Presentation is loading. Please wait.

Presentation is loading. Please wait.

Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update.

Similar presentations


Presentation on theme: "Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update."— Presentation transcript:

1 Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update

2 Session Objectives Discuss update of The Committee of Sponsoring Organizations of the Treadway Commission (COSO) Internal Control-Integrated Framework Discuss GAO’s plan to update the Standards for Internal Control in the Federal Government, GAO/AIMD , November 1999 (Green Book) 2

3 COSO’s Internal Control-Integrated Framework COSO Framework first published in 1992 Framework concepts timeless, but context needs updating COSO released exposure draft for comment in December 2011 Deadline for submitting comments was March 31, 2012 Draft available at 3

4 4 Why update the COSO Internal Control-Integrated Framework? Changes in operating environments Changes in business models Tight budget constraints Expectations for governance oversight Use and reliance on evolving technologies Expectations for preventing and detecting fraud Demands and complexities in laws, rules, regulations and standards

5 Highlights of COSO’s Internal Control – Integrated Framework Update Project goal is to “refresh” the Framework Update not intended to alter core concepts developed in original Framework Additional focus on operational and compliance control objectives Expands the reporting category of objectives Codification of five internal control components into Principles and Attributes 5

6 6 What’s Not Changing? Definition and objectives of internal control Five components of internal control Criteria used to assess effectiveness of systems of internal control Use of judgment in evaluating the effectiveness of systems of internal control

7 7 Definition and Objectives of Internal Controls Remain Unchanged Definition Internal control is a process, effected by an entity’s board of directors, management and other personnel, designed to provide reasonable assurance regarding the achievement of objectives. Objectives Operations: Effectiveness and efficiency of operations Reporting: Reliability of reporting Compliance: Compliance with applicable laws and regulations

8 8 Components of Internal Control Remain Unchanged Relationship of Objectives and Components A direct relationship exists between objectives (which are what an entity strives to achieve) and the components (which represent what is needed to achieve the objectives). COSO depicts the relationship in a form of a cube: The three objectives are represented by the columns. The five components are represented by the rows. The entity’s organization structure is represented by the third dimension.

9 What Changed in COSO Exposure Draft? Update not intended to alter core concepts developed in the original Framework Goal of the project is to “refresh objectives” of the Framework Address significant changes to the business environment and associated risks Codify criteria to use in the development and assessment of systems of internal control Increase focus on operations, compliance, and non- financial reporting objectives 9

10 10 What Changed in COSO Exposure Draft? (cont.) Expanded financial reporting objective to address internal and external, financial and non- financial reporting objectives Enhanced internal control guidance over: Operations Compliance Information Technology

11 What Changed in COSO Exposure Draft? (cont.) Codification of internal control concepts into Principles and Attributes Represents the fundamental concepts associated with each component Provides a basis for evaluating the effectiveness of internal controls 17 Principles supported by related attributes that represent characteristics associated with these principles Provides clarity in the design and development of internal controls Supports assessment on the effectiveness of internal controls 11

12 Codification of 17 Principles Embedded in the Original Framework 13.Uses relevant information 14.Communicates internally 15.Communicates externally Control Environment1Demonstrates commitment to integrity and ethical values 2Exercises oversight responsibility 3Establishes structure, authority and responsibility 4Demonstrates commitment to competence 5Enforces accountability Risk Assessment6Specifies relevant objectives 7Identifies and analyzes risk 8Assesses fraud risk 9Identifies and analyzes significant change Control Activities10Selects and develops control activities 11Selects and develops general controls over technology 12Deploys through policies and procedures 13Uses relevant information 14Communicates internally 15Communicates externally Monitoring Activities16Conducts ongoing and/or separate evaluations 17Evaluates and communicates deficiencies Information & Communication 12

13 13 GAO’s Responsibility for Issuing Standards for Internal Control in the Federal Government (Green Book) Federal Managers’ Financial Integrity Act of 1982 (FMFIA) requires GAO to issue standards for internal control in the Federal government Provides an overall framework for establishing and maintaining internal control in Federal agencies Existing Green Book utilizes COSO internal control concepts Last revision issued November 1999

14 Why Revise the Green Book? General recognition of the need to update The COSO Internal Control Integrated-Framework is currently being updated Consider the updated COSO Framework where applicable to government and add additional areas of emphasis for government Green Book will be updated and harmonized with the revised COSO framework Revised Green Book will provide clarified standards and attributes to assist: Management in developing internal control Auditors in auditing and reporting on internal control 14

15 Green Book Revision Process and Timing GAO will seek input from user groups ­ Management ­ IG and audit community ­ OMB and other users A Green Book advisory council with cross- representation, similar to the Yellow Book council, will be established An exposure draft will be available for comment with a final version due later in the year 15

16 16 Green Book Revision Timeline Seek input from user groups - Ongoing Public Exposure Period – day comment period Finalize – 2013

17 17 Proposed Green Book Changes Expand discussion of the five components of internal control Expand discussion of controls over information technology Expand discussion on compliance with applicable laws and regulations

18 Why are we here today? Outreach to the user community to obtain their input on areas of interest related to internal control in the Federal government Opportunity to discuss areas of interest, concerns and other internal control related topics 18

19 19 Questions? GAO Contact Information Jim Dalkin, Director, (202) , Heather Keister, Assistant Director, (202) , Doris Yanger, Senior Auditor, (202) ,


Download ppt "Federal Audit Executive Council (FAEC) June 2012 Bi-Monthly Meeting Heather I. Keister Doris G. Yanger June 14, 2012 Green Book Update."

Similar presentations


Ads by Google