COMPANY LEVEL CONTROLS A PRACTICAL FRAMEWORK
|
|
- Martina Stewart
- 7 years ago
- Views:
Transcription
1 COMPANY LEVEL CONTROLS A PRACTICAL FRAMEWORK During the past two years a group of internal control specialists of large Dutch companies listed in the USA have held regular meetings to share experiences and to think of best practices for compliance with the Sarbanes Oxley regulations. In this article, a task force of that group presents a practical framework for Company Level s which the group considers to be best practice. IIA SOX platform In 2003 most large Dutch USA listed firms have started a program or project to get their internal processes compliant with the new Sarbanes Oxley ( SOx ) legislation. SOx section 404 requires management to make an assessment of a company s internal control over financial reporting. The need was felt to have some kind of a platform, which offers the opportunity to meet with colleagues of other companies to discuss the SOx related issues. As a consequence, the Dutch Institute of Internal Auditors (IIA) took the initiative to organise a discussion platform. The main objectives of this group are to share knowledge and experience in implementing SOx in order to develop best practices and to support discussions with external auditors. The following companies have regularly sent a representative to the meetings: ABN AMRO, Ahold, AKZO Nobel, Arcadis, ASMI, ASML, Buhrman, KLM, KPN, Reed Elsevier, Shell, TNT, Van der Moolen and VNU. Company Level s One of the topics that has lead to discussions and differences of opinion is related to Company Level s. Relevant rulemaking bodies have not issued detailed guidance, other than stressing the importance of Company Level s. External auditors also have only published limited guidance. As a consequence, the IIA SOx platform formed a task force, composed of representatives of four companies, with the objective to develop a common standard for Company Level s. This standard should comprise a practical framework and a list of controls which can easily be used to assess Company Level s in the various companies. Participants of the platform were willing to share their documentation, and the task force was able to use this as a basis to develop a framework. The results were presented regularly during platform meetings and lead to ample discussions and exchange of opinions. This resulted in the set-up of a framework of twenty nine key controls in the area of Company Level s. In the following paragraphs we will present this practical framework. What are Company Level s? After the May 2005 roundtable with key SOx stakeholders, both the SEC and the PCAOB commented on the strong criticism resulting from the experiences with year one SOx compliance. The comments directed focus of SOx compliance to a top down risk based approach, with a strong emphasis on Company Level s instead of a focus on transactional controls. What are Company Level s? The PCAOB gives some examples, although it did not come up with a definition. We regard Company Level s as controls that have the following characteristics: they exist on a higher level than transactional controls; and, set positive conditions and boundaries for the transactional controls; and, are the internal control infrastructure.
2 PCAOB section 53 Audit standard 2 of the PCAOB gives guidance to auditors on how to assess controls as part of an audit of internal control over financial reporting. Section 53 (see frame) gives examples of Company Level s. These examples cover all five components of the COSO framework. Therefore, we based our framework on COSO, taking into account the guidance from Section 53. PCAOB AS2, section 53 Company-level controls are controls such as the following: - s within the control environment, including tone at the top, the assignment of authority and responsibility, consistent policies and procedures, and company-wide programs, such as codes of conduct and fraud prevention, that apply to all locations and business units (See paragraphs 113 through 115 for further discussion); - Management's risk assessment process; - Centralized processing and controls, including shared service environments; - s to monitor results of operations; - s to monitor other controls, including activities of the internal audit function, the audit committee, and self-assessment programs; - The period-end financial reporting process; and - Board-approved policies that address significant business control and risk management practices. Company level control framework The framework (fig. 1) visualizes the posistion of Company Level s and the nature and focus of Company Level s within the COSO framework. It shows that the basis for Company Level s are in the, the tone set by the top of the organization which has a pervasive effect on the control consciousness and effectiveness of controls in an organization. Another important aspect of Company Level s is ; i.e. the procedures a company uses to ensure that controls throughout the organization work according to plan. Information and Communication is crucial in implementing Company Level s; top-down information streams help company management to ensure that their (strategic) management decisions lead to appropriate action on the operating level. Bottom up information provides management with insight on how their strategies are being dealt with on operating level and provides information top management uses for their Risk Assessments. Based on the assessment of risks, are implemented to ensure that management s objectives are met.
3 External factors External demands Business: Market demands Compliance: Sox / Tabaksblat performance Regulators Company hierarchy Internal response Company Level s communication Risk assessment environment : activities communication Supervisory board Audit committee Executive board Group mgt Opco mgt Process owners Fig. 1 The standard set of Company Level s We have identified a set of 29 controls which fits in this framework and which forms in our view, the best practise set of Company Level s. In some instances individual companies may identify more topics based on their own organizational structure. However, we do not believe it is feasible that companies have less 1. The best practise Company Level s are listed below: # Relevant item Category Most appl. COSO element 1 Manual (existence, availability, authorization, changes discussed and approved) Communication 2 Mandatory training plan for accounting personnel (monitoring of progress) 3 Senior management periodically reviews an overview of accounting, reporting and internal control issues. (progress is monitored and reported in management meetings) 4 Senior Management ensures that certain high risk processes and related significant accounts are only processed and recorded at or via the corporate level. (e.g. (deferred) tax, goodwill and other intangibles, investments in subsidiaries). 1 This has been confirmed by meetings with representatives of the big four audit firms.
4 5 Bill of Authority/ Authorization table - procuration at the top / senior level (delegation of authorization) (availability, periodic update and authorization) Assignment of Authority 6 Senior Management consciously and willingly sets and maintains an appropriate Tone at the Top. (e.g. communication throughout the year and behavior examples set by senior management). 7 Code of Conduct and disciplinary actions in case of violations. (availability, confirmation of compliance, follow up of deviations) 8 Fraud Risk assessment, appropriate anti fraud programs and reporting on fraud instances. (availability, authorized and monitored) 9 Corporate management exercises oversight on litigation and communication with (financial) regulators. 10 Periodically divisional/ operating company review meetings by the Corporate Management Team are held. (consistency of Corporate and Division objectives, Actual divisional/business unit/operating company results are compared to budget) Business Planning and Performance 11 Self assessment of Audit Committee on its own performance. (assessment performance against charter, relationship / performance of inen external auditor, activities and competencies of Audit Committee members) Corporate Governance 12 The Audit Committee exercises appropriate oversight on internal control matters by the Audit Committee. (open communication with senior financial management, in- and external audit) Corporate Governance 13 Audit Committee ensures that open communication with in- and external auditors is established and maintained (approval audit plan, active participation in meetings, private meetings) Corporate Governance 14 The department reviews the organisational design and the availability of job descriptions. (key financial positions) 15 A pre-employment screening procedure is in place. (implementation instructions, define for which functions screening is required) 16 Realistic targets are set and used in performance measurement (undue pressure, mixed (finance, compliance)) 17 resource policies available (adequacy of hiring, retention and promotion process)
5 18 Agreement on future system development and ongoing IT projects. (IT strategic plan aligned to the business plan for development of information systems) Information Management 19 Independent reporting line from Internal Audit to Audit Committee Internal Audit 20 Periodic report from Internal Audit to the Audit Committee on performance. (staffing, progress of the audit plan, the effectiveness of Internal Audit, approval of Internal Audit charter) Internal Audit 21 Senior Management monitors the outcome of the periodic process regarding Letters of Representation (or in-control statements) issued by divisions / business units / operating companies. (accounting standards, code of conduct, control standards, signoff structure) Compliance / Internal Function Communication 22 of the status of identified control issues via a control remediation progress reporting. (among others: number, nature, remediation, progress) Compliance / Internal Function 23 Management performs risk assessment and assesses likelihood and impact. (analyze, plan, do, check, act) Risk Management Risk Assessment 24 The Supervisory Board reviews corporate strategy and approves the annual budget. (non-executive board) Strategic planning 25 The audit committee ensures existence, availability, appropriateness and communication of the Whistle-blower procedure. (independent reporting, anonymity, performance reporting to Audit Committee on reported instances and resolution) Whistle-blower 26 Budget process in place (related to strategy, quantifies goals, regular reporting reviews) Business Planning and Performance 27 Design of bonus plans ensure no incentive exists that could lead to improper financial reporting. (incentives are based both on financial and non-financial goals, long term development of the company, senior/executive personnel) 28 Ensure disclosure meeting is held quarterly to discuss details of PL/BS with Finance, Legal and Management 29 New business meetings with board, group control, legal and IT to discuss the impact on financial reporting, legal implication and IT when the new business is implemented. Risk Management Risk Assessment To elaborate on the relevant control items stated above, the following three examples are given. These examples provide more insight in the required documentation and evidence. The examples also give detailed information on what testing should include. Testing of Company Level s is characterized by the fact that the control description is in many cases focused on the existence of formal documentation such as authorized policies, agenda of meetings, minutes of
6 meetings, reports on performance. The test work programs will therefore to a large extent focus on the documentation identified already in the control descriptions, the implementation of relevant policies and the actual operation of the policies and procedures. Evidence and documentation Testing considerations CLC nr 1: Manual Ensure existence of: Availability of the Accounting & manual, including communication plan; Documented comments of internal / external auditors, including follow up; Approval by senior management; Change procedures for Accounting & manual. Verify whether: Reviews of the Accounting & Manual are done regularly to ensure timely updates to changes in applicable GAAP; documentation of these reviews exist; Changes to the Accounting & Manual are formally approved by senior management prior to release and distribution; Applicable finance staff has access to most recent Accounting & Manual (effectiveness of communication). CLC nr 7: Code of Conduct Ensure existence of: Authorized Code of Conduct is made publicly available (e.g. on company website); Annual confirmation on compliance with Code of Conduct is being organized; Annual evaluation of deviations from the Code of Conduct (e.g. Letter of Representation, ethics committee) by appropriate management; Periodic reporting on instances, remediation and action plan of deviations for the Code of Conduct. CLC nr 12: Self assessment of Supervisory Board on its own performance Verify, based on interviews with a number of employees at various levels in the company, whether they are aware of the Code of Conduct and that the code is frequently addressed by Senior Management in communications, e- mails, etc.; Verify annual confirmation for a sample of employees; Check whether the current version of the Code of Conduct is published on the intranet; Verify the existence of formal reporting procedures regarding violations of the Code of Conduct; Verify, based on the minutes of meetings, that deal with the violations, whether all violations reported are discussed, disciplinary actions defined and follow-up actions are initiated. Ensure existence of: Supervisory Board Charter, including a description of profiles and competencies of Supervisory Board members; Self assessment scheduled (agenda) by Supervisory Board; A questionnaire or other tool that ensures that the self assessment is done in a structured way and that all relevant matters are addressed; Result of self-assessment is formally documented and is agreed by Supervisory Board. Verify whether: Written evidence of these self-assessments exists (agenda, minutes and summarized questionnaire); The self-assessment is guided by the questionnaire and conclusions are established; All members of the Supervisory Board participate; Agendas and minutes of the meetings and, if applicable, follow-up actions are formally identified and results of previous actions are evaluated.
7 IIA platform going forward The Sarbanes Oxley act of 2002 has kept companies very busy over the past few years. Because of the complexity of the subject, the (Dutch) IIA initiative to organize a SOx-platform group proved and still proves to be a very valuable initiative. We will continue to meet, and we might share some of our thinking in this magazine. Our framework for Company Level s is in our view a good example of how the IIA can contribute to improved governance and enhanced internal controls in The Netherlands. We welcome readers of this article to provide their comments in order to improve the practical framework. About the authors: The IIA SOx networking Group is open for project leaders of US listed companies, located in the Netherlands. Drs. Ronald Bouman RA has experience with SOx at TNT and is currently interim SOx consultant at Van Der Moolen. Next to SOx he is focussing on Basel II and Solvency II. Drs. Jaap Gerkes RA has gained Internal and Risk Management experience at VNU. Currently he is a senior manager in the Dutch office of Protiviti, Independent Risk Consulting. Drs. Wilbert Jan van der Werf RA is employed at the Koninklijke Ahold N.V. in the SOx area. Drs. Heiko van der Wijk RA CIA gained SOx experience at KPN (till 2005) and is presently employed at KLM in the SOx area. He is also a board member of the IIA.
ALLEGIANT TRAVEL COMPANY AUDIT COMMITTEE CHARTER
I. PURPOSE ALLEGIANT TRAVEL COMPANY AUDIT COMMITTEE CHARTER (As Revised January 28, 2013) The Audit Committee shall provide assistance to the Company's Board of Directors (the "Board") in fulfilling the
More informationInternal Controls and Risk Management Report
42 Internal Controls and Risk Management Report Responsibility Our Board of Directors has the overall responsibility to ensure that sound and effective internal controls are maintained, while management
More informationFebruary 2015. Sample audit committee charter
February 2015 Sample audit committee charter Sample audit committee charter This sample audit committee charter is based on observations of selected companies and the requirements of the SEC, the NYSE,
More informationCOSO 2013 Internal Control Framework
COSO 2013 Internal Control A Guide to Implementation July 24, 2014 Justin Adamson Agenda COSO Background Changes to the Roadmap to Implementation Implementation Considerations & Lessons Learned 2 1 Who/What
More informationFERRARI N.V. AUDIT COMMITTEE CHARTER (Effective as of January 3, 2016)
FERRARI N.V. AUDIT COMMITTEE CHARTER (Effective as of January 3, 2016) For so long as shares of Ferrari N.V. (the Company ) are listed on the New York Stock Exchange ( NYSE ) and the rules of the NYSE
More informationCHANGYOU.COM LIMITED AUDIT COMMITTEE CHARTER
CHANGYOU.COM LIMITED AUDIT COMMITTEE CHARTER I. Composition of the Audit Committee: There will be a committee of the Board of Directors to be known as the Audit Committee. The Audit Committee will have
More informationAUDIT COMMITTEE CHARTER
AUDIT COMMITTEE CHARTER Purpose The Audit Committee ( Committee ) shall assist the Board of Directors (the Board ) in the oversight of (1) the integrity of the financial statements of the Company, (2)
More informationHALOZYME THERAPEUTICS, INC. CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS ORGANIZATION AND MEMBERSHIP REQUIREMENTS
HALOZYME THERAPEUTICS, INC. CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS I. STATEMENT OF POLICY The Audit Committee (the Committee ) of the Board of Directors (the Board ) of Halozyme Therapeutics,
More informationPwC. Bill 198 Overview September 2004
PwC Bill 198 Overview September 2004 Agenda Welcome and overview Regulatory environment and background Three rules: 52-109 Strategies for implementing the CEO/CFO certification process 52-110 Requirements
More informationTECK RESOURCES LIMITED AUDIT COMMITTEE CHARTER
Page 1 of 7 A. GENERAL 1. PURPOSE The purpose of the Audit Committee (the Committee ) of the Board of Directors (the Board ) of Teck Resources Limited ( the Corporation ) is to provide an open avenue of
More informationAudit Committee Charter
Audit Committee Charter 1. Members. The Audit Committee (the "Committee") shall be composed entirely of independent directors, including an independent chair and at least two other independent directors.
More informationInternal Audit Quality Assessment. Presented To: World Intellectual Property Organization
Internal Audit Quality Assessment Presented To: World Intellectual Property Organization April 2014 Table of Contents List of Acronyms 3 Page Executive Summary Opinion as to Conformance to the Standards,
More informationSparebanken Sør is a financial group consisting of the parent bank and subsidiaries.
CORPORATE GOVERNANCE PURPOSE Sparebanken Sør s corporate governance principles will ensure that the bank s corporate governance is in accordance with generally accepted and recognized views and standards
More informationAN AUDIT OF INTERNAL CONTROL OVER FINANCIAL REPORTING THAT IS INTEGRATED WITH AN AUDIT OF FINANCIAL STATEMENTS:
1666 K Street, NW Washington, D.C. 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8430 www.pcaobus.org STAFF VIEWS AN AUDIT OF INTERNAL CONTROL OVER FINANCIAL REPORTING THAT IS INTEGRATED WITH AN
More informationRisk Management Advisory Services, LLC Capital markets audit and control
Risk Management Advisory Services, LLC Capital markets audit and control November 14, 2003 Office of the Secretary Public Company Accounting Oversight Board 1666 K Street, N.W. Washington, D.C., 20006-2803
More informationThe Procter & Gamble Company Board of Directors Audit Committee Charter
The Procter & Gamble Company Board of Directors Audit Committee Charter I. Purposes. The Audit Committee (the Committee ) is appointed by the Board of Directors for the primary purposes of: A. Assisting
More informationCHARTER FOR THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS SIGMA DESIGNS, INC. (As adopted by the Board of Directors effective as of May 2010)
CHARTER FOR THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF SIGMA DESIGNS, INC. (As adopted by the Board of Directors effective as of May 2010) PURPOSE: The purpose of the Audit Committee of the Board
More informationAudit, Risk Management and Compliance Committee Charter
Audit, Risk Management and Compliance Committee Charter Woolworths Limited Adopted by the Board on 27 August 2013 page 1 1 Introduction This Charter sets out the responsibilities, structure and composition
More informationCHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF KAISER ALUMINUM CORPORATION
CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF KAISER ALUMINUM CORPORATION Purposes The Audit Committee of the Board of Directors of the Company oversees (a) the accounting and financial reporting
More informationEnterprise Risk Management Program at HCA. ERM Roundtable. February 25, 2005 HCA. David Hughes, CPA, CIA AVP, ERM Office
Enterprise Risk Management Program at ERM Roundtable February 25, 2005 David Hughes, CPA, CIA AVP, ERM Office Agenda 1. 1. Overview of of 2. 2. Evolution of of our ERM Program 3. 3. Risk Identification
More informationCharter of the Audit Committee of the Board of Directors of Novo Nordisk A/S
Charter of the Audit Committee of the Board of Directors of Novo Nordisk A/S CVR no. 24 25 67 90 CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF NOVO NORDISK A/S 3 DECEMBER 2014 1 OF 7 1. Status
More informationQuality Assurance Checklist
Internal Audit Foundations Standards 1000, 1010, 1100, 1110, 1111, 1120, 1130, 1300, 1310, 1320, 1321, 1322, 2000, 2040 There is an Internal Audit Charter in place Internal Audit Charter is in place The
More informationInspection of Fazzari + Partners LLP Chartered Accountants (Headquartered in Vaughan, Canada) Public Company Accounting Oversight Board
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8433 www.pcaobus.org Inspection of Fazzari + Partners LLP (Headquartered in Vaughan, Canada) Issued by the Public
More informationCompany s Audit and a Review of the Outside Auditor
CLARCOR INC. AUDIT COMMITTEE OF THE BOARD OF DIRECTORS CHARTER PURPOSES: The purpose of the Committee is to: (a) assist Board oversight of (i) the integrity of the Company s financial statements, (ii)
More information1. FPO. Guide to the Sarbanes-Oxley Act: IT Risks and Controls. Second Edition
1. FPO Guide to the Sarbanes-Oxley Act: IT Risks and Controls Second Edition Table of Contents Introduction... 1 Overall IT Risk and Control Approach and Considerations When Complying with Sarbanes-Oxley...
More informationReport on. 2009 Inspection of PricewaterhouseCoopers LLP. Public Company Accounting Oversight Board
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8433 www.pcaobus.org Report on 2009 (Headquartered in New York, New York) Issued by the Public Company Accounting
More informationCOUPONS.COM INCORPORATED CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS
COUPONS.COM INCORPORATED CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS I. STATEMENT OF POLICY This Charter specifies the authority and scope of the responsibilities of the Audit Committee (the
More informationMINNESOTA MUTUAL COMPANIES, INC. Guidelines of the Audit Committee of the Board of Directors
MINNESOTA MUTUAL COMPANIES, INC. Guidelines of the Audit Committee of the Board of Directors I. Audit Committee Purpose The Audit Committee is appointed by the Board of Directors to assist the Board in
More informationAudit Committee Charter Altria Group, Inc. In the furtherance of this purpose, the Committee shall have the following authority and responsibilities:
Audit Committee Charter Altria Group, Inc. Membership The Audit Committee (the Committee ) of the Board of Directors (the Board ) of Altria Group, Inc. (the Company ) shall consist of at least three directors
More informationCOSO 2013: WHAT HAS CHANGED & STEPS TO TAKE TO ENSURE COMPLIANCE
COSO 2013: WHAT HAS CHANGED & STEPS TO TAKE TO ENSURE COMPLIANCE COMMITTEE OF SPONSORING ORGANIZATIONS (COSO) 2013 The Committee of Sponsoring Organizations (COSO) Internal Controls Integrated Framework,
More informationIMMUNOTEC INC. AUDIT AND DISCLOSURE POLICY MANAGEMENT COMMITTEE CHARTER AND WHISTLEBLOWER POLICY
IMMUNOTEC INC. AUDIT AND DISCLOSURE POLICY MANAGEMENT COMMITTEE CHARTER AND WHISTLEBLOWER POLICY ORGANIZATION There shall be a committee of the Board of Directors of the Corporation (the Board ) to be
More informationResponse e-mailed to comments@pcaobus.org
Richard F. Chambers Certified Internal Auditor Certified Government Auditing Professional Certification in Control Self-Assessment President and Chief Executive Officer DATE Office of the Secretary PCAOB
More informationStandards for the Professional Practice of Internal Auditing
Standards for the Professional Practice of Internal Auditing THE INSTITUTE OF INTERNAL AUDITORS 247 Maitland Avenue Altamonte Springs, Florida 32701-4201 Copyright c 2001 by The Institute of Internal Auditors,
More informationGuidance for audit committees. The internal audit function
Guidance for audit committees The internal audit function March 2004 The Combined Code on Corporate Governance July 2003 C.3 Audit Committee and Auditors Main Principle: The board should establish formal
More informationCOSO 2013 Internal Control Integrated Framework FRED J. PETERSON, PARTNER MOSS ADAMS LLP
COSO 2013 Internal Control Integrated Framework FRED J. PETERSON, PARTNER MOSS ADAMS LLP Disclaimer The material appearing in this presentation is for informational purposes only and should not be construed
More informationOffice of Internal Audit Status Report BOARD OF TRUSTEES
Office of Internal Audit Status Report BOARD OF TRUSTEES February 5, 2010 Office of Internal Audit Date: January 13, 2010 To: From: Subject: Board of Trustees and Finance and Audit Committee Allen Vann,
More informationHow to survive an Audit
How to survive an Audit Eric Tan PwC Harshul Joshi PwC Objectives Preparation - You can never prepare enough; Mock audit - Running a mock audit Documentation to prove the processes and controls - Documentation
More informationA LAYPERSON S GUIDE INTERNAL CONTROL OVER FINANCIAL REPORTING (ICFR)
A LAYPERSON S GUIDE TO INTERNAL CONTROL OVER FINANCIAL REPORTING (ICFR) Prepared by Kayla J. Gillan, Member of the Public Company Accounting Oversight Board For The Council of Institutional Investors Annual
More informationA Sarbanes-Oxley Roadmap to Business Continuity
A Sarbanes-Oxley Roadmap to Business Continuity NEDRIX Conference June 23, 2004 Dr. Eric Schmidt eschmidt@controlsolutions.com Control Solutions International TECHNOLOGY ADVISORY, ASSURANCE & RISK MANAGEMENT
More informationSummary of Internal Control-Integrated Framework by COSO:
Summary of Internal Control-Integrated Framework by COSO: COSO stands for Commission of Sponsoring Organizations a private commission chartered to research and report on improving quality of financial
More informationCHARTER FOR THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF INTUITIVE SURGICAL, INC. Approved by the Board of Directors on February 9, 2007
CHARTER FOR THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF INTUITIVE SURGICAL, INC. Approved by the Board of Directors on February 9, 2007 I. Purpose The Audit Committee (the Committee ) of Intuitive
More informationCHECKLIST OF COMPLIANCE WITH THE CIPFA CODE OF PRACTICE FOR INTERNAL AUDIT
CHECKLIST OF COMPLIANCE WITH THE CIPFA CODE OF PRACTICE FOR INTERNAL AUDIT 1 Scope of Internal Audit 1.1 Terms of Reference 1.1.1 Do terms of reference: (a) establish the responsibilities and objectives
More informationOBSERVATIONS FROM 2010 INSPECTIONS OF DOMESTIC ANNUALLY INSPECTED FIRMS REGARDING DEFICIENCIES IN AUDITS OF INTERNAL CONTROL OVER FINANCIAL REPORTING
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8430 www.pcaobus.org OBSERVATIONS FROM 2010 INSPECTIONS OF DOMESTIC ANNUALLY INSPECTED FIRMS REGARDING DEFICIENCIES
More informationRISK AND COMPLIANCE COMMITTEE CHARTER
1. GENERAL SCOPE AND AUTHORITY 1.1 Introduction This charter governs the operations of the Risk & Compliance Committee of Redflex Holdings Limited (RHL or Company). 1.2 Purpose The Risk & Compliance Committee
More informationOceaneering International, Inc. Audit Committee Charter
Oceaneering International, Inc. Audit Committee Charter Purpose The Audit Committee of the Board of Directors (the Committee ) is appointed by the Board of Directors (the Board ) to assist the Board in
More informationThe ADT Corporation. Audit Committee Charter. December 2014
The ADT Corporation Audit Committee Charter December 2014 1 TABLE OF CONTENTS Purpose... 3 Authority... 3 Composition... 3 Meetings... 3 Responsibilities... 4 Financial Statements... 4 External Audit...
More informationMaster Document Audit Program. Version 7.4, dated November 2006 B-1 Planning Considerations. Purpose and Scope
Activity Code 24010 B-1 Planning Considerations Estimating System Survey (ICR) Purpose and Scope The major objectives of this audit are to: Evaluate the adequacy of and the contractor s compliance with
More informationCVS HEALTH CORPORATION A Delaware corporation (the Company ) Audit Committee Charter Amended as of September 24, 2014
CVS HEALTH CORPORATION A Delaware corporation (the Company ) Audit Committee Charter Amended as of September 24, 2014 Purpose The Audit Committee (the Committee ) is created by the Board of Directors of
More informationAudit, Business Risk and Compliance Committee Charter. Spotless Group Holdings Limited ACN 154 229 562
Audit, Business Risk and Compliance Committee Charter Spotless Group Holdings Limited ACN 154 229 562 Adopted by the Company board on 26 March 2014 Contents Page 1 Role and authority of the Audit, Business
More informationAntifraud program and controls assessment grid*
Advisory Services Antifraud program and * Fraud risks & controls February 2008 *connectedthinking 2008 PricewaterhouseCoopers LLP. All rights reserved. PricewaterhouseCoopers refers to PricewaterhouseCoopers
More informationDoes Fraud Matter? ASIS Middle East Security Conference and Exhibition Dubai, February 16, 2015. Torsten Wolf, CPP Head of Group Security Operations
Does Fraud Matter? ASIS Middle East Security Conference and Exhibition Dubai, February 16, 2015 Torsten Wolf, CPP Head of Group Security Operations Agenda Introduction Economic Crime Landscape Economic
More informationA&CS Assurance Review. Accounting Policy Division Rule Making Participation in Standard Setting. Report
A&CS Assurance Review Accounting Policy Division Rule Making Participation in Standard Setting Report April 2010 Table of Contents Background... 1 Engagement Objectives, Scope and Approach... 1 Overall
More informationCHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF SERVICEMASTER GLOBAL HOLDINGS, INC.
CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF SERVICEMASTER GLOBAL HOLDINGS, INC. Adopted by the Board of Directors on July 24, 2007; and as amended June 13, 2014. Pursuant to duly adopted
More informationRISK BASED AUDITING: A VALUE ADD PROPOSITION. Participant Guide
RISK BASED AUDITING: A VALUE ADD PROPOSITION Participant Guide About This Course About This Course Adding Value for Risk-based Auditing Seminar Description In this seminar, we will focus on: The foundation
More informationBAHRAIN TELECOMMUNICATIONS COMPANY B.S.C. AUDIT COMMITTEE CHARTER
BAHRAIN TELECOMMUNICATIONS COMPANY B.S.C. AUDIT COMMITTEE CHARTER Contents I. Audit Committee... 1 1. Purpose and Mission... 1 2. Authority... 1 3. Membership... 2 4. Secretary... 3 5. Quorum... 3 6. Decisions...
More informationFraud Risk Management Program Review
Office of the Chief Internal Auditor Fraud Risk Management Program Review South Carolina Department of Transportation s Implementation of a Fraud Risk Management Program CIA-FIN 09-001 December 3, 2009
More informationEthical Maturity Index: Questionnaire Authors: Elena Demidenko and Patrick McNutt
Ethical Maturity Index: Questionnaire Authors: Elena Demidenko and Patrick McNutt Patrick McNutt and Elena Demidenko have developed a questionnaire to enable management self assessment of current situation
More informationInternational Standard on Auditing (UK and Ireland) 315
Standard Audit and Assurance Financial Reporting Council June 2013 International Standard on Auditing (UK and Ireland) 315 Identifying and assessing the risks of material misstatement through understanding
More informationAUDIT COMMITTEE MANDATE
AUDIT COMMITTEE MANDATE I. PURPOSE The Audit Committee (the Committee ) is appointed by the Board of Directors of Encana Corporation ( the Corporation ) to assist the Board in fulfilling its oversight
More informationLafargeHolcim Ltd. Finance & Audit Committee Charter Review date: July 28, 2015
LafargeHolcim Ltd Finance & Audit Committee Charter Review date: July 28, 2015 1. Purpose 1.1 Mission The Finance & Audit Committee ( FAC ) is an expert committee formally appointed by the Board of Directors
More informationThe primary purposes of the Audit Committee shall be to:
CONSTELLATION BRANDS, INC. BOARD OF DIRECTORS AUDIT COMMITTEE CHARTER Composition and Member Qualifications The Audit Committee of the Board of Directors shall be composed of at least three, but not more
More informationINTERNAL AUDITING S ROLE IN SECTIONS 302 AND 404
INTERNAL AUDITING S ROLE IN SECTIONS 302 AND 404 OF THE U.S. SARBANES-OXLEY ACT OF 2002 May 26, 2004 Copyright 2004 by, 247 Maitland Avenue, Altamonte Springs, Florida, 32701-4201, USA Internal Auditing
More informationGENERAL MILLS, INC. AUDIT COMMITTEE CHARTER
GENERAL MILLS, INC. AUDIT COMMITTEE CHARTER Organization. The Audit Committee (the Committee ) of General Mills, Inc. (the Company ) is a standing committee of the Board of Directors. The Committee shall
More informationNotion VTec Berhad (Company No. 637546-D) Board Charter
1. Introduction In achieving the objectives of transparency, accountability and effective performance for Notion VTec Berhad ( Notion or the Company ) and its subsidiaries ( the Group ), the enhancement
More informationSunTrust Banks, Inc. Audit Committee of the Board of Directors Charter
SunTrust Banks, Inc. Audit Committee of the Board of Directors Charter PURPOSE The Audit Committee (the Committee ) is appointed by the Board of Directors (the Board ) of SunTrust Banks, Inc. (the Company
More informationAMERICAN AIRLINES GROUP INC. AUDIT COMMITTEE CHARTER
AMERICAN AIRLINES GROUP INC. AUDIT COMMITTEE CHARTER As adopted by the Board of Directors on December 9, 2013 The Board of Directors (the Board ) of American Airlines Group Inc. (the Company ) hereby sets
More informationSALESFORCE.COM, INC. CHARTER OF THE AUDIT AND FINANCE COMMITTEE OF THE BOARD OF DIRECTORS. (Revised September 11, 2012)
I. STATEMENT OF POLICY SALESFORCE.COM, INC. CHARTER OF THE AUDIT AND FINANCE COMMITTEE OF THE BOARD OF DIRECTORS (Revised September 11, 2012) This Charter specifies the scope of the responsibilities of
More informationFebruary 2015. Audit committee performance evaluation
February 2015 Audit committee performance evaluation Audit committee performance evaluation The following questionnaire is based on emerging and leading practices to assist in the self-assessment of an
More informationINTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)
INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS) Introduction to the International Standards Internal auditing is conducted in diverse legal and cultural environments;
More informationThe Importance of IT Controls to Sarbanes-Oxley Compliance
Hosted by Deloitte, PricewaterhouseCoopers and ISACA/ITGI The Importance of IT Controls to Sarbanes-Oxley Compliance 15 December 2003 1 Presenters Chris Fox, CA Sr. Manager, Internal Audit Services PricewaterhouseCoopers
More informationMARLIN MIDSTREAM GP, LLC AUDIT COMMITTEE CHARTER
MARLIN MIDSTREAM GP, LLC AUDIT COMMITTEE CHARTER Purpose The Audit Committee (the Committee ) is appointed by the Board of Directors ( Board ) of Marlin Midstream GP, LLC (the Company ), which is the general
More informationHow quality assurance reviews can strengthen the strategic value of internal auditing*
How quality assurance reviews can strengthen the strategic value of internal auditing* PwC Advisory Internal Audit Table of Contents Situation Pg. 02 In response to an increased focus on effective governance,
More informationInternal Control Strategies. A Mid to Small Business Guide
Brochure More information from http://www.researchandmarkets.com/reports/2325460/ Internal Control Strategies. A Mid to Small Business Guide Description: Praise for Internal Control Strategies A Mid to
More informationCOSO s 2013 Internal Control Framework in Depth: Implementing the Enhanced Guidance for Internal Control over External Financial Reporting
in Depth: Implementing the Enhanced Guidance for Internal Control over External Financial Reporting Table of Contents EXECUTIVE SUMMARY... 3 BACKGROUND... 3 SIGNIFICANT CHANGES AFFECTING INTERNAL CONTROL
More informationGoverning Body 322nd Session, Geneva, 30 October 13 November 2014
INTERNATIONAL LABOUR OFFICE Governing Body 322nd Session, Geneva, 30 October 13 November 2014 Programme, Financial and Administrative Section Audit and Oversight Segment GB.322/PFA/5 PFA Date: 3 September
More informationAnnual Assessment of the External Auditor
Annual Assessment of the External Auditor TOOL FOR AUDIT COMMITTEES January 2014 ENHANCING AUDIT QUALITY AUDIT COMMITTEES iii Table of Contents Introduction 1 1. Determine the scope, timing and process
More informationControl Environment Questionnaire
Control Environment Questionnaire Internal Control Questionnaire Question Yes No N/A Remarks INTEGRITY AND ETHICAL VALUES Management must convey the message that integrity and ethical values cannot be
More informationFraud Risk Management Procedures
Fraud Risk Management Procedures 1. Introduction KCE Electronics Public Company Limited ( KCE or the Company ) is committed to achieving the highest levels of business integrity, morals and transparency
More informationRisk Assessment Standards Toolkit. Practical Guidance in Implementing SFAS 104 111
Risk Assessment Standards Toolkit Practical Guidance in Implementing SFAS 104 111 Risk Assessment Standards Toolkit Practical Guidance in Implementing Statements on Auditing Standards 104 Through 111 About
More informationMANDATE OF THE AUDIT COMMITTEE FOUNDERS ADVANTAGE CAPITAL CORP.
MANDATE OF THE AUDIT COMMITTEE FOUNDERS ADVANTAGE CAPITAL CORP. OBJECTIVES The Audit Committee has been formed by the board of directors (the "Board") of Founders Advantage Capital Corp. (together with
More informationJapanese Guidelines for Internal Control Reporting Finalized Differences in Requirements Between the U.S. Sarbanes-Oxley Act and J-SOX
FLASH REPORT Japanese Guidelines for Internal Control Reporting Finalized Differences in Requirements Between the U.S. Sarbanes-Oxley Act and On February 15, 2007, the Business Accounting Council of the
More informationthe role of the head of internal audit in public service organisations 2010
the role of the head of internal audit in public service organisations 2010 CIPFA Statement on the role of the Head of Internal Audit in public service organisations The Head of Internal Audit in a public
More informationAUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF ADVANTAGE OIL & GAS LTD. CHARTER
OF ADVANTAGE OIL & GAS LTD. I. PURPOSE The primary function of the Audit Committee is to assist the Board of Directors (the "Board of Directors" or "Board") of Advantage Oil & Gas Ltd. ("Advantage" or
More informationJanuary 2013. Sample audit committee charter
January 2013 Sample audit committee charter Sample audit committee charter This sample audit committee charter is based on a review of selected Fortune 1000 company charters, as well as the requirements
More informationB o a r d of Governors of the Federal Reserve System. Supplemental Policy Statement on the. Internal Audit Function and Its Outsourcing
B o a r d of Governors of the Federal Reserve System Supplemental Policy Statement on the Internal Audit Function and Its Outsourcing January 23, 2013 P U R P O S E This policy statement is being issued
More informationContinuous Monitoring?
Continuous Auditing or Continuous Monitoring? Drs. Arie Pronk RE RA CISA CAMS VUrORE Thema avond Continuous Auditing (Dynamisering van de Audit) 5 september 2006, Amsterdam 1 Biography Arie Pronk is Head
More informationAudit Committee. Directors Report. Gary Hughes Chairman, Audit Committee. Gary Hughes Chairman, Audit Committee
Audit Committee Dear Shareholder, We are satisfied that the business has maintained robust risk management and internal controls, supported by strong overall governance processes, and that management have
More informationDTE ENERGY COMPANY AUDIT COMMITTEE CHARTER
DTE ENERGY COMPANY AUDIT COMMITTEE CHARTER Purpose The purpose of the Audit Committee is to assist the Board of Directors in its oversight of the: 1. Integrity of the Company s financial statements; 2.
More informationAdministrative Guidelines on the Internal Control Framework and Internal Audit Standards
Administrative Guidelines on the Internal Control Framework and Internal Audit Standards GCF/B.09/18 18 February 2015 Meeting of the Board 24 26 March 2015 Songdo, Republic of Korea Agenda item 24 Page
More informationAUDIT COMMITTEE BEST PRACTICES CHECKLIST
AUDIT COMMITTEE BEST PRACTICES CHECKLIST General 1. Members have the appropriate predefined qualifications to meet the objectives of the audit committee s charter, including appropriate financial literacy.
More informationCITY OF BURLINGTON COSO FRAMEWORK & COMPLIANCE
CITY OF BURLINGTON COSO FRAMEWORK & COMPLIANCE Points of Focus Principle 1. The organization demonstrates a commitment to integrity and ethical values. Supporting Points of Focus:* Sets the tone at the
More informationMaster Document Audit Program. Version 1.8, dated November 2015. B-01 Planning Considerations
Activity Code 11060 Control Environment Version 1.8, dated November 2015 B-01 Planning Considerations Audit Specific Independence Determination Members of the audit team and internal specialists consulting
More informationPOLICY SUBJECT: EFFECTIVE DATE: 5/31/2013. To be reviewed at least annually by the Ethics & Compliance Committee COMPLIANCE PLAN OVERVIEW
Compliance Policy Number 1 POLICY SUBJECT: EFFECTIVE DATE: 5/31/2013 Compliance Plan To be reviewed at least annually by the Ethics & Compliance Committee COMPLIANCE PLAN OVERVIEW Sound Inpatient Physicians,
More informationSarbanes/Oxley Act: Accounting/Corporate Governance Reform
: Accounting/Corporate Governance Reform David W. Powers, Jr. Senior Financial Analyst Banking Supervision & Regulation Virginia Bank Directors College Spring 2003 OVERVIEW Enacted July 30, 2002 Enhances
More informationIndustry Sound Practices for Financial and Accounting Controls at Financial Institutions
Industry Sound Practices for Financial and Accounting Controls at Financial Institutions Federal Reserve Bank of New York January 2006 FINANCIAL AND ACCOUNTING CONTROLS: INDUSTRY SOUND PRACTICES FOR FINANCIAL
More informationReport on. 2010 Inspection of PricewaterhouseCoopers LLP (Headquartered in New York, New York) Public Company Accounting Oversight Board
1666 K Street, N.W. Washington, DC 20006 Telephone: (202) 207-9100 Facsimile: (202) 862-8433 www.pcaobus.org Report on 2010 (Headquartered in New York, New York) Issued by the Public Company Accounting
More informationHEWLETT-PACKARD COMPANY BOARD OF DIRECTORS AUDIT COMMITTEE CHARTER
HEWLETT-PACKARD COMPANY BOARD OF DIRECTORS AUDIT COMMITTEE CHARTER I. Purpose and Authority The purpose of the Audit Committee (the Committee ) of the Board of Directors (the Board ) of Hewlett-Packard
More informationThe Role of Internal Audit In Business Continuity Planning
The Role of Internal Audit In Business Continuity Planning Dan Bailey, MBCP Page 0 Introduction Dan Bailey, MBCP Senior Manager Protiviti Inc. dan.bailey@protiviti.com Actively involved in the Information
More informationMACQUARIE TELECOM GROUP LIMITED AUDIT COMMITTEE CHARTER
MACQUARIE TELECOM GROUP LIMITED AUDIT COMMITTEE CHARTER Adopted by the Board: 3 April 2007 A. Introduction This charter governs the operations of the Audit Committee of Macquarie Telecom Group Limited.
More informationPerformance Measures for Internal Auditing
Performance Measures for Internal Auditing A simple question someone may ask is Why measure performance? An even simpler response would be that what gets measured gets done. McMaster University s discussion
More information