent separate evaluations should focus on ways to enhance its ongoing monitoring activities, and, thereby, to emphasize 'building in' versus 'adding on' controls.” - COSO In other words... The key to sustainment is moving toward continuous monitoring. Build in controls that allow for continuous monitoring rather than frequently testing controls (i.e. selecting and reviewing samples).

19 Example: Ongoing Monitoring of Aged ULOs Risk: Aged unliquidated obligations (ULOs) are no longer valid Close ULO within ___ days after end of period of performance. Use automated alerts and reports to facilitate closing ULOs. Manager’s review of ULO aging report. Automated small balance write-off of aged ULOs. Automated deobligation of ULOs when ___ days after end of period of performance. Use automated alerts prior to automated deobligation. Review and certify ULOs (quarterly). Agency and OCFO executive management review of ULO aging report(s) (scorecard) OCFO statistical sample of aged ULOs

20 Automated Assessment Tool

21 Automated Assessment Tool Integrated Financial Control and Compliance Solution (iFiCCS) Deploy DON-Wide for FIP/ICOFR and MIC Currently in contracting stage Owned and operated by the new organization (Assurance and Risk Management)

22 Questions