Addressing Internal Controls in State ERP Systems: Being Proactive Aaron Erickson, Chief Operating Officer State of Ohio, Office of Budget and Management.

Slides:



Advertisements
Similar presentations
AUDITING : AN OVERVIEW. Auditing defined It is a critical and systematic examination or review of accounting reports, documents, records, procedures and.
Advertisements

What have we done?. Project context Size of state budget: $ 27 Billion Includes the three branches of state government Includes DOT Number of employees:
Course: e-Governance Project Lifecycle Day 1
Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.
Internal Control.
Delivery Business Solutions April 29, Nashville PMI Symposium April 29, 2013 Stephanie Dedmon, PMP Director, Business Solutions Delivery Department.
Corporate Service Review DEPARTMENT OF BUSINESS AND EMPLOYMENT.
OMB Circular A-123 – Management’s Responsibility for Internal Control Policy Applicability Sources of Information Assessment, Documentation and Reporting.
Enterprise Resource Planning ERP Systems
Pertemuan Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.
The Information Systems Audit Process
1 Brown Bag Luncheon: ARMICS Update Presented By: Steve Kimata and Susan Herod July 23, 2008.
Information Technology Audit
Eric R. Johnson Hillsborough County, (Tampa) FL
Concepts in Enterprise Resource Planning 2 nd Edition Chapter 1 Business Functions, Processes, and Data Requirements.
1 Talal Abu Ghazaleh Information Technology International (TAG-ITI)
Financials – Phase II Kick-Off Meeting September 11, 2008 Brenda Bolander, State Comptroller Michael Grisser, Project Manager.
The Microsoft Office 2007 Enterprise Project Management Solution:
 OSA MeetingMay 17,  Project Vision  Scope, Governance, Benefits  Timetables & Next Steps  Realizing the Vision - Procurement  Questions 2.
MnSCU Audit Reports Presentation to the MnSCU Audit Committee Office of the Legislative Auditor September 21, 2004.
DAS: State Controller's Division1January 2010 Department of Administrative Services State Controller’s Division Updated January, 2010.
Clockwork Operations: Student Achievement Within A Collaborative Environment Charles A. Burbridge, Chief Financial Officer and Nader Sohrab, Comptroller.
ARMICS Randy Sherrod, Internal Audit Manager – Department of Behavioral Health and Developmental Services.
September 2010 Budget Managers Meeting Internal Audit Presentation Dave Cutri, Director of Internal Audit
Monitoring Internal Control Systems Johann Rieser Senior Auditor, Ministry of Finance, Vienna.
State of Maine NASACT Presentation “Using the Business Case to Guide a Transformation Procurement” 1 Using the Business Case to Guide a Transformation.
Table of Contents Allocation Overview 3 Allocation Objectives 5 Allocation Categories 6 Driver Based Settlements 9 Distrigas Allocations10 Total Allocations.
Enterprise Resource Planning ERP Systems
Pam Waters Change Management Team Leader DTI – State of Delaware.
Virginia Enterprise Applications Program (VEAP) Agency Information Technology Resource (AITR) Tuesday, May 15 th, 2007
1 © Material United States Department of the Interior Federal Information Security Management Act (FISMA) April 2008 Larry Ruffin & Joe Seger.
Webinar for FY 2011 i3 Grantees February 9, 2012 Fiscal Oversight of i3 Grants Erin McHughJames Evans, CPA, CGFM, CGMA Office of Innovation and Improvement.
Fundamentals I: Accounting Information Systems McGraw-Hill/Irwin Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
Enterprise-Wide Resource Planning Enterprise Resource Planning (ERP) programs are software used by companies to manage information in every area of the.
Evolving Interdependency Between Acquisition and Finance Association of Government Accountants May 2008.
A Presentation to FMI January 2011 Betty-Anne Pratt, CA Provincial Comptroller Province of Manitoba.
McGraw-Hill/Irwin ©2008 The McGraw-Hill Companies, All Rights Reserved Plug-in B10 ENTERPRISE RESOURCE PLANNING.
 The mission of the Human Resources Department is to safeguard the employee’s best interest, as they are Garrison’s most valuable asset, and without.
Re-Engineering and Re-Organisation of the Revenue Management Function Project Overview August 2007.
Enterprise Cybersecurity Strategy
Indiana Regional Sewer District Association October 26, 2015.
Management Information Systems Islamia University of Bahawalpur Delivered by: Tasawar Javed Lecture 3b.
FINANCE GROUP Management Team Corporate Director of Finance Head of Business Support Head of Transactional Services Chief Internal Auditor.
Strategic Advisory Council Accountable Business Transformation Program Friday, March 18, 2011.
Executive Steering Committee Program Advisory Committee February 19, 2015.
Internal Control Process at Geneseo. Objectives Understand the objectives of effective internal controls Describe Geneseo’s internal control program Accurately.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Accounting Guru Cloud ERP (Enterprise Resource Planning) ERP Software https:
Budget Study Sessions Strategic Support Proposed Operating Budget OUTCOMES: - A High Performing Workforce that is Committed to Exceeding.
SYSTEMART, LLC. We Optimize. You Capitalize Business Process Services
Granite Shoals, Texas Audit Presentation September 30, 2016
Cowlitz County, WA Accounting Function Review
SYSTEMART, LLC. We Optimize. You Capitalize Business Process Services
Introduction to Basic ERP Processes
DEPARTMENT OF MANAGEMENT STUDIES
Presentation to the Portfolio Committee on Finance
Public Expenditure Management: Budget Execution
Enterprise Content Management Owners Representative Contract Approval
Shared Services Open Forum
SYSTEMART, LLC. We Optimize. You Capitalize BPO Services
By Jeff Burklo, Director
Legislative-Citizen Commission on Minnesota Resources July 18, 2018
Colorado University October 3, 2007
2017 Administration and Finance Conference
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
MAZARS’ CONSULTING PRACTICE Helping your Business Venture Further
Medium-term estimates
Presentation transcript:

Addressing Internal Controls in State ERP Systems: Being Proactive Aaron Erickson, Chief Operating Officer State of Ohio, Office of Budget and Management Christian Fuellgraf, Director Grant Thornton, Global Public Sector Tom Dale, Director Grant Thornton, Global Public Sector

Our panelists' point of view Our personal experiences have shaped our perspectives. Indiana Encompass The Ohio State University Marriott French Ministry of Finance Ohio OAKS U.S. National Park Service City of Milwaukee Alameda County, CA Riverside County, CA Kentucky HRIS Implementer Client U.S. Department of the Interior FBMS

Overview Internal controls and ERP implementation strategy The State of Ohio experience Putting it together going forward

Sharing the message of internal controls Internal controls comprise both a structure and a systematic methodology to help financial, technology and program managers achieve their mission results and safeguard the integrity of programs. They are a means of managing the risk and improving efficiency associated with programs and operations – done properly they are widely accepted and followed.

ERP drivers and internal control objectives complement each other Achieve better and more efficient fiscal, program and technology management Improve fiscal accountability and safeguard public assets Improve fiscal accountability and safeguard public assets ERP Drivers Utilize technology to streamline operations, transaction accuracy, and processing times Obtain reasonable assurance of the integrity of all fiscal processes via improved systems Create greater visibility and confidence in state data via technology and technology- enabled processes Blueprint for better and more efficient fiscal, program and technology management Methodology to ensure fiscal accountability and safeguard public assets COSO IC An approach that aligns an organizations processes and procedures to reporting, rules and legal requirements Set of standard practices to provide reasonable assurance of the integrity of all fiscal processes A means to create greater visibility and confidence by legislative leadership, opinion leaders and stakeholders into the fiscal and operational integrity of an agency

Common ERP approach This is a good start, but not a complete strategy. Plan Analyze Design Build Test Deploy SDLC Phases Project Management Change Leadership Process Design and Configuration Internal ControlsInformation Technology Training and Documentation ERP Implementation Work Streams

Ohio's implementation approach Elected to do a plain vanilla implementation where business processes are adapted to function within the COTS software Focused on meeting requirements and technical compliance rather than significant re-engineering for leading practices Finance and Supply Chain Purchasing General Ledger Accounts Payable Accounts Receivable Financials Data Warehouse/EPM Billing and Receiving Asset Management Budgeting and Planning Human Capital Management Core HR Payroll Time and Labor ePay HCM Enterprise Performance Management (EPM) Benefits Administration COBRA EPM for Benefits Admin & COBRA

Results Risk assessment identified 108 issues from across State organizations and applications Multiple SAS-70 findings Management Letter comment in statewide single audit - "significant deficiency in IT controls for HCM application" Risk CategoriesRating Asset Management Budget Management Claims Management Financial Reporting Information Technology Payroll Personnel & Organizational Support Program Management Procurement/Expenditures Revenue Management

Implications Vulnerability ratings based on assessment comments and experience Categorized issues into domains: -14 critical -27 high priority Remediation plan in process Four people dedicated to corrective actions plans for next fiscal year

Estimated costs of additional changes Enterprise risk management activities - $1.7 million Process-based assessments of four critical risk areas Estimates do not include performing corrective actions, state project team time or agency time Risk areaHours Financial Reporting1,250 IT3,000 Payroll1,400 Procurement & Expenditures 1,550

Risks of not including internal controls initially Project Delays – System testing will likely show weakness in security and other controls Data Reliability and Process Integrity Issues – Many potential risks from lack of system acceptance to outright fraudulent activity Audit Findings – Audits may comment upon material weakness in the various functional areas Post Go-Live Rework – On average it is 3-5 times more expensive to address issues post-implementation

ERP approach with internal control work stream Plan Analyze Design Build Test Deploy SDLC Phases Project Management Change Leadership Process Design and Configuration Internal Controls Information Technology Training and Documentation ERP Implementation Work Streams

Be control conscious Internal controls should be an integral part of the solution analysis, requirements, design and delivery lifecycle – not an afterthought – involve your auditors Actively involve internal control experts throughout the project lifecycle Build internal control work streams into ERP system solicitation requirements Educate and work with your state and agency CIO's – better internal controls are a good thing for everyone!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.