An Educational Computer Based Training Program CBTCBT.

Slides:



Advertisements
Similar presentations
Office of the Controller and Internal Controls Sandra Featherson Associate Director of Controls Office of the Controller February 2010.
Advertisements

An Internal Control Overview
Internal Control.
An Educational Computer Based Training Program CBTCBT.
1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
INTERNAL CONTROL. INTERNAL CONTROL DEFINED  INTERNAL CONTROL IS A PROCESS - EFFECTED BY AN ENTITY'S BOARD OF DIRECTORS, MANAGEMENT, AND OTHER PERSONNEL.
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
Internal Control Concepts A Guide for Deans, Directors, and Department Chairs.
6-1 McGraw-Hill/Irwin ©2002 by The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 Internal Control Evaluation: Assessing Control Risk.
IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESS
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Purpose of the Standards
Achieving our mission Presented to Line Staff. INTERNAL CONTROLS What are they?
Office of the Controller and Internal Controls Jim Corkill Controller Office of the Controller September 2014.
Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.
Auditing Standards IFTA\IRP Audit Guidance Government Auditing Standards (GAO) Generally Accepted Auditing Standards (GAAS) International Standards on.
Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.
Control environment and control activities. Day II Session III and IV.
Internal Auditing and Outsourcing
Control and Accounting Information Systems
An Educational Computer Based Training Program CBTCBT.
Central Piedmont Community College Internal Audit.
An Educational Computer Based Training Program CBTCBT.
An Educational Computer Based Training Program CBTCBT.
An Educational Computer Based Training Program CBTCBT.
Presented to President’s Cabinet. INTERNAL CONTROLS are the integration of the activities, plans, attitudes, policies and efforts of the people of an.
An Educational Computer Based Training Program CBTCBT.
Introduction to Internal Control Systems
Chapter Three IT Risks and Controls.
Chapter 5 Internal Control over Financial Reporting
Considering Internal Control
Monitoring Internal Control Systems Johann Rieser Senior Auditor, Ministry of Finance, Vienna.
Internal Control in a Financial Statement Audit
Agency Risk Management & Internal Control Standards (ARMICS)
Learning Objectives LO5 Illustrate how business risk analysis is used to assess the risk of material misstatement at the financial statement level and.
Evaluation of Internal Control System. Learning Objective 1 Contrast management’s need for internal control with the auditor’s need to consider internal.
Business and Information Process Rules, Risks and Controls.
The Audit as a Management Tool Vermont State Auditor’s Office – April 2009.
Webinar for FY 2011 i3 Grantees February 9, 2012 Fiscal Oversight of i3 Grants Erin McHughJames Evans, CPA, CGFM, CGMA Office of Innovation and Improvement.
Evaluation of Internal control mechanism in Audit of Autonomous Bodies.
Management Advisory and Compliance Services Towson University Management Advisory and Compliance Services Internal Controls.
[Hayes, Dassen, Schilder and Wallage, Principles of Auditing An Introduction to ISAs, edition 2.1] © Pearson Education Limited 2007 Slide 7.1 Internal.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
A Guide for Management. Overview Benefits of entity-level controls Nature of entity-level controls Types of entity-level controls, control objectives,
INTERNAL CONTROLS What are they? Why should I care?
AUDIT OF INTERNAL CONTROL Day V Sessions I & II. Session Overview Periodical audit of existence of internal control in order to examine its effectiveness.
Internal/External Audit and Internal Controls February 23, 2000 David Dudley Federal Reserve Bank of NY.
INTRODUCTION TO PUBLIC FINANCE MANAGEMENT Module 4.3: Internal Control & Audit.
©2012 Prentice Hall Business Publishing, Auditing 14/e, Arens/Elder/Beasley Section 404 Audits of Internal Control and Control Risk Chapter.
Copyright © 2007 Pearson Education Canada 9-1 Chapter 9: Internal Controls and Control Risk.
Chapter 5 Evaluating the Integrity and Effectiveness of the Client’s Control Systems.
Internal Controls For Municipalities Vermont State Auditor’s Office – August 2008.
What is Internal Audit University of Date. What/Who is Internal Audit? A University department that reports directly to the Board of Regents (BOR) through.
©©2012 Pearson Education, Auditing 14/e, Arens/Elder/Beasley Considering Internal Control Chapter 10.
Copyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall. Chapter
Collaboration Process 1. IC Objectives and Risk Tolerances Define, document, and implement top-down internal control objectives and risk tolerances: 
Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.
Governance, risk and ethics. 2 Section A: Governance and responsibility Section B: Internal control and review Section C: Identifying and assessing risk.
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
©2005 Prentice Hall Business Publishing, Auditing and Assurance Services 10/e, Arens/Elder/Beasley Internal Control and Control Risk Chapter 10.
SUNY Maritime Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal controls.
SUNY Maritime College Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal.
Modern Auditing: Assurance Services and the Integrity of Financial Reporting, 8th Edition William C. Boynton California Polytechnic State University at.
Defining Internal Control
Internal Controls Towson University
Internal control - the IA perspective
Internal Control Internal control is the process designed and affected by owners, management, and other personnel. It is implemented to address business.
Presentation transcript:

An Educational Computer Based Training Program CBTCBT

Effectively Controlling Risk The University of Texas at Tyler General Compliance Training

U.T. Compliance Program u The U.T. Tyler Compliance Program is intended to demonstrate the absolute commitment of the University to the highest standards of ethics and compliance with all applicable laws, policies, rules, and regulations. Ethical conduct and compliance are personal responsibilities, and each employee will be held accountable for his or her conduct.

Effectively Controlling Risk u What is the purpose of this training? u Why is it necessary? u What is internal control? u What are the components of internal control? u Where can I learn more?

Effectively Controlling Risk What is the purpose of this training? u Provide administrative officials with the training and tools to evaluate internal control at the department level.  Risk and Control Self-Assessment Guideline u Provide department employees with the training and tools to evaluate internal control at the activity or process level.  Risk Assessment and Control Activities Worksheet

Effectively Controlling Risk Why is it necessary? u Highly publicized fraud in both the public and private sector have caused concerns among U.T. System and campus administrators. u What was the most common problem? è WEAK INTERNAL CONTROLS

Effectively Controlling Risk What is internal control? : Internal control is a PROCESS, effected by the university’s governing board, administration, faculty, and staff, designed to provide reasonable assurance regarding the achievement of objectives in the following categories: –Effectiveness and efficiency of operations, –Reliability of financial reporting, and –Compliance with applicable laws and regulations.

Effectively Controlling Risk Internal Control Process 5 Components ¬Establish Control Environment ­Perform Risk Assessment ®Implement Control Activities ¯Communicate Information °Monitor Performance

Internal Control Process Establish Control Environment u The control environment is the control consciousness of an organization. u The control environment includes the integrity and ethical values of its people, their competence, and the way they do business.

Internal Control Process Elements of the Control Environment u Standards of Conduct Digest u Regents’ Rules, Business Procedures Memorandums, etc. u Department standards of conduct u Human resources policies and procedures u Department policies and procedures u Conflicts of interest--disclosure forms u Ethics Guide u Honesty u Zero tolerance

Internal Control Process Perform Risk Assessment u Risk assessment is the identification and analysis of risks associated with achieving your objectives. u Risk assessment helps to form a basis for determining how to manage identified risks.

Internal Control Process What is our risk? With internal controls, RISK is...  The possibility that the organization will NOT: –Achieve its goals –Operate effectively and efficiently –Protect itself from loss –Provide reliable financial data (reports) –Comply with applicable laws, regulations, policies, and procedures

Internal Control Process Perform Risk Assessment u Institutions and Departments must define their goals and objectives in relation to their: –Mission, –Operations, –Financial reporting, –Compliance, and –Significant activities or processes. u Then, they must identify and analyze potential risks by asking certain questions: –What could go wrong? –What must go right? –What is the significance of our risks? –What is the likelihood of occurrence?

Internal Control Process Perform Risk Assessment Questions employees should consider: u What business are you in? u Who are your customers? u What do they need and want? u What does that say about what you are trying to accomplish? u How will you know you have been successful?

Internal Control Process Perform Risk Assessment u A risk is ANYTHING that could jeopardize the achievement of a goal or objective. u For each goal or objective, identify your risks. u Be comprehensive, by considering external and internal factors.

Internal Control Process Perform Risk Assessment u For each identified risk, estimate the potential significance (cost) and likelihood of occurrence. u Focus on the major risks, and determine how those risks should be managed and minimized to acceptable levels.

Internal Control Process Implement Control Activities u Control activities are the policies and procedures that help ensure that actions identified as necessary to manage risks are carried out properly and in a timely manner. u Control activities should be proactive, value-added, and cost effective.

Internal Control Process Implement Control Activities Risks Controls Properly balancing risks and controls makes good business sense!

Internal Control Process Implement Control Activities Examples of Control Activities at U.T. Tyler: u Approvals, authorizations, and verifications – Having written policies and procedures and limits to authority u Reconciliations – Explanations of the difference between two sets of data AND taking corrective action

Internal Control Process Implement Control Activities Examples of Control Activities at U.T. Tyler, continued... u Reviews of performance –For components, departments, and individual employees u Security of Assets –Limiting access, keeping records, and making periodic counts to compare to our records

Internal Control Process Implement Control Activities Examples of Control Activities at U.T. Tyler, continued... u Segregation of Duties –Make sure no one person can initiate, approve, and record one transaction u Controls over Information Systems –General controls over access and development, as well as specific controls within applications

Internal Control Process Communicate Information u Reliable and relevant information, from both internal and external sources, must be identified and communicated to employees. u Information should be processed and communicated in a timely manner and in a form that is usable.

Internal Control Process Communicate Information What information is relevant and reliable? u Job responsibilities u Goals and objectives u Information to assess risks u Policies and procedures u Laws and regulations u Performance indicators u Customer feedback u Performance evaluations

Internal Control Process Communicate Information How should we communicate? u Methods include one-on-one, staff meetings, telephone calls, , memos, and reports u ONLY communicate information to those who need it –Communicate up, down, and across the organization

Internal Control Process Monitor Performance u Monitoring involves evaluating internal control performance over time to determine whether controls are: éadequately designed, éproperly executed, and éeffective. u How do we know?

Internal Control Process Monitor Performance u Internal controls are adequately designed and properly executed if all five internal control components are present and functioning as designed: ¬ Control environment ­ Risk assessment ® Control activities ¯ Information and communication ° Monitoring

Internal Control Process Monitor Performance u Internal controls are effective if administrators believe:  They understand the extent to which the objectives of their operations are being achieved,  Financial statements are reliable, and  Laws and regulations are complied with.

Internal Control Process Monitor Performance Monitoring Activities Include: u Managerial and supervisory monitoring u Self-Assessment (Annual Subcertification letters) u Internal audits

Effectively Controlling Risk Self-Assessment What is a self-assessment? u A self-assessment is a “self- audit” of a department’s internal control components at year-end that results in a subcertification letter on internal control, submitted to component management.

Effectively Controlling Risk Performing a Self-Assessment Steps in performing a self-assessment include: ¬ Evaluating your strengths and deficiencies ­ Testing the strengths ® Documenting tests ¯ Developing an action plan to correct problems ° Writing the letter to management ± Disclosing weaknesses ² Making your letter available to the U.T. Tyler Audit Office

Effectively Controlling Risk Performing a Self-Assessment What is a weakness? u A material weakness is an internal control shortcoming which does NOT reduce the risk of –irregularities, illegal acts, errors, waste, ineffectiveness, or conflicts of interest to a REASONABLE level.

Effectively Controlling Risk Summary What does all this have to do with me? u Internal control effectiveness is primarily determined by the knowledge and commitment of ALL U.T. employees. u By knowing U.T. Tyler’s internal control policies and procedures and complying with all laws and regulations, YOU can help the University achieve its goals. u This training is an internal control activity!!

Effectively Controlling Risk Where can I learn more?  U.T. Tyler’s internal audit contact: Lou Ann Viergever at ext  U.T. Tyler’s policies regarding internal controls and controlling risk. (consult the Management Responsibilities Handbook)  Ask your supervisor or U. T. Tyler’s designated compliance director: Mary Barr at ext

Test Your Knowledge Following are several questions to test your knowledge of the information presented. Answer all questions correctly to receive credit for the training.

Question #1 The most common problem which caused recent frauds in both the public and private sector was weak internal controls. TRUE FALSE

REVIEW

Question #2 Which of the following are components of the internal control process? ESTABLISHING A CONTROL ESTABLISHING A CONTROL ENVIRONMENT PERFORMING A RISK PERFORMING A RISK ASSESSMENT BOTH OF THE ABOVE BOTH OF THE ABOVE

REVIEW

Question #3 With internal controls, RISK includes the possibility that our organization will NOT achieve its goals and protect itself from loss. TRUE FALSE

REVIEW

Question #4 Control Activities should be... RESTRICTIONS ON AN RESTRICTIONS ON AN EMPLOYEE’S AUTHORITY EMPLOYEE’S AUTHORITY PROACTIVE, VALUE-ADDED, PROACTIVE, VALUE-ADDED, AND COST-EFFECTIVE AND COST-EFFECTIVE BOTH OF THE ABOVE BOTH OF THE ABOVE NEITHER OF THE ABOVE NEITHER OF THE ABOVE

REVIEW

Question #5 Some examples of control activities at U.T. Tyler include reconciliations and having written policies and procedures. TRUE FALSE

REVIEW

Question #6 Which of the following is relevant information for U.T. Tyler employees? JOB RESPONSIBILITIES JOB RESPONSIBILITIES POLICIES AND PROCEDURES POLICIES AND PROCEDURES CUSTOMER FEEDBACK CUSTOMER FEEDBACK ALL OF THE ABOVE ALL OF THE ABOVE

REVIEW

Question #7 Monitoring activities include: MANAGERIAL AND MANAGERIAL AND SUPERVISORY MONITORING SUPERVISORY MONITORING SELF-ASSESSMENTS INTERNAL AUDITS INTERNAL AUDITS ALL OF THE ABOVE ALL OF THE ABOVE

REVIEW

Question #8 A material weakness in internal controls reduces the risk of illegal acts, errors, waste, and conflicts of interest. TRUE FALSE

REVIEW

Question #9 During this training, references were provided on where to find and who to contact for information on the internal control process and the effectiveness of internal controls. TRUE FALSE

REVIEW

Congratulations… you have completed your training over Effectively Controlling Risk The University of Texas at Tyler General Compliance Training

The Training Post An Educational Computer Based Training Program CBTCBT