Professional Documents
Culture Documents
All Ppts. Mods1 9 PDF
All Ppts. Mods1 9 PDF
All Ppts. Mods1 9 PDF
Governance
GOVERNANCE, BUSINESS ETHICS, RISK MANAGEMENT, AND INTERNAL
CONTROL
Corporate Governance
The process whereby elements in society wield power, authority and
influence, and enact policies and decisions concerning public life and
social upliftment.
It is the process of decision making and the process by which decisions are
implemented through the exercise of power or authority by leaders of the
country and organizations.
2. Self Assessment
Corporate governance enables firms to assess their behavior and actions
before they are scrutinized by regulatory agencies. Business establishments with
a strong corporate governance system are better able to limit exposure to
regulatory risks and fines.
Objectives of Corporate
Governance
3. Increase Shareholder’s Wealth
Protect the long-term interests of the shareholders. Firms with strong
corporate governance structure are seen to have higher valuation
attached to their shares by businessmen.
4. Transparency and Full Disclosure
Good corporate governance aims at ensuring higher degree of
transparency in an organization by encouraging full disclosure of
transactions in the company accounts.
Basic Principles of Corporate
Governance
Effective corporate governance is transparent, protects the rights of
shareholders and includes both strategic and operational risk
management.
It is concerned in both the long-term earning potential as well as actual
short-term earnings and holds directors accountable for their stewardship
of the business.
Basic Principles of Corporate
Governance
Principles of Corporate
Governance
1. Lay solid foundations for management and oversight
2. Structure the Board to add value
3. Promote ethical and responsible decision-making
4. Safeguard integrity in financial reporting
5. Make timely and balanced disclosure
6. Respect the rights of shareholders
7. Recognize and manage risk
8. Encourage enhanced performance
9. Remunerate fairly and responsibly
10. Recognize the legitimate interests of stakeholders
Relationship between Owners and
Other Stakeholders
The Shareholders want
accountability on
1. Financial Performance
2. Financial Transparency
3. Stewardship
4. Quality of Internal Control
5. Composition of the Board of Directors and the Nature of its Activities
Management Responsibility
Management has always had the primary responsibility for the accuracy
and completeness of an organization’s financial statements.
To show full commitment to the company, the directors should devote the
time and attention necessary to properly and effectively perform their
duties and responsibilities, including sufficient time to be familiar with the
corporation’s business.
Principle 5
Reinforcing Board Independence
The company should ensure that the material and reportable non-
financial and sustainability issues are disclosed.
Principle 11
Promoting a Comprehensive and Cost-efficient Access to Relevant
Information
The company should treat all shareholders fairly and equitably, and also
recognize, protect and facilitate the exercise of their rights.
DUTIES
TO
STAKEHOLDERS
Principle 14
Respecting Rights of Stakeholders and Effective Redress for Violation of
Stakeholder’s Rights
The company should be socially responsible in all its dealings with the
communities where it operates. It should ensure that its interactions serve
its environment and stakeholders in a positive and progressive manner that
is fully supportive of its comprehensive and balanced development.
Business Ethics
GOVERNANCE, BUSINESS ETHICS, RISK MANAGEMENT, AND INTERNAL
CONTROL
Ethics
Set of moral principles or values that govern the actions and decision of an
individual or group.
While personal ethics vary from individual to individual, most people within
a society are able to agree about what is considered ethical and
unethical behavior.
The need for ethics in society is sufficiently important that many commonly
held ethical values are incorporated into laws.
Involves making the moral and right decisions while engaging in such
business activities as manufacturing and selling a product and providing a
service to customer.
Other purposes:
1. To make businessmen realize that they cannot employ double
standards to the actions of other people and to their own actions.
2. To show business that common practices which they have thought to
be right because they see other businessmen doing it, are really wrong.
3. To serve as a standard or ideal upon which business conduct should be
based.
Scope and Impact of Business Ethics
Business ethics covers all conduct, behavior, and judgment in business. It
covers even acts that may be legal but which are wrong because they
violate ethical principles.
There is no uniform standards of right and wrong from which all business
may base their actions.
Economic Impact
Social Impact
Environmental Impact
Impact on Business Managers
Common Unethical Practices
1. Misrepresentation
A. Direct Misrepresentation (Product or Customers)
Deceptive Packaging
Misbranding
False Advertising
Adulteration
Weight Understatement
Measurement Understatement
Quantity Understatement
B. Indirect Misepresentation (Information about the product or service)
Caveat Emptor
Deliberate Withholding of Information
Passive Deception
Common Unethical Practices
2. Over Persuasion
Persuasion is the process of appealing to the emotions of a prospective
customers and urging him to buy an item of merchandise he needs.
Persuasion used for the sole benefit of selling a product without
considering the interest of the buyer is not ethical.
Common instances:
1. Urging customer to satisfy low priority need for merchandise.
2. Playing upon intense emotional agitation to convince a person to buy.
3. Convincing a person to buy what he does not need just because he
has the capacity or money to do so.
Unethical Practices of BOD
1. Plain gift
2. Interlocking Directorship
3. Insider Trading
4. Negligence of Duty
Unethical Practices of Executive
Officers and Lower Level Managers
1. Claiming a vacation trip to be a business trip
2. Having employees do work unrelated to the business
3. Loose or ineffective controls
4. Unfair labor practices
5. Making false claims about losses to free themselves from paying the
compensation and benefits provided by law
6. Making employees sign documents showing that they are receiving
fully what they are entitled to under the law when in fact they are only
receiving fraction of what they are supposed to get
7. Sexual Harassment
Unethical Practices of Employee
1. Conflict of Interest
2. Dishonesty
Ethical Dilemma
A situation a person faces in which a decision must be made about the
appropriate behavior.
Bribed and irregular payments in return for favorable judicial decision are
common.
Low salaries for judicial officials are said to perpetuate the problem of
bribery.
Police
There is a high risk of corruption when dealing with the police.
The national police force is widely regarded as one of the most corrupt
institutions in the country.
3 out of 5 business reported to give gifts in order ‘to get things done’, but
only 1 out of 10 reported expecting to give gifts get an operating license.
Multiple agencies are responsible for land administration, which has led to
overlapping procedures for land valuation and title registration.
Tax Administration
There is a high risk of corruption when dealing with the tax administration.
A business survey indicates that the BOC was the only agency receiving a
rating of very bad when it came to its commitment to fighting corruption.
Public Procurement
There is a very high risk of corruption in the public procurement sector,
which is subject to rampant corruption, irregularities, and inconsistent
implementation of legislation.
More than a fifth of businesses report they expect to give gifts in order to
win a government contract.
The initiative aims to help in diminishing, if not fully eradicating, the vicious
cycle of corruption in the Philippines, which has not only exacerbated
poverty but also obstructed the development of a competitive business
environment that operates on a level playing field.
High
Moderate
Low
Risk Associated with Investments
Business Risk
Financial Risk
Liquidity Risk
Default Risk
Interest Rate Risk
Management Risk
Purchasing Power Risk
Risk Associated with Manufacturing,
Trading, and Service
Market Risk
Operations Risk
Financial Risk
Business Risk
Risk Associated with Financial Institutions
Liquidity Risk
Market Risk
Credit Risk
Market Liquidity Risk
Hedged Position Risk
Portfolio Exposure Risk
Derivative Risk
Accounting Information Risk
Financial Reporting Risk
Potential Risk Treatments
Risk Avoidance
Risk Reduction
Risk Sharing
Risk Retention
Areas of Risk Management
1. Enterprise risk management
2. Risk management activities as applied to project management
3. Risk management for megaprojects
4. Risk management of information technology
5. Risk management techniques in petroleum and natural gas
Risk Management Framework
Process of Risk Management
1. Establishing the Context
A. Identification of risk in a selected domain of interest
B. Planning the remainder of the process
C. Mapping out
D. Defining a framework for the activity and an agenda for identification
E. Developing an analysis of risks involved in the process
F. Mitigation or solution of risks using available technological, human, and
organizational resources.
Process of Risk Management
2. Identification of Potential Risk
A. Objective based risk
B. Scenario based risk
C. Taxanomy based risk
D. Common risk checking
E. Risk charting
Process of Risk Management
3. Risk Assessment
Potential severity of impact and the probability of occurrence must be
assessed. The assessment is critical to make the best educated decisions in
prioritizing the implementation of the risk management plan.
Risk Management Process
Steps in Risk Management Process
1. Set up a separate risk management committee chaired by a board
member
2. Ensure that a formal comprehensive risk management system is in
place
3. Assess whether the formal system possesses the necessary elements.
4. Evaluate the effectiveness of the various steps in the assessment of the
comprehensive risks faced by the business firm
5. Assess if management has developed and implemented the suitable
risk management strategies and evaluate their effectiveness
Steps in Risk Management Process
6. Evaluate if management has designed and implemented risk
management capabilities
7. Assess management’s efforts to monitor overall company risk
management performance and to improve continuously the firm’s
capabilities
8. See to it that best practices as well as mistakes are shared by all
9. Assess regularly the level of sophistication of the firm’s risk management
system
10. Hire experts when needed
Reducing and
Managing Business
Risks
GOVERNANCE, BUSINESS ETHICS, RISK MANAGEMENT, AND INTERNAL
CONTROL
Nature of Risk
Successful businessmen and decision-makers make sure that the risks
resulting from their decisions are measured, understood, and eliminated if
possible.
There is also an opportunity cost associated with risk. Avoiding a risk may
mean avoiding a potentially big opportunity. Sometimes the greatest risk is
to do nothing.
Understand Why Risks
Become Reality
Once risks are identified, they can be ranked accordingly to their potential
impact and likelihood of them occurring.
Improve profitability
Avoid pitfalls in making financial decisions
Reduce financial riskk
Improving Profitability
Certain skills will ensure that decisions are focused on commercial success.
Variance Analysis
Assessment of Market Entry and Exit Barriers
Break-even Analysis
Controlling Costs
Avoiding Pitfalls
Many managers have financial responsibilities and their decisions will often
be influenced by an impact on other parts of the business.
✤ COSO definition
✤ Operations Objectives—The effectiveness and efficiency of the entity’s operations, including operational and
financial performance goals, and safeguarding assets against loss.
✤ Compliance Objectives—The adherence to laws and regulations to which the entity is subject.
Internal Control System
✤ Internal Control System means all the policies and procedures (internal controls)
adopted by the management of an entity to assist in achieving management’s objective
of ensuring, as far as practicable:
✤ safeguarding of assets
✤ The board of directors demonstrates independence from management and exercises oversight of the
development and performance of internal control.
✤ Management establishes, with board oversight, structures, reporting lines, and appropriate authorities
and responsibilities in the pursuit of objectives.
✤ The organization demonstrates a commitment to attract, develop, and retain competent individuals in
alignment with objectives.
✤ The organization holds individuals accountable for their internal control responsibilities in the pursuit of
objectives.
Risk Assessment Principles
✤ The organization specifies objectives with sufficient clarity to enable the identification and
assessment of risks relating to objectives.
✤ The organization identifies risks to the achievement of its objectives across the entity and
analyzes risks as a basis for determining how the risks should be managed.
✤ The organization considers the potential for fraud in assessing risks to the achievement of
objectives.
✤ The organization identifies and assesses changes that could significantly impact the system of
internal control.
Control Activities Principles
✤ The organization selects and develops control activities that contribute to the
mitigation of risks to the achievement of objectives to acceptable levels.
✤ The organization selects and develops general control activities over technology to
support the achievement of objectives.
✤ The organization deploys control activities through policies that establish what is
expected and procedures that put policies into action.
Information and Communication Principles
✤ The organization communicates with external parties regarding matters affecting the
functioning of internal control.
Monitoring Activities Principles
✤ Requires that each of the five components and relevant principles is present and functioning.
✤ “Present” - the components and relevant principles exist in the design and
implementation of the system of internal control.
✤ “Functioning” - the components and relevant principles continue to exist in the operations
and conduct of the system of internal control to achieve specified objectives.
✤ Understands the extent to which operations are managed effectively and efficiently when
external events may have a significant impact on the achievement of objectives
✤ Prepares reports in conformity with applicable rules, regulations, and standards or with the
entity’s specified reporting objectives
✤ Internal control cannot prevent bad judgment or decisions, or external events that can cause an
organization to fail to achieve its operational goals. Their are inherent limitations from
✤ Ability of management, other personnel, and/or third parties to circumvent controls through
collusion
✤ Internal Audit cannot provide assurance on internal control if auditors do not understand of the
main elements of internal control
✤ Internal Auditors need a thorough understanding of the different ways of ensuring effective
internal control and the type and nature of controls in operation for example, Preventative and
Detective Controls
✤ An understanding of the three lines of defence model can help IA explain the different roles of
IA and management in maintaining effective internal control
✤ Internal Audit can help managers understand that internal control is not just financial control but
Managerial Control in general
The three lines of defence model
Clerical Errors
Arise on account of negligence of the accounting staff. This type of error is
further divided as errors of omission, errors of Commission, duplicating errors
and compensating errors.
Types of Misstatements
1. Misstatements arising from misapplication of assets
Involve the theft of an entity's assets where the effect of the theft causes
the financial statements not to be presented, in all material respects, in
conformity with GAAP.
Misappropriation of assets can be accomplished in various ways, including
embezzling receipts, stealing assets, or causing an entity to pay for goods
or services that have not been received.
Misappropriation of assets may be accompanied by false or misleading
records or documents, possibly created by circumventing controls. The
scope of this section includes only those misappropriations of assets for
which the effect of the misappropriation causes the financial statements
not to be fairly presented, in all material respects, in conformity with GAAP.
Theft or defalcation
Types of Misstatements
2. Misstatements arising from Fraudulent Financial Reporting
Intentional misstatements or omissions of amounts or disclosures in financial
statements designed to deceive financial statement users where the
effect causes the financial statements not to be presented, in all material
respects, in conformity with generally accepted accounting principles
(GAAP). Fraudulent financial reporting may be accomplished by the
following:
Manipulation, falsification, or alteration of accounting records or
supporting documents from which financial statements are prepared
Misrepresentation in or intentional omission from the financial statements
of events, transactions, or other significant information
Intentional misapplication of accounting principles relating to amounts,
classification, manner of presentation, or disclosure
Element of Fraud Triangle
There are three conditions generally present when fraud
occurs
Attitudes/Rationalizations
Fraud
Triangle
Incentive Opportunity
Risk Factors Contributory to
Misappropriation of Assets
Embezzling receipts
Stealing physical assets or intellectual property
Causing an entity to pay for goods and services not received
Using an entity’s assets for personal use
Risk Factors Contributory to
Fraudulent Financial Reporting
Manipulation, falsification, or alteration of accounting records or
supporting documentation from which the financial statements are
prepared.
Misrepresentation in, or intentional omission from, the financial
statements of events, transactions or other significant information.
Intentional misapplication of accounting principles relating to amounts,
classification, manner of presentation, or disclosure.
Responsibility for Prevention &
Detection
Management Responsibility
Although AAS4 focuses on the auditor's responsibilities with respect to
fraud and error, the primary responsibility for the prevention and
detection of fraud and error rests with both those charged with
governance and the management of an entity. The respective
responsibilities may vary from entity to entity.
The management is responsible for establishing a control environment
and maintain policies and procedures by implementing and ensuring
continued operation of accounting and internal control systems, which
are designed to prevent fraud and error.
Such systems reduce but do not eliminate the risk of misstatements,
Accordingly, management assumes responsibility for any remaining
risk.
Responsibility for Prevention &
Detection
Auditor Responsibility
As regards the auditors’, the standard states that when planning and
performing audit procedures and evaluating and reporting the results
thereof, the auditor should consider the risk of material misstatements in
the financial statements resulting from fraud or error.
Inherent Limitations of an audit
An auditor cannot obtain absolute assurance that material
misstatements in the financial statements will be detected. The auditor
is able to obtain only a reasonable assurance that material
misstatements in the financial statements will be detected.
Yes
Errors Yes No (Audit No
Committee)
Yes Yes
Fraud Yes No (Audit (One level
Committee) above)
Yes Yes
Illegal Acts Yes No (Audit (One level
(Direct Effect) Committee) above)
ERRORS AND
IRREGULARITIES IN
THE TRANSACTION
CYCLES OF THE
BUSINESS ENTITY
Three Business Transaction Cycles
1. Sales and Collection Cycle
2. Acquisition and Payment Cycle
3. Payroll and Personnel Cycle
Sales and Collections Cycle
1. Errors in recording sales and collections transactions
2. Frauds in Sales and Collections
A. Fraudulent Financial Reporting
B. Misappropriation of Assets
1. Skimming
2. Lapping
3. Kiting
Acquisitions and Payments Cycle
1. Errors in the acquisitions and payments cycle
2. Frauds in the acquisitions and payments cycle
A. Paying for fictitious purchases
B. Receiving kickbacks
C. Purchasing goods for personal use
Payroll and Personal Cycle
1. Errors
2. Frauds involving Payroll
A. Fictitious employee
B. Excess payments to employees
C. Failure to record payroll
D. Inappropriate assignment of labor costs to inventory
Internal Controls
over Assets,
Liabilities and
Equity
GOVERNANCE, BUSINESS ETHICS, RISK MANAGEMENT, AND INTERNAL
CONTROL
Internal Control
The functions of the finance department and the accounting department
should be integrated in a manner that provides assurance that:
1. All cash that should have been received was in fact received,
recorded accurately, and deposited promptly.
2. Cash disbursements have been made for authorized purposes only
and have been properly recorded.
3. Cash balance are maintained at adequate, but not excessive, levels
by forecasting expected cash receipts and payments related to
normal operations. The need for obtaining loans for investing excess
cash is thus made known on a timely basis.
Guidelines over Cash
1. Do not permit any one employee to handle a transaction from beginning
to end.
2. Separate cash handling from record keeping.
3. Centralize receiving of cash to the extent practical.
4. Record cash receipts on a timely basis.
5. Encourage customers to obtain receipts and observe cash register totals.
6. Deposit cash receipts daily.
7. Make all disbursements by check or electronic fund transfer, with the
exception of small expenditures from petty cash.
8. Have monthly bank reconciliation prepared by employees not responsible
for the issuance of checks or custody of cash.
9. Monitor cash receipts and disbursements by comparing recorded
amounts to forecasted amounts and investigating variances from
forecasted amounts.
Cash Receipt
Potential Misstatements
Cash Receipts
1. Recording fictitious cash receipts
2. Failure to record receipts from cash sales
3. Failure to record cash from collection of accounts receivable
4. Early or late recognition of cash receipts (cut-off)
Cash Disbursement
Potential Misstatements
Disbursements
1. Inaccurate recording of a purchase or a disbursement
2. Duplicate recording and payment of purchases
3. Unrecorded disbursements
Controls over Financial Investments
1. Establishment of formal investment policies
2. Review and approval of investment activities by the investment
committee of the board of directors
3. Separation of duties among employees
A. Authorizing purchases and sales
B. Having custody of the securities
C. Maintaining records
4. Detailed records of all securities owned and the related revenue from
interest and dividends
5. Registration in the name of the company
6. Periodic physical inspection of securities
7. Determination of accounting for complex instruments by competent
personnel
Potential Misstatements
Financial Investments
1. Misstatement of recorded value of investments
2. Unauthorized investment transactions
3. Incomplete recording of investments
Controls over Receivables
Accounts receivable include not only claims against customers arising
from the sale of goods or services, but also a variety of miscellaneous
claims such as loans to officers or employees, loans to subsidiaries, claims
against various other films, claims for tax refunds and advantages to
suppliers.
Potential Misstatements
Accounts Receivables / Revenue
1. Recording of unearned revenue
2. Early (late) recognition of revenue (cut-off)
3. Recording revenue when significant uncertainties exist
4. Recording revenue when significant services still must be performed by
seller
5. Overestimation of the amount of revenue earned.
Controls over Inventories
Inventories include:
1. Goods on hand ready for sale, whether the merchandise of a trading
concern or the finished goods as manufacturer
2. Goods in the process of production
3. Goods to be consumed directly or indirectly in production, such as raw
materials, purchased parts, and supplies.
Potential Misstatements
Inventory / COGS
1. Misstatement of inventory costs
2. Misstatement of inventory quantities
3. Early (late) recognition of purchases (cut-off)
Controls over
Property, Plant and Equipment
Three major groups:
1. Land
2. Building, machinery, equipment, and land improvements
3. Natural resources
Potential Misstatements
Property, Plant and Equipment
1. Misstatement of acquisition of PPE
2. Failure to record retirements of PPE
3. Improper reporting of unusual transactions
Controls over
Accounts Payable
Accounts payable is used to describe short-term obligations arising from
the purchase of goods and services in the ordinary course of business.