Enterprise Risk Management A new focus
|
|
- Ronald Welch
- 8 years ago
- Views:
Transcription
1 Enterprise Risk Management A new focus Presented by: Phumi Madlala ethekwini Municipality
2 The Risk Management Process: Definitions Agenda Introduction and background Benefits of Risk Management Enterprise Risk Management (ERM) Process Conducting Corruption Risk Assessment: Preparation During the risk assessment Outcome risk register Ongoing monitoring & reporting 2
3 Definitions Risks are uncertain future events that could influence achievement of objectives Risk Management: Management tool of creating awareness & managing obstacles that have a potential of preventing the organization from achieving it s objectives; Is also about assessing, both quantitatively and qualitatively the opportunity for success of business initiatives; Is composed of methodologies and processes which are designed to develop information critical to achieving the strategic objectives of the organization 3
4 1. MFMA, S 62 (1) ( c ) states: Legislative mandate the accounting officer must ensure that the municipality has and maintains effective, efficient and transparent systems of financial and risk management and internal control 2. S 78 and 105 further assigns the responsibilities to other officials to ensure effective, efficient, economical and transparent use of financial and other resources within that official s area of responsibility 3. S 165 (2) (b) requires internal audit unit to advise the AO on matters related to (iv) risk and risk management 4. S166 (1) requires audit committee to advise municipal council, political office bearers, AO and management staff on matters related to (ii) risk management 5. King III Code on Corporate Governance and Public Sector Risk Management Framework states: The Council/ Board is responsible for the total process of risk management, as well as for forming its own opinion on the effectiveness of the process. 4
5 Value add from Risk Management Highlight processes that are not clearly understood; Identifies processes that are inefficient; Promotes efficiency of service delivery; Create awareness of high risk areas and ensures uniformity in addressing exposure areas; Create awareness of what can/cannot be controlled; Ensures reasonable and practical time is taken to implement required responses; Promotes pro activeness rather than re active response (reduce surprises); Increases probability(likelihood/chances) of achieving goals
6 Results of Ineffective Risk Management Breakdown in internal control that could prevent the organization from achieving its objective; Reactive responses to potential risks, rather than proactive; Changing/ new risks are not adequately controlled and managed; Internal control practices become outdated with limited account taken of best practice development; 6
7 ethekwini Risk Management Governance Structure OVERSIGHT Council and Key Committees Audit and Risk Committee City Manager and Key Committees GOVERNANCE MANAGEMENT Risk Management Committee Managing Risk & Municipality Sub Committee ASSURANCE First Line of Defence DCM Forum Management of Operations Second Line of Defence Chief Risk Officer Risk Champions Third Line of Defence Internal Audit and External Auditors ethekwini Municipality - EXCO ERM 7
8 Risk Management Strategy Overview Establish Goals & Context Consultation / Communication Identify Risks Analyse Risks Likelihood Impact Evaluate the Risks Treat the Risks Monitor / Review ethekwini Municipality - EXCO ERM 8
9 Corruption Risk Assessment
10 Corruption Risk Management Part of Enterprise Risk Management, only focusing on exposures that are as a result of corrupt activities; Best approach to managing fraud/corruption: Prevent it; Whatever that cannot be prevented, controls should detect it quickly; Investigate the root cause of detected/reported fraud cases; Correct root causes/take quick action
11 Corruption Risk Assessment Risk Assessment: The process of identifying risk exposures and assessing their impact and likelihood that they would have on the achievement of objectives. The process also involves evaluating suitable ways to mitigate the risks to corruption and assessing effectiveness of controls. ERM: Fraud/corruption risk forms one category of the risks that are significant within Ethekwini municipality, which is managed separately at a strategic level.; Top down approach strategic risks are cascaded down to operations Link between risk categories: Some risks are inter linked, e.g. failure to manage fraud/corruption risk results in high exposure to compliance risk and by default operational risk (due to weakness in controls) which might lead to reputational risk.
12 Role of compliance in fraud/corruption prevention Highly compliant organizations strong ethical environments reduced fraud/corruption risk
13 Preparation by facilitator Assessing environment s exposure to corruption; Inherent risk exposures; Perform trends analysis based on stats or working with research/forensic unit; Understand the sector, read journals/publications like Delivery, most importantly your organisations control environment/operations within your environment; Stakeholders and their influence to environment; Separate facts from opinions; Recent media reports & perceptions of organisation (surveys) Establish current risk tolerance level; tone at the top; sound ethical culture; Regular/ongoing training of staff, updates of training manuals, relevance to level of audience according to expectations Pro active defence (mitigations) Periodic results of data interrogation in relation to corruption risk assessment; Be familiar with existing controls from first point of contact with organisation e.g background checks prior employment/engagement with service providers/ customers; Sound internal control system Frequent review and update of Anti corruption policies and procedures; Ensure alignment of company policies/procedures with regulations/ legal findings/ forensic developments/ sector developments Assurance providers, establish relationships with them, ongoing consultations recent findings on exposures to corruption 13
14 Preparing for Corruption Risk Assessment Important Considerations: Best suitable form of risk assessment to use: management workshop vs information gathering; Level at which you are assessing exposure to corruption.e.g. strategic vs operational (dpt s) invite the right audience; Management s Tone regarding prevention of corruption e.g understanding/ familiarity with anti corruption policies/strategies; support structures; understanding of risk process/ are they defensive personalise issues/performance management; Adequate notification : Pre reading which directs focus on existing exposures/control environment/stats from forensics/ia reports/management report/regulatory developments/other recent developments to combat fraud/corruption within sector (Local Govern Anti Corruption Strategy) Logistics: Suitable Venue promote interaction /co operation, away from office distractions, no laptops during session/use of cellphones; Duration of assessment reasonable approximation, worse is to under estimate time; control discussions Pre planning with leader (buy in) outlining process/expectations /outcome. He sets the tone during introduction of corruption risk assessment. 14
15 During the Assessment Introduction by Head: Strategic /Operational. Communicate expectations/set tone promote participation & freedom of expression/ assessment based on facts than opinions; Introduction by facilitator outline the process/methodology & outcome; Reference to pre reading; Control discussions to focus on facts & desired outcome; Ensure audience participation and buy in; Understand root causes for each risk properly so that correct controls and relevant actions to address exposures can be identified; Adherence to risk management standards/specifically anticorruption framework/strategy; 15
16 Corruption Risk Register Outcome: Risk register with identified strategic/operational corruption risks; Risk owners strategic(city Manager/Executives)/ operational (Dpt Heads); Impact & likelihood for each risk per methodology; Assessment of current controls i.t.o. effectiveness (IA & other Assurance providers ); Tasks to improve our exposure to each risk: to address root causes; and to strengthen current controls; or once implemented to add to existing controls Allocate task owners based on areas where risk is prevalent, and suitability to implement action to mitigate root causes; Strategic risks to be cascaded down at operational level.
17 Ongoing monitoring of corruption risk Independent annual review of Anti corruption strategy and it s effectiveness in reducing corrupt activities by Internal Audit; Anti corruption/fraud Prevention Committee reporting on implementation of strategy & anti corruption/ fraud prevention initiatives; Governance audit of committees on implementing action per TOR s; Monitoring progress of tasks on corruption risk registers ( strategic &operational); Quarterly review of existing risks & identification of emerging risks due to change in internal/external environment; Reporting progress to appropriate structures; Ensure implementation of forensic reports recommendations to enhance internal controls; Training of staff on their responsibility to report corruption & fraud activities; Promotion of ethical culture throughout municipality; Communicate successes in uprooting corruption; Response strategy on allegations /articles from media;
18 References Quotes have been taken from various risk management & anti corruption standars, best practice & guidelines. ethekwini Municipality - EXCO ERM 18
19 THOUGHT PROVOKING QUOTES: The true measure of a man is who he is when nobody is watching ; Perception is more powerful than fact when it comes to fraud/corruption ; If you don t invest in risk management, it does not matter what business you are in, it s a risky business The greatest contributions of risk managers is just carrying a torch around and providing transparency 19
20 LET WHO WE ARE & OUR LIVES REPRESENT THE LIGHT THAT WE PROVIDE, &: KEEP THE LIGHT BURNING...ALWAYS Siyabonga Thank You 20
ENTERPRISE RISK MANAGEMENT POLICY
ENTERPRISE RISK MANAGEMENT POLICY TITLE OF POLICY POLICY OWNER POLICY CHAMPION DOCUMENT HISTORY: Policy Title Status Enterprise Risk Management Policy (current, revised, no change, redundant) Approving
More informationTHE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK
THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK ACCOUNTABLE SIGNATURE AUTHORISED for implementation SIGNATURE On behalf of Chief Executive Officer SAHRA Council Date Date
More informationFRAUD PREVENTION STRATEGY FOR UGU DISTRICT MUNICIPALITY (UGU)
FRAUD PREVENTION STRATEGY FOR UGU DISTRICT MUNICIPALITY (UGU) CONTENTS 1. Introduction.. 3 2. Characteristics of Fraud.. 5 3. Fraud Strategy..... 6 4. Building the Fraud Prevention Plan........ 8 Fraud
More informationIFAD Policy on Enterprise Risk Management
Document: EB 2008/94/R.4 Agenda: 5 Date: 6 August 2008 Distribution: Public Original: English E IFAD Policy on Enterprise Risk Management Executive Board Ninety-fourth Session Rome, 10-11 September 2008
More informationBoard of Directors Meeting 12/04/2010. Operational Risk Management Charter
Board of Directors Meeting 12/04/2010 Document approved Operational Risk Management Charter Table of contents A. INTRODUCTION...3 I. Background...3 II. Purpose and Scope...3 III. Definitions...3 B. GOVERNANCE...4
More informationSaldanha Bay Municipality. Risk Management Strategy. Inclusive of, framework, procedures and methodology
Inclusive of, framework, procedures and methodology Contents 1 Introduction 1 1.1 Legislative Framework and best practice 1 1.2 Purpose of Enterprise Risk Management 2 1.3 Scope and Applicability 3 1.4
More informationTying It All Together: Practical ERM Integration. Richard Scanlon Vice President Enterprise Risk Management CIGNA Corporation
Tying It All Together: Practical ERM Integration Richard Scanlon Vice President Enterprise Risk Management CIGNA Corporation November 16, 2007 1 Agenda Basis for ERM Integration ERM Objectives ERM Focus
More informationLESSON 4: Strategic planning to prevent corruption
The United Nations Convention against Corruption Safeguarding against Corruption in Major Public Events LESSON 4: Strategic planning to prevent corruption Planning a corruption-free event is based on effective
More informationFraud Risk Management
Fraud Risk Management Overview Discussion Questions 1) Does your organization follow a specific risk management model? If so, which one? Do you think this model adequately addresses the risks your organization
More informationPreventing Fraud: Assessing the Fraud Risk Management Capabilities of Today s Largest Organizations
Preventing Fraud: Assessing the Fraud Risk Management Capabilities of Today s Largest Organizations Overview In late 2006 and 2007, Protiviti commissioned a study to gauge the fraud risk management (FRM)
More informationAPPLICATION OF KING III CORPORATE GOVERNANCE PRINCIPLES 2014
WOOLWORTHS HOLDINGS LIMITED CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 CORPORATE GOVERNANCE PRINCIPLES 2014 This table is a useful reference to each of the King III principles
More informationAnnual Governance Statement 2013/14
31 Annual Governance Statement 2013/14 1. SCOPE OF RESPONSIBILITY ESPO is responsible for ensuring that its business is conducted in accordance with the law and proper standards, and that public money
More informationDeveloping an Effective Enterprise Risk Management Program
Developing an Effective Enterprise Risk Management Program Jay Brietz, CPA and CIA Senior Manager This material was used by Elliott Davis Decosimo during an oral presentation; it is not a complete record
More informationAPPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES
APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES Ethical Leadership and Corporate Citizenship The board should provide effective leadership based on ethical foundation. that the company
More informationGuidance Note: Corporate Governance - Board of Directors. March 2015. Ce document est aussi disponible en français.
Guidance Note: Corporate Governance - Board of Directors March 2015 Ce document est aussi disponible en français. Applicability The Guidance Note: Corporate Governance - Board of Directors (the Guidance
More informationOAC Presentation to UNESCO Member States
OAC Presentation to UNESCO Member States Scope and Purpose of Audit and Risk Committees 29 June 2016 1 Content: 1. Context 2. Audit and Risk Management in UNESCO today 3. Relationship between Entreprise
More informationReputation, Brand & Communications
Group Standard Reputation, Brand & Communications Serco is committed to building a positive reputation with its stakeholders, wherever we operate SMS-GS-BC4 Reputation, Brand and Communication December
More informationEnterprise-Wide Risk Assessment
Enterprise-Wide Risk Assessment Agenda 1. Definition of risk. 2. Risk drivers in higher education today. 3. Implementing an enterprise-wide risk management (ERM) program to effectively assess, manage,
More informationConfident in our Future, Risk Management Policy Statement and Strategy
Confident in our Future, Risk Management Policy Statement and Strategy Risk Management Policy Statement Introduction Risk management aims to maximise opportunities and minimise exposure to ensure the residents
More informationEnterprise Risk Management
Cayman Islands Society of Professional Accountants Enterprise Risk Management March 19, 2015 Dr. Sandra B. Richtermeyer, CPA, CMA What is Risk Management? Risk management is a process, effected by an entity's
More informationIRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS
IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS 1 Module 1: Principles of Risk and Risk Management Module aims The aim of this module is to provide an introduction to the principles and concepts of risk and
More informationENTERPRISE RISK MANAGEMENT FRAMEWORK
ROCKHAMPTON REGIONAL COUNCIL ENTERPRISE RISK MANAGEMENT FRAMEWORK 2013 Adopted 25 June 2013 Reviewed: October 2015 TABLE OF CONTENTS 1. Introduction... 3 1.1 Council s Mission... 3 1.2 Council s Values...
More informationRisk Management Strategy EEA & Norway Grants 2009-2014. Adopted by the Financial Mechanism Committee on 27 February 2013.
Risk Management Strategy EEA & Norway Grants 2009-2014 Adopted by the Financial Mechanism Committee on 27 February 2013. Contents 1 Purpose of the strategy... 3 2 Risk management as part of managing for
More informationEnterprise Risk Management Framework 2012 2016. Strengthening our commitment to risk management
Enterprise Risk Management Framework 2012 2016 Strengthening our commitment to risk management Contents Director-General s message... 3 Introduction... 4 Purpose... 4 What is risk management?... 4 Benefits
More informationSOL PLAATJE MUNICIPALITY ENTERPRISE RISK MANAGEMENT FRAMEWORK AND POLICY
SOL PLAATJE MUNICIPALITY ENTERPRISE RISK MANAGEMENT FRAMEWORK AND POLICY Prepared by: SOL PLAATJE MUNICIPALITY RISK MANAGEMENT UNIT AND Consolidated Advisory Services This document should be read in conjunction
More informationInternational Diploma in Risk Management Syllabus
International Diploma in Risk Management Syllabus Module 1: Principles of Risk and Risk Management The aim of this module is to provide an introduction to the principles and concepts of risk and risk management.
More informationRisk and Contingency Planning. Today s Topics. Key Terms. A Vital Component of Your ICD-10 Program
Risk and Planning A Vital Component of Your ICD-10 Program Today s Topics Key Terms Why is Risk Management Critical for ICD-10? Effective Risk Management and Best Concepts ICD-10 Risk Management Examples
More informationRISK MANAGEMENT FRAMEWORK 2013-2014 OKHAHLAMBA LOCAL MUNICIPALITYITY
RISK MANAGEMENT FRAMEWORK 2013-2014 OKHAHLAMBA LOCAL MUNICIPALITYITY Page 1 CONTENTS 1. Foreword by the Mayor... 3 2. Background... 4 2.1 Introduction... 4 2.2 Overall purpose of the Enterprise Risk Management
More informationRISK MANAGEMENT AND COMPLIANCE
RISK MANAGEMENT AND COMPLIANCE Contents 1. Risk management system... 2 1.1 Legislation... 2 1.2 Guidance... 3 1.3 Risk management policy... 4 1.4 Risk management process... 4 1.5 Risk register... 8 1.6
More informationGovernance and Risk Management in the Public Sector. Fernando A. Fernandez Inter-American Development Bank (202) 623-1430 e-mail: fernandof@iadb.
Governance and Risk Management in the Public Sector Fernando A. Fernandez Inter-American Development Bank (202) 623-1430 e-mail: fernandof@iadb.org 1 Agenda Governance, why is it important? Compliance
More informationIntroduction to Enterprise Risk Management at UVM DRAFT
Introduction to Enterprise Management at UVM 1 Enterprise What is Enterprise Management? Enterprise risk management is a structured, consistent, and continuous process across the whole organization for
More informationRisk Assessment & Enterprise Risk Management
Risk Assessment & Enterprise Risk 1 Healthcare Corporate Governance Today s environment requires building a culture of risk awareness and management of risk across the organization, while formulating less
More informationUniversity Audit and Compliance. Internal Controls Enterprise-Wide Risk Assessment
Internal Controls Enterprise-Wide Risk Assessment Balancing Risk and Controls In order to achieve goals and objectives, management needs to effectively balance risks and controls. Control procedures need
More informationSTANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES. ENTERPRISE RISK MANAGEMENT Framework
STANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES ENTERPRISE RISK MANAGEMENT Framework September 2011 Notice This document is intended as a reference tool to assist Ontario credit unions to develop an
More informationAUDIT COMMITTEE BEST PRACTICES CHECKLIST
AUDIT COMMITTEE BEST PRACTICES CHECKLIST General 1. Members have the appropriate predefined qualifications to meet the objectives of the audit committee s charter, including appropriate financial literacy.
More informationDuration: One year with the option of an additional year based on performance.
Position: Adviser to the Internal Audit Unit Objectives: A person to support the newly established Internal audit unit to transform it from its infancy stage to a unit that is a trusted adviser, and more
More informationMatthew E. Breecher Breecher & Company PC November 12, 2008
Applying COSO s Enterprise Risk Management Integrated Framework Matthew E. Breecher Breecher & Company PC November 12, 2008 The basic outline for this presentation was provided by: Objectives for the session:
More informationAn Effective Approach to Transition from Risk Assessment to Enterprise Risk Management
Bridgework: An Effective Approach to Transition from Risk Assessment to Enterprise Risk Management @Copyright Cura Software. All rights reserved. No part of this document may be transmitted or copied without
More informationApplication of King III Corporate Governance Principles
APPLICATION of KING III CORPORATE GOVERNANCE PRINCIPLES 2013 Application of Corporate Governance Principles This table is a useful reference to each of the principles and how, in broad terms, they have
More informationPrinciples for the audit committee s role in performance management
Principles for the audit committee s role in performance management The information contained in this guidance paper is provided for discussion purposes. As such, it is intended to provide the reader and
More informationWFP ENTERPRISE RISK MANAGEMENT POLICY
WFP ENTERPRISE RISK MANAGEMENT POLICY Informal Consultation 3 March 2015 World Food Programme Rome, Italy EXECUTIVE SUMMARY For many organizations, risk management is about minimizing the risk to achievement
More informationCARIBBEAN DEVELOPMENT BANK STRATEGIC FRAMEWORK FOR INTEGRITY, COMPLIANCE AND ACCOUNTABILITY (2015)
CARIBBEAN DEVELOPMENT BANK STRATEGIC FRAMEWORK FOR INTEGRITY, COMPLIANCE AND ACCOUNTABILITY (2015) Provides a comprehensive strategic framework for institutional integrity (fraud and corruption), ethics,
More informationRisk Management Policy
Risk Management Policy Risk Management Policy Record Number D14/79827 Responsible Manager Manager Strategy and Governance Last reviewed 10 March 2015 Adoption reference Council Resolution number 90.5 Previous
More informationIntegrated Risk Management:
Integrated Risk Management: A Framework for Fraser Health For further information contact: Integrated Risk Management Fraser Health Corporate Office 300, 10334 152A Street Surrey, BC V3R 8T4 Phone: (604)
More informationInternal Audit Terms of Reference
Internal Audit Terms of Reference Introduction 1. The Internal Audit Terms of Reference (ToR) describes the framework within which the Internal Audit Service is delivered. It is intended to act as a guide
More informationTHE GOVERNANCE OF RISK MANAGEMENT. Session 5
THE GOVERNANCE OF RISK MANAGEMENT Session 5 Polling Question: Who is primarily responsible for risk governance in any organization? 0% A. The board or board risk committee (if applicable) B. The CRO 0%
More informationAccreditation Application Forms
The Institute of Risk Management The Institute of Risk Management Accreditation Application Forms Universities and Professional Associations The Institute of Risk Management Accreditation Application Forms
More informationPolicy 10.105: Enterprise Risk Management Policy
Name: Responsibility: Complements: Enterprise Risk Management Framework Coordinator, Enterprise Risk Management Policy 10.105: Enterprise Risk Management Policy Date: November 2006 Revision Date(s): January
More informationRISK AND COMPLIANCE COMMITTEE CHARTER
1. GENERAL SCOPE AND AUTHORITY 1.1 Introduction This charter governs the operations of the Risk & Compliance Committee of Redflex Holdings Limited (RHL or Company). 1.2 Purpose The Risk & Compliance Committee
More informationENTERPRISE RISK MANAGEMENT FRAMEWORK
ENTERPRISE RISK MANAGEMENT FRAMEWORK COVENANT HEALTH LEGAL & RISK MANAGEMENT CONTENTS 1.0 PURPOSE OF THE DOCUMENT... 3 2.0 INTRODUCTION AND OVERVIEW... 4 3.0 GOVERNANCE STRUCTURE AND ACCOUNTABILITY...
More informationFraud Prevention and Deterrence
Fraud Prevention and Deterrence Fraud Risk Assessment 2016 Association of Certified Fraud Examiners, Inc. What Is Fraud Risk? The vulnerability that an organization faces from individuals capable of combining
More informationVersion Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 Administered by: Governance Coordinator
Risk Management Framework Version Adoption by Council: 2013 Resolution Number: 2013/177 Current Version: V1.0 TRIM CON: 12/1132 Administered by: Governance Coordinator Last Review Date: 2013 Next Review
More informationFramework for Enterprise Risk Management
Framework for Enterprise Risk Management 2013 Johnson & Johnson Contents Introduction.... 4 J&J Strategic Framework... 5 What is Risk?.......................................................... 7 J&J Approach
More informationAudit Committee Oversight of Foreign Operations. November 2014
Audit Committee Oversight of Foreign Operations November 2014 The Issue External auditor oversight can be a challenge for audit committees of reporting issuers with operations in foreign jurisdictions.
More informationAudit, Business Risk and Compliance Committee Charter Pact Group Holdings Ltd (Company)
Audit, Business Risk and Compliance Committee Charter Pact Group Holdings Ltd (Company) ACN 145 989 644 Committee Charter 1 MEMBERSHIP OF THE COMMITTEE The Committee must consist of: only non-executive
More informationSuccessfully identifying, assessing and managing risks for stakeholders
Introduction Names like Enron, Worldcom, Barings Bank and Menu Foods are household names but unfortunately as examples of what can go wrong. With these recent high profile business failures, people have
More informationApplication of King III Corporate Governance Principles
Application of Corporate Governance Principles Application of Corporate Governance Principles This table is a useful reference to each of the principles and how, in broad terms, they have been applied
More informationRISK MANAGEMENT STRATEGY 2014-17
RISK MANAGEMENT STRATEGY 2014-17 DOCUMENT NO: Lead author/initiator(s): Contact email address: Developed by: Approved by: DN128 Head of Quality Performance Julia.sirett@ccs.nhs.uk Quality Performance Team
More informationHow To Understand The Role Of An Internal Audit
Top Ten Issues facing Internal Auditing in the Future The IIA Dallas Chapter April 6, 2006 Presented by: David A. Richards, CIA, CPA President The Institute of Internal Auditors drichards@theiia.org 1
More informationLinking Risk Management to Business Strategy, Processes, Operations and Reporting
Linking Risk Management to Business Strategy, Processes, Operations and Reporting Financial Management Institute of Canada February 17 th, 2010 KPMG LLP Agenda 1. Leading Practice Risk Management Principles
More informationAnalyzing Risks in Healthcare. February 12, 2014
Analyzing s in Healthcare February 12, 2014 1 Content What is Enterprise Management (ERM) ERM Benefits ERM Standards / ISO 31000:2009 ERM Process Register ERM Governance Model s Q&A 2 What is Enterprise
More informationModule 6 Documenting Processes and Controls
A logical place to begin any comprehensive evaluation of internal controls is at the top entity-level controls that might have a pervasive effect on the organization. This includes a consideration of factors
More informationA Framework for Managing Crime and Fraud
A Framework for Managing Crime and Fraud ASIS European Security Conference & Exhibition Gothenburg, April 15, 2013 Torsten Wolf Group Head of Crime and Fraud Prevention Agenda Introduction Economic Crime
More information1.1 Terms of Reference Y P N Comments/Areas for Improvement
1 Scope of Internal Audit 1.1 Terms of Reference Y P N Comments/Areas for Improvement 1.1.1 Do Terms of Reference: a) Establish the responsibilities and objectives of IA? b) Establish the organisational
More informationHenkel s Compliance Management System (CMS)
Henkel s Compliance Management System (CMS) As a company that operates in an ethically and legally correct manner, Henkel s image and reputation is inseparable from the appropriate conduct of each of its
More informationAUDIT COMMITTEE TERMS OF REFERENCE
AUDIT COMMITTEE TERMS OF REFERENCE 1. Purpose The Audit Committee will assist the Board of Directors (the "Board") in fulfilling its oversight responsibilities. The Audit Committee will review the financial
More informationPractice Guide COORDINATING RISK MANAGEMENT AND ASSURANCE
Practice Guide COORDINATING RISK MANAGEMENT AND ASSURANCE March 2012 Table of Contents Executive Summary... 1 Introduction... 1 Risk Management and Assurance (Assurance Services)... 1 Assurance Framework...
More informationStreamlining the Annual Risk Assessment Process
Streamlining the Annual Risk Assessment Process Presenter: Gregory Jordan, CPA, CIA, CRMA, FLMI Senior Vice President, Chief Audit Executive Nationwide Insurance Gregory Jordan, CPA, CIA, CRMA, FLMI Chief
More informationExplanation where the company has partially applied or not applied King III principles
King Code of Corporate Governance for South Africa, 2009 (King III) checklist The Board of Directors (the Board) of Famous Brands Limited (Famous Brands or the company) is fully committed to business integrity,
More informationHow To Understand And Understand Forensic Accounting
Forensic Accounting and Investigations University of Texas at Arlington 14 August 2013 Overview What is Forensic Accounting? Definition and Services The Forensic Accountant History Roles Within Organizations
More informationRISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY
RISK MANAGEMENT OVERVIEW 2011 RISK CONFERENCE SPONSORED BY THE FEDERAL RESERVE BANK OF CHICAGO AND DEPAUL UNIVERSITY PRESENTED BY: LEN WIATR, CHIEF RISK OFFICER Len s Risk Management Philosophy Build a
More informationVincent James. Education. University of South Africa Degree BCOMPT (2013)
Curriculum Vitae Surname Name Botto Vincent James Address (Permanent Home) Telephone Number: Email address Personal Details Sex Nationality Male South African Date of Birth Languages English & Afrikaans
More informationData Quality Policy. Appendix A. 1. Why do we need a Data Quality Policy?... 2. 2 Scope of this Policy... 2. 3 Principles of data quality...
Data Quality Policy Appendix A Updated August 2011 Contents 1. Why do we need a Data Quality Policy?... 2 2 Scope of this Policy... 2 3 Principles of data quality... 3 4 Applying the policy... 4 5. Roles
More informationRISK BASED AUDITING: A VALUE ADD PROPOSITION. Participant Guide
RISK BASED AUDITING: A VALUE ADD PROPOSITION Participant Guide About This Course About This Course Adding Value for Risk-based Auditing Seminar Description In this seminar, we will focus on: The foundation
More informationCOCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY
COCA-COLA HELLENIC BOTTLING COMPANY RISK MANAGEMENT POLICY 1. INTRODUCTION The effective management of risk is central to the ongoing success and resilience of Coca-Cola Hellenic Bottling Company (CCHBC).
More informationAPPLICABLE TO: Flow Systems Group and all employees. Risk Management
PURPOSE: Flow Systems is committed to managing its risks and ensuring compliance with all relevant laws and regulations in a proactive, on-going and positive manner. This document outlines Flow s Risk
More informationLGMA Qld Governance and Corporate Planning Village Forum
www.pwc.com.au Fraud Risk Management Fraud Risk Assessments LGMA Qld Governance and Corporate Planning Village Forum March 2015 Agenda Introductions Fraud Risk Management Fraud Statistics s Global Economic
More informationOVERSTRAND MUNICIPALITY
C 3 / 001 OVERSTRAND MUNICIPALITY CONTRACT MANAGEMENT POLICY Approved by Council 28 May 2015 Implementation date: 1 July 2015 TABLE OF CONTENTS C 3 / 002 1. PRE-AMBLE 2 2. DEFINITIONS 3 3. ABBREVIATIONS
More informationEnterprise Risk Management (ERM) & Compliance
Enterprise Risk Management (ERM) & Compliance Mid Atlantic Regional Meeting, May 1, 2015 Society of Corporate Compliance and Ethics Jason Lunday, consultant Compliance Opportunities in ERM Increase compliance
More informationCorporate Governance and Enterprise Risk Management Derek Jackson, Senior Manager 5 September 2005
Corporate Governance and Enterprise Risk Management Derek Jackson, Senior Manager 5 September 2005 Corporate Governance Services 0 Overview Hong Kong Code on Corporate Governance Practices Corporate Governance
More informationFCPA 10 Hallmarks Self- Assessment
FCPA 10 Hallmarks Self- Assessment How exposed is your business to corruption risk? Take this assessment to find out if your systems are sufficiently robust to protect your business October 2014 Prepared
More informationFraud Risk Management and Internal Audting
Fraud Risk Management and Internal Audting Waheed Alkahtani CFE and CCEP-I Saudi Aramco Internal Auditing Special Audits Division Copyright 2015, Saudi Aramco. All rights reserved. February 2015 What do
More informationRevision Number: 1. PSPFRAU602B Manage fraud risk assessment and action plan
Revision Number: 1 PSPFRAU602B Manage fraud risk assessment and action plan PSPFRAU602B Manage fraud risk assessment and action plan Modification History Unit Descriptor Unit descriptor This unit covers
More informationLEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012
106 LEICESTERSHIRE COUNTY COUNCIL RISK MANAGEMENT POLICY STATEMENT 2011-2012 Leicestershire County Council believes that managing current and future risk, both opportunity and threat, is increasingly vital
More informationJOHANNESBURG RISK ASSURANCE SERVICES TABLE OF CONTENTS
JOHANNESBURG RISK ASSURANCE SERVICES TABLE OF CONTENTS Section 1. Introduction...2 Section 2. Annual Departmental Scorecard...5 Section 3. Risk Assessment...8 Section 4 Programmes...10 Section 5. Programme
More informationInternal Audit Framework
Internal Audit Framework Internal Audit Framework National Treasury Republic of South Africa March 2009 (2 nd Edition) The Internal Audit Framework is being provided as a service to the Public Service.
More informationPartnering Against Corruption Initiative Global Principles for Countering Corruption
Industry Agenda Partnering Against Corruption Initiative Global Principles for Countering Corruption Application January 2014 World Economic Forum 2014 - All rights reserved. No part of this publication
More informationThe Role of the Board in Enterprise Risk Management
Enterprise Risk The Role of the Board in Enterprise Risk Management The board of directors plays an essential role in ensuring that an effective ERM program is in place. Governance, policy, and assurance
More informationEnterprise Risk Management in Colleges and Universities
Enterprise Risk Management in Colleges and Universities Cherry Bekaert & Holland, L.L.P. Neal Beggan, CISA, CRISC Shane Hester, CPA, CISA Cherry, Bekaert & Holland, L.L.P. The Firm of Choice. 1 Cherry,
More informationJOB DESCRIPTION. Human Resource Business Partner (Change Management) One Year Fixed-Term Contract
JOB DESCRIPTION Job Title: Duration: Department: Reports to: Human Resource Business Partner (Change Management) One Year Fixed-Term Contract Human Resources Director of Human Resources The Organisation
More informationKING III CORPORATE GOVERNANCE COMPLIANCE REGISTER
KING III CORPORATE GOVERNANCE REGISTER CHAPTER 1: ETHICAL LEADERSHIP AND CORPORATE CITIZENSHIP NON 1.1. The board should provide effective leadership based on an ethical foundation 1.2. The board should
More informationCompliance. Group Standard
Group Standard Compliance Serco is committed to good governance practices and the management of risks supported by a robust business compliance process SMS-GS-G2 Compliance July 2014 v1.0 Serco Public
More informationANNEXURE D 2. OBJECTIVE
OVERSIGHT REPORT OF THE CITY OF JOHANNESBURG GROUP AUDIT COMMITTEE ON THE MONITORING OF THE 30 JUNE 2014 STATUTORY YEAR END AUDIT, THE EVALUATION OF THE FINAL AUDITED ANNUAL FINANCIAL STATEMENTS, THE AUDITOR
More informationUnit 4 - Audit Committees and their Potential Lessons for The Public Accounts Committee
Unit 4 - Audit Committees and their Potential Lessons for The Public Accounts Committee Crown Corporation/State Owned Enterprise Audit Committees A corporate governance committee made up of a sub set of
More informationBusiness Continuity Management Policy
Business Continuity Management Policy May 2009 Document Document drafted by Office of Quality and Risk Reference Number OQR032 Document approved by Ms. E. Dunne, Head of Quality and Risk Revision Number
More information8. ORGANISATIONAL PERFORMANCE MANAGEMENT SYSTEM
8. ORGANISATIONAL PERFORMANCE MANAGEMENT SYSTEM The Municipal Systems Act, enacted in November 2000, requires all municipalities to: Develop a performance management system Set s, monitor and review performance
More informationHow To Be A Compliant Customs Organization
Managing Cross Border Regulations Global Customs GM is one of the world s largest manufacturers of passenger motors vehicles GM maintains a family of global brands including: Buick, Cadillac, Chevrolet,
More informationCHECKLIST OF COMPLIANCE WITH THE CIPFA CODE OF PRACTICE FOR INTERNAL AUDIT
CHECKLIST OF COMPLIANCE WITH THE CIPFA CODE OF PRACTICE FOR INTERNAL AUDIT 1 Scope of Internal Audit 1.1 Terms of Reference 1.1.1 Do terms of reference: (a) establish the responsibilities and objectives
More informationA BearingPoint Accelerator
> GRC A BearingPoint Accelerator Working closely with the client, we deliver a rigorous and effective integrated GRC (Governance, Risk and Compliance) solution one that is not only right for the client,
More informationCredit Unions RISK ADVISORY SERVICES. Enterprise Risk Management, Internal Audit and Complex Accounting Services
Credit Unions RISK ADVISORY SERVICES Enterprise Risk Management, Internal Audit and Complex Accounting Services Credit unions care about personal service. So do we. How BDO works with credit unions Credit
More information