Presentation is loading. Please wait.

Presentation is loading. Please wait.

NSAA/NASC JOINT MIDDLE MANAGEMENT CONFERENCE April 10-12, 2006 Presented by: David R. Hancox, CIA, CGFM Co-Author: Government Performance Audit in Action.

Published byKevin Stafford Modified over 11 years ago

Similar presentations

Presentation on theme: "NSAA/NASC JOINT MIDDLE MANAGEMENT CONFERENCE April 10-12, 2006 Presented by: David R. Hancox, CIA, CGFM Co-Author: Government Performance Audit in Action."— Presentation transcript:

1 NSAA/NASC JOINT MIDDLE MANAGEMENT CONFERENCE April 10-12, 2006 Presented by: David R. Hancox, CIA, CGFM Co-Author: Government Performance Audit in Action Faculty: Siena College and USDA Graduate School, Washington DC Director of Audits: NYS Comptrollers Office Management's Responsibility for Internal Controls Does anyone get it?

2 David R. Hancox CIA CGFM2 Scrap Your Thinking About Control Controls over people aggravate them The more you control someone – the more they rebel Strong Controls – But the Wrong Controls

3 David R. Hancox CIA CGFM3 Five Components Control Environment Risk Assessment Control Activities Information & Communication Monitoring

4 David R. Hancox CIA CGFM4 The glue that holds it all together Information & Communication –Communication channels in many organizations flow top down. Whats the top know?

5 David R. Hancox CIA CGFM5 Control Environment Characteristic of people who have the skill, knowledge, ability and tools to perform a task –Management must ensure that staff possess the knowledge, skills, and ability necessary to do their jobs –Management must ensure that staff have what they need – such as equipment, software and policy and procedure manuals Competence

6 David R. Hancox CIA CGFM6 Control Environment Management should reflect a commitment to: –Establishing levels of knowledge and skill required for every position –Verifying the qualifications of job candidates –Hiring and promoting only those with the required knowledge and skills –Establishing training programs that help employees increase their knowledge and skills Competence

7 David R. Hancox CIA CGFM7 Control Environment The attitude people have about their work, as exhibited by their confidence, their discipline, enthusiasm and their willingness to perform tasks Morale

8 David R. Hancox CIA CGFM8 Control Environment Management is responsible to maintain good Morale –Staff should have a sense that: Their opinions and contributions are welcomed, valued and recognized The organization is willing to help improve their level of competency There is opportunity for continuous improvement They have a stake in the mission, goals and objective of the organization The lines of communication are open Morale

9 David R. Hancox CIA CGFM9 Control Environment Executive management should set a tone that emphasizes the importance of internal controls, including: –Ongoing education to ensure everyone understands the internal control system and their role in it –An openness to control self evaluations and internal and external audits of controls –Responsiveness to issues raised as the result of the evaluations and audits –Minimal and guarded use of control overrides Supportive Attitude

10 David R. Hancox CIA CGFM10 Components of Internal Controls Risks are events that threaten the accomplishment of objectives There are both internal and external risks Examples of risks include: –Human error –Fraud –System breakdowns –Natural disasters Assessing and Managing Risk

11 David R. Hancox CIA CGFM11 Assessing and Managing Risk Identify each risk in terms of: –Likelihood –Significance or impact –Cause You dont know, what you dont know! Risk Assessment Process

12 David R. Hancox CIA CGFM12 Risk Assessment Process The probability that an unfavorable event would occur if there were no internal controls or limited internal controls Likelihood

13 David R. Hancox CIA CGFM13 Risk Assessment Process A measure of the magnitude of the effect on an organization if the unfavorable event were to occur –Inherent Risk Innate to the program, function or activity Evaluated by the ultimate harm that may be done or the opportunity that may be lost Significance or Impact

14 David R. Hancox CIA CGFM14 Risk Assessment Process The Reason why an unfavorable event may occur Cause

15 David R. Hancox CIA CGFM15 LIKELIHOODLIKELIHOOD High Low High Impact Judgment Required

16 David R. Hancox CIA CGFM16 Risk Assessment Process How to manage risk How to prevent or reduce risk How to schedule the frequency of internal control system evaluations How to manage risk during change Risk Assessment Considerations

17 David R. Hancox CIA CGFM17 Risk Assessment Process Accept the risk: Do not establish control activities Prevent or reduce the risk: Establish control activities Avoid the risk: Do not carry out the function Managing Risk

18 David R. Hancox CIA CGFM18 Risk Assessment Process What is the cause of the risk? What is the cost of control vs. the cost of the unfavorable event? What is the priority of this risk? Preventing or Reducing Risk

19 David R. Hancox CIA CGFM19 Risk Assessment Process New processes New systems Changes in job responsibilities Reorganizations Changes in personnel Managing Risk During Change

20 David R. Hancox CIA CGFM20 Control Activities The cost of the control activity should not exceed the cost incurred if the undesirable event occurred Build control activities into business processes and systems as the processes and systems are being designed The distribution of resources among the control activities should be based on the significance and likelihood of the risk it is preventing or reducing Control Activity Considerations

21 David R. Hancox CIA CGFM21 Control Activities Preventive –Approvals, authorizations Detective –Reconciliations, audits Categories

22 David R. Hancox CIA CGFM22 Obsolete Control Activities Documentation Approval and Authorization Separation of Duties – in many cases Commonly Used Control Activities

23 David R. Hancox CIA CGFM23 Important Control Activities Verification Supervision Safeguarding Assets Reporting

Download ppt "NSAA/NASC JOINT MIDDLE MANAGEMENT CONFERENCE April 10-12, 2006 Presented by: David R. Hancox, CIA, CGFM Co-Author: Government Performance Audit in Action."

Similar presentations

Internal Control Integrated Framework

Internal Control Integrated Framework
EMS Checklist (ISO model)

EMS Checklist (ISO model)
An Internal Control Overview

An Internal Control Overview
Internal Control–Integrated Framework

Internal Control–Integrated Framework
Control and Accounting Information Systems

Control and Accounting Information Systems
2008 Financial Management Institute of Canada – Manitoba Chapter Professional Development Day Presented by: David R. Hancox, CIA, CGFM Co-Author: Government.

2008 Financial Management Institute of Canada – Manitoba Chapter Professional Development Day Presented by: David R. Hancox, CIA, CGFM Co-Author: Government.
Prepared by Wa'el Bibi,CPA,CIA,CISA1 Internal Control Integrated Framework An Overview.. Bibi Consulting COSO’s Source: COSO’s Internal Control Integrated.

Prepared by Wa'el Bibi,CPA,CIA,CISA1 Internal Control Integrated Framework An Overview.. Bibi Consulting COSO’s Source: COSO’s Internal Control Integrated.
STATE OF NEW YORK OFFICE OF THE STATE COMPTROLLER New York State Office of the State Comptroller Thomas P. DiNapoli, Comptroller Office of Operations John.

STATE OF NEW YORK OFFICE OF THE STATE COMPTROLLER New York State Office of the State Comptroller Thomas P. DiNapoli, Comptroller Office of Operations John.
INTERNAL AUDIT PROCESS Pre-Audit Presentation. OBJECTIVES OF PRESENTATION  Provide a basic understanding of internal audit  Provide a basic awareness.

INTERNAL AUDIT PROCESS Pre-Audit Presentation. OBJECTIVES OF PRESENTATION  Provide a basic understanding of internal audit  Provide a basic awareness.
Office of Operations 2009 Fall Conference Navigating Uncertain Times October 21-22, 2009 Risk Assessment and Internal Controls Internal Controls Anna Tomassacci.

Office of Operations 2009 Fall Conference Navigating Uncertain Times October 21-22, 2009 Risk Assessment and Internal Controls Internal Controls Anna Tomassacci.
1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.

1 INTERNAL CONTROLS A PRACTICAL GUIDE TO HELP ENSURE FINANCIAL INTEGRITY.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.

Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Accountability and Grants Management:

Accountability and Grants Management:
Review of Introduction to Auditing

Review of Introduction to Auditing
Internal Control Concepts A Guide for Deans, Directors, and Department Chairs.

Internal Control Concepts A Guide for Deans, Directors, and Department Chairs.
6-1 McGraw-Hill/Irwin ©2002 by The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 Internal Control Evaluation: Assessing Control Risk.

6-1 McGraw-Hill/Irwin ©2002 by The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 Internal Control Evaluation: Assessing Control Risk.
Office of Inspector General (OIG) Internal Audit

Office of Inspector General (OIG) Internal Audit
Purpose of the Standards

Purpose of the Standards
Presented By: Donna Denker, CPA Donna Denker & Associates.

Presented By: Donna Denker, CPA Donna Denker & Associates.
1 Dept of Finance & Management. 2  In January 2005, the Department of Finance & Management embarked on a statewide initiative to strengthen internal.

1 Dept of Finance & Management. 2  In January 2005, the Department of Finance & Management embarked on a statewide initiative to strengthen internal.

Similar presentations

Ads by Google