Chapter 6 IC-Internal Control Through COSO
Chapter 6 IC-Internal Control Through COSO
Establishing Internal
Controls Through COSO
A system of strong internal controls has been and continues to be
the basis for effective operational and accounting business
processes.
Operations objectives:
Focus on the effectiveness and efficiency of the organizations
operations, including operations and financial performance goals and
safeguarding assets against loss.
Are the controls set by the organization has been properly designed
and are they operating effectively? Are your organization’s operation
procedures efficient? Are the operational and financial performance
goals realistic? Does it safeguard assets against risk and loss?
ensure achievement of organization’s objectives (profit
maximization, increase market share, etc.…)
To ensure the optimum utilization of the firm’s resources, i.e.
men, material, machine and money.
Is the most difficult to achieve as it is influenced by:
• Based on judgment to set the necessary criteria
• External factors such as economic conditions, political factors and
technology development.
Reporting objectives:
Examples:
Code of conduct
Tone at the top & communication
Attitudes toward Ethical Values.
2-Commitment to Competence
For internal control to operate effectively,
properly trained personnel must be
performing appropriate tasks.[e.g. Credit manager]
Risk-Analysis Methods:
• First identify the threats.
• Risk analysis can be performed in one of two basic methods:
.Factors to be considered:
• Monitoring should be ongoing
• Separate evaluations take place
• Findings are resolved
II. COSO Internal Control Elements:
5- Monitoring:
Monitoring of grantees by reviewing and using the
Single Audit reports to help assess grantee
performance
• Monitoring contractor performance against terms
and conditions of contract
• Monitoring usage of cell phones
• Communications from external parties.
• Enterprise structure and supervisory activities,
routinely review and correct lower-level errors ,
assure improved clerical employee performance.
II. COSO Internal Control Elements:
5- Monitoring:
Factors to be considered
• Monitoring should be ongoing
• Separate evaluations take place
• Findings are resolved
II. COSO Internal Control Elements:
5- Monitoring:
• Financial statement auditors
• Peer reviews
• Inspector General/Public Auditor
• Management control reviews
• Physical inventories and asset reconciliation
II. COSO Internal Control Elements:
5- Monitoring:
Factors to be considered:
• Monitoring should be ongoing
• Separate evaluations take place
• Findings are resolved
Evaluating the system of internal controls: an
overview
Management Responsibility to place
adequate and effective operating entity-
level and activity-level controls to mitigate
risks of the achievement of business
objectives as defined by the COSO
framework (operations, reporting, and
compliance.
The internal audit function independently
validates management’s results and submits
a report to the audit committee outlining
the results of management’s assessment
regarding the ICFR.
Evaluating the system of internal controls: an
overview
Sarbanes-Oxley additionally requires
management of registered organizations
with the SEC to publicly report on the
reliability of ICFR.
Entity-wide and business process control
activities are designed to provide reasonable
assurance of the financial reporting
assertion reliability objectives are achieved
(recognition, measurement, presentation,
and disclosure of accounts).
Evaluating the system of internal controls: an
overview
Five basic financial statement assertions are:
Transactions (revenues, Balances
expenses)
Occurrence(are they real) Existing (real)
Accuracy (right $ amount) Valuation $ Allocation (are items
recorded amount and type ST &
LT)