Corporate Governance: Beyond Compliance at a time of Recession Prof. Ashley G. Frank BA(Econ)[Magna Cum Laude], MDPA (Cum Laude], MBA, MCom [Cum Laude],

Slides:

Advertisements

Similar presentations

Module N° 4 – ICAO SSP framework

Advertisements

Organizational Governance

IBM Corporate Environmental Affairs and Product Safety

Program Management Office (PMO) Design

Alignment of COBIT to Botswana IT Audit Methodology

© 2009 The MITRE Corporation. All rights Reserved. Evolutionary Strategies for the Development of a SOA-Enabled USMC Enterprise Mohamed Hussein, Ph.D.

IMFO Audit & Risk Indaba June 2012

Chapter 10 Accounting Information Systems and Internal Controls

Continuous Auditing Global Technology Auditing Guide 3 Twelfth Continuous Auditing and Reporting Symposium Rutgers Business School November.

It’s Time to Talk About Risk and Control

Introduction to Enterprise Risk Management (ERM)

Executive Insight through Enhanced Enterprise Risk Management Leverage Value From Your Risk Management Investment.

Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.

Improving Your Business Results Six Sigma Qualtec Six Sigma Qualtec Six Sigma Qualtec – All Rights Reserved June 26, 2002 BEYOND SIX SIGMA: A HOLISTIC.

V i s i o n ACCOMPLISHED ™ Portfolio Management Breakthroughs Shelley Gaddie President Project Corps Pacific Northwest Portfolio Management Roundtable.

2011 Governance, Risk, and Compliance Conference August 29 – 31, 2011 / Orlando, FL, USA The Top Four Essential Objectives to Auditing ERM Stephen E. McBride,

AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.

Monday, June 01, 2015 Aligning Business Strategy with IT Architecture Board & Governance- Key to Running IT as Business.

Program Management Overview (An Introduction)

By Collin Smith COBIT Introduction By Collin Smith

PwC Role of Internal Audit in Corporate Governance September 2010 Tumin Gültekin, Partner.

© 2004 Managing the Information Technology Resource, Jerry N. LuftmanChapter 3 - Slide 1 Chapter 3 Strategic Alignment Maturity Managing the Information.

Quality evaluation and improvement for Internal Audit

Purpose of the Standards

“The Impact of Sarbanes Oxley, An Evolving Best Practice” Ellen C. Wolf Senior Vice President & Chief Financial Officer American Water National Association.

PAINTING THE FULL PICTURE

Accelerated EMS Session 4 – 28 January 2008.

Internal Auditing and Outsourcing

The role of internal audit in enterprise-wide risk management (ERM)

Global Risk Management Solutions Risk Management and the Board of Director: Moving Beyond Concepts to Execution Anton VAN WYK Partner, Global Risk Management.

Organize to improve Data Quality Data Quality?. © 2012 GS1 To fully exploit and utilize the data available, a strategic approach to data governance at.

Section Topics Establish a framework for assessing risk

The Challenge of IT-Business Alignment

Quote for today “Sometimes the questions are complicated and the answers are simple” - ?? ????? “Sometimes the questions are complicated and the answers.

© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.

Implementing and Auditing Ethics Programs

E q Is Your Audit Plan Keeping Pace With Your Business? Duncan Edwards Liam McCaul – Partner, Risk Advisory Services E Q Internal Audit — Adding Value.

Z26 Project Management Introduction lecture 1 13 th January 2005

CSI - Introduction General Understanding. What is ITSM and what is its Value? ITSM is a set of specialized organizational capabilities for providing value.

BPK Strategic Planning: Briefing for Denpasar Regional Office Leadership Team Craig Anderson Ahmed Fajarprana August 11-12, 2005.

Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.

© 2003 DelCreo, Inc. All rights reserved. | U.S. Toll-free 866.DELCREO | International 001/ |

SHAPING THE ROLE OF HR: Tactics for Strategic Change.

Bank Audit. Internal Audit Internal audit is an independent, objective assurance activity and can give valuable insight in providing assurance that major.

LFRS Project Management and DCP PROJECT MANAGEMENT Alison Kitching Lancashire Fire and Rescue Service.

ENTERPRISE RESOURCE PLANNING

Where Do We Go From Here: Risk Management after the Financial Meltdown Kevin McCabe Wells Fargo Audit Services EVP & Chief Auditor FIRMA 24 th National.

1 EMS Fundamentals An Introduction to the EMS Process Roadmap AASHTO EMS Workshop.

Board Leadership Seminar: The Corporation & Its Board September 15, 2015.

Proventures reconnect session on Project Portfolio Management (PPM)

Kathy Corbiere Service Delivery and Performance Commission

Evaluate Phase Pertemuan Matakuliah: A0774/Information Technology Capital Budgeting Tahun: 2009.

Company: Cincinnati Insurance Company Position: IT Governance Risk & Compliance Service Manager Location: Fairfield, OH About the Company : The Cincinnati.

12-CRS-0106 REVISED 8 FEB 2013 APO (Align, Plan and Organise)

Info-Tech Research Group1 Manage the IT Portfolio World Class Operations - Impact Workshop.

Department of Water Affairs and Forestry Department of Water Affairs and Forestry Department of Water Affairs and Forestry Department of Water Affairs.

PIC EU-28 Conference Paris, 26 – 27 November 2015 PIC An EU Approach Assurance Maps An Introductory workshop Nathan Paget United Kingdom.

Company LOGO. Company LOGO PE, PMP, PgMP, PME, MCT, PRINCE2 Practitioner.

Implementing Program Management Standards at Duke Energy.

Major Project Governance Assessment Toolkit Mark Ritchie, University of Edinburgh Pauline Woods-Wilson, Lancaster University Project and Change Management.

1 Internal Audit’s Role in Enterprise Risk Management March 22, 2016 Chris Kalafatis, Manager, Risk Advisory Services.

Info-Tech Research Group1 Info-Tech Research Group, Inc. Is a global leader in providing IT research and advice. Info-Tech’s products and services combine.

Managing Enterprise Architecture

AUDIT STAFF TRAINING WORKSHOP 13 TH – 14 TH NOVEMBER 2014, HILTON HOTEL NAIROBI AUDIT PLANNING 1.

IIASA Governance Review

Alignment of COBIT to Botswana IT Audit Methodology

Corporate Governance It is a system by which companies are managed and directed in the best interests of the owners and shareholders. It refers to the.

Taking the STANDARDS Seriously

Capacitate Internal Audit

Presentation transcript:

Corporate Governance: Beyond Compliance at a time of Recession Prof. Ashley G. Frank BA(Econ)[Magna Cum Laude], MDPA (Cum Laude], MBA, MCom [Cum Laude], DCom

Codes, guidelines and initiatives of corporate governance introduced risk and control elements into various functional areas Firms have entered recession with compliance, legal, internal audit and enterprise risk management functions of considerable size and scope However often no singular cross-functional definition of what “risk” or “compliance” means. Recession must focus concerns over increased expenses and duplication of activities

For Internal Auditors governance, risk and compliance: - risk to independence or - lead (advice on process requirements) and participate in the processes themselves ISPPIA (Standard 2110): “assess and make recommendations for improving governance processes” Status within organization determines how auditors deploy and manage dual roles: - primary driver or advise other functional areas driving the process

Clarity of objectives and goals key to governance, risk and compliance processes Are solutions being sought in keeping with organization’s goals, culture and stakeholder expectations? Common definition of issue significance and station for tracking & reporting Efficiencies through leveraging of common processes and increased knowledge sharing across functions Consistent view of an organization’s risk and prioritize issues requiring management attention.

But integrating governance, risk and compliance may be detrimental to individual risk and control units, thus: Thus: integration objectives must be clear (1)Adopt a strategic framework (2) Ask: How does integration help achieve the framework’s mission? Goal: Integration of common processes and alignment of focus Not: Added competition/distraction from units already exist or creation of new infrastructure.

A Strategic Framework for Corporate Governance Strategic Top Overall policy and risk appetite set by Board and Executive Management Middle Each risk and control function continues to execute its unique role as a part of a fully integrated effort with a common goal to manage the organization's risks Bottom Identify and leverage common processes, technologies and knowledge Value Creation & Preservation Enterprise Risk Policy & Appetite Legal / Internal Audit / Compliance / Safety / IT / Finance King III Risk Assessment Emerging Risk Identification Risk/Control Monitoring (Key Risk Indicators) Policy establishes: - Role of each function -Common goal of managing organization’s risks -Expectation of working relationships and knowledge sharing

(1) Working team from functions which should participate - establishes common understanding of “integration”, goals and internal vision, e.g.: agree common risk management concept maintain independence/objectivity of each function rationalize and harmonize approaches share information cross-functionally (2) Discuss internal vision with executive management and board (or audit committee) present both benefits and potential pitfalls! test against Strategic Framework

(3) Consider areas where initial opportunities for improvement exist Usually among processes involving communications, knowledge-sharing, scheduling or risk assessments. (4) Detail plans to tackle inceptive projects Consider resourcing needs as well as mechanisms for feedback (5) Develop an overall risk management policy Include legal/technical/corporate governance aspects What is the organization’s “risk-appetite”? (6) Establish success factors and measurement points Ensure feedback mechanism allows lessons to be learned

(7) Iterative process for further working group sessions Develop a final vision and organization specific goals. (8) Finalize Board’s risk policy Use working group reassessment outputs Is the current policy still valid or does a new one have to be developed? (9) Gain Board’s (or audit committee) formal approval Internal auditors to provide assurance on both design and implementation of audit plan. (10) Execute!