Professional Documents
Culture Documents
XYZ Co Ltd-Risk Control Matrix Cash & Bank: Blog
XYZ Co Ltd-Risk Control Matrix Cash & Bank: Blog
Manufacturing Units
Unauthorized cash All cash & bank transactions
Sales Office
& Bank transaction are made against proper
Zonal Office supportings
Cash transactions are made as
per the cash policy of the
company.
Manufacturing Units
Zonal Office
Cash at site is safe guarded
Theft or
misappropriation of
Manufacturing Units
cash
Sales Office
Zonal Office
Author: CA.Palash Roy; Email- palasroy@gmail.com
https://cisaforaccountantsschool.wordpress.com
Control Activity
All Bank and cash transactions are authorised.( Authorisation as per the Authorization Matrxi
wherever applicable).
All cash & bank transactions are made only against duly approved bills and documents.
All cash transactions are made as per the guidelines enacted in the cash policy.
IOU if any are adjusted as per Cash policy.
Bank accounts are reconcilied at a regular interval and any differences are resolved.
`-Cheque books are lying only with the person assigned with this responsibility.
-Bank authorized signatories are basis the Board approval. Board Resolution are submitted to
bank without delay.
-No password shared among team members. Strict control maintained in this respect.
Review the sequence of cheque numbers and enquire into missing numbers
Control Activity
To check all investments have been made post approval of
appropriate management as per approval matrix.
Control Activity
`-The identity of users (both local and remote) is authenticated to the system through passwords or other authentication
mechanisms. The use of passwords should incorporate policies on periodic change, confidentiality and password format (e.g.
password length).
- Access provided only on the basis of the approval of appropriate authority. Access provided only on need to know basis.
- Use of removable devices like pen-drive is disebaled for all users and can only be allowed basis approval of IT head.
- Proper SLA has been signed with third party handling IT projects, assets and information.
- SAP authorization is provided basis proper approval. SAP roles are reviewed keeping in mind segregation of duties (SOD)
- Changes in SAP master ( vendor code, customer code, Fixed asset code etc.) are made only on the basis of proper approval &
requisite documentation.
XYZ Co Ltd- Risk Control Matrix Author: CA.Palash Roy; Email- palasroy@gmail.co
Inventory Blog: https://cisaforaccountantsschool.wordpress.com
Manufacturing Inventory may be recorded at the Correct inventory cost are booked
units & Depots incorrect cost under the entity’s in SAP
costing method.
Manufacturing Unauthrorized transfer of All transfer of materials between
units & Depots inventory units are authorized and
appropriately captured.
Control Activity
Check that all goods received are against a valid
purchase order (which has been approved as per the
Authority Matrix)
Control Activity
Management reviews SKUwise contribution report on a
monthly basis to discuss results of operations,
specifically focused on production cost evaluation
including a comparison of current-period productions
cost to the current-year budget and prior-period
benchmarks.
Control Activity
`- Terms and condition of operations are decided and
incorporated into Contract Bottling Unit agreement.
Control Activity
Acquisition of all capital asset are pre-approved
by appropriate management as per company's
Authority Matrix. ROI has been calculated and
approved for high value capital expenditure.
Control Activity
`-Invoices are generated in SAP only upon matching the
excise permit and despatch/transporter documents.
- Corporation Agreements are taken into consideration
for recognition of revenue.
Control Activity
`-All purchases orders raised are approved by
appropriate authority of the company.
-No procurement is made without PO. Any deviation
should be approved by appropriate authority.
Control Activity
All sales incentive & marketing cost are planned and incurred based on approved scheme and
strategy.
`-All purchases/service orders raised are approved by appropriate authority of the company.
- KYC documents are taken before making payments of incentives to Counter Sales
Managers/Waiters etc.
- Monthly/Annual provision is taken for expenses based on work done & bill yet to be
received (Basis approval of Marketing Head & Sales Head)
- Old provisions are reviewed at a regular interval and necessary accounting entry passed (write
back) wherever applicable.
XYZ Co Ltd- Risk Control Matrix
Advances & Provisions
Control Activity
`- GL reviewed on a monthly basis. Advances, Receivables are reviewed and discussed to
decide whether provision needs to be taken or not.
- Provision taken on for monthly book closing are reviewed and reversed next month.
- Year end -Provision are reviewed and decision taken whether the provision needs to be
maintained or written back.
-Write off & write back in books are taken only after approval of company management.
Control Activity
Key Performance indicators ( like Spirit wastage, PM & other RM wastage, bottle breakages
etc.) are monitored on a monthly basis.
- Deviation of actual performance from the budgeted are captured. Reason for the deviation
reviewed and analyzed.
- Optimization of production capacity monitored against production plan & actual production.
- Sales Plan, Actual sales despatch, Production Plan & actual production are reviewed on a
monthly basis.
Cross check Freight calculated by SAP basis Fright circular on a sample basis at regular
interval.
Detention reports prepared on a monthly basis to analyze the reason for the detention expense
incurred. Necessary steps are taken to reduce the Detention expense.
Scrap reconciliation is prepared on a monthly basis and any discrepancy is investigated and
resolved.
- Weighment of scrap is carried out in the presence of more than one representative. Rotation
of personnel made for scrap weighment. Signature is taken on the weighbridge slip.
- Truck in and Out timings are booked in Security Gate register and at times reconcilied with
Scrap Invoice.
cisaforaccountantsschool.wordpress.com
XYZ Co Ltd- Risk Control Matrix
Statutory Compliance Blog:
Control Activity
`- Tracker maintained and monitored for statutory compliance requirement with respect to:
a) Factories Act
b) Contract Labour Act
c) Companies Act
d) PF, ESI etc.
e) MSMED
f) VAT
g) GST
h) Excise of various States
i) Pollution Control Board
j) Payment of Bonus Act
k) Minimum Wages Act
l) Payment of Gratuity Act
m)Sexual Harassament of Women at Work place (Prevention, Prohibition & Redressal)
n) Information Technology Act 2000
o) Any other Act/rules/statute applicable to the company
cisaforaccountantsschool.wordpress.com