Copyright © 2002 Open Applications Group, Inc. All rights reserved Project Definition Project name - RiskML Project Leader name – ? Date – 9/12/03.

Slides:



Advertisements
Similar presentations
Chapter 10 Accounting Information Systems and Internal Controls
Advertisements

Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Core principles in the ASX CGC document. Which one do you think is the most important and least important? Presented by Casey Chan Ethics Governance &
Open Standards that Open Markets™ © Open Applications Group © Open Applications Group, 2014 All Rights Reserved OAGi Semantic Refinement Method and Tool.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
Sarbanes-Oxley Act. 2 What Is It? Act passed by Congress in response to the recent and continuing corporate scandals. Signed into law July 30, Established.
1 Sarbanes-Oxley Section 404 June 29,  SOX 404 Background 3  SOX 404 Goals 4  SOX 404 Requirements 5  SOX 404 Assertions 6  SOX 404 Compliance.
SOX and IT Audit Programs John R. Robles Thursday, May 31, Tel:
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
IS Audit Function Knowledge
Internal Control Pertemuan 05 s.d 06 Matakuliah: F0712 / Lab Sistem Informasi Akuntansi Tahun: 2007.
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Quality evaluation and improvement for Internal Audit
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Chapter 4 IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESSES.
Purpose of the Standards
INTERNAL CONTROL OVER FINANCIAL REPORTING
Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.
Chapter 4 Internal Controls McGraw-Hill/Irwin
Chicagoland IASA Spring Conference
Internal Auditing and Outsourcing
Internal Control and Control Self-Assessment
Improving Corporate Governance in Malaysian Capital Markets – The Role of the Audit Committee Role of the Audit Committee in Assessing Audit Quality.
The Sarbanes-Oxley Act of PricewaterhouseCoopers Introduction of Panel Members The Sarbanes-Oxley Act of 2002 What Companies Should Be Doing Now.
INTERNAL CONTROL OVER FINANCIAL REPORTING
Implementation Issues of Sarbanes-Oxley CASE Presentation September 23, 2004 By Denise Farnan.
Chapter 5 Internal Control over Financial Reporting
Page 1 Internal Audit Outsourcing The Moss Adams Approach to Internal Audit Outsourcing Proposed SOX 404 Changes.
Considering Internal Control
Monitoring Internal Control Systems Johann Rieser Senior Auditor, Ministry of Finance, Vienna.
Internal Control in a Financial Statement Audit
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.
BusinessAllstars.com 1 BusinessAllstars.com Presents Copyright © 2004 by Gainbridge Associates All right reserved This material may not be used or reproduced.
Implementing and Auditing Ethics Programs
NO FRAUD LEFT BEHIND The Effect of New Risk Assessment Auditing Standards on Schools Runyon Kersteen Ouellette.
Scandals (in the public and private sector)  Enron  Worldcom  Livent  Nortel  HRDC  Sponsorship Scandal.
1 Today’s Presentation Sarbanes Oxley and Financial Reporting An NSTAR Perspective.
1 A Common Sense Look at Sarbanes-Oxley Presentation to the MIT Auditing Committee of the Corporation June 8, 2003.
5-1 McGraw-Hill/Irwin ©2007 by the McGraw-Hill Companies, Inc. All rights reserved. Chapter 5 Internal Control Evaluation: Assessing Control Risk.
Copyright © 2007 Pearson Education Canada 1 Chapter 1: The Demand for Auditing and Assurance Services.
Copyright © Open Applications Group, Inc. All rights reserved OAGIS Project Definition High Volume OAGIS – EXI subgroup Kurt Kanaskie – Merck.
Casualty Loss Reserve Seminar General Session II September 9, 2003 Section 302/404 of Sarbanes-Oxley Act What Actuaries Need to Know Jan A. Lommele, FCAS,
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
Copyright © 2007 Pearson Education Canada 7-1 Chapter 7: Audit Planning and Documentation.
Copyright © Open Applications Group, Inc. All rights reserved OAGIS Project Definition Export Compliance Vivian Javier – CDC Software September 20, 2010.
Internal Control Systems
Internal/External Audit and Internal Controls February 23, 2000 David Dudley Federal Reserve Bank of NY.
Internal Control Chapter 7. McGraw-Hill/Irwin © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-2 Summary of Internal Control Definition.
Internal/External Audit Corporate Governance part 5.
Internal Controls For Municipalities Vermont State Auditor’s Office – August 2008.
18-1 Copyright © 2016 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Corporate Governance Week 10 BUSN9229D Saib Dianati.
Internal Audit Section. Authorized in Section , Florida Statutes Section , Florida Statutes (F.S.), authorizes the Inspector General to review.
The Sarbanes-Oxley Act of Overview of the Sarbanes-Oxley Act of 2002 The Sarbanes-Oxley Act and the related SEC rule-making provide clarity and.
Copyright © 2014 Pearson Education, Inc. Publishing as Prentice Hall. Chapter
Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.
Internal Audit Quality Assessment Guide
Shared Services and Third Party Assurance: Panel May 19, 2016.
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
Auditors’ Dilemma – reporting requirements on Internal Financial Controls under the Companies Act 2013 and Clause 49 of the Listing agreement V. Venkataramanan.
SUNY Maritime Internal Control Program. New York State Internal Control Act of 1987 Establish and maintain guidelines for a system of internal controls.
Chapter 5 ASX Guidelines for Listed Companies
IIASA Governance Review
Chapter 4 Internal Controls McGraw-Hill/Irwin
Understanding the Principles and Their Effect on the Audit
Internal control objectives
A Framework for Control
SAPS Audit Committee 26 October 2016.
COSO Internal Control s Framework
Presentation transcript:

Copyright © 2002 Open Applications Group, Inc. All rights reserved Project Definition Project name - RiskML Project Leader name – ? Date – 9/12/03

Copyright © 2002 Open Applications Group, Inc. All rights reserved Agenda Charter Key Deliverables Summary Scenario Diagram Business Workflow BOD’s/Nouns to be added BODs to be changed Project Team Planned Schedule Assumptions, Dependencies, and Issues Outside Resources Questions Next Steps

Copyright © 2002 Open Applications Group, Inc. All rights reserved RiskML Charter Sarbanes Oxely: –New Reporting Requirements Sufficient and adequate Internal Controls –Independence Requirements External Audit – Attestation (Section 404) Annually Management Certification (Section 302) Quarterly –Penalties Personal and Criminal liability of the Signing Officers

Copyright © 2002 Open Applications Group, Inc. All rights reserved New Enterprise Component

Copyright © 2002 Open Applications Group, Inc. All rights reserved Process (Kinda) Risk and Control Library ApplicationsControlsManualControls Risk Assurance Services External Auditor Process and Procedures Control Testing Management Certification Auditor Attestation

Copyright © 2002 Open Applications Group, Inc. All rights reserved Evaluate Overall Effectiveness,Identify Matters for Improvement, and Establish Monitoring Systems Organize a Project Team to Conduct The Evaluation Evaluate Internal Control at the Entity Level Understand/Agree on Definition Of Internal Control Understand & Evaluate Internal Controls at the Process, Transaction or Application Level Report on Internal Control Business Workflow (Kinda)

Copyright © 2002 Open Applications Group, Inc. All rights reserved Big Assumptions There is no prevailing IP in the structure of the Risk and Control library though there is diverse content captured by audit firms as an embodiment of their expertise. The applications built by the software vendors are the true embodiment of their expertise and the structure of the Risk and Control library used is essentially public domain through the COSO framework. On implementation of a risk and control library, there is an allied need for a standard mechanism for publication offered by the audit firms to keep the libraries up to date, even though services are always required to provide assurance around the risks. There would be a real market need for a standardized vocabulary to describe a risk and control library facilitating risk library information exchange and a standardized mechanism for publication.

Copyright © 2002 Open Applications Group, Inc. All rights reserved So what is COSO?   Internal Audits   Messages from Senior Management   Policies and Procedures   Code of Ethics The process which ensures that relevant information is identified and communicated in a timely manner The policies and procedures that help ensure that actions are identified to manage risk are executed and timely The control conscience of an organization. The “tone at the top” The evaluation of internal and external factors that impact an organization’s performance   Business Risk Management   Process Risk Management   Internal Audit Risk Assessment   Disclosure Committee   Delegation of Authority   Approvals   Common Processes and Systems   Segregation of Duties   Account Reconciliations   Information Technology Controls   Code of Ethics   Documented Policies and Procedures   Cultural Assessment   Training   Management Analysis The process to determine whether internal control is adequately designed, executed effective and adaptive

Copyright © 2002 Open Applications Group, Inc. All rights reserved Big Conclusions With the advent of recent legislation there is increased likelihood of ERP customers and Audit Firms exchanging a great deal of risk and control information. The separation of the External Audit from the Risk Assurance activity will mean that Audit firms will be exchanging risk and control information. Mapping different formats from different audit firms and different ERP solutions is inefficient, expensive and adds no value to the parties involved.

Copyright © 2002 Open Applications Group, Inc. All rights reserved Biggest Conclusion It is very likely that an XML Standards consortium will fill the market need for standardization. The charter of this group is to form this consortium and solve the problem.

Copyright © 2002 Open Applications Group, Inc. All rights reserved Proposed Scope What is in scope –Exchange of Risk and Controls Matrix Account Process Risk Control Issue What is out of scope –Assurance Reporting

Copyright © 2002 Open Applications Group, Inc. All rights reserved Key Deliverables Summary Class Diagram Use Case Diagram XML Schema Definition Surrounding Documentation

Copyright © 2002 Open Applications Group, Inc. All rights reserved BODs/Nouns to be added Financial Statement Process Objective Risk Control Testing Procedure

Copyright © 2002 Open Applications Group, Inc. All rights reserved BODs to be changed To Be Determined

Copyright © 2002 Open Applications Group, Inc. All rights reserved Project Team ? – Project Leader Nigel King – Oracle Worker Arthur Stewart – E&Y Worker Bastin Gerald – Oracle Worker Sampathkumar – Worker Mike Rowell – OAG Worker Sohail Siddiqui – PWC Worker Sean Spillane – Deloitte Worker Brad Straw – PWC Worker

Copyright © 2002 Open Applications Group, Inc. All rights reserved Planned Schedule 1st Draft delivery December ‘03 1st Review Jan ‘04 2nd Review and Vote in Mar ‘04.

Copyright © 2002 Open Applications Group, Inc. All rights reserved Assumptions, Dependencies and Issues Assumptions –Will have enough people/time committed to making this happen Dependencies –We need the ongoing buy in of the Risk Assurance community. Issues –The Risk Assurance firms provide services around the risks and assurance thereon. The Risk library in “Abstract” has little assurance value.

Copyright © 2002 Open Applications Group, Inc. All rights reserved Outside Resources XBRL Community for Financial Statement Definition (Feelers out) Institute of Internal Auditors for Domain Expertise (Feelers out) Public Company Accounting Oversight Board for Authority (Feelers out) XBRL (For Process Definition)

Copyright © 2002 Open Applications Group, Inc. All rights reserved Questions? * This is the time to address any questions not asked during the presentation.

Copyright © 2002 Open Applications Group, Inc. All rights reserved Next steps Decision on Project –Approved/not Approved? Call for Team Members Schedule Meeting –Conference Call –Face to Face Set up eGroup (Done - Assign OAGI Architect

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.