Risk Management Solution for NPO

Size: px
Start display at page:

Download "Risk Management Solution for NPO"

Transcription

1 Risk Management Solution for NPO Achieving Mission with Best in Governance Disclaimer While utmost care has been taken to ensure content accuracy at the time of writing, no person should rely on the contents in this presentation without first obtaining advice from a qualified professional. These presentation slides are issued on the terms and understanding that (1) the author is not responsible for the results of any actions taken on the basis of information in these slides, nor for any error in or omission from these slides; and (2) the author expressly disclaims all and any liability and responsibility to any person, whether a reader of these slides or not, in respect of anything, and of the consequences of anything, done, or Business omitted to be Advisors done by any to such Growing person Businesses reliance, whether wholly or partially, upon the whole or any part of the contents of these slides. Information contained herein is proprietary to RSM Risk Advisory Pte Ltd and no part should be reproduced without prior permission and due acknowledgement.

2 Risk Management Solution for NPO Why a need for a NPO solution? Practical yet effective solution based on limited resources of NPO Provide a robust framework & transfer of skill to enable continuous updating & monitoring of risks by NPO Kickoff Risk Awareness Workshop for Board and Management to promote an open governance & risk awareness culture Engagement and ownership of risks by the management team, & build capability to actively manage risks Identify gaps in governance practice Identify gaps in internal control & risk management Provide Board with assurance on internal control & risk management 2

3 What is Risk? The possibility that an event will occur and adversely affects the achievement of objectives 3

4 Who is responsible for Risk Management? Board Audit Finance Investment Programs Risk Volunteers HR Fundraising Nominating Governance PR Building Management Staff Volunteers 4

5 Code of Governance for Charities and IPC Financial Management & Controls 6.1 Operational Controls There should be policy to seek the Board s approval for any loan made by the charity or donations to external parties The charity should ensure that internal control systems are in place with documented procedures approved by the Board for financial matters in key areas, including: Procurement procedures and controls; Receipting, payment procedures and controls; and System for the delegation of authority and limits of approval The Board should ensure that reviews are conducted from time to time on the charity s controls, processes, key programmes and events (e.g. fundraising) 5

6 Corporate Governance Code Principle 11 Risk Management & Internal Controls The Board is responsible for the governance of risk The Board should determine the nature & extent of the significant risks which the Board is willing to take in achieving the company s objectives The Board should ensure that Management maintains a sound system of risk management & internal controls Conclusion: The Board is responsible for the governance of risk 6

7 How does the Board get the assurance? 7

8 The 3 Lines of Defence Source: IIA, Leveraging COSO across the three lines of defense 8

9 The 3 Lines of Defence for NPO Boards The responsibilities of each line of defence: 1st: Own and manage risk and control (Front line) 2nd: Monitor risk and control (independent risk, control and compliance functions) 3rd: Provide independent assurance to the Board and Senior Management (Internal Audit) For NPO: Paid executives as the first line of defense own & manage risks An effective committee structure act as second line of defense by ensuring that controls implemented by first line are appropriate & adequate, and monitoring performance and KPIs Internal audit provides the independent assessment 9

10 RISK MANAGEMENT SOLUTION FOR NPO Engagement & Ownership by the Management team 10

11 Risk Management Solution for NPO Mission & Vision Corporate Strategic Objectives Risk Management Board & Risk Risk Appetite Risk Tolerance Risk Management Framework Instruction Management Reporting Summary Risk Report Policy Structure Roles & Responsibilities Risk Awareness Workshop Risk Reports Objectives Appetite & Tolerance Risk registers Mitigations Risk Management Process Identification Evaluation Analysis Treatment Functional Units Sub-Objectives Risk Appetite Risk Tolerance RSM to provide draft RSM to facilitate workshops 11

12 Advantages of our Solution We provide the complete risk management framework including the risk organization structure, policy, process & templates to enable continuous reporting & monitoring by the NPO Clarity of roles & responsibilities for Board, Risk, Audit, Management Risk (MRC), Chief Risk Coordinator, & Internal Auditor Kickoff Risk Awareness Workshop for Board and Management to promote an open governance & risk awareness culture Through risk workshops facilitated by our senior risk professionals, we train the MRC to perform self updating of respective risk registers in the future Clarity of ownership & responsibility for the Risk Register Clarity of objectives, related risk appetite & tolerance limits Facilitates setting of KPIs Assessing the adequacy of current controls, improving or implementing new controls Improved communication & coordination Improve effectiveness of the Internal Audit function 12

13 Principles Driving the Approach (1 of 2) The risk management framework is developed based on ISO Principles & Guidelines COSO ERM Integrated Framework 13

14 Principles Driving the Approach (2 of 2) Assess the adequacy of Board assurance framework based on 14

15 Detailed Steps of Our Engagement Step 2 Define strategic objectives Articulate risk appetite statements Set related risk tolerance limits Step 1 Form the Management Risk Kickoff Risk Awareness Workshop Adopt the Risk Management Policy & Risk Organization Structure, Roles & Responsibilities Step 4 Prepare risk registers Prepare summary report for Risk & Board Step 3 Identify risks Analyze & evaluate risks Control & mitigate risks Assign responsibility & timeline 15

16 CONTACT US This seminar may be photographed for archival purposes. The photos may also be used for the firm's website, social media platforms, newsletters and other marketing collaterals. Please highlight to the event organiser and speaker before the session starts should you wish to be excluded from the photos. RSM Risk Advisory 8 Wilkie Road, #03-08, Wilkie Edge, Singapore T F info@rsmsingapore.sg SOVANN GIANG, Senior Director sovanngiang@rsmsingapore.sg Phone: (65) Mobile: (65) DENNIS LEE, Director dennislee@rsmsingapore.sg Phone: (65) Mobile: (65)

LEVERAGING COSO ACROSS THE THREE LINES OF DEFENSE

LEVERAGING COSO ACROSS THE THREE LINES OF DEFENSE Committee of Sponsoring Organizations of the Treadway Commission Governance and Internal Control LEVERAGING COSO ACROSS THE THREE LINES OF DEFENSE By The Institute of Internal Auditors Douglas J. Anderson

More information

IIA POSITION PAPER: THE ROLE OF INTERNAL AUDITING IN ENTERPRISE-WIDE RISK MANAGEMENT

IIA POSITION PAPER: THE ROLE OF INTERNAL AUDITING IN ENTERPRISE-WIDE RISK MANAGEMENT IIA POSITION PAPER: THE ROLE OF INTERNAL AUDITING IN ENTERPRISE-WIDE RISK MANAGEMENT Revised: Page 1 of 8 Introduction The importance to strong corporate governance of managing risk has been increasingly

More information

Sample risk committee charter

Sample risk committee charter Sample risk committee charter 1 Next This sample risk committee charter is based on leading practices observed by Deloitte in the analysis of a variety of materials. It is important to note that the Risk

More information

COVER: to be inserted. APIA Industry Guideline for Effective Auditing and Enhanced HSE Performance

COVER: to be inserted. APIA Industry Guideline for Effective Auditing and Enhanced HSE Performance COVER: to be inserted APIA Industry Guideline for Effective Auditing and Enhanced HSE Performance 1 Published by Australian Pipeline Industry Association Ltd Document prepared by Environmental Management

More information

Charities and Institutions of a Public Character

Charities and Institutions of a Public Character Code of Governance for Charities and Institutions of a Public Character Issued by: THE CHARITY COUNCIL 19 January 2011 CONTENT INTRODUCTION WHY A CODE OF GOVERNANCE? 05 PREAMBLE 05 TIERED GUIDELINES 06

More information

IIA Position Paper: THE THREE LINES OF DEFENSE IN EFFECTIVE RISK MANAGEMENT AND CONTROL

IIA Position Paper: THE THREE LINES OF DEFENSE IN EFFECTIVE RISK MANAGEMENT AND CONTROL IIA Position Paper: THE THREE LINES OF DEFENSE IN EFFECTIVE RISK MANAGEMENT AND CONTROL JANUARY 2013 TABLE OF CONTENTS Introduction... 1 Before the Three Lines: Risk Management Oversight and Strategy-Setting...

More information

DTZ Corporate Finance Limited Pillar 3 Disclosures as at 30 April 2009

DTZ Corporate Finance Limited Pillar 3 Disclosures as at 30 April 2009 DTZ Corporate Finance Limited Pillar 3 Disclosures as at 30 April 2009 16 March 2010 Contents OVERVIEW 1 Introduction 1 Structure and principal activities 1 Basis of disclosures 1 Frequency of disclosures

More information

OHS MANAGEMENT SYSTEMS

OHS MANAGEMENT SYSTEMS OHS MANAGEMENT SYSTEMS LSBU s Occupational Health Nursing Mini Lecture Series Welcome to this information sheet on occupational health and safety (OHS) management systems, which accompanies the mini lecture

More information

engage ERM ADVISORY Insurer Management Risk Committee Practices

engage ERM ADVISORY Insurer Management Risk Committee Practices engage ERM ADVISORY Insurer Management Risk Committee Practices 2012 There are three major organizational steps that insurers with significant Enterprise Risk Management programs usually consider: the

More information

Administrative Guidelines on the Internal Control Framework and Internal Audit Standards

Administrative Guidelines on the Internal Control Framework and Internal Audit Standards Administrative Guidelines on the Internal Control Framework and Internal Audit Standards GCF/B.09/18 18 February 2015 Meeting of the Board 24 26 March 2015 Songdo, Republic of Korea Agenda item 24 Page

More information

Compliance. Group Standard

Compliance. Group Standard Group Standard Compliance Serco is committed to good governance practices and the management of risks supported by a robust business compliance process SMS-GS-G2 Compliance July 2014 v1.0 Serco Public

More information

Request for Proposals. Annual Audit Services For the fiscal years ending December 31 st : 2012 2013 2014 2015 2016

Request for Proposals. Annual Audit Services For the fiscal years ending December 31 st : 2012 2013 2014 2015 2016 Request for Proposals Annual Audit Services For the fiscal years ending December 31 st : 2012 2013 2014 2015 2016 Proposals will be received up to and including close of business on December 23, 2011 and

More information

Audit. In today s constantly changing business. The Relevant

Audit. In today s constantly changing business. The Relevant Edward Hill, CIA, CPA Executive Director Business Advisory Services Grant Thornton LLP The Relevant Audit IT GAIT-R provides a top-down, risk-based approach to scoping IT risks and processes into audits.

More information

Key Steps to Implementing a Performance Management Process

Key Steps to Implementing a Performance Management Process Key Steps to Implementing a Performance Management Process COPYRIGHT NOTICE PPA Consulting Pty Ltd (ACN 079 090 547) 2005-2013 You may only use this document for your own personal use or the internal use

More information

Sarbanes-Oxley Section 404 Compliance: A Guiding Framework using igrafx SOX Accelerator

Sarbanes-Oxley Section 404 Compliance: A Guiding Framework using igrafx SOX Accelerator Sarbanes-Oxley Section 404 Compliance: A Guiding Framework using igrafx SOX Accelerator 2007 Corel Corporation. All Rights Reserved. Table of Contents Introduction...P - 1 Using igrafx for SOX Compliance...P

More information

REHABILITATION MANAGEMENT SYSTEM AUDIT TOOL

REHABILITATION MANAGEMENT SYSTEM AUDIT TOOL REHABILITATION MANAGEMENT SYSTEM AUDIT TOOL Reviewing rehabilitation management systems and compliance under the Safety, Rehabilitation and Compensation Act 1988 and Guidelines for Rehabilitation Authorities

More information

RISK MANAGEMENT FRAMEWORK. 2 RESPONSIBLE PERSON: Sarah Price, Chief Officer

RISK MANAGEMENT FRAMEWORK. 2 RESPONSIBLE PERSON: Sarah Price, Chief Officer RISK MANAGEMENT FRAMEWORK 1 SUMMARY The Risk Management Framework consists of the following: Risk Management policy Risk Management strategy Risk Management accountability Risk Management framework structure.

More information

Enterprise Risk Management Policy

Enterprise Risk Management Policy Enterprise Risk Management Policy A Framework for Managing Opportunity and Risk Date: 27 November 2015 Version: 13.0 Classification: Unclassified Authors: Julie Holland - Risk Management Facilitator Quality

More information

How To Write A Risk Management Policy For The University Of Kerry

How To Write A Risk Management Policy For The University Of Kerry Risk Management Policy Originator name: Department: Implementation date: Ruth Anderson Finance 1 August 2013 Date of next review: 1 August 2016 Related policies: Health & Safety Policy, Equality & Diversity

More information

Pictet Asset Management Ltd

Pictet Asset Management Ltd FEBRUARY 2016 Pictet Asset Management Ltd Pillar 3 Disclosure Contents 1. Introduction 2 2. Scope 2 3. Risk Management Objectives and Policies 3 4. Capital Resources and Capital Adequacy 6 February 2016

More information

RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012)

RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012) RISK MANAGEMENT REPORT (for the Financial Year Ended 31 March 2012) Integrated Risk Management Framework The Group s Integrated Risk Management Framework (IRMF) sets the fundamental elements to manage

More information

Information Security Management Systems

Information Security Management Systems Information Security Management Systems Øivind Høiem CISA, CRISC, ISO27001 Lead Implementer Senior Advisor Information Security UNINETT, the Norwegian NREN About Øivind Senior Adviser at the HE sector

More information

Information Technology Control Framework in the Federal Government Considerations for an Audit Strategy

Information Technology Control Framework in the Federal Government Considerations for an Audit Strategy Information Technology Control Framework in the Federal Government Considerations for an Audit Strategy Presentation to The Institute of Internal Auditors Breakfast Session February 6, 2014 Outline of

More information

Governance and Management of Information Security

Governance and Management of Information Security Governance and Management of Information Security Øivind Høiem, CISA CRISC Senior Advisor Information Security UNINETT, the Norwegian NREN About Øivind Senior Adviser at the HE sector secretary for information

More information

Risk M Guide N anagement Sof ot twes are Benchmarker

Risk M Guide N anagement Sof ot twes are Benchmarker Risk Management Guide Software Notes Benchmarker TM Benchmarker TM is an online tool for risk managers to assess the effectiveness of 100+ enterprise risk management capabilities. Benefit from practicing

More information

Internal Financial Controls

Internal Financial Controls Internal Financial Controls Who All Are Responsible? 3 What is Internal Financial Control (IFC)? 5 What is Internal financial controls over financial reporting (ICFR)? Internal Controls Global Perspective

More information

RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY

RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY PRESENTED BY: LEN WIATR, CHIEF RISK OFFICER Len s Risk Management Philosophy Build a

More information

Key Steps to Implementing Performance Management

Key Steps to Implementing Performance Management Key Steps to Implementing Performance Management Key Steps to Implementing Performance Management COPYRIGHT NOTICE PPA Consulting Pty Ltd (ACN 079 090 547) 2005-2013 You may only use this document for

More information

ENTERPRISE RISK MANAGEMENT POLICY

ENTERPRISE RISK MANAGEMENT POLICY ENTERPRISE RISK MANAGEMENT POLICY TITLE OF POLICY POLICY OWNER POLICY CHAMPION DOCUMENT HISTORY: Policy Title Status Enterprise Risk Management Policy (current, revised, no change, redundant) Approving

More information

CHINA LEGAL REPORT* APRIL. Subject Debt Collection in China. I Introduction II Affirmation of the debts III Post-affirmation enforcement

CHINA LEGAL REPORT* APRIL. Subject Debt Collection in China. I Introduction II Affirmation of the debts III Post-affirmation enforcement CHINA LEGAL REPORT* 2014 APRIL 201 * CHINA LEGAL Report is a monthly collection of Chinese law related news gathered from various media and news services, edited by WENFEI ATTORNE-LAW LTD. distributed

More information

Brevan Howard Asset Management LLP Pillar 3 Disclosures. Brevan Howard (2014). All Rights Reserved.

Brevan Howard Asset Management LLP Pillar 3 Disclosures. Brevan Howard (2014). All Rights Reserved. Brevan Howard Asset Management LLP Brevan Howard (2014). All Rights Reserved. Regulatory Context The following disclosures are provided pursuant to the Pillar 3 disclosure rules as laid out by the Financial

More information

Practice Guide COORDINATING RISK MANAGEMENT AND ASSURANCE

Practice Guide COORDINATING RISK MANAGEMENT AND ASSURANCE Practice Guide COORDINATING RISK MANAGEMENT AND ASSURANCE March 2012 Table of Contents Executive Summary... 1 Introduction... 1 Risk Management and Assurance (Assurance Services)... 1 Assurance Framework...

More information

CUSTOMER FUNDS PROTECTION AT NEWEDGE FINANCIAL SINGAPORE PTE LTD

CUSTOMER FUNDS PROTECTION AT NEWEDGE FINANCIAL SINGAPORE PTE LTD NEWEDGE CUSTOMER FUNDS PROTECTION AT NEWEDGE FINANCIAL SINGAPORE PTE LTD January 2015 OVERVIEW The foundation for protecting customer property when customer trades with us is three-fold: Segregation Capital

More information

1. Trustees annual report

1. Trustees annual report 1. Trustees annual report Accounting and reporting by charities Overview and the purpose of the trustees annual report 1.1. The primary purpose of the trustees annual report (the report) is to ensure that

More information

GUIDELINE NO. 22 REGULATORY AUDITS OF ENERGY BUSINESSES

GUIDELINE NO. 22 REGULATORY AUDITS OF ENERGY BUSINESSES Level 37, 2 Lonsdale Street Melbourne 3000, Australia Telephone.+61 3 9302 1300 +61 1300 664 969 Facsimile +61 3 9302 1303 GUIDELINE NO. 22 REGULATORY AUDITS OF ENERGY BUSINESSES ENERGY INDUSTRIES JANUARY

More information

Guideline. Records Management Strategy. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.0. Issue Date: 19/07/2010

Guideline. Records Management Strategy. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.0. Issue Date: 19/07/2010 Public Record Office Victoria PROS 10/10 Strategic Management Guideline 5 Records Management Strategy Version Number: 1.0 Issue Date: 19/07/2010 Expiry Date: 19/07/2015 State of Victoria 2010 Version 1.0

More information

Introduction to Enterprise Risk Management at UVM DRAFT

Introduction to Enterprise Risk Management at UVM DRAFT Introduction to Enterprise Management at UVM 1 Enterprise What is Enterprise Management? Enterprise risk management is a structured, consistent, and continuous process across the whole organization for

More information

Office of the Auditor General AUDIT OF IT GOVERNANCE. Tabled at Audit Committee March 12, 2015

Office of the Auditor General AUDIT OF IT GOVERNANCE. Tabled at Audit Committee March 12, 2015 Office of the Auditor General AUDIT OF IT GOVERNANCE Tabled at Audit Committee March 12, 2015 This page has intentionally been left blank Table of Contents Executive Summary... 1 Introduction... 1 Background...

More information

NDIS Transition Readiness and Business Support Services

NDIS Transition Readiness and Business Support Services NDIS Transition Readiness and Business Support Services High Level Introduction Specific skills and expertise we make available to ACT providers looking to undertake major strategic/structural reform A

More information

JOB DESCRIPTION DIGITAL FUNDRAISING & MARKETING COORDINATOR

JOB DESCRIPTION DIGITAL FUNDRAISING & MARKETING COORDINATOR JOB DESCRIPTION DIGITAL FUNDRAISING & MARKETING COORDINATOR Reporting to: Employment Status: Director Fundraising Marketing and Communications Full-time Date Prepared: August 2015 POSITION PURPOSE The

More information

Reserve Bank of Fiji Insurance Supervision Policy Statement No. 8 MINIMUM REQUIREMENTS FOR RISK MANAGEMENT FRAMEWORKS OF LICENSED INSURERS IN FIJI

Reserve Bank of Fiji Insurance Supervision Policy Statement No. 8 MINIMUM REQUIREMENTS FOR RISK MANAGEMENT FRAMEWORKS OF LICENSED INSURERS IN FIJI Reserve Bank of Fiji Insurance Supervision Policy Statement No. 8 NOTICE TO INSURANCE COMPANIES LICENSED UNDER THE INSURANCE ACT 1998 MINIMUM REQUIREMENTS FOR RISK MANAGEMENT FRAMEWORKS OF LICENSED INSURERS

More information

Compliance & Internal Audit Collaboration

Compliance & Internal Audit Collaboration www.pwc.com Compliance & Internal Collaboration Developing a compliance third line of October 2015 The Society of Corporate Compliance & Ethics 14 th Annual Compliance & Ethics Institute Conference Introductions

More information

Leadership & People Management WSQ

Leadership & People Management WSQ Our frontline leaders in SIA are empowered to lead our service teams to achieve the highest levels of service excellence. They are trained in core functional skills as well as given the opportunity to

More information

www.pwc.co.uk Beyond Sport Online Learning Session Toolkit: Making Best Use of Your People

www.pwc.co.uk Beyond Sport Online Learning Session Toolkit: Making Best Use of Your People www.pwc.co.uk Beyond Sport Online Learning Session Toolkit: Making Best Use of Your People What topics does this toolkit address? How to organise your people and structure your team How to performance

More information

Enterprise risk management: A pragmatic, four-phase implementation plan

Enterprise risk management: A pragmatic, four-phase implementation plan Enterprise risk management: A pragmatic, four-phase implementation plan Prepared by: John Brackett, Managing Director, Risk Advisory Services, RSM McGladrey, Inc. 704.442.3820, john.brackett@mcgladrey.com

More information

White Paper. Enterprise Information Governance. Date Released: September 2014. Author/s: Astral Consulting. www.astral.com.au.

White Paper. Enterprise Information Governance. Date Released: September 2014. Author/s: Astral Consulting. www.astral.com.au. White Paper Enterprise Information Governance Date Released: September 2014 Author/s: Astral Consulting Disclaimer This White Paper is published for general information purposes only. Nothing in the White

More information

Risk Management Strategy & Implementation Plan 2014 2016

Risk Management Strategy & Implementation Plan 2014 2016 St George s Healthcare NHS Trust: the next decade Risk Management Strategy & Implementation Plan 2014 2016 DRAFT VERSION 6.0 UPDATED 19.11.14 Executive summary We know, from external assurances received

More information

The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework

The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework Dorothy Gjerdrum, ARM-P, Chair of the ISO 31000 US TAG and Executive Director,

More information

Internal Audit of the Georgia Country Office

Internal Audit of the Georgia Country Office Internal Audit of the Georgia Country Office Office of Internal Audit and Investigations (OIAI) Report 2013/48 Internal Audit of the Georgia Country Office (2013/48) 2 Summary The Office of Internal Audit

More information

Glasgow Life Risk Management & Business Continuity Planning. Final Report

Glasgow Life Risk Management & Business Continuity Planning. Final Report Glasgow Life Risk Management & Business Continuity Planning Final Report INTERNAL AUDIT October 2014 Glasgow City Council Internal Audit 1 Glasgow Life Risk Management & Business Continuity Planning Table

More information

ENTERPRISE RISK MANAGEMENT FRAMEWORK

ENTERPRISE RISK MANAGEMENT FRAMEWORK ROCKHAMPTON REGIONAL COUNCIL ENTERPRISE RISK MANAGEMENT FRAMEWORK 2013 Adopted 25 June 2013 Reviewed: October 2015 TABLE OF CONTENTS 1. Introduction... 3 1.1 Council s Mission... 3 1.2 Council s Values...

More information

G24: Audits of Controls at a Service Organization: New Standards SSAE 16 and ISAE 3402 Duff Donnelly and Jeffrey Spivack, Grant Thornton LLP

G24: Audits of Controls at a Service Organization: New Standards SSAE 16 and ISAE 3402 Duff Donnelly and Jeffrey Spivack, Grant Thornton LLP G24: Audits of Controls at a Service Organization: New Standards SSAE 16 and ISAE 3402 Duff Donnelly and Jeffrey Spivack, Grant Thornton LLP Audits of controls at a service organization Roadmap to the

More information

Impact of New Internal Control Frameworks

Impact of New Internal Control Frameworks Impact of New Internal Control Frameworks Webcast: Tuesday, February 25, 2014 CPE Credit: 1 0 With You Today Bob Jacobson Principal, Risk Advisory Services Consulting Leader West Region Bob.Jacobson@mcgladrey.com

More information

Vendor. Management. For sponsorship or to become our partner, contact: marketing@achromicpoint.com

Vendor. Management. For sponsorship or to become our partner, contact: marketing@achromicpoint.com Knowledge Partner Presents 27th May 2015 - Bengaluru 5th June 2015 - New Delhi 24th June 2015 - Mumbai Vendor Risk Management For sponsorship or to become our partner, contact: marketing@achromicpoint.com

More information

Enterprise Risk Management Panel Discussion

Enterprise Risk Management Panel Discussion Enterprise Risk Management Panel Discussion Facilitators Bill Cole, VCU and VCUHS CAE Michael Bordoni, former Emory University CAE, now DHG (Dixon Hughes Goodman LLP) Risk Advisory Services Partner Gary

More information

SECTION B DEFINITION, PURPOSE, INDEPENDENCE AND NATURE OF WORK OF INTERNAL AUDIT

SECTION B DEFINITION, PURPOSE, INDEPENDENCE AND NATURE OF WORK OF INTERNAL AUDIT SECTION B DEFINITION, PURPOSE, INDEPENDENCE AND NATURE OF WORK OF INTERNAL AUDIT Through CGIAR Financial Guideline No 3 Auditing Guidelines Manual the CGIAR has adopted the IIA Definition of internal auditing

More information

Risk Management Framework

Risk Management Framework Risk Management Framework Mandate and commitment Design of framework for managing risks Continual improvement of the framework Implementing risk management Monitoring and review of the framework Source:

More information

Association for Project Management Business Management System

Association for Project Management Business Management System Association for Project Management Business Management System December 2012 2 Association for Project Management About APM Formed in 1972, the Association for Project Management (APM) is committed to developing

More information

Developing an Effective Enterprise Risk Management Program

Developing an Effective Enterprise Risk Management Program Developing an Effective Enterprise Risk Management Program Jay Brietz, CPA and CIA Senior Manager This material was used by Elliott Davis Decosimo during an oral presentation; it is not a complete record

More information

Information Commissioner's Office

Information Commissioner's Office Phil Keown Engagement Lead T: 020 7728 2394 E: philip.r.keown@uk.gt.com Will Simpson Associate Director T: 0161 953 6486 E: will.g.simpson@uk.gt.com Information Commissioner's Office Internal Audit 2015-16:

More information

Following up recommendations/management actions

Following up recommendations/management actions 09 May 2016 Following up recommendations/management actions Chartered Institute of Internal Auditors At the conclusion of an audit, findings and proposed recommendations are discussed with management and

More information

IT REVIEW OF THE DISASTER RECOVERY ARRANGEMENTS

IT REVIEW OF THE DISASTER RECOVERY ARRANGEMENTS NOTTINGHAM CITY HOMES IT REVIEW OF THE DISASTER RECOVERY ARRANGEMENTS Report issued: February 2011 Audit Plan: The matters raised in this report are only those that came to the attention of the auditor

More information

Copyright 2015 The Ins4tutes

Copyright 2015 The Ins4tutes ERM 57 Review ERM001 Speakers: Michael W. Elliott, CPCU, AIAF, Senior Director of Knowledge Resources, The Institutes Ann Myhr, CPCU, ARM, AU, Senior Director of Knowledge Resources, The Institutes Learning

More information

Audit Committee Institute Evaluation of internal auditors

Audit Committee Institute Evaluation of internal auditors Audit Committee Institute Evaluation of internal auditors KPMG s AUDIT COMMITTEE INSTITUTE The current spate of restated financial statements, missed earnings projections, and high profile corporate failures

More information

IT Governance Charter

IT Governance Charter Version : 1.01 Date : 16 September 2009 IT Governance Network South Africa USA UK Switzerland www.itgovernance.co.za info@itgovernance.co.za 0825588732 IT Governance Network, Copyright 2009 Page 1 1 Terms

More information

Running an Effective Office of the CIO

Running an Effective Office of the CIO Running an Effective Office of the CIO Key Findings from the Chief of Staff Time Allocation and Responsibilities Survey CEB CIO Leadership Council A Framework for Member Conversations The mission of The

More information

COMPANIES LIMITED BY GUARANTEE

COMPANIES LIMITED BY GUARANTEE COMPANIES LIMITED BY GUARANTEE Directors Duties Factsheets for Board Members Factsheet 1: Directors and companies limited by guarantee (The law is as stated at August 2012) The Australian Centre for Philanthropy

More information

Good Practice Guide: the internal audit role in information assurance

Good Practice Guide: the internal audit role in information assurance Good Practice Guide: the internal audit role in information assurance Janaury 2010 Good Practice Guide: the internal audit role in information assurance January 2010 Official versions of this document

More information

Region, Branch, SIG Finance management guidance

Region, Branch, SIG Finance management guidance Region, Branch, SIG Finance management guidance October 2010 Aim of the document This document provides guidance to region, branch and SIG members who have been allocated the responsibility for financial

More information

Business Continuity & Crisis Management

Business Continuity & Crisis Management Group Standard Business Continuity & Crisis Management The need to plan and respond effectively is critical to the successful management of any crisis situation. Business Continuity Management is the holistic

More information

Department of Infrastructure and Planning: Governance Framework for Infrastructure Delivery Special Purpose Vehicles

Department of Infrastructure and Planning: Governance Framework for Infrastructure Delivery Special Purpose Vehicles Department of Infrastructure and Planning: Governance Framework for Infrastructure Delivery Special Purpose Vehicles Governance Framework for Special Purpose Vehicles Table of Contents Executive Summary...3

More information

Practice guide. quality assurance and IMProVeMeNt PrograM

Practice guide. quality assurance and IMProVeMeNt PrograM Practice guide quality assurance and IMProVeMeNt PrograM MarCh 2012 Table of Contents Executive Summary... 1 Introduction... 2 What is Quality?... 2 Quality in Internal Audit... 2 Conformance or Compliance?...

More information

Front Office Reception

Front Office Reception Front Office Reception Copyright All rights reserved. No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means electronic, mechanical, photocopying,

More information

Audit and review requirements for Australian Entities

Audit and review requirements for Australian Entities Audit and review for Australian Entities This guide provides a summary of the legislative to prepare s, have an audit or review of those s performed and the qualifications of auditors and reviewers for

More information

Lloyd s Managing Agents FSA Solvency II Data Audit

Lloyd s Managing Agents FSA Solvency II Data Audit Lloyd s Managing Agents FSA Solvency II Data Audit Working in partnership with you to provide the independent assurance that your Data Audit Report fulfils Lloyd s and FSA Solvency II requirements Lloyd

More information

Internal Control Integrated Framework. May 2013

Internal Control Integrated Framework. May 2013 Internal Control Integrated Framework May 2013 0 Table of Contents COSO & Project Overview Internal Control-Integrated Framework Illustrative Documents Illustrative Tools for Assessing Effectiveness of

More information

Steve Turpie, Chair of Audit Committee David Swales, Assistant Director of Finance

Steve Turpie, Chair of Audit Committee David Swales, Assistant Director of Finance PRESENTED BY: PREPARED BY: DATE PREPARED: 27 June 2013 1 Background 1.1 The Audit Committee of West Suffolk NHS Foundation Trust is established under Board delegation with approved Terms of Reference that

More information

Non Profit Social Financing. What do you need to know?

Non Profit Social Financing. What do you need to know? Non Profit Social Financing What do you need to know? What is CAIC? A social finance fund providing mortgages, construction financing & loans to groups, organizations & cooperatives with a project of social

More information

COBIT 5 for Risk. CS 3-7: Monday, July 6 4:00-5:00. Presented by: Nelson Gibbs CIA, CRMA, CISA, CISM, CGEIT, CRISC, CISSP ngibbs@pacbell.

COBIT 5 for Risk. CS 3-7: Monday, July 6 4:00-5:00. Presented by: Nelson Gibbs CIA, CRMA, CISA, CISM, CGEIT, CRISC, CISSP ngibbs@pacbell. COBIT 5 for Risk CS 3-7: Monday, July 6 4:00-5:00 Presented by: Nelson Gibbs CIA, CRMA, CISA, CISM, CGEIT, CRISC, CISSP ngibbs@pacbell.net Disclaimer of Use and Association Note: It is understood that

More information

Note the Chief Internal Auditor s findings to date and gain assurance from Officers that key issues raised are being addressed.

Note the Chief Internal Auditor s findings to date and gain assurance from Officers that key issues raised are being addressed. Agenda Item No: 9 To: Joint Audit Committee Date: 24 September 2014 By: Chief Internal Auditor Title: Internal Audit Update Report 2014-15 Purpose of Report: The purpose of this report is to give an opinion

More information

Islamic Relief Worldwide

Islamic Relief Worldwide Islamic Relief Worldwide Islamic Relief UK (IRUK) Human Resources (HR) Advisor BASE LOCATION: London, UK REPORTING TO: HR and Corporate Services Lead SALARY: LINE MANAGEMENT None RESPONSIBILITIES: ISLAMIC

More information

Risk Management Framework

Risk Management Framework Risk Management Framework THIS PAGE INTENTIONALLY LEFT BLANK Foreword The South Australian Government Risk Management Policy Statement 2009 advocates that consistent and systematic application of risk

More information

State Services Commission. Independent Review of the Earthquake Commission s Customer Satisfaction Survey

State Services Commission. Independent Review of the Earthquake Commission s Customer Satisfaction Survey State Services Commission Independent Review of the Earthquake Commission s Customer Satisfaction Survey December 2013 KPMG Centre 10 Customhouse Quay P.O. Box 996 Wellington New Zealand Telephone +64

More information

SAI GLOBAL LIMITED Risk Management Policy

SAI GLOBAL LIMITED Risk Management Policy SAI GLOBAL LIMITED Risk Management Policy SAI Global Ltd ABN 67050611642 Last Updated: February 2012 Contents 1. Risk Management... 3 2. Policy... 3 3. Risk Management Philosophy... 3 4. Risk Appetite...

More information

Audit of the Test of Design of Entity-Level Controls

Audit of the Test of Design of Entity-Level Controls Audit of the Test of Design of Entity-Level Controls Canadian Grain Commission Audit & Evaluation Services Final Report March 2012 Canadian Grain Commission 0 Entity Level Controls 2011 Table of Contents

More information

Clarius Group Risk Management Policy and Framework

Clarius Group Risk Management Policy and Framework 1. Introduction Clarius Group Risk Management Policy and Framework 1.1 Definition Risk is the chance of something happening that will have an impact on objectives. Risk provides the opportunity (upside)

More information

Strategy & Planning Manager Executive Office Location: London Closing date: 27 September 2015

Strategy & Planning Manager Executive Office Location: London Closing date: 27 September 2015 Job title: Strategy & Planning Manager Executive Office Location: London Closing date: 27 September 2015 Contract type: Permanent About Teach First How much you achieve in life should not be determined

More information

Report of Don McLure, Corporate Director of Resources

Report of Don McLure, Corporate Director of Resources AUDIT COMMITTEE 29 June 2015 Annual Review of the System of Internal Audit 2014 / 2015 Report of Don McLure, Corporate Director of Resources Purpose of the Report 1. The purpose of this report is for members

More information

Effective risk management

Effective risk management Effective risk management Our holistic and disciplined risk management program is designed to mitigate risks at all levels of our business in order to protect our clients interests. 2 Vanguard > Effective

More information

Hospice UK. Conference 2015. The Largest Annual Hospice Conference in the UK Sponsorship, Exhibition and Branding Opportunities

Hospice UK. Conference 2015. The Largest Annual Hospice Conference in the UK Sponsorship, Exhibition and Branding Opportunities Hospice UK Conference 2015 The Largest Annual Hospice Conference in the UK Sponsorship, Exhibition and Branding Opportunities November 10-12 ACC, Liverpool We are delighted to offer you the opportunity

More information

Internal Audit Strategic and Annual Plans 2015/16

Internal Audit Strategic and Annual Plans 2015/16 Internal Audit Strategic and Annual Plans 2015/16 Financial Scrutiny and Audit Committee 10 February 2015 Agenda Item No 8 Summary: This report provides an overview of the stages followed prior to the

More information

The Outlook for IT. 2014 to 2017. Michael Smith VP Distinguished Analyst January 31, 2014

The Outlook for IT. 2014 to 2017. Michael Smith VP Distinguished Analyst January 31, 2014 The Outlook for IT Michael Smith VP Distinguished Analyst January 31, 2014 2014 to 2017 Gartner is a registered trademark of Gartner, Inc. or its affiliates. This publication may not be reproduced or distributed

More information

2015 Salary Report. 2 nd Quarter 2015 Singapore. About Gemini Personnel Pte. Ltd.

2015 Salary Report. 2 nd Quarter 2015 Singapore. About Gemini Personnel Pte. Ltd. 2015 Salary Report About Gemini Personnel Pte. Ltd. Gemini Personnel Private Limited is Singapore s leading Recruitment Company with trained consultants handle a wide spectrum of hiring needs, including

More information

D-G4-L4-231 Data Governance Assessment Design and Implementation Deloitte LLP Service for G- Cloud IV

D-G4-L4-231 Data Governance Assessment Design and Implementation Deloitte LLP Service for G- Cloud IV D-G4-L4-231 Data Governance Assessment Design and Implementation Deloitte LLP Service for G- Cloud IV September 2013 Contents 1 Service Overview 1 2 Detailed Service Description 4 3 Commercials 8 4 Our

More information

Guideline. Managing Records of Outsourced Activity. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1.

Guideline. Managing Records of Outsourced Activity. Public Record Office Victoria PROS 10/10 Strategic Management. Version Number: 1. Public Record Office Victoria PROS 10/10 Strategic Management Guideline 2 Managing Records of Outsourced Activity Version Number: 1.0 Issue Date: 19/07/2010 Expiry Date: 19/07/2015 State of Victoria 2010

More information

BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS. LSA Consultants Pte Ltd

BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS. LSA Consultants Pte Ltd BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS LSA Consultants Pte Ltd BCM SINGAPORE LSA Consultants Who are we? Business Continuity Management (BCM) What is it? Singapore Standard SS540

More information

ENTERPRISE RISK MANAGEMENT POLICY

ENTERPRISE RISK MANAGEMENT POLICY ENTERPRISE RISK MANAGEMENT Approved by the Audit Committee on 14 February 2003 and adopted by resolution of the Board on 28 March 2003 Revisions approved by the Audit and Risk Committee on 14 February

More information

SAP Audit Management A Preview

SAP Audit Management A Preview SAP Audit Management A Preview SAP AG November 2013 Customer 1 Agenda Business Challenges The Idea The Solution Roadmap Demo 2013 SAP AG. All rights reserved. Customer 2 Disclaimer The information in this

More information

Specialists in Strategic, Enterprise and Project Risk Management. Enterprise Risk Management. the effect of uncertainty on objectives.

Specialists in Strategic, Enterprise and Project Risk Management. Enterprise Risk Management. the effect of uncertainty on objectives. BROADLEAF CAPITAL INTERNATIONAL PTY LTD ABN 24 054 021 117 23 Bettowynd Road Tel: +61 2 9488 8477 Pymble Mobile: 0419 433 184 NSW 2073 Fax: + 61 2 9488 9685 Australia www.broadleaf.com.au Cooper@Broadleaf.com.au

More information

Health care internal audit: Identifying prevalent risks within your organization

Health care internal audit: Identifying prevalent risks within your organization Health care internal audit: Identifying prevalent risks within your organization Overview The health care sector continues to go through many changes, presenting several new risks and a host of complicated

More information