SlideShare une entreprise Scribd logo

IDC concur analyst piece

Kathleen Wilhide
Kathleen Wilhide
1  sur  3
Télécharger pour lire hors ligne
IDC 614 I D C A N A L Y S T C O N N E C T I O N Kathleen Wilhide Research Director, Compliance and Business Performance Management Solutions Avoiding the Compliance Trap for Travel and Expenses January 2008 Travel and related expenses are one of the largest controllable indirect expenses many companies incur. Managing adherence to policy and monitoring for fraud can be burdensome and costly tasks. Software that automates the travel and expense (T&E) process has always been a valuable investment for companies to achieve efficiency and provide policy enforcement. However, increasing compliance requirements, from the broad stroke of Sarbanes-Oxley to targeted regulations affecting financial services and pharmaceutical firms, now demand greater transparency and control over the T&E management process. Organizations weighing T&E automation should look beyond the value of streamlining the process to solutions that include analytic and reporting features that enforce compliance controls and provide audit evidence while minimizing business risks associated with uncontrolled spending and fraud. These more robust solutions are part of the extended enterprise applications market experiencing greater investment as a result of governance, risk, and compliance requirements. IDC estimates that some companies are spending up to 0.5% of revenue to meet compliance requirements, and investments to improve core processes and automatically enforce controls and compliance can ease the compliance burden while mitigating risk. With the promise of fast and dynamic delivery of software functionality, on-demand T&E solutions are helping companies quickly meet requirements to enforce policies and controls and are also providing capabilities to meet evolving compliance requirements. The following questions were posed by travel and expense management services provider Concur to Kathleen Wilhide, research director for IDC's Compliance and Business Performance Management (BPM) Solutions research, on behalf of Concur's customers. Q. What are the compliance issues surrounding employee travel and expense management? A. Compliance has a number of direct and indirect implications for companies. Many organizations have no choice but to assign employees to check and double-check operational controls and manually assemble evidence to prove adherence to policy. If control gaps are identified, auditors continue to make demands on organizations to prove risks are being managed. As the cost of compliance escalates, companies look to automated solutions to help them provide enforcement in areas that pose control risk or are impacted by specific legislation. T&E is one of those areas.
©2008 IDC2 Regulations such as Sarbanes-Oxley are not prescriptive with regard to what areas should be automated, but they provide overall guidance for processes that are material in nature and pose risk. When processes such as T&E pose control risks, the opportunity for fraud escalates. Companies can continue to manually monitor this process and incur increasing internal costs and audit fees or implement technology to automate the process and provide a system of record that auditors can rely on while reducing manual effort. Q. Which industries are particularly at risk for noncompliance, and why? A. Processes such as T&E management pose control risks for all industries. What organizations find is that other areas of legislation can also be satisfied through a common compliance process or an investment in software. The financial services and pharmaceutical industries are at the forefront of determining how their technology solutions can help meet multiple compliance requirements. From a T&E perspective, these two industries in particular are also looking to software to manage the T&E process and at the same time meet the requirements of currently evolving legislation for additional policy enforcement and reporting in this area. For example, in the financial services arena, the National Association of Securities Dealers (NASD) Rule 3060 addresses business entertainment expenses and conflicts of interest. Specifically, the rule prohibits brokers from giving gifts worth more than $100 in any given year to individuals with whom they have a business relationship. Gifts can take the form of entertainment as well as specific gifts, both of which are typically paid through corporate travel and expense reimbursement processes. The rule requires organizations to monitor compliance with this policy, enforce supervision and approval, and maintain detailed records of these expenses. The pharmaceutical industry has similar state-mandated gift-disclosure laws that require companies to provide comparable oversight and detailed reporting on gifts, promotions, marketing costs, drug samples, meals and entertainment, and travel expenditures. Failure to report can result in fines approaching $10,000. More expensive than the fines, however, is the brand impact associated with public disclosure of these violations. Regulations are in place in six states, with similar legislation pending in other states as well. Requirements like these are cumbersome to enforce manually, but they are a natural extension of an automated T&E process, which then becomes the system of record for compliance with this regulation. Q. What can companies do to improve internal controls and compliance? A. Internal control weaknesses and related compliance risks are buried in operational processes, and when technology is implemented, consideration must be given not only to the processing of high volumes of transactions but also to the enforcement of corporate policies and the ability to provide exception reporting. Purpose-built software and on-demand services that automate areas such as T&E management from both policy and transaction processing perspectives are part of a best practices approach to achieve operational efficiency while mitigating risks associated with error, fraud, and legislative rule violations. Once the company's audit firm establishes that an enterprise system is functioning as intended and supporting prescribed policies and internal controls, it becomes a system of record that can be relied upon. When processes are manual or spreadsheet driven, they represent a risk of noncompliance subject to regulatory action as well as an increased risk that may drive higher audit fees.
©2008 IDC 3 Q. How is the value proposition for automating T&E evolving? A. Manual T&E processes can be time-consuming and subject to error. When T&E represents a material expense to the business, it is a process ripe for automation, and the value proposition of implementing technology is further increased in light of heightened scrutiny of internal control reviews or specific legislation in industries such as pharmaceuticals or financial services. By automating the process, organizations can prove process consistency and policy enforcement to regulators and auditors and also take comfort in knowing that the risk of fraud and error is mitigated. When this automation is coupled with process optimization, cost savings and resulting return on investment can be significant. Q. What should companies look for in an on-demand provider of travel booking and expense reporting solutions? A. The solutions best suited to on-demand delivery are those that can deliver support for repeatable processes. Certainly the basic processes around T&E are similar enough from company to company, with variability lying in the establishment of policies and business rules. Travel and expense is perfectly suited to delivery as an on-demand solution, as core functionality can be deployed consistently as a service, with individual company business rules dictating its application. These solutions have evolved to help organizations manage the entire process — from the procurement of travel to payment of vendors and reimbursement of employees — which can provide a greater degree of visibility, control, and compliance compared with disparate systems that manage each step of the process discretely. This is a great example of how organizations can use an on-demand solution to quickly automate the core process and meet individual policy needs with minimal impact on their IT departments. From a compliance perspective, on-demand providers undergo a SAS 70 Type 2 audit that provides their customers with assurance around internal control enforcement. As companies look to implement technology for key business processes, on-demand providers can help them achieve quick time to value. A B O U T T H I S A N A L Y S T Kathleen Wilhide is the research director for Compliance and Business Performance Management (BPM) Solutions research at IDC, a worldwide research firm with headquarters in Framingham, Massachusetts. Ms. Wilhide directs IDC's research efforts on software solutions supporting compliance and risk management and related business assurance processes. A B O U T T H I S P U B L I C A T I O N This publication was produced by IDC Go-to-Market Services. The opinion, analysis, and research results presented herein are drawn from more detailed research and analysis independently conducted and published by IDC, unless specific vendor sponsorship is noted. IDC Go-to-Market Services makes IDC content available in a wide range of formats for distribution by various companies. A license to distribute IDC content does not imply endorsement of or opinion about the licensee. C O P Y R I G H T A N D R E S T R I C T I O N S Any IDC information or reference to IDC that is to be used in advertising, press releases, or promotional materials requires prior written approval from IDC. For permission requests, contact the GMS information line at 508-988-7610 or gms@idc.com. Translation and/or localization of this document requires an additional license from IDC. For more information on IDC, visit www.idc.com. For more information on IDC GMS, visit www.idc.com/gms. Global Headquarters: 5 Speen Street Framingham, MA 01701 USA P.508.872.8200 F.508.935.4015 www.idc.com

Recommandé

Vc us v4.0
Vc us v4.0Vc us v4.0
Vc us v4.0FixNix Inc.,
 
Lets understand the GRC market well with Ponemon analysis- FixNix
Lets understand the GRC market well with Ponemon analysis- FixNixLets understand the GRC market well with Ponemon analysis- FixNix
Lets understand the GRC market well with Ponemon analysis- FixNixFixNix Inc.,
 
Ey top-10-risks-in-telecommunications-2014
Ey top-10-risks-in-telecommunications-2014Ey top-10-risks-in-telecommunications-2014
Ey top-10-risks-in-telecommunications-2014CMR WORLD TECH
 
Forrester GRC Q1 2016 Report
Forrester GRC Q1 2016 ReportForrester GRC Q1 2016 Report
Forrester GRC Q1 2016 ReportDaryl Resnick
 
Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...
Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...
Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...Mubeen Yaqoob
 
Regulatory Change is a Business Opportunity, not a Burden
Regulatory Change is a Business Opportunity, not a Burden Regulatory Change is a Business Opportunity, not a Burden
Regulatory Change is a Business Opportunity, not a Burden Amit Agrawal
 
Modernizing Legacy Systems In Insurance-
Modernizing Legacy Systems In Insurance-Modernizing Legacy Systems In Insurance-
Modernizing Legacy Systems In Insurance-John Rao
 
Managing the Complexities of Governance, Risk & Compliance Requires
Managing the Complexities of Governance, Risk & Compliance RequiresManaging the Complexities of Governance, Risk & Compliance Requires
Managing the Complexities of Governance, Risk & Compliance RequiresWNS Global Services
 

Recommandé

Vc us v4.0
Vc us v4.0Vc us v4.0
Vc us v4.0FixNix Inc.,
 
Lets understand the GRC market well with Ponemon analysis- FixNix
Lets understand the GRC market well with Ponemon analysis- FixNixLets understand the GRC market well with Ponemon analysis- FixNix
Lets understand the GRC market well with Ponemon analysis- FixNixFixNix Inc.,
 
Ey top-10-risks-in-telecommunications-2014
Ey top-10-risks-in-telecommunications-2014Ey top-10-risks-in-telecommunications-2014
Ey top-10-risks-in-telecommunications-2014CMR WORLD TECH
 
Forrester GRC Q1 2016 Report
Forrester GRC Q1 2016 ReportForrester GRC Q1 2016 Report
Forrester GRC Q1 2016 ReportDaryl Resnick
 
Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...
Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...
Banking & Financial Services Strengthening GRC In The Banking & Financial Ser...Mubeen Yaqoob
 
Regulatory Change is a Business Opportunity, not a Burden
Regulatory Change is a Business Opportunity, not a Burden Regulatory Change is a Business Opportunity, not a Burden
Regulatory Change is a Business Opportunity, not a Burden Amit Agrawal
 
Modernizing Legacy Systems In Insurance-
Modernizing Legacy Systems In Insurance-Modernizing Legacy Systems In Insurance-
Modernizing Legacy Systems In Insurance-John Rao
 
Managing the Complexities of Governance, Risk & Compliance Requires
Managing the Complexities of Governance, Risk & Compliance RequiresManaging the Complexities of Governance, Risk & Compliance Requires
Managing the Complexities of Governance, Risk & Compliance RequiresWNS Global Services
 
ILTA 2011 Integration Of Legal Technology
ILTA 2011 Integration Of Legal TechnologyILTA 2011 Integration Of Legal Technology
ILTA 2011 Integration Of Legal Technologygrudoy
 
Compliance at Velocity with Chef (2)
Compliance at Velocity with Chef (2)Compliance at Velocity with Chef (2)
Compliance at Velocity with Chef (2)Toby Thorslund
 
A Holistic Approach to Insurance Automation
A Holistic Approach to Insurance AutomationA Holistic Approach to Insurance Automation
A Holistic Approach to Insurance AutomationAccenture Insurance
 
smartKYC&EYReportFeb2016wb
smartKYC&EYReportFeb2016wbsmartKYC&EYReportFeb2016wb
smartKYC&EYReportFeb2016wbHugo Chamberlain
 
_EY_smartKYC-Technological Innovations in KYC_3-16
_EY_smartKYC-Technological Innovations in KYC_3-16_EY_smartKYC-Technological Innovations in KYC_3-16
_EY_smartKYC-Technological Innovations in KYC_3-16Alessandro Tonchia
 
The risk executive agenda -- A compendium of Deloitte insights
The risk executive agenda -- A compendium of Deloitte insights The risk executive agenda -- A compendium of Deloitte insights
The risk executive agenda -- A compendium of Deloitte insights Deloitte United States
 
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...DVV Solutions Third Party Risk Management
 
Software Licence Audits - Facts Survival Benefits
Software Licence Audits - Facts Survival BenefitsSoftware Licence Audits - Facts Survival Benefits
Software Licence Audits - Facts Survival BenefitsEric Chiu
 
Future trends for legal services
Future trends for legal servicesFuture trends for legal services
Future trends for legal servicesKatrin Stefanicki
 
Why Size Matters in Merchant Onboarding
Why Size Matters in Merchant OnboardingWhy Size Matters in Merchant Onboarding
Why Size Matters in Merchant OnboardingProvenir
 
Compliance Cover Story
Compliance Cover StoryCompliance Cover Story
Compliance Cover StoryEffy Pafitis
 
2018 Compliance Risk Study: Financial Services
2018 Compliance Risk Study: Financial Services 2018 Compliance Risk Study: Financial Services
2018 Compliance Risk Study: Financial Services Accenture Insurance
 
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...RapidValue
 
2015 WACHA Hot Regulatory Exam Issues 03202015
2015 WACHA Hot Regulatory Exam Issues 032020152015 WACHA Hot Regulatory Exam Issues 03202015
2015 WACHA Hot Regulatory Exam Issues 03202015Brent Siegel
 
Accelerating Actuarial Processes
Accelerating Actuarial ProcessesAccelerating Actuarial Processes
Accelerating Actuarial ProcessesAgile Technologies
 
15 attributes of leaders in IT outsourcing
15 attributes of leaders in IT outsourcing15 attributes of leaders in IT outsourcing
15 attributes of leaders in IT outsourcingWGroup
 
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...SirionLabs
 
Top Internal Audit Priorities for Financial Services Organizations, 2016
Top Internal Audit Priorities for Financial Services Organizations, 2016Top Internal Audit Priorities for Financial Services Organizations, 2016
Top Internal Audit Priorities for Financial Services Organizations, 2016jennyhollingworth
 
Clincal teaching
Clincal teachingClincal teaching
Clincal teachingJe Ibasco
 
Po results2010
Po results2010Po results2010
Po results2010pranavpawan
 
Clincal teaching, THe learner
Clincal teaching, THe learnerClincal teaching, THe learner
Clincal teaching, THe learnerJe Ibasco
 
IBM wilhide better insight
IBM wilhide better insightIBM wilhide better insight
IBM wilhide better insightKathleen Wilhide
 

Contenu connexe

Tendances

ILTA 2011 Integration Of Legal Technology
ILTA 2011 Integration Of Legal TechnologyILTA 2011 Integration Of Legal Technology
ILTA 2011 Integration Of Legal Technologygrudoy
 
Compliance at Velocity with Chef (2)
Compliance at Velocity with Chef (2)Compliance at Velocity with Chef (2)
Compliance at Velocity with Chef (2)Toby Thorslund
 
A Holistic Approach to Insurance Automation
A Holistic Approach to Insurance AutomationA Holistic Approach to Insurance Automation
A Holistic Approach to Insurance AutomationAccenture Insurance
 
smartKYC&EYReportFeb2016wb
smartKYC&EYReportFeb2016wbsmartKYC&EYReportFeb2016wb
smartKYC&EYReportFeb2016wbHugo Chamberlain
 
_EY_smartKYC-Technological Innovations in KYC_3-16
_EY_smartKYC-Technological Innovations in KYC_3-16_EY_smartKYC-Technological Innovations in KYC_3-16
_EY_smartKYC-Technological Innovations in KYC_3-16Alessandro Tonchia
 
The risk executive agenda -- A compendium of Deloitte insights
The risk executive agenda -- A compendium of Deloitte insights The risk executive agenda -- A compendium of Deloitte insights
The risk executive agenda -- A compendium of Deloitte insights Deloitte United States
 
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...DVV Solutions Third Party Risk Management
 
Software Licence Audits - Facts Survival Benefits
Software Licence Audits - Facts Survival BenefitsSoftware Licence Audits - Facts Survival Benefits
Software Licence Audits - Facts Survival BenefitsEric Chiu
 
Future trends for legal services
Future trends for legal servicesFuture trends for legal services
Future trends for legal servicesKatrin Stefanicki
 
Why Size Matters in Merchant Onboarding
Why Size Matters in Merchant OnboardingWhy Size Matters in Merchant Onboarding
Why Size Matters in Merchant OnboardingProvenir
 
Compliance Cover Story
Compliance Cover StoryCompliance Cover Story
Compliance Cover StoryEffy Pafitis
 
2018 Compliance Risk Study: Financial Services
2018 Compliance Risk Study: Financial Services 2018 Compliance Risk Study: Financial Services
2018 Compliance Risk Study: Financial Services Accenture Insurance
 
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...RapidValue
 
2015 WACHA Hot Regulatory Exam Issues 03202015
2015 WACHA Hot Regulatory Exam Issues 032020152015 WACHA Hot Regulatory Exam Issues 03202015
2015 WACHA Hot Regulatory Exam Issues 03202015Brent Siegel
 
Accelerating Actuarial Processes
Accelerating Actuarial ProcessesAccelerating Actuarial Processes
Accelerating Actuarial ProcessesAgile Technologies
 
15 attributes of leaders in IT outsourcing
15 attributes of leaders in IT outsourcing15 attributes of leaders in IT outsourcing
15 attributes of leaders in IT outsourcingWGroup
 
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...SirionLabs
 
Top Internal Audit Priorities for Financial Services Organizations, 2016
Top Internal Audit Priorities for Financial Services Organizations, 2016Top Internal Audit Priorities for Financial Services Organizations, 2016
Top Internal Audit Priorities for Financial Services Organizations, 2016jennyhollingworth
 

Tendances (18)

ILTA 2011 Integration Of Legal Technology
ILTA 2011 Integration Of Legal TechnologyILTA 2011 Integration Of Legal Technology
ILTA 2011 Integration Of Legal Technology
 
Compliance at Velocity with Chef (2)
Compliance at Velocity with Chef (2)Compliance at Velocity with Chef (2)
Compliance at Velocity with Chef (2)
 
A Holistic Approach to Insurance Automation
A Holistic Approach to Insurance AutomationA Holistic Approach to Insurance Automation
A Holistic Approach to Insurance Automation
 
smartKYC&EYReportFeb2016wb
smartKYC&EYReportFeb2016wbsmartKYC&EYReportFeb2016wb
smartKYC&EYReportFeb2016wb
 
_EY_smartKYC-Technological Innovations in KYC_3-16
_EY_smartKYC-Technological Innovations in KYC_3-16_EY_smartKYC-Technological Innovations in KYC_3-16
_EY_smartKYC-Technological Innovations in KYC_3-16
 
The risk executive agenda -- A compendium of Deloitte insights
The risk executive agenda -- A compendium of Deloitte insights The risk executive agenda -- A compendium of Deloitte insights
The risk executive agenda -- A compendium of Deloitte insights
 
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
DVV Solutions Central Bank of Ireland Outsourcing discussion paper response 1...
 
Software Licence Audits - Facts Survival Benefits
Software Licence Audits - Facts Survival BenefitsSoftware Licence Audits - Facts Survival Benefits
Software Licence Audits - Facts Survival Benefits
 
Future trends for legal services
Future trends for legal servicesFuture trends for legal services
Future trends for legal services
 
Why Size Matters in Merchant Onboarding
Why Size Matters in Merchant OnboardingWhy Size Matters in Merchant Onboarding
Why Size Matters in Merchant Onboarding
 
Compliance Cover Story
Compliance Cover StoryCompliance Cover Story
Compliance Cover Story
 
2018 Compliance Risk Study: Financial Services
2018 Compliance Risk Study: Financial Services 2018 Compliance Risk Study: Financial Services
2018 Compliance Risk Study: Financial Services
 
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
Digitizing Insurance - Transforming Legacy Systems to Adopt Modern and Emergi...
 
2015 WACHA Hot Regulatory Exam Issues 03202015
2015 WACHA Hot Regulatory Exam Issues 032020152015 WACHA Hot Regulatory Exam Issues 03202015
2015 WACHA Hot Regulatory Exam Issues 03202015
 
Accelerating Actuarial Processes
Accelerating Actuarial ProcessesAccelerating Actuarial Processes
Accelerating Actuarial Processes
 
15 attributes of leaders in IT outsourcing
15 attributes of leaders in IT outsourcing15 attributes of leaders in IT outsourcing
15 attributes of leaders in IT outsourcing
 
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
SirionLabs Webinar Featuring Forrester - Plugging Value Leakage in IT Outsour...
 
Top Internal Audit Priorities for Financial Services Organizations, 2016
Top Internal Audit Priorities for Financial Services Organizations, 2016Top Internal Audit Priorities for Financial Services Organizations, 2016
Top Internal Audit Priorities for Financial Services Organizations, 2016
 

En vedette

Clincal teaching
Clincal teachingClincal teaching
Clincal teachingJe Ibasco
 
Clincal teaching, THe learner
Clincal teaching, THe learnerClincal teaching, THe learner
Clincal teaching, THe learnerJe Ibasco
 
IBM wilhide better insight
IBM wilhide better insightIBM wilhide better insight
IBM wilhide better insightKathleen Wilhide
 
Contadores Públicos A&D
Contadores Públicos A&DContadores Públicos A&D
Contadores Públicos A&Dmargiesita2
 
回溯催眠--張淑瑤
回溯催眠--張淑瑤回溯催眠--張淑瑤
回溯催眠--張淑瑤echochang
 
Clincal teaching
Clincal teachingClincal teaching
Clincal teachingJe Ibasco
 
0010365062 bb(1)
0010365062 bb(1)0010365062 bb(1)
0010365062 bb(1)echochang
 
A Better Run World Made Possible by SAP
A Better Run World Made Possible by SAPA Better Run World Made Possible by SAP
A Better Run World Made Possible by SAPKathleen Wilhide
 
How to recover from adversity
How to recover from adversityHow to recover from adversity
How to recover from adversityJe Ibasco
 
Real Time Search in The Era of Augmented Reality
Real Time Search in The Era of Augmented RealityReal Time Search in The Era of Augmented Reality
Real Time Search in The Era of Augmented Realitymichalavny
 

En vedette (17)

Clincal teaching
Clincal teachingClincal teaching
Clincal teaching
 
Po results2010
Po results2010Po results2010
Po results2010
 
Clincal teaching, THe learner
Clincal teaching, THe learnerClincal teaching, THe learner
Clincal teaching, THe learner
 
IBM wilhide better insight
IBM wilhide better insightIBM wilhide better insight
IBM wilhide better insight
 
Contadores Públicos A&D
Contadores Públicos A&DContadores Públicos A&D
Contadores Públicos A&D
 
回溯催眠--張淑瑤
回溯催眠--張淑瑤回溯催眠--張淑瑤
回溯催眠--張淑瑤
 
Clincal teaching
Clincal teachingClincal teaching
Clincal teaching
 
Analyst connection sap
Analyst connection sapAnalyst connection sap
Analyst connection sap
 
Prayer
PrayerPrayer
Prayer
 
0010365062 bb(1)
0010365062 bb(1)0010365062 bb(1)
0010365062 bb(1)
 
A Better Run World Made Possible by SAP
A Better Run World Made Possible by SAPA Better Run World Made Possible by SAP
A Better Run World Made Possible by SAP
 
How to recover from adversity
How to recover from adversityHow to recover from adversity
How to recover from adversity
 
Presentation1
Presentation1Presentation1
Presentation1
 
Asca
AscaAsca
Asca
 
Ppt mngmt
Ppt mngmtPpt mngmt
Ppt mngmt
 
Real Time Search in The Era of Augmented Reality
Real Time Search in The Era of Augmented RealityReal Time Search in The Era of Augmented Reality
Real Time Search in The Era of Augmented Reality
 
Vassouras eco resort
Vassouras eco resortVassouras eco resort
Vassouras eco resort
 

Similaire à IDC concur analyst piece

201302 Tech Decisions: Changing the Rules
201302 Tech Decisions: Changing the Rules201302 Tech Decisions: Changing the Rules
201302 Tech Decisions: Changing the RulesSteven Callahan
 
UiPath: Insurance in the Age of Intelligent Automation
UiPath: Insurance in the Age of Intelligent AutomationUiPath: Insurance in the Age of Intelligent Automation
UiPath: Insurance in the Age of Intelligent AutomationUiPath
 
Digitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue SolutionsDigitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue SolutionsRadhakrishnan Iyer
 
Claims Management - Edge through Efficiency
Claims Management - Edge through EfficiencyClaims Management - Edge through Efficiency
Claims Management - Edge through Efficiencyneetamundra
 
Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015
Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015
Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015Claire Louis
 
Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...
Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...
Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...Center for Communication Compliance
 
Navigating the Evolving Landscape.pdf
Navigating the Evolving Landscape.pdfNavigating the Evolving Landscape.pdf
Navigating the Evolving Landscape.pdfIPPCGroup
 
Compliance & data security – the way we work
Compliance & data security – the way we workCompliance & data security – the way we work
Compliance & data security – the way we workPuneet Chopra
 
Importance of Regulatory Compliance as a Part of Today’s Business
Importance of Regulatory Compliance as a Part of Today’s BusinessImportance of Regulatory Compliance as a Part of Today’s Business
Importance of Regulatory Compliance as a Part of Today’s Business360factors
 
KYC Initiative
KYC InitiativeKYC Initiative
KYC InitiativeJeff Plein
 
Introduction to IT compliance program and Discuss the challenges IT .pdf
Introduction to IT compliance program and Discuss the challenges IT .pdfIntroduction to IT compliance program and Discuss the challenges IT .pdf
Introduction to IT compliance program and Discuss the challenges IT .pdfSALES97
 
accounting information systems romney 12th edition chapter 1 manual solution
accounting information systems romney 12th edition chapter 1 manual solutionaccounting information systems romney 12th edition chapter 1 manual solution
accounting information systems romney 12th edition chapter 1 manual solutionIqbalFebriyanto
 
Convergence Compliance E Discovery Rim.Doc
Convergence Compliance E Discovery Rim.DocConvergence Compliance E Discovery Rim.Doc
Convergence Compliance E Discovery Rim.DocDavid Haines
 
Improving Customer Experience in Government-business Interaction.pdf
Improving Customer Experience in Government-business Interaction.pdfImproving Customer Experience in Government-business Interaction.pdf
Improving Customer Experience in Government-business Interaction.pdfdracomalfay
 
The Sarbanes Oxley ( Sox ) Act
The Sarbanes Oxley ( Sox ) ActThe Sarbanes Oxley ( Sox ) Act
The Sarbanes Oxley ( Sox ) ActDana Boo
 

Similaire à IDC concur analyst piece (20)

A Guide To IT Compliance Assessment And Management
A Guide To IT Compliance Assessment And ManagementA Guide To IT Compliance Assessment And Management
A Guide To IT Compliance Assessment And Management
 
201302 Tech Decisions: Changing the Rules
201302 Tech Decisions: Changing the Rules201302 Tech Decisions: Changing the Rules
201302 Tech Decisions: Changing the Rules
 
UiPath: Insurance in the Age of Intelligent Automation
UiPath: Insurance in the Age of Intelligent AutomationUiPath: Insurance in the Age of Intelligent Automation
UiPath: Insurance in the Age of Intelligent Automation
 
Digitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue SolutionsDigitizing Insurance - A Whitepaper by RapidValue Solutions
Digitizing Insurance - A Whitepaper by RapidValue Solutions
 
Memo to CEOs
Memo to CEOsMemo to CEOs
Memo to CEOs
 
Ey segregation of_duties
Ey segregation of_dutiesEy segregation of_duties
Ey segregation of_duties
 
Claims Management - Edge through Efficiency
Claims Management - Edge through EfficiencyClaims Management - Edge through Efficiency
Claims Management - Edge through Efficiency
 
Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015
Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015
Capgemini Consulting Claims Ops Model Alignment Program 3 13 2015
 
Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...
Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...
Slide Notes From CCC Presentation At Zinc Forum - PRT Efficiency - Turbo-Char...
 
Navigating the Evolving Landscape.pdf
Navigating the Evolving Landscape.pdfNavigating the Evolving Landscape.pdf
Navigating the Evolving Landscape.pdf
 
Compliance & data security – the way we work
Compliance & data security – the way we workCompliance & data security – the way we work
Compliance & data security – the way we work
 
The uses of pervasive intelligence
The uses of pervasive intelligenceThe uses of pervasive intelligence
The uses of pervasive intelligence
 
Importance of Regulatory Compliance as a Part of Today’s Business
Importance of Regulatory Compliance as a Part of Today’s BusinessImportance of Regulatory Compliance as a Part of Today’s Business
Importance of Regulatory Compliance as a Part of Today’s Business
 
KYC Initiative
KYC InitiativeKYC Initiative
KYC Initiative
 
Introduction to IT compliance program and Discuss the challenges IT .pdf
Introduction to IT compliance program and Discuss the challenges IT .pdfIntroduction to IT compliance program and Discuss the challenges IT .pdf
Introduction to IT compliance program and Discuss the challenges IT .pdf
 
accounting information systems romney 12th edition chapter 1 manual solution
accounting information systems romney 12th edition chapter 1 manual solutionaccounting information systems romney 12th edition chapter 1 manual solution
accounting information systems romney 12th edition chapter 1 manual solution
 
Convergence Compliance E Discovery Rim.Doc
Convergence Compliance E Discovery Rim.DocConvergence Compliance E Discovery Rim.Doc
Convergence Compliance E Discovery Rim.Doc
 
Improving Customer Experience in Government-business Interaction.pdf
Improving Customer Experience in Government-business Interaction.pdfImproving Customer Experience in Government-business Interaction.pdf
Improving Customer Experience in Government-business Interaction.pdf
 
The Sarbanes Oxley ( Sox ) Act
The Sarbanes Oxley ( Sox ) ActThe Sarbanes Oxley ( Sox ) Act
The Sarbanes Oxley ( Sox ) Act
 
Digital Transformation in Insurance Operations
Digital Transformation in Insurance OperationsDigital Transformation in Insurance Operations
Digital Transformation in Insurance Operations
 

IDC concur analyst piece

  • 1. IDC 614 I D C A N A L Y S T C O N N E C T I O N Kathleen Wilhide Research Director, Compliance and Business Performance Management Solutions Avoiding the Compliance Trap for Travel and Expenses January 2008 Travel and related expenses are one of the largest controllable indirect expenses many companies incur. Managing adherence to policy and monitoring for fraud can be burdensome and costly tasks. Software that automates the travel and expense (T&E) process has always been a valuable investment for companies to achieve efficiency and provide policy enforcement. However, increasing compliance requirements, from the broad stroke of Sarbanes-Oxley to targeted regulations affecting financial services and pharmaceutical firms, now demand greater transparency and control over the T&E management process. Organizations weighing T&E automation should look beyond the value of streamlining the process to solutions that include analytic and reporting features that enforce compliance controls and provide audit evidence while minimizing business risks associated with uncontrolled spending and fraud. These more robust solutions are part of the extended enterprise applications market experiencing greater investment as a result of governance, risk, and compliance requirements. IDC estimates that some companies are spending up to 0.5% of revenue to meet compliance requirements, and investments to improve core processes and automatically enforce controls and compliance can ease the compliance burden while mitigating risk. With the promise of fast and dynamic delivery of software functionality, on-demand T&E solutions are helping companies quickly meet requirements to enforce policies and controls and are also providing capabilities to meet evolving compliance requirements. The following questions were posed by travel and expense management services provider Concur to Kathleen Wilhide, research director for IDC's Compliance and Business Performance Management (BPM) Solutions research, on behalf of Concur's customers. Q. What are the compliance issues surrounding employee travel and expense management? A. Compliance has a number of direct and indirect implications for companies. Many organizations have no choice but to assign employees to check and double-check operational controls and manually assemble evidence to prove adherence to policy. If control gaps are identified, auditors continue to make demands on organizations to prove risks are being managed. As the cost of compliance escalates, companies look to automated solutions to help them provide enforcement in areas that pose control risk or are impacted by specific legislation. T&E is one of those areas.
  • 2. ©2008 IDC2 Regulations such as Sarbanes-Oxley are not prescriptive with regard to what areas should be automated, but they provide overall guidance for processes that are material in nature and pose risk. When processes such as T&E pose control risks, the opportunity for fraud escalates. Companies can continue to manually monitor this process and incur increasing internal costs and audit fees or implement technology to automate the process and provide a system of record that auditors can rely on while reducing manual effort. Q. Which industries are particularly at risk for noncompliance, and why? A. Processes such as T&E management pose control risks for all industries. What organizations find is that other areas of legislation can also be satisfied through a common compliance process or an investment in software. The financial services and pharmaceutical industries are at the forefront of determining how their technology solutions can help meet multiple compliance requirements. From a T&E perspective, these two industries in particular are also looking to software to manage the T&E process and at the same time meet the requirements of currently evolving legislation for additional policy enforcement and reporting in this area. For example, in the financial services arena, the National Association of Securities Dealers (NASD) Rule 3060 addresses business entertainment expenses and conflicts of interest. Specifically, the rule prohibits brokers from giving gifts worth more than $100 in any given year to individuals with whom they have a business relationship. Gifts can take the form of entertainment as well as specific gifts, both of which are typically paid through corporate travel and expense reimbursement processes. The rule requires organizations to monitor compliance with this policy, enforce supervision and approval, and maintain detailed records of these expenses. The pharmaceutical industry has similar state-mandated gift-disclosure laws that require companies to provide comparable oversight and detailed reporting on gifts, promotions, marketing costs, drug samples, meals and entertainment, and travel expenditures. Failure to report can result in fines approaching $10,000. More expensive than the fines, however, is the brand impact associated with public disclosure of these violations. Regulations are in place in six states, with similar legislation pending in other states as well. Requirements like these are cumbersome to enforce manually, but they are a natural extension of an automated T&E process, which then becomes the system of record for compliance with this regulation. Q. What can companies do to improve internal controls and compliance? A. Internal control weaknesses and related compliance risks are buried in operational processes, and when technology is implemented, consideration must be given not only to the processing of high volumes of transactions but also to the enforcement of corporate policies and the ability to provide exception reporting. Purpose-built software and on-demand services that automate areas such as T&E management from both policy and transaction processing perspectives are part of a best practices approach to achieve operational efficiency while mitigating risks associated with error, fraud, and legislative rule violations. Once the company's audit firm establishes that an enterprise system is functioning as intended and supporting prescribed policies and internal controls, it becomes a system of record that can be relied upon. When processes are manual or spreadsheet driven, they represent a risk of noncompliance subject to regulatory action as well as an increased risk that may drive higher audit fees.
  • 3. ©2008 IDC 3 Q. How is the value proposition for automating T&E evolving? A. Manual T&E processes can be time-consuming and subject to error. When T&E represents a material expense to the business, it is a process ripe for automation, and the value proposition of implementing technology is further increased in light of heightened scrutiny of internal control reviews or specific legislation in industries such as pharmaceuticals or financial services. By automating the process, organizations can prove process consistency and policy enforcement to regulators and auditors and also take comfort in knowing that the risk of fraud and error is mitigated. When this automation is coupled with process optimization, cost savings and resulting return on investment can be significant. Q. What should companies look for in an on-demand provider of travel booking and expense reporting solutions? A. The solutions best suited to on-demand delivery are those that can deliver support for repeatable processes. Certainly the basic processes around T&E are similar enough from company to company, with variability lying in the establishment of policies and business rules. Travel and expense is perfectly suited to delivery as an on-demand solution, as core functionality can be deployed consistently as a service, with individual company business rules dictating its application. These solutions have evolved to help organizations manage the entire process — from the procurement of travel to payment of vendors and reimbursement of employees — which can provide a greater degree of visibility, control, and compliance compared with disparate systems that manage each step of the process discretely. This is a great example of how organizations can use an on-demand solution to quickly automate the core process and meet individual policy needs with minimal impact on their IT departments. From a compliance perspective, on-demand providers undergo a SAS 70 Type 2 audit that provides their customers with assurance around internal control enforcement. As companies look to implement technology for key business processes, on-demand providers can help them achieve quick time to value. A B O U T T H I S A N A L Y S T Kathleen Wilhide is the research director for Compliance and Business Performance Management (BPM) Solutions research at IDC, a worldwide research firm with headquarters in Framingham, Massachusetts. Ms. Wilhide directs IDC's research efforts on software solutions supporting compliance and risk management and related business assurance processes. A B O U T T H I S P U B L I C A T I O N This publication was produced by IDC Go-to-Market Services. The opinion, analysis, and research results presented herein are drawn from more detailed research and analysis independently conducted and published by IDC, unless specific vendor sponsorship is noted. IDC Go-to-Market Services makes IDC content available in a wide range of formats for distribution by various companies. A license to distribute IDC content does not imply endorsement of or opinion about the licensee. C O P Y R I G H T A N D R E S T R I C T I O N S Any IDC information or reference to IDC that is to be used in advertising, press releases, or promotional materials requires prior written approval from IDC. For permission requests, contact the GMS information line at 508-988-7610 or gms@idc.com. Translation and/or localization of this document requires an additional license from IDC. For more information on IDC, visit www.idc.com. For more information on IDC GMS, visit www.idc.com/gms. Global Headquarters: 5 Speen Street Framingham, MA 01701 USA P.508.872.8200 F.508.935.4015 www.idc.com