Professional Documents
Culture Documents
Internal Control Mechanism Framework For
Internal Control Mechanism Framework For
Abstract— Fraud risk has becoming intrinsic to any entity. factors are also perceived by the respondents in the KPMG’s
Both internal and external fraud present a substantial cost Fraud Survey Report 2009, where respondents believed that
to the economy. KPMG Malaysia fraud survey in 2009 poor internal control was the main factor contributing to
reported that corporate fraud is an on-going reality and occurrence of fraudulent activities. The respondents believed
most organisations are not free from the destruction that their organisation’s anti-fraud policies and procedures are
caused by the fraudsters. The most affected organisations adequate to prevent, detect and respond to fraud incidences.
are commonly the small and medium sized entities. Thus, Small to medium sized businesses are more vulnerable to
creating a demand to detect and mitigate the risk in order experience irresponsible employees and vendors who take
advantage of the business because of the insufficiency of
to reduce the financial and non-financial burden to these
excellent internal controls [5], insufficient money [6], and
organisations. Despite intense effort carried out by
time to maintain good controls, lack of talented person to
relevant bodies and individuals in combating fraud, it develop good internal control within the organisation, and
appears that fraud in its various forms is a problem that is economic/lifestyle pressure [7]. On another note, the ACFE
increasing in frequency and severity. This paper therefore 2010 [8] report revealed that inadequate employee screening
aims to propose an internal control mechanism framework activities such as negligent hiring may contribute to fraud,
in detecting fraud especially for the small medium especially when applicants commit resume fraud even before
automotive industry (SMAI). The framework focuses on employment. Managers who place too much trust on
purchasing department which is identified as the employees and lax supervision are also facilitators of fraud
department most prevalent to fraudulent activities. The [9].
framework will be further enhanced to cater to the needs Fraud is also more dominant when there exists dominated
of larger entities and other processes. decision makers in an organisation [10], and it just gets more
complicated when financial transactions are done
Keywords-fraud detection, control mechanism framework, small electronically and when operations are located in multiple
medium automotive industry, purchasing department geographical locations [3]. Misplaced trust, lax hiring and
supervision, and insufficient implementation of basic financial
I. INTRODUCTION controls can lead to an environment that is ripe for internal
Fraud literally means a type of deception. Fraud risks are theft and fraud [9].
seen as higher with the use of incentive systems, unethical Given the fact that detecting, preventing and mitigating
management attitude and when there are opportunities for fraud is essentially crucial, this paper presents an internal
fraudulent reporting. Auditors believe that management’s control mechanism framework for the SMAI. Our main
unethical attitude and management dishonesty to external concern is on the misuse of resources and inadequacy of
auditors as the two dominating red flags of fraud risk (Jose internal controls in the organisations. The paper will introduce
and Tom, 2007). Thus, it is important for external auditors to the background of fraud risk and SMAI. This is followed by
assess any changes in the organisation’s operations, financial the fraud deterrence strategies available to most organisations.
position, and industry, especially if they have been auditing The study finally proposes an internal control mechanism
the same client for a long time. framework suitable for preventing fraud in SMAI environment
focusing on purchasing department.
The Association of Certified Fraud Examiners (ACFE) [1],
revealed in their study that the most common red flags of II. LITERATURE REVIEW
fraud shown by perpetrators (81% of cases) are living beyond
their means (36%), facing financial problems (27%%), an A. Fraud Risk
unusual closeness with vendors or customers (19%), and Fraud is deception. Deception is always the core of fraud
excessive control issues related to their job (18%). irrespective of industry the fraud is situated in or whatever kind
The main factor that contributes to the ability of an of fraud being visualizes [11]. There are many definitions of
employee being able to commit fraud is internal controls fraud, depending on the point of view considering. According
which are limited or irrelevant in scope [2-4], followed by to the ACFE, fraud is “deception or misrepresentation that an
personal financial pressure and expensive lifestyle. These individual or entity makes that knowing that the
595
2013 IEEE Symposium on Humanities, Science and Engineering Research (SHUSER)
596
2013 IEEE Symposium on Humanities, Science and Engineering Research (SHUSER)
3) Rejected materials policy [7] John, R.H. (2008). 10 Ways to Improve Internal Controls and Prevent
4) Delivery notes inspection and confirmation Fraud. Igniting Your Business.
5) Control over credit memos [8] ACFE (2010). ACFE Report to the Nation on Occupational Fraud and
6) Recording and filling Abuse. Technical report. Association of Certified Fraud Examiners.
E. Invoice/payment processing
1) Centralized invoicing and payment processing [9] Moorthy, M.K., Seetharaman, A., Somasundaram, N.R. and Gopalan M.
2) Segregation of duties (2009). Preventing Employee Theft and Fraud. European Journal of
3) Recording transactions Social Sciences (12):2
4) Review vendors accounts [10] Jose, R.H. & Tom, G. (2007). Corporate Fraud: Preventative Controls
5) Specify payment process Which Lower Fraud Risk. Research Memorandum.
6) Accuracy of invoice and payment [11] Jans, M., Lybaert, N., and Vanhoof, K. (2009). A Framework for
F. Disbursement of payments Internal Fraud Risk Reduction at IT Integrating Business Processes: The
1) Purchase order availability and usage IFR2 Framework. The International Journal of Digital Accounting
2) Support documents Research Vol. 9, 1-29.
3) Signatory list for cheque signing
4) Secured cheque books [12] Bologna, G. and Lindquist, R. (1995). Fraud Auditing and Forensic
5) Double payments Accounting. John Wiley & Sons. New Jersey.
[13] Viton, P.L. (2003). Creating Fraud Awareness. SAM Advanced
Management Journal.
The list above is not exhaustive. The list will be expanded [14] Albrecht, W. A. (2004). Fraud Examination and Prevention. Mason,
and tested using the SMAI environment to prove that such OH: South- Western.
mechanism if exist will reduce the fraud risk incidence. [15] AICPA. (2006). Appendix to SAS No. 99, Fraud Risk Factors.
V. CONCLUSION AND MOVING FORWARD [16] Saksena, P. (2012). Ethical Theories and the Incidence of the
Occupational Fraud. Advances in Management 5(1): 55-58.
Regardless of the size of a business, ensuring it to be fraud [17] Glover, D. H., & Aono, Y. J. (1995). Changing the model for prevention
proof should be the most important consideration of any and detection of fraud. Managerial Auditing Journal Vol. 10 No. 5, 3-9.
company. [18] Stern, D., Treccagnoli, P., Upton, P., and Delaney, B. (2009). Cracking
down: The facts about risks in the procurement cycle. Discussion paper
As such, having a proactive fraud prevention and detection for PricewaterhouseCoopers.
measures is seen as a wish list by almost all organisation. Such [19] UNDP. (2006). Malaysia Small and Medium Enterprises: Building an
measure mean fraud activities may be reduced and thus sharing Enabling Environment. Retrieved 13 September 2012, from
the ultimate profit with the legitimate stakeholders. The http://www.undp.org.my/uploads/UNDP_SME_Publication.pdf
internal control mechanism framework offers way for SMAI in [20] Laufer, D. (2011) Small business entrepreneurs: A focus on fraud risk
mitigating fraud occurrences in their organisations especially and prevention. American Journal of Economics and Business
the purchasing department. Administration 3(2): 401-404.
We are convinced that this framework could be further [21] ACFE (2008). ACFE Report to the Nation on Occupational Fraud and
enhanced in developing a self-assessment model for fraud Abuse. Technical report. Association of Certified Fraud Examiners.
detection for the larger entity and being built for other [22] Greene, C.L. (2009). Focus on Employee Fraud — Purchasing Frauds.
McGovern & Greene LLP Series Article. Retrieved 11 September 2012,
processes within an organisation that may be potentially eye from http://www.mcgoverngreene.com/archives/archive_articles /Craig_
for fraud. Greene_Archives/Focus-Employee_Frauds-Purch.html
ACKNOWLEDGMENT [23] Venter, A.C. (2007). A procurement fraud risk management model.
Meditari Accountancy Research. 15(2): 77-93
The team members would like to express their gratitude to [24] KPMG. (2009). Fraud in the Automotive Industry in Central and Eastern
Ministry of Higher Education (MoHE) and Accounting Europe. Retrieved 11 September 2012, from
Research Institute (ARI), Universiti Teknologi MARA (UiTM) http://www.kpmg.com/PL/en/IssuesAndInsights/ArticlesPublications/Do
cuments/Fraud_in_the_Automotive_Industry_in_CEE_Web.pdf
Malaysia for providing the financial means and facilities. This
[25] Deloitte. (2009). Preventing procurement fraud and corruption.
article would not have been possible without the support of the Discussion Paper for Deloitte Australia.
grant provider, small medium automotive industry and [26] Nxumalo, Z. (2011). Fraud Risk in Public Procurement. National Public
personnel, family, and friends. Entities Risk Management Forum.
REFERENCES [27] Greene, C.L. (2002). Proactive procurement fraud prevention model.
Retrieved 12 September 2012, from
[1] ACFE (2012). ACFE Report to the Nation on Occupational Fraud and http://www.auditforum.org/speaker%20presentations/miaf/miaf%2009%
Abuse. Technical report. Association of Certified Fraud Examiners. 202005/Greene_Speaker_Handout_9_05.pdf
http://www.acfe.com/uploadedFiles/ACFE_Website/Content/rttn/2012- [28] Albrecht, C., Kranacher, M., & Albrecht, S. (2010) Asset
report-to-nations.pdf Misappropriation. Research White Paper for the Institute for Fraud
[2] Singh and Kashyap, N. (2009). Tackling white collar crime. Security Prevention. Retrieved 12 September 2012, from
Today http://www.theifp.org/research-grants/IFP-Whitepaper-5.pdf
[3] Voon, M.L., Voon, S.L. and Puah, C.H. (2008). An Empirical Analysis [29] Alhabshi, S.M. (2010). An Insight into Financial Criminology in Islamic
of the Determinants of Corporate Crime in Malaysia. Journal of Applied Banking and Finance. Paper Presented at the International Conference of
Economics and Management Letters 1(1): 13-17. Financial Criminology, 14-15 December 2010, Malaysia.
[4] Isa, T. (2011). Impacts and Losses Caused By the Fraudulent and [30] Knechel, W. R. (2001). Auditing: Assurance and risk. 2nd edition.
Manipulated Financial Information on Economic Decision. Review of South-Western College Publishing
International Comparative Management 12: 5. [31] Moore, J. (2010). Preventing and detecting fraud, waste, and abuse.
[5] Kapp, L. A. & Heslop, G. (2011). Protecting small businesses from Retrieved 27 July 2012, from
fraud: Simple controls can reduce opportunities. The CPA Journal 62-67 http://www.astd.org/Publications/Magazines/ThePublicManager/Archiv
[6] Viviers, S. and Venter, D. (2008). Fraud: An SMME Perspective. es/2010/04/Preventing-and-Detecting-Fraud-Waste-and-Abuse.aspx
SAJESBM NS (1): 1
597
2013 IEEE Symposium on Humanities, Science and Engineering Research (SHUSER)
[32] Bunget O.C., (2009). The role of financial auditor in detecting and [35] Pergola, C.W. & Mohr, T. (2004). The red flags of fraud. Retrieved from
reporting fraud and error. Munich Personal RePEc Archive (MPRA). www.directorship.com
(12888). 10p. [36] PwC (2007). Economic crime: people, culture and controls. The 4th bi-
[33] Zauwiyah, A., & Mariati, N. (2008). The Control Environment, ennial global economic crime survey. Technical report.
Employee Fraud and Counterproductive Workplace Behavior: An PriceWaterhouse&Coopers, NY.
Empirical Analysis. Communication of the IBIMA. Vol 3. [37] Murdoch, H. (2008). The three dimensions of fraud. Internal Auditor 81-
[34] Nahariah, J. (2009). Fraud Detection: The Moderating Role of Fraud 83.
Risk Level. Journal of Business and Public Affair (3): 1.
598