FRAUD RISK ASSESSMENT AND ANTI-FRAUD MEASURES ESIF

Slides:

Advertisements

Similar presentations

THE CERTIFYING AUTHORITY

Advertisements

DRAFT GUIDANCE NOTE FOR MEMBER STATES ON FRAUD RISK ASSESSMENT

The Managing Authority –Keystone of the Control System

“Train the trainers” seminar

1 Managing Authority Conducting a self assessment 10 June 2008 A. Badrichani – DG Regional Policy – Audit Unit J3.

Management verifications Franck Sébert European Commission DG Employment, Social Affairs and Equal Opportunities.

European Union Cohesion Policy

Child Safeguarding Standards

AUDITING COHESION AND STRUCTURAL FUNDS IN SLOVENIA Nataša Prah Ljubljana, 

Introduction to the Investigative Audit Services Group.

Examples of Best Practices: Anti- corruption Strategy of the TCA Musa KAYRAK Senior Auditor, CISA.

Mr Leif HÖGNÄS, Fraud Prevention Officer DG Regional and Urban Policy

IS Audit Function Knowledge

Office of Inspector General (OIG) Internal Audit

BS EN ISO 14001:2004 Madlen King BSc MSc MIEMA EMS Lead Assessor Lloyd’s Register Quality Assurance Ltd BS EN ISO 14001:2004.

Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.

Minnesota Adoption of the Green Book April 16, 2015 Jo Kane Internal Control & Accountability Specialist.

Performance Audit Fraud management in local government Report 19: David Toma Manager 24 July 2015.

An Educational Computer Based Training Program CBTCBT.

Financial management Management and control systems Training for Programme Operators March 2012.

SEMINAR on the EEA Financial Mechanism THE EUROPEAN COMMISSION DIRECTORATE- GENERAL REGIONAL POLICY Brussels 13 June 2005 Control and Audit Nicholas Martyn.

Presented to President’s Cabinet. INTERNAL CONTROLS are the integration of the activities, plans, attitudes, policies and efforts of the people of an.

Portfolio Committee on the Department of Police Auditor’s General perspective 2 March 2010.

2014 China-EU High Level Forum “China and EU Dialogue: Rule of Law” Subtopic reforming the System of law enforcement: development of administrative oversight.

How does the ECA assess Member States’ internal control systems? Workshop on Audit/Evaluation of Public Internal Financial Control Systems (PIFC) Ankara,

Anti-fraud and anti-corruption measures in relation to the use of European Structural and Investment (ESI) Funds DG Regional and Urban Policy Pascal Boijmans.

© OECD A joint initiative of the OECD and the European Union, principally financed by the EU. Quality Assurance José Viegas Ribeiro IGF, Portugal SIGMA.

Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.

Audit Authority and Auditors Group of “European Territorial Cooperation” Programmes for Lessons to be learnt from the INTERREG IIIB NWE Auditors.

DEPARTMENT OF DEFENCE Briefing on Audit Outcomes Year ended 31 March 2010 AGSA AUDIT TEAM.

SAI India Country Report

The Audit as a Management Tool Vermont State Auditor’s Office – April 2009.

POVT Managing Authority A sound Internal Control System A challenge for the period.

Risk Management & Corporate Governance 1. What is Risk?  Risk arises from uncertainty; but all uncertainties do not carry risk.  Possibility of an unfavorable.

Regional Policy Delegated act on irrecoverable amounts (IRR) (Fiche 34, version 2, 25 November 2014) DG Regional and Urban Policy.

MOSCOW, NOVEMBER 12 – 14, THE RESEARCH 1.Respondents 8 respondents from SAI Indonesia : auditor, investigator, R &D 2.Time 3 weeks (Sept to Oct.

Workshop on Implementing Audit Quality Practices Working Group on Audit Manuals and Methods March 2006 Vilnius (Lithuania) Hungarian Experiences.

Regional Policy Management and control systems Franck Sébert, DG Regional and Urban Policy, Head of Unit C1 NINETEENTH MEETING OF THE EXPERT.

A Guide for Management. Overview Benefits of entity-level controls Nature of entity-level controls Types of entity-level controls, control objectives,

Regional Policy FRAUD RISK ASSESSMENT AND MANAGEMENT Article c) CPR ESIF Rafael López Sánchez, Deputy Head of Unit C.1 DG Regional and.

Regional Policy FRAUD RISK ASSESSMENT AND ANTI-FRAUD MEASURES Article c) CPR ESIF Mr Leif HÖGNÄS, Fraud Prevention Officer DG Regional.

Closure of the Programming Period ESF TWG Luxemburg 2 nd December 2015.

LATVENERGO GROUP COMPLIANCE AND FRAUD RISK MANAGEMENT Kristine Arensone Compliance officer

1 Prevention of corruption in the private sector: the view from the Anti-Fraud Office of Catalonia Reducing corruption: focusing on private sector corruption.

SOLGM Wanaka Retreat Health and Safety at Work Act 2015 Ready? 4 February 2016 Samantha Turner Partner DDI: Mob:

EN EUROPEAN COMMISSION Budgetary Control Committee of European Parliament Budgetary Control Committee of European Parliament Brian Gray DG BUDGET Workshop.

1 Fraud indicators for ERDF, ESF and CF Leif HÖGNÄS, DG Regional Policy “Train the trainers” European Commission seminar for managing and certifying authorities.

Internal Controls For Municipalities Vermont State Auditor’s Office – August 2008.

EN DG Regional Policy & DG Employment, Social Affairs & Equal Opportunities EUROPEAN COMMISSION Luxembourg, May 2007 Management and control arrangements.

Internal Audit Section. Authorized in Section , Florida Statutes Section , Florida Statutes (F.S.), authorizes the Inspector General to review.

WORKSHOP ON ACCREDITATION OF BODIES CERTIFYING MEDICAL DEVICES INT MARKET TOPIC 6 CH 5 ISO MANAGEMENT RESPONSIBILITY Philippe Bauwin Medical.

Welcome. Contents: 1.Organization’s Policies & Procedure 2.Internal Controls 3.Manager’s Financial Role 4.Procurement Process 5.Monthly Financial Report.

Financial Implementation of the Assistance from the Structural Funds and the Cohesion Fund of the EU Sylvia Indjova Head of Certifying Authority Director.

An exposure to COMPLIANCE AUDIT By- Vishal Chawre DAG(A/c & VLC) O/o AG(A&E), Nagpur.

PRESENTATION TO THE PORTFOLIO COMMITTEE ON COOPERATIVE GOVERNANCE & TRADITIONAL AFFAIRS PRESENTER: MR V MADONSELA 13 NOVEMBER 2012.

Evaluation : goals and principles

Understanding the Principles and Their Effect on the Audit

Internal control - the IA perspective

Role & Responsibilities

Audit Requirements, Risk and Anti Fraud

Management Verifications & Sampling Methods

Audit Requirements, Risk and Anti Fraud

Corruption Measures for Identifying and Reducing Fraud and Corruption Risks in Public Procurement.

The Elements of appropriate Internal Controls

Management Verifications & Sampling Methods

Nicholas Martyn DG Regional Policy

La strategia antifrode del Programma e informativa sulle frodi sospette JS Interreg MED Bologna, 30/01/2018.

Management & Control, Designation of Authorities State of play

Internal Audit’s Role in Preventing Fraud and Corruption

Good practices for risk assessment and control activities

Presentation transcript:

FRAUD RISK ASSESSMENT AND ANTI-FRAUD MEASURES ESIF 2014-2020 Mr Leif HÖGNÄS, Fraud Prevention Officer DG Regional and Urban Policy

New obligations 2014-2020 Managing authorities: Audit authorities: 1) Put in place a minimum set of effective and proportionate anti-fraud measures 2) Carry out a fraud risk assessment Audit authorities: 3) Verify whether the MA's fraud risk assessment is credible and provides a true and fair assessment of the risks and verify that adequate anti-fraud measures are in place to mitigate against the risks

Minimum anti-fraud requirements are set out in Article 125 Minimum anti-fraud requirements are set out in Article 125.4 c) of Regulation 1303/2013 "As regards the financial management and control of the operational programme, the managing authority shall put in place effective and proportionate anti-fraud measures taking into account the risks identified"

Related requirements in Regulation 1303/2013 The management and control systems shall provide for the prevention, detection and correction of irregularities, including fraud (Article 72) Member States must notify to OLAF all irregularities which exceed EUR 10 000 in EU contribution (Article 122)

Commission's guidance on fraud risk assessment and anti-fraud measures is available: - on the anti-fraud platform of SFC - transmission to all Permanent Representations - contact us: e.g leif.hognas@ec.europa.eu

Other anti-fraud guidance on SFC - Information note on fraud indicators for ERFD, ESF and CF (COCOF 09/0003/00-EN) - compendium of anonymised cases - OLAF's practical guide on conflict of interest - OLAF's practical guide on detection of forged documents - forthcoming guides from OLAF in 2014: 1) on anti-fraud stragies and 2) the role of auditors in anti-fraud work

Key anti-fraud principles - zero tolerance to fraud - the right tone from the top - a proactive, structured and targeted approach to managing the risk of fraud - main objective: proactive and proportionate anti-fraud measures with cost-effective means DUTY TO PROTECT TAXPAYERS' MONEY !

Guidance on minimum requirements for effective and proportionate anti-fraud measures The anti-fraud cycle: prevention, detection, correction and prosecution

Guidance on minimum requirements for effective and proportionate anti-fraud measures Anti-fraud policy: • strategy for the development of an anti-fraud culture • allocation of responsibilities for tackling fraud • reporting mechanisms for suspicions of fraud • cooperation between the different national actors

Guidance on minimum requirements for effective and proportionate anti-fraud measures Prevention: - commitment to combat fraud and corruption - raise awareness internally and externally about preventative and detective controls - transmit cases to the competent authorities for investigations and sanctions - state the anti-fraud policy visibly: DETER FRAUDSTERS! - template for anti-fraud policy in the guidance (Annex 3)

Guidance on minimum requirements for effective and proportionate anti-fraud measures Detection: - obviously, preventative techniques cannot provide absolute protection against fraud - complement your risk assessment and detect suspected cases timely (use e g the ARACHNE tool) - develop an appropriate mindset - embed fraud indicators in checklists (red flags)

Guidance on minimum requirements for effective and proportionate anti-fraud measures Reporting mechanisms: - mechanisms should facilitate the reporting of both suspicions of fraud and control weaknesses that may increase the MA's susceptibility to fraud - sufficient coordination on anti-fraud matters with the audit authority and competent investigative authorities in the Member State, including anti-corruption authorities

Guidance on minimum requirements for effective and proportionate anti-fraud measures Communication and training with staff about reporting mechanisms must ensure that staff: - understands where they should report suspicions of fraudulent behaviour or control weaknesses - are confident that they can report in confidence and that the organisation does not tolerate retaliation against any staff member who reports suspicions

Guidance on minimum requirements for effective and proportionate anti-fraud measures Investigation, correction and prosecution: - refer cases for investigation in accordance with internal and EU requirements (report to national competent body and OLAF) - recover affected amounts after known financial impact and reimburse to the EU budget - criminal prosecution, as relevant

Guidance on minimum requirements for effective and proportionate anti-fraud measures Why did the fraud case occur? Learn the lessons! Objective and self-critical examination which should result in clear conclusions about perceived weaknesses and lessons learned, with clear remedial actions as necessary, responsible individuals and deadlines

Fraud risk assessment tool

Commission's guidance provides a tool which can mitigate fraud risks 1) Managing authorities are asked to assess the degree of exposure to specific fraud risks using the assessment tool provided by the Commission already at designation stage 2) The type of additional anti-fraud measures to be put in place should take into account already existing mitigating controls 3) Proportional and effective: a higher fraud risk requires that anti-fraud measures are stepped up 4) During the programming period, the fraud risk assessment should be carried out annually or every second year

The tool focuses on fraud risks in relation to three key processes 1) Selection of applicants 2) Implementation and verification of the operations (including public procurement-related fraud risks) 3) Certification and payments

Assess and mitigate against e g the following specific fraud risks: - Undisclosed conflict of interest, bribes and kickbacks at project selection stage - Deliberate avoidance of competitive procedures in public procurement (e g unjustified single source award) - Manipulation of public procurement procedures (e g rigged specifications) - Collusive bidding - False or inflated invoices

Basic steps 1) assess the ‘gross’ risk (= impact x likelihood) of specific pre-identified risks occurring under each of the three key processes (plus add any other identified risks) 2) identify and assess the effectiveness of controls already in place to mitigate against the identified specific fraud risks 3) assess the net risk 4) as necessary, put in place any further mitigating controls

Practical example (cont.) CALCULATE GROSS RISK OF EACH SPECIFIC FRAUD RISK - the total risk score will be automatically calculated by the tool by multiplying the score given by the assessment team to risk impact and risk likelihood ASSESS EXISTING CONTROLS IN PLACE FOR EACH SPECIFIC FRAUD RISK - assess effect of existing controls on risk impact and risk likelihood (i e gross risk) by providing a score for each ASSESS NET RISK AFTER CONTROLS - the net risk score (i e the risk after current controls) is automatically calculated by the tool

Practical example (cont.) ACTION PLAN - when necessary, introduce a mitigating control against a specific net risk which is significant or critical - E g suggested control to mitigate against product substitution (Annex 2): requirement by MA for beneficiaries to request works certificates or other forms of verification certificates, awarded by an independent third party, on the completion of the contract. TARGET FRAUD RISK LEVEL - target risk is automatically calculated by the tool

How to use the tool (Annex 1 of the guidance provides a manual)

Audit authorities' verification

Audit authorities' verification of the fraud risk assessment –checklist provided in Annex 4 of the guidance - designation phase: report and opinion of an independent body (can be audit authority) - compliance with Article 125.4 c) during 2014-2020

Audit authorities' verification of the fraud risk assessment - in connection with audits on the functioning of the management and control systems, the audit authority should carry out verifications of the effective implementation of the anti-fraud measures by the MA as early as possible in the programming period. - depending on the results of such audits and on the identified fraud risk environment, follow-up audits may be carried out as often as necessary

Audit authorities' verification of the fraud risk assessment Does the fraud risk assessment cover the specific fraud risks in relation to - the selection of applicants? - the implementation and verification of the operations? - the certification and payments?

Audit authorities' verification of the fraud risk assessment Process of the risk assessment: - was the assessment team appropriately composed of members from representative departments? - is there evidence that sources of information such as audit reports, fraud reports and control self-assessments were taken into account during the risk assessment process?

Process of the risk assessment cont.: - was the self-assessment process clearly documented, allowing for clear review of the conclusion reached? -is there evidence that senior management had adequate oversight and/or involvement in the process and that approved the net level of risk exposure?

Verification of the assessment of the gross risk Review a sample of risks from the assessment tool: taking into account the results of the assessment of the gross risk of fraud, does the assessment seem credible? Has the total gross risk been calculated correctly and has it been correctly graded (tolerable, significant, critical)?

Verification of the assessment of the net risk Review a sample of risks from the assessment tool: taking into account the results of the assessment of existing controls in place to mitigate against the gross risk, does the assessment seem credible? Has the net risk been calculated correctly and has it been correctly graded (tolerable, significant, critical)?

Putting in place additional controls, as necessary Review a sample of risks from the assessment tool: when the net risk is higher than significant or critical, has this lead to putting in place appropriate additional controls in order to reduce the target risk to a tolerable level?

Verification of adequate frequency of the fraud risk assessment Is there an adequate procedure in place ensuring that the risk assessment is repeated during the programming period, its frequency depending on risk levels and the actual instances of fraud?

QUESTIONS?