SlideShare une entreprise Scribd logo

Upgrading Risk Management and Internal Control in Your Organization

International Federation of Accountants
International Federation of Accountants

Presentation by Vincent Tophoff, IFAC Senior Technical Manager and J. Stephen McNally, Campbell Soup Company Finance Director and Comptroller at the IMA Annual Conference and Exposition, June 2014

Business
1  sur  44
Upgrading Risk Management and Internal Control in Your Organization J. Stephen McNally, Campbell Soup & Vincent H. Tophoff, IFAC
Agenda
Upgrading RM/IC in Your Organization  Current Considerations  Assessing RM/IC Maturity Stage  A Case Study  Recap & Call to Action
Current Considerations
Serious RM/IC Flaws • Having a compliance-only mentality • Treating risk as only negative and overlooking idea that organizations need to take risk in pursuit of their objectives • RM/IC that is overly focused on external financial reporting • Regarding RM/IC as a separate function or process • Viewing risk management as predominantly important for operations
Bad vs. Good RM/IC Practices RM/IC as objective in itself vs. RM/IC to help achieve objectives Auditor / staff driven vs. Driven from top down Rules-based vs. Performance & principles-based Off-the-shelf systems vs. Tailored to the organization Focused on loss minimization vs. Also focused on value creation Mainly hard controls vs. Recognizing culture & attitude Imposed vs. Implemented organically Stand-alone / “bolt-on” vs. Integrated / ”built-in” Static, out-of-date vs. Dynamic, evolving Seen as overhead vs. Seen as a sound investment Abandoned vs. Integrated in governance
2013 COSO Internal Control Cube
2004 COSO ERM Cube
COSO IC vs. COSO ERM
ISO 31000 Principles, Framework & Process
COSO ERM vs. ISO 31000 Many entities use both COSO ERM & ISO 31000… … Biggest challenge is that concepts are not aligned COSO ISO 31000 Lengthy vs. Short Focused on ERM vs. General approach to managing risk One cube vs. Principles, framework & process Skewed to negative vs. Risk can be positive or negative Risk already exists vs. Risk tied to achieving objectives Risk & opportunities vs. Opportunities also source of risk More sequential process vs. More iterative process
Relation of Governance, RM & IC • How do you think that governance, risk management, and internal control are related to each other?
Relation of Governance, RM & IC
Assessing RM/IC Maturity Stage
• Is not to have effective controls… • Is not to effectively manage risk… But to • Properly set & achieve your objectives • Avoid too many surprises along the way • And create sustainable value Main Objective of RM/IC
Governance comprises the arrangements (plan, do, check, and act) put in place to ensure that the intended objectives are defined and achieved • RM/IC are integral part of that! RM/IC Integral Part of Good Governance
Relation of Risk Management & Internal Control
Achieving Objectives Through G/RM/IC
RM/IC Maturity Levels
• Use the Frameworks • Consider good practice developments • Perform gap analysis • Determine performance • Look at audit results • Analyze serious flaws • … • Continuously move to improvement! Thoughts on Assessing RM/IC Maturity
Table Discussions • What is the maturity of risk management & internal control at your organization?
A Case Study
My COSO Story U.S. SOX Act 1992 COSO Cube + =
The Evolution SOX Compliance Control Self- Assessment CFO Protocol 2004 2006 2009 • Annual site visits • Content: “Tone”, Financial, I/C • Focus: Location-specific risks • Execute “formal” procedures • Issue “trip report”
My Challenge • First CFO Protocol ever completed • No specific guidance/ expectations • Cross-functional/ multi-location team • No “big picture” flow diagram and/or procedural documentation • No defined risks/ internal controls CFO Protocol: N/A Co-Manufacturing Operations
Our Scope In-Scope Oversight activities to: • Identify • Select; and • Manage ongoing co-manufacturing partner relationships Out-of-Scope • Co-manufacturing partners themselves • Non-CNA businesses: o Canada o Latin America o Pepperidge Farm • Special pack business
Our Game Plan Step 1 Obtain “big picture” overview Step 9 Step 8 Step 7 Step 6 Step 5 Step 4 Step 3 Step 2 Define testing protocol Walkthrough co-mfg processes Define key controls Identify key risks Test key controls Align findings & recommendations Issue final report Determine co-manufacturing objectives
Co-Manufacturing Processes • New partner selection & contracts • Supply Base Quality System Assessments • Formula management & mock recalls • Cost standards & inventory management • Capital investments & fixed assets • Business continuity planning • Other
Entity Structure = CFO Protocol Scope Entity Structure Components CNA Co-Mfg. Operations • Campbell Soup Company o Campbell North America  U.S. Retail  CNA Supply Chain ‒ Napoleon Plant • Global Procurement • Other: Legal, Quality, etc.
Objectives Entity Structure Components CNA Co-Mfg Operations • Strategic • Operational • Internal Reporting • Compliance
Components: Internal Environment Entity Structure Components Encompasses the tone of an organization… What is the internal philosophy and culture?
Components: Objective Setting Entity Structure Components Objectives are a prerequisite… What are we trying to accomplish? Leverage external partners to: - Meet new Brand requirements - Optimize total delivered cost - Address supply chain capacity
Components: Event Identification Entity Structure Components In terms of internal & external events… What could stop us from achieving our objectives? Co-Mfg Risks: - Product quality - Partner’s financial stability - Formula management - Business continuity
Components: Risk Assessment Entity Structure Components Analyze risks to determine how they should be managed… • How good or bad are these events? • Will they really happen?
Components: Risk Response Entity Structure Components What can we do to manage the identified risk? What are the options? • Avoid? • Accept? • Reduce? • Share? • Exploit?
Components: Control Activities Entity Structure Components What policies & procedures should be established to manage the risks as desired? Co-Mfg. Controls: - Quality audits & mock recalls - Co-Man & D&B reporting - Formula Management - Annual BCP review & testing
Components: Information & Communication Entity Structure Components How will we obtain information and communicate? What information is relevant to enable people to carry out their responsibilities? Co-Mfg: - Partner relationship manager - Cross-functional team meetings - Standardized reporting
Components: Monitoring Entity Structure Components How will we know we achieved what we wanted to accomplish? What ongoing management activities and/or separate evaluations can we leverage? Co-Mfg: - Quarterly business reviews - CFO protocol visit(s) - Internal audits - SAS 70
Recap & Call to Action
• Serious RM/IC flaws • Frameworks and guidance can help • Climbing maturity ladder through continual improvement • Companies like Campbell’s are on this journey • What about you and your organization? Recap
Effective RM/IC & You • How could you more effectively leverage risk management & internal control within your organization?
• Build subject-matter-expertise regarding frameworks, standards & other guidance • Educate audit committee, C-suite, operating unit & functional management • Support line management through provision of high-quality information • Establish good RM/IC for the finance function • Champion importance of continuous RM/IC improvement Management Accountant: Call to Action
10 Paragon Drive, Suite 1 Montvale, New Jersey 07645-1760 U.S.A. (800) 638-4427 +1 (201) 573-9000 www.imanet.org 10 Paragon Drive, Suite 1 Montvale, New Jersey 07645-1760 U.S.A. (800) 638-4427 +1 (201) 573-9000 www.imanet.org

Recommandé

COSO 2013 and The Auditor
COSO 2013 and The AuditorCOSO 2013 and The Auditor
COSO 2013 and The AuditorCorporate Compliance Seminars
 
Integrating Strategy and Risk Management
Integrating Strategy and Risk ManagementIntegrating Strategy and Risk Management
Integrating Strategy and Risk ManagementAndrew Smart
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management FrameworkTreasury Consulting LLP
 
internal control and control self assessment
internal control and control self assessmentinternal control and control self assessment
internal control and control self assessmentManoj Agarwal
 
Governance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesGovernance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesCapgemini
 
Strategic Risk: Linking Risk Management & Strategy Management processes
Strategic Risk: Linking Risk Management & Strategy Management processesStrategic Risk: Linking Risk Management & Strategy Management processes
Strategic Risk: Linking Risk Management & Strategy Management processesGlobalStrategyTribe
 
CISA Training - Chapter 5 - 2016
CISA Training - Chapter 5 - 2016CISA Training - Chapter 5 - 2016
CISA Training - Chapter 5 - 2016Hafiz Sheikh Adnan Ahmed
 
Enterprise Risk Management & Organizational Excellence
Enterprise Risk Management & Organizational ExcellenceEnterprise Risk Management & Organizational Excellence
Enterprise Risk Management & Organizational ExcellenceEneni Oduwole
 

Recommandé

COSO 2013 and The Auditor
COSO 2013 and The AuditorCOSO 2013 and The Auditor
COSO 2013 and The AuditorCorporate Compliance Seminars
 
Integrating Strategy and Risk Management
Integrating Strategy and Risk ManagementIntegrating Strategy and Risk Management
Integrating Strategy and Risk ManagementAndrew Smart
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management FrameworkTreasury Consulting LLP
 
internal control and control self assessment
internal control and control self assessmentinternal control and control self assessment
internal control and control self assessmentManoj Agarwal
 
Governance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesGovernance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesCapgemini
 
Strategic Risk: Linking Risk Management & Strategy Management processes
Strategic Risk: Linking Risk Management & Strategy Management processesStrategic Risk: Linking Risk Management & Strategy Management processes
Strategic Risk: Linking Risk Management & Strategy Management processesGlobalStrategyTribe
 
CISA Training - Chapter 5 - 2016
CISA Training - Chapter 5 - 2016CISA Training - Chapter 5 - 2016
CISA Training - Chapter 5 - 2016Hafiz Sheikh Adnan Ahmed
 
Enterprise Risk Management & Organizational Excellence
Enterprise Risk Management & Organizational ExcellenceEnterprise Risk Management & Organizational Excellence
Enterprise Risk Management & Organizational ExcellenceEneni Oduwole
 
Coso Internal Control Integrated Framework
Coso Internal Control Integrated FrameworkCoso Internal Control Integrated Framework
Coso Internal Control Integrated Frameworkhyesue
 
It governance & cobit 5
It governance & cobit 5It governance & cobit 5
It governance & cobit 5Laddawan Rattanaruang
 
Cisa domain 1
Cisa domain 1 Cisa domain 1
Cisa domain 1 Ismail aboulezz
 
An introduction to internal auditing
An introduction to internal auditingAn introduction to internal auditing
An introduction to internal auditinggrifff
 
Business Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS ImplementationBusiness Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS ImplementationPECB
 
Coso erm
Coso ermCoso erm
Coso ermHumberto Omar Valverde Taborga
 
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...International Federation of Accountants
 
COSO ERM
COSO ERMCOSO ERM
COSO ERMSophia Abigayle
 
Coso internal control integrated framework
Coso internal control integrated frameworkCoso internal control integrated framework
Coso internal control integrated frameworkIrfan Ahmed - ACA, CICA
 
Governance, Risk & Compliance Management Solution
Governance, Risk & Compliance Management SolutionGovernance, Risk & Compliance Management Solution
Governance, Risk & Compliance Management SolutionRishabh Software
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing PresentationVernon Benjamin
 
Enterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management ProcessEnterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management Processregio12
 
What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance BOC Group
 
Are You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkAre You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkBlackLine
 
Iso 37000
Iso 37000Iso 37000
Iso 37000Mayada EL Moaaz
 
Developing asset management plans
Developing asset management plans Developing asset management plans
Developing asset management plans OntarioEast
 
Introduction to internal auditing
Introduction to internal auditingIntroduction to internal auditing
Introduction to internal auditingDavid Griffiths
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & complianceHR Globe Consulting
 
Integrating Risk Appetite With Strategy Feb 14 2011
Integrating Risk Appetite With Strategy Feb 14 2011Integrating Risk Appetite With Strategy Feb 14 2011
Integrating Risk Appetite With Strategy Feb 14 2011Andrew Smart
 
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...PECB
 
Leveraging Effective Risk Management and Internal Control for Your Organization
Leveraging Effective Risk Management and Internal Control for Your OrganizationLeveraging Effective Risk Management and Internal Control for Your Organization
Leveraging Effective Risk Management and Internal Control for Your OrganizationInternational Federation of Accountants
 
Governance, Risk Management, and Internal Control
Governance, Risk Management, and Internal ControlGovernance, Risk Management, and Internal Control
Governance, Risk Management, and Internal ControlInternational Federation of Accountants
 

Contenu connexe

Tendances

Coso Internal Control Integrated Framework
Coso Internal Control Integrated FrameworkCoso Internal Control Integrated Framework
Coso Internal Control Integrated Frameworkhyesue
 
An introduction to internal auditing
An introduction to internal auditingAn introduction to internal auditing
An introduction to internal auditinggrifff
 
Business Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS ImplementationBusiness Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS ImplementationPECB
 
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...International Federation of Accountants
 
Coso internal control integrated framework
Coso internal control integrated frameworkCoso internal control integrated framework
Coso internal control integrated frameworkIrfan Ahmed - ACA, CICA
 
Governance, Risk & Compliance Management Solution
Governance, Risk & Compliance Management SolutionGovernance, Risk & Compliance Management Solution
Governance, Risk & Compliance Management SolutionRishabh Software
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing PresentationVernon Benjamin
 
Enterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management ProcessEnterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management Processregio12
 
What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance BOC Group
 
Are You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkAre You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkBlackLine
 
Developing asset management plans
Developing asset management plans Developing asset management plans
Developing asset management plans OntarioEast
 
Introduction to internal auditing
Introduction to internal auditingIntroduction to internal auditing
Introduction to internal auditingDavid Griffiths
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & complianceHR Globe Consulting
 
Integrating Risk Appetite With Strategy Feb 14 2011
Integrating Risk Appetite With Strategy Feb 14 2011Integrating Risk Appetite With Strategy Feb 14 2011
Integrating Risk Appetite With Strategy Feb 14 2011Andrew Smart
 
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...PECB
 

Tendances (20)

Coso Internal Control Integrated Framework
Coso Internal Control Integrated FrameworkCoso Internal Control Integrated Framework
Coso Internal Control Integrated Framework
 
It governance & cobit 5
It governance & cobit 5It governance & cobit 5
It governance & cobit 5
 
Cisa domain 1
Cisa domain 1 Cisa domain 1
Cisa domain 1
 
An introduction to internal auditing
An introduction to internal auditingAn introduction to internal auditing
An introduction to internal auditing
 
Business Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS ImplementationBusiness Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS Implementation
 
Coso erm
Coso ermCoso erm
Coso erm
 
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
 
COSO ERM
COSO ERMCOSO ERM
COSO ERM
 
Coso internal control integrated framework
Coso internal control integrated frameworkCoso internal control integrated framework
Coso internal control integrated framework
 
Governance, Risk & Compliance Management Solution
Governance, Risk & Compliance Management SolutionGovernance, Risk & Compliance Management Solution
Governance, Risk & Compliance Management Solution
 
Basic Internal Auditing Presentation
Basic Internal Auditing PresentationBasic Internal Auditing Presentation
Basic Internal Auditing Presentation
 
Enterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management ProcessEnterprise Risk Management as a Core Management Process
Enterprise Risk Management as a Core Management Process
 
What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance What is GRC – Governance, Risk and Compliance
What is GRC – Governance, Risk and Compliance
 
Are You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls FrameworkAre You Ready? Implementing COSO's Updated Internal Controls Framework
Are You Ready? Implementing COSO's Updated Internal Controls Framework
 
Iso 37000
Iso 37000Iso 37000
Iso 37000
 
Developing asset management plans
Developing asset management plans Developing asset management plans
Developing asset management plans
 
Introduction to internal auditing
Introduction to internal auditingIntroduction to internal auditing
Introduction to internal auditing
 
Grc governance, risk management & compliance
Grc governance, risk management & complianceGrc governance, risk management & compliance
Grc governance, risk management & compliance
 
Integrating Risk Appetite With Strategy Feb 14 2011
Integrating Risk Appetite With Strategy Feb 14 2011Integrating Risk Appetite With Strategy Feb 14 2011
Integrating Risk Appetite With Strategy Feb 14 2011
 
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
Implementation of Enterprise Risk Management with ISO 31000 Risk Management S...
 

En vedette

Leveraging Effective Risk Management and Internal Control for Your Organization
Leveraging Effective Risk Management and Internal Control for Your OrganizationLeveraging Effective Risk Management and Internal Control for Your Organization
Leveraging Effective Risk Management and Internal Control for Your OrganizationInternational Federation of Accountants
 
Managing Risk in Nonprofit Organizations
Managing Risk in Nonprofit OrganizationsManaging Risk in Nonprofit Organizations
Managing Risk in Nonprofit OrganizationsTate Tryon CPAs
 
IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15
IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15
IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15Workiva
 
The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...
The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...
The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...International Federation of Accountants
 
Corporate Governance - Presentation - Karim Virani
Corporate Governance - Presentation - Karim ViraniCorporate Governance - Presentation - Karim Virani
Corporate Governance - Presentation - Karim ViraniKarim Virani
 
Internal control and Control Self Assessment
Internal control and Control Self AssessmentInternal control and Control Self Assessment
Internal control and Control Self AssessmentManoj Agarwal
 
Control Self Assessment
Control Self AssessmentControl Self Assessment
Control Self AssessmentManoj Agarwal
 
Internal control system
Internal control systemInternal control system
Internal control systemHina Varshney
 
Internal Control
Internal ControlInternal Control
Internal ControlSalih Islam
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditingHardik Shah
 
Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009Goutama Bachtiar
 
Strategically managing your insurance program
Strategically managing your insurance programStrategically managing your insurance program
Strategically managing your insurance programmikaelastafrace
 
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?Swenson Advisors, LLP
 

En vedette (20)

Leveraging Effective Risk Management and Internal Control for Your Organization
Leveraging Effective Risk Management and Internal Control for Your OrganizationLeveraging Effective Risk Management and Internal Control for Your Organization
Leveraging Effective Risk Management and Internal Control for Your Organization
 
Governance, Risk Management, and Internal Control
Governance, Risk Management, and Internal ControlGovernance, Risk Management, and Internal Control
Governance, Risk Management, and Internal Control
 
RMIC - It's What We Do
RMIC - It's What We DoRMIC - It's What We Do
RMIC - It's What We Do
 
Recent COSO Internal Control and Risk Management Developments
Recent COSO Internal Control and Risk Management DevelopmentsRecent COSO Internal Control and Risk Management Developments
Recent COSO Internal Control and Risk Management Developments
 
Managing Risk in Nonprofit Organizations
Managing Risk in Nonprofit OrganizationsManaging Risk in Nonprofit Organizations
Managing Risk in Nonprofit Organizations
 
IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15
IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15
IMA Annual Event LA 2015 Brad Monterio and Liv Watson 23 jun15
 
The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...
The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...
The Essential Experience for CAEs: Risk Management is Dead, Long Live Risk Ma...
 
Corporate Governance - Presentation - Karim Virani
Corporate Governance - Presentation - Karim ViraniCorporate Governance - Presentation - Karim Virani
Corporate Governance - Presentation - Karim Virani
 
Internal control and Control Self Assessment
Internal control and Control Self AssessmentInternal control and Control Self Assessment
Internal control and Control Self Assessment
 
Control Self Assessment
Control Self AssessmentControl Self Assessment
Control Self Assessment
 
8. internal control new
8. internal control new8. internal control new
8. internal control new
 
Internal control system
Internal control systemInternal control system
Internal control system
 
Internal Control
Internal ControlInternal Control
Internal Control
 
Internal controls in auditing
Internal controls in auditingInternal controls in auditing
Internal controls in auditing
 
Corporate Governance
Corporate GovernanceCorporate Governance
Corporate Governance
 
Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009
 
Strategically managing your insurance program
Strategically managing your insurance programStrategically managing your insurance program
Strategically managing your insurance program
 
Governance, Risk Management, and Internal Control in the Public Sector
Governance, Risk Management, and Internal Control in the Public SectorGovernance, Risk Management, and Internal Control in the Public Sector
Governance, Risk Management, and Internal Control in the Public Sector
 
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
What is Hot About the New COSO Monitoring Guidance for Internal Control Systems?
 
Coso erm frmwrk
Coso erm frmwrkCoso erm frmwrk
Coso erm frmwrk
 

Similaire à Upgrading Risk Management and Internal Control in Your Organization

Risk Assessments Best Practice and Practical Approaches Webinar
Risk Assessments Best Practice and Practical Approaches WebinarRisk Assessments Best Practice and Practical Approaches Webinar
Risk Assessments Best Practice and Practical Approaches WebinarAviva Spectrum™
 
How Good are you at Managing your processes
How Good are you at Managing your processesHow Good are you at Managing your processes
How Good are you at Managing your processesRobert Topley
 
The System and Process of Controlling
The System and Process of ControllingThe System and Process of Controlling
The System and Process of ControllingMahamid Rahman
 
Internal Audit Strategic Framework
Internal Audit Strategic FrameworkInternal Audit Strategic Framework
Internal Audit Strategic FrameworkJeremy Cheng
 
New York, NY, ALA NYC Chapter Key Performance Indicators (KPI) Presentation
New York, NY, ALA NYC Chapter Key Performance Indicators (KPI) PresentationNew York, NY, ALA NYC Chapter Key Performance Indicators (KPI) Presentation
New York, NY, ALA NYC Chapter Key Performance Indicators (KPI) PresentationFrederick J. Esposito, Jr., CLM
 
performancemeasureme-190924125438.pptx
performancemeasureme-190924125438.pptxperformancemeasureme-190924125438.pptx
performancemeasureme-190924125438.pptxManojMba2
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsInternal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsNimonik
 
CMMI & Six Sigma Integration
CMMI & Six Sigma IntegrationCMMI & Six Sigma Integration
CMMI & Six Sigma IntegrationAnand Subramaniam
 
Simplifying Financial Performance Management
Simplifying Financial Performance ManagementSimplifying Financial Performance Management
Simplifying Financial Performance ManagementCFO Group
 
Balancedscorecardpresentation
BalancedscorecardpresentationBalancedscorecardpresentation
BalancedscorecardpresentationRizwan Ahmed
 
A Comprehensive Guide to US CMA Syllabus 2022
A Comprehensive Guide to US CMA Syllabus 2022A Comprehensive Guide to US CMA Syllabus 2022
A Comprehensive Guide to US CMA Syllabus 2022chinuroula
 
Reporting to the Board on Corporate Compliance
Reporting to the Board on Corporate ComplianceReporting to the Board on Corporate Compliance
Reporting to the Board on Corporate ComplianceResolver Inc.
 
2 jaime graham collections (4 3)
2 jaime graham collections (4 3)2 jaime graham collections (4 3)
2 jaime graham collections (4 3)CCR-interactive
 
MCO 101 Unit 6 Lecture 5
MCO 101 Unit 6 Lecture 5MCO 101 Unit 6 Lecture 5
MCO 101 Unit 6 Lecture 5Derek Nicoll
 
Compliance Capability
Compliance CapabilityCompliance Capability
Compliance Capabilitynikatmalik
 

Similaire à Upgrading Risk Management and Internal Control in Your Organization (20)

Risk Assessments Best Practice and Practical Approaches Webinar
Risk Assessments Best Practice and Practical Approaches WebinarRisk Assessments Best Practice and Practical Approaches Webinar
Risk Assessments Best Practice and Practical Approaches Webinar
 
How Good are you at Managing your processes
How Good are you at Managing your processesHow Good are you at Managing your processes
How Good are you at Managing your processes
 
The Balanced Scorecard
The Balanced ScorecardThe Balanced Scorecard
The Balanced Scorecard
 
Elevating IA
Elevating IAElevating IA
Elevating IA
 
SFC Plan of engagement
SFC Plan of engagementSFC Plan of engagement
SFC Plan of engagement
 
The System and Process of Controlling
The System and Process of ControllingThe System and Process of Controlling
The System and Process of Controlling
 
Internal Audit Strategic Framework
Internal Audit Strategic FrameworkInternal Audit Strategic Framework
Internal Audit Strategic Framework
 
New York, NY, ALA NYC Chapter Key Performance Indicators (KPI) Presentation
New York, NY, ALA NYC Chapter Key Performance Indicators (KPI) PresentationNew York, NY, ALA NYC Chapter Key Performance Indicators (KPI) Presentation
New York, NY, ALA NYC Chapter Key Performance Indicators (KPI) Presentation
 
performancemeasureme-190924125438.pptx
performancemeasureme-190924125438.pptxperformancemeasureme-190924125438.pptx
performancemeasureme-190924125438.pptx
 
Performance measureme
Performance measuremePerformance measureme
Performance measureme
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsInternal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality Audits
 
CMMI & Six Sigma Integration
CMMI & Six Sigma IntegrationCMMI & Six Sigma Integration
CMMI & Six Sigma Integration
 
Simplifying Financial Performance Management
Simplifying Financial Performance ManagementSimplifying Financial Performance Management
Simplifying Financial Performance Management
 
Balancedscorecardpresentation
BalancedscorecardpresentationBalancedscorecardpresentation
Balancedscorecardpresentation
 
A Comprehensive Guide to US CMA Syllabus 2022
A Comprehensive Guide to US CMA Syllabus 2022A Comprehensive Guide to US CMA Syllabus 2022
A Comprehensive Guide to US CMA Syllabus 2022
 
Kra presentation
Kra presentationKra presentation
Kra presentation
 
Reporting to the Board on Corporate Compliance
Reporting to the Board on Corporate ComplianceReporting to the Board on Corporate Compliance
Reporting to the Board on Corporate Compliance
 
2 jaime graham collections (4 3)
2 jaime graham collections (4 3)2 jaime graham collections (4 3)
2 jaime graham collections (4 3)
 
MCO 101 Unit 6 Lecture 5
MCO 101 Unit 6 Lecture 5MCO 101 Unit 6 Lecture 5
MCO 101 Unit 6 Lecture 5
 
Compliance Capability
Compliance CapabilityCompliance Capability
Compliance Capability
 

Plus de International Federation of Accountants

Otros pronunciamientos: Información financiera según la base contable de efec...
Otros pronunciamientos: Información financiera según la base contable de efec...Otros pronunciamientos: Información financiera según la base contable de efec...
Otros pronunciamientos: Información financiera según la base contable de efec...International Federation of Accountants
 
Presentación de los Estados Financieros Estados de situación financiera, rend...
Presentación de los Estados Financieros Estados de situación financiera, rend...Presentación de los Estados Financieros Estados de situación financiera, rend...
Presentación de los Estados Financieros Estados de situación financiera, rend...International Federation of Accountants
 

Plus de International Federation of Accountants (20)

Closing Remarks International Women's Day 2024
Closing Remarks International Women's Day 2024Closing Remarks International Women's Day 2024
Closing Remarks International Women's Day 2024
 
IFAC Principios revisados de Gobierno Corporativo del G20 y de la OCDE
IFAC Principios revisados de Gobierno Corporativo del G20 y de la OCDEIFAC Principios revisados de Gobierno Corporativo del G20 y de la OCDE
IFAC Principios revisados de Gobierno Corporativo del G20 y de la OCDE
 
IFAC Presentación IGEP sobre OCDE-G20, Febrero 2024
IFAC Presentación IGEP sobre OCDE-G20, Febrero 2024IFAC Presentación IGEP sobre OCDE-G20, Febrero 2024
IFAC Presentación IGEP sobre OCDE-G20, Febrero 2024
 
Preparing for High Quality Sustainability assurance Engagements
Preparing for High Quality Sustainability assurance EngagementsPreparing for High Quality Sustainability assurance Engagements
Preparing for High Quality Sustainability assurance Engagements
 
Otros pronunciamientos: Información financiera según la base contable de efec...
Otros pronunciamientos: Información financiera según la base contable de efec...Otros pronunciamientos: Información financiera según la base contable de efec...
Otros pronunciamientos: Información financiera según la base contable de efec...
 
Otros pronunciamientos: Guías de Prácticas Recomendadas
Otros pronunciamientos: Guías de Prácticas RecomendadasOtros pronunciamientos: Guías de Prácticas Recomendadas
Otros pronunciamientos: Guías de Prácticas Recomendadas
 
Otros pronunciamientos: Marco conceptual
Otros pronunciamientos: Marco conceptualOtros pronunciamientos: Marco conceptual
Otros pronunciamientos: Marco conceptual
 
Adopción por primera vez de las NICSP de base de devengo
Adopción por primera vez de las NICSP de base de devengoAdopción por primera vez de las NICSP de base de devengo
Adopción por primera vez de las NICSP de base de devengo
 
Moneda Extranjera
Moneda ExtranjeraMoneda Extranjera
Moneda Extranjera
 
Presentación de la información presupuestaria
Presentación de la información presupuestariaPresentación de la información presupuestaria
Presentación de la información presupuestaria
 
Revelaciones de partes relacionadas
Revelaciones de partes relacionadasRevelaciones de partes relacionadas
Revelaciones de partes relacionadas
 
Estado de Flujos de Efectivo
Estado de Flujos de EfectivoEstado de Flujos de Efectivo
Estado de Flujos de Efectivo
 
Presentación de los Estados Financieros Estados de situación financiera, rend...
Presentación de los Estados Financieros Estados de situación financiera, rend...Presentación de los Estados Financieros Estados de situación financiera, rend...
Presentación de los Estados Financieros Estados de situación financiera, rend...
 
Combinaciones del sector público
Combinaciones del sector públicoCombinaciones del sector público
Combinaciones del sector público
 
Consolidación
ConsolidaciónConsolidación
Consolidación
 
Instrumentos financieros – Revelaciones
Instrumentos financieros – RevelacionesInstrumentos financieros – Revelaciones
Instrumentos financieros – Revelaciones
 
Instrumentos financieros – Cobertura y derivados
Instrumentos financieros – Cobertura y derivadosInstrumentos financieros – Cobertura y derivados
Instrumentos financieros – Cobertura y derivados
 
Instrumentos financieros – Conceptos básicos
Instrumentos financieros – Conceptos básicos Instrumentos financieros – Conceptos básicos
Instrumentos financieros – Conceptos básicos
 
Instrumentos financieros – Revelaciones
Instrumentos financieros – Revelaciones Instrumentos financieros – Revelaciones
Instrumentos financieros – Revelaciones
 
Instrumentos financieros – Coberturas y derivados
Instrumentos financieros – Coberturas y derivadosInstrumentos financieros – Coberturas y derivados
Instrumentos financieros – Coberturas y derivados
 

Dernier

Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAIGetting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAITim Wilson
 
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030tarushabhavsar
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with CultureSeta Wicaksana
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPanhandleOilandGas
 
Falcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial WingsFalcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial WingsFalcon Invoice Discounting
 
Mckinsey foundation level Handbook for Viewing
Mckinsey foundation level Handbook for ViewingMckinsey foundation level Handbook for Viewing
Mckinsey foundation level Handbook for ViewingNauman Safdar
 
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...Falcon Invoice Discounting
 
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All TimeCall 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Timegargpaaro
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxRoofing Contractor
 
Buy Verified TransferWise Accounts From Seosmmearth
Buy Verified TransferWise Accounts From SeosmmearthBuy Verified TransferWise Accounts From Seosmmearth
Buy Verified TransferWise Accounts From SeosmmearthBuy Verified Binance Account
 
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Adnet Communications
 
Arti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfArti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfwill854175
 
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...meghakumariji156
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...daisycvs
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityEric T. Tung
 
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGParadip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGpr788182
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Centuryrwgiffor
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecZurliaSoop
 
Falcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon investment
 

Dernier (20)

Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAIGetting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
 
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030Over the Top (OTT) Market Size & Growth Outlook 2024-2030
Over the Top (OTT) Market Size & Growth Outlook 2024-2030
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation Final
 
Falcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial WingsFalcon Invoice Discounting: Tailored Financial Wings
Falcon Invoice Discounting: Tailored Financial Wings
 
Mckinsey foundation level Handbook for Viewing
Mckinsey foundation level Handbook for ViewingMckinsey foundation level Handbook for Viewing
Mckinsey foundation level Handbook for Viewing
 
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
 
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All TimeCall 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
Call 7737669865 Vadodara Call Girls Service at your Door Step Available All Time
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
 
Buy Verified TransferWise Accounts From Seosmmearth
Buy Verified TransferWise Accounts From SeosmmearthBuy Verified TransferWise Accounts From Seosmmearth
Buy Verified TransferWise Accounts From Seosmmearth
 
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
 
Arti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfArti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdf
 
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
HomeRoots Pitch Deck | Investor Insights | April 2024
HomeRoots Pitch Deck | Investor Insights | April 2024HomeRoots Pitch Deck | Investor Insights | April 2024
HomeRoots Pitch Deck | Investor Insights | April 2024
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League City
 
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGParadip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Paradip CALL GIRL❤7091819311❤CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan CytotecJual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
Jual Obat Aborsi ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan Cytotec
 
Falcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business Growth
 

Upgrading Risk Management and Internal Control in Your Organization

  • 1. Upgrading Risk Management and Internal Control in Your Organization J. Stephen McNally, Campbell Soup & Vincent H. Tophoff, IFAC
  • 3. Upgrading RM/IC in Your Organization  Current Considerations  Assessing RM/IC Maturity Stage  A Case Study  Recap & Call to Action
  • 5. Serious RM/IC Flaws • Having a compliance-only mentality • Treating risk as only negative and overlooking idea that organizations need to take risk in pursuit of their objectives • RM/IC that is overly focused on external financial reporting • Regarding RM/IC as a separate function or process • Viewing risk management as predominantly important for operations
  • 6. Bad vs. Good RM/IC Practices RM/IC as objective in itself vs. RM/IC to help achieve objectives Auditor / staff driven vs. Driven from top down Rules-based vs. Performance & principles-based Off-the-shelf systems vs. Tailored to the organization Focused on loss minimization vs. Also focused on value creation Mainly hard controls vs. Recognizing culture & attitude Imposed vs. Implemented organically Stand-alone / “bolt-on” vs. Integrated / ”built-in” Static, out-of-date vs. Dynamic, evolving Seen as overhead vs. Seen as a sound investment Abandoned vs. Integrated in governance
  • 7. 2013 COSO Internal Control Cube
  • 9. COSO IC vs. COSO ERM
  • 10. ISO 31000 Principles, Framework & Process
  • 11. COSO ERM vs. ISO 31000 Many entities use both COSO ERM & ISO 31000… … Biggest challenge is that concepts are not aligned COSO ISO 31000 Lengthy vs. Short Focused on ERM vs. General approach to managing risk One cube vs. Principles, framework & process Skewed to negative vs. Risk can be positive or negative Risk already exists vs. Risk tied to achieving objectives Risk & opportunities vs. Opportunities also source of risk More sequential process vs. More iterative process
  • 12. Relation of Governance, RM & IC • How do you think that governance, risk management, and internal control are related to each other?
  • 15. • Is not to have effective controls… • Is not to effectively manage risk… But to • Properly set & achieve your objectives • Avoid too many surprises along the way • And create sustainable value Main Objective of RM/IC
  • 16. Governance comprises the arrangements (plan, do, check, and act) put in place to ensure that the intended objectives are defined and achieved • RM/IC are integral part of that! RM/IC Integral Part of Good Governance
  • 17. Relation of Risk Management & Internal Control
  • 20. • Use the Frameworks • Consider good practice developments • Perform gap analysis • Determine performance • Look at audit results • Analyze serious flaws • … • Continuously move to improvement! Thoughts on Assessing RM/IC Maturity
  • 21. Table Discussions • What is the maturity of risk management & internal control at your organization?
  • 23. My COSO Story U.S. SOX Act 1992 COSO Cube + =
  • 24. The Evolution SOX Compliance Control Self- Assessment CFO Protocol 2004 2006 2009 • Annual site visits • Content: “Tone”, Financial, I/C • Focus: Location-specific risks • Execute “formal” procedures • Issue “trip report”
  • 25. My Challenge • First CFO Protocol ever completed • No specific guidance/ expectations • Cross-functional/ multi-location team • No “big picture” flow diagram and/or procedural documentation • No defined risks/ internal controls CFO Protocol: N/A Co-Manufacturing Operations
  • 26. Our Scope In-Scope Oversight activities to: • Identify • Select; and • Manage ongoing co-manufacturing partner relationships Out-of-Scope • Co-manufacturing partners themselves • Non-CNA businesses: o Canada o Latin America o Pepperidge Farm • Special pack business
  • 27. Our Game Plan Step 1 Obtain “big picture” overview Step 9 Step 8 Step 7 Step 6 Step 5 Step 4 Step 3 Step 2 Define testing protocol Walkthrough co-mfg processes Define key controls Identify key risks Test key controls Align findings & recommendations Issue final report Determine co-manufacturing objectives
  • 28. Co-Manufacturing Processes • New partner selection & contracts • Supply Base Quality System Assessments • Formula management & mock recalls • Cost standards & inventory management • Capital investments & fixed assets • Business continuity planning • Other
  • 29. Entity Structure = CFO Protocol Scope Entity Structure Components CNA Co-Mfg. Operations • Campbell Soup Company o Campbell North America  U.S. Retail  CNA Supply Chain ‒ Napoleon Plant • Global Procurement • Other: Legal, Quality, etc.
  • 30. Objectives Entity Structure Components CNA Co-Mfg Operations • Strategic • Operational • Internal Reporting • Compliance
  • 31. Components: Internal Environment Entity Structure Components Encompasses the tone of an organization… What is the internal philosophy and culture?
  • 32. Components: Objective Setting Entity Structure Components Objectives are a prerequisite… What are we trying to accomplish? Leverage external partners to: - Meet new Brand requirements - Optimize total delivered cost - Address supply chain capacity
  • 33. Components: Event Identification Entity Structure Components In terms of internal & external events… What could stop us from achieving our objectives? Co-Mfg Risks: - Product quality - Partner’s financial stability - Formula management - Business continuity
  • 34. Components: Risk Assessment Entity Structure Components Analyze risks to determine how they should be managed… • How good or bad are these events? • Will they really happen?
  • 35. Components: Risk Response Entity Structure Components What can we do to manage the identified risk? What are the options? • Avoid? • Accept? • Reduce? • Share? • Exploit?
  • 36. Components: Control Activities Entity Structure Components What policies & procedures should be established to manage the risks as desired? Co-Mfg. Controls: - Quality audits & mock recalls - Co-Man & D&B reporting - Formula Management - Annual BCP review & testing
  • 37. Components: Information & Communication Entity Structure Components How will we obtain information and communicate? What information is relevant to enable people to carry out their responsibilities? Co-Mfg: - Partner relationship manager - Cross-functional team meetings - Standardized reporting
  • 38. Components: Monitoring Entity Structure Components How will we know we achieved what we wanted to accomplish? What ongoing management activities and/or separate evaluations can we leverage? Co-Mfg: - Quarterly business reviews - CFO protocol visit(s) - Internal audits - SAS 70
  • 39. Recap & Call to Action
  • 40. • Serious RM/IC flaws • Frameworks and guidance can help • Climbing maturity ladder through continual improvement • Companies like Campbell’s are on this journey • What about you and your organization? Recap
  • 41. Effective RM/IC & You • How could you more effectively leverage risk management & internal control within your organization?
  • 42. • Build subject-matter-expertise regarding frameworks, standards & other guidance • Educate audit committee, C-suite, operating unit & functional management • Support line management through provision of high-quality information • Establish good RM/IC for the finance function • Champion importance of continuous RM/IC improvement Management Accountant: Call to Action
  • 43.
  • 44. 10 Paragon Drive, Suite 1 Montvale, New Jersey 07645-1760 U.S.A. (800) 638-4427 +1 (201) 573-9000 www.imanet.org 10 Paragon Drive, Suite 1 Montvale, New Jersey 07645-1760 U.S.A. (800) 638-4427 +1 (201) 573-9000 www.imanet.org