Professional Documents
Culture Documents
CONTROLS
ON FRAUD
BY Amanpreet Kaur
Fraud Management
Program
The components of an
effective fraud management
program include the
following:
1) Company ethics policy
2) Fraud awareness
3) Fraud risk assessment
4) Ongoing reviews
5) Prevention and detection
6) Investigation
Company’s ethics Policy
Ongoing
Reviews
Make
adjustments
A fraud risk assessment generally
includes the following:
a) Identifying and prioritizing fraud
risk factors and fraud schemes
b) Determining whether existing
controls apply to potential fraud
schemes and
identifying gaps
c) Testing operating effectiveness
of fraud prevention and detection
controls
d) Documenting and reporting the
fraud risk assessment
5) Prevention and detection:
The company implements preventive measures such as segregation of duties,
dual authorization for financial transactions, and regular reconciliations.
Automated monitoring systems are employed to detect suspicious activities, such
as unusual transactions or patterns.
6) Investigation:
A designated team or department is responsible for investigating allegations of
fraud promptly and thoroughly.
Investigations follow established protocols and procedures to preserve evidence,
maintain confidentiality, and ensure legal compliance.
By integrating these components into a cohesive fraud management program,
companies can better protect themselves against fraud and minimize potential losses.
Control is the principal
The COSO Internal Control means of managing fraud
Framework can and ensuring the
be applied in the fraud context to components of the
fraud management program
promote an environment in
are present and functioning.
which fraud is effectively
managed.
1) The control environment
includes such elements as a code
of conduct, ethics
policy, or fraud policy to set the
appropriate tone at the top;
hiring and promotion
guidelines and practices; and
board oversight.
Control activities are policies and procedures for
business processes that include
authority limits and segregation of duties.
4) Fraud-related information and
communication practices promote the fraud risk
management program and the organization’s
position on risk. The means used
include fraud awareness training and confirming
that employees comply with the
organization’s policies.
5) Monitoring evaluates antifraud controls
through independent evaluations of the fraud
risk management program and use of it.