Risk management is a continuous process that identifies, mitigates, and monitors potential events that create uncertainty for achieving objectives. It protects an organization's integrity, goals, operations, reporting, compliance and reputation. For government, it is recommended to develop a comprehensive risk management program that identifies and reduces risks to property, interests, and employees. An effective program includes risk identification, evaluation, treatment, implementation, and review. Key risks for government include fraud, financial risks, legal risks, and operational risks.
Essentials of a Highly Effective Employee Fraud Awareness ProgramFraudBusters
Webinar series from FraudResourceNet LLC on Preventing and Detecting Fraud in a High Crime Climate. Recordings of these Webinars are available for purchase from our Website fraudresourcenet.com
This Webinar focused on the subject in the title
FraudResourceNet (FRN) is the only searchable portal of practical, expert fraud prevention, detection and audit information on the Web.
FRN combines the high quality, authoritative anti-fraud and audit content from the leading providers, AuditNet ® LLC and White-Collar Crime 101 LLC/FraudAware.
Learn what types of fraud your organization might be susceptible to while improving awareness and learning what things can be done to protect from fraud and abuse.
Essentials of a Highly Effective Employee Fraud Awareness ProgramFraudBusters
Webinar series from FraudResourceNet LLC on Preventing and Detecting Fraud in a High Crime Climate. Recordings of these Webinars are available for purchase from our Website fraudresourcenet.com
This Webinar focused on the subject in the title
FraudResourceNet (FRN) is the only searchable portal of practical, expert fraud prevention, detection and audit information on the Web.
FRN combines the high quality, authoritative anti-fraud and audit content from the leading providers, AuditNet ® LLC and White-Collar Crime 101 LLC/FraudAware.
Learn what types of fraud your organization might be susceptible to while improving awareness and learning what things can be done to protect from fraud and abuse.
A review of common fraud areas that occur in closely held businesses, how to prevent them and what your legal remedies are if you are a victim of fraud.
Webinar presentation on risk management issues in special events to the National Health Council Chief Development Officers Affinity Group by Joseph Caruso and Jim Linn. October 3, 2011
Risk & Advisory Services: Quarterly Risk Advisor May 2016CBIZ, Inc.
This issue includes the following articles: 1) 3 Questions Every Board Needs to Ask About Enterprise Risks 2) 3 Ways to Improve Your Credit Card and Data Security 3) 5 Major Risks Construction Project Owners Face
DIFFERENCES BETWEEN ERM PRACTICES BETWEEN THE FINANCIAL AND CORPORATE SECTORS
DIFFÉRENCES DES PRATIQUES ERM ENTRE LES SECTEURS FINANCIERS ET CORPORATIFS
Risk & Advisory Services: Quarterly Risk Advisor Feb. 2016CBIZ, Inc.
In this issue: 1) Invest in Specialty Skills and Other Tips for Internal Audit Planning
2) Cyber Risk - Now It IS the Daily News 3) How to Build an Actionable Incident Response Strategy.
This presentation will highlight statistics for security and fraud of non-profit organizations. The webinar will also involve reviewing two non-profit case studies and the best practices that would have prevented a fraud or data breach event from occurring. We will look into how you protect your most valuable assets (employees, donors, the people you serve, etc.) and what it is that you have that fraudsters want. The webinar will give you information that you can use to start protecting your organization immediately.
White Collar Crime and Criminals - School of Criminal Justice - U of CincinnatiGary Zeune CPA
I have embedded about a dozen videos on the slides. Click the links to watch the videos......I interviewed Minkow at Lompoc Federal Prison October 22, 1994. Six month later, May 1995, he was my first white collar criminal speaker.
Risk managment and Insurance chap1-3 Addis Ababa University School of CommerceAshenafi Abera Wolde
Risk affects every aspect of an organization. The effects of risk are not
confined within any predictable boundaries; a single event can easily
influence several areas of an organization at once, producing consequences
far beyond the immediate impact. The pervasiveness and complexity of risk
presents strong challenges to managers, one of the most important being
the coordination of risk management across areas within the organization.
It deals with: the nature and management of pure risks, insurance and
reinsurance; risk concepts, classification of risks, management of pure risks
through various risk handling tools, industrial safety, general principles of
insurance and major classes of insurance, reinsurance and development &
regulation of the insurance Ethiopia
A review of common fraud areas that occur in closely held businesses, how to prevent them and what your legal remedies are if you are a victim of fraud.
Webinar presentation on risk management issues in special events to the National Health Council Chief Development Officers Affinity Group by Joseph Caruso and Jim Linn. October 3, 2011
Risk & Advisory Services: Quarterly Risk Advisor May 2016CBIZ, Inc.
This issue includes the following articles: 1) 3 Questions Every Board Needs to Ask About Enterprise Risks 2) 3 Ways to Improve Your Credit Card and Data Security 3) 5 Major Risks Construction Project Owners Face
DIFFERENCES BETWEEN ERM PRACTICES BETWEEN THE FINANCIAL AND CORPORATE SECTORS
DIFFÉRENCES DES PRATIQUES ERM ENTRE LES SECTEURS FINANCIERS ET CORPORATIFS
Risk & Advisory Services: Quarterly Risk Advisor Feb. 2016CBIZ, Inc.
In this issue: 1) Invest in Specialty Skills and Other Tips for Internal Audit Planning
2) Cyber Risk - Now It IS the Daily News 3) How to Build an Actionable Incident Response Strategy.
This presentation will highlight statistics for security and fraud of non-profit organizations. The webinar will also involve reviewing two non-profit case studies and the best practices that would have prevented a fraud or data breach event from occurring. We will look into how you protect your most valuable assets (employees, donors, the people you serve, etc.) and what it is that you have that fraudsters want. The webinar will give you information that you can use to start protecting your organization immediately.
White Collar Crime and Criminals - School of Criminal Justice - U of CincinnatiGary Zeune CPA
I have embedded about a dozen videos on the slides. Click the links to watch the videos......I interviewed Minkow at Lompoc Federal Prison October 22, 1994. Six month later, May 1995, he was my first white collar criminal speaker.
Risk managment and Insurance chap1-3 Addis Ababa University School of CommerceAshenafi Abera Wolde
Risk affects every aspect of an organization. The effects of risk are not
confined within any predictable boundaries; a single event can easily
influence several areas of an organization at once, producing consequences
far beyond the immediate impact. The pervasiveness and complexity of risk
presents strong challenges to managers, one of the most important being
the coordination of risk management across areas within the organization.
It deals with: the nature and management of pure risks, insurance and
reinsurance; risk concepts, classification of risks, management of pure risks
through various risk handling tools, industrial safety, general principles of
insurance and major classes of insurance, reinsurance and development &
regulation of the insurance Ethiopia
On December 5, 2013, Ron Steinkamp, principal, government advisory services at Brown Smith Wallace, presented at the 2013 MIS Training Institute Governance, Risk & Compliance Conference. Ron focused on the following keys to fraud prevention, detection and reporting:
1. Anti-fraud culture
2. Fraud policy
3. Fraud awareness/training
4. Hotline
5. Assess fraud risks
6. Review/investigation
7. Improved controls
Management Override: Common Tactics and How to Audit For Red FlagsFraudBusters
Webinar series from FraudResourceNet LLC on Preventing and Detecting Fraud in a High Crime Climate. Recordings of these Webinars are available for purchase from our Website fraudresourcenet.com
This Webinar focused on the subject in the title
FraudResourceNet (FRN) is the only searchable portal of practical, expert fraud prevention, detection and audit information on the Web.
FRN combines the high quality, authoritative anti-fraud and audit content from the leading providers, AuditNet ® LLC and White-Collar Crime 101 LLC/FraudAware.
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...Craig Taggart MBA
Areas Covered in the Webinar:
Identify fraud risks and the factors that influence them
Analyze existing risk management frameworks and their application to managing fraud risk
Develop and implement the necessary components of a successful fraud risk management program
Identify the elements of a strong ethical corporate culture
Conduct a cost effective fraud risk assessment
C-Suite’s Guide to Enterprise Risk Management and Emerging RisksAronson LLC
Significant opportunities remain for organizations to continue to strengthen their approaches to identifying and assessing key risks. This program will provide an overview of Enterprise Risk Management (ERM) best practices and current emerging risks that should be on your radar for 2018.
Watch the complete webinar here: https://aronsonllc.com/c-suites-guide-to-enterprise-risk-management-and-emerging-risks/?sf_data=all&_sft_insight-type=on-demand-webinar
Most business owners fail to understand that, just as there is a human life cycle, there is also a business life cycle. It begins with the conceptual or idea stage, which progresses to the start-up period, followed by the growth phase, then the well-established maturing years,and finally the exit or retirement phase. most common mistake most business owners make is that they don’t plan far enough in advance for the exit phase.
Fraud Risk Assessment: An Expert’s BlueprintFraudBusters
Webinar series from FraudResourceNet LLC on Preventing and Detecting Fraud in a High Crime Climate. Recordings of these Webinars are available for purchase from our Website fraudresourcenet.com
This Webinar focused on the subject in the title
FraudResourceNet (FRN) is the only searchable portal of practical, expert fraud prevention, detection and audit information on the Web.
FRN combines the high quality, authoritative anti-fraud and audit content from the leading providers, AuditNet ® LLC and White-Collar Crime 101 LLC/FraudAware.
“Nearly half of all victim organizations do not recover any losses that they suffer due to fraud” according to the 2012 Report to the Nations presented by the Association of Certified Fraud Examiners. Although, there are no statistics that report the total number of entities and the amount defrauded, regardless of size, any organization can become a victim of fraud. Kyle Anne Midkiff’s white paper, Act Now Before it’s Too Late, provides five important steps to help organizations of any size prevent fraud.
Similar to 2014 Mid Mo AGA Presentation - Risk Management for Government (20)
2014 Mid Mo AGA Presentation - Risk Management for Government
1. Risk Management
For Government
Ron Steinkamp, CPA, CIA, CFE, CRMA, CGMA
314.983.1238
rsteinkamp@bswllc.com
6 CityPlace Drive, Suite 900 │ St. Louis, Missouri 63141 │ 314.983.1200
1.888.279.2792 │ www.bswllc.com
2. @ 2014 All Rights Reserved Brown Smith
Wallace LLC
3. @ 2014 All Rights Reserved Brown Smith Wallace LLC
Opening Thought
“ Let’s get this straight up front – Risk is
good. The point of risk management isn’t
to eliminate it; that would eliminate
reward. The point is to manage it – that
is, to choose where to place bets, and
where to avoid betting all together.”
-Thomas Stewart
Leading Edge - Fortune Magazine
4. Discussion Topics
@ 2014 All Rights Reserved Brown Smith Wallace LLC
What is Risk Management?
Applying Risk Management to Government
Government Risks
Fraud Risks
Risk Management Program
Questions To Ask Yourself
5. What is Risk Management?
@ 2014 All Rights Reserved Brown Smith Wallace LLC
6. Definition
@ 2014 All Rights Reserved Brown Smith Wallace LLC
Continuous process that identifies, mitigates, and monitors potential events
that create uncertainty to the achievement of objectives.
7. Purpose
@ 2014 All Rights Reserved Brown Smith Wallace LLC
Protect the integrity of the enterprise
o Goals and objectives
o Operations/Services
o Reporting (Financial & Non-Financial)
o Compliance
o Reputation
8. Value
@ 2014 All Rights Reserved Brown Smith Wallace LLC
• Risk management enables management and elected officials to identify and
deal effectively with potential future events that create uncertainty.
• Risk management ensures management and elected officials respond in a
manner that reduces the likelihood of downside outcomes and increases the
upside outcomes (opportunities).
10. GFOA Best Practice
@ 2014 All Rights Reserved Brown Smith Wallace LLC
GFOA recommends:
Governments develop a comprehensive risk management program that
identifies, reduces or minimizes risks to its property, interests, and
employees.
Costs and consequences of harmful or damaging incidents arising from
those risks should be contained.
11. Risk Management Program
@ 2014 All Rights Reserved Brown Smith Wallace LLC
GFOA recommends that the following steps be included in an effective risk
management program:
• Risk Identification.
• Risk Evaluation.
• Risk Treatment.
• Risk Management Implementation.
• Risk Program Review.
MORE TO COME LATER IN THE PRESENTATION
Risk Identification
Risk Evaluation
Risk Treatment
Risk Management
Implementation
Risk Program
Review
13. • External factors – e.g., legal, regulatory, economic, demographic
• Strategy and key initiatives
• Who are your stakeholders and are there risks that need to be considered
• Types of programs and services provided
• Business partners/vendors
• Financial risks – funding sources, liquidity, credit, financial reporting
• Fraud risks
• Transactional risks – e.g., acceptance of credit cards
• Areas of complexity or judgment
• Reputation
@ 2014 All Rights Reserved Brown Smith Wallace LLC
Things to Consider
14. • Public trust
• Accountability & Transparency
• Compliance
• Fraud/Abuse
• Inefficiency/Waste
• Ineffectiveness
• Legal
• Financial
• Technological
• Operational
• Safety
• Reporting Disaster
• Vendor reliability
@ 2014 All Rights Reserved Brown Smith Wallace LLC
Potential Government Risks
16. ACFE 2014 Fraud Study Findings
@ 2014 All Rights Reserved Brown Smith Wallace LLC
1. Typical organization loses 5% of annual revenue to fraud – estimate $3.7 trillion annually.
2. Median loss in the study was $145,000 and lasted 18 months.
3. Most likely to be detected by tips (40%), management review (15%) and Internal Audit (14%).
4. Small organizations are disproportionately victimized by occupational fraud.
5. Government/public administration was one of the most commonly victimized industries.
6. Anti-fraud controls appear to help reduce the cost and duration of occupational fraud schemes.
7. High-level perpetrators cause the greatest damage to their organizations.
17. ACFE 2014 Global Fraud Study Findings
@ 2014 All Rights Reserved Brown Smith Wallace LLC
9. More than 85% of fraudsters had never been previously charged or convicted for a fraud-related
offense.
10. Fraud perpetrators often display warning signs – most common were perpetrators living beyond
their means (36%) and experiencing financial difficulty (27%).
11. Nearly half of victim organizations do not recover any losses that they suffer due to fraud.
18. The use of one’s occupation for personal enrichment through the deliberate
misuse or application of the employing organization’s resources or assets.
Three general categories:
Asset misappropriation
Corruption
Financial statement fraud
Occupational Fraud Definition
@ 2014 All Rights Reserved Brown Smith Wallace LLC
19. Employee steals or misuses an organization’s assets/resources.
Examples:
- Clerk stealing cash receipts.
- Payroll Clerk creating a ghost employee.
- Purchasing Clerk creating a fictitious vendor and false invoice.
- Street Department personnel “borrowing” equipment.
- City Manager purchasing personal items on the City credit card.
Per ACFE 2014 Fraud Study - the most common form of fraud, representing
85% of the cases with a median loss of $130,000.
Asset Misappropriation
@ 2014 All Rights Reserved Brown Smith Wallace LLC
20. Employee’s use of his/her influence in business transactions in a way that
violates his/her duty to the employer for the purpose of obtaining benefit
for him/herself or someone else.
Examples:
• City Council member trading votes for personal favors.
• Purchasing Department Manager awarding a City contract to a vendor
for a kickback.
• Human Resources Director hiring unqualified “friends” to fill positions.
Per 2014 ACFE Fraud Study - comprised over 37% of cases with a median loss
of $200,000.
Corruption
@ 2014 All Rights Reserved Brown Smith Wallace LLC
21. Intentional misstatement or omission of material information in the
organization’s financial reports with the intent to mislead.
Examples:
• Inflating City revenues on the Consolidated Annual Financial Report.
• Forcing actual expenditures to match budget by moving expenses
between accounts.
• Improperly accounting for grant receipts and expenditures.
Per 2014 ACFE Fraud Study - least common form of fraud, representing 9% of
the cases with a median loss at $1 million.
Financial Statement Fraud
@ 2014 All Rights Reserved Brown Smith Wallace LLC
23. Risk Management Program Overview
@ 2014 All Rights Reserved Brown Smith Wallace LLC
Risk Identification
Risk Evaluation
Risk Treatment
Risk Management
Implementation
Risk Program
Review
24. Identify the risk exposures to your organization considering each of the
following environments:
• Physical - natural or man-made disasters and infrastructure.
• Legal - laws and legal precedents.
• Compliance - policies, procedures, contracts/agreements.
• Operational – day-to-day activities, actions, services, workforce.
• Political – legislative activity, elections.
• Social – socio economic composition of the community.
• Financial – revenues, expenditures, assets, liabilities.
• Economic – market trends and interest rates.
• Fraud – asset misappropriation, corruption, financial statement.
• Reputation – social media, media relations, employee/elected official actions.
• Technological – technology infrastructure (internal network and internet) and systems,
Risk Identification
@ 2014 All Rights Reserved Brown Smith Wallace LLC
25. Evaluate each risk identified based on:
• Likelihood of occurrence.
• Impact on organization.
• Organization readiness.
Determine overall risk and prioritize.
Risk Evaluation
@ 2014 All Rights Reserved Brown Smith Wallace LLC
26. Decide how to treat/mitigate each risk exposure:
• Avoid = Don’t provide the service.
• Accept = retain the risk, but monitor.
• Reduce = institute or tighten controls.
• Share = partner with someone (insurance).
Risk Treatment
@ 2014 All Rights Reserved Brown Smith Wallace LLC
27. @ 2014 All Rights Reserved Brown Smith
Wallace LLC
Risk Management Implementation
• Establish risk management policies and procedures that include:
– Statement of organization’s goals.
– Identifies officials charged with carrying out risk related functions.
– Contains guidelines for making decisions.
• Ensure Government officials are aware of the policies and procedures.
• Provide assurance that risk responses are implemented and effectively
carried out.
28. @ 2014 All Rights Reserved Brown Smith
Wallace LLC
Risk Program Review
Periodically review the effectiveness and efficiency of risk management
program and make changes as necessary.
29. 1. What are our key risks?
2. How are we managing these risks?
3. Are we taking the right amount of risk?
4. How do we ensure risk management is an integral part of what we do?
5. How do we take advantage of the organizational learning that results from
the risk management program and activities?
@ 2014 All Rights Reserved Brown Smith
Wallace LLC
Questions To Ask Yourself
30. Ron Steinkamp, CPA, CIA, CFE, CRMA, CGMA
Principal, Risk Advisory Services
Brown Smith Wallace LLC
314.983.1238 (Direct)
rsteinkamp@bswllc.com
@ 2014 All Rights Reserved Brown Smith Wallace LLC
Contact Information
Editor's Notes
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.
Violation of trust.
Three general categories:
Asset misappropriations = employee steals or misuses an organizations resources.
Corruption = employee’s use of influence in business transactions in a way that violates duty to the employer for the purpose of obtaining benefit for self or someone else.
Financial Statement Fraud = intentional misstatement or omission of material information in financial reports.