Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha.

Slides:



Advertisements
Similar presentations
PwC Corporate Compliance vs. Enterprise-Wide Risk Management Brent Saunders, Partner (973) November 2002.
Advertisements

Pharmaceutical Congress Spring 2003 Preconference Symposia Compliance 101 for Pharmaceutical Manufacturers Michael P. Swiatocha June 8, 2003.
Organizational Governance
Operational Risk Questionnaire
Internal Control–Integrated Framework
Freshfields Bruckhaus Deringer LLP Global investigations What to advise your board Marius Berenbrok Edward Braham Matthew Herman Melissa Thomas 29 February.
1616 Guadalupe Street, UTA (512) ▪ (512) (fax)
Control and Accounting Information Systems
Control and Accounting Information Systems
Project Management Risk Management. Outline 1.Introduction 2.Definition of Risk 3.Tolerance of Risk 4.Definition of Risk Management 5.Certainty, Risk,
Development of internal control: methodology and responsibility
Understanding & Managing Risk
Presented by Muhamad Abrar Bahaman W. Fatimatul Akmar Md. Hassan
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
Learning Objectives LO1 Describe the conceptual audit risk model and its components. LO2 Explain the usefulness and limitations of the audit risk model.
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.
Title slide PIPELINE QRA SEMINAR. PIPELINE RISK ASSESSMENT INTRODUCTION TO GENERAL RISK MANAGEMENT 2.
Internal Control and Internal Audit
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.
Corporate Ethics Compliance *
“The Impact of Sarbanes Oxley, An Evolving Best Practice” Ellen C. Wolf Senior Vice President & Chief Financial Officer American Water National Association.
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
Privileged and Confidential Strategic Approach to Asset Management Presented to October Urban Water Council Regional Seminar.
Control environment and control activities. Day II Session III and IV.
Information Technology Audit
Consultancy.
Audits & Assessments: What are the Differences and How Do We Learn from the Results? Brown Bag March 12, 2009 Sal Rubano – Director, Office of the Vice.
Global Risk Management Solutions Risk Management and the Board of Director: Moving Beyond Concepts to Execution Anton VAN WYK Partner, Global Risk Management.
Equity Housing Group Risk Management. 05 August 2002 © MazarsEquity Housing Group: Risk Management 2 Agenda Introduction: what is Risk Management? The.
1 Enterprise Risk Management (ERM) Program PNM Resources, Inc. March 29, 2007 Presentation to American Public Power Association March 2007 Austin, Texas.
PROJECT RISK MANAGEMENT Presentation by: Jennifer Freeman & Carlee Rosenblatt
Pharmaceutical Regulatory and Compliance Congress and Best Practices Forum Compliance and Enterprise Risk Management: Leveraging Opportunities Caroline.
Fourth Annual Medical Research Summit Concurrent Session 4.05 – Managing CROs and SMOs from a Compliance Perspective Michael SwiatochaAprill 23, 2004.
Introduction to Internal Control Systems
Copyright T. Rowe Price. All rights reserved 1 Ms. Deborah D. Seidel of T. Rowe Price Financial Services Vice President and Manager of Compliance.
Chapter 5 Internal Control over Financial Reporting
Introduction In 1992, the Committee Of Sponsoring Organizations of the Treadway Commission (COSO) published Internal Control-Integrated Framework (1992.
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
Balance Between Audit/Compliance and Risk Management- Best Practices FIRMA 21 st National Training Conference Julia Fredricks, U.S. Chief Compliance Officer.
RISK MANAGEMENT : JOURNEY OR DESTINATION ?. What is Risk? “ Any uncertain event that could significantly enhance or impede a Company’s ability to achieve.
Section Topics Risk and control terminology Risk elements
Agenda for Session Compliance in Clinical Research
An Update of COSO’s Internal Control–Integrated Framework
Presented to Managers. INTERNAL CONTROLS are the integration of the activities, plans, attitudes, policies and efforts of the people of an organization.
Developing an Investment Governance Framework
Risk Management for Small & Medium Sized Enterprises
The Second Annual Medical Device Regulatory, Reimbursement and Compliance Congress Presented by J. Glenn George Thursday, March 29, 2007 Day II – Track.
Chief Compliance Officer
Can Your Compliance Program Manage All of Your Organization's Risks? Discussing the Proposition of Enterprise Wide Risk Management February 6, 2003 PwC.
Governance for SMEs Nigeria
-To insert a Zurich picture click on the "camera"-icon in the Zurich CI toolbar and follow the instructions. -To insert a picture from your personal files,
1 Compliance vs. the Law Department: How to Work Together Michael Dusseau Senior Director, Compliance North America Schering-Plough David Ralston, Esq.
Managing Uncertainty, Creating Opportunity Enterprise Risk Management J. Brown, CEO.
The Proactive Risk Assessment: Keeping it Fresh. PRESENTER John Snell, CIA John is a partner at Moss Adams and has performed internal audit, enterprise.
1 COSO ERM Framework Update Our Next Challenge and Opportunity September 2015.
Dolly Dhamodiwala CEO, Business Beacon Management Consultants
Valiants Verify Compliance Program Judith W. Spain, J.D., CCEP ® Chief Ethics and Compliance Officer General Counsel (Effective March 2016) 1.
Organizations of all types and sizes face a range of risks that can affect the achievement of their objectives. Organization's activities Strategic initiatives.
#327 – Legal and Regulatory Risk: Silent and Possibly Deadly Deborah Frazer, CPA CISA CISSP Senior Director, Internal Audit PalmSource, Inc.
Introduction to Enterprise Risk Management (“ERM”)
An Overview on Risk Management
Internal audit strategic risk assessment and audit planning process
COSO Internal Control s Framework
Internal control - the IA perspective
Enterprise Risk Management (ERM) at Clayton State University
2017 Administration and Finance Conference
Defining An Effectiveness Standard
An Update of COSO’s Internal Control–Integrated Framework
RISK RATING GUIDE APPENDIX C LIKELIHOOD RATING Rating Description
Presentation transcript:

Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha March 6, 2003

1 Agenda Introduction to Compliance Traditional Compliance Assessments Enterprise Wide Risk Management (EWRM) in R&D Risk Assessment Approach Pharmaceutical Case Study Questions & Answers

2 Compliance Program A compliance program is a management process comprised of formal reporting structures and risk mitigation systems designed to motivate, measure, and monitor an organization’s legal and ethical performance around complex business practices.

3 Seven Elements of a Compliance Program Standards & Procedures Oversight Responsibility Education & Training Lines of Communication Monitoring & Auditing Enforcement & Discipline Response & Prevention

4 Information Technology Pharmaceutical & Medical Products Value Chain Infrastructure Support Sales & Marketing Research & Development Operations Human Resources, Finance, Legal Compliance Programs Address All Components of the Value Chain

5 Transitioning from Traditional Compliance Programs Standards & Procedures Oversight Responsibility Education & Training Lines of Communication Monitoring & Auditing Enforcement & Discipline Response & Prevention QAU Internal Audit EWRM

6 Enterprise Wide Risk Management Best in class organizations are embedding their compliance programs into an expanded view of enterprise wide risk management (EWRM) Compliance transitions from a reactive, process intensive activity to a dynamic program enabling the organization to manage a broad range of changes that can impact its performance EWRM defines risks as events or activities that can affect the achievement of an organization’s goals EWRM addresses all organizational goals, objectives and relationships with key stakeholders including R&D EWRM is an anticipatory, proactive process that becomes a key part of strategy and planning. EWRM helps mitigate surprises and ensures all organizations are aligned with key objectives

7 Enterprise Wide Risk Management Reactive Proactive Strategic Building in an Enterprise Wide Risk Management program: Current best practice Pulling together the disciplines that address both sides of risk – minimizing uncertainty and maximizing opportunities – the concept pushes an organization to address risks and their management explicitly – as part of everyday business Most Organization’s Today? Risk & Compliance External Reporting Strategy Building Enterprise Risk Assessment Control Self Assessment Enterprise Wide Risk Management Program Complying with known laws and regulations Seeking to meet industry compliance requirements Managing crisis

8 An Approach to EWRM Risk Assessments Potential Impact of Risk Probability Primary Exposure Control Mechanisms Accountability

9 An Approach to EWRM Rating the Potential Impact of Risk The Impact on financial, operational and/or legal implications can be considered as well as the ability to achieve the stated objective in the face of that risk.  Low - if the impact of the risk would have some financial, operational and/or legal implications and require attention, but is no greater than an irritant to the organization  Medium - if the impact of the risk would have significant financial, operational and/or legal implications, and/or would significantly delay the ability to achieve the objectives or otherwise affect it  High - if the impact of the risk would have major financial, operational and/or legal implications and/or it is so significant one would need to abandon the objectives

10 An Approach to EWRM Rating the Probability of Occurrence For rating the Probability of risks, the frequency of historical events can be considered as well as current outlook.  Low - occurrence is unlikely  Medium – occurrence is somewhat likely  High - occurrence is very likely

11 An Approach to EWRM Identifying the Primary Exposures Identify the Primary Exposure to indicate the direct exposure facing an organization using categories such as:  Government Enforcement  Regulatory Violation  Financial Loss  Reputational Damage  Failure to comply with internal policy  Inefficiencies and/or excessive costs  Inappropriate financial reporting or disclosure  Legal Risk

12 An Approach to EWRM Control Mechanisms For all risks with a high composite rating for impact and probability, existing Control Mechanisms should be considered. An organization’s management should apply a rating corresponding to the level of control, such as the following:  Policies and procedures exist and are tested as part of external or internal audits, and/or monitoring controls are in place  Policies and procedures exist  Policies and procedures are in the early stages of development  Policies and procedures do not exist Accountability

13 Pharmaceutical Case Study Functional Areas# of Risks Identified# of “High” Risks Identified # of “High” Risks Identified w/Limited Controls in Place Sales & Marketing22148 R&D44123 Manufacturing4551 Regulatory Affairs2661 Financial Reporting1580 HR42122 IT862 International1682

14 For more information, contact Michael P. Swiatocha Director, Client Services PricewaterhouseCoopers, LLP 400 Campus Drive Florham Park, NJ

R E S H A P I N G T H E W O R L D O F e P R O C U R M E N T Questions & Answers

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.