Banking and Financial Services Internal Audit Group
|
|
- Katrina Thornton
- 8 years ago
- Views:
Transcription
1 Banking and Financial Services Internal Audit Group Hot topics for 2014 Audit Planning Lunch Time Seminar Alana Thorne, Director Chit Ghee Yeoh, Associate Director September 2013
2 Agenda Introduction Impact of the code on internal audit functions and understanding the drivers for change Key changes as a result of the code and impact on audit planning Hot topics for 2014 planning A summary of key hot topics Industry topics Methodology topics Deep dive into new and uncomfortable areas of change Questions 2
3 Introduction Impact of the code on internal audit functions Internal Audit in Financial Services The Committee on Internal Audit Guidance for Financial Services has issued its Recommendations for Effective Internal Audit in the Financial Services Sector. This demonstrates there is and will continue to be increased challenge of and visibility upon Internal Audit the bar has been raised. Regulators will look to rely on Internal Audit creating an opportunity for Internal Audit to demonstrate its relevance and importance in protecting the assets of a company. Areas of significant challenge to many audit functions (and applicable to all) include: Positioning within the organisation: Internal Audit reporting line to the Chair of the Board Audit Committee. Secondary reporting lines should be to the CEO; Employing significant professional judgement; An outcomes-based approach; and Resourcing. Emerging best practices Strong communication and consistent language with risk, compliance and finance functions Responding to resource challenges Auditing culture Harnessing the power of data Building trust with the regulators Quality assurance 3
4 Hot Topics for 2014 planning Current planning agenda Trading Unauthorised trading Indices and benchmarks High frequency trading New and uncomfortable Governance Culture IA processes Assessing skills and capabilities Holistic opinions and IC environment Data analytics Capital and liquidity RWA s Model risk management CRD IV Liquidity Internal Audit Hot Topics Regulatory Conduct risk Regulatory reporting Financial crime Client assets Risk management Risk frameworks Risk appetite Risk data aggregation Accounting and tax Loan loss provisioning Tax risk management IT Resilience Third party management Payment services 4
5 2014 Industry Topics Planning considerations 5 Topics New and uncomfortable Governance Culture Risk management Risk framework Risk appetite Risk data aggregation Capital and liquidity CRD IV RWA Liquidity Model risk management Trading Indices and benchmarking Consideration for Internal Audit Governance: assessing the structures, processes and controls to manage a business Culture: how processes, actions and tone at the top align with the values and behaviours of the business Assessing how a risk or group of risks are managed across a Group or business How risk management is linked to strategy Aggregation of risk data and MI How data management measures up against the BCBS principles for effective Risk Data Aggregation and Risk Reporting. Readiness/ compliance with new requirements (Internationally agreed standards on capital and liquidity Basel III) effective 1 January Completeness, accuracy and integrity of source data inputs and calculated RWA outputs. Board and senior management oversight Policies, procedures and limits (e.g. stress-testing) Risk measurement and monitoring. Design and development of model governance and model validation. The spotlight is starting to shine on other indices (aside from LIBOR), benchmarks and wider price setting processes that banks contribute to. A focus on reviewing submission processes against definitions and best practice.
6 2014 Industry Topics Planning considerations Topics Trading Unauthorised trading High frequency trading Accounting and Tax Tax risk management Loan loss provisioning IT Third party management Resilience Payments Consideration for Internal Audit Assurance over controls to capture and report unauthorised trading The firm s culture and attitude towards unauthorised trading Assurance over trade execution controls given recent glitches and failures in high frequency trading Tax strategy and tax governance arrangements Alignment of tax strategy to wider business strategy Identifying and recognition of loan loss provisioning Controls over the functioning of the model Reporting and disclosure requirements Third party/ out-sourced partners relations Data security risk Business continuity and disaster recovery processes Resilience controls and processes Payment services regulation compliance Account switching requirements (going live in September 2013) Mobile payments (Spring 2014) Resolution and recovery plans, ring-fencing, intraday liquidity management, FATCA compliance, sanctions compliance and fraud prevention. 6
7 2014 Industry Topics Planning considerations Topics Cyber crime Data governance and quality Consideration for Internal Audit Exposure to cyber threats increases as companies embrace the digital world. Regulatory demands increase over security and public confidence is challenged. Controls over time to recover from a cyber attach and ability to reduce the net impact as well as preventative controls. Controls over the governance and quality of data Increasing regulatory attention. 7
8 2014 Industry Topics Planning considerations Topics Regulatory Conduct Risk Financial Crime Client assets Regulatory reporting Consideration for Internal Audit Compliance with the Conduct of Business rules (including COBS, ICOBS, MCOB and BCOBS sourcebooks). Identifying the likely end customer and how controls in place ensure focus on products and services meeting the long term interests of both retail and wholesale customers. Systems and controls to combat financial crime are robust and in line with regulations. Focus on AML. Arrangements over client assets in areas such as management processes, adequate trust letters, treatment of collateral, completeness and accuracy of the client money calculations, oversight of outsourced providers and sufficient management information and reporting. Compliance with the CASS rules. Second and third line of defence monitoring programmes. Regulatory data quality. Capital, liquidity and other prudential returns is increasingly being challenged as a result of peer group review. Challenge and oversight over regulatory reporting. Control framework surrounding the new COREP and FINREP data requirements. 8
9 2014 Methodology Topics Planning considerations and emerging best practices Topics IA processes Assessing skills and competency Consideration for Internal Audit Internal auditors are expected to increase both the value and impact of internal audit. Internal audit is required to have the necessary skills and experience that is commensurate with the risks of the organisation. The Guidance provides that the Chief Auditor should provide the Audit Committee with a regular assessment of the skills required to conduct the work needed and whether the internal audit budget is sufficient. The Audit Committee should be responsible for approving the internal audit budget and, as part of the Board s overall governance responsibility, should disclose in the annual report whether it is satisfied that Internal Audit has the appropriate resources. Opinion on internal control environment The Guidance suggests that an assessment of the overall effectiveness of the governance, risk and control framework of the organisation, including themes and trends emerging from internal audit work, should be provided at least annually. Internal Audit will need to create methodologies to assess the control environments, and support their conclusions. These methodologies include: review of internal audit data; and Review of data from first and second lines of defence. 9
10 2014 Methodology Topics Planning considerations and emerging best practices Topics Data Analytics Consideration for Internal Audit There is now an increased awareness of the power of using data analytics to support assurance activities, which has led to increased demand for enhanced analytics capability. While it is relatively simple to implement analytics tools, developing the skillsets to use the tools effectively, embedding their use into the audit plan and managing the target data is more challenging. 10
11 Internal Audit Hot Topics Governance The financial services sector has seen tremendous debate and increased scrutiny on governance. The Institute of Internal Auditors has recently recommended that internal auditors should have a voice in this area and include governance within its remit. Key drivers for focus on governance External drivers One or more of the following indicators were evident in financial institutions that failed during the crisis: A dysfunctional board A domineering CEO Insufficient active Board involvement Key posts being held by people without the required technical competence Inadequate four eyes oversight of risk Inadequate understanding of the aggregation of risk A UK listing requirement for an externally facilitated board effectiveness review and an increase in regulatory mandated reviews of governance. CIIA s Code for Effective Internal Audit in the FS Sector Internal drivers Alignment of culture, strategy and appetite Boards, NEDs, Audit and Risk Committees, Remuneration Committees Internal Audit and Risk Management Will audits be carried out on a standalone, end-to-end audit basis or will there be a series of intermittent audits to provide a continuous view or will a governance component be added to existing audit types? Will governance audits seek to provide a current point-in-time assessment or will they also have a forward looking component? What will be the split of focus on assessing the design versus the operating effectiveness of governance arrangements? 11
12 Processes Internal Audit Hot Topics Governance (continued) The role of Internal Audit The Code s guiding principles recommend IA to have a view Scope and priorities People and Culture: processes (e.g. remuneration, decision making), actions (e.g. accountability and direction) and tone at the top align with values, ethics, risk appetite, policies. Board and Committee: embedded within the activities, limits and reporting. MI for strategic and operational decision making: represents the risks. Setting strategy Board and Board Committees Depth of testing (an example) Basic extent of testing Review meeting minutes to demonstrate the existence of a committee and the fact that it meets frequently Reconcile the committee s Terms of Reference against meeting minutes to evidence core areas within its remit Moderate extent of testing Review member biographies to understand and assess the skills and experiences they bring Carry out a survey or conduct interviews with committee members to provide a qualitative dimension to the assessment e.g. asking for opinions and requesting examples of recent decisions and how those decisions were arrived at Review meeting minutes and action logs to assess the extent to which actions have teeth and are followed-up Setting risk appetite Management Information Management Committees Leading extent of testing Performance monitoring & management People Text & culture Organisational structure Structures Carry out a sample of stakeholder interviews outside of the committee to understand broader perceptions and experiences Policy management Setting incentivisation Reporting & analysis Control functions Governance model Assess how decisions are made via a sample of case studies, for example, evaluate the strategy setting process, evaluate how risk appetite is set and monitored. 12
13 Internal Audit Hot Topics Culture Banks, insurers, asset managers and broker firms are being driven to understand, measure, strengthen and report on their risk culture and the risk intelligence of their people as part of enhancing their risk management and control systems. Key drivers for risk intelligent cultures What the future looks like External drivers Increasing regulatory focus PRA Approach to Supervision CIIA s Code for Effective Internal Audit in the FS Sector Standard & Poor s approach for assessing companies ERM Increasing stakeholder pressures Tax - Annual Remuneration Report Remuneration Policy Statement form Internal drivers Alignment of risk culture, strategy, appetite and remuneration frameworks Boards, NEDs, Audit and Risk Committees, Remuneration Committees Internal Audit, Risk Management, Human Resources and Tax A key lever in building sustainable businesses Within three to five years, risk intelligence is likely to be a priority measure for assessing the quality and embedding of a firm s strategic plan, risk appetite, governance structure and its risk management and remuneration frameworks. 13
14 Risk intelligence Culture Internal Audit Hot Topics Culture (continued) What is it? What does good look like? Why does it matter? The values, implicit beliefs and ideas that give meaning to an organisation How values translate into behaviours The way people act how they work, make decisions, interact and ultimately how they deliver results The organisation s behavioural norms, management systems and symbols, and how these are aligned to encourage people to make the right riskrelated decisions, and exhibit desired risk management behaviours Behaviours Systems Symbols Commonality of purpose Universal adoption and application A learning organisation continuously improving Prompt, transparent, and honest communications Understanding the value of effective risk management Responsibility individual and collective Expectation of challenge Has a major impact on organisations Enables or inhibits achieving strategy Impacts bottom line results Culture and risk culture are really useful if done right; in particular they save a lot of time showing people how to do things; e.g. How can I be successful in my career follow or don t follow the normal behaviour of those around me. Can create a powerful and sustainable competitive advantage Risk management systems and controls are only as good as the people operating them. Vital for informed risk based decision making Increased confidence of external stakeholders. Risk intelligence helps to protect the organisation s assets, reputation and sustainability. 14
15 Internal Audit Hot Topics Culture (continued) The role of Internal Audit The Code s guiding principles recommend IA to have a view Risk and Control Culture: processes (e.g. remuneration, appraisal), actions (e.g. decision making) and tone at the top align with values, ethics, risk appetite, policies. Adherence to Risk Appetite: embedded within the activities, limits and reporting. Internal Governance: structures and processes operating effectively. MI for strategic and operational decision making: represents the risks. Scope and priorities Risk and Control Culture: attitude and approach at all levels to risk management and internal control. Polices and Processes: operating effectively; i.e. outcomes achieved align with the organisation s objectives, risk appetite and values. Risk Competence Motivation Knowledge Skills Learning Recruitment, Induction and Retention Performance Management Incentives Reward and Recognition Accountability Risk Intelligence Strategy and Objectives Values and Ethics Policies, Processes and Procedures Risk Governance Challenge Management Leadership Communication Organisation Relationship 15
16 Deliverables Activities Objectives Internal Audit Hot Topics Culture (continued) An example approach: 1. Develop tailored Cultural Assessment Model 2. Define Evidence Source Model 3. Develop implementation roadmap Provide a holistic, integrated company specific Cultural Assessment Model. Define a portfolio of sources of evidence that enable an assessment of culture at the company. Develop a flexible implementation roadmap that is tailored to the aims, objectives and timescales of the company. Identify and review existing frameworks. Leverage external culture and risk models as necessary. Develop an appropriate number of company specific cultural indicators. Identify existing sources of evidence. Assess availability and credibility of evidence sources. Develop additional/alternative sources of evidence, as required. Map evidence points to cultural indicators. Understand Internal Audit s immediate, medium and long term objectives relating to the level or assurance required. Define the phases, timings, priorities and resources required to embed the Cultural Assessment Framework as business as usual. Company specific Cultural Assessment Model. Evidence Source Model. Implementation Roadmap. 16
17 Internal Audit Hot Topics Risk Management There is a drive to not just challenge the processes and controls of a function but look at the way a risk is managed across the business and the responsibilities across the three lines of defence. Key drivers for risk management External drivers Increasing regulatory focus Basel Committee CIIA s Code for Effective Internal Audit in the FS Sector Financial Stability Board Increasing stakeholder pressures Internal drivers Alignment of risk management with business operations Boards, NEDs, Audit and Risk Committees, Remuneration Committees Internal Audit and Risk Management Challenge of the second line of defence 17
18 Validation Internal Audit Hot Topics Risk Management (continued) The role of Internal Audit Key areas for consideration: Assess Risk Management Frameworks (RMF) on a firm-wide basis as well as on an individual business line and legal entity basis; Risk Strategy & Appetite Risk Governance Risk Processes & Methodologies Identification, escalation and reporting of breaches in risk limits; Design and effectiveness of the RMF and its alignment with supervisory expectations; Implementation of the RMF, including linkage to strategic and business planning, compensation, and decision-making processes; Risk measurement techniques and MI used to monitor the firm s risk profile in relation to its risk appetite; and Risk Data & IT Systems Risk Management Skills, Resources & Culture Deficiencies in the RMF and on alignment (or otherwise) of risk appetite and risk profile with risk culture to the board and senior management in a timely manner. 18
19 Validation Internal Audit Hot Topics Model Risk Management Key drivers for Model Risk Management Risk Strategy & Appetite External drivers Internal drivers Risk Governance Risk Processes & Methodologies Increasing regulatory focus High profile cases of model failures like Gaussian copulas in 2006 and JP Morgan in 2012 CIIA s Code for Effective Internal Audit in the FS Sector Increasing stakeholder pressures A need to improve and automate business operational processes Boards, NEDs, Audit and Risk Committees, Remuneration Committees Internal Audit and Risk Management Risk Data & IT Systems Risk Management Skills, Resources & Culture 19
20 Internal Audit Hot Topics Model Risk Management (continued) The role of Internal Audit Governance, Policies & Controls Model Governance framework. Policies, Standards and Procedures. Model inventory and documented limitations. Legal & Regulatory Compliance Governance, Policies & Control Qualitative Legal & Regulatory Compliance Model Risk Management Development, Implementation & Use Quantitative Validation Compliance with legal and regulatory requirements. Gaps against compliance requirements. Development, Implementation & Use Model approach and design including model methodology / technique. Quality of data and variables. Completeness of population and review. Model documentation, including verification of attempts to rebuild the model based on the documentation. Systems and accuracy of implementation. Verification of appropriate model usage subject to controls and limitations. Validation Validation standards and techniques; and verification of independence of development and validation teams. Testing model approval, overrides and calibration process. Assessment of regular review cycle. 20
21 Internal Audit Hot Topics Tax Risk Management Key drivers for Tax Risk Management External drivers Increasing focus on reputational risk (e.g. Starbucks, Amazon) Focus on minimising financial risk Increased complexities of financial products Internal drivers Ensure governance and control environment fulfils obligations to stakeholders Identification of significant errors and control deficiencies Ensuring new product approval processes and post implementation controls are adequate Corporate Tax Transfer pricing Tax return process Group relief and cash payments PE risks VAT Quarterly VAT return process Taxable vs exempt supplies Partial exemption Special Method Reverse charge application Capital Goods scheme Employment Taxes Payroll Benefits in kind Share plans and long term incentive schemes Pensions salary sacrifice Global mobility travel expense policy, short term business visitors 21
22 Internal Audit Hot Topics Tax Risk Management (continued) Operational Taxes The role of Internal Audit Governance, Policies & Controls Yearly Interest Type 17 reporting TDSI Tax Strategy. Tax Governance framework. Tax controls and systems Senior Accounting Officer certification; tax review processes for new products, investments and transactions; impact assessment of new tax legislation (e.g FATCA). Legal & Regulatory Compliance Type 18 reporting ISA compliance Withholding and Reporting Regimes FATCA EU Savings Directive Compliance with legal and regulatory requirements. Gaps against compliance requirements. SX1 returns CT61 returns Sch 36 22
23 Internal Audit Hot Topics Financial Crime Key drivers for Financial Crime risk Strategy & Risk Appetite External drivers Internal drivers Governance & Compliance Analytics, MI & Reporting Increasing regulatory focus High profile cases of AML/ alleged CTF failures, leading to fines (both personal and corporate) Increasing stakeholder pressures A need to upgrade skills, and refresh training A need to improve and automate business operational processes Boards, Audit and Risk Committees Element of personal accountability for the MLRO Policies & Procedures AML / CTF/ Sanctions Identity Theft Fraud, Market Abuse, Insider Trading Bribery & Corruption Technology & Systems Operations & People CDD Definition & Quality (Static &Transactional) 23
24 Internal Audit Hot Topics Financial Crime (continued) The role of Internal Audit Key areas for consideration: Financial Crime risk definition, identification and assessment; Financial Crime risk appetite and tolerance framework Transaction Monitoring Optimisation to produce more good alerts and fewer bad alerts Data Quality Assessments to allow for more reliable inputs into the customer screening and transaction monitoring processes Testing the effectiveness of customer screening to improve the firm s ability to identify PEPs Fine tuning threshold settings to reduce alerts whilst managing risk Validate that monitoring logic has been correctly implemented. 24
25 Key Contacts Staying ahead Alana Thorne Director Chit Ghee Yeoh Associate Director
26 Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited ( DTTL ), a UK private company limited by guarantee, and its network of member firms, each of which is a legally separate and independent entity. Please see for a detailed description of the legal structure of DTTL and its member firms. Deloitte LLP is the United Kingdom member firm of DTTL. This publication has been written in general terms and therefore cannot be relied on to cover specific situations; application of the principles set out will depend upon the particular circumstances involved and we recommend that you obtain professional advice before acting or refraining from acting on any of the contents of this publication. Deloitte LLP would be pleased to advise readers on how to apply the principles set out in this publication to their specific circumstances. Deloitte LLP accepts no duty of care or liability for any loss occasioned to any person acting or refraining from action as a result of any material in this publication. Deloitte LLP is a limited liability partnership registered in England and Wales with registered number OC and its registered office at 2 New Street Square, London EC4A 3BZ, United Kingdom. Tel: +44 (0) Fax: +44 (0)
Internal Audit Landscape 2014
Internal Audit Landscape 2014 Agenda Examining the evolution of risk in today s digital world and the impact on traditional audit, security, risk, and compliance functions Emerging internal audit methodologies
More informationKeeping sight of your business Hot topics facing Financial Services organisations in IT Internal Audit
Keeping sight of your business Hot topics facing Financial Services organisations in IT Internal Audit 2014 Welcome to our third annual review of the IT hot topics facing Internal Audit functions within
More informationUnder control 2015 Hot topics for IT internal audit in financial services. An Internal Audit viewpoint
Under control 2015 Hot topics for IT internal audit in financial services An Internal Audit viewpoint Introduction Welcome to our fourth annual review of the IT hot topics for IT internal audit in financial
More informationJanuary 2015. Senior Insurance Managers Regime Strengthening accountability in insurance
January 2015 Senior Insurance Managers Regime Strengthening accountability in insurance Contents Introduction 1 Key points 2 Implementing Solvency II 3 Implications for Non Executive Directors 4 Practical
More informationAddressing Cyber Risk Building robust cyber governance
Addressing Cyber Risk Building robust cyber governance Mike Maddison Partner Head of Cyber Risk Services The future of security The business environment is changing The IT environment is changing The cyber
More informationMobility cost optimisation Managing the whole mobility investment
Mobility cost optimisation Managing the whole mobility investment Extract of article published in International HR Adviser Magazine June 2014 We don t have budget for this! is a common cry from business
More informationPrinciples for An. Effective Risk Appetite Framework
Principles for An Effective Risk Appetite Framework 18 November 2013 Table of Contents Page I. Introduction... 1 II. Key definitions... 2 III. Principles... 3 1. Risk appetite framework... 3 1.1 An effective
More informationCIIA South West Analytics in Internal Audit - Tackling Fraud
CIIA South West Analytics in Internal Audit - Tackling Fraud 10 December 2014 Agenda Intro to Analytics When to use analytics and how to get started Risk Monitoring and Control Automation Common Pitfalls
More informationMiFID II/MiFIR. Implications for Fund Managers. May 2014. 2014 Deloitte LLP. All rights reserved.
/MiFIR Implications for Fund Managers May 2014 Webinar participants Manmeet Rana Senior Manager Audit Deloitte UK mrana@deloitte.co.uk +44 20 7303 8624 Manmeet Rana is a Senior Manager within Deloitte
More informationCapital Requirements Directive Pillar 3 Disclosure. December 2015
Capital Requirements Directive Pillar 3 Disclosure December 2015 1. Background The purpose of this document is to outline the Pillar 3 disclosures for BlueBay Asset Management LLP ( BlueBay ). BlueBay
More informationCharity Audit Committee performance evaluation Self assessment checklist. October 2014
Charity Audit Committee performance evaluation Self assessment checklist October 2014 With increasing responsibilities and complexities, being a member of the Audit Committee has never been more challenging
More informationGlobal Mobility for Professional Practices Managing a mobile workforce
Global Mobility for Professional Practices Managing a mobile workforce Overview Global Mobility has become a prominent theme as Professional Practice Firms have expanded internationally. Their global strategies,
More informationGovernance in brief BIS and the FRC consult on options for UK implementation of the EU Audit Directive & Regulation
January 2015 Governance in brief BIS and the FRC consult on options for UK implementation of the EU Audit Directive & Regulation Headlines The UK will take the option to extend the mandatory auditor rotation
More informationTransforming customer management in the water sector How to become a leader in customer service
Transforming customer management in the water sector How to become a leader in customer service management strategies have always been important to water companies, with a focus on resolving issues first
More informationDevelopmental assignments Enablers not solutions
Developmental assignments Enablers not solutions In this article we will look at the roots of this phenomenon, and outline some strategic principles followed by organisations which successfully optimise
More informationOperational continuity in recovery and resolution planning Exploring the Service Company structure
Operational continuity in recovery and resolution planning Exploring the Service Company structure Contents The requirement for operational continuity 1 in recovery and resolution planning Operational
More informationThe Internal Audit fraud challenge Prevention, protection, detection
The Internal Audit fraud challenge Prevention, protection, detection Contents Introduction to survey 1 Key findings 2 What are the views of senior management? 3 Adequately resourced? 6 Current trends and
More informationEnhanced Portfolio Management in uncertain times
Enhanced Portfolio Management in uncertain times How businesses can generate and protect value through enhanced, risk return techniques improving portfolio and capital allocation decisions Contents Executive
More informationConsultation Paper CP18/15. Corporate governance: Board responsibilities
Consultation Paper CP18/15 Corporate governance: Board responsibilities May 2015 Prudential Regulation Authority 20 Moorgate London EC2R 6DA Prudential Regulation Authority, registered office: 8 Lothbury,
More informationEffective Internal Audit in the Financial Services Sector
Effective Internal Audit in the Financial Services Sector Recommendations from the Committee on Internal Audit Guidance for Financial Services: How They Relate to the Global Institute of Internal Auditors
More informationA Guide to Corporate Governance for QFC Authorised Firms
A Guide to Corporate Governance for QFC Authorised Firms January 2012 Disclaimer The goal of the Qatar Financial Centre Regulatory Authority ( Regulatory Authority ) in producing this document is to provide
More informationGuidance Note: Corporate Governance - Board of Directors. March 2015. Ce document est aussi disponible en français.
Guidance Note: Corporate Governance - Board of Directors March 2015 Ce document est aussi disponible en français. Applicability The Guidance Note: Corporate Governance - Board of Directors (the Guidance
More informationFinance Business Partnering Less than the sum of the parts. Organisational perception of Finance, percentage of respondents agreeing with statements
Finance Business Partnering Less than the sum of the parts Key points Deloitte s research into Finance Business Partnering has analysed the responses of 75 senior Finance executives from UK headquartered
More informationExtract of article published in International HR Adviser magazine 2013. The role of HR in global mobility
Extract of article published in International HR Adviser magazine 2013 The role of HR in global mobility Increasingly the regional HR director for Asia Pacific for many large multinationals will be based
More informationDeloitte Shared Services, GBS & BPO Conference Shared Services Design Through to Implementation
Deloitte Shared Services, GBS & BPO Conference Shared Services Design Through to Implementation Jo Hart & Charlotte Allen, Deloitte 22 23 September 2015 Berlin, Germany Agenda Shared Services Approach
More informationEffective Internal Audit in the Financial. Services Sector. Non Executive Directors (NEDs) and the Management of Risk
Consultation document Effective Internal Audit in the Financial A survey of heads of internal audit Services Sector Non Executive Directors (NEDs) and the Management of Risk Draft recommendations to the
More informationGUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012
GUIDANCE NOTE FOR DEPOSIT-TAKERS Operational Risk Management March 2012 Version 1.0 Contents Page No 1 Introduction 2 2 Overview 3 Operational risk - fundamental principles and governance 3 Fundamental
More informationAnnual Shared Services and BPO Conference 2013 Shared services from feasibility through to implementation. Tibor Nagy & Jeppe Larsen
Annual Shared Services and BPO Conference 2013 Shared services from feasibility through to implementation Tibor Nagy & Jeppe Larsen Key considerations Will the corporate vision and goals be reached by
More informationBasel Committee on Banking Supervision. Review of the Principles for the Sound Management of Operational Risk
Basel Committee on Banking Supervision Review of the Principles for the Sound Management of Operational Risk 6 October 2014 This publication is available on the BIS website (www.bis.org). Bank for International
More informationTreasury Advisory Services Stability through effective financial risk and liquidity management. Audit. Tax. Consulting. Financial Advisory.
Treasury Advisory Services Stability through effective financial risk and liquidity management Audit. Tax. Consulting. Financial Advisory. Treasury Health Check Identify gaps and benchmark to make informed
More informationISO27032 Guidelines for Cyber Security
ISO27032 Guidelines for Cyber Security Deloitte Point of View on analysing and implementing the guidelines Deloitte LLP Enterprise Risk Services Security & Resilience Contents Foreword 1 Cyber governance
More informationD-G4-L4-231 Data Governance Assessment Design and Implementation Deloitte LLP Service for G- Cloud IV
D-G4-L4-231 Data Governance Assessment Design and Implementation Deloitte LLP Service for G- Cloud IV September 2013 Contents 1 Service Overview 1 2 Detailed Service Description 4 3 Commercials 8 4 Our
More informationAudit Committee. Directors Report. Gary Hughes Chairman, Audit Committee. Gary Hughes Chairman, Audit Committee
Audit Committee Dear Shareholder, We are satisfied that the business has maintained robust risk management and internal controls, supported by strong overall governance processes, and that management have
More informationIndirect Tax Conference VAT and Pensions. Alistair Jones & Andrew Dalah Financial Services VAT 14 November 2014
Indirect Tax Conference VAT and Pensions Alistair Jones & Andrew Dalah Financial Services VAT 14 November 2014 Agenda 1. Introduction 2. Liability Wheels ATP Pension Service United Biscuits 3. Employer/Scheme
More informationRisk appetite as a dynamic management tool
Risk appetite as a dynamic management tool Background The topic of risk appetite is at the centre of attention currently. There are various reasons for this: the financial crisis, which has made it clear
More informationInternal Audit and supervisory expectations building on progress
1 Internal Audit and supervisory expectations building on progress Speech given by Sasha Mills, Director, Cross Cutting Policy, Bank of England Ernst & Young, London 3 February 2016 2 Introductions Hello,
More informationUK Indirect Tax Conference 2015 Automating Indirect Tax Compliance. Jilly McCullagh 11 November 2015
UK Indirect Tax Conference 2015 Automating Indirect Tax Compliance Jilly McCullagh 11 November 2015 What we will cover today Setting the scene Step 1 Understanding the problem Step 2 - Outline current
More informationIFRS industry insights
IFRS Global Office Issue 2, June 2011 IFRS industry insights Joint arrangements in the energy and resources industry The most significant change will likely be the removal of the option to proportionately
More informationCorporate Governance Guidelines
Corporate Governance Guidelines Teachers Federation Health Ltd ABN: 86 097 030 414 Original Endorsed: 25/06/2015 Version: December 2015 1. Corporate Governance Framework 1 2. Board of Directors 2 3. Performance
More informationTHE GOVERNANCE OF RISK MANAGEMENT. Session 5
THE GOVERNANCE OF RISK MANAGEMENT Session 5 Polling Question: Who is primarily responsible for risk governance in any organization? 0% A. The board or board risk committee (if applicable) B. The CRO 0%
More informationUBS presentation Key remediation actions
UBS presentation Key remediation actions Nov 17, 2014 Group-wide actions Integration of Compliance and Operational Risk Control We have integrated Compliance and Operational Risk Control. The key benefits
More informationFrom ICAAP/ORSA to ERM: Board and Senior Management Oversight. Leon Bloom, Partner, Deloitte & Touche LLP lebloom@deloitte.ca
From ICAAP/ORSA to ERM: Board and Senior Management Oversight Leon Bloom, Partner, Deloitte & Touche LLP lebloom@deloitte.ca Agenda Basel II ICAAP Solvency II ORSA ERM From ICAAP/ORSA to ERM: Governance
More informationFCA Thematic Review Delegated Authority: Outsourcing in the General Insurance Market
FCA Restricted IAC Forum FCA Thematic Review Delegated Authority: Outsourcing in the General Insurance Market Lloyd s Old Library 25 September 2015 FCA Restricted Delegated authority: Outsourcing in the
More informationIFRS industry insights
IFRS Global Office April 2012 IFRS industry insights IASB issues revised exposure draft on revenue recognition insights for the insurance industry The revised ED is the next step in developing an entirely
More informationTHE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK
THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK ACCOUNTABLE SIGNATURE AUTHORISED for implementation SIGNATURE On behalf of Chief Executive Officer SAHRA Council Date Date
More informationWealth Advisory Services Winning with clients
Wealth Advisory Services Winning with clients About Us Deloitte, with more than 550 professionals operating out of offices in all major cities is one of the largest and fastest-growing professional services
More informationSolvency II Data audit report guidance. March 2012
Solvency II Data audit report guidance March 2012 Contents Page Introduction Purpose of the Data Audit Report 3 Report Format and Submission 3 Ownership and Independence 4 Scope and Content Scope of the
More informationCapital Adequacy: Advanced Measurement Approaches to Operational Risk
Prudential Standard APS 115 Capital Adequacy: Advanced Measurement Approaches to Operational Risk Objective and key requirements of this Prudential Standard This Prudential Standard sets out the requirements
More informationBusiness Plan 2012/13
Business Plan 2012/13 Contents Introduction 3 About the NFA..4 Priorities for 2012/13 4 Resources.6 Reporting Arrangements.6 Objective 1 7 To raise the profile and awareness of fraud among individuals,
More informationRobotic Process Automation Overview and RPA Case Study. November 2015
Robotic Process Automation Overview and RPA Case Study November 2015 Big data?! Effective data management?! 2 What is Robotic Process Automation (RPA)? Software! Robots are Robots are not Computer coded
More informationCSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg.
Introduction CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting www.corostrandberg.com June 2015 Companies which adopt CSR or sustainability 1
More informationThe Changing IT Risk Landscape Understanding and managing existing and emerging risks
The Changing IT Risk Landscape Understanding and managing existing and emerging risks IIA @ Noon Kareem Sadek Senior Manager, Deloitte Canada Chris Close Senior Manager, Deloitte Canada December 2, 2015
More informationWhat Every Director. How to get the most from your internal audit. Endorsed by
What Every Director Should Know How to get the most from your internal audit Endorsed by Foreword This is the second edition of our flagship governance guide What every director should know. Since we published
More informationFebruary 2015. Audit committee performance evaluation
February 2015 Audit committee performance evaluation Audit committee performance evaluation The following questionnaire is based on emerging and leading practices to assist in the self-assessment of an
More informationIFRS industry insights
IFRS Global Office April 2011 IFRS industry insights The Leases Project An update for the energy and resources industry Several respondents from the energy and resources industry requested that the Boards
More informationFinance Transformed. Changing the focus Finance Business Partnering
Finance Transformed Changing the focus Finance Business Partnering Contents Out of the shadows of the back office 1 Striking the right balance in finance 2 Finance finds multiple barriers to becoming a
More informationAnnual Shared Services and BPO Conference 2013 Continuous improvement end to end - who dares wins. Geoff Gibbons & Mathew Shreeve
Annual Shared Services and BPO Conference 2013 Continuous improvement end to end - who dares wins Geoff Gibbons & Mathew Shreeve Agenda Who Dares Wins Introduction What tools should you have in your shared
More informationWealth Advisory Services Winning with clients
Wealth Advisory Services Winning with clients About Us Deloitte, with more than 500 professionals operating out of offices in all major cities is one of the largest and fastest-growing professional services
More informationCONSULTATION PAPER CP 41 CORPORATE GOVERNANCE REQUIREMENTS FOR CREDIT INSTITUTIONS AND INSURANCE UNDERTAKINGS
CONSULTATION PAPER CP 41 CORPORATE GOVERNANCE REQUIREMENTS FOR CREDIT INSTITUTIONS AND INSURANCE UNDERTAKINGS 2 PROPOSAL 1.1 It is now widely recognised that one of the causes of the international financial
More informationFinancial Services. Internal Audit: What s on the horizon? kpmg.co.uk
Financial Services Internal Audit: What s on the horizon? kpmg.co.uk Contents Introduction 1 Information Security 2 Integrated Assurance any gaps in the plan? 2 Change portfolio is your change portfolio
More informationIntelligent Customer Function (ICF)
CAPABILITY AUDIT FOR HEIs Higher Education Institutions (HEIs) should organically develop their own to successfully manage the process of strategic sourcing. The capability audit provides an assessment
More informationNeed to know Financial Reporting Council issues FRS 103 Insurance Contracts
ukgaap: Beyond the detail Need to know Financial Reporting Council issues FRS 103 Insurance Contracts In a nutshell The Financial Reporting Council (FRC) has issued FRS 103 Insurance Contracts. The standard
More informationOn the horizon 2016 Hot topics for IT internal audit in financial services. An Internal Audit viewpoint
On the horizon 2016 Hot topics for IT internal audit in financial services An Internal Audit viewpoint Introduction Welcome to our fifth annual review of the information technology hot topics for internal
More informationPart A OVERVIEW...1. 1. Introduction...1. 2. Applicability...2. 3. Legal Provision...2. Part B SOUND DATA MANAGEMENT AND MIS PRACTICES...
Part A OVERVIEW...1 1. Introduction...1 2. Applicability...2 3. Legal Provision...2 Part B SOUND DATA MANAGEMENT AND MIS PRACTICES...3 4. Guiding Principles...3 Part C IMPLEMENTATION...13 5. Implementation
More informationthe role of the head of internal audit in public service organisations 2010
the role of the head of internal audit in public service organisations 2010 CIPFA Statement on the role of the Head of Internal Audit in public service organisations The Head of Internal Audit in a public
More informationOWN RISK AND SOLVENCY ASSESSMENT AND ENTERPRISE RISK MANAGEMENT
OWN RISK AND SOLVENCY ASSESSMENT AND ENTERPRISE RISK MANAGEMENT ERM as the foundation for regulatory compliance and strategic business decision making CONTENTS Introduction... 3 Steps to developing an
More informationSample risk committee charter
Sample risk committee charter 1 Next This sample risk committee charter is based on leading practices observed by Deloitte in the analysis of a variety of materials. It is important to note that the Risk
More informationRisk committee performance evaluation
Risk committee performance evaluation While there is currently not a legal or regulatory requirement for board risk committees to complete a performance evaluation, King III recommends regular performance
More informationAudit, Risk Management and Compliance Committee Charter
Audit, Risk Management and Compliance Committee Charter Woolworths Limited Adopted by the Board on 27 August 2013 page 1 1 Introduction This Charter sets out the responsibilities, structure and composition
More informationA guide to investing. Appendix 10 Choice of business entity
A guide to investing in Wales Appendix 10 Choice of business entity August 2013 Appendix 10 Choice of business entity 1. Principal forms of doing business Business organisations in the UK usually take
More informationThe Role of the Board in Enterprise Risk Management
Enterprise Risk The Role of the Board in Enterprise Risk Management The board of directors plays an essential role in ensuring that an effective ERM program is in place. Governance, policy, and assurance
More informationLinking Risk Management to Business Strategy, Processes, Operations and Reporting
Linking Risk Management to Business Strategy, Processes, Operations and Reporting Financial Management Institute of Canada February 17 th, 2010 KPMG LLP Agenda 1. Leading Practice Risk Management Principles
More informationCorporate Governance and Enterprise Risk Management Derek Jackson, Senior Manager 5 September 2005
Corporate Governance and Enterprise Risk Management Derek Jackson, Senior Manager 5 September 2005 Corporate Governance Services 0 Overview Hong Kong Code on Corporate Governance Practices Corporate Governance
More informationDate of Trust Board 29 th January 2014. Title of Report Performance Management Strategy - 2013-2016
ENCLOSURE: P Date of Trust Board 29 th January 2014 Title of Report Performance Management Strategy - 2013-2016 Purpose of Report Abstract To set out the Performance Management Strategy of the Trust in
More informationIRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS
IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS 1 Module 1: Principles of Risk and Risk Management Module aims The aim of this module is to provide an introduction to the principles and concepts of risk and
More informationPeople & Organisational Development Strategy
2013-2018 People & Organisational Development Strategy Delivering excellent research Delivering an excellent student experience Enhancing global reach and reputation 1. Introduction Glasgow 2020: A global
More informationFSB Principles for Sound Compensation Practices. Implementation Standards
FSB Principles for Sound Compensation Practices Implementation Standards 25 September 2009 FSB Principles for Sound Compensation Practices Implementation Standards Compensation at significant financial
More informationESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014
ESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014 Dear Chairperson, I would like to thank you for the opportunity to provide management
More informationExposure Draft Statement of Recommended Practice: Financial Statements of Investment Trust Companies and Venture Capital Trusts
Deloitte LLP 2 New Street Square London EC4A 3BZ Tel: +44 (0) 20 7936 3000 Fax: +44 (0) 20 7583 1198 www.deloitte.co.uk Direct: 0207 007 0884 Direct fax: 020 7007 0158 vepoole@deloitte.co.uk John Stevens
More informationFraming the future of corporate governance Deloitte Governance Framework
Framing the future of corporate governance Deloitte Governance Framework For those interested in the topic of corporate governance, these are dynamic times. The events of the past decade have led to the
More informationInternational Diploma in Risk Management Syllabus
International Diploma in Risk Management Syllabus Module 1: Principles of Risk and Risk Management The aim of this module is to provide an introduction to the principles and concepts of risk and risk management.
More informationAdopted by the Board of Directors of the Nordic Investment Bank on 17 December 2009 COMPLIANCE POLICY
Adopted by the Board of Directors of the Nordic Investment Bank on 17 December 2009 COMPLIANCE POLICY 1 PREFACE This Policy is approved by the Board of Directors and enters into force as of 1 January 2010.The
More informationCyber Security Evolved
Cyber Security Evolved Aware Cyber threats are many, varied and always evolving Being aware is knowing what is going on so you can figure out what to do. The challenge is to know which cyber threats are
More informationUnderstanding and articulating risk appetite
Understanding and articulating risk appetite advisory Understanding and articulating risk appetite Understanding and articulating risk appetite When risk appetite is properly understood and clearly defined,
More informationThis image cannot currently be displayed. D-G4-L4-241 Predictive analytics (software as service) Deloitte LLP Service for G-Cloud IV
This image cannot currently be displayed. D-G4-L4-241 Predictive analytics (software as service) Deloitte LLP Service for G-Cloud IV September 2013 Contents 1 Service Overview 1 2 Detailed Service Description
More informationDATA AUDIT: Scope and Content
DATA AUDIT: Scope and Content The schedule below defines the scope of a review that will assist the FSA in its assessment of whether a firm s data management complies with the standards set out in the
More informationLow Default Portfolio (LDP) modelling
Low Default Portfolio (LDP) modelling Probability of Default (PD) Calibration Conundrum 3 th August 213 Introductions Thomas Clifford Alexander Marianski Krisztian Sebestyen Tom is a Senior Manager in
More informationBusiness Planning & Budgetary Control 2012/13
Cymdeithas Tai Cantref Cyf Final Internal Audit Report Business Planning & Budgetary Control 2012/13 Date of fieldwork: October November 2012 Date of draft report: November 2012 Date of final report: November
More informationNavigate the regulatory maze
www.pwc.com.cy Navigate the regulatory maze Delivering Regulatory Compliance services to the Financial Services industry September 2014 As at July 2014 there were more than 40 licensed banking institutions
More informationCompany Cars Top Tips & Trends
Company Cars Top Tips & Trends E-Reward Annual Conference 24 November 2011 Elspeth Jones Innecto Mike Moore - Deloitte Elspeth Jones 07775 817940 www.innectogroup.co.uk Going Green & Staying Safe Top Tips
More informationAudit Quality Thematic Review
Thematic Review Professional discipline Financial Reporting Council January 2014 Audit Quality Thematic Review Fraud risks and laws and regulations The FRC is responsible for promoting high quality corporate
More informationBasel Committee on Banking Supervision
Basel Committee on Banking Supervision Consultative document Guidelines Corporate governance principles for banks Issued for comments by 9 January 2015 October 2014 This publication is available on the
More information11/12/2013. Role of the Board. Risk Appetite. Strategy, Planning and Performance. Risk Governance Framework. Assembling an effective team
Role of the Board Risk Appetite Strategy, Planning and Performance Risk Governance Framework Assembling an effective team Role of the CEO Accountability and Disclosure 1 Board members should act on a fully
More informationConfident in our Future, Risk Management Policy Statement and Strategy
Confident in our Future, Risk Management Policy Statement and Strategy Risk Management Policy Statement Introduction Risk management aims to maximise opportunities and minimise exposure to ensure the residents
More informationYEARENDED31DECEMBER2013 RISKMANAGEMENTDISCLOSURES
RISKMANAGEMENTDISCLOSURES 2015 YEARENDED31DECEMBER2013 ACCORDINGTOCHAPTER7(PAR.34-38)OFPARTCANDANNEXXIOFTHECYPRUSSECURITIES ANDEXCHANGECOMMISSIONDIRECTIVEDI144-2007-05FORTHECAPITALREQUIREMENTSOF INVESTMENTFIRMS
More informationAberdeen City Council IT Governance
Aberdeen City Council IT Governance Internal Audit Report 2013/2014 for Aberdeen City Council May 2014 Internal Audit KPIs Target Dates Actual Dates Red/Amber/Green Commentary where applicable Terms or
More informationBecoming Reactively Proactive Rethinking compliance risk management in today's environment
Becoming Reactively Proactive Rethinking compliance risk management in today's environment J.H. Caldwell Partner Regulatory & Risk Strategies John Graetz Principal Governance, Regulatory & Risk Strategies
More informationAnnual Shared Services and BPO Conference 2013 The art of the possible for shared services how to streamline your local finance organisation
Annual Shared Services and BPO Conference 2013 The art of the possible for shared services how to streamline your local finance organisation Denes Lang & Vazul Toth DIAGEO AND GLOBAL SHARED SERVICES The
More informationTax Incentives in the Gaming Industry
Tax Incentives in the Gaming Industry Garry Tetley 6 September 2012 Overview of UK Tax Regime for Dynamic Creative Companies Favourable and improving R&D credits, Patent Box, Creative Industries Relief
More information