QUESTION (2) (a) – What do you understand by internal control? (5 marks)
Control is one of the basic functions of management. I understand internal control therefore to be the continuous process of ensuring an organisation’s objectives are achieved efficiently and effectively. I believe that internal control is a set of procedures and processes which the management of a company – the Board of Directors and management as a whole – are responsible for in order to prevent or deter and detect fraud; safeguard the organization’s assets, resources and shareholders’ investment; implement sound business practice; ensure reliable and accurate financial reporting; ensure compliance with statutory obligations; and segregation of duties. Internal control is closely linked to risk management. Opportunities for fraud are created by poor or inadequate internal controls, and therefore I understand internal control to be a powerful management tool.
QUESTION (2) (b) – Using examples outline the general framework of internal controls that must be used in organizations (25 marks)
There are several frameworks of internal control, ranging from the Sarbanes-Oxley Act, the Turnbull Guidance, and the COSO and COCO frameworks. However, most of these frameworks have common components and the general framework that must be used in most organizations can therefore be summarized in four stages:
• Risk assessment.
• Control environment and control activities or control procedures.
• Information and
“The control environment sets the tone of an organization, influencing the control consciousness of its people. It is the foundation for all other components of internal control, providing discipline and structure.” The Committee of Sponsoring Organizations of the Treadway Commission (COSO) published the Internal Control–Integrated Framework in 1992. As summarized above one can see the importance of the implementation of an effective control environment, as it sets the foundation for the other 4 components of internal control. The control environment is made up fundamental smaller components. The ones that were particularly relevant to BMIS are the use of board of directors and audit committee, management philosophy and operating style, and human resource policies and practices. If management doesn’t prioritize control, then the rest of the organization will not put precedence on following policies and procedures either. This was clearly evident at Bernard L. Madoff Investment Securities LLC (BMIS), and ultimately led to their downfall.
1. To have a strong internal control system, a business must have good administrative controls. Administrative controls include: A. B. C. D. the reconciliation of the bank statement. the accuracy of the recording procedures. assessing compliance with company policies. maintenance of accurate inventory records.
Having internal controls is one thing, but how the company evaluates that control is a matter all by itself. Being an independent auditor, it is our job to understand an entity and
3. (TCO 5) Internal Control Procedures are required to safeguard company assets and to ensure ethical operation
Internal control is one of the integral parts of an organization. It is a system which controls different types of risks,
(TCO 5) Internal Controls are required to safeguard assets and to ensure ethical business practices. (1) Identify and explain the reason for any two of the five components of internal control (10 points) and (2) provide examples of how your two selected components of internal control will meet the goal of safeguarding assets and promoting ethical business
The first component mentions, control environment sets the tone of an organization, influencing the control consciousness of its people, (Cleverly, Song, & Cleverly, 2011). The authors mention of this rule being the foundation for all the components providing discipline and structure for all other internal control components. The next interrelated internal control is risk assessment is the entity’s identification and analysis of relevant risks to achievement of its objectives, forming a basis for determining how the risks should be managed, (Cleverly, Song, & Cleverly, 2011). Then, there is the information and communication are the identification, capture, and exchange of information in a form and time frame that enable people to carry out their responsibilities, (Cleverly, Song, & Cleverly, 2011). This is very helpful for health care organizations to implement and follow through carefully in their departments and especially billing and coding. The last internal control rule states, monitoring is a process that assesses the quality of internal control performance overtime, (Cleverly, Song, & Cleverly, 2011). These internal controls related to the corporate compliance program are all impertinent to health care
So what are internal controls? And why are they so important? Internal controls describe the policies, plans, and procedures
Auditors have the responsibilities as well as management to report internal controls. The auditors must examine closely management’s claim of effectiveness and also physically test the controls. After the examination, the auditors should express their opinion and any recommendations to fix any internal control weaknesses.
Internal controls represent an organization’s processes and procedures used to meet its goals and objectives and serve as a defense in safeguarding assets and preventing and detecting errors, fraud, and abuse. Effective internal controls provide reasonable assurance that an organization’s objectives are achieved through (1) reliable financial reporting, (2) compliance with laws and regulations, and (3) effective and efficient operations. The passing of the Sarbanes-Oxley Act of 2002, as well as the numerous corporate frauds and bankruptcies over the past decade—including some
Internal controls prevent errors and irregularities from happening. If errors or irregularities do happen to occur internal controls will help ensure that they are detected in a timely manner. Internal controls also encourage adherence to prescribe policies and procedures. Internal control are also put into place in order to protect employees by outlining tasks and responsibilities, providing checks and balances, and also from being accused of misappropriations, errors and irregularities.
The final responsibility for the integrity of an SEC registrant’s internal controls lies on the management team. U.S. companies need to refer to a comprehensive framework of internal control when assessing the quality of financial reporting to determine that financial statements are being presented under General Accepted Accounting Principles, GAAP. The widely used framework is referred as COSO, Committee of Sponsoring Organizations of the Treadway Commission, sponsored by the following organizations American Accounting Association, the American Institute of CPA’s, Financial Executives International, the Institute of Internal Auditors, and the Institute of Management Accountants. COSO’s defines internal control as:
The framework describes internal control as a process designed to provide reasonable assurance regarding the achievement of objectives in the following categories:
A business can not work out without an account system, which includes internal. Internal controls are used by companies to make sure financial information is accurate and valid. Strong internal controls are signs of a financially healthy company and protect the company’s integrity. Strong internal controls can also increase a company’s profitability. There are several types of internal controls that companies used to protect themselves such as: Segregation of duties, asset purchases, supervisor review, internal audits and adequate documents and records. This paper will discuss several topics from a case study about And the Fraud
Effective internal controls protect a company’s assets, maintain compliance, improve operations, prevent fraud, and promote accuracy in financial reporting. In 1992 the