SlideShare a Scribd company logo

Going Beyond Business Systems

Download as PPTX, PDF
K
Karl Fultz

Provides several cost-effective strategies for strengthening compliance while recognizing operational efficiencies and reducing government oversight.

Business
1 of 25
Government Contract Controls: Going Beyond Business Systems Breakout Session A03 Sajeev Malaveetil, Partner, Ernst & Young LLP Andy Artz, Senior Manager, Ernst & Young LLP Karl Fultz, Manager, Ernst & Young LLP December 12, 2016 Time: 1:00 p.m.-2:15 p.m.
Contact Information Sajeev Malaveetil Partner +1 703 747 1248 sajeev.malaveetil@ey.com Andy Artz Senior Manager +1 703 747 1480 andrew.artz@ey.com Karl Fultz Manager +1 469 865 4168 karl.fultz@ey.com
Agenda • Defense Federal Acquisition Regulation Supplement (DFARS) Business Systems Background • DFARS Business Systems and Common Controls • Integrating DFARS and Beyond 4
DFARS Business Systems Background 5
Internal Control Requirements • FAR 52.203-13 requires: • Contractors to establish an internal control system, which provides for: • Assignment of responsibility • Compliance with code of ethics and conflict of interest restrictions • Periodic review of company practices • Internal reporting mechanisms • Disciplinary actions for improper conduct • Full cooperation with the government on audits, investigations or corrective actions • Timely disclosure of violations of federal criminal law involving fraud, conflict of interest, bribery, gratuity violations or the False Claims Act • Disclosures are a key component of any control environment. • DFARS business systems are only one component of a sound internal control environment. 6
DFARS Business Systems Rule Background • The Department of Defense (DoD) issued an interim rule effective May 18, 2011, which mandated withholding a percentage of payments when a contractor’s business system has one or more significant deficiencies. • The final rule was released with minimal changes effective February 24, 2012. • A “significant deficiency” is defined as “a shortcoming in the system that materially affects the ability of officials of the DoD to rely upon information produced by the system that is needed for management purposes.”* 7 * DFARS 252.242-7005 Contractor Business Systems
DFARS Business Systems Rule Background • Business systems • Accounting • Estimating • Purchasing • Earned Value Management • Material Management and Accounting • Property Management • When does the business systems rule apply? • Applies to DoD CAS covered contracts, which contain the 252.242- 7005 clause, along with a system specific clause 8
Audit Activity • DCAA’s focus on incurred cost had delayed system audits. • On September 30, 2016, DCAA MRD 16-PPD-008(R) announced DCAA had met requirements of the 2016 National Defense Authorization Act of an incurred cost backlog of less than 18 months. • System audits are expected to increase as incurred cost audits are completed. • Inspector General reports on DCMA’s compliance with DFARS criteria are expected to increase oversight of business systems. 9
Business System Withhold Trends* System Tracked Disapproved Percent Disapproved Withhold Amounts ($M) DCAA FY 17 Audits** Accounting 3,500 36 1.4% $0 8 Estimating 688 24 3.5% $256 31 Purchasing 826 25 3.0% $0 N/A Earned Value 310 16 5.2% $87 N/A Material Management 337 3 0.9% $3 13 Property 2,200 8 0.4% $0 N/A *Source: Vince Perez, Deputy Director of the DCMA Cost and Pricing Center, NDIA industry presentation **Source: DCAA FOIA Case I-17-011-H 10
Self-Audit DFARS Case 2012-D042 • The proposed rule would have required contractors to have their business systems audited by a CPA firm. • The rule was initially proposed due to an increased backlog of system audits. • Contractors are still faced with the dilemma of unaudited systems and are proactively assessing their own systems. 11
Disclosures • Disclosures are a key component of internal control design. • Controls should identify and provide for notification to the government. • The rule was initially proposed due to an increased backlog of system audits. • Contractors are still faced with the dilemma of unaudited systems and are proactively assessing their own systems. 12
Contractor Dilemmas • Preparing for new wave of system audit activity • Identifying potential system weaknesses prior to government reviews • Minimizing disruption of government audits • Cost-effectively monitoring, remediating and improving controls without sacrificing operational efficiencies 13
DFARS Business Systems and Common Controls 14
DFARS Systems vs. Common Controls • Both DFARS and “normal” financial controls attempt to achieve a strong control environment with active controls and monitoring in place. • Many risks and controls from the DFARS business systems have overlapping traits and objectives with existing control frameworks. • Compliance and operations can coexist effectively with careful planning and execution. 15
16 Business System Common Financial Control Area Estimating Bids, estimates, proposals, audits of estimates Earned Value Management Revenue recognition Material Management Inventory control and year-end counts Accounting Financial reporting and audits Indirect and Other Direct Costs Depreciation, allocations Compensation Pay authorizations, HR compensation assessments Billing Cash Labor Payroll, timekeeping, employee verification Information Technology SOX IT controls Purchasing Reviews of payables, accruals, vendor master files, authorizations Property Asset control and physical verifications
Example – Procurement/Purchasing DFARS — Purchasing • Policies and procedures meet regulatory requirements and are followed in practice. • Purchases are all approved per company policy. • Due diligence of suppliers is completed (e.g., reps and certs). Procurement controls • Policies and procedures exist to define procurement authority thresholds. • System limits purchase orders to approved vendors. 17
Example – Labor/Timekeeping • DFARS labor controls and existing payroll/timekeeping controls both require: • Employees to timely and accurately use timekeeping systems with supervisor approval on regular basis • Reconciliations between timekeeping, labor, and general ledger • Timely removal of access for terminated employees • Ethics/violation hotlines available and employees aware • Training for timekeeping and other essential job skills provided 18
Example – Estimating System and Bid and Proposals Controls • DFARS Estimating System and existing bid/proposal controls both require: • Adequate review and approval of all offers to potential customers for scope, terms and conditions, etc. • Adequate policies and procedures exist to provide complete, accurate and consistent offers • Accurate, updated and communicated delegations of authority 19
Integrating DFARS and Beyond 20
Comprehensive Control Framework Ongoing control activities COSO COBIT DFARS ISO 21
Advantages • Reduction of duplicate efforts • Policies and procedures • Internal control documentation • Control design and operating effectiveness • Substantive testing and remediation • Preparation for external reviews • Decreases internal audit and consulting costs • Increased internal audit efficiencies • Provides baseline for external consultants • Can perform self-assessments • Allows government to rely on internally developed reviews 22
Self-Assessments • Contractors having increased success with self-assessments • Allows government to rely on internally developed reviews • Decreases internal audit and consulting costs • Increased internal audit efficiencies • Provides baseline for external consultants 23
Other Areas of Control Integration • Other areas outside DFARS and common financial controls can also be integrated: 24 • Estimates-at-completion • Labor qualifications • Export controls • GSA Schedule price reductions • Service Contract Act/Davis-Bacon Act • EEOC and labor laws • Cybersecurity • Small-business subcontracting
Traits of a Successful Integration • Clear ownership of compliance requirements • Embedding government requirements into internal control framework • Comprehensive enterprise risk management • Coordinated audit planning • Inter-organizational knowledge sharing • Singular internal control repository • Clear and functioning governance and oversight structure (e.g., policies, procedures, training, internal audit, reporting) 25

Recommended

Internal controls & ai ss
Internal controls & ai ssInternal controls & ai ss
Internal controls & ai ssKashif Rana ACCA
 
Legal & Regulatory Compliance - Audit Services
Legal & Regulatory Compliance - Audit ServicesLegal & Regulatory Compliance - Audit Services
Legal & Regulatory Compliance - Audit ServicesPiyush Bhandari
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Common internal audit findings & how to avoid them
Common internal audit findings & how to avoid themCommon internal audit findings & how to avoid them
Common internal audit findings & how to avoid themSurajit Datta
 
Technology Auditing, Assurance, Internal Control
Technology Auditing, Assurance, Internal ControlTechnology Auditing, Assurance, Internal Control
Technology Auditing, Assurance, Internal ControlZefren Edior
 
Internal control system
Internal control systemInternal control system
Internal control systemMadiha Hassan
 
Modern Finance Tour London May 2016
Modern Finance Tour London May 2016Modern Finance Tour London May 2016
Modern Finance Tour London May 2016BlackLine
 
COSO Deep Dive - Using BlackLine to Manage Your COSO Framework
COSO Deep Dive - Using BlackLine to Manage Your COSO FrameworkCOSO Deep Dive - Using BlackLine to Manage Your COSO Framework
COSO Deep Dive - Using BlackLine to Manage Your COSO FrameworkBlackLine
 

Recommended

Internal controls & ai ss
Internal controls & ai ssInternal controls & ai ss
Internal controls & ai ssKashif Rana ACCA
 
Legal & Regulatory Compliance - Audit Services
Legal & Regulatory Compliance - Audit ServicesLegal & Regulatory Compliance - Audit Services
Legal & Regulatory Compliance - Audit ServicesPiyush Bhandari
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Common internal audit findings & how to avoid them
Common internal audit findings & how to avoid themCommon internal audit findings & how to avoid them
Common internal audit findings & how to avoid themSurajit Datta
 
Technology Auditing, Assurance, Internal Control
Technology Auditing, Assurance, Internal ControlTechnology Auditing, Assurance, Internal Control
Technology Auditing, Assurance, Internal ControlZefren Edior
 
Internal control system
Internal control systemInternal control system
Internal control systemMadiha Hassan
 
Modern Finance Tour London May 2016
Modern Finance Tour London May 2016Modern Finance Tour London May 2016
Modern Finance Tour London May 2016BlackLine
 
COSO Deep Dive - Using BlackLine to Manage Your COSO Framework
COSO Deep Dive - Using BlackLine to Manage Your COSO FrameworkCOSO Deep Dive - Using BlackLine to Manage Your COSO Framework
COSO Deep Dive - Using BlackLine to Manage Your COSO FrameworkBlackLine
 
Continuous auditing
Continuous auditingContinuous auditing
Continuous auditingacc626tan
 
Business continuity planning guide
Business continuity planning guideBusiness continuity planning guide
Business continuity planning guideCenapSerdarolu
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal controlDr Manu H Natesh
 
Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Hisyam
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseDesmond Devendran
 
Documentation of Capital Asset Management Policies and Procedures
Documentation of Capital Asset Management Policies and ProceduresDocumentation of Capital Asset Management Policies and Procedures
Documentation of Capital Asset Management Policies and ProceduresDuff & Phelps
 
Internal Financial Controls
Internal Financial ControlsInternal Financial Controls
Internal Financial Controlstarunmallappa
 
Audit ratings guide
Audit ratings guideAudit ratings guide
Audit ratings guideCenapSerdarolu
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal controljayussuryawan
 
IFC - Internal Financial Control
IFC - Internal Financial Control IFC - Internal Financial Control
IFC - Internal Financial Control Dr. Dhirendra Gautam
 
Value-added it auditing
Value-added it auditingValue-added it auditing
Value-added it auditingMarc Vael
 
Internal_audit
Internal_auditInternal_audit
Internal_auditVishal Joshi
 
Internal controls
Internal controlsInternal controls
Internal controlsGeetali Tare
 
Internal controls
Internal controlsInternal controls
Internal controlsappan_k
 
Fraud detection guide
Fraud detection guideFraud detection guide
Fraud detection guideCenapSerdarolu
 
COSO Internal Control - Integrated Framework
COSO Internal Control - Integrated FrameworkCOSO Internal Control - Integrated Framework
COSO Internal Control - Integrated FrameworkAziz Fataliyev, Internal Audit Practitioner
 
internal control and control self assessment
internal control and control self assessmentinternal control and control self assessment
internal control and control self assessmentManoj Agarwal
 
Internal audit ratings guide
Internal audit ratings guideInternal audit ratings guide
Internal audit ratings guideCenapSerdarolu
 
Audit ppt
Audit pptAudit ppt
Audit pptPeywen Ng
 
2015-03-10 Managing Government Contracts
2015-03-10 Managing Government Contracts 2015-03-10 Managing Government Contracts
2015-03-10 Managing Government Contracts Raffa Learning Community
 
DCAA Audits Without Tears
DCAA Audits Without TearsDCAA Audits Without Tears
DCAA Audits Without TearsJessica Primanzon, MBA
 
Dcaa audits without tears final
Dcaa audits without tears finalDcaa audits without tears final
Dcaa audits without tears finalJessica Primanzon, MBA
 

More Related Content

What's hot

Continuous auditing
Continuous auditingContinuous auditing
Continuous auditingacc626tan
 
Business continuity planning guide
Business continuity planning guideBusiness continuity planning guide
Business continuity planning guideCenapSerdarolu
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal controlDr Manu H Natesh
 
Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Hisyam
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseDesmond Devendran
 
Documentation of Capital Asset Management Policies and Procedures
Documentation of Capital Asset Management Policies and ProceduresDocumentation of Capital Asset Management Policies and Procedures
Documentation of Capital Asset Management Policies and ProceduresDuff & Phelps
 
Internal Financial Controls
Internal Financial ControlsInternal Financial Controls
Internal Financial Controlstarunmallappa
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal controljayussuryawan
 
Value-added it auditing
Value-added it auditingValue-added it auditing
Value-added it auditingMarc Vael
 
Internal controls
Internal controlsInternal controls
Internal controlsappan_k
 
internal control and control self assessment
internal control and control self assessmentinternal control and control self assessment
internal control and control self assessmentManoj Agarwal
 
Internal audit ratings guide
Internal audit ratings guideInternal audit ratings guide
Internal audit ratings guideCenapSerdarolu
 

What's hot (19)

Continuous auditing
Continuous auditingContinuous auditing
Continuous auditing
 
Business continuity planning guide
Business continuity planning guideBusiness continuity planning guide
Business continuity planning guide
 
Chapter 2 internal control
Chapter 2 internal controlChapter 2 internal control
Chapter 2 internal control
 
Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)Brief overview on Internal control (Audit)
Brief overview on Internal control (Audit)
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review Course
 
Documentation of Capital Asset Management Policies and Procedures
Documentation of Capital Asset Management Policies and ProceduresDocumentation of Capital Asset Management Policies and Procedures
Documentation of Capital Asset Management Policies and Procedures
 
Internal Financial Controls
Internal Financial ControlsInternal Financial Controls
Internal Financial Controls
 
Audit ratings guide
Audit ratings guideAudit ratings guide
Audit ratings guide
 
Chapter 1 auditing and internal control
Chapter 1 auditing and internal controlChapter 1 auditing and internal control
Chapter 1 auditing and internal control
 
IFC - Internal Financial Control
IFC - Internal Financial Control IFC - Internal Financial Control
IFC - Internal Financial Control
 
Value-added it auditing
Value-added it auditingValue-added it auditing
Value-added it auditing
 
Internal_audit
Internal_auditInternal_audit
Internal_audit
 
Internal controls
Internal controlsInternal controls
Internal controls
 
Internal controls
Internal controlsInternal controls
Internal controls
 
Fraud detection guide
Fraud detection guideFraud detection guide
Fraud detection guide
 
COSO Internal Control - Integrated Framework
COSO Internal Control - Integrated FrameworkCOSO Internal Control - Integrated Framework
COSO Internal Control - Integrated Framework
 
internal control and control self assessment
internal control and control self assessmentinternal control and control self assessment
internal control and control self assessment
 
Internal audit ratings guide
Internal audit ratings guideInternal audit ratings guide
Internal audit ratings guide
 
Audit ppt
Audit pptAudit ppt
Audit ppt
 

Similar to Going Beyond Business Systems

DCAA Audits Without Tears
DCAA Audits Without TearsDCAA Audits Without Tears
DCAA Audits Without TearsUnanet
 
2013-09-26 Government Contractors Project Management Systems
2013-09-26 Government Contractors Project Management Systems2013-09-26 Government Contractors Project Management Systems
2013-09-26 Government Contractors Project Management SystemsRaffa Learning Community
 
Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Hendri Eka Saputra
 
Government Contracting & The DCAA Regulatory Environment
Government Contracting & The DCAA Regulatory EnvironmentGovernment Contracting & The DCAA Regulatory Environment
Government Contracting & The DCAA Regulatory EnvironmentRaffa Learning Community
 
The Six Business System Rules
The Six Business System RulesThe Six Business System Rules
The Six Business System RulesGlen Alleman
 
Lexcomply - Compliance Management Solutions
Lexcomply - Compliance Management SolutionsLexcomply - Compliance Management Solutions
Lexcomply - Compliance Management SolutionsLexComply
 
Implementing a FAR Part 31 Compliant Cost Accounting System
Implementing a FAR Part 31 Compliant Cost Accounting SystemImplementing a FAR Part 31 Compliant Cost Accounting System
Implementing a FAR Part 31 Compliant Cost Accounting SystemRobert E Jones
 
Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...
Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...
Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...Jina Etiennne
 
Audit and compliance services
Audit and compliance servicesAudit and compliance services
Audit and compliance servicesNiraj Choudhary
 
Segregation of Duties Solutions
Segregation of Duties SolutionsSegregation of Duties Solutions
Segregation of Duties SolutionsAhmed Abdul Hamed
 
Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...
Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...
Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...Perficient, Inc.
 

Similar to Going Beyond Business Systems (20)

2015-03-10 Managing Government Contracts
2015-03-10 Managing Government Contracts 2015-03-10 Managing Government Contracts
2015-03-10 Managing Government Contracts
 
DCAA Audits Without Tears
DCAA Audits Without TearsDCAA Audits Without Tears
DCAA Audits Without Tears
 
Dcaa audits without tears final
Dcaa audits without tears finalDcaa audits without tears final
Dcaa audits without tears final
 
DCAA Audits Without Tears
DCAA Audits Without TearsDCAA Audits Without Tears
DCAA Audits Without Tears
 
Government-Compliant Accounting: Really? What Does it Mean? How Do I Get There?
Government-Compliant Accounting: Really? What Does it Mean? How Do I Get There?Government-Compliant Accounting: Really? What Does it Mean? How Do I Get There?
Government-Compliant Accounting: Really? What Does it Mean? How Do I Get There?
 
2013-09-26 Government Contractors Project Management Systems
2013-09-26 Government Contractors Project Management Systems2013-09-26 Government Contractors Project Management Systems
2013-09-26 Government Contractors Project Management Systems
 
Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)
 
Government Contracting & The DCAA Regulatory Environment
Government Contracting & The DCAA Regulatory EnvironmentGovernment Contracting & The DCAA Regulatory Environment
Government Contracting & The DCAA Regulatory Environment
 
2014-10-15 Managing Government Contracts
2014-10-15 Managing Government Contracts2014-10-15 Managing Government Contracts
2014-10-15 Managing Government Contracts
 
The Six Business System Rules
The Six Business System RulesThe Six Business System Rules
The Six Business System Rules
 
Oow2014 nk 2
Oow2014 nk 2Oow2014 nk 2
Oow2014 nk 2
 
Lexcomply - Compliance Management Solutions
Lexcomply - Compliance Management SolutionsLexcomply - Compliance Management Solutions
Lexcomply - Compliance Management Solutions
 
Implementing a FAR Part 31 Compliant Cost Accounting System
Implementing a FAR Part 31 Compliant Cost Accounting SystemImplementing a FAR Part 31 Compliant Cost Accounting System
Implementing a FAR Part 31 Compliant Cost Accounting System
 
Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...
Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...
Tailor-Made Tax Practice Quality Controls presented at the West Michigan Tax ...
 
Audit and compliance services
Audit and compliance servicesAudit and compliance services
Audit and compliance services
 
Advance audit
Advance auditAdvance audit
Advance audit
 
Regulatory Compliance Audit Management Solution
Regulatory Compliance Audit Management SolutionRegulatory Compliance Audit Management Solution
Regulatory Compliance Audit Management Solution
 
Insp of sop for detection of fraud
Insp of sop for detection of fraudInsp of sop for detection of fraud
Insp of sop for detection of fraud
 
Segregation of Duties Solutions
Segregation of Duties SolutionsSegregation of Duties Solutions
Segregation of Duties Solutions
 
Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...
Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...
Leveraging Data in Financial Services to Meet Regulatory Requirements and Cre...
 

Recently uploaded

The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...Aggregage
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANIlamathiKannappan
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...amitlee9823
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptP&CO
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Neil Kimberley
 
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceEluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceDamini Dixit
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876dlhescort
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Serviceritikaroy0888
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with CultureSeta Wicaksana
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...rajveerescorts2022
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Centuryrwgiffor
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...lizamodels9
 
Falcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to ProsperityFalcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to Prosperityhemanthkumar470700
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...amitlee9823
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayNZSG
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...lizamodels9
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...allensay1
 
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...Dave Litwiller
 

Recently uploaded (20)

The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMAN
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023
 
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceEluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
 
Falcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to ProsperityFalcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to Prosperity
 
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
 

Going Beyond Business Systems

  • 1.
  • 2. Government Contract Controls: Going Beyond Business Systems Breakout Session A03 Sajeev Malaveetil, Partner, Ernst & Young LLP Andy Artz, Senior Manager, Ernst & Young LLP Karl Fultz, Manager, Ernst & Young LLP December 12, 2016 Time: 1:00 p.m.-2:15 p.m.
  • 3. Contact Information Sajeev Malaveetil Partner +1 703 747 1248 sajeev.malaveetil@ey.com Andy Artz Senior Manager +1 703 747 1480 andrew.artz@ey.com Karl Fultz Manager +1 469 865 4168 karl.fultz@ey.com
  • 4. Agenda • Defense Federal Acquisition Regulation Supplement (DFARS) Business Systems Background • DFARS Business Systems and Common Controls • Integrating DFARS and Beyond 4
  • 6. Internal Control Requirements • FAR 52.203-13 requires: • Contractors to establish an internal control system, which provides for: • Assignment of responsibility • Compliance with code of ethics and conflict of interest restrictions • Periodic review of company practices • Internal reporting mechanisms • Disciplinary actions for improper conduct • Full cooperation with the government on audits, investigations or corrective actions • Timely disclosure of violations of federal criminal law involving fraud, conflict of interest, bribery, gratuity violations or the False Claims Act • Disclosures are a key component of any control environment. • DFARS business systems are only one component of a sound internal control environment. 6
  • 7. DFARS Business Systems Rule Background • The Department of Defense (DoD) issued an interim rule effective May 18, 2011, which mandated withholding a percentage of payments when a contractor’s business system has one or more significant deficiencies. • The final rule was released with minimal changes effective February 24, 2012. • A “significant deficiency” is defined as “a shortcoming in the system that materially affects the ability of officials of the DoD to rely upon information produced by the system that is needed for management purposes.”* 7 * DFARS 252.242-7005 Contractor Business Systems
  • 8. DFARS Business Systems Rule Background • Business systems • Accounting • Estimating • Purchasing • Earned Value Management • Material Management and Accounting • Property Management • When does the business systems rule apply? • Applies to DoD CAS covered contracts, which contain the 252.242- 7005 clause, along with a system specific clause 8
  • 9. Audit Activity • DCAA’s focus on incurred cost had delayed system audits. • On September 30, 2016, DCAA MRD 16-PPD-008(R) announced DCAA had met requirements of the 2016 National Defense Authorization Act of an incurred cost backlog of less than 18 months. • System audits are expected to increase as incurred cost audits are completed. • Inspector General reports on DCMA’s compliance with DFARS criteria are expected to increase oversight of business systems. 9
  • 10. Business System Withhold Trends* System Tracked Disapproved Percent Disapproved Withhold Amounts ($M) DCAA FY 17 Audits** Accounting 3,500 36 1.4% $0 8 Estimating 688 24 3.5% $256 31 Purchasing 826 25 3.0% $0 N/A Earned Value 310 16 5.2% $87 N/A Material Management 337 3 0.9% $3 13 Property 2,200 8 0.4% $0 N/A *Source: Vince Perez, Deputy Director of the DCMA Cost and Pricing Center, NDIA industry presentation **Source: DCAA FOIA Case I-17-011-H 10
  • 11. Self-Audit DFARS Case 2012-D042 • The proposed rule would have required contractors to have their business systems audited by a CPA firm. • The rule was initially proposed due to an increased backlog of system audits. • Contractors are still faced with the dilemma of unaudited systems and are proactively assessing their own systems. 11
  • 12. Disclosures • Disclosures are a key component of internal control design. • Controls should identify and provide for notification to the government. • The rule was initially proposed due to an increased backlog of system audits. • Contractors are still faced with the dilemma of unaudited systems and are proactively assessing their own systems. 12
  • 13. Contractor Dilemmas • Preparing for new wave of system audit activity • Identifying potential system weaknesses prior to government reviews • Minimizing disruption of government audits • Cost-effectively monitoring, remediating and improving controls without sacrificing operational efficiencies 13
  • 14. DFARS Business Systems and Common Controls 14
  • 15. DFARS Systems vs. Common Controls • Both DFARS and “normal” financial controls attempt to achieve a strong control environment with active controls and monitoring in place. • Many risks and controls from the DFARS business systems have overlapping traits and objectives with existing control frameworks. • Compliance and operations can coexist effectively with careful planning and execution. 15
  • 16. 16 Business System Common Financial Control Area Estimating Bids, estimates, proposals, audits of estimates Earned Value Management Revenue recognition Material Management Inventory control and year-end counts Accounting Financial reporting and audits Indirect and Other Direct Costs Depreciation, allocations Compensation Pay authorizations, HR compensation assessments Billing Cash Labor Payroll, timekeeping, employee verification Information Technology SOX IT controls Purchasing Reviews of payables, accruals, vendor master files, authorizations Property Asset control and physical verifications
  • 17. Example – Procurement/Purchasing DFARS — Purchasing • Policies and procedures meet regulatory requirements and are followed in practice. • Purchases are all approved per company policy. • Due diligence of suppliers is completed (e.g., reps and certs). Procurement controls • Policies and procedures exist to define procurement authority thresholds. • System limits purchase orders to approved vendors. 17
  • 18. Example – Labor/Timekeeping • DFARS labor controls and existing payroll/timekeeping controls both require: • Employees to timely and accurately use timekeeping systems with supervisor approval on regular basis • Reconciliations between timekeeping, labor, and general ledger • Timely removal of access for terminated employees • Ethics/violation hotlines available and employees aware • Training for timekeeping and other essential job skills provided 18
  • 19. Example – Estimating System and Bid and Proposals Controls • DFARS Estimating System and existing bid/proposal controls both require: • Adequate review and approval of all offers to potential customers for scope, terms and conditions, etc. • Adequate policies and procedures exist to provide complete, accurate and consistent offers • Accurate, updated and communicated delegations of authority 19
  • 22. Advantages • Reduction of duplicate efforts • Policies and procedures • Internal control documentation • Control design and operating effectiveness • Substantive testing and remediation • Preparation for external reviews • Decreases internal audit and consulting costs • Increased internal audit efficiencies • Provides baseline for external consultants • Can perform self-assessments • Allows government to rely on internally developed reviews 22
  • 23. Self-Assessments • Contractors having increased success with self-assessments • Allows government to rely on internally developed reviews • Decreases internal audit and consulting costs • Increased internal audit efficiencies • Provides baseline for external consultants 23
  • 24. Other Areas of Control Integration • Other areas outside DFARS and common financial controls can also be integrated: 24 • Estimates-at-completion • Labor qualifications • Export controls • GSA Schedule price reductions • Service Contract Act/Davis-Bacon Act • EEOC and labor laws • Cybersecurity • Small-business subcontracting
  • 25. Traits of a Successful Integration • Clear ownership of compliance requirements • Embedding government requirements into internal control framework • Comprehensive enterprise risk management • Coordinated audit planning • Inter-organizational knowledge sharing • Singular internal control repository • Clear and functioning governance and oversight structure (e.g., policies, procedures, training, internal audit, reporting) 25