Scribd Logo
Upload

Welcome to Scribd!

  • Sub Process Risk Description GCPL Control ID Business Cycle Major-Process

    Uploaded by

    Pankaj Singh
    11 views4 pages

    Original Title

    Audit Points.xlsx

    Copyright

    © © All Rights Reserved

    Available Formats

    XLSX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as XLSX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    11 views4 pages

    Sub Process Risk Description GCPL Control ID Business Cycle Major-Process

    Uploaded by

    Pankaj Singh

    Copyright:

    © All Rights Reserved
    Download as XLSX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    GCPL Business Major-

    Sub Process Risk Description


    Control ID Cycle Process

    Incomplete / Duplicate /
    Dummy / Dormant vendor
    Vendor Master
    Procure to Master code existing in the vendor
    PTP.05 Creation and
    Pay Maintenance master may result in
    modification
    recording of fictitious
    transaction

    POs may not be numbered


    Procure to Purchase
    PTP.12 Creation of PO resulting in recording of
    Pay Management
    fictitious transactions

    Invoices may be processed


    in SAP for inaccurate
    Procure to Invoice
    PTP.27 Invoice Booking quantity / rate resulting in
    Pay Processing
    incorrect recording of
    purchases

    Double payment may be


    Procure to Payment Payables released to vendors
    PTP.31
    Pay Processing Management resulting in incorrect/excess
    disbursements

    Payment may not be


    processed as per payment
    Procure to Payment Payables report resulting in
    PTP.36
    Pay Processing Management understatement /
    overstatement of vendor
    liability
    Risk
    Control Description Bcontrol
    Rating
    MDO is configured to restrict
    creation of duplicate/dummy
    vendor codes in SAP on input
    of duplicate information (i.e. Medium PTP013
    vendor name, PAN
    details,etc.) already existing
    in the database.
    System is configured to
    generate a unique number on Medium PTP.12
    creation of POs.

    SAP is configured to carry


    out a three way match at the
    time of invoice booking PTP004,PT006,
    amongst invoice value, GRN PTP008,PTP00
    High
    & PO. The transaction value 9,PTP030,PTP
    is fetched from Purchase 031
    order created in SAP and
    fields are non-editable.

    System is configured to
    restrict duplicate payment
    High PTP007
    against the same invoice no.
    of same vendor.

    SAP is configured to restrict


    SAP is
    modification of payment
    configured to
    report (i.e. Payee Name,
    restrict
    Bank a/c number, Amount
    modification of
    etc.) after recording of High
    High Payment
    Disbursement. Payment
    report after
    report is uploaded on bank
    recording of
    portal by executive finance
    disbursment
    for payment processing.
    Observation Additional Information

    PTP013-It has been noted that the system


    message for potentially duplicate vendor is
    configured as "Information". Company should
    consider setting this message as "Warning" or
    "Error"

    Configured correctly. None of the purchase order


    are configured to have external number range
    assignment

    PTP004-It has been observed that tolerance


    keys AN and AP have not been configured for PTP004- Tolerance Key
    company code IN10. AN(Amount for item without order
    PTP006-It has been noted that Automatic reference) and AP(Amount for item
    posting of GL and Material account is still active with order reference), the system
    in the system checks every line item against the
    PTP008-It has been noted that critical fileds like absolute upper limit defined.
    "GR Based IV" and "Payment Terms" are PTP006-The option of direct
    marked as optional during the creation of posting is provided so you can
    Purchase Order also post invoices that do not refer
    PTP009-It has been observed that tolerance key to a purchase order or a delivery. A
    PE has not been configured for as "Do Not typical example of this is a bill for
    Check for Lower Absolute" for company code expenses.Such invoices should
    IN10 normally be posted manually
    PTP030,PTP031-It has been observed that GR outside logistics invoice
    based IV and Service based IV have not been verification.
    marked as mandatory for all the vendor account
    groups.

    PTP007-This has been configured correctly


    Comments

    PTP013 - It is already set as an information Note in new


    window and can not be set as Warning or Error in
    standard SAP.

    PTP004 - Tolerance Keys AN and AP can be configured


    for Company code IN10, Tolerance Limit to be checked
    with Accounts Team
    @Ashok, kindly confirm.

    PTP006 - Need to be discussed with Accounts Team


    @Ashok, kindly confirm.

    PTP008 - Payment Term field is already in "Display"


    mode in PO. "GR based IV" and "Service based IV"
    indicators can be made mandatory in PO.

    PTP009 - Tolerance key PE can be maintained for


    company code IN10, Tolerance Limit to be checked with
    Accounts Team
    @Ashok, kindly confirm.

    PTP030,PTP031 - "GR based IV" and "Service based IV"


    indicators can be marked as mandatory for all the
    Vendor account groups. --> Changes implemented in
    system

    You might also like