Lloyd s Managing Agents FSA Solvency II Data Audit

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Lloyd s Managing Agents FSA Solvency II Data Audit"

Transcription

1 Lloyd s Managing Agents FSA Solvency II Data Audit Working in partnership with you to provide the independent assurance that your Data Audit Report fulfils Lloyd s and FSA Solvency II requirements

2 Lloyd s Managing Agents FSA Solvency II Data Audit FSA Solvency II Data Audit The FSA Solvency II Data Audit (Data Audit) is a component of the FSA s Solvency II Internal Model Approval Process (IMAP). It assesses all internal and non-proprietary external data which may materially impact the design and function of the proposed internal model. The Data Audit is focussed on the key sub-risks around aspects of data policy; oversight and governance; data; vulnerabilities and impact; data quality and data processing. Following completion of this assessment, the results should be presented in a Data Audit Report. Lloyd s requires all Managing Agents to submit a Data Audit Report by 15 June 2012 to Lloyd s. The primary purpose of the Data Audit Report is to demonstrate that an Agent s data management policies comply with the tests and standards set out in the Solvency II Directive to achieve internal model approval. Purpose of the Data Audit Report The primary purpose of the Data Audit Report is to demonstrate that an agent s data management policies comply with the tests and standards set out in the Solvency II directive. In addition, the Data Audit Report should demonstrate how the overall risk that the data used in the internal model does not meet the Solvency II requirements on data quality (complete, accurate, appropriate and timely) is considered. This overall risk is split into five sub-risks. As per Lloyd s Data Audit Report Guidelines (Draft) February 2012 Ownership and Independence The Data Audit Report should be produced as a result of a review conducted by a suitably qualified person, independent from the individuals responsible for the design, build, parameterisation and implementation of the internal model. The author of the Data Audit Report must therefore be independent of the normal operation of the model (e.g. Internal Audit). In conducting the review, the reviewer should apply professional judgement in deciding how the controls are assessed (e.g. sample size, depth of document review, interviewees, etc.) and how effective they are in addressing the risk. The review is not intended to assess the appropriateness of actuarial Expert Judgements with regards to data used in the Internal Model. However, any data, internal or external, (e.g. claims history, bond price movements, loss events, etc.) on the basis of which material expert judgments/assumptions and model calibrations are made, should be included in scope. The reviewer may make use of previous independent reviews (e.g. SOX compliance assessments, Internal/External Audit work, etc.), so long as the data, assumptions, calculation methodology and IT environment reviewed have not changed significantly. Where a managing agent makes use of previous reviews for this purpose, the agent should provide some explanation and justification as to why the previous review is still relevant and also for its use. As per Lloyd s Data Audit Report Guidelines (Draft) February 2012

3 Key requirements The scope of the Data Audit has now been defined through the draft Lloyd s guidance (with final versions due for issue on 30 March 2012) and has been developed in line with the FSA s published requirements. The challenges faced by Managing Agents in response to fulfilling the Data Audit requirements are extensive. Below we list the key areas, questions and objectives that the audit will need to address: Requirement Area Key Questions to Consider Key Control Objective(s) Data Policy How can we ensure our framework in respect of data is sustainable for the future? Are existing data policies, procedures and standards suitable? How can we develop or improve? Have we defined ownership and how data policies will be embedded into the organisation? Ensuring consistency in data policies and adherence to required Solvency II standards of data governance Oversight and Governance Data use, vulnerabilities and impact Data quality Data processing Do management really have a solid understanding of internal model data? Have we robust oversight and challenge of Management Information (MI) and data processes? Are exceptions and limitations in data understood, suitably investigated and corrected? How should we best set materiality, in the context of significant amounts of data? Do we understand where our data origination sources are? How do we maintain such data in an appropriate manner for model and other business use (e.g. MI generation)? Are agreed quality standards per our data policy being adhered to consistently? Are we able to critically evaluate all our IT General Controls within the IT control environment? Do we have effectively designed and operating IT controls (such as data security, change control and processing of data) to support corresponding data management controls? Is the information generated by end-user computing susceptible to distortion or manipulation, due to lack of controls to data amendments? Management have a thorough understanding of, and are accountable for reviewing, internal model data processes Recognising and remediating data errors, omissions or inaccuracies which may compromise data quality Assurance over data materiality and ensuring its consistent application throughout the organisation Maintenance of data quality standards to ensure demonstrable accuracy, appropriateness, completeness and timeliness Adequacy of technical expertise available to the firm Maintaining robust IT General Controls (e.g. change management and access controls) to safeguard data integrity. Issues around controls design and effectiveness around spreadsheets, SQL databases and other end user computing applications, which may be less controlled

4 Given the requirements and challenges noted in the adjacent table, a diverse set of skill-sets will be required to perform this audit and the review must be performed by suitably qualified individuals who are independent of model design, build, and operation (as per the Lloyd s Data Audit Report draft guidance published in February 2012 and the FSA External Review guidance published in July 2011). Managing Agents should be actively seeking specialist review assistance now to ensure the regulatory timeline for Data Audits is met and that a robust, independent and objective review is performed (in line with the Lloyd s draft guidance). Grant Thornton s data review and data management professionals are able to provide assurance to your Management and Non- Executives, Lloyd s and the FSA that they are compliant with the requirements. We feel our team s experience of supporting clients in the marketplace enables us to provide you with pragmatic, and independent audit challenge. Our approach to completing the Data Audit To address the requirements of the Data Audit, we have split our approach into 2 sections: 1 Foundation elements and 2 Specific elements Foundation elements Examining the adequacy of the oversight of data by management and the effectiveness of IT General Controls Specific elements Performing detailed analysis over data policies, quality and usage through 3 aspects The understanding of data management principles Experience of advising clients on data framework enhancements Where applicable, the use of data interrogation tools

5 Lloyd s Managing Agents FSA Solvency II Data Audit The Lloyd s Timeline for Data Audits Managing Agents are required to complete Data Audits between May and June 2012, with final Data Audit Reports due for submission to Lloyd s on 15 June 2012: Feb March April May June t *10 February 2012 Draft Data Report guidance t t *30 March 2012 Final Data Audit Report guidance *15 June 2012 Data Audit Report due Our experience and how we can help Grant Thornton s experienced data review and data management professionals are ideally placed to perform your Data Audit. We will draw on our experienced IT and business audit specialists to deliver objective, efficient and robust data audit assurance. We have experience of: objectively examining all required aspects of Solvency II data management (including data policy, governance, limitations, processing and IT environment including change management and spreadsheet assurance), using our highly experienced Technology Audit, Data and IT specialists working closely with key business areas (such as modelling teams, risk specialists, IT and Compliance) to fully understand and evaluate data management and data quality against Solvency II and FSA requirements providing assurance over all areas of IT environment, technology, tools and subsequent processing and controls and evaluating the impact on data management assessing the use of non-proprietary external and third-party data reliance, policies, processes and agreements, as well as corresponding internal governance and oversight delivering high quality audit evidence and results to fulfil the designated Lloyd s scope, detailing the assessment of internal control design and operating effectiveness, assessment of business process flows and gap analysis providing a continued presence to support future discussions with senior stakeholders and Lloyd s where required.

6 Why Grant Thornton? Grant Thornton can assist your organisation with the Lloyd s Data Audit through: highly experienced audit professionals, with dedicated specialist Data and IT staff and unparalleled access to deep expertise and relationship oversight proven experience using a specialist resource with regulatory and industry insight, allowing your organisation to meet all review deadlines on time and within budget providing objective, robust assurance and pragmatic solutions for improvement or next steps to be used internally and in discussion with Lloyd s and the FSA providing ongoing assurance for Solvency II internal model validation a long-standing commitment to excellent client service and support both during and after all engagements. Who should I contact for Data Audit assistance? Sandy Kumar Partner Head of Financial Services Business Risk Services T E Kiran Sudhakar Lead for IT Internal Audit Financial Services/Head of Technology Services Business Risk Services T E Other Related Services While this document focuses on the requirements of Data Audit for Lloyd s Managing Agents and how our data review and data management professionals can help, Grant Thornton s Business Consulting Division can also assist in the design and build of your data management framework, if required. This team has worked with a number of Managing Agents in designing their data dictionary and performing gap analysis. Should you require further assistance regarding this please do not hesitate to contact our Business Consulting Division. A contact is provided directly below. Sarah Talbott Lead for Insurance Internal Audit Financial Services Business Risk Services T E Mark A Spurlock Lead for Insurance Business Consulting Business Consulting Division Financial Services Advisory T E 2012 Grant Thornton UK LLP. All rights reserved. Grant Thornton means Grant Thornton UK LLP, a limited liability partnership. Grant Thornton UK LLP is a member firm within Grant Thornton International Ltd ( Grant Thornton International ). Grant Thornton International and the member firms are not a worldwide partnership. Services are delivered by the member firms independently. This publication has been prepared only as a guide. No responsibility can be accepted by us for loss occassioned to any person acting or refraining from acting as a result of any material in this publication. V21426

Employers Liability Registers

Employers Liability Registers Employers Liability Registers Working in partnership with you to perform an independent audit to meet the FSA s requirements on What are the FSA employers liability requirements? The FSA published updated

More information

Solvency II Data audit report guidance. March 2012

Solvency II Data audit report guidance. March 2012 Solvency II Data audit report guidance March 2012 Contents Page Introduction Purpose of the Data Audit Report 3 Report Format and Submission 3 Ownership and Independence 4 Scope and Content Scope of the

More information

DATA AUDIT: Scope and Content

DATA AUDIT: Scope and Content DATA AUDIT: Scope and Content The schedule below defines the scope of a review that will assist the FSA in its assessment of whether a firm s data management complies with the standards set out in the

More information

Information Commissioner's Office

Information Commissioner's Office Information Commissioner's Office Internal Audit 2013-14: Follow up Last updated 4 July 2014 Distribution For action Senior Corporate Governance Manager Timetable Fieldwork completed 21 May 2014 Draft

More information

Capital Projects. Providing assurance over effective delivery of projects

Capital Projects. Providing assurance over effective delivery of projects Capital Projects Providing assurance over effective delivery of projects Governance and oversight Project Scope and change Reporting and communication Project risk and success factors Delivery Major projects

More information

19/10/2012. How do you monitor. (...And why should you?) CAS Annual Meeting - Henry Jupe

19/10/2012. How do you monitor. (...And why should you?) CAS Annual Meeting - Henry Jupe www.pwc.com How do you monitor data quality? (...And why should you?) CAS Annual Meeting - November 2012 Henry Jupe Antitrust notice The Casualty Actuarial Society is committed to adhering strictly to

More information

Contract risk and assurance

Contract risk and assurance Contract risk and assurance Delivering value from your key contracts and suppliers Maximise performance, confirm costs and gain assurance over your third party relationships and suppliers Performance Risk

More information

Introduction to Grant Thornton s General Insurance Actuarial Services

Introduction to Grant Thornton s General Insurance Actuarial Services Introduction to Grant Thornton s General Insurance Actuarial Services Contents What our clients say about us 2 Our key principles 4 How we can help 5 Reserving 7 Solvency II 8 Independent expertise 10

More information

Transaction reporting. The challenges of MiFID and EMIR transaction reporting

Transaction reporting. The challenges of MiFID and EMIR transaction reporting Transaction reporting The challenges of MiFID and EMIR transaction reporting What is transaction reporting? A transaction report is a regulatory requirement, which comprises a set of fields including all

More information

Cyber Security and Privacy Services. Working in partnership with you to protect your organisation from cyber security threats and data theft

Cyber Security and Privacy Services. Working in partnership with you to protect your organisation from cyber security threats and data theft Cyber Security and Privacy Services Working in partnership with you to protect your organisation from cyber security threats and data theft 2 Cyber Security and Privacy Services What drives your security

More information

White Paper: FSA Data Audit

White Paper: FSA Data Audit Background In most insurers the internal model will consume information from a wide range of technology platforms. The prohibitive cost of formal integration of these platforms means that inevitably a

More information

DRAFT. Report to Governors on the Quality Report 2015/16. Royal United Hospitals Bath NHS Foundation Trust] Year ended 31 March 2016 16 May 2016

DRAFT. Report to Governors on the Quality Report 2015/16. Royal United Hospitals Bath NHS Foundation Trust] Year ended 31 March 2016 16 May 2016 Report to Governors on the Quality Report 2015/16 This version of the report is a draft. Its contents and subject matter remain under review and its contents may change and be expanded as part of the finalisation

More information

Data analytics the changing use of data within Internal Audit

Data analytics the changing use of data within Internal Audit Data analytics the changing use of data within Internal Kiran Sudhakar Associate Director, Grant Thornton UK Overview Areas of discussion Introduction Common questions asked Evolution of data analytics

More information

Information Commissioner's Office

Information Commissioner's Office Phil Keown Engagement Lead T: 020 7728 2394 E: philip.r.keown@uk.gt.com Will Simpson Associate Director T: 0161 953 6486 E: will.g.simpson@uk.gt.com Information Commissioner's Office Internal Audit 2015-16:

More information

Corporate Data Quality Policy

Corporate Data Quality Policy Appendix A Corporate Data Quality Policy Right first time Author: Head of Policy Date: November 2008 Contents 1. INTRODUCTION...3 2. STATEMENT OF MANAGEMENT INTENT...3 3. POLICY AIM...3 4. DEFINITION OF

More information

Internal Audit - progress report 2015-16 and 2016-17 plan

Internal Audit - progress report 2015-16 and 2016-17 plan Audit Committee, 16 March 2016 Internal Audit - progress report 2015-16 and 2016-17 plan Executive summary and recommendations Introduction Grant Thornton have prepared the attached report which sets out

More information

Actuarial services that enhance performance. Insurance PRECISE. PROVEN. PERFORMANCE.

Actuarial services that enhance performance. Insurance PRECISE. PROVEN. PERFORMANCE. Actuarial services that enhance performance Insurance PRECISE. PROVEN. PERFORMANCE. Today s challenges, tomorrow s opportunities In today s ever changing insurance market, companies face more stringent

More information

The Audit Plan for the Lake District National Park Authority

The Audit Plan for the Lake District National Park Authority The Audit Plan for the Lake District National Park Authority. Year ended 31 March 2013 8 April 2013 Jackie Bellard Engagement Leader T 0161 234 6394 E Jackie.Bellard@uk.gt.com Ian Boit Audit Manager T

More information

INTERNAL AUDIT CHARTER AND TERMS OF REFERENCE

INTERNAL AUDIT CHARTER AND TERMS OF REFERENCE INTERNAL AUDIT CHARTER AND TERMS OF REFERENCE CHARTERED INSTITUTE OF INTERNAL AUDIT DEFINITION OF INTERNAL AUDIT Internal auditing is an independent, objective assurance and consulting activity designed

More information

Domestic Actuarial Regime and Related Governance Requirements under Solvency II

Domestic Actuarial Regime and Related Governance Requirements under Solvency II Domestic Actuarial Regime and Related Governance Requirements under Solvency II Response to Central Bank of Ireland Consultation Paper (CP 92) May 2015 1 Section 1: Introduction 1.1 Towers Watson is a

More information

Information Commissioner's Office

Information Commissioner's Office Information Commissioner's Office IT Procurement Review Ian Falconer Partner T: 0161 953 6480 E: ian.falconer@uk.gt.com Last updated 18 June 2012 Will Simpson Senior Manager T: 0161 953 6486 E: will.g.simpson@uk.gt.com

More information

Informing the audit risk assessment Enquiries to those charged with governance Calderdale Council. Year ended 31 March 2013

Informing the audit risk assessment Enquiries to those charged with governance Calderdale Council. Year ended 31 March 2013 Informing the audit risk assessment Enquiries to those charged with governance Calderdale Council This version of the report is a draft. Its contents and subject matter remain under review and its contents

More information

Policy: D9 Data Quality Policy

Policy: D9 Data Quality Policy Policy: D9 Data Quality Policy Version: D9/02 Ratified by: Trust Management Team Date ratified: 16 th October 2013 Title of Author: Head of Knowledge Management Title of responsible Director Director of

More information

Manchester City Council

Manchester City Council Manchester City Council Accounts Audit Plan 2009/10 18 December 2009 Contents Page 1 Introduction 2 2 Approach and audit risks 3 3 Administration 13 4 Planned outputs 16 Appendices A B IFRS Action Plan

More information

Audit, Business Risk and Compliance Committee Charter Pact Group Holdings Ltd (Company)

Audit, Business Risk and Compliance Committee Charter Pact Group Holdings Ltd (Company) Audit, Business Risk and Compliance Committee Charter Pact Group Holdings Ltd (Company) ACN 145 989 644 Committee Charter 1 MEMBERSHIP OF THE COMMITTEE The Committee must consist of: only non-executive

More information

Policy Statement: Licensing Policy in respect of those activities that require a permit under the Insurance Business (Jersey) Law 1996

Policy Statement: Licensing Policy in respect of those activities that require a permit under the Insurance Business (Jersey) Law 1996 Policy Statement: Licensing Policy in respect of those activities that require a permit under the Insurance Business (Jersey) Law 1996 Issued: 11 February 2011 Glossary of terms: The following table provides

More information

IMAP Independent Review Guidelines

IMAP Independent Review Guidelines IMAP Independent Review Guidelines Version 1: August 2011 Introduction Under the Solvency Assessment and Management (SAM) regime, insurers may calculate their Solvency Capital Requirement (SCR) using a

More information

Alternative Investment Fund Managers Directive. What does this mean for your business?

Alternative Investment Fund Managers Directive. What does this mean for your business? Alternative Investment Fund Managers Directive What does this mean for your business? Background to the Alternative Investment Fund Managers Directive (AIFMD) The Alternative Investment Fund Managers (AIFM)

More information

OUTSOURCING AND SERVICE AUDITOR S REPORTS

OUTSOURCING AND SERVICE AUDITOR S REPORTS OUTSOURCING AND SERVICE AUDITOR S REPORTS FREEDOM TO DO BUSINESS Outsourcing and service Auditor s Reports 3 OUTSOURCING AND SERVICE AUDITOR S REPORTS SERVICE AUDITOR S REPORTS ARE GROWING IN IMPORTANCE,

More information

Cyber Security Evolved

Cyber Security Evolved Cyber Security Evolved Aware Cyber threats are many, varied and always evolving Being aware is knowing what is going on so you can figure out what to do. The challenge is to know which cyber threats are

More information

Effective Model Risk Management for Financial Institutions: The Six Critical Components

Effective Model Risk Management for Financial Institutions: The Six Critical Components January 2013 Effective Model Risk Management for Financial Institutions: The Six Critical Components A White Paper by Brookton N. Behm, John A. Epperson, and Arjun Kalra Audit Tax Advisory Risk Performance

More information

Third party assurance services

Third party assurance services TECHNOLOGY RISK SERVICES Third party assurance services Delivering assurance over your service providers The current third party service provider environment Corporate UK has been transformed in recent

More information

Report to Governors on the Quality Report 2013/14

Report to Governors on the Quality Report 2013/14 Report to Governors on the Quality Report 2013/14 Gloucestershire Hospitals NHS Foundation Trust Year ended 31 March 2014 21 May 2014 John Golding Partner T 0117 305 7802 E john.golding@uk.gt.com Kevin

More information

Hertsmere Borough Council. Data Quality Strategy. December 2009 1

Hertsmere Borough Council. Data Quality Strategy. December 2009 1 Hertsmere Borough Council Data Quality Strategy December 2009 1 INTRODUCTION Public services need reliable, accurate and timely information with which to manage services, inform users and account for performance.

More information

JOB DESCRIPTION. Contract Management and Business Intelligence

JOB DESCRIPTION. Contract Management and Business Intelligence JOB DESCRIPTION DIRECTORATE: DEPARTMENT: JOB TITLE: Contract Management and Business Intelligence Business Intelligence Business Insight Manager BAND: 7 BASE: REPORTS TO: Various Business Intelligence

More information

Charity Audit Committee performance evaluation Self assessment checklist. October 2014

Charity Audit Committee performance evaluation Self assessment checklist. October 2014 Charity Audit Committee performance evaluation Self assessment checklist October 2014 With increasing responsibilities and complexities, being a member of the Audit Committee has never been more challenging

More information

Aboriginal Affairs and Northern Development Canada. Internal Audit Report. Audit of Internal Controls Over Financial Reporting.

Aboriginal Affairs and Northern Development Canada. Internal Audit Report. Audit of Internal Controls Over Financial Reporting. Aboriginal Affairs and Northern Development Canada Internal Audit Report Audit of Internal Controls Over Financial Reporting Prepared by: Audit and Assurance Services Branch Project #: 14-05 November 2014

More information

Role of Actuaries in Solvency II Tamsin Abbey

Role of Actuaries in Solvency II Tamsin Abbey Role of Actuaries in Solvency II Tamsin Abbey Objective To consider the broad ranging roles that actuaries are expected to play under Solvency II To set out suggested next steps prior to Go-Live Broad

More information

Corporate Governance Attestation Statement Health Support Services 2011-12

Corporate Governance Attestation Statement Health Support Services 2011-12 Corporate Governance Attestation Statement 2011-12 ESTABLISH ROBUST GOVERNANCE AND OVERSIGHT FRAMEWORKS Role and function of the Chief Executive The Chief Executive carries out that Offices functions,

More information

Vendor Risk Management in the New Regulatory Environment. kpmg.com

Vendor Risk Management in the New Regulatory Environment. kpmg.com Vendor Risk Management in the New Regulatory Environment kpmg.com Vendor Risk Management in the New Regulatory Environment 2 Vendor Risk Management in the New Regulatory Environment Background Regulators

More information

GUIDELINES ON CORPORATE GOVERNANCE FOR LABUAN BANKS

GUIDELINES ON CORPORATE GOVERNANCE FOR LABUAN BANKS GUIDELINES ON CORPORATE GOVERNANCE FOR LABUAN BANKS 1.0 Introduction 1.1 Good corporate governance practice improves safety and soundness through effective risk management and creates the ability to execute

More information

FINANCIAL SERVICES. Insurance expertise and technological leadership. Delivering Transformation. Together.

FINANCIAL SERVICES. Insurance expertise and technological leadership. Delivering Transformation. Together. FINANCIAL SERVICES Insurance expertise and technological leadership Delivering Transformation. Together. Introduction Sopra Steria has been delivering innovative IT and business solutions to the European

More information

BARNET AND SOUTHGATE COLLEGE JOB RESPONSIBILITY PROFILE. Head of Human Resources & Organisational Development

BARNET AND SOUTHGATE COLLEGE JOB RESPONSIBILITY PROFILE. Head of Human Resources & Organisational Development BARNET AND SOUTHGATE COLLEGE JOB RESPONSIBILITY PROFILE POST: Head of Human Resources & Organisational Development SALARY SCALE: Service Area Head Scale Points 14-18 RESPONSIBLE TO: RESPONSIBLE FOR: Director

More information

Enterprise risk management: A pragmatic, four-phase implementation plan

Enterprise risk management: A pragmatic, four-phase implementation plan Enterprise risk management: A pragmatic, four-phase implementation plan Prepared by: John Brackett, Managing Director, Risk Advisory Services, RSM McGladrey, Inc. 704.442.3820, john.brackett@mcgladrey.com

More information

Bodily Injury Thematic Review

Bodily Injury Thematic Review 2015 Bodily Injury Thematic Review ii Central Bank of Ireland Insurance Directorate 2015 BODILY INJURY THEMATIC REVIEW 1 Introduction 1.1 Overview and Context 4 1.2 Summary of Findings 5 1.3 Observations

More information

Domestic Actuarial Regime and Related Governance Requirements under Solvency II

Domestic Actuarial Regime and Related Governance Requirements under Solvency II 2015 Domestic Actuarial Regime and Related Governance Requirements under Solvency II 1 Domestic Actuarial Regime and Related Governance Requirements under Solvency II Contents 1. Introduction...2 1.1 Background...

More information

Complaints Standard. for Suppliers. Categorised as Basic (B or F)

Complaints Standard. for Suppliers. Categorised as Basic (B or F) Complaints Standard for Suppliers Categorised as Basic (B or F) (UK version) Contents Introduction 3 Definitions 3 1. Process, Procedures and Controls 5 2. Regulatory Standards 7 3. Employees 7 4. Publicising

More information

Hot Topic: Employers liability insurance registers meeting the FSA s requirements FS Regulatory Centre of Excellence 23 March 2012

Hot Topic: Employers liability insurance registers meeting the FSA s requirements FS Regulatory Centre of Excellence 23 March 2012 www.pwc.co.uk Hot Topic: Employers liability insurance registers meeting the FSA s requirements FS Regulatory Centre of Excellence 23 March 2012 Summary On 25 February 2011 the Financial Services Authority

More information

INTRODUCTION. The Merlin Principles. The Elements of each Principle

INTRODUCTION. The Merlin Principles. The Elements of each Principle 0 INTRODUCTION The development of the Merlin Standard has been progressed as a joint exercise between the Department for Work and Pensions (DWP) and its providers operating in the Welfare to Work (W2W)

More information

Informing the audit risk assessment for Cannock Chase District Council

Informing the audit risk assessment for Cannock Chase District Council ITEM NO. 9.1 Informing the audit risk assessment for Cannock Chase District Council Year ended 31 March 2016 March 2016 James Cook Engagement Lead T 0121 232 5343 E james.c.cook@uk.gt.com Laura Hinsley

More information

Informing the audit risk assessment for West Midlands Integrated Transport Authority Pension Fund

Informing the audit risk assessment for West Midlands Integrated Transport Authority Pension Fund Informing the audit risk assessment for West Midlands Integrated Transport Authority Pension Fund Year ended 31 March 2015 February 2015 John Gregory Engagements Lead T 07880 456 107 E john.gregory@uk.gt.com

More information

The Audit Plan for West Mercia Energy Joint Committee

The Audit Plan for West Mercia Energy Joint Committee The Audit Plan for West Mercia Energy Joint Committee Year ended 31 March 2015 16th February 2015 Jon Roberts Partner T 0121 232 5410 E jon.roberts@uk.gt.com Andrew Davies Manager T 0121 232 5417 E andrew.davies@uk.gt.com

More information

Auditing data protection a guide to ICO data protection audits

Auditing data protection a guide to ICO data protection audits Auditing data protection a guide to ICO data protection audits Contents Executive summary 3 1. Audit programme development 5 Audit planning and risk assessment 2. Audit approach 6 Gathering evidence Audit

More information

The Annual Audit Letter for Torbay Council

The Annual Audit Letter for Torbay Council The Annual Audit Letter for Torbay Council Year ended 31 March 2014 October 2014 Alex Walling Engagement Lead T 0117 305 7804 E alex.j.walling@uk.gt.com Mark Bartlett Manager T 0117 305 7896 E mark.bartlett@uk.gt.com

More information

Own Risk and Solvency Assessment

Own Risk and Solvency Assessment Own Risk and Solvency Assessment Putting an ORSA into practice March 2014 Introduction MAS Notice 126 on Enterprise Risk Management (ERM) was released in April 2013. Included within this was the introduction

More information

Update on Programme Management Controls & Risks

Update on Programme Management Controls & Risks Committee and Date Audit Committee 26/06/14 Update on Programme Management Controls & Risks Responsible Officer George Candler Director of Commissioning e-mail: George.Candler@shropshire.gov.uk Tel: 01743

More information

Solvency II model assurance. 12 April 2012

Solvency II model assurance. 12 April 2012 Solvency II model assurance Zdeněk Roubal, Manager 12 April 2012 Solvency II assurance Organizations might want or even need to obtain assurance that their design and Solvency II implementation is on track.

More information

Guidance on Risk Management, Internal Control and Related Financial and Business Reporting

Guidance on Risk Management, Internal Control and Related Financial and Business Reporting Guidance Corporate Governance Financial Reporting Council September 2014 Guidance on Risk Management, Internal Control and Related Financial and Business Reporting The FRC is responsible for promoting

More information

Wirral Council: Job Role Descriptor HR USE ONLY

Wirral Council: Job Role Descriptor HR USE ONLY Wirral Council: Job Role Descriptor Job Role: Service: Reports to: No. of Subordinates: Job Role Ref: Job Family: Grade: Practice & Governance Manager Legal & Member Services Head of Legal & Member Services

More information

Securing Information in an Outsourcing Environment (Guidance for Critical Infrastructure Providers) Executive Overview Supplement.

Securing Information in an Outsourcing Environment (Guidance for Critical Infrastructure Providers) Executive Overview Supplement. Securing Information in an Outsourcing Environment (Guidance for Critical Infrastructure Providers) Executive Overview Supplement June 2011 DISCLAIMER: This document is intended as a general guide only.

More information

INSURANCE ACT 2008 CORPORATE GOVERNANCE CODE OF PRACTICE FOR REGULATED INSURANCE ENTITIES

INSURANCE ACT 2008 CORPORATE GOVERNANCE CODE OF PRACTICE FOR REGULATED INSURANCE ENTITIES SD 0880/10 INSURANCE ACT 2008 CORPORATE GOVERNANCE CODE OF PRACTICE FOR REGULATED INSURANCE ENTITIES Laid before Tynwald 16 November 2010 Coming into operation 1 October 2010 The Supervisor, after consulting

More information

CIIA South West Analytics in Internal Audit - Tackling Fraud

CIIA South West Analytics in Internal Audit - Tackling Fraud CIIA South West Analytics in Internal Audit - Tackling Fraud 10 December 2014 Agenda Intro to Analytics When to use analytics and how to get started Risk Monitoring and Control Automation Common Pitfalls

More information

Creating a compliant data management framework: the regulatory perspective

Creating a compliant data management framework: the regulatory perspective Creating a compliant data management framework: the regulatory perspective Paolo Cadoni EIOPA Internal Model Committee Chair Life & Pension Risk Nordics - Stockholm, 15 th May 2012 Outline The importance

More information

Peer Review Guide. Guidance for APS X2: Actuarial Quality and Peer Review. by the Regulation Board

Peer Review Guide. Guidance for APS X2: Actuarial Quality and Peer Review. by the Regulation Board Peer Review Guide Guidance for APS X2: Actuarial Quality and Peer Review by the Regulation Board November 2013 Contents 1. Introduction 3 2. About this guide 4 3. Application of peer review 5 4. Scope

More information

Information Governance Strategy & Policy

Information Governance Strategy & Policy Information Governance Strategy & Policy March 2014 CONTENT Page 1 Introduction 1 2 Strategic Aims 1 3 Policy 2 4 Responsibilities 3 5 Information Governance Reporting Structure 4 6 Managing Information

More information

Insurance Industry Expertise

Insurance Industry Expertise Insurance Industry Expertise Delivered With High-Level Attention and Service Audit Tax Advisory Risk Performance The Unique Alternative to the Big Four For more than 50 years, clients in all sectors of

More information

Administrative Data Quality Assurance Toolkit

Administrative Data Quality Assurance Toolkit Administrative Data Quality Assurance Toolkit Version 1 January 2015 1 Administrative Data Quality Assurance Toolkit This toolkit is intended to help statistical assessors review the areas of practice

More information

Internal Model Approval Process (IMAP) Contents of Application (CoA) Template. August 2011 Version 1.0

Internal Model Approval Process (IMAP) Contents of Application (CoA) Template. August 2011 Version 1.0 Internal Model Approval Process (IMAP) Contents of Application (CoA) Template August 2011 Version 1.0 C O N T A C T D E T A I L S Physical Address: Riverwalk Office Park, Block B 41 Matroosberg Road (Corner

More information

7 Directorate Performance Managers. 7 Performance Reporting and Data Quality Officer. 8 Responsible Officers

7 Directorate Performance Managers. 7 Performance Reporting and Data Quality Officer. 8 Responsible Officers Contents Page 1 Introduction 2 2 Objectives of the Strategy 2 3 Data Quality Standards 3 4 The National Indicator Set 3 5 Structure of this Strategy 3 5.1 Awareness 4 5.2 Definitions 4 5.3 Recording 4

More information

ISO/IEC 27001 Information Security Management. Securing your information assets Product Guide

ISO/IEC 27001 Information Security Management. Securing your information assets Product Guide ISO/IEC 27001 Information Security Management Securing your information assets Product Guide What is ISO/IEC 27001? ISO/IEC 27001 is the international standard for information security management and details

More information

CONSULTATION PAPER ON RISK MANAGEMENT AND INTERNAL CONTROL: REVIEW OF THE CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT

CONSULTATION PAPER ON RISK MANAGEMENT AND INTERNAL CONTROL: REVIEW OF THE CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT CONSULTATION PAPER ON RISK MANAGEMENT AND INTERNAL CONTROL: REVIEW OF THE CORPORATE GOVERNANCE CODE AND CORPORATE GOVERNANCE REPORT June 2014 CONTENTS Page No. CONTENTS... 1 EXECUTIVE SUMMARY... 1 CHAPTER

More information

FCA Thematic Review Delegated Authority: Outsourcing in the General Insurance Market

FCA Thematic Review Delegated Authority: Outsourcing in the General Insurance Market FCA Restricted IAC Forum FCA Thematic Review Delegated Authority: Outsourcing in the General Insurance Market Lloyd s Old Library 25 September 2015 FCA Restricted Delegated authority: Outsourcing in the

More information

UNIVERSITY BOARD SKILLS REVIEW MATRIX 2014. Page 1 of 5

UNIVERSITY BOARD SKILLS REVIEW MATRIX 2014. Page 1 of 5 UNIVERSITY BOARD SKILLS REVIEW MATRIX 2014 Each key skill is linked to relevant strategic objectives and/or the Board s Statement of Primary Responsibilities. To assist with the assessment of Board Members

More information

Higher Education Review. A handbook for QAA subscribers and providers with access to funding from HEFCE undergoing review in 2014-15

Higher Education Review. A handbook for QAA subscribers and providers with access to funding from HEFCE undergoing review in 2014-15 Higher Education Review A handbook for QAA subscribers and providers with access to funding from HEFCE undergoing review in 2014-15 June 2014 Contents Higher Education Review: Summary... 1 Part 1: Introduction

More information

COMPLIANCE FRAMEWORK AND REPORTING GUIDELINES

COMPLIANCE FRAMEWORK AND REPORTING GUIDELINES COMPLIANCE FRAMEWORK AND REPORTING GUIDELINES DRAFT FOR CONSULTATION June 2015 38 Cavenagh Street DARWIN NT 0800 Postal Address GPO Box 915 DARWIN NT 0801 Email: utilities.commission@nt.gov.au Website:

More information

Financial services regulatory compliance. Changing demands require the right perspective

Financial services regulatory compliance. Changing demands require the right perspective Financial services regulatory compliance Changing demands require the right perspective The role of compliance is being elevated as regulatory demands increase. Compliance leaders are facing the greatest

More information

Solvency II Detailed guidance notes

Solvency II Detailed guidance notes Solvency II Detailed guidance notes March 2010 Section 1 - System of governance Section 1: System of Governance Overview This section outlines the Solvency II requirements for an effective system of governance,

More information

Job purpose This role will play an integral part in the management and delivery of service to the business.

Job purpose This role will play an integral part in the management and delivery of service to the business. Job title HR Specialist Job family HR & Internal Communications Grade 9 Job purpose This role will play an integral part in the management and delivery of service to the business. [Specialist Team] Responsible

More information

Getting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP

Getting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP Getting to strong Leading Practices for value-enhancing internal audit By Richard Reynolds and Abhinav Aggarwal - PricewaterhouseCoopers LLP Today's unpredictable business climate and challenging regulatory

More information

ORSA Implementation Challenges

ORSA Implementation Challenges 1 ORSA Implementation Challenges Christopher Crombie, FSA, FCIA AVP ERM & Financial Risk Management Standard Life Assurance Company of Canada To CIA Annual Meeting June 21, 2013 2 Context Our Own Risk

More information

Corporate Challenges in Model Risk Management : Moving Beyond Model Inventory. Iain Wright Ian Francis, IBM 4 June 2015

Corporate Challenges in Model Risk Management : Moving Beyond Model Inventory. Iain Wright Ian Francis, IBM 4 June 2015 Corporate Challenges in Model Risk Management : Moving Beyond Model Inventory Iain Wright Ian Francis, IBM 4 June 2015 Corporate Challenges in the Development and Implementation of Effective Model Risk

More information

MiFID II/MiFIR. Implications for Fund Managers. May 2014. 2014 Deloitte LLP. All rights reserved.

MiFID II/MiFIR. Implications for Fund Managers. May 2014. 2014 Deloitte LLP. All rights reserved. /MiFIR Implications for Fund Managers May 2014 Webinar participants Manmeet Rana Senior Manager Audit Deloitte UK mrana@deloitte.co.uk +44 20 7303 8624 Manmeet Rana is a Senior Manager within Deloitte

More information

Audit, Business Risk and Compliance Committee Charter

Audit, Business Risk and Compliance Committee Charter Charter Audit, Business Risk and Compliance Committee Charter Lovisa Holdings Limited ACN 602 304 503 Adopted by the Board on 21 st November 2014 Committee Charter 1 Membership of the Committee The Committee

More information

January 2015. Senior Insurance Managers Regime Strengthening accountability in insurance

January 2015. Senior Insurance Managers Regime Strengthening accountability in insurance January 2015 Senior Insurance Managers Regime Strengthening accountability in insurance Contents Introduction 1 Key points 2 Implementing Solvency II 3 Implications for Non Executive Directors 4 Practical

More information

Client Asset Regulations & Investor Money Regulations 2015

Client Asset Regulations & Investor Money Regulations 2015 www.pwc.ie Client Asset Regulations & Investor Money Regulations 2015 What are the key changes for your firm? Contents Overview of CAR/IMR 1 Key considerations for your firm: 6 How PwC can help: 7 We can

More information

Data Quality Policy. Effective from April 2010

Data Quality Policy. Effective from April 2010 Data Quality Policy Effective from April 2010 Contents 1 Introduction... 3 2 What is meant by data quality?... 3 3 Principles and objectives of the data quality policy... 3 4 Third party data... 5 5 Responsibility...

More information

Data Quality Policy. Appendix A. 1. Why do we need a Data Quality Policy?... 2. 2 Scope of this Policy... 2. 3 Principles of data quality...

Data Quality Policy. Appendix A. 1. Why do we need a Data Quality Policy?... 2. 2 Scope of this Policy... 2. 3 Principles of data quality... Data Quality Policy Appendix A Updated August 2011 Contents 1. Why do we need a Data Quality Policy?... 2 2 Scope of this Policy... 2 3 Principles of data quality... 3 4 Applying the policy... 4 5. Roles

More information

SESSION 3 AUDIT PLANNING

SESSION 3 AUDIT PLANNING SESSION 3 AUDIT PLANNING Learning Objectives: identify and explain the need for planning an audit identify and describe the contents of the overall audit strategy and the audit plan explain the difference

More information

TECHNICAL RELEASE TECH02/14FSF ASSURANCE REPORTS ON BENCHMARKS AND INDICES

TECHNICAL RELEASE TECH02/14FSF ASSURANCE REPORTS ON BENCHMARKS AND INDICES TECHNICAL RELEASE TECH02/14FSF ASSURANCE REPORTS ON BENCHMARKS AND INDICES ABOUT ICAEW ICAEW is a world leading professional membership organisation that promotes, develops and supports over 142,000 chartered

More information

REFORM OF STATUTORY AUDIT

REFORM OF STATUTORY AUDIT EU BRIEFING 14 MARCH 2012 REFORM OF STATUTORY AUDIT Assessing the legislative proposals This briefing sets out our initial assessment of the legislative proposals to reform statutory audit published by

More information

Effective AML Model Risk Management for Financial Institutions: The Six Critical Components

Effective AML Model Risk Management for Financial Institutions: The Six Critical Components August 2012 Effective AML Model Risk Management for Financial Institutions: The Six Critical Components A White Paper by John A. Epperson, Arjun Kalra, and Brookton N. Behm Audit Tax Advisory Risk Performance

More information

the role of the head of internal audit in public service organisations 2010

the role of the head of internal audit in public service organisations 2010 the role of the head of internal audit in public service organisations 2010 CIPFA Statement on the role of the Head of Internal Audit in public service organisations The Head of Internal Audit in a public

More information

Foundation Level Competency Model

Foundation Level Competency Model Change Manager Foundation Level Competency Model The Change Manager Foundation competency model sets an independent industry benchmark for ENTRY LEVEL change management practitioners. This competency model

More information

BDO NORDIC. Investigation, fraud prevention and computer forensics. You can guess. You can assume. Or you can know. And knowing is always better.

BDO NORDIC. Investigation, fraud prevention and computer forensics. You can guess. You can assume. Or you can know. And knowing is always better. BDO NORDIC Investigation, fraud prevention and computer forensics You can guess. You can assume. Or you can know. And knowing is always better. CONTENT OUR SERVICES 3 Investigation - Identifying the facts

More information

CORPORATE GOVERNANCE GUIDELINES. (Adopted as of June 2, 2014)

CORPORATE GOVERNANCE GUIDELINES. (Adopted as of June 2, 2014) CORPORATE GOVERNANCE GUIDELINES (Adopted as of June 2, 2014) The following corporate governance guidelines have been approved and adopted by the Board of Directors (the Board ) of Arista Networks, Inc.

More information

IAIS Insurance Core Principle 16

IAIS Insurance Core Principle 16 www.pwc.com Chicago Actuarial Association ORSA Readiness June 19, 2014 IAIS Insurance Core Principle 16 The supervisory regime establishes enterprise risk management requirements for solvency purposes

More information

The promise and pitfalls of cyber insurance January 2016

The promise and pitfalls of cyber insurance January 2016 www.pwc.com/us/insurance The promise and pitfalls of cyber insurance January 2016 2 top issues The promise and pitfalls of cyber insurance Cyber insurance is a potentially huge but still largely untapped

More information

Insight and Peer Analysis

Insight and Peer Analysis Insight and Peer Analysis 2014 Insight as a source of competitive advantage We are living in a world that generates and consumes ever greater levels of data. More than ever before, this gives businesses

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Document Number 01 Version Number 2.0 Approved by / Date approved Effective Authority Customer Services & ICT Authorised by Assistant Director Customer Services & ICT Contact

More information

JOB DESCRIPTION. Human Resource Business Partner (Change Management) One Year Fixed-Term Contract

JOB DESCRIPTION. Human Resource Business Partner (Change Management) One Year Fixed-Term Contract JOB DESCRIPTION Job Title: Duration: Department: Reports to: Human Resource Business Partner (Change Management) One Year Fixed-Term Contract Human Resources Director of Human Resources The Organisation

More information