SlideShare a Scribd company logo

Internal Controls Topic 2.ppt

Download as PPT, PDF
Y
yahyamuthamia

Internal Controls

Education
1 of 25
PRINCIPLES OF INTERNAL CONTROL AND CORPORATE GOVERNANCE TOPIC: INTERNAL CONTROLS
INTERNAL CONTROLS MEANING OF INTERNAL CONTROLS Control refers to a set of activities used to guide, manage and regulate toward a directive. Internal controls refers to a skill developed and applied within a company, which uses judgement to assess and determine compliance. Internal controls refers to a program of activities established to catch and monitor a potential exposure that could result in a significant error, omission, misstatement or fraud. It is a means by which an organization’s resources are directed, monitored and measured. It plays an important role in detecting and preventing fraud and protecting the organization’s resources, both physical and intangible (e.g. reputation or intellectual property such as trademarks)
At the organization level, internal control objectives relate to the reliability of financial reporting, timely feedback on the achievement of operational or strategic goals and compliance with laws and regulations. At the specific transactional level, internal controls refers to the actions taken to achieve a specific objective (e.g. how to ensure the organization’s payments to third parties are for valid services rendered) Those who exercise internal control must have the power and authority to actuate and remediate findings.
CONCEPTS OF INTERNAL CONTROL  The most fundamental concepts of internal control include each of the mechanisms that make internal controls successful.  Internal control is basically a process, a means to an end.  It is affected by people and not policy manuals and forms. It is the people functioning at every level of the institution.  Internal control is expected to provide reasonable assurance to an institution leaders regarding achievement of operational, financial reporting compliance objectives.  Internal control is a tool used by the administration to plan, execute and monitor.
IMPORTANCE OF INTERNAL CONTROL. The importance of credibility in a company is priority number one. Internal controls exist to ensure reliable financial reporting, effective and efficient operations and compliance with applicable laws and regulations. Internal controls play a major role in that: 1.Prevention of Fraud. Internal controls prevent fraud, detects fraud and protects tangible and intangible assets in an organization. This is achieved through segregation of duties which brings about credibility of tasks completed by employees in an organization.
2. Operating Environment. Internal controls promote strong daily operations that produce high quality goods and services at the lowest cost possible. This is achieved by limiting excessive inventory high equipment cost and excessive utilities which ensure that operational costs are maintained with a reasonable budget. 3. Risk Assessment. Every business decision comes with certain amounts of risk. Avoiding or mitigating this risk is achieved through strong internal controls. Controls that mitigate risk could include providing guidelines to avoid risky securities when generating cash from investment activities thus preventing long term negative effects on a company
4. Company Policies. Companies use policies to ensure a safe and profitable business environment. These policies are internal controls that help management in areas including human resources, community awareness and business-to-business relations Company Policies. 5. Performance Evaluation. Performance evaluation allows companies an opportunity to educate and review internal controls with employees on a regular basis. This teaches employees the value of achieving goals through adherence to company policy hence ensuring higher profitability for the company.
PRINCIPLES OF INTERNAL CONTROL SYSTEMS The principles of internal control are concepts that require management to set procedures in place to ensure company assets are safeguarded. In other words, these are the principles management uses to establish the ways to protect company assets. THE PRINCIPLES INCLUDE: a) Establishing responsibilities Responsibilities are important as it gives each individual a sense of ownership and ultimately a duty of care. Therefore, it is easier to hold someone accountable in the misappropriation of organisational assets
b) Maintaining records Maintaining records assists one in locating the where about of different company assets and also allow one to monitor how transactions are taking place within the organisation i.e. flow of assets within the business c) Insuring assets It is important to insure assets so as to make sure that in case of loss, damage or theft, the organisation will not suffer any loss but with the help of insurance will be returned to their initial financial position
d) Segregation of duties Segregation of duties is very important in that it ensures that there is oversight and review to detect errors and it also helps to prevent fraud or theft. e) Mandatory employee rotation Mandatory job rotation is important as it reduces misappropriation of assets in that, because employees know another person will be assuming their duties and the new person will be likely to discover new patterns of behaviour. This reduces moral hazards.
f) Use of technological controls From burglar alarms, electronic keypads and other technology-based security features can help organisations protect assets. Smart companies supplement their internal control activities and systems with appropriate and cost effective technology g) Perform regular independent reviews on internal control systems. Companies must review their internal control systems and activities regularly. This should be done by an individual who did not perform the work being reviewed. An independent evaluator can provide internal control recommendation and objectively report on the work being done
COMPONENTS OF INTERNAL CONTROL 1. Control Environment Control environment is the attitude toward internal control and control consciousness established and maintained by the management and the employees of an organization. It is a product of management’s philosophy, style and supportive attitude as well as the competence, ethical values, integrity and morale of the organization’s people. The organization structure and accountability relationships are key factors in the control environment
Principles for the Control Environment - Demonstrates commitment to integrity and ethical values - Exercises oversight responsibility - Establishes structure, authority and responsibility - Demonstrates commitment to competence - Enforces accountability
2. Communication (Information) Communication is the exchange of useful information between and among people and organizations to support decisions and coordinate activities. Within an organization, information should be communicated to management and other employees who need it in a form and within a time frame that helps them to carry out their responsibilities. Communication also takes place with outside parties such as customers, suppliers and regulators. Principles for Communication and Information - Uses relevant information - Communicates internally - Communicates externally
. Risk Assessment Risks are events that threaten the accomplishment of objectives. They ultimately impact an organization’s ability to accomplish its mission. Risk assessment is the process of identifying, evaluating and determining how to manage these events. At every level within an organization there are both internal and external risks that could prevent the accomplishment of established objectives. Ideally, management should seek to prevent these risks. However, sometimes management cannot prevent the risk from occurring. In such cases, management should decide whether to accept the risk, reduce the risk to acceptable levels, or avoid the risk. To have reasonable assurance that the organization will achieve its objectives, management should ensure each risk is assessed and addressed appropriately
Principles for Risk Assessment - Specifies suitable objectives - Identifies and analyses risk - Assesses fraud risk - Identifies and analyses significant change Impact – Is generally beyond the organization’s control in the short-to-medium term. Likelihood – Is the main focus of an organization’s internal control What are the possible risks in your area of operations and what is the likely impact of each?
How to Deal With Risk Managing Risk - Accept the risk: Do not establish control activities - Prevent or reduce the risk: Establish control activities - Avoid the risk: Do not carry out the function Preventing or Reducing Risk - What is the cause of the risk? - What is the cost of control vs. the cost of the unfavorable event? - What is the priority of this risk?
Managing Risk during Change - What necessary training needs to be carried out? - What necessary review and oversight needs to be carried out during the period of change? 4. Control Activities Control activities are tools - both manual and automated - that help prevent or reduce the risks that can impede accomplishment of the organization’s objectives and mission. Management should establish control activities to effectively and efficiently accomplish the organization’s objectives and mission.
Principles for Control Activities - Selects and develops control activities - Selects and develops general controls over technology - Deploys through policies and procedures 5. Monitoring Monitoring is the review of an organization’s activities and transactions to assess the quality of performance over time and to determine whether controls are effective. Management should focus monitoring efforts on internal control and achievement of organization objectives. For monitoring to be most effective, all employees need to understand the organization’s mission, objectives, and responsibilities and risk tolerance levels.
Principles for Monitoring - Conducts ongoing and/or separate evaluations - Evaluates and communicates deficiencies
LIMITATIONS OF INTERNAL CONTROL SYSTEMS Internal controls help you keep your business operating smoothly and ensures that your financial records can be trusted. They are an important part in building a trustworthy and reliable company. However, internal controls can’t guarantee that everything will go according to plan. Although they are measures put in place to make certain things happen, your internal controls have limitations that can make them ineffective
Collusion Internal control systems can be compromised if multiple employees work together to perform fraud. Although each employee may face internal controls that limit what they can do by themselves, they can go around this limit by pairing with someone who can. One of your employees may be authorized to enter a voucher into your accounting system but isn’t allowed to print cheques. Another employee may be authorized to print cheques but can’t set up to enter vouchers. If these two employees work together, they can overcome the limits each one faces individually to produce a fake cheque. There’s no way to overcome collusion other than having trustworthy employees.
Incorrect Judgment A lot of your internal controls are set up based on your professional judgment. You put cash in your vault because you judge cash to be something someone would want to steal. You hire staff based on how you evaluate their character. You judge what responsibilities to give each of your workers based on how well you believe they can do their jobs. Because setting up internal controls isn’t an exact science, you have to rely on the information you have and try to set up the best rules and processes. Sometimes, your professional judgment is wrong, you fail to set up an internal control, or you don’t assign the right task to the right employee. Continually research and learn the best internal control practices to overcome this limitation
Failure to Train Employees Internal controls are only as strong as your employees’ understanding of IC system. Training your employees on what they’re supposed to do is a critical function of making internal controls work. Although your employees don’t need to know the reasons why you’re setting up each internal control, you must let them know their duties, the purpose of the limits put and the consequences. Employees should also know general practices on how to uphold internal controls. For example, everyone in your business should know their passwords, how to set strong passwords and that they shouldn’t keep written trails of their login information.
Management Override A common practice of internal controls is to override the control. Although you may have policies and procedures in place, there may be exceptions to the rule where people are allowed to skip certain steps. For example, imagine that you have an employee with the authorization to approve invoices up to Kes 5million. If you’re on vacation and an important invoice arrives for Kes 6million, the employee may decide to override the company’s internal control policy to approve the invoice and get it paid. Although these situations may not produce bad results, an auditor will question inconsistency ICs. Having an internal auditor can help you understand where your controls are falling short or being misused. Although it’s great to have

Recommended

Information system control and audit
Information system control and auditInformation system control and audit
Information system control and auditAstri Stiawaty
 
INTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxINTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxHeldaMaryA
 
FIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptFIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptKinhDoanhKhoaKinhTe
 
FIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptFIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptssusere1a0f0
 
FIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptFIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptbm6tkbry4q
 
Finance Internal_Controls presentation ppt
Finance Internal_Controls presentation pptFinance Internal_Controls presentation ppt
Finance Internal_Controls presentation pptbm6tkbry4q
 
Advanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxAdvanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxseidIbrahim2
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditorsminkhollow
 

Recommended

Information system control and audit
Information system control and auditInformation system control and audit
Information system control and auditAstri Stiawaty
 
INTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxINTERNAL CONTROL-PPT.pptx
INTERNAL CONTROL-PPT.pptxHeldaMaryA
 
FIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptFIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptKinhDoanhKhoaKinhTe
 
FIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptFIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptssusere1a0f0
 
FIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptFIN-Internal_Controls_Primer_Presentation.ppt
FIN-Internal_Controls_Primer_Presentation.pptbm6tkbry4q
 
Finance Internal_Controls presentation ppt
Finance Internal_Controls presentation pptFinance Internal_Controls presentation ppt
Finance Internal_Controls presentation pptbm6tkbry4q
 
Advanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxAdvanced auditing Chapter Five.Internal control pptx
Advanced auditing Chapter Five.Internal control pptxseidIbrahim2
 
Risk Assessment For Internal Auditors
Risk Assessment For Internal AuditorsRisk Assessment For Internal Auditors
Risk Assessment For Internal Auditorsminkhollow
 
Assessing risks and internal controls training
Assessing risks and internal controls trainingAssessing risks and internal controls training
Assessing risks and internal controls trainingshifataraislam
 
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.pptDECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt1111964
 
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.pptANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt1111964
 
Designing Effective Financial Controls
Designing Effective Financial ControlsDesigning Effective Financial Controls
Designing Effective Financial ControlsStephen G. Lynch
 
The Internal Audit Framework
The Internal Audit FrameworkThe Internal Audit Framework
The Internal Audit FrameworkAhmad Tariq Bhatti
 
Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraJenard Wachira
 
topic 3 internal controls..audit.pptx
topic 3 internal controls..audit.pptxtopic 3 internal controls..audit.pptx
topic 3 internal controls..audit.pptxvailethmwaisanila
 
Internal control and Control Self Assessment
Internal control and Control Self AssessmentInternal control and Control Self Assessment
Internal control and Control Self AssessmentManoj Agarwal
 
Management control
Management controlManagement control
Management controlMohsin Aslam
 
Internal control
Internal controlInternal control
Internal controliPleaders - Re-engineering Legal education, New Delhi
 
Significance of Internal Controls
Significance of Internal ControlsSignificance of Internal Controls
Significance of Internal ControlsSonuBhojwani1
 
Frequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiFrequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiManeesha35
 
Risk based auditing
Risk based auditingRisk based auditing
Risk based auditingTunde Elijah Kelani
 
Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal controlRadhika Gohel
 
Spire Brief - Risk Consulting
Spire Brief - Risk ConsultingSpire Brief - Risk Consulting
Spire Brief - Risk ConsultingPrashant Jain
 
Internal auditing
Internal auditingInternal auditing
Internal auditingIndrajit Roy Choudhury
 
Internal Control COSO
Internal Control COSOInternal Control COSO
Internal Control COSOJesús Gándara
 
Internal auditing for “one & all” (second edition)
Internal auditing for “one & all” (second edition)Internal auditing for “one & all” (second edition)
Internal auditing for “one & all” (second edition)Mohammad Wahid Abdullah Khan
 
Implementing Internal Audit Governance
Implementing Internal Audit GovernanceImplementing Internal Audit Governance
Implementing Internal Audit GovernanceAswin Kumar
 
Governance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsGovernance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsIyad Mourtada, CMA, CIA, CFE, CCSA, CRMA, CPLP
 
Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Celine George
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxChelloAnnAsuncion2
 

More Related Content

Similar to Internal Controls Topic 2.ppt

Assessing risks and internal controls training
Assessing risks and internal controls trainingAssessing risks and internal controls training
Assessing risks and internal controls trainingshifataraislam
 
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.pptDECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt1111964
 
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.pptANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt1111964
 
Designing Effective Financial Controls
Designing Effective Financial ControlsDesigning Effective Financial Controls
Designing Effective Financial ControlsStephen G. Lynch
 
Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraJenard Wachira
 
topic 3 internal controls..audit.pptx
topic 3 internal controls..audit.pptxtopic 3 internal controls..audit.pptx
topic 3 internal controls..audit.pptxvailethmwaisanila
 
Internal control and Control Self Assessment
Internal control and Control Self AssessmentInternal control and Control Self Assessment
Internal control and Control Self AssessmentManoj Agarwal
 
Management control
Management controlManagement control
Management controlMohsin Aslam
 
Significance of Internal Controls
Significance of Internal ControlsSignificance of Internal Controls
Significance of Internal ControlsSonuBhojwani1
 
Frequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiFrequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiManeesha35
 
Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal controlRadhika Gohel
 
Spire Brief - Risk Consulting
Spire Brief - Risk ConsultingSpire Brief - Risk Consulting
Spire Brief - Risk ConsultingPrashant Jain
 
Internal auditing for “one & all” (second edition)
Internal auditing for “one & all” (second edition)Internal auditing for “one & all” (second edition)
Internal auditing for “one & all” (second edition)Mohammad Wahid Abdullah Khan
 
Implementing Internal Audit Governance
Implementing Internal Audit GovernanceImplementing Internal Audit Governance
Implementing Internal Audit GovernanceAswin Kumar
 

Similar to Internal Controls Topic 2.ppt (20)

Assessing risks and internal controls training
Assessing risks and internal controls trainingAssessing risks and internal controls training
Assessing risks and internal controls training
 
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.pptDECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
DECEMBER INTERNAL CONTROL FOR EFFICIENT AND EFFECTIVE SERVICE DELIVERY-1.ppt
 
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.pptANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
ANATOMY OF FINANCIAL PROCESSES IN PUBLIC SECTOR.ppt
 
Designing Effective Financial Controls
Designing Effective Financial ControlsDesigning Effective Financial Controls
Designing Effective Financial Controls
 
The Internal Audit Framework
The Internal Audit FrameworkThe Internal Audit Framework
The Internal Audit Framework
 
Internal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo WachiraInternal Audit And Internal Control Presentation Leo Wachira
Internal Audit And Internal Control Presentation Leo Wachira
 
topic 3 internal controls..audit.pptx
topic 3 internal controls..audit.pptxtopic 3 internal controls..audit.pptx
topic 3 internal controls..audit.pptx
 
Internal control and Control Self Assessment
Internal control and Control Self AssessmentInternal control and Control Self Assessment
Internal control and Control Self Assessment
 
Management control
Management controlManagement control
Management control
 
Internal control
Internal controlInternal control
Internal control
 
Significance of Internal Controls
Significance of Internal ControlsSignificance of Internal Controls
Significance of Internal Controls
 
Frequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubaiFrequently asked questions on auditing in dubai
Frequently asked questions on auditing in dubai
 
Risk based auditing
Risk based auditingRisk based auditing
Risk based auditing
 
Unit 3 internal control
Unit 3 internal controlUnit 3 internal control
Unit 3 internal control
 
Spire Brief - Risk Consulting
Spire Brief - Risk ConsultingSpire Brief - Risk Consulting
Spire Brief - Risk Consulting
 
Internal auditing
Internal auditingInternal auditing
Internal auditing
 
Internal Control COSO
Internal Control COSOInternal Control COSO
Internal Control COSO
 
Internal auditing for “one & all” (second edition)
Internal auditing for “one & all” (second edition)Internal auditing for “one & all” (second edition)
Internal auditing for “one & all” (second edition)
 
Implementing Internal Audit Governance
Implementing Internal Audit GovernanceImplementing Internal Audit Governance
Implementing Internal Audit Governance
 
Governance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge ElementsGovernance, Risk, and Control Knowledge Elements
Governance, Risk, and Control Knowledge Elements
 

Recently uploaded

Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Celine George
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxChelloAnnAsuncion2
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxEyham Joco
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...JhezDiaz1
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxiammrhaywood
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatYousafMalik24
 
How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17Celine George
 
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfAMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfphamnguyenenglishnb
 
AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.arsicmarija21
 
ENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choomENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choomnelietumpap1
 
Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceSamikshaHamane
 
Romantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptxRomantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptxsqpmdrvczh
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTiammrhaywood
 
Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Celine George
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPCeline George
 
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdfLike-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdfMr Bounab Samir
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxpboyjonauth
 
Planning a health career 4th Quarter.pptx
Planning a health career 4th Quarter.pptxPlanning a health career 4th Quarter.pptx
Planning a health career 4th Quarter.pptxLigayaBacuel1
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 

Recently uploaded (20)

Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17Field Attribute Index Feature in Odoo 17
Field Attribute Index Feature in Odoo 17
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptx
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice great
 
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
 
How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17
 
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfAMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
 
AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.
 
ENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choomENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choom
 
Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in Pharmacovigilance
 
Romantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptxRomantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptx
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
 
Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERP
 
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdfLike-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptx
 
Planning a health career 4th Quarter.pptx
Planning a health career 4th Quarter.pptxPlanning a health career 4th Quarter.pptx
Planning a health career 4th Quarter.pptx
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 

Internal Controls Topic 2.ppt

  • 1. PRINCIPLES OF INTERNAL CONTROL AND CORPORATE GOVERNANCE TOPIC: INTERNAL CONTROLS
  • 2. INTERNAL CONTROLS MEANING OF INTERNAL CONTROLS Control refers to a set of activities used to guide, manage and regulate toward a directive. Internal controls refers to a skill developed and applied within a company, which uses judgement to assess and determine compliance. Internal controls refers to a program of activities established to catch and monitor a potential exposure that could result in a significant error, omission, misstatement or fraud. It is a means by which an organization’s resources are directed, monitored and measured. It plays an important role in detecting and preventing fraud and protecting the organization’s resources, both physical and intangible (e.g. reputation or intellectual property such as trademarks)
  • 3. At the organization level, internal control objectives relate to the reliability of financial reporting, timely feedback on the achievement of operational or strategic goals and compliance with laws and regulations. At the specific transactional level, internal controls refers to the actions taken to achieve a specific objective (e.g. how to ensure the organization’s payments to third parties are for valid services rendered) Those who exercise internal control must have the power and authority to actuate and remediate findings.
  • 4. CONCEPTS OF INTERNAL CONTROL  The most fundamental concepts of internal control include each of the mechanisms that make internal controls successful.  Internal control is basically a process, a means to an end.  It is affected by people and not policy manuals and forms. It is the people functioning at every level of the institution.  Internal control is expected to provide reasonable assurance to an institution leaders regarding achievement of operational, financial reporting compliance objectives.  Internal control is a tool used by the administration to plan, execute and monitor.
  • 5. IMPORTANCE OF INTERNAL CONTROL. The importance of credibility in a company is priority number one. Internal controls exist to ensure reliable financial reporting, effective and efficient operations and compliance with applicable laws and regulations. Internal controls play a major role in that: 1.Prevention of Fraud. Internal controls prevent fraud, detects fraud and protects tangible and intangible assets in an organization. This is achieved through segregation of duties which brings about credibility of tasks completed by employees in an organization.
  • 6. 2. Operating Environment. Internal controls promote strong daily operations that produce high quality goods and services at the lowest cost possible. This is achieved by limiting excessive inventory high equipment cost and excessive utilities which ensure that operational costs are maintained with a reasonable budget. 3. Risk Assessment. Every business decision comes with certain amounts of risk. Avoiding or mitigating this risk is achieved through strong internal controls. Controls that mitigate risk could include providing guidelines to avoid risky securities when generating cash from investment activities thus preventing long term negative effects on a company
  • 7. 4. Company Policies. Companies use policies to ensure a safe and profitable business environment. These policies are internal controls that help management in areas including human resources, community awareness and business-to-business relations Company Policies. 5. Performance Evaluation. Performance evaluation allows companies an opportunity to educate and review internal controls with employees on a regular basis. This teaches employees the value of achieving goals through adherence to company policy hence ensuring higher profitability for the company.
  • 8. PRINCIPLES OF INTERNAL CONTROL SYSTEMS The principles of internal control are concepts that require management to set procedures in place to ensure company assets are safeguarded. In other words, these are the principles management uses to establish the ways to protect company assets. THE PRINCIPLES INCLUDE: a) Establishing responsibilities Responsibilities are important as it gives each individual a sense of ownership and ultimately a duty of care. Therefore, it is easier to hold someone accountable in the misappropriation of organisational assets
  • 9. b) Maintaining records Maintaining records assists one in locating the where about of different company assets and also allow one to monitor how transactions are taking place within the organisation i.e. flow of assets within the business c) Insuring assets It is important to insure assets so as to make sure that in case of loss, damage or theft, the organisation will not suffer any loss but with the help of insurance will be returned to their initial financial position
  • 10. d) Segregation of duties Segregation of duties is very important in that it ensures that there is oversight and review to detect errors and it also helps to prevent fraud or theft. e) Mandatory employee rotation Mandatory job rotation is important as it reduces misappropriation of assets in that, because employees know another person will be assuming their duties and the new person will be likely to discover new patterns of behaviour. This reduces moral hazards.
  • 11. f) Use of technological controls From burglar alarms, electronic keypads and other technology-based security features can help organisations protect assets. Smart companies supplement their internal control activities and systems with appropriate and cost effective technology g) Perform regular independent reviews on internal control systems. Companies must review their internal control systems and activities regularly. This should be done by an individual who did not perform the work being reviewed. An independent evaluator can provide internal control recommendation and objectively report on the work being done
  • 12. COMPONENTS OF INTERNAL CONTROL 1. Control Environment Control environment is the attitude toward internal control and control consciousness established and maintained by the management and the employees of an organization. It is a product of management’s philosophy, style and supportive attitude as well as the competence, ethical values, integrity and morale of the organization’s people. The organization structure and accountability relationships are key factors in the control environment
  • 13. Principles for the Control Environment - Demonstrates commitment to integrity and ethical values - Exercises oversight responsibility - Establishes structure, authority and responsibility - Demonstrates commitment to competence - Enforces accountability
  • 14. 2. Communication (Information) Communication is the exchange of useful information between and among people and organizations to support decisions and coordinate activities. Within an organization, information should be communicated to management and other employees who need it in a form and within a time frame that helps them to carry out their responsibilities. Communication also takes place with outside parties such as customers, suppliers and regulators. Principles for Communication and Information - Uses relevant information - Communicates internally - Communicates externally
  • 15. . Risk Assessment Risks are events that threaten the accomplishment of objectives. They ultimately impact an organization’s ability to accomplish its mission. Risk assessment is the process of identifying, evaluating and determining how to manage these events. At every level within an organization there are both internal and external risks that could prevent the accomplishment of established objectives. Ideally, management should seek to prevent these risks. However, sometimes management cannot prevent the risk from occurring. In such cases, management should decide whether to accept the risk, reduce the risk to acceptable levels, or avoid the risk. To have reasonable assurance that the organization will achieve its objectives, management should ensure each risk is assessed and addressed appropriately
  • 16. Principles for Risk Assessment - Specifies suitable objectives - Identifies and analyses risk - Assesses fraud risk - Identifies and analyses significant change Impact – Is generally beyond the organization’s control in the short-to-medium term. Likelihood – Is the main focus of an organization’s internal control What are the possible risks in your area of operations and what is the likely impact of each?
  • 17. How to Deal With Risk Managing Risk - Accept the risk: Do not establish control activities - Prevent or reduce the risk: Establish control activities - Avoid the risk: Do not carry out the function Preventing or Reducing Risk - What is the cause of the risk? - What is the cost of control vs. the cost of the unfavorable event? - What is the priority of this risk?
  • 18. Managing Risk during Change - What necessary training needs to be carried out? - What necessary review and oversight needs to be carried out during the period of change? 4. Control Activities Control activities are tools - both manual and automated - that help prevent or reduce the risks that can impede accomplishment of the organization’s objectives and mission. Management should establish control activities to effectively and efficiently accomplish the organization’s objectives and mission.
  • 19. Principles for Control Activities - Selects and develops control activities - Selects and develops general controls over technology - Deploys through policies and procedures 5. Monitoring Monitoring is the review of an organization’s activities and transactions to assess the quality of performance over time and to determine whether controls are effective. Management should focus monitoring efforts on internal control and achievement of organization objectives. For monitoring to be most effective, all employees need to understand the organization’s mission, objectives, and responsibilities and risk tolerance levels.
  • 20. Principles for Monitoring - Conducts ongoing and/or separate evaluations - Evaluates and communicates deficiencies
  • 21. LIMITATIONS OF INTERNAL CONTROL SYSTEMS Internal controls help you keep your business operating smoothly and ensures that your financial records can be trusted. They are an important part in building a trustworthy and reliable company. However, internal controls can’t guarantee that everything will go according to plan. Although they are measures put in place to make certain things happen, your internal controls have limitations that can make them ineffective
  • 22. Collusion Internal control systems can be compromised if multiple employees work together to perform fraud. Although each employee may face internal controls that limit what they can do by themselves, they can go around this limit by pairing with someone who can. One of your employees may be authorized to enter a voucher into your accounting system but isn’t allowed to print cheques. Another employee may be authorized to print cheques but can’t set up to enter vouchers. If these two employees work together, they can overcome the limits each one faces individually to produce a fake cheque. There’s no way to overcome collusion other than having trustworthy employees.
  • 23. Incorrect Judgment A lot of your internal controls are set up based on your professional judgment. You put cash in your vault because you judge cash to be something someone would want to steal. You hire staff based on how you evaluate their character. You judge what responsibilities to give each of your workers based on how well you believe they can do their jobs. Because setting up internal controls isn’t an exact science, you have to rely on the information you have and try to set up the best rules and processes. Sometimes, your professional judgment is wrong, you fail to set up an internal control, or you don’t assign the right task to the right employee. Continually research and learn the best internal control practices to overcome this limitation
  • 24. Failure to Train Employees Internal controls are only as strong as your employees’ understanding of IC system. Training your employees on what they’re supposed to do is a critical function of making internal controls work. Although your employees don’t need to know the reasons why you’re setting up each internal control, you must let them know their duties, the purpose of the limits put and the consequences. Employees should also know general practices on how to uphold internal controls. For example, everyone in your business should know their passwords, how to set strong passwords and that they shouldn’t keep written trails of their login information.
  • 25. Management Override A common practice of internal controls is to override the control. Although you may have policies and procedures in place, there may be exceptions to the rule where people are allowed to skip certain steps. For example, imagine that you have an employee with the authorization to approve invoices up to Kes 5million. If you’re on vacation and an important invoice arrives for Kes 6million, the employee may decide to override the company’s internal control policy to approve the invoice and get it paid. Although these situations may not produce bad results, an auditor will question inconsistency ICs. Having an internal auditor can help you understand where your controls are falling short or being misused. Although it’s great to have