...Committee of Sponsoring Organizations (COSO) I would encourage you to go to the web site: http://www.coso.org/aboutus.htm and read more about COSO. * “About Us” gives a history of COSO, some of which is excerpted in the screen shots below. * Under “Guidance” you will find free executive summaries of some of the key studies COSO has done over the years. Click on the headings for “Enterprise Risk Management” “Internal Controls” or “Fraud Deterrence” and then click on “More” after the brief summary to get the executive summary of the study. I have attached the Executive Summary for Integrated Framework (1992) as a Reading Following this posting. * Under “Newsroom” and “Home” you will find descriptions of current COSO activities. COSO was an attempt by the private sector to do what congress did with SOX. At present, companies have guidance from COSO and regulatory requirements from SOX that are sometimes overlapping and sometimes in conflict. COSO was organized in 1985 to sponsor the National Commission on Fraudulent Financial Reporting, an independent private-sector initiative that studied the causal factors that can lead to fraudulent financial reporting. It also developed recommendations for public companies and their independent auditors, for the SEC and other regulators, and for educational institutions. The National Commission was sponsored jointly by five major professional associations headquartered in the United States: the American Accounting...
Words: 560 - Pages: 3
...The Development of COSO Frameworks and Guidance Yongheng Wang Kellstadt Graduate School of Business, DePaul University Abstract Fraudulent financial reporting has always been a crucial issue in business operation. Sometimes companies could report fraudulent financial statements to conceal true information and benefit from questionable transactions. Investors and shareholders would not be able to obtain useful information to make business decisions if financial information failed to reflect business operation and the company’s financial status. Broadly, the market would hurt due to the negative impact on the market efficiency. As a result, COSO, the Committee of Sponsoring Organizations of the Treadway Commission, was formed in 1985. It has published several comprehensive frameworks to help organizations to improve business operation and governance and to avoid fraud. The aim of this report was to study the development of COSO, including its history and main frameworks and guidance regarding internal control, enterprise risk management and fraud deterrence. The report interpreted the three areas under COSO framework with their key compositions and most recent updates. After the detailed interpretation, conclusion and recommendations were given. Keywords: Fraudulent Financial Reporting, COSO, Internal Control, ERM, Fraud Introduction and Background Financial information is a significant and unique composition of the world of business. Analysis on financial...
Words: 3530 - Pages: 15
...Connie Rise, set up an appointment for you to meet with her today. “Good morning,” she says, as you wonder what you have done to be summoned to her office at 8 a.m. You are still reeling from relocating to New York and working in this fast-paced environment. Here you are, plucked from a small city located among wine farms and rolling hills on the central coast of California and plunged right into the thick of things in New York City. But you love your new environment. You earn a great salary, pay exorbitant rent for a tiny apartment, and are on the audit team for one of the leading banks in the U.S. You couldn’t sleep because of the traffic noise last night, so you stayed up far too late reading the Committee of Sponsoring Organizations’ (COSO) Internal Control-Integrated Framework and tried to figure out how it relates to your first real audit. “Please sit down,” Ms. Rise continues. “How has your first...
Words: 2531 - Pages: 11
...internal control issues. One case is the Barings Bank collapse and there is a video of this case that you and the other staff auditors will view as part of the training. You want to be prepared for the discussions during the training sessions, so you conduct some research on these topics, especially Barings Bank, because you are not familiar with that case. The COSO Framework You search the COSO website and find the 2013 Internal Control—Integrated Framework that outlines five essential components of any internal control system: (1) control environment, (2) risk assessment, (3) control activities, (4) information and communication, and (5) monitoring. This updated version of the Framework introduces 17 principles associated with the five components. These principles provide clarity for the user in designing and implementing systems of internal control and for understanding requirements for effective internal control. You decide to summarize each of the five components as a first attempt to relate the COSO Framework to the Barings Bank failure. You label your work “Summary of COSO and Barings Bank” (see Exhibit 1). You know...
Words: 2441 - Pages: 10
... This research project has been submitted for examination with my approval as the university supervisor Signed……………………………. Date…………………………………………. Mr. Abdulatif Essajee Lecturer University of Nairobi TABLE OF CONTENTS DECLARATION i CHAPTER ONE 1 INTRODUCTION 1 1.1 Background of the study 1 1.2 Statement of the problem 5 1.3 Objectives of the study 6 1.4 Research questions 6 1.5 Scope of the study 6 1.6 Justification of the study 7 CHAPTER TWO 9 LITERARURE REVIEW 9 2.1 Evolution of internal controls 9 2.2 Components of Internal Controls 12 2.4 Relationship between a firm’s age and internal control 18 2.6 Internal controls in small businesses 19 CHAPTER THREE 21 RESEARCH METHODOLOGY 21 3.1 Research design 21 3.2 Population 21 3.3 Sample and Sampling Technique 21 3.4 Data collection methods 22 3.5 Data analysis 22 CHAPTER FOUR 23 DATA ANALYSIS AND FINDINGS 23 4.1 Introduction 23 4.2 Segregation of Duties 23 4.3 Procedural Controls 24 4.4 Relationship between Age and Internal Control on Cash 25 CHAPTER FIVE 27 SUMMARY, CONCLUSIONS AND RECOMMENDATIONS 27 5.1 Summary of Findings 27 5.2 Conclusions 29 5.3 Recommendations 30 REFERENCES 31 Appendix 1: Internal Control Questionnaire for Cash 37 CHAPTER ONE INTRODUCTION 1.1 Background of the study...
Words: 9772 - Pages: 40
...Role of Internal Auditors in the Anti-Corruption Battle John FlahertyThe Challengeh Bribery, and other illicit payments are contrary to the public good. They thwart the competitive process and circumvent laws, regulations, and procedures put in place for the public good. They divert funds from owners, shareholders, and are usually paid as fees, commissions, or are paid without record. The cost to the public totals millions of dollars annually. The US Government is aware of almost 100 cases in which foreign bribes undercut the ability of US firms to win contracts valued at $45 billion in the 12 months before May 1995. "Corruption occurs when someone has monopoly power over a good or a service, has the discretion to decide whether or not you receive it and how much you receive, and lacks accountability." (Robert Klitgaard, Controlling Corruption, 1988). The level of corruption in international business transactions continues to be a critical problem. Companies need both the motivation and the governance practices to discontinue these payments Role of Internal Auditors in the Anti-Corruption Battle John FlahertyThe Challenge Bribery, and other illicit payments are contrary to the public good. They thwart the competitive process and circumvent laws, regulations, and procedures put in place for the public good. They divert funds from owners, shareholders, and are usually paid as fees, commissions, or are paid without record. The cost to the public totals millions of dollars...
Words: 3346 - Pages: 14
...Guide to Internal Control Over Financial Reporting The Center for Audit Quality prepared this Guide to provide an overview for the general public of internal control over financial reporting (“ICFR”). The Guide explains what public company ICFR is and describes management’s responsibility for implementing effective ICFR. The Guide also discusses the responsibilities of the audit committee to oversee ICFR and of the independent auditor to audit the effectiveness of the company’s ICFR. A Guide to Internal Control Over Financial Reporting P reparing reliable financial information is a key responsibility of the management of every public company. The ability to effectively manage the company’s business requires access to timely and accurate information. Moreover, investors must be able to place confidence in a company’s financial reports if the company wants to raise capital in the public securities markets. Management’s ability to fulfill its financial reporting responsibilities depends in part on the design and effectiveness of the processes and safeguards it has put in place over accounting and financial reporting. Without such controls, it would be extremely difficult for most business organizations — especially those with numerous locations, operations, and processes — to prepare timely and reliable financial reports for management, investors, lenders, and other users. While no practical control system can absolutely assure that financial reports...
Words: 4333 - Pages: 18
...EFFECTIVENESS OF INTERNAL CONTROLS IN THE FORESTRY COMMISSION OF GHANA A CASE STUDY ATEBUBU FOREST DISTRICT. A THESIS SUBMITTED TO THE DEPARTMENT OF ACCOUNTING AND FINANCE, IN PARTIAL FULFILLMENT OF THE REQUIREMENTS FOR THE AWARDS OF MASTERS IN BUSINESS ADMINISTRATION. (FINANCE OPTION) KWAME NKRUMAH UNIVERSITY OF SCIENCE AND TECHNOLOGY, KUMASI GHANA SCHOOL OF BUSINESS COLLEGE OF ART AND SOCIAL SCIENCE BY PRINCE KWAKU ASARE PG8365312 JULY, 2014 DECLARATION I hereby declare that this submission is my own work towards the award of Masters in Business Administration Accounting option and no part of it has been presented for another degree in this university or elsewhere expect where due acknowledgement has been made in the test. PRINCE KWAKU ASARE ………………….…… ………………….. (CANDIDATE PG 8365312) SIGNATURE DATE Certified by: MR MICHAEL ADUSEI …………………… …………………… (SUPERVISOR) SIGNATURE DATE Certified by: ………………………..…. ……………………… …………………….. HEAD OF DEPARTMENT SIGNATURE DATE DEDICATION This work is dedicated to the almighty God for his guidance and protection throughout the undertaken of this thesis. I also dedicated this work to my late Dad Emmanuel Gyimah,my late Mum Comfort Adwoa Frimah, my late Uncle Kofi Anane and my bossom friend Joseph...
Words: 18473 - Pages: 74
...ISSUES IN ACCOUNTING EDUCATION Vol. 24, No. 1 February 2009 pp. 63–76 Assessing Information Technology General Control Risk: An Instructional Case Carolyn Strand Norman, Mark D. Payne, and Valaria P. Vendrzyk ABSTRACT: Information Technology General Controls (ITGCs), a fundamental category of internal controls, provide an overall foundation for reliance on any information produced by a system. Since the relation between ITGCs and the information produced by an organization’s various application programs is indirect, understanding how ITGCs interact and affect an auditor’s risk assessment is often challenging for students. This case helps students assess overall ITGC risk within an organization’s information systems. Students identify specific strengths and weaknesses within five ITGC areas, provide a risk assessment for each area, and then evaluate an organization’s overall level of ITGC risk within the context of an integrated audit. Keywords: internal controls; general control; ITGC; risk assessment. INTRODUCTION he Sarbanes-Oxley Act (SOX 2002) and the Public Company Accounting Oversight Board (PCAOB) Auditing Standard No. 5 (PCAOB 2007) require that the organization’s chief executive officer (CEO) and chief financial officer (CFO) include an assessment of the operating effectiveness of their internal control structure over financial reporting when issuing the annual report. External auditors must review management’s internal control assessment as part of an annual integrated audit...
Words: 6299 - Pages: 26
...Corporate Compliance Plan for Riordan Manufacturing University of Phoenix Riordan Manufacturing is a profitable plastics manufacturer with annual earnings of $46 million. The company is wholly owned by Riordan Industries, a Fortune 1000 company with revenues over $1 billion. The following are some of the products produced by Riordan Industries: plastic bottles, fans, heart valves, medial stents, and custom plastic parts (Virtual Organization, 2009). This compliance plan will state the company's legal responsibilities and regulations necessary to continue earning a profit. The plan will address the laws affecting the plastic industry and guidelines to ensure management and employees understand and obey the laws. The focus of the compliance plan will be on managing the legal liabilities of Riordan officers and directors. Riordan Manufacturing was started and founded by Dr. Riordan, a professor of chemistry. The company focused on research and development of plastic substrates. In 1992 the company purchased a fan manufacturing plant in Pontiac, Michigan. In the year 2000, the fan operation was moved to China. The corporate headquarters that include research and development is located in San Jose, California. Plastic beverage containers are produced in Albany, Georgia and custom plastic parts are produced in Pontiac, Michigan (Virtual Organization, 2009). The compliance plan will include an Alternative Dispute Resolution (ADR) to resolve a dispute, product liability to address...
Words: 4306 - Pages: 18
...Guide to Enterprise Risk Management F R E Q U E N T LY A S K E D Q U E S T I O N S Guide to Enterprise Risk Management: Frequently Asked Questions Page No. Introduction The Fundamentals 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. 12. 13. 14. 15. 16. 17. 18. 19. 20. 21. 22. 23. 24. What is Enterprise Risk Management (ERM)? Why implement ERM? How does the scope of ERM compare to existing risk management approaches? What is the value proposition for implementing ERM? Which companies are implementing ERM? If companies are not implementing ERM, then what are they doing? Who is responsible for ERM? What are the steps companies can take immediately to implement ERM? Is ERM applicable to smaller and less complex organizations? Why have companies that have tried to implement ERM failed in their efforts? Does implementation of ERM ensure the success of a business? What is the difference between ERM and management? What does it mean to “implement ERM”? Generally, how long does it take to implement ERM? Is there any way to benchmark the level of investment required to implement ERM? Don’t successfully run companies already apply ERM? How long has ERM been around and why is there a renewed focus on it? What percentage of public companies currently have an ERM process or system? Is there an example of effective ERM as it is applied in practice? How does the application of ERM vary by industry? Are there any organizations that need not implement ERM? What are the regulatory mandates for implementing...
Words: 83481 - Pages: 334
...The Violet Bay School INTRODUCTION According to the Government Accounting Standards Board (GASB), the objective of financial reporting is to assist a government entity in fulfilling its obligation to be publicly accountable and to enable users to assess accountability (GASB 2007; Government Accountability Office [GAO] 2007). Budgeting, a process whereby government administrators forecast expected revenues and identify planned expenditures, is an integral part of accountability, and the extent to which a governmental entity adheres to its budget is a major consideration when assessing accountability. In August 2005, Violet Bay1 taxpayers were informed that their school system had run a $7 million deficit after several previous assurances that the system was fiscally sound and would finish the year with a surplus. By November 2005, an external audit determined that the actual deficit was $12.1 million. Three months later, a special grand jury report was released describing the causes of the financial crisis and addressing the means to correct the situation. What went wrong? Place yourself in the role of an auditor or a consultant and identify the problems. As you do so, you will better appreciate the importance of internal control and will gain experience in identifying and assessing client risks. While this case involves a governmental entity—a school district—no prior coursework in governmental accounting is required to complete case requirements. PART I – THE BUDGET PROCESS The...
Words: 5312 - Pages: 22
...York State Comptroller Division of Local Government and School Accountability LOCAL GOVERNMENT M ANAGEMENT GUIDE Management’s Responsibility for Internal Controls Thomas P. DiNapoli State Comptroller For additional copies of this report contact: Division of Local Government and School Accountability 110 State Street, 12th floor Albany, New York 12236 Tel: (518) 474- 4037 Fax: (518) 486- 6479 or email us: localgov@osc.state.ny.us www.osc.state.ny.us October 2010 Table of Contents Who’s Responsible.............................................................................................................. 2 The Origin - Committee of Sponsoring Organizations ......................................................... 4 Integrated Internal Control Framework - The Big Picture ..................................................... 5 The Five Essential Elements of the Internal Control Framework ........................................... 6 Limitations of Internal Controls ..........................................................................................15 The Impact of Information Technology ...............................................................................16 The Role of Internal Auditors and Audit Committees ..........................................................17 Conclusion ....................................................................................................................... 20 Additional Resources ....................
Words: 8114 - Pages: 33
...Members in Government Guide to Internal Control and Internal Control Services Members in government, both mangers and auditors, must understand the concepts of internal control and independence and the effect they have on the CPA practitioners that the government hires for both its financial statement audits and for other nonaudit engagements related to internal control services. As auditing standards have evolved, the auditors may no longer default to a maximum control risk but now should obtain a sufficient understanding of internal control by performing risk assessment procedures to evaluate the design of controls relevant to an audit of financial statements and to determine whether they have been implemented.1 This may result in the auditor spending additional time. Additionally, internal control deficiencies identified by an auditor that upon evaluation are considered significant deficiencies or material weaknesses should be communicated in writing to management and those charged with governance.2 This standard also has led to a great deal of discussion about what is or is not a control and what role an auditor can play, with respect to the client’s system of internal control. Even if a CPA practitioner does not perform audits but performs reviews and compilations, it is important that he or she understand internal control because of the possible independence ramifications. A CPA practitioner’s independence would be impaired if he or she establishes or maintains internal...
Words: 4795 - Pages: 20
...Control Self-assessment for Information and Related Technology To ensure smooth functioning of an enterprise striving to achieve predetermined objectives, business processes are identified and defined. To ensure the proper completion of process work, procedures are defined, documented and established. Business procedures need to be properly controlled to ensure smooth completion. Out-of-control procedures are expensive; therefore, controls need to be in place. These controls can be preventive, detective and/or corrective in nature. However, the adequacy of controls over procedures depends on various factors, including a balance between costs incurred for implementing controls and the resulting benefits derived. Many controls are essential overheads for the business, and therefore, their effectiveness must be reviewed periodically. Internal audit of controls, an essential overhead, helps avoid relaxation on controls. Ultimately, the control overheads constitute a major expenditure item. Assurance that the controls are in place and effective is essential. This assurance can be given through control self-assessment (CSA), also referred to as control self-assurance. Systems and procedures for many business organizations within various sectors have evolved over time. For example, banking is the oldest service sector and the controls over banking procedures are essential not only for the bank, but also for society in general. Controls in banking procedures have also evolved over...
Words: 5755 - Pages: 24