Professional Documents
Culture Documents
Bibi Consulting,Inc.
www.bibiconsulting.com 1
What is COSO?
www.bibiconsulting.com
www.bibiconsulting.com
to an end, not an end in itself. j Internal control is effected by people. Its not merely policy manuals and forms, but people at every level of an organization. j Internal control can be expected to provide only reasonable assurance, not absolute assurance, to an entitys management and board. j Internal control is geared to the achievement of objectives in one or more separate but overlapping categories.
www.bibiconsulting.com
www.bibiconsulting.com
www.bibiconsulting.com
Control Environment
j Sets the tone of the organization. j The foundation for all other components. j It includes the integrity,ethical values and competence of
the people. j Reflects: managements philosophy & operating style,the way management assigns authority and responsibility and organizes and develops its people, and the attention and direction provided by the board of directors.
www.bibiconsulting.com
Risk Assessment
j Every entity faces internal &external risks. j Every entity sets objectives. j Risk assessment is the identification and
www.bibiconsulting.com
Control Activities
j The policies and procedures that help ensure
management directives are carried out. j They help ensure that necessary actions are taken to address risks. j Control activities occur throughout the entity at all levels and in all functions. j They include activities such as approvals , authorization,reconciliations and segregation of duties.
www.bibiconsulting.com
and communicated in a form & timeframe that enables people to carry out their responsibilities. j Information systems produce reports containing operational,financial and compliance related information that make it possible to run and control the business. j Effective communication must occur in a broader sense,flowing down,across and up the organization.
www.bibiconsulting.com
10
Monitoring
j Internal control systems need to be monitored. j Types of monitoring:
- ongoing during the course of operations. - evaluation for which the scope and frequency will depend primarily on an assessment of risks and the effectiveness of ongoing monitoring procedures.
www.bibiconsulting.com
11
Responsibilities
Who is responsible for internal control ?
Everyone !
Board of Directors :Governance,guidance & oversight Management : CEO is the owner Internal Auditors: evaluate & monitor Other personnel :information and communication
www.bibiconsulting.com 12
targets. j It can help prevent loss of resources. j It can help ensure reliable financial reporting.
j It can help ensure compliance with laws.
It can help an entity get to where it wants to go,and avoid pitfalls and surprises along the way.
www.bibiconsulting.com 13
reporting. j It cannot ensure compliance with laws and regulations. Internal controls ,no matter how well designed and operated,can provide only reasonable assurance to management regarding achievements of an entitys objectives.
www.bibiconsulting.com
14
www.bibiconsulting.com
15