Presentation is loading. Please wait.

Presentation is loading. Please wait.

OMB Circular A-123 – Management’s Responsibility for Internal Control Policy Applicability Sources of Information Assessment, Documentation and Reporting.

Published byJason Willis Modified over 9 years ago

Similar presentations

Presentation on theme: "OMB Circular A-123 – Management’s Responsibility for Internal Control Policy Applicability Sources of Information Assessment, Documentation and Reporting."— Presentation transcript:

1 OMB Circular A-123 – Management’s Responsibility for Internal Control Policy Applicability Sources of Information Assessment, Documentation and Reporting Tools Presented By: Anda Coiner, Accounting – Program Support Branch (304) 480-8414; Email: Anda.Coiner@bpd.treas.gov

2 Policy Management is responsible for establishing and maintaining internal control to achieve the objectives of effective and efficient operations, reliable financial reporting, and compliance with applicable laws and regulations.

3 Policy (Continued) Management shall consistently apply internal control standards to meet each of the internal control objectives and to assess internal control effectiveness.

4 Applicability 24 CFO Act Agencies

5 Sources of Information The assessment of Internal Control can be performed using a variety of information sources. Management has primary responsibility for assessing and monitoring controls and should use other sources as a supplement to its own judgment

6 Sources of Information - Examples Audits of Financial Statements Reviews of Financial Systems Annual Evaluations and reports pursuant to FISMA and OMB Circular No. A-130 Knowledge Gained from Daily Operations and Systems Management Reviews IG and GAO Reports (Audits, Inspections, Reviews, Investigations) Program Evaluations

7 Assessment, Documentation and Reporting Tools Appendix A of OMB Circular No. A-123 GAO-01-1008G – Internal Control Management and Evaluation Tool Treasury’s Catalog of Transactions Treasury’s Test Plan Template

8 Assessment, Documentation and Reporting Tools (Continued) Provides a methodology for agency management to assess, document, and report on the internal controls over financial reporting

9 Assessment, Documentation and Reporting Tools (Continued) 1.Establish a Senior Assessment Team –Provides oversight of the assessment process –Ensures objectives are clearly communicated –Ensures that the assessment is carried out in a through, effective, and timely manner –Identifies staff to perform assessment –Determines scope of the assessment (financial reports) –Determines assessment design and methodology

10 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control at the Entity Level (5 Components of Internal Control) –Control Environment Obtain sufficient knowledge to understand management’s attitude awareness, and actions concerning the control environment

11 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control at the Entity Level (Continue) –Control Environment (Continued) Integrity and Ethical Standards. Commitment to Competence, management philosophy and operating style, Organizational structure, Assignment of authority and responsibility, Human Resource Policies and Practices

12 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control at the Entity Level (Continued) –Risk Assessment Complexity or Magnitude of Programs, Operations, Transactions, etc., Accounting Estimates, Related Party Transactions, Extent of Manual Processes, Changes in Operating Environment

13 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control at the Entity Level (Continued) –Control Activities Policies and Procedures, Management Objectives, Planning and Reporting Systems, Analytical Review and Analysis, Segregation of Duties, Safeguarding of Records, and Physical and Access Controls

14 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control and the Entity Level (Continued) –Information and Communication Type and Sufficiency of Reports Produced, Manner in which Information Systems Development is Managed, Disaster Recovery, Communication of Employees’ Control related Duties and Responsibilities, how incoming communication is handled

15 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control and the Entity Level (Continued) –Monitoring Self Assessments by Management, Evaluations by the IG or External Auditor, Direct Testing

16 Assessment, Documentation and Reporting Tools (Continued) 2.Evaluate Internal Control and the Entity Level (Continued) –GAO-01-1008G – Internal Control Management and Evaluation Tool is useful in evaluating and documenting the 5 components of internal control Each section contains a list of major factors as well as points and sub-points to consider when completing the assessment process. www.gao.gov – Search for Report Number – GAO-01-1008G

17 Assessment, Documentation and Reporting Tools (Continued) 3.Determine Significant Accounts or Groups of Accounts –Identify those that individually or collectively could have a material effect on the financial report. (Consider both Qualitatively and Quantitatively) Treasury has identified 7 ‘Core’ Financial Processes –Budget and Finance, Accounting, Purchasing, Accounts Payable & Payments, Sales, A/R, & Collections, Manage Assets & Liabilities, Reporting & Information, and Information Technology

18 Assessment, Documentation and Reporting Tools (Continued) 4.Identify and Evaluate Major Classes of Transactions –Identify the major classes of transactions that materially affect those accounts Treasury has identifued 119 individual transactions for testing.

19 Assessment, Documentation and Reporting Tools (Continued) 4.Identify and Evaluate Major Classes of Transactions (Continued) –Transaction Examples Cash Reconciliation (AC-6) Budgetary to Proprietary Relationships (AC-7) Reconciliation of Intra/Inter Governmental Transactions (AC-9) System & Maintenance of System Application Security (IT-2) Verify Systems Software Change Control Procedure (IT-3)

20 Assessment, Documentation and Reporting Tools (Continued) 5.Gain Understating of Control Design to Achieve Management Assertions –Inquires of Agency Personnel –Inspection of Documents, Reports, or Electronic Files –Observation of the application of the control (‘Walk-Through’) Controls are ‘Effective’, ‘Moderately Effective’ or ‘Not Effective”

21 Assessment, Documentation and Reporting Tools (Continued) 6.Test Controls and Assess Compliance to Support Management Assertions –Determine the extent to which the controls were applied, the consistency of their application, and who applied them. Test plans should be developed at the Transaction Level. Examples of how testing can be performed – Inquiry, Inspection, Observation, and Re-performance

22 Assessment, Documentation and Reporting Tools (Continued) 6.Test Controls and Assess Compliance to Support Management Assertions (Continued) –Test Plans must be documented and should include the following components: (Treasury has developed a template) Test Objective and Expected Results Type of Assertion provided by the Control Type of Test Sample Size Testing Procedures Test Results

23 Assessment, Documentation and Reporting Tools (Continued) 7.Overall Assessment –Statement of Assurance Overall Conclusion as to the Design and Operation of the Internal Controls over Financial Reporting Include whether the controls are operating effectively or whether material weaknesses exist in the design or operation –OMB Circular A-123 includes an example of the Statement of Assurance http://www.whitehouse.gov/omb/circulars/a123/a123_rev.pdf

24 Questions ? Anda Coiner, Accounting – Program Support Branch (304) 480-8414; Email: Anda.Coiner@bpd.treas.gov

25 SAS-70 – Agency Internal Control Considerations Overview Examples

26 Overview Designed with the expectation that certain internal controls would be implemented by customer agencies. The application of such controls by the customer agencies is necessary to achieve all control objectives in ARC’s SAS 70 Report

27 Examples Specific Agency Control considerations are provided for Control Objectives (CO) 1-3, 5-6, 8-12 and 18

28 CO 1 – Obligations CO 2 – Disbursements CO 3- Unfilled Customer Orders, Receivables and Cash Receipts CO 4 – Deposits CO 5 – Payroll Accruals CO 6 – Payroll Disbursements CO 8 – Accruals CO 9 – Government-Wide Reporting CO 10 – Administrative Spending CO 11 – Budget CO 12 – Manual Journal Entries CO 18 – System Access Examples (Continued )

29 Obligations –Properly approve and accurately enter obligations into the procurement and travel systems in the proper period –Send valid requests to record manual obligations to ARC in a timely manner –Review open obligation reports for completeness accuracy and validity –Restrict customer agency access to authorized individuals

30 Disbursements –Approve invoices for payment and send approved invoices to ARC in a timely manner –Approve travel vouchers and accurately enter the vouchers into GovTrip in the proper period –Review financial reports provided by ARC to ensure disbursement transactions are complete and accurate

31 Unfilled Customer Orders, Receivables and Cash Receipts –Monitor and pursue collection of delinquent balances –Review unfilled customer orders, re3ceivable and advance reports for completeness, accuracy and validity

32 Payroll Accruals and Payroll Disbursements –Review financial reports to ensure that payroll accruals and disbursements are complete and accurate –Verify that payroll processed by third-party providers is complete and accurate

33 Accruals –Review open accrual reports for completeness, accuracy, and validity –Approve and send revenue and expense accruals to ARC in a timely manner

34 Government Wide Reporting –Review Financial Reports prepared for external use are complete, accurate, and submitted in a timely manner –Provide certification of FACTS II

35 Administrative Spending –Properly approve and accurately enter obligations into the procurement and travel systems in the proper period –Send valid requests to record manual obligations –Review open obligations reports for completeness, accuracy and validity

36 Budget –Review financial reports to ensure that budget entries are complete and accurate –Send approved budget –Communicate customer agency required levels of budget and spending controls –Communicate OMB apportionment status –Monitor usage of BA under CR

37 System Access –Review and approve users for appropriateness

38 QUESTIONS ? Anda Coiner, Accounting – Program Support Branch (304) 480-8414; Email: Anda.Coiner@bpd.treas.gov

Download ppt "OMB Circular A-123 – Management’s Responsibility for Internal Control Policy Applicability Sources of Information Assessment, Documentation and Reporting."

Similar presentations

An Internal Control Overview

An Internal Control Overview
Internal Controls 101 RDML K. Taylor | DHS CFO Brief | 25 JAN 2010 Assistant Commandant For Resources.

Internal Controls 101 RDML K. Taylor | DHS CFO Brief | 25 JAN 2010 Assistant Commandant For Resources.
Internal Controls Becoming Compliant. Design & Implementation of Internal Controls. Design: Need to show that a framework is in place to establish internal.

Internal Controls Becoming Compliant. Design & Implementation of Internal Controls. Design: Need to show that a framework is in place to establish internal.
Auditing Concepts.

Auditing Concepts.
Internal Control.

Internal Control.
Auditing Computer Systems

Auditing Computer Systems
The Islamic University of Gaza

The Islamic University of Gaza
CHAPTER 10 UNDERSTANDING INTERNAL CONTROLS Fall 2007

CHAPTER 10 UNDERSTANDING INTERNAL CONTROLS Fall 2007
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.

Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
CHAPTER 9 UNDERSTANDING INTERNAL CONTROLS Winter 2004

CHAPTER 9 UNDERSTANDING INTERNAL CONTROLS Winter 2004
IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESS

IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESS
Chapter 9 The Study of Internal Control and Assessment of Control Risk

Chapter 9 The Study of Internal Control and Assessment of Control Risk
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.

Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit
Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.

Internal Control. COSO’s Framework Committee of Sponsoring Organizations 1992 issued a white paper on internal control Since this time, this framework.
Section 404 Audits of Internal Control and Control Risk

Section 404 Audits of Internal Control and Control Risk
INTERNAL CONTROLS. Session Objectives Understand why an organization should have internal controls Understand the key components of internal controls.

INTERNAL CONTROLS. Session Objectives Understand why an organization should have internal controls Understand the key components of internal controls.
Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.

Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.
INTERNAL CONTROL OVER FINANCIAL REPORTING

INTERNAL CONTROL OVER FINANCIAL REPORTING
Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.

Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.

Similar presentations

Ads by Google