An Overview. August 2007 Internal Control - An Overview 1



Similar documents
Internal Control Guide & Resources

Internal Controls. A short presentation from Your Internal Audit Department

Internal Control Systems and Maintenance of Accounting and Other Records for Interactive Gaming & Interactive Wagering Corporations (IGIWC)

Internal Control Guide for Managers

AUSTIN INDEPENDENT SCHOOL DISTRICT INTERNAL AUDIT DEPARTMENT PAYROLL AUDIT PROGRAM

GAO. Standards for Internal Control in the Federal Government. Internal Control. United States General Accounting Office.

Cash, Petty Cash, Change Funds, and Credit Cards

The Basics of Internal Controls

MEMORANDUM INTERNAL CONTROL REQUIREMENTS FOR NON-PROFITS

MEMORANDUM. Municipal Officials. From: Karen Horn, Director, Public Policy and Advocacy; and Abby Friedman, Director, Municipal Assistance Center

Internal controls Guidance for trustees

INTERNAL CONTROL QUESTIONNAIRE OFFICE OF INTERNAL AUDIT UNIVERSITY OF THE VIRGIN ISLANDS

The policy and procedural guidelines contained in this handbook are designed to:

UCLA Policy 360: Internal Control Guidelines for Campus Departments

FRAUD RISK ASSESSMENT

POLICY & PROCEDURE DOCUMENT NUMBER: DIVISION: Finance & Administration. TITLE: Cash Operations Policy and Procedures. DATE: July 15, 2011

A Risk-Based Audit Strategy November 2006 Internal Audit Department

CHAPTER 4 EFFECTIVE INTERNAL CONTROLS OVER PAYROLL

STATE OF NEVADA Department of Administration Division of Human Resource Management CLASS SPECIFICATION TITLE GRADE EEO-4 CODE

GUIDELINES ON RISK MANAGEMENT AND INTERNAL CONTROLS FOR INSURANCE AND REINSURANCE COMPANIES

Internal Control Guidelines

FRAMEWORK FOR INTERNAL CONTROL SYSTEMS IN BANKING ORGANISATIONS (September 1998)

Compliance Policy ALCO recommended standard

MANAGER OF HUMAN RESOURCES CORPORATE SERVICES

MOPANI DISTRICT MUNICIPALITY

Cash Handling Questionnaire

Job Description. Office Manager

GUIDELINES FOR THE MANAGEMENT OF OPERATIONAL RISK FOR CREDIT UNIONS

(Effective for audits of financial statements for periods beginning on or after December 15, 2009) CONTENTS

Attachment 14 Financial Monitoring Tool November 2008

M-IC. Comptroller of the Currency Administrator of National Banks. Internal Control. Comptroller s Handbook. January 2001.

Control Environment Questionnaire

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

Internal Control Systems

Audit Guide for Audit Committees of Small Nonprofit Organizations

Chapter 8. Internal Control. Chapter 8-1

Operational Risk Publication Date: May Operational Risk... 3

SUGGESTED CONTROLS TO MITIGATE THE POTENTIAL RISK (Internal Audit)

FUND MANAGER CODE OF CONDUCT

APPENDIX A NCUA S CAMEL RATING SYSTEM (CAMEL) 1

c. Name of Accounts. All accounts of the Association, shall be in the Association s name.

FINANCIAL MANAGEMENT POLICIES AND PROCEDURES

ILLINOIS DEPARTMENT OF CENTRAL MANAGEMENT SERVICES CLASS SPECIFICATION CLASS TITLE POSITION CODE EFFECTIVE

Payroll Process Final Audit Report Report Nr. 13/12 August 30, 2012

Table of Contents: Chapter 2 Internal Control

On the Setting of the Standards and Practice Standards for. Management Assessment and Audit concerning Internal

University Audit and Compliance. Internal Controls Enterprise-Wide Risk Assessment

UNIVERSITY OF MISSISSIPPI MEDICAL CENTER. Internal Control Plan

INTERNAL CONTROL POLICIES

ACCA P1 Internal Control. incorporated into Combined code, it was last revised in 2005 and still present as a standalone document.

FRAMEWORK FOR THE EVALUATION OF INTERNAL CONTROL SYSTEMS

Introduction to Accounting 2 Modul 1 Internal Control and Cash


KANSAS CITY, MISSOURI RESPONSES TO THE FISCAL YEAR 2013 AUDIT MANAGEMENT LETTER

The Practice of Internal Controls

Enterprise Risk Management

Standards for Internal Control

PRACTICE ADVISORIES FOR INTERNAL AUDIT

Internal Control and Cash

Internal Controls and Financial Accountability for Not-for-Profit Boards NEW YORK STATE OFFICE. of the ATTORNEY GENERAL.

Property Room. Records Management System

Guidelines for Congregations Internal Control Best Practices

SIPP operator guidance

OECD GUIDELINES FOR PENSION FUND GOVERNANCE

Office of the Auditor General Performance Audit Report. Statewide Oracle Database Controls Department of Technology, Management, and Budget

ATTACHMENT L. 2012/13 Internal Control Questionnaire for Workforce Organizations/Programs

ASSOCIATED STUDENTS, INCORPORATED CALIFORNIA STATE UNIVERSITY, LONG BEACH DATE REVISED: 04/10/2013

Software Licenses Managing the Asset and Related Risks

Segregation of Duties

INTERNAL CONTROL OVER PURCHASE INTERNAL CONTROL OVER INVENTORY INTERNAL CONTROL OVER CASH PAYMENTS INTERNAL CONTROL OVER CASH RECEIPTS

INTERNATIONAL STANDARD ON AUDITING (UK AND IRELAND) 200

INTERNATIONAL STANDARD ON AUDITING (UK AND IRELAND) 315

REGULATION ON RISK MANAGEMENT AND OTHER ASPECTS OF INTERNAL CONTROL IN INVESTMENT FIRMS

WALLA WALLA PUBLIC SCHOOLS ACCOUNTING GUIDELINES

ASSET MANAGEMENT TABLE OF CONTENTS

Imperial County. Office of the Auditor-Controller. Internal Audit Standard Practice Manual

Understanding the Entity and Its Environment and Assessing the Risks of Material Misstatement

Sample Financial institution Risk Management Policy 2011

Transcription:

Internal Control An Overview August 2007 Internal Control - An Overview 1

Internal Control? August 2007 Internal Control - An Overview 2

Management s Role Management s role is to provide leadership that the organization needs to achieve its goal and objectives. Internal control is a technique used by managers to help an organization achieve these objectives. August 2007 Internal Control - An Overview 3

Four Basic Functions of Management Planning Organizing Directing Controlling Internal control is this 4 th function. Adequate internal controls allow managers to delegate responsibilities with reasonable assurance that what they expect to happen, actually does. Managers must develop internal controls for each activity for which they are responsible. August 2007 Internal Control - An Overview 4

Five notable concepts: Internal control is a process integrated with all other processes within an agency. Internal control is established, maintained, and monitored by people at all levels within an agency. Internal control increases the possibility of an agency achieving its strategic goals and objectives. Internal control must be cost effective and cost of implementation should not exceed the benefits derived from having the control in place. System of internal control in an organization is the responsibility of all employees, from management who design, implement, and maintain controls to staff that execute various control activities. August 2007 Internal Control - An Overview 5

Why do we need Internal Controls? To Provide Accountability... Public sector managers are responsible for managing the resources entrusted to them to carry out government programs.... And to Encourage Sound Management Practices Internal controls coordinate a department s policies and procedures to safeguard its assets, check accuracy and reliability of data, promote operational efficiency, and encourage adherence to sound management practices. August 2007 Internal Control - An Overview 6

3 Categories of Assurance Provided by Internal Control Effectiveness and efficiency of operations; Reliability of financial reporting; and, Compliance with applicable laws and regulations. August 2007 Internal Control - An Overview 7

Four Basic Types of Controls Preventative Detective Corrective Control point is a point in the process where an error or irregularity is likely to occur, creating a need for control. Compensating August 2007 Internal Control - An Overview 8

Five Specific Control Methods 1. Organizational Control establishes the framework within which the company conducts its various activities. The five types are as follows: Purpose, Authority, and Responsibility Organizational Structure Decision Authority Job Descriptions Segregation of Duties August 2007 Internal Control - An Overview 9

Five Specific Control Methods (cont.) 2. Operational Controls dictate the manner in which the organization performs its various activities and conducts its affairs. The seven types are as follows: Planning Budgeting Accounting and Information Systems Documentation Authorization Policies and Procedures Orderliness August 2007 Internal Control - An Overview 10

Five Specific Control Methods (cont.) 3. Personnel Controls help ensure suitable employee performance.the three types are as follows: Recruiting and Selection of Suitable Personnel Orientation, Training, and Development Supervision August 2007 Internal Control - An Overview 11

Five Specific Control Methods (cont.) 4. Periodic Review help organizations assess the progress and performance of their employees, operations, and programs.the three types are as follows: Reviews of Individual Employees Internal Review of Operations and Programs External Reviews August 2007 Internal Control - An Overview 12

Five Specific Control Methods (cont.) 5. Facilities and Equipment Suitable facilities help build effective & efficient operations while protecting the organization s assets Unsuitable facilities and equipment jeopardize both the operations and the assets August 2007 Internal Control - An Overview 13

What is Risk? Risk is the probability of an event or action having an adverse effect on your organization. Examples of Risk include the risk that: Operations are not operating effectively/efficiently; Financial and operating reports are unreliable; Assets are not adequately safeguarded against loss; Operations are not in compliance with laws, rules, & regulations; and, Unit s missions or goals are not achieved. August 2007 Internal Control - An Overview 14

Affects of Uncontrolled Risk Uncontrolled risk can severely handicap an organization and eventually result in its failure. Consequences are as follows: Resources are acquired or used inefficiently or ineffectively resulting in shortages of funds or failure of a unit to meet goals. Loss of assets due to theft or unintentional errors. Unreliable financial and operational reports, resulting in poor decisionmaking by management. Non-compliance with laws, rules, or regulations resulting in financial penalties or damage to the reputation of the unit Customer dissatisfaction due to ineffective operations resulting in loss of customers or negative publicity. August 2007 Internal Control - An Overview 15

What factors affect risk? Many factors affect the significance of a particular risk. Risk is controlled by reducing or otherwise impacting these factors. Factors include: Ethical Climate maintained by management; Degree of computerization; Adequacy and effectiveness of the System of Internal Control; and, Degree of Regulation. August 2007 Internal Control - An Overview 16

Biggest threats to the Internal Control Structure Management Override Access to Assets A well-designed control system, if set aside at management s discretion, can be equivalent to no control in terms of risk. The best way to safeguard assets is to control access to them. Substance over Controls may appear to be well-designed and still lack substance. Form Conflicts of Interest Failure to Anticipate Certain Risks Collusion When an employee s loyalties are divided there is a distinct risk that the employee will chose a course of action detrimental to the organization. Management may fail to anticipate certain risks, and thus fail to design and implement appropriate controls. Two or more employees may agree to circumvent internal controls. August 2007 Internal Control - An Overview 17

Management s Responsibilities & Classification of Management Controls Management s Responsibilities: Management is responsible for establishing effective management controls. Change inherent to government units increases the need for effective management controls. Classification of Management Controls: Includes the controls relevant to Program Operations, Validity and Reliability of Data, Compliance with Laws and Regulations, and Safeguarding resources. August 2007 Internal Control - An Overview 18

Segregation Of Duties The fundamental premise of segregated duties is... that an individual or small group of individuals should not be in a position to initiate, approve, undertake, and review the same action. August 2007 Internal Control - An Overview 19

Examples of Activities to be Properly Segregated Personnel & payroll activities Revenue activities Other expenditure activities Check writing activities Inventories August 2007 Internal Control - An Overview 20

Segregation of the Accounting Function Authorization - Authorization is normally performed by a supervisor, office manager, or department head. Examples include approving voids and refunds, approving budget transfers, approving time sheets and leave requests, and approving the disposition of inventory. Record Keeping - Record keeping is normally performed by administrative employees. Examples include preparing travel vouchers, maintaining expenditure files or revenue records, maintaining payroll files, and maintaining inventory records. Asset Custody - Asset custody duties are performed by any individual having access to or control over any physical asset. Examples include access to any funds through collection of funds or processing of payments, maintaining inventories, access to safes, lock boxes, etc. Reconciliation - The reconciliation function is the process of reviewing and verifying transactions to ensure they are valid, properly authorized, and recorded on a timely basis. Examples include comparing billing documents to billing summaries, collections to deposits, etc. August 2007 Internal Control - An Overview 21

Mitigating Controls Mitigating controls are additional control procedures placed in a system to help reduce the risks associated with a failure to adequately segregate incompatible functions. Most mitigating controls consist of detailed reviews of transactions, after-the-fact approvals, and period surprise checks. August 2007 Internal Control - An Overview 22

Questions? Thank you! August 2007 Internal Control - An Overview 23

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information