Deloitte Forensic Fraud Risk Management



Similar documents
IASB proposes amendments to IFRS 2 related to the classification and measurement of share-based payment. transactions. Published on: December 1, 2014

Fraud Risk Management providing insight into fraud prevention, detection and response

May C Group ERP data bridge setup Typical approach

Fraud Prevention and Deterrence

Corporate Resiliency Managing g the Growing Risk of Fraud and Corruption

Centre for Corporate Governance. Managing the business risk of fraud: New guidance for a new risk environment

Deloitte Adriatic Forensic Services Save 5% of your income. Say NO to fraud.

STAYING AHEAD OF THE PACK: EMERGING TRENDS & ISSUES WHISTLEBLOWING AFTER DODD-FRANK: A NEW WORLD

Centre for Corporate Governance. Sample listing of fraud schemes

Forensic Audit Building a World Class Program

Fraud Prevention Policy

Deloitte Forensic. Deloitte Forensic. Capability Statement

RISK MITIGATION SERVICES. Take-and-Use Guidelines for Chubb Crime Insurance Customers

THE MATH OF FRAUD PREVENTION PESENTATION TO COMPANIES/CO-OPERATIVES ON A FRAUD PREVENTION STRATEGY

For Private circulation only Creative. Clear. Focused. Forensic Services

Assessment for Establishing a Whistleblower Hotline:

FRAUD PREVENTION STRATEGIES FOR HEALTH CARE A FORENSIC ACCOUNTANT S PERSPECTIVE

Investment Decisions and Corporate Social Responsibility Survey Report

Take the right steps 9 principles for building the Risk Intelligent Enterprise

Fraud Prevention, Detection and Response. Dean Bunch, Ernst & Young Fraud Investigation & Dispute Services

Antifraud program and controls assessment grid*

Leveraging Big Data to Mitigate Health Care Fraud Risk

Types of Fraud and Recent Cases. Developing an Effective Anti-fraud Program from the Top Down

Fraud Prevention Checklist for Small Businesses

Change Management in Project Work Survey Results

Fraud Risk Management Procedures

Steven Boyer Vice-President, Gallagher Bassett Services Inc.

Dedicated to Protecting Your Reputation BKD NATIONAL HIGHER EDUCATION GROUP

Fraud and Role of Information Technology. September 2008

KEYS TO AN EFFECTIVE DIRECTOR CORPORATE COMPLIANCE AND INTERNAL AUDIT MULTICARE HEALTH SYSTEM TACOMA, WA

Centre for Corporate Governance. Fraud Response Management: Is your organization prepared to execute an efficient and effective response?

Office of the Inspector General

BDO NORDIC. Investigation, fraud prevention and computer forensics. You can guess. You can assume. Or you can know. And knowing is always better.

ANTI-FRAUD POLICY Adopted August 13, 2015

Audit Advisory Tax. RISK ADVISORY SERVICES GUARDING AGAINST FRAUD, THEFT AND CORRUPTION Forensic Services. The Leader for Exceptional Client Service

We believe successful global organisations can confront fraud, corruption and abuse PwC Finland Forensic Services

7/22/2014. From Treadway To the Cube ( ) So, Who is COSO? What Does COSO Do?

Fraud Risk Management

Glossary 2. About this chapter About fraud and corruption prevention and control 4

Preventing Fraud: Assessing the Fraud Risk Management Capabilities of Today s Largest Organizations

LGMA Qld Governance and Corporate Planning Village Forum

Riverside Community College District Policy No Human Resources

Fraud-Related Compliance

GCC ediscovery survey How ready are you?

Developing a Fraud Risk Management Program

Good Corporate Governance: Essential to Prevent Conflicts of Interest and Fraud Pakistan s s Experience

Employee Embezzlement and Fraud. Defending Against Insider Threats

Cash Flow Management: The Life of Your Business

Safeguarding Your Financial Assets & Mitigating Employee Fraud. Why Employee Fraud is Difficult to Quantify? What is Fraud?

Compliance in motion A closer look at the Corporate Sector. Deloitte Risk Services March 2015

Forensic Services. kpmg.hu

Policy-Standard heading. Fraud and Corruption Policy

REPORT TO THE NATIONS ON OCCUPATIONAL FRAUD AND ABUSE 2012 GLOBAL FRAUD STUDY

Governance, Risk and Compliance Charter

Understanding Your Ethics & Code of Conduct Training Requirements. May 29, 2008

Identity Theft Prevention Policy

Adopted by the Board of Directors of the Nordic Investment Bank on 17 December 2009 COMPLIANCE POLICY

Forensic Accounting: An Introduction

Internal Controls for Small Organizations. Jen Parker, CPA Director of Accounting & Finance US Youth Soccer

Sharon Kurek, CPA, CFE Director of Internal Audit

AHIA HCCA Auditing & Monitoring Focus Group Defining the Key Roles and Responsibilities Corporate Compliance and Internal Audit.

APEC General Elements of Effective Voluntary Corporate Compliance Programs

Reporting misconduct

1/17/2013 FRAUD RISK MANAGEMENT PROGRAM SESSION OBJECTIVE AND OUTLINE

Fraud and the Government Internal Auditor

Sobel & Co. s Nonprofit and Social Services Group presents. Your Organization is Vulnerable: The Facts About Nonprofits and Fraud

INVESTIGATIONS DIVISION FRAUD AWARENESS

Australian business and immigration solutions Planning is your best protection

Legal Ethics: THE LAWYER S ROLE WHEN SOMETHING GOES WRONG

Federal False Claims Act

Being protected Using data analytics to detect fraud

Compliance and Ethics at the Federal Reserve Bank of New York

Fraud and abuse overview

ICC Guidelines on Whistleblowing

NamCode. The Corporate Governance Code for Namibia

The Internal Audit fraud challenge Prevention, protection, detection

Office of the Inspector General

Fraud Prevention and Detection in a Manufacturing Environment

Fraud Awareness Training

Reputation Impact of a Data Breach Executive Summary

Managing FCPA (Foreign Corrupt Practices Act) Risks

Fraud Risk Management and Internal Audting

ISAE 3402 and SSAE 16 (replacing SAS 70) Reinforcing confidence through demonstration of effective controls

Data Breach Readiness

Business Breakfast. Information on assets hide impossible to declare. Private client services

Sarbanes-Oxley: Beyond. Using compliance requirements to boost business performance. An RIS White Paper Sponsored by:

Developing and Implementing a Fraud Risk Assessment. Josh Shilts CPA/CFF, CFE

Managing General Agents (MGAs) Guideline

Audit Committee Forum

Tax & Legal. Compliance and Reporting Services

Charter of the Compliance and Operational Risk Management Office (CORMO)

Saudi Arabia income tax and zakat update Refreshing perspectives

Evergreen Solar, Inc. Code of Business Conduct and Ethics

Fraud Risk Management

Customs alert Keep up to date. Tax & Legal June 2015

R&D and Government Incentives Tax & Legal. Financial affairs R&D tax relief opportunities for financial services companies

MASTER OF JURISPRUDENCE AND GRADUATE CERTIFICATE PROGRAMS COURSE DESCRIPTIONS

U.S. SQUASH Whistleblower Policy

Transcription:

Deloitte Forensic Fraud Risk Management

Introduction Organizations cannot afford to be unconcerned about the risk of fraud. Directors and management have a fiduciary obligation and a corporate responsibility to take steps to deter, detect and prevent it. While high profile incidences of fraud have involved gross misstatements of company financial statements, in reality, corporate fraud manifests itself in many different and often inconspicuous ways that eat away at the value within a business. And when it does occur, those who have not made the effort to detect and prevent fraud potentially open themselves up to personal liability, significant losses to the bottom line, regulatory censure, reputational damage and a loss of shareholder value. While the board and senior management have ultimate responsibility for taking steps to deter fraud, everyone within the business has a significant part to play. With the support and contribution of an organization s employees and the skill and experience of anti-fraud specialists, fraud may never be completely eliminated, but much can be done to reduce the risk. How Expensive Is Fraud? The Association of Certified Fraud Examiners 2012 Report to the Nations on Occupational Fraud and Abuse analyzed data from 94 countries: A typical organization loses 5% of its revenues to fraud each year. The median loss caused by occupational fraud cases in the study was $140,000. The frauds reported lasted a median of 18 months before being detected. Asset misappropriation schemes (schemes involving the theft or misuse of an organization s assets, such as fraudulent invoicing, payroll fraud or skimming revenues) were by far the most common type of occupational fraud, comprising 87% of the cases and a median loss of $120,000. Financial statement fraud schemes made up just 8% of the cases in the study, but caused the greatest median loss at $1 million. Corruption schemes fell in the middle, occurring in just over one-third of reported cases and causing a median loss of $250,000. The presence of anti-fraud controls is notably correlated with significant decreases in the cost and duration of occupational fraud schemes. Victim organizations that had implemented any of 16 common anti-fraud controls experienced considerably lower losses and time-to-detection than organizations lacking these controls. Nearly half of victim organizations do not recover any losses that they suffer due to fraud. 2 Deloitte Forensic Fraud Risk Management 3

Issues What Are Anti-Fraud Programs and Controls? Many organizations have taken proactive steps to detecting fraud. Establishing whistleblower hotlines and creating special investigation units to address fraud allegations can demonstrate management s commitment to fighting fraud and supporting a culture of ethics and integrity. Such programs have also come about as a result of the Sarbanes-Oxley Act, United States Sentencing Guidelines provisions, and insurance regulations. As economies continue to stagnate and incidences of large frauds become known, organizations may consider assessing their own fraud detection efforts. Instead of asking What are we doing to respond to fraud? organizations may consider asking, Are we doing it well? Are our fraud response efforts effective and efficient? Are we as prepared as we should be? The answers to these questions could be important on several levels: 4 From a compliance standpoint, the SEC has indicated that a critical consideration in its evaluation of a company s response to an alleged fraud is whether the company thoroughly reviewed the allegation s scope, origins, and consequences. Further, the United States Sentencing Guidelines provide specific criteria regarding effective organizational mechanisms for reporting and responding to allegations of fraud. From an efficiency standpoint, prudent organizations may seek to understand the performance effectiveness of their internal investigation resources, not only to comply with regulatory requirements, but also to improve their function. Performance improvement can often translate into higher recoveries, significant savings, and reduced reputational risk. Anti-fraud programs and controls are measures taken by companies to prevent, detect and respond to fraud and misconduct: Prevent: Reduce the risk of fraud and misconduct from occurring. Detect: Discover fraud and misconduct when it occurs. Respond: Take corrective action and remedy the harm caused by fraud or misconduct. Anti-Fraud Programs and Controls Prevention Detection Response Board and Audit Committee Functions Internal Audit and Compliance Functions Fraud and Misconduct Risk Assessment Codes of Conduct Employee Communication and Training Employee and Third-Party Due Diligence Process-Specific Fraud Risk Controls Proactive Forensic Data Analysis (Continued Monitoring) Ongoing Self-Monitoring and Separate Evaluations Hotlines and Whistleblower Reporting Mechanisms Substantive Testing Proactive Forensic Data Analysis (Retrospective Review) Internal Investigation Protocols Remedial Action Protocols Enforcement and Accountability Protocols Disclosure Protocols Deloitte Forensic Fraud Risk Management 5

What Are Anti-Fraud Programs and Controls? An Ongoing Process Organizations should address the risk of fraud in a comprehensive and integrated manner. Our integrated approach to fraud control helps organizations to understand their susceptibility to fraud risk, identify high-risk fraud areas, develop a fraud control plan to address areas of critical fraud risk, monitor the ongoing effectiveness of fraud risk mitigation, and respond to actual instances of fraud. Effective fraud risk management provides an organization with tools to manage risk in a manner consistent with regulatory requirements as well as the entity s business needs and marketplace expectations. Our approach has six phases: Evaluate Identify Risk Action Plan Mitigate Monitor Respond Analyze the current status and effectiveness of the approach to implementing and maintaining antifraud programs and controls within the business Assess, define and document fraud risks and control effectiveness; establish fraud risk profile by analysis of risk against controls Help prepare an action plan to address areas of fraud risk identified for control improvement or new control implementation during the fraud risk assessment Enhance, implement and maintain preventative and detective control activities which help mitigate fraud risks identified during the fraud risk assessment Help establish continuous monitoring activities through technology and ongoing review activities to alert management of potential fraud; incorporate findings into annual fraud risk assessment process Assist in responding to potential occurrences of fraud within the business Measure, Improve and Move: This program is a continuous improvement process that requires annual measurements of where a business is in terms of effectively deterring, detecting and responding to fraud. This enables comparisons of where the business was, where it is now and where it needs to be. It is important for management to consider the increasing expectations associated with key business, regulatory compliance, and marketplace drivers in developing anti-fraud programs and controls. 6 Deloitte Forensic Fraud Risk Management 7

Alexander Sokolov Partner Tel:. +7 (495) 787 06 00, ext. 3095 alsokolov@deloitte.ru Ludmila Grechanik Partner Tel:. + 7 (495) 787 06 00 ext. 3092 lgrechanik@deloitte.ru Natalia Golovchenko Senior Manager Tel.: + 7 (495) 787 06 00, ext. 5395 ngolovchenko@deloitte.ru Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee, and its network of member firms, each of which is a legally separate and independent entity. Please see www.deloitte.com/about for a detailed description of the legal structure of Deloitte Touche Tohmatsu Limited and its member firms. Please see www.deloitte.com/ru/about for a detailed description of the legal structure of Deloitte CIS. Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries, Deloitte brings world class capabilities and deep local expertise to help clients succeed wherever they operate. Deloitte has in the region of 200,000 professionals, all committed to becoming the standard of excellence. Deloitte's professionals are unified by a collaborative culture that fosters integrity, outstanding value to markets and clients, commitment to each other, and strength from diversity. They enjoy an environment of continuous learning, challenging experiences, and enriching career opportunities. Deloitte's professionals are dedicated to strengthening corporate responsibility, building public trust, and making a positive impact in their communities. 2014 ZAO Deloitte & Touche CIS

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information