SlideShare a Scribd company logo

Fraud Risk Management - Road Show in KL, Malaysia

Tommy Seah
Tommy Seah

The Reason why u need FRA Passage of the Sarbanes-Oxley Act (SOX) caused more and more companies, public and private, to assess their vulnerability to fraud and abuse. Section 404(a) of the Act requires management of public companies to assess and report on its internal financial reporting controls, largely to ensure that financial statements are fairly presented in accordance with generally accepted accounting principles (GAAP). Fraudulent financial reporting that leads to a material misstatement in the financial statements is one key risk management should assess. This assessment focuses on accounts, processes, GAAP disclosures and the assertions in the financial statements and other required disclosures. Countries in Asia do not necessarily have their own version of SOX. But they have seen the benefits in SOX in the prevention of occupational fraud. Fraud Risk Assessment is now an integral part of good corporate governance. Such assessments aren’t new. Organizations have assessed business and organizational risks for years. But fraud risk analysis has rarely been the primary focus. Times have changed, and now many companies and organizations are considering conducting specific fraud risk assessments. Prevent, Deter and Detect Fraud A fraud risk assessment is designed to examine the controls specifically created to prevent, deter and detect fraud. This assessment is fraud scheme and scenario-based. Fraud risk assessments also communicate a companywide policy of zero tolerance for fraud and abuse. To conduct an effective fraud risk assessment, follow these steps: 1. Organize and define the assessment objectives with company management and your internal audit committee. Form a team of fraud and control experts, and get senior management and audit committee buy-in: Ask them to communicate their endorsement and sponsorship of both the process and a strong antifraud program to the entire organization. 2. Determine the business and accounting process(es) to be assessed and investigated. Usually, the initial processes selected are those where fraud or abuse has previously occurred or that management has identified as critical business processes that may be susceptible to fraud or abuse. 3. Identify potential schemes and scenarios specific to the process(es) to be examined against current controls. Fraud schemes and scenarios should be selected based on the specific business process, the industry, physical location of the process operation and any known frauds or abuses concerning the process. 4. Determine the likelihood of a fraud occurring within each scheme and scenario. The Public Company Accounting Oversight Board has defined risk levels as remote, more than remote or reasonably possible, and probable. If assessing a public company, assess the risk levels in relation to SOX compliance efforts. 5. After the fraud risks for individual processes have been identified, documented, and rated as to risk level, match the controls within each process to the identified fraud risks. Determine the effectiveness of each control in preventing or providing a means of early detection for the fraud risk. Group the risks as to their probability of occurring within the process. 6. Estimate the probable loss in dollars should the fraud or abuse occur. Try to place a value on loss of reputation if that is a possible outcome. 7. Prepare recommendations for strengthening controls and present to management. Fraud Risk Assessment Benefits Some benefits of a fraud risk assessment are obvious — compliance with Sarbanes-Oxley, protection of company assets, and a possible increase in profitability due to a reduction in fraud losses, waste and abuse. But another important benefit doesn’t appear in financial statements or government filings: the enhanced reputation of a highly ethical company that supports a strong internal and external antifraud policy and program.

EducationBusinessEconomy & Finance
1 of 11
Download to read offline
3/19/2009 ACFE Regent Emeritus Tommy Seah presents Fraud Risk Management A Paradigm Shift 2009 1 “………….. financial institutions must have in place, all the necessary measures to deter or prevent fraud and constantly review all its controls and measures and also have in place a f d management function t fraud tf ti to prevent loopholes that fraudsters can exploit.” …… who said that ? 2 march 05, 2009 at Shangri-La hotel and the guest of honour was Ms Teo Swee Lian, Deputy Managing Di t MAS M i Director, MAS. 3 1
3/19/2009 Why is Internal Control Important? Financial Reporting • Promotes integrity of data used in making business decisions • Assists in fraud prevention and detection through the creation of an auditable trail of evidence Operations Promotes efficiency and effectiveness of operations through standardized Laws and Regulations processes Ensures the safeguarding of • Helps maintain compliance assets through control with laws and regulations through periodic monitoring activities 4 Limitations of Internal Control Errors may arise from misunderstandings of instructions, mistakes of judgment, fatigue, etc. Controls that depend on the segregation of duties may be circumvented by collusion Management may override the structure Compliance may deteriorate over time The Existing model Financial Control The Fraud Examiner The Certified System Investigator CFE CSI Compliance The Risk Management CPA,LLB, CSI Trinity CPA,CFA CSI of Controls Internal Audit CPA(CIA) CSI, CISA 6 2
3/19/2009 The Spectrum of Risk www.cfe-in-practice.net Liquidity Risk B A C Operational Credit Risk Risk What is Risk ? D E Reputational Market Risk Risk 7 www.cfe-in-practice.net “External” Audit Internal audit (COSO + COBIT+ ISO… Forensic audit Investigative auditing (Specific, Post event) ( suspicious, unusual activities, allegations) Eg. NKF, CAO E.g.. Money Laundering penetration Test 8 Fraud Control Principle F dC t lP i i l 3
3/19/2009 If an organisation accepts that it is exposed to fraud – and no organisation is immune to fraud – the next step is to apportion responsibility for fraud risk management. Copyright (c)2006 www.cfe-in-practice.net 10 The Paradigm Shift Financial Control The Fraud Examiner The Certified The CPA System Investigator CFE CSI Risk Compliance Management CPA,LLB, CSI CPA,CFA CSI S.T.A.R Strategic Tracking and Resolution Investigation FRM Unit Internal Audit Unit CPA(CIA) CSI, CISA 11 WHY is there a need for the paradigm shift ? Historically, the management of fraud risk does not lie with any one particular department or practitioner. Copyright (c)2006 www.cfe-in-practice.net 12 4
3/19/2009 It can be handled internally or be outsourced, and how it is handled is affected by many variables such as organizational size, industry sector, geographical location, cultural dynamics - and management perception of the problem. Copyright (c)2006 www.cfe-in-practice.net 13 Regardless of these variables, any fraud prevention and control model should aim to achieve one, or all, of the five primary objectives: Copyright (c)2006 www.cfe-in-practice.net 14 The five primary objectives: _ Prevention _ Deterrence _ Disruption – _ Identification _ Civil action/criminal prosecution Copyright (c)2006 www.cfe-in-practice.net 15 5
3/19/2009 The Fraud Triangle. Fraud Risk Fraud Risk Management Management Perceived Opportunity Auditor’s Domain Who Commits Fraud? What type of individual commits FRAUD? It is not limited to any one type of person. www.cfe-in-practice.org Married Active religious members Children Good education First-time offenders Good employees Don’t abuse alcohol 6
3/19/2009 Optimistic High self-esteem Achieving Family harmony Socially conforming Self control Kind Sympathetic Conclusion: Fraud Perpetrators Look Exactly Like Us! Who Commits Fraud? While people who commit rape, murder, bank robbery and other property offenses have distinguishing characteristics, fraud perpetrators look more like more citizens than criminals! Bank Robbers Normal Citizens Fraud Perpetrators Sample Sample S l Sample S l Major Differences No Significant Differences The “Red Flags” of fraud www.cfe-in-practice.net Given the “right circumstances”, circumstances”, Alcohol Gambling almost everyone can rationalize that it is OK to Profile of A Person commit fraud..Text Who Commits Fraud Drugs Sex 21 7
3/19/2009 1 STEP 1: EVALUATE THE ORGANIZATION'S FRAUD RISK FACTORS To identify which factors increase the risk for fraud within an organization, examiners should analyze industry and business operations hold discussions with management operations, management, review previous frauds committed against or on behalf of the company, review company performance, and evaluate similar frauds that occurred at competitors' organizations. 7 STEP 2: IDENTIFY POSSIBLE FRAUD SCHEMES The ability to identify specific schemes resulting from fraud risk factors depends on the examiner's knowledge of this area. F d specialists, i l di Fraud i li including i di id l with certified individuals i h ifi d fraud examiner (CFE) designations and Certified Systems Investigator (CSI) are ideal for this step of the process, as they possess specialized knowledge of fraud detection and investigation. 8 8
3/19/2009 STEP 3: PRIORITIZE IDENTIFIED FRAUD RISKS Fraud is not just an ordinary risk, but also an inherent and significant one. Once the fraud schemes database is populated, management and internal auditing should identify the frauds that pose the greatest risk for the organization. 9 Examiners should consider the following factors when prioritizing fraud risks: Financial impact to the organization. Reputation risk of negative publicity associated with fraud. Loss of productivity. Potential criminal/civil actions taken against the organization. (Such as Data Breach EU95/46 on PII) Loss of company assets. 11 STEP 4: EVALUATE MITIGATING CONTROLS Internal s Auditors with CFE qualifications are well- positioned to review and counsel on the existence and operational effectiveness of internal controls. In p step four, the examiner/auditor should evaluate the high-priority frauds and determine if the necessary controls are in place to reduce the risk of occurrence. This step takes time, as the auditor should attempt to identify more than one control for each fraud scheme. 12 9
3/19/2009 www.cfe-in-practice.net Determination by Determination by Area Scheme 28 Fraud Consideration at all stages of engagement Perform Pre-Engagement PROFESSIONAL SKEPTICISIM Activities GATHER AN ASEESS MENTATION FRAUD RISKS Perform Preliminary Planning ND DOCUM Develop Audit Plan Perform Audit Plan Conclude & Report Fraud Risk Factors & Risk of Fraud 10
3/19/2009 Questions? CFE-In-Practice www.cfe-in-practice.net Tommy Seah Managing Partner CFE-In-Practice www.cfe-in-practice.com phone +65 65171900 www.cfe-in-practice.net 32 11

Recommended

Leg2a facial-recognition cga-april-2011-final
Leg2a facial-recognition cga-april-2011-finalLeg2a facial-recognition cga-april-2011-final
Leg2a facial-recognition cga-april-2011-final
brock55
 
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...
Craig Taggart MBA
 
FRAUD RISK MANAGEMENT
FRAUD RISK MANAGEMENTFRAUD RISK MANAGEMENT
FRAUD RISK MANAGEMENT
Tommy Seah
 
Fraud risk services 2013
Fraud risk services 2013Fraud risk services 2013
Fraud risk services 2013
Rahul Bhan (CA, CIA, MBA)
 
Fraud Risk management
Fraud Risk managementFraud Risk management
Fraud Risk management
Tommy Seah
 
Addressing Fraud Risk Management with Facts
Addressing Fraud Risk Management with FactsAddressing Fraud Risk Management with Facts
Addressing Fraud Risk Management with Facts
Infosys BPM
 
CIA degree
CIA degreeCIA degree
CIA degree
Rahul Bhan (CA, CIA, MBA)
 
Fraud risk management
Fraud risk managementFraud risk management
Fraud risk management
EMAC Consulting Group
 

Recommended

Leg2a facial-recognition cga-april-2011-final
Leg2a facial-recognition cga-april-2011-finalLeg2a facial-recognition cga-april-2011-final
Leg2a facial-recognition cga-april-2011-final
brock55
 
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...
Society of Corporate Compliance and Ethics SCCE 2015 developing an effective ...
Craig Taggart MBA
 
FRAUD RISK MANAGEMENT
FRAUD RISK MANAGEMENTFRAUD RISK MANAGEMENT
FRAUD RISK MANAGEMENT
Tommy Seah
 
Fraud risk services 2013
Fraud risk services 2013Fraud risk services 2013
Fraud risk services 2013
Rahul Bhan (CA, CIA, MBA)
 
Fraud Risk management
Fraud Risk managementFraud Risk management
Fraud Risk management
Tommy Seah
 
Addressing Fraud Risk Management with Facts
Addressing Fraud Risk Management with FactsAddressing Fraud Risk Management with Facts
Addressing Fraud Risk Management with Facts
Infosys BPM
 
CIA degree
CIA degreeCIA degree
CIA degree
Rahul Bhan (CA, CIA, MBA)
 
Fraud risk management
Fraud risk managementFraud risk management
Fraud risk management
EMAC Consulting Group
 
Financial Sattement Fraud, CPA, External Auditors responsibilities
Financial Sattement Fraud, CPA, External Auditors responsibilitiesFinancial Sattement Fraud, CPA, External Auditors responsibilities
Financial Sattement Fraud, CPA, External Auditors responsibilities
Tommy Seah
 
Improving and Implementing Internal Controls
Improving and Implementing Internal ControlsImproving and Implementing Internal Controls
Improving and Implementing Internal Controls
Tommy Seah
 
Mar 5 6 Internal Controls
Mar 5 6 Internal ControlsMar 5 6 Internal Controls
Mar 5 6 Internal Controls
Tommy Seah
 
A brief overview of operational risk
A brief overview of operational riskA brief overview of operational risk
A brief overview of operational risk
Diane Christina
 
The Evolving Enterprise Risk Model
The Evolving Enterprise Risk ModelThe Evolving Enterprise Risk Model
The Evolving Enterprise Risk Model
LexisNexisRiskUK
 
The evolving enterprise risk model
The evolving enterprise risk modelThe evolving enterprise risk model
The evolving enterprise risk model
LexisNexisDiligence
 
Icm Kl Ls
Icm Kl LsIcm Kl Ls
Icm Kl Ls
Tommy Seah
 
CSI Conference 2009
CSI Conference 2009CSI Conference 2009
CSI Conference 2009
Tommy Seah
 
CSI 2009 Conference Brochure after early bird discount
CSI 2009 Conference Brochure after early bird discountCSI 2009 Conference Brochure after early bird discount
CSI 2009 Conference Brochure after early bird discount
Tommy Seah
 
Csi 09i
Csi 09iCsi 09i
Csi 09i
TOMMY SEAH
 
Csi 09i
Csi 09iCsi 09i
Csi 09i
guest24269d
 
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
bashirnakib
 
Common Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAECommon Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAE
Wheelhouse Advisors LLC
 
Csi 2009 Main Brochure
Csi 2009 Main BrochureCsi 2009 Main Brochure
Csi 2009 Main Brochure
guest24269d
 
Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1
Nadir Hussain
 
Credit Risk Msia
Credit Risk MsiaCredit Risk Msia
Credit Risk Msia
Tommy Seah
 
Enabling Embedded Business Continuity
Enabling Embedded Business ContinuityEnabling Embedded Business Continuity
Enabling Embedded Business Continuity
Mustafa KILIC
 
Mela Capital Banking Ppt
Mela Capital Banking PptMela Capital Banking Ppt
Mela Capital Banking Ppt
Cindi Dixon
 
FRaCT Webinar Deck
FRaCT Webinar DeckFRaCT Webinar Deck
FRaCT Webinar Deck
Teradata
 
Corporate Culture Index Market Overview 2.0
Corporate Culture Index Market Overview 2.0Corporate Culture Index Market Overview 2.0
Corporate Culture Index Market Overview 2.0
Business Integrity Alliance
 
Criminal Psychology & Fraud Investigation
Criminal Psychology & Fraud InvestigationCriminal Psychology & Fraud Investigation
Criminal Psychology & Fraud Investigation
Tommy Seah
 
Procurement Fraud - Financial Pre-Qualification
Procurement Fraud - Financial Pre-QualificationProcurement Fraud - Financial Pre-Qualification
Procurement Fraud - Financial Pre-Qualification
Tommy Seah
 

More Related Content

Similar to Fraud Risk Management - Road Show in KL, Malaysia

Financial Sattement Fraud, CPA, External Auditors responsibilities
Financial Sattement Fraud, CPA, External Auditors responsibilitiesFinancial Sattement Fraud, CPA, External Auditors responsibilities
Financial Sattement Fraud, CPA, External Auditors responsibilities
Tommy Seah
 
Improving and Implementing Internal Controls
Improving and Implementing Internal ControlsImproving and Implementing Internal Controls
Improving and Implementing Internal Controls
Tommy Seah
 
Mar 5 6 Internal Controls
Mar 5 6 Internal ControlsMar 5 6 Internal Controls
Mar 5 6 Internal Controls
Tommy Seah
 
A brief overview of operational risk
A brief overview of operational riskA brief overview of operational risk
A brief overview of operational risk
Diane Christina
 
The Evolving Enterprise Risk Model
The Evolving Enterprise Risk ModelThe Evolving Enterprise Risk Model
The Evolving Enterprise Risk Model
LexisNexisRiskUK
 
The evolving enterprise risk model
The evolving enterprise risk modelThe evolving enterprise risk model
The evolving enterprise risk model
LexisNexisDiligence
 
Icm Kl Ls
Icm Kl LsIcm Kl Ls
Icm Kl Ls
Tommy Seah
 
CSI Conference 2009
CSI Conference 2009CSI Conference 2009
CSI Conference 2009
Tommy Seah
 
CSI 2009 Conference Brochure after early bird discount
CSI 2009 Conference Brochure after early bird discountCSI 2009 Conference Brochure after early bird discount
CSI 2009 Conference Brochure after early bird discount
Tommy Seah
 
Csi 09i
Csi 09iCsi 09i
Csi 09i
TOMMY SEAH
 
Csi 09i
Csi 09iCsi 09i
Csi 09i
guest24269d
 
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
bashirnakib
 
Common Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAECommon Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAE
Wheelhouse Advisors LLC
 
Csi 2009 Main Brochure
Csi 2009 Main BrochureCsi 2009 Main Brochure
Csi 2009 Main Brochure
guest24269d
 
Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1
Nadir Hussain
 
Credit Risk Msia
Credit Risk MsiaCredit Risk Msia
Credit Risk Msia
Tommy Seah
 
Enabling Embedded Business Continuity
Enabling Embedded Business ContinuityEnabling Embedded Business Continuity
Enabling Embedded Business Continuity
Mustafa KILIC
 
Mela Capital Banking Ppt
Mela Capital Banking PptMela Capital Banking Ppt
Mela Capital Banking Ppt
Cindi Dixon
 
FRaCT Webinar Deck
FRaCT Webinar DeckFRaCT Webinar Deck
FRaCT Webinar Deck
Teradata
 
Corporate Culture Index Market Overview 2.0
Corporate Culture Index Market Overview 2.0Corporate Culture Index Market Overview 2.0
Corporate Culture Index Market Overview 2.0
Business Integrity Alliance
 

Similar to Fraud Risk Management - Road Show in KL, Malaysia (20)

Financial Sattement Fraud, CPA, External Auditors responsibilities
Financial Sattement Fraud, CPA, External Auditors responsibilitiesFinancial Sattement Fraud, CPA, External Auditors responsibilities
Financial Sattement Fraud, CPA, External Auditors responsibilities
 
Improving and Implementing Internal Controls
Improving and Implementing Internal ControlsImproving and Implementing Internal Controls
Improving and Implementing Internal Controls
 
Mar 5 6 Internal Controls
Mar 5 6 Internal ControlsMar 5 6 Internal Controls
Mar 5 6 Internal Controls
 
A brief overview of operational risk
A brief overview of operational riskA brief overview of operational risk
A brief overview of operational risk
 
The Evolving Enterprise Risk Model
The Evolving Enterprise Risk ModelThe Evolving Enterprise Risk Model
The Evolving Enterprise Risk Model
 
The evolving enterprise risk model
The evolving enterprise risk modelThe evolving enterprise risk model
The evolving enterprise risk model
 
Icm Kl Ls
Icm Kl LsIcm Kl Ls
Icm Kl Ls
 
CSI Conference 2009
CSI Conference 2009CSI Conference 2009
CSI Conference 2009
 
CSI 2009 Conference Brochure after early bird discount
CSI 2009 Conference Brochure after early bird discountCSI 2009 Conference Brochure after early bird discount
CSI 2009 Conference Brochure after early bird discount
 
Csi 09i
Csi 09iCsi 09i
Csi 09i
 
Csi 09i
Csi 09iCsi 09i
Csi 09i
 
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
Risk Based Approach Bachir El Nakib July 2009 [Compatibility Mode]
 
Common Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAECommon Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAE
 
Csi 2009 Main Brochure
Csi 2009 Main BrochureCsi 2009 Main Brochure
Csi 2009 Main Brochure
 
Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1
 
Credit Risk Msia
Credit Risk MsiaCredit Risk Msia
Credit Risk Msia
 
Enabling Embedded Business Continuity
Enabling Embedded Business ContinuityEnabling Embedded Business Continuity
Enabling Embedded Business Continuity
 
Mela Capital Banking Ppt
Mela Capital Banking PptMela Capital Banking Ppt
Mela Capital Banking Ppt
 
FRaCT Webinar Deck
FRaCT Webinar DeckFRaCT Webinar Deck
FRaCT Webinar Deck
 
Corporate Culture Index Market Overview 2.0
Corporate Culture Index Market Overview 2.0Corporate Culture Index Market Overview 2.0
Corporate Culture Index Market Overview 2.0
 

More from Tommy Seah

Criminal Psychology & Fraud Investigation
Criminal Psychology & Fraud InvestigationCriminal Psychology & Fraud Investigation
Criminal Psychology & Fraud Investigation
Tommy Seah
 
Procurement Fraud - Financial Pre-Qualification
Procurement Fraud - Financial Pre-QualificationProcurement Fraud - Financial Pre-Qualification
Procurement Fraud - Financial Pre-Qualification
Tommy Seah
 
Psychology of fraud 50 pages for comment by tommy seah number one fraud buster
Psychology of fraud 50 pages for comment by tommy seah number one fraud busterPsychology of fraud 50 pages for comment by tommy seah number one fraud buster
Psychology of fraud 50 pages for comment by tommy seah number one fraud buster
Tommy Seah
 
Financial Statement Fraud training by Tommy SEAH
Financial Statement Fraud training by Tommy SEAHFinancial Statement Fraud training by Tommy SEAH
Financial Statement Fraud training by Tommy SEAH
Tommy Seah
 
Effective Cash Management
Effective Cash ManagementEffective Cash Management
Effective Cash Management
Tommy Seah
 
Enterprise FRM
Enterprise FRMEnterprise FRM
Enterprise FRM
Tommy Seah
 
Enterprise Fraud Risk Management
Enterprise Fraud Risk ManagementEnterprise Fraud Risk Management
Enterprise Fraud Risk Management
Tommy Seah
 
CreAtiNG A whiStle-BlowiNG
CreAtiNG A whiStle-BlowiNGCreAtiNG A whiStle-BlowiNG
CreAtiNG A whiStle-BlowiNG
Tommy Seah
 
Understanding Procurement Fraud by Tommy Seah
Understanding Procurement Fraud by Tommy SeahUnderstanding Procurement Fraud by Tommy Seah
Understanding Procurement Fraud by Tommy Seah
Tommy Seah
 
Ethics and Integrity by Tommy Seah- A Value Added Audit on Environment
Ethics and Integrity by Tommy Seah- A Value Added Audit on EnvironmentEthics and Integrity by Tommy Seah- A Value Added Audit on Environment
Ethics and Integrity by Tommy Seah- A Value Added Audit on Environment
Tommy Seah
 
Traditionally, the practice of risk management comprises acceptance, transfer...
Traditionally, the practice of risk management comprises acceptance, transfer...Traditionally, the practice of risk management comprises acceptance, transfer...
Traditionally, the practice of risk management comprises acceptance, transfer...
Tommy Seah
 
FOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAH
FOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAHFOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAH
FOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAH
Tommy Seah
 
SEATA by TOMMY SEAH
SEATA by TOMMY SEAHSEATA by TOMMY SEAH
SEATA by TOMMY SEAH
Tommy Seah
 
Risk Based Audit Training by TOMMY SEAH
Risk Based Audit Training by TOMMY SEAHRisk Based Audit Training by TOMMY SEAH
Risk Based Audit Training by TOMMY SEAH
Tommy Seah
 
TOMMY SEAH speaks on his perspective of FRAUD in CHINA
TOMMY SEAH speaks on his perspective of FRAUD in CHINATOMMY SEAH speaks on his perspective of FRAUD in CHINA
TOMMY SEAH speaks on his perspective of FRAUD in CHINA
Tommy Seah
 
TOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIA
TOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIATOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIA
TOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIA
Tommy Seah
 
TOMMY SEAH combating Corporate Fraud
TOMMY SEAH combating Corporate FraudTOMMY SEAH combating Corporate Fraud
TOMMY SEAH combating Corporate Fraud
Tommy Seah
 
Tommy Seah speaks on CORRUPTION and FRAUD PREVENTION in Malaysia
Tommy Seah speaks on CORRUPTION and FRAUD PREVENTION in MalaysiaTommy Seah speaks on CORRUPTION and FRAUD PREVENTION in Malaysia
Tommy Seah speaks on CORRUPTION and FRAUD PREVENTION in Malaysia
Tommy Seah
 
CFE-In-Practice Fact Book
CFE-In-Practice Fact BookCFE-In-Practice Fact Book
CFE-In-Practice Fact Book
Tommy Seah
 
Tommy Seah training A*Star in preparation for IT Audit
Tommy Seah training A*Star in preparation for IT AuditTommy Seah training A*Star in preparation for IT Audit
Tommy Seah training A*Star in preparation for IT Audit
Tommy Seah
 

More from Tommy Seah (20)

Criminal Psychology & Fraud Investigation
Criminal Psychology & Fraud InvestigationCriminal Psychology & Fraud Investigation
Criminal Psychology & Fraud Investigation
 
Procurement Fraud - Financial Pre-Qualification
Procurement Fraud - Financial Pre-QualificationProcurement Fraud - Financial Pre-Qualification
Procurement Fraud - Financial Pre-Qualification
 
Psychology of fraud 50 pages for comment by tommy seah number one fraud buster
Psychology of fraud 50 pages for comment by tommy seah number one fraud busterPsychology of fraud 50 pages for comment by tommy seah number one fraud buster
Psychology of fraud 50 pages for comment by tommy seah number one fraud buster
 
Financial Statement Fraud training by Tommy SEAH
Financial Statement Fraud training by Tommy SEAHFinancial Statement Fraud training by Tommy SEAH
Financial Statement Fraud training by Tommy SEAH
 
Effective Cash Management
Effective Cash ManagementEffective Cash Management
Effective Cash Management
 
Enterprise FRM
Enterprise FRMEnterprise FRM
Enterprise FRM
 
Enterprise Fraud Risk Management
Enterprise Fraud Risk ManagementEnterprise Fraud Risk Management
Enterprise Fraud Risk Management
 
CreAtiNG A whiStle-BlowiNG
CreAtiNG A whiStle-BlowiNGCreAtiNG A whiStle-BlowiNG
CreAtiNG A whiStle-BlowiNG
 
Understanding Procurement Fraud by Tommy Seah
Understanding Procurement Fraud by Tommy SeahUnderstanding Procurement Fraud by Tommy Seah
Understanding Procurement Fraud by Tommy Seah
 
Ethics and Integrity by Tommy Seah- A Value Added Audit on Environment
Ethics and Integrity by Tommy Seah- A Value Added Audit on EnvironmentEthics and Integrity by Tommy Seah- A Value Added Audit on Environment
Ethics and Integrity by Tommy Seah- A Value Added Audit on Environment
 
Traditionally, the practice of risk management comprises acceptance, transfer...
Traditionally, the practice of risk management comprises acceptance, transfer...Traditionally, the practice of risk management comprises acceptance, transfer...
Traditionally, the practice of risk management comprises acceptance, transfer...
 
FOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAH
FOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAHFOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAH
FOREIGN EXCHANGE MANAGEMENT AUDIT - FOREX AUDIT by TOMMY SEAH
 
SEATA by TOMMY SEAH
SEATA by TOMMY SEAHSEATA by TOMMY SEAH
SEATA by TOMMY SEAH
 
Risk Based Audit Training by TOMMY SEAH
Risk Based Audit Training by TOMMY SEAHRisk Based Audit Training by TOMMY SEAH
Risk Based Audit Training by TOMMY SEAH
 
TOMMY SEAH speaks on his perspective of FRAUD in CHINA
TOMMY SEAH speaks on his perspective of FRAUD in CHINATOMMY SEAH speaks on his perspective of FRAUD in CHINA
TOMMY SEAH speaks on his perspective of FRAUD in CHINA
 
TOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIA
TOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIATOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIA
TOMMY SEAH COMBATING CORPORATE FRAUD IN MALAYSIA
 
TOMMY SEAH combating Corporate Fraud
TOMMY SEAH combating Corporate FraudTOMMY SEAH combating Corporate Fraud
TOMMY SEAH combating Corporate Fraud
 
Tommy Seah speaks on CORRUPTION and FRAUD PREVENTION in Malaysia
Tommy Seah speaks on CORRUPTION and FRAUD PREVENTION in MalaysiaTommy Seah speaks on CORRUPTION and FRAUD PREVENTION in Malaysia
Tommy Seah speaks on CORRUPTION and FRAUD PREVENTION in Malaysia
 
CFE-In-Practice Fact Book
CFE-In-Practice Fact BookCFE-In-Practice Fact Book
CFE-In-Practice Fact Book
 
Tommy Seah training A*Star in preparation for IT Audit
Tommy Seah training A*Star in preparation for IT AuditTommy Seah training A*Star in preparation for IT Audit
Tommy Seah training A*Star in preparation for IT Audit
 

Recently uploaded

Temple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation resultsTemple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation results
Krassimira Luka
 
Standardized tool for Intelligence test.
Standardized tool for Intelligence test.Standardized tool for Intelligence test.
Standardized tool for Intelligence test.
deepaannamalai16
 
Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)
nitinpv4ai
 
NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...
NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...
NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...
Payaamvohra1
 
BPSC-105 important questions for june term end exam
BPSC-105 important questions for june term end examBPSC-105 important questions for june term end exam
BPSC-105 important questions for june term end exam
sonukumargpnirsadhan
 
220711130083 SUBHASHREE RAKSHIT Internet resources for social science
220711130083 SUBHASHREE RAKSHIT Internet resources for social science220711130083 SUBHASHREE RAKSHIT Internet resources for social science
220711130083 SUBHASHREE RAKSHIT Internet resources for social science
Kalna College
 
Bonku-Babus-Friend by Sathyajith Ray (9)
Bonku-Babus-Friend by Sathyajith Ray (9)Bonku-Babus-Friend by Sathyajith Ray (9)
Bonku-Babus-Friend by Sathyajith Ray (9)
nitinpv4ai
 
مصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdf
مصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdfمصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdf
مصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdf
سمير بسيوني
 
Accounting for Restricted Grants When and How To Record Properly
Accounting for Restricted Grants When and How To Record ProperlyAccounting for Restricted Grants When and How To Record Properly
Accounting for Restricted Grants When and How To Record Properly
TechSoup
 
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.pptLevel 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Henry Hollis
 
Wound healing PPT
Wound healing PPTWound healing PPT
Wound healing PPT
Jyoti Chand
 
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptxA Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
OH TEIK BIN
 
Electric Fetus - Record Store Scavenger Hunt
Electric Fetus - Record Store Scavenger HuntElectric Fetus - Record Store Scavenger Hunt
Electric Fetus - Record Store Scavenger Hunt
RamseyBerglund
 
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skillsspot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
haiqairshad
 
How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17
Celine George
 
The basics of sentences session 7pptx.pptx
The basics of sentences session 7pptx.pptxThe basics of sentences session 7pptx.pptx
The basics of sentences session 7pptx.pptx
heathfieldcps1
 
Observational Learning
Observational Learning Observational Learning
Observational Learning
sanamushtaq922
 
How to Fix [Errno 98] address already in use
How to Fix [Errno 98] address already in useHow to Fix [Errno 98] address already in use
How to Fix [Errno 98] address already in use
Celine George
 
Bossa N’ Roll Records by Ismael Vazquez.
Bossa N’ Roll Records by Ismael Vazquez.Bossa N’ Roll Records by Ismael Vazquez.
Bossa N’ Roll Records by Ismael Vazquez.
IsmaelVazquez38
 
Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...
Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...
Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...
EduSkills OECD
 

Recently uploaded (20)

Temple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation resultsTemple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation results
 
Standardized tool for Intelligence test.
Standardized tool for Intelligence test.Standardized tool for Intelligence test.
Standardized tool for Intelligence test.
 
Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)
 
NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...
NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...
NIPER 2024 MEMORY BASED QUESTIONS.ANSWERS TO NIPER 2024 QUESTIONS.NIPER JEE 2...
 
BPSC-105 important questions for june term end exam
BPSC-105 important questions for june term end examBPSC-105 important questions for june term end exam
BPSC-105 important questions for june term end exam
 
220711130083 SUBHASHREE RAKSHIT Internet resources for social science
220711130083 SUBHASHREE RAKSHIT Internet resources for social science220711130083 SUBHASHREE RAKSHIT Internet resources for social science
220711130083 SUBHASHREE RAKSHIT Internet resources for social science
 
Bonku-Babus-Friend by Sathyajith Ray (9)
Bonku-Babus-Friend by Sathyajith Ray (9)Bonku-Babus-Friend by Sathyajith Ray (9)
Bonku-Babus-Friend by Sathyajith Ray (9)
 
مصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdf
مصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdfمصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdf
مصحف القراءات العشر أعد أحرف الخلاف سمير بسيوني.pdf
 
Accounting for Restricted Grants When and How To Record Properly
Accounting for Restricted Grants When and How To Record ProperlyAccounting for Restricted Grants When and How To Record Properly
Accounting for Restricted Grants When and How To Record Properly
 
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.pptLevel 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
 
Wound healing PPT
Wound healing PPTWound healing PPT
Wound healing PPT
 
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptxA Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
 
Electric Fetus - Record Store Scavenger Hunt
Electric Fetus - Record Store Scavenger HuntElectric Fetus - Record Store Scavenger Hunt
Electric Fetus - Record Store Scavenger Hunt
 
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skillsspot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
 
How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17
 
The basics of sentences session 7pptx.pptx
The basics of sentences session 7pptx.pptxThe basics of sentences session 7pptx.pptx
The basics of sentences session 7pptx.pptx
 
Observational Learning
Observational Learning Observational Learning
Observational Learning
 
How to Fix [Errno 98] address already in use
How to Fix [Errno 98] address already in useHow to Fix [Errno 98] address already in use
How to Fix [Errno 98] address already in use
 
Bossa N’ Roll Records by Ismael Vazquez.
Bossa N’ Roll Records by Ismael Vazquez.Bossa N’ Roll Records by Ismael Vazquez.
Bossa N’ Roll Records by Ismael Vazquez.
 
Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...
Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...
Andreas Schleicher presents PISA 2022 Volume III - Creative Thinking - 18 Jun...
 

Fraud Risk Management - Road Show in KL, Malaysia

  • 1. 3/19/2009 ACFE Regent Emeritus Tommy Seah presents Fraud Risk Management A Paradigm Shift 2009 1 “………….. financial institutions must have in place, all the necessary measures to deter or prevent fraud and constantly review all its controls and measures and also have in place a f d management function t fraud tf ti to prevent loopholes that fraudsters can exploit.” …… who said that ? 2 march 05, 2009 at Shangri-La hotel and the guest of honour was Ms Teo Swee Lian, Deputy Managing Di t MAS M i Director, MAS. 3 1
  • 2. 3/19/2009 Why is Internal Control Important? Financial Reporting • Promotes integrity of data used in making business decisions • Assists in fraud prevention and detection through the creation of an auditable trail of evidence Operations Promotes efficiency and effectiveness of operations through standardized Laws and Regulations processes Ensures the safeguarding of • Helps maintain compliance assets through control with laws and regulations through periodic monitoring activities 4 Limitations of Internal Control Errors may arise from misunderstandings of instructions, mistakes of judgment, fatigue, etc. Controls that depend on the segregation of duties may be circumvented by collusion Management may override the structure Compliance may deteriorate over time The Existing model Financial Control The Fraud Examiner The Certified System Investigator CFE CSI Compliance The Risk Management CPA,LLB, CSI Trinity CPA,CFA CSI of Controls Internal Audit CPA(CIA) CSI, CISA 6 2
  • 3. 3/19/2009 The Spectrum of Risk www.cfe-in-practice.net Liquidity Risk B A C Operational Credit Risk Risk What is Risk ? D E Reputational Market Risk Risk 7 www.cfe-in-practice.net “External” Audit Internal audit (COSO + COBIT+ ISO… Forensic audit Investigative auditing (Specific, Post event) ( suspicious, unusual activities, allegations) Eg. NKF, CAO E.g.. Money Laundering penetration Test 8 Fraud Control Principle F dC t lP i i l 3
  • 4. 3/19/2009 If an organisation accepts that it is exposed to fraud – and no organisation is immune to fraud – the next step is to apportion responsibility for fraud risk management. Copyright (c)2006 www.cfe-in-practice.net 10 The Paradigm Shift Financial Control The Fraud Examiner The Certified The CPA System Investigator CFE CSI Risk Compliance Management CPA,LLB, CSI CPA,CFA CSI S.T.A.R Strategic Tracking and Resolution Investigation FRM Unit Internal Audit Unit CPA(CIA) CSI, CISA 11 WHY is there a need for the paradigm shift ? Historically, the management of fraud risk does not lie with any one particular department or practitioner. Copyright (c)2006 www.cfe-in-practice.net 12 4
  • 5. 3/19/2009 It can be handled internally or be outsourced, and how it is handled is affected by many variables such as organizational size, industry sector, geographical location, cultural dynamics - and management perception of the problem. Copyright (c)2006 www.cfe-in-practice.net 13 Regardless of these variables, any fraud prevention and control model should aim to achieve one, or all, of the five primary objectives: Copyright (c)2006 www.cfe-in-practice.net 14 The five primary objectives: _ Prevention _ Deterrence _ Disruption – _ Identification _ Civil action/criminal prosecution Copyright (c)2006 www.cfe-in-practice.net 15 5
  • 6. 3/19/2009 The Fraud Triangle. Fraud Risk Fraud Risk Management Management Perceived Opportunity Auditor’s Domain Who Commits Fraud? What type of individual commits FRAUD? It is not limited to any one type of person. www.cfe-in-practice.org Married Active religious members Children Good education First-time offenders Good employees Don’t abuse alcohol 6
  • 7. 3/19/2009 Optimistic High self-esteem Achieving Family harmony Socially conforming Self control Kind Sympathetic Conclusion: Fraud Perpetrators Look Exactly Like Us! Who Commits Fraud? While people who commit rape, murder, bank robbery and other property offenses have distinguishing characteristics, fraud perpetrators look more like more citizens than criminals! Bank Robbers Normal Citizens Fraud Perpetrators Sample Sample S l Sample S l Major Differences No Significant Differences The “Red Flags” of fraud www.cfe-in-practice.net Given the “right circumstances”, circumstances”, Alcohol Gambling almost everyone can rationalize that it is OK to Profile of A Person commit fraud..Text Who Commits Fraud Drugs Sex 21 7
  • 8. 3/19/2009 1 STEP 1: EVALUATE THE ORGANIZATION'S FRAUD RISK FACTORS To identify which factors increase the risk for fraud within an organization, examiners should analyze industry and business operations hold discussions with management operations, management, review previous frauds committed against or on behalf of the company, review company performance, and evaluate similar frauds that occurred at competitors' organizations. 7 STEP 2: IDENTIFY POSSIBLE FRAUD SCHEMES The ability to identify specific schemes resulting from fraud risk factors depends on the examiner's knowledge of this area. F d specialists, i l di Fraud i li including i di id l with certified individuals i h ifi d fraud examiner (CFE) designations and Certified Systems Investigator (CSI) are ideal for this step of the process, as they possess specialized knowledge of fraud detection and investigation. 8 8
  • 9. 3/19/2009 STEP 3: PRIORITIZE IDENTIFIED FRAUD RISKS Fraud is not just an ordinary risk, but also an inherent and significant one. Once the fraud schemes database is populated, management and internal auditing should identify the frauds that pose the greatest risk for the organization. 9 Examiners should consider the following factors when prioritizing fraud risks: Financial impact to the organization. Reputation risk of negative publicity associated with fraud. Loss of productivity. Potential criminal/civil actions taken against the organization. (Such as Data Breach EU95/46 on PII) Loss of company assets. 11 STEP 4: EVALUATE MITIGATING CONTROLS Internal s Auditors with CFE qualifications are well- positioned to review and counsel on the existence and operational effectiveness of internal controls. In p step four, the examiner/auditor should evaluate the high-priority frauds and determine if the necessary controls are in place to reduce the risk of occurrence. This step takes time, as the auditor should attempt to identify more than one control for each fraud scheme. 12 9
  • 10. 3/19/2009 www.cfe-in-practice.net Determination by Determination by Area Scheme 28 Fraud Consideration at all stages of engagement Perform Pre-Engagement PROFESSIONAL SKEPTICISIM Activities GATHER AN ASEESS MENTATION FRAUD RISKS Perform Preliminary Planning ND DOCUM Develop Audit Plan Perform Audit Plan Conclude & Report Fraud Risk Factors & Risk of Fraud 10
  • 11. 3/19/2009 Questions? CFE-In-Practice www.cfe-in-practice.net Tommy Seah Managing Partner CFE-In-Practice www.cfe-in-practice.com phone +65 65171900 www.cfe-in-practice.net 32 11