Prepared by
Wa'el Bibi,CPA,CIA,CISA 1
Internal Control
Integrated Framework
COSO’s
An Overview..
Source: COSO’s Internal C...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 2
What is COSO?
Who are the sponsors?
Prepared by
Wa'el Bibi,CPA,CIA,CISA 3
What Is Internal Control ?
“A process effected by an entity’s board of
directors,man...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 4
♦ Internal control is a process. It is a means
to an end, not an end in itself.
♦ In...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 5
Components Of Internal Control
♦ Control Environment.
♦ Risk Assessment.
♦ Control A...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 6
Prepared by
Wa'el Bibi,CPA,CIA,CISA 7
Control Environment
♦ Sets the tone of the organization.
♦ The foundation for all ot...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 8
Risk Assessment
♦ Every entity faces internal &external risks.
♦ Every entity sets o...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 9
Control Activities
♦ The policies and procedures that help ensure
management directi...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 10
Information & Communication
♦ Relevant information must be identified , captured
an...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 11
Monitoring
♦ Internal control systems need to be monitored.
♦ Types of monitoring:
...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 12
Responsibilities
Who is responsible for internal control ?
Everyone !
Board of Dire...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 13
What Internal Control Can Do
♦ It can help achieve performance & profitability
targ...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 14
What Internal Control Cannot Do
♦ It cannot ensure success.
♦ It cannot ensure the ...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 15
Limitations of Internal Control
♦ Judgement.
♦ Breakdowns.
♦ Management override.
♦...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 16
End of COSO Presentation
Prepared by
Wa'el Bibi,CPA,CIA,CISA 17
Types of Controls
♦ Preventive
♦ Detective
♦ Corrective
♦ Directive
Prepared by
Wa'el Bibi,CPA,CIA,CISA 18
Preventive Controls
♦ Are designed to discourage errors or irregularities
from occu...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 19
Detective Controls
♦ Are designed to search for and identify errors after
they have...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 20
Corrective Controls
♦ corrective controls are designed to restore a
system to an ap...
Prepared by
Wa'el Bibi,CPA,CIA,CISA 21
Directive Controls
♦ Are designed to provide direction from
management. (Actions ta...
Upcoming SlideShare
Loading in …5
×

Coso s internal_control_presentation

690 views

Published on

Internal control adalah suatu proses. Ini adalah alat untuk mencapai tujuan, bukan tujuan itu sendiri

Published in: Business, Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
690
On SlideShare
0
From Embeds
0
Number of Embeds
11
Actions
Shares
0
Downloads
49
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Coso s internal_control_presentation

  1. 1. Prepared by Wa'el Bibi,CPA,CIA,CISA 1 Internal Control Integrated Framework COSO’s An Overview.. Source: COSO’s Internal Control Integrated Framework Bibi Consulting www.bibiconsulting.com
  2. 2. Prepared by Wa'el Bibi,CPA,CIA,CISA 2 What is COSO? Who are the sponsors?
  3. 3. Prepared by Wa'el Bibi,CPA,CIA,CISA 3 What Is Internal Control ? “A process effected by an entity’s board of directors,management and other personnel,designed to provide reasonable assurance regarding the achievements of objectives in the following categories: ♦ Effectiveness & efficiency of operations. ♦ Reliability of financial reporting. ♦ Compliance with applicable laws and regulations.”
  4. 4. Prepared by Wa'el Bibi,CPA,CIA,CISA 4 ♦ Internal control is a process. It is a means to an end, not an end in itself. ♦ Internal control is effected by people. It’s not merely policy manuals and forms, but people at every level of an organization. ♦ Internal control can be expected to provide only reasonable assurance, not absolute assurance, to an entity’s management and board. ♦ Internal control is geared to the achievement of objectives in one or more separate but overlapping categories.
  5. 5. Prepared by Wa'el Bibi,CPA,CIA,CISA 5 Components Of Internal Control ♦ Control Environment. ♦ Risk Assessment. ♦ Control Activities. ♦ Information & Communication. ♦ Monitoring.
  6. 6. Prepared by Wa'el Bibi,CPA,CIA,CISA 6
  7. 7. Prepared by Wa'el Bibi,CPA,CIA,CISA 7 Control Environment ♦ Sets the tone of the organization. ♦ The foundation for all other components. ♦ It includes the integrity,ethical values and competence of the people. ♦ Reflects: management’s philosophy & operating style,the way management assigns authority and responsibility and organizes and develops its people, and the attention and direction provided by the board of directors.
  8. 8. Prepared by Wa'el Bibi,CPA,CIA,CISA 8 Risk Assessment ♦ Every entity faces internal &external risks. ♦ Every entity sets objectives. ♦ Risk assessment is the identification and analysis of relevant risks to achievements of the objectives.
  9. 9. Prepared by Wa'el Bibi,CPA,CIA,CISA 9 Control Activities ♦ The policies and procedures that help ensure management directives are carried out. ♦ They help ensure that necessary actions are taken to address risks. ♦ Control activities occur throughout the entity at all levels and in all functions. ♦ They include activities such as approvals , authorization,reconciliations and segregation of duties.
  10. 10. Prepared by Wa'el Bibi,CPA,CIA,CISA 10 Information & Communication ♦ Relevant information must be identified , captured and communicated in a form & timeframe that enables people to carry out their responsibilities. ♦ Information systems produce reports containing operational,financial and compliance –related information that make it possible to run and control the business. ♦ Effective communication must occur in a broader sense,flowing down,across and up the organization.
  11. 11. Prepared by Wa'el Bibi,CPA,CIA,CISA 11 Monitoring ♦ Internal control systems need to be monitored. ♦ Types of monitoring: - ongoing during the course of operations. - evaluation for which the scope and frequency will depend primarily on an assessment of risks and the effectiveness of ongoing monitoring procedures.
  12. 12. Prepared by Wa'el Bibi,CPA,CIA,CISA 12 Responsibilities Who is responsible for internal control ? Everyone ! Board of Directors :Governance,guidance & oversight Management : CEO is the owner Internal Auditors: evaluate & monitor Other personnel :information and communication
  13. 13. Prepared by Wa'el Bibi,CPA,CIA,CISA 13 What Internal Control Can Do ♦ It can help achieve performance & profitability targets. ♦ It can help prevent loss of resources. ♦ It can help ensure reliable financial reporting. ♦ It can help ensure compliance with laws. It can help an entity get to where it wants to go,and avoid pitfalls and surprises along the way.
  14. 14. Prepared by Wa'el Bibi,CPA,CIA,CISA 14 What Internal Control Cannot Do ♦ It cannot ensure success. ♦ It cannot ensure the reliability of financial reporting. ♦ It cannot ensure compliance with laws and regulations. Internal controls ,no matter how well designed and operated,can provide only reasonable assurance to management regarding achievements of an entity’s objectives.
  15. 15. Prepared by Wa'el Bibi,CPA,CIA,CISA 15 Limitations of Internal Control ♦ Judgement. ♦ Breakdowns. ♦ Management override. ♦ Collusion. ♦ Costs Versus Benefits.
  16. 16. Prepared by Wa'el Bibi,CPA,CIA,CISA 16 End of COSO Presentation
  17. 17. Prepared by Wa'el Bibi,CPA,CIA,CISA 17 Types of Controls ♦ Preventive ♦ Detective ♦ Corrective ♦ Directive
  18. 18. Prepared by Wa'el Bibi,CPA,CIA,CISA 18 Preventive Controls ♦ Are designed to discourage errors or irregularities from occurring. ♦ They are more cost-effective than detective controls. ♦ Examples: - Segregation of duties - Authorization - Firewalls - Passwords
  19. 19. Prepared by Wa'el Bibi,CPA,CIA,CISA 19 Detective Controls ♦ Are designed to search for and identify errors after they have occurred. ♦ They are more expensive than preventive controls . ♦ Examples: - Reconcilaitions - Analysis - Periodic Inventory - Surveillance cameras - Audit
  20. 20. Prepared by Wa'el Bibi,CPA,CIA,CISA 20 Corrective Controls ♦ corrective controls are designed to restore a system to an approved/last known good state. ♦ Examples: - Anti Virus software. - Adjusting entries.
  21. 21. Prepared by Wa'el Bibi,CPA,CIA,CISA 21 Directive Controls ♦ Are designed to provide direction from management. (Actions taken to cause or encourage a desirable event to occur). ♦ Examples: - Job Description - Training - Policies and procedures.

×