CITY OF MINNEAPOLIS Audit Committee Meeting September 20,

Slides:

Advertisements

Similar presentations

Lessons Learned from Financial Management Reviews May 15, 2008 Bruce Robinson FTA Office of Research, Demonstration and Innovation.

Advertisements

OVERVIEW OF THE PURCHASING CARD PROGRAM Purpose of the card: Streamline the Purchasing procedures Simplifying a lot of steps (End user, Procurement and.

EMPLOYEE ACCESS TERMINATION PROJECT

Massachusetts Department of Elementary & Secondary Education

Module 11 Federal Funds and Single Audits Convery

Internal Controls Becoming Compliant. Design & Implementation of Internal Controls. Design: Need to show that a framework is in place to establish internal.

Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.

MODULE 8 MONITORING INDIANA HPRP Training 1. Role of Independent Financial Monitors 2 IHCDA is retaining an independent accounting firm to monitor its.

Audits: How to Prepare and What to Expect Council of Senior Business Administrators Focus Session April 21, 2004 James Laird Assistant Dean for Finance.

Internal Control Over Governmental Financial Reporting Presented by Israel Gomez, CPA, Partner Marc Grace, CPA, Manager.

ACCT 100 Chapter 7 Internal Control and Cash Internal Control and Managing Cash 2 Objectives of the Chapter 1. Introduce the internal control to safeguard.

The TRUTH About SOX, Auditors & Oracle Applimation is the leading provider of Application Lifecycle Management solutions.

Information Security Policies and Standards

Chapter 12 Auditing the Human Resource Management Process McGraw-Hill/Irwin ©2008 The McGraw-Hill Companies, All Rights Reserved.

Cash and Financial Investments. McGraw-Hill/Irwin © 2004 The McGraw-Hill Companies, Inc., All Rights Reserved Internal Control Over --Cash Receipts.

Chapter 4 IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESSES.

Auditing Systems Development, Acquisition and Maintenance

Chapter 10 Cash and Financial Investments McGraw-Hill/Irwin

Auditing Purchases, Trade Payables and Payroll

Financials – Phase II Kick-Off Meeting September 11, 2008 Brenda Bolander, State Comptroller Michael Grisser, Project Manager.

Identifying Segregation of Duties Issues in a PeopleSoft Environment

Effective Management and Compliance 1 ANA GRANTEE MEETING  FEBRUARY 5, 2015.

1 Life after Implementing ERP In Pennsylvania Presented by: Harvey C. Eckert Commonwealth Comptroller Commonwealth of Pennsylvania For: Annual NASACT Conference.

ARMICS Randy Sherrod, Internal Audit Manager – Department of Behavioral Health and Developmental Services.

How to Prevent Findings Part 2 Michigan State Police Emergency Management and Homeland Security Division Ms. Jackie Reese, Audit Unit Manager Mr. Richard.

Implementation Issues of Sarbanes-Oxley CASE Presentation September 23, 2004 By Denise Farnan.

©2010 Prentice Hall Business Publishing, Auditing 13/e, Arens/Elder/Beasley Internal and Governmental Financial Auditing and Operational Auditing.

Grant Management Dawn Jenkins, Senior Accountant, City of Peoria Dawn Jenkins, Senior Accountant, City of Peoria Janeen Gaskins, Grants Administrator,

FISCAL RESPONSIBILITY IN TITLE III AND OTHER SPONSORED PROGRAMS AND GRANTS ADMINISTRATION Presented by Sharon S. Crews, M.Ac., CPA Vice President for Administrative.

Finance Tasha Robinson Director of Finance (803)

Best Practices: Financial Resource Management February 2011.

 Sana Riaz  Registration No  Saira Khalid  Registration No

Internal Controls and Fraud Convery Describe an Internal Controls System and its elements Identify specific Internal Control issues in a NPO Consider.

PwC 21 CFR Part 11 – A Risk Management Perspective Patrick D. Roche 07 March 2003, Washington D.C.

February 20 th, 2007 Board of Directors Meeting Semi-Annual Audit, Compliance, and Enterprise Risk Management Update Steve Byone Chief Financial Officer.

1 The Paperless Office: Myth or Reality? City of Phoenix Finance Tax Division May 23, 2013.

APA – Fundamentals of Payroll Chapter 2 – Payroll Systems March 10, 2012.

San Marino Unified School District Contracts Presentation Presented by: Wesley Lee, Budget Analyst October 28, 2015.

Chapter 8 Auditing in an E-commerce Environment

Update on Recommendations from KPMG, Management Partners, and Task Force City Council Meeting November 16,

WESTERN PA CHAPTER OF THE AMERICAN PAYROLL ASSOCIATION – NOVEMBER 4, 2015 Risk Management for Payroll.

Student Accounts Best Practices Presented by: Dee Bowling East Carolina University Fayetteville Fort Bragg.

Cash Reconciliations and Cash Handling WASBO Accounting Conference March, 2016.

Best Practices in Finance for Volunteers Brandy Vannoy, CPA Tim Rodgers, CPA July 26, 2008.

Internal Audit Section. Authorized in Section , Florida Statutes Section , Florida Statutes (F.S.), authorizes the Inspector General to review.

Board Financial Oversight Governing Board Online Training Module.

Welcome. Contents: 1.Organization’s Policies & Procedure 2.Internal Controls 3.Manager’s Financial Role 4.Procurement Process 5.Monthly Financial Report.

OREGON MILITARY DEPARTMENT OFFICE OF EMERGENCY MANAGEMENT SSA – State Administrative Agency UASI REGION FISCAL TRAINING.

Chapter 12 Auditing the Human Resource Management Process McGraw-Hill/Irwin ©2008 The McGraw-Hill Companies, All Rights Reserved.

System for Accountability and Management 2010 Comptroller Conference 24 November 2010.

SECURITY AND ELECTRONIC COMMUNICATIONS WHAT YOU NEED TO KNOW FOR YOUR AUDIT.

PRESENTATION TO THE PORTFOLIO COMMITTEE ON COOPERATIVE GOVERNANCE & TRADITIONAL AFFAIRS PRESENTER: MR V MADONSELA 13 NOVEMBER 2012.

Resource Business Processes

City Services Auditor Charter Appendix F Discussion

Audit Committee Meeting

Business Managers Meeting May 15, 2017 Presented by Management Advisory Services Sharon Doherty-Ritter, Director David Sohns, Management Analyst.

Security Management: Successes and Failures

Lessons Learned from Financial Management Reviews

Ministry of Finance of the Republic of Azerbaijan

From Design to Cross Application Reporting

Cash and Financial Investments

QAD Enterprise Edition Segregation of Duties

Operational Assessment Boston Public Health Commission

Wide Area Workflow (WAWF) Overview

County HIPAA Review All Rights Reserved 2002.

Contents subject to change.

Internal controls 01-Nov-2017.

State Purchasing & Trade Show May 17 & 18, 2006

Activity Fund - Update August 16, 2017

Uniform Guidance and Internal Controls

Presentation transcript:

CITY OF MINNEAPOLIS Audit Committee Meeting September 20,

CITY OF MINNEAPOLIS State Auditor Finding on PeopleSoft Finance Access 2

3 State Auditor Finding Finding Network and System Access Termination Our testing of 11 terminated employees’ removal from the general ledger system revealed access for 1 City employee, … …had not been removed. One of the terminated employees accessed the system after they were terminated.

4 State Auditor Finding on PeopleSoft Finance Access Internal Audit Analysis 7/10/15last COMET login (general ledger) 8/13/15last day of employment 9/8/15 job change form signed by supervisor 10/15/15 HR account locked 1/6/16 PeopleSoft Finance account locked 8/9/16 Active Directory account locked

CITY OF MINNEAPOLIS DMTMO Audit Update 5

CITY OF MINNEAPOLIS PeopleSoft Finance Access and Security Audit 6

PeopleSoft Finance Access and Security Audit – Background The City of Minneapolis uses the PeopleSoft Enterprise Resource Package software to support their Finance department operations. The Finance functions manage confidential and sensitive data such as social security numbers, tax identification numbers, personal wage garnishment, vendor and personal banking information to name a few. The City’s Internal Audit department conducted a review of the PeopleSoft application in collaboration with PeopleSoft Support and the IT Department. 7

PeopleSoft Finance Access and Security Audit – Objective and Scope The objective for this audit is to review system access to note potential segregation of duties conflicts and privileged access management practices. The scope included: Functional end-user access for segregation of duties across treasury, purchasing, inventory, fixed assets and general ledger roles. Procedural and systematic enforcement of privileged access via both the front end through the application and the back end through direct database or operating system access. 8

PeopleSoft Finance Access and Security Audit – Findings System Access Segregation of Duties Administrative Access Access Reviews Secure Configuration and Change Management 9

CITY OF MINNEAPOLIS Procure to Pay Audit 10

11 Procure to Pay Audit - Objectives & Scope Objective The objective of the audit was to assess the effectiveness of how the City records receipts of the goods and services, records invoices and pays its vendors. Additionally, Internal Audit evaluated how the City uses Comet to ensure that it adequately facilitates the process, meets the needs of the users and appropriately safeguards data and records. Scope The timeframe of the audit was from January 1, 2015 to March 31, The audit scope included a review of: The maintenance of the Vendor Master File, including vendor set-up and changes. The requisition, purchase order (PO) and receiving processes. The issuance of payments to vendors by Treasury. The administrative access supporting the operating system and Database for in- scope applications.

12 Procure to Pay Audit - Findings Finding 1 – Vendor File Maintenance Unauthorized Vendor File Changes Missing Tax Identification Number (TIN) Duplicate Vendors

13 Procure to Pay Audit - Findings Finding 2 – Timely Payments Discount Potential on Early Payments Observation: Late Payments

14 Procure to Pay Audit - Findings Finding 3 – Segregation of Duties

15 Procure to Pay Audit – General Recommendations Closing Out Blanket POs at Year End 3-way Match and Exception Reporting Invoice Approvals

CITY OF MINNEAPOLIS Auditor Update 16

Audit Plan and Projects Update Projects Completed: Employee Separation Analysis Neighborhood Programming and Support Audit (2015) DMTMO Third-Party Audit CPED Loan Programs (2015) IT Projects Management PeopleSoft Web Portal Procure to Pay PeopleSoft Finance Access & Security Projects in Progress: License Plate Reader Readiness – Fieldwork Phase Police Records Management Implementation – Planning Phase MPD Third-Party Audit – Fieldwork Phase Park and Recreation Board Worker Safety – Fieldwork Phase Projects Not Started: Civil Rights Contract Compliance Police Body Camera Pre-Requirement Review (potential deferral ) 17

License Plate Reader Update State Statute Commissioner Checklist Compliance 18

19 State Auditor Findings Update – City The 2015 State Auditor Report identified 6 findings related to financial statements audited in accordance with government auditing standards. 5 findings were listed in the 2014 State Auditor Report and 1 new finding is listed below. FindingStatus Loan C Documentation: Dec 2016 Audit Adjustments: Corrected Network and System Access Termination: March 2017 Identification of Federal Awards: Dec 2016 Prompt Payment of Invoices: Dec 2016 Prior Period Adjustment: Corrected

20 State Auditor Findings Update – Park & Rec The 2015 State Auditor Report identified 4 findings related to financial statements audited in accordance with government auditing standards. 1 finding was listed in the 2014 State Auditor Report and 3 new findings are listed below. FindingStatus Audit Adjustments: Corrected Application Access: Dec 2016 Federal Grants (CFDA #97.036) Noncompliance: Dec 2016 Prompt Payment of Invoices: Dec 2016

Audit Findings Follow Up Audit NameFindingsFindings resolvedFindings OpenDue Date Range Application Security Review 431Dec 2016 Construction Contract Review 321Dec 2016 Records Management Audit 16115Dec 2016 to Dec 2019 Records Management Audit Addendum 303Dec 2016 HR File Maintenance and Retention Audit 1349Sept 2016 to July 2017 IT Program and Project Management Office (PMO) Consultation 606Sept 2016 to Nov 2016 CPED Loan Lifecycle Management Audit 180 We are in the process of establishing due dates for these findings. 21

CITY OF MINNEAPOLIS Audit Committee Meeting September 20,