Presentation is loading. Please wait.

Presentation is loading. Please wait.

Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha.

Published byJodie Townsend Modified over 8 years ago

Similar presentations

Presentation on theme: "Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha."— Presentation transcript:

1 Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha March 6, 2003

2 1 Agenda Introduction to Compliance Traditional Compliance Assessments Enterprise Wide Risk Management (EWRM) in R&D Risk Assessment Approach Pharmaceutical Case Study Questions & Answers

3 2 Compliance Program A compliance program is a management process comprised of formal reporting structures and risk mitigation systems designed to motivate, measure, and monitor an organization’s legal and ethical performance around complex business practices.

4 3 Seven Elements of a Compliance Program Standards & Procedures Oversight Responsibility Education & Training Lines of Communication Monitoring & Auditing Enforcement & Discipline Response & Prevention

5 4 Information Technology Pharmaceutical & Medical Products Value Chain Infrastructure Support Sales & Marketing Research & Development Operations Human Resources, Finance, Legal Compliance Programs Address All Components of the Value Chain

6 5 Transitioning from Traditional Compliance Programs Standards & Procedures Oversight Responsibility Education & Training Lines of Communication Monitoring & Auditing Enforcement & Discipline Response & Prevention QAU Internal Audit EWRM

7 6 Enterprise Wide Risk Management Best in class organizations are embedding their compliance programs into an expanded view of enterprise wide risk management (EWRM) Compliance transitions from a reactive, process intensive activity to a dynamic program enabling the organization to manage a broad range of changes that can impact its performance EWRM defines risks as events or activities that can affect the achievement of an organization’s goals EWRM addresses all organizational goals, objectives and relationships with key stakeholders including R&D EWRM is an anticipatory, proactive process that becomes a key part of strategy and planning. EWRM helps mitigate surprises and ensures all organizations are aligned with key objectives

8 7 Enterprise Wide Risk Management Reactive Proactive Strategic Building in an Enterprise Wide Risk Management program: Current best practice Pulling together the disciplines that address both sides of risk – minimizing uncertainty and maximizing opportunities – the concept pushes an organization to address risks and their management explicitly – as part of everyday business Most Organization’s Today? Risk & Compliance External Reporting Strategy Building Enterprise Risk Assessment Control Self Assessment Enterprise Wide Risk Management Program Complying with known laws and regulations Seeking to meet industry compliance requirements Managing crisis

9 8 An Approach to EWRM Risk Assessments Potential Impact of Risk Probability Primary Exposure Control Mechanisms Accountability

10 9 An Approach to EWRM Rating the Potential Impact of Risk The Impact on financial, operational and/or legal implications can be considered as well as the ability to achieve the stated objective in the face of that risk.  Low - if the impact of the risk would have some financial, operational and/or legal implications and require attention, but is no greater than an irritant to the organization  Medium - if the impact of the risk would have significant financial, operational and/or legal implications, and/or would significantly delay the ability to achieve the objectives or otherwise affect it  High - if the impact of the risk would have major financial, operational and/or legal implications and/or it is so significant one would need to abandon the objectives

11 10 An Approach to EWRM Rating the Probability of Occurrence For rating the Probability of risks, the frequency of historical events can be considered as well as current outlook.  Low - occurrence is unlikely  Medium – occurrence is somewhat likely  High - occurrence is very likely

12 11 An Approach to EWRM Identifying the Primary Exposures Identify the Primary Exposure to indicate the direct exposure facing an organization using categories such as:  Government Enforcement  Regulatory Violation  Financial Loss  Reputational Damage  Failure to comply with internal policy  Inefficiencies and/or excessive costs  Inappropriate financial reporting or disclosure  Legal Risk

13 12 An Approach to EWRM Control Mechanisms For all risks with a high composite rating for impact and probability, existing Control Mechanisms should be considered. An organization’s management should apply a rating corresponding to the level of control, such as the following:  Policies and procedures exist and are tested as part of external or internal audits, and/or monitoring controls are in place  Policies and procedures exist  Policies and procedures are in the early stages of development  Policies and procedures do not exist Accountability

14 13 Pharmaceutical Case Study Functional Areas# of Risks Identified# of “High” Risks Identified # of “High” Risks Identified w/Limited Controls in Place Sales & Marketing22148 R&D44123 Manufacturing4551 Regulatory Affairs2661 Financial Reporting1580 HR42122 IT862 International1682

15 14 For more information, contact Michael P. Swiatocha Director, Client Services PricewaterhouseCoopers, LLP 400 Campus Drive Florham Park, NJ 07932 973-236-4541 michael.p.swiatocha@us.pwcglobal.com

16 R E S H A P I N G T H E W O R L D O F e P R O C U R M E N T Questions & Answers

Download ppt "Conducting Compliance Assessments and Building Internal Controls In Pharmaceutical R&D Third Annual Medical Research Summit – Session 2.01 Michael Swiatocha."

Similar presentations

PwC Corporate Compliance vs. Enterprise-Wide Risk Management Brent Saunders, Partner (973) 236-4682 November 2002.

PwC Corporate Compliance vs. Enterprise-Wide Risk Management Brent Saunders, Partner (973) November 2002.
Pharmaceutical Congress Spring 2003 Preconference Symposia Compliance 101 for Pharmaceutical Manufacturers Michael P. Swiatocha June 8, 2003.

Pharmaceutical Congress Spring 2003 Preconference Symposia Compliance 101 for Pharmaceutical Manufacturers Michael P. Swiatocha June 8, 2003.
Organizational Governance

Organizational Governance
Operational Risk Questionnaire

Operational Risk Questionnaire
Internal Control–Integrated Framework

Internal Control–Integrated Framework
Freshfields Bruckhaus Deringer LLP Global investigations What to advise your board Marius Berenbrok Edward Braham Matthew Herman Melissa Thomas 29 February.

Freshfields Bruckhaus Deringer LLP Global investigations What to advise your board Marius Berenbrok Edward Braham Matthew Herman Melissa Thomas 29 February.
1616 Guadalupe Street, UTA 2.206 (512) 232-7055 ▪ (512) 232-3722 (fax) www.utexas.edu/compliance.

1616 Guadalupe Street, UTA (512) ▪ (512) (fax)
Control and Accounting Information Systems

Control and Accounting Information Systems
Control and Accounting Information Systems

Control and Accounting Information Systems
Project Management Risk Management. Outline 1.Introduction 2.Definition of Risk 3.Tolerance of Risk 4.Definition of Risk Management 5.Certainty, Risk,

Project Management Risk Management. Outline 1.Introduction 2.Definition of Risk 3.Tolerance of Risk 4.Definition of Risk Management 5.Certainty, Risk,
Development of internal control: methodology and responsibility

Development of internal control: methodology and responsibility
Understanding & Managing Risk

Understanding & Managing Risk
Presented by Muhamad Abrar Bahaman 1000400 W. Fatimatul Akmar Md. Hassan 1000407.

Presented by Muhamad Abrar Bahaman W. Fatimatul Akmar Md. Hassan
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.

Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
Learning Objectives LO1 Describe the conceptual audit risk model and its components. LO2 Explain the usefulness and limitations of the audit risk model.

Learning Objectives LO1 Describe the conceptual audit risk model and its components. LO2 Explain the usefulness and limitations of the audit risk model.
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.

Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.

Expanded Version of COSO a presentation by Steve Wadleigh Expanded Version of COSO a presentation by Steve Wadleigh Standards for Internal Control in the.
Title slide PIPELINE QRA SEMINAR. PIPELINE RISK ASSESSMENT INTRODUCTION TO GENERAL RISK MANAGEMENT 2.

Title slide PIPELINE QRA SEMINAR. PIPELINE RISK ASSESSMENT INTRODUCTION TO GENERAL RISK MANAGEMENT 2.
Internal Control and Internal Audit

Internal Control and Internal Audit
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.

CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.

Similar presentations

Ads by Google