regulators suggest it s time to double down on internal
play

Regulators Suggest its Time to Double Down on Internal Controls - PowerPoint PPT Presentation

May 04, 2023 •381 likes •630 views

Regulators Suggest its Time to Double Down on Internal Controls (Headline from Compliance Week) Robert Conway Professional Practice Director CNM LLP Rconway@cnmllp.com (714) 392-2499 Discussion Overview Overview of 2015 PCAOB

  1. “Regulators Suggest it’s Time to Double Down on Internal Controls” (Headline from Compliance Week) Robert Conway Professional Practice Director CNM LLP Rconway@cnmllp.com (714) 392-2499

  2. Discussion Overview  Overview of 2015 PCAOB Inspection Results  Focus on Management Review Control Findings  What Does the PCAOB Expect?  Examples of Typical Findings  System Tension – US Watch Dog Barks!  PCAOB / SEC  Response – Double Down!  Implications to Public Companies  SEC Enforcement Actions on ICFR 2

  3. Big Four PCAOB Inspection Findings Summary for 2015 All Big 4 Issuer Inspections 219 FSA Restatements 2 ICFR Restatements 7 Total # Deficient Audits* 76 Individual Deficiencies 370 * An audit is “deficient” if it has one or more Part 1 findings (Part 1 = insufficiently supported opinion). 3

  4. Big Four PCAOB Inspection Findings Summary for 2015 All Big 4 Issuer Inspections 219 Number of Deficient Audits: ICFR and FSA 47 ICFR only 17 FSA only 12 Total Deficient Audits 76 4

  5. Big Four Deficiencies by Auditing Standard All Big 4 AS 5 – ICFR 184 AS 13 – Response to Risks* 41 AU 342 – Auditing Estimates 30 AU 328 – Auditing FV Meas. 34 All Others 81 Total Individual Deficiencies 370 * See PCAOB Release No. 2015-007 (Inspection Observations re Risk Assessment Stds.) ICFR accounts for 50% of all deficiencies!!! 5

  6. PCAOB Summary of Most Frequent Deficiencies (Frequency of Top 5 Deficiencies for All Big Four) All Failed to Test: Big 4 Control Design/Op Effect. 51 Control Addressing Risks 27 Evaluation of Control Def. 8 Report Controls/Accuracy 29 In Response to Risks 23 Assumptions in Estimates 32 All Others (combined) 200 Total 370 6

  7. Digging Deeper into the Nature of ICFR Findings All Big 4 Issuer Inspections 219 Number of Deficient Audits 76 Audits w/ ICFR Deficiencies 64 Audits w/ Management 45 Review Control Deficiencies Mngmn’t Review Controls Are the Biggest Problem! Failure to Test Reports is Still a Problem, Too! 7

  8. The Use of Management Review Controls Crosses a Broad Spectrum  Review of a reconciliation  Review of journal entries  Review for triggering events or GW Step Zero  Review of the work supporting an estimate  Review of budget-to-actual variances (aka “the All Pro Free Safety”) 8

  9. Examples of Common Findings “The Firm identified a fraud risk related to the timing of revenue recognition . To address the fraud risk, the Firm selected for testing a control that consisted of the review of adjustments to revenue for shipments that were in transit at the end of each period; however, the Firm’s procedures were limited to determining that the analysis used in the control had been prepared, inquiring of certain individuals involved in the process, inspecting documents with comments that indicated reviews that were part of the control had occurred, and comparing certain amounts to the general ledger. The Firm, however, failed to sufficiently test an important aspect of the control related to the specific review procedures performed by the control owner, as its procedures to test this aspect were limited to inquiry .” Possible Fix: More thorough documentation by the control owner of the procedures to be performed and actually performed. 9

  10. Example # 2 of a Common Finding “The Firm selected two controls for [ testing POC revenue ] that consisted of monthly meetings in which issuer personnel reviewed (1) the estimated cost to complete each project and (2) the status of each POC contract; however, the Firm’s procedures to test these controls were insufficient [as] … these procedures were limited to gathering reports used in the operation of the controls, comparing information between these reports, and attending one meeting for each control. The Firm failed to test whether the controls operated at a level of precision that would prevent or detect material misstatements, as it failed to ascertain, and evaluate, the criteria used to identify items for follow-up and how those items were resolved . In addition, the Firm failed to … test controls over the completeness and accuracy of the report that the issuer used [to perform these] controls, as its procedures were limited to the comparisons described above.” Possible Fix: Define criteria/precision for follow-up, define the follow-up process, and test reports used for completeness & accuracy. 10

  11. Example # 3 of a Common Finding “The Firm failed to sufficiently test a con trol that consisted of the calculation and review of the reserve for excess inventory . Specifically, the Firm’s procedures wer e limited to inspecting documents for signatures that indicated the review performed as part of the control had occurred, comparing certain amounts to supporting documents or the general ledger, and inquiring of management. The Firm failed to test whether the control operated at a level of precision that would prevent or detect material misstatements, as it failed to ascertain and evaluate (1) the scope of the review activities performed, (2) the criteria used to identify items for follow up, and (3) how those items were resolved. Possible Fixes :  Define the precision / criteria for investigation in a manner that assures material misstatements in the aggregate would be detected.  Identify action and resolution steps as part of control design.  More documentation of the review activity and thinking during review. 11

  12. Noise in the System from Auditors and Preparers (from Compliance Week, Dec. 22, 2015) “The push by the PCAOB is prompting auditors to demand more audit evidence and more documentation, especially around management review controls, in ways that has left preparers scratching their heads.” An Internal Audit Director say she’s seen a drift away from the top -down, risk-based approach to the audit of internal controls that is mandated under AS 5. “Were moving away from reliance on management review controls and wanting an inclusion of a broader set of control activities rather than relying on the management review controls that are really important to the running of the business .” Some are asserting that we have silently reverted to AS 2. 12

  13. What Did the Watch Dogs Say on May 29, 2015? The US Chamber of Commerce Wrote to the SEC and PCAOB to Say:  Auditors are telling clients they need to expand documentation of management review controls to satisfy the PCAOB expectations.  No new rules; but assertion is that rules are being expanded by PCAOB inspections.  Increases in audit and compliance costs are driven by the PCAOB.  PCAOB accused of losing sight of the cost-benefit relationship.  Public companies get no credit for their management review controls. 13

  14. What Did the SEC and PCAOB Do in Response?  The SEC, PCAOB, US Chamber, Auditors, and selected Preparers met in the Fall of 2015.  Anecdotal concerns rejected.  Only specific facts patterns evidencing concerns were considered.  Nothing revealed until the AICPA Conference on SEC/PCAOB Matters in December 2015.  SEC says that discussions are ongoing. 14

  15. SEC / PCAOB Position – “Regulators Suggest It’s Time to Double Down on Internal Controls”  There may be deficiencies in the design of management review controls. Key issues are: o Is precision of the review defined and appropriate? o Is documentation sufficient (consider AS 3)? o Some high risk areas may be ill-suited for MRCs.  Re-emphasized risk-based approach when auditing ICFR.  The level of documentation needs to be commensurate with the risk.  Re-affirmed that SEC guidance to preparers is aligned with PCAOB guidance to auditors.  Auditors should discuss documentation expectations with management and the Audit Committee in advance.  Management should push back when appropriate.  Permissible for management and auditor to take different approaches to testing controls; but reasons should be understood. 15

  16. Other SEC Observations  On-going concern that Material Weakness are a lagging indicator o Only reported when there is a restatement (but some improvement observed) o Are preparers and auditors properly evaluating deficiencies for significance? Are Material Weaknesses being under-reported? o Very important to consider the “ could factor .” o Could a control deficiency enable a material misstatement to occur without prevention or detection?  ICFR is also important to areas such as: o Segment reporting determination o Reporting unit determination o Application of new accounting pronouncements (i.e., Rev Rec) 16

  17. PCAOB Communications Have Been Limited No interpretive guidance from the PCAOB since the Staff Audit Practice Alert # 11 in October 2013, “ Consideration for Audits of Internal Controls Over Financial Reporting. ” The PCAOB has conducted so- called “outreach” programs that have been useful to those who have participated; however, the PCAOB has avoided publishing much needed interpretive guidance for the benefit of auditors, preparers, internal auditors, and 404 outsourcing providers. Despite the lack of interpretive guidance, ICFR continues to be a high priority at both the PCAOB and SEC. 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ENTRANCE Double height 6-meter entrance foyer - Internal access to automated double garage LOWER

ENTRANCE Double height 6-meter entrance foyer - Internal access to automated double garage LOWER

ENTRANCE Double height 6-meter entrance foyer - Internal access to automated double garage LOWER LOUNGE Wood burning fjre place (closed glass door) - Seating for 12 - Daybed - Garden views and access 6 metre glass gallery with curtains LIBRARY

426 views • 21 slides
The Web Platform Ben Galbraith and Dion Almaer Google Suggest Google Suggest shift in

The Web Platform Ben Galbraith and Dion Almaer Google Suggest Google Suggest shift in

The Web Platform Ben Galbraith and Dion Almaer Google Suggest Google Suggest shift in whats possible and it represents a fundamental Asynchronous JavaScript + XML, Ajax. The name is shorthand for Adaptive Path have been calling to

1.01k views • 85 slides
Norovirus: Just-In Time Refresher for Retail Food In Industry ry and Regulators Norovirus

Norovirus: Just-In Time Refresher for Retail Food In Industry ry and Regulators Norovirus

Norovirus: Just-In Time Refresher for Retail Food In Industry ry and Regulators Norovirus Prevention Require Certified Managers Exclude food employees with Norovirus, vomiting, and diarrhea until 48 hours after symptoms stop Sick

325 views • 4 slides
The Postulates What is a postulate? 1 suggest or assume the existence, fact, or truth of

The Postulates What is a postulate? 1 suggest or assume the existence, fact, or truth of

The Postulates What is a postulate? 1 suggest or assume the existence, fact, or truth of (something) as a basis for reasoning, discussion, or belief. a theory postulated by a respected scientist synonyms: suggest, advance, posit,

583 views • 25 slides
Week 8 - Monday What did we talk about last time? StdDraw The following methods can be

Week 8 - Monday What did we talk about last time? StdDraw The following methods can be

Week 8 - Monday What did we talk about last time? StdDraw The following methods can be used to draw lines and points Method Use void line(double x0, double y0, Draw a line from (x0,y0) to double x1, double y1) (x1,y1) void

537 views • 18 slides
Regulators and Certification Todays Talk: 1. Background : aquaculture demand and imports 2.

Regulators and Certification Todays Talk: 1. Background : aquaculture demand and imports 2.

Regulators and Aquaculture CertificationCan We Use It? Brett Koonse U.S. Food and Drug Administration FAO Aquaculture Certification Workshop Silver Spring, Maryland May 29-30, 2008 My e-card: Brett.Koonse@fda.hhs.gov Regulators

506 views • 36 slides
An introduction At the Global Symposium for Regulators (GSR) and the 2nd Annual Meeting of

An introduction At the Global Symposium for Regulators (GSR) and the 2nd Annual Meeting of

ITU/BDT Tandem Programme for Regulators An introduction At the Global Symposium for Regulators (GSR) and the 2nd Annual Meeting of Regional Regulatory Associations (AMRRA) in December 2004, the main focus was on resource mobilization and

381 views • 5 slides
Temperature for double-cones in 2D boundary CFT P. Martinetti G ottingen Universit at

Temperature for double-cones in 2D boundary CFT P. Martinetti G ottingen Universit at

Temperature for double-cones in 2D boundary CFT P. Martinetti G ottingen Universit at Vietri sul Mare, September 2009 Outline: 1. Physical interpretation of the modular group as a flow of time 2. Wedges in Minkowski space-time 3.

259 views • 21 slides
Double, Multiple, and Sequential Sampling Double-sampling In a double-sampling plan, a first

Double, Multiple, and Sequential Sampling Double-sampling In a double-sampling plan, a first

ST 435/535 Statistical Methods for Quality and Productivity Improvement / Statistical Process Control Double, Multiple, and Sequential Sampling Double-sampling In a double-sampling plan, a first sample of size n 1 is inspected, revealing d 1

249 views • 13 slides
Week 2 -Wednesday What did we talk about last time? Types int boolean double

Week 2 -Wednesday What did we talk about last time? Types int boolean double

Week 2 -Wednesday What did we talk about last time? Types int boolean double char String Basic input Rules for variables: They must start with a lowercase letter, an uppercase letter, or an underscore

529 views • 31 slides
Reviewing(the(modeling(for( IFRS9(to(add(value(for(regulators,( banks(and(their(shareholders

Reviewing(the(modeling(for( IFRS9(to(add(value(for(regulators,( banks(and(their(shareholders

Reviewing(the(modeling(for( IFRS9(to(add(value(for(regulators,( banks(and(their(shareholders Brandon(Davies Board(Director Board(Directors(Personal(Risk The(time(has(come(to(implement(IFRS9.

711 views • 32 slides
Once upon a time www.dfh-ufa.org - Mobility as a special experience in the life of a few

Once upon a time www.dfh-ufa.org - Mobility as a special experience in the life of a few

Die Deutsch-Franzsische Hochschule Reflecting upon Double and Joint degrees in the MOBILITT | EXZELLENZ | WELTOFFENHEIT course of time B arcelona, 25th october 2016 Jochen Hellmann www.dfh-ufa.org Once upon a time www.dfh-ufa.org -

335 views • 15 slides
Text Segmentation Flow model of discourse Chafe76: Our data ... suggest that as a speaker

Text Segmentation Flow model of discourse Chafe76: Our data ... suggest that as a speaker

Text Segmentation Flow model of discourse Chafe76: Our data ... suggest that as a speaker moves from focus to focus (or from thought to thought) there are certain points at which they may be a more or less radical change in space, time,

836 views • 13 slides
Generalized Deligne- Beilinson cohomology and regulators Regulators IV in Paris May 23, 2016

Generalized Deligne- Beilinson cohomology and regulators Regulators IV in Paris May 23, 2016

Generalized Deligne- Beilinson cohomology and regulators Regulators IV in Paris May 23, 2016 Gereon Quick NTNU Euler, Abel and Jacobi: Let f(x) be a polynomial of degree 3 with simple roots. Euler, Abel and Jacobi: Let f(x) be a polynomial

2.12k views • 162 slides
Last time: Basic concepts Double spend attack Today: Block withholding attacks

Last time: Basic concepts Double spend attack Today: Block withholding attacks

T RUTH J USTICE A LGOS Cryptocurrencies II: Selfish Mining Teachers: Ariel Procaccia and Alex Psomas (this time) Last time: Basic concepts Double spend attack Today: Block withholding attacks (Selfish mining) Get a taste of

956 views • 41 slides
Using Standard Formula and Internal Models: Embedding in business decision making and aligning to

Using Standard Formula and Internal Models: Embedding in business decision making and aligning to

Using Standard Formula and Internal Models: Embedding in business decision making and aligning to Regulators expectations Paul Barrett Head of Risk Framework, AIG Europe Limited 29 November 2016 Agenda Embedding Models in business

1.05k views • 16 slides
Nursing Policy & Advocacy Diane N. Solomon, PhD, PMHNP-BC, CNM 41 st Annual NPO Conference

Nursing Policy & Advocacy Diane N. Solomon, PhD, PMHNP-BC, CNM 41 st Annual NPO Conference

Nursing Policy & Advocacy Diane N. Solomon, PhD, PMHNP-BC, CNM 41 st Annual NPO Conference October, 2018 Outline Operationalizing Advocacy vs. Policy Nurses Historic & Contemporary Role in Advocacy Advocacy Theory

526 views • 33 slides
AES GENER 2Q 2017 EARNINGS CALL August 8 th , 2017 Disclaimer This presentation is not an offer

AES GENER 2Q 2017 EARNINGS CALL August 8 th , 2017 Disclaimer This presentation is not an offer

AES GENER 2Q 2017 EARNINGS CALL August 8 th , 2017 Disclaimer This presentation is not an offer for sale of securities. This material has been prepared solely for informational purposes and is not to be construed as a solicitation or an

455 views • 22 slides
CNM to UNM Transfer Day 2014 CNM to UNM Transfer Day 2014 Reminders Save questions for the

CNM to UNM Transfer Day 2014 CNM to UNM Transfer Day 2014 Reminders Save questions for the

CNM to UNM Transfer Day 2014 CNM to UNM Transfer Day 2014 Reminders Save questions for the end of the presentation write them down! Take notes Presentation will be available at http://admissions.unm.edu/transferday/

906 views • 62 slides
Small Business Development Center Dr. Marvin Lozano, Business Advisor SBDC at CNM sbdc@cnm.edu

Small Business Development Center Dr. Marvin Lozano, Business Advisor SBDC at CNM sbdc@cnm.edu

Small Business Development Center Dr. Marvin Lozano, Business Advisor SBDC at CNM sbdc@cnm.edu 505-224-5250 www.nmsbdc.org Small Business Development Center NMSBDC founded in 1989, in our 30 th year National organization with 1000+

247 views • 5 slides
Toward A National Strategy on Infant Mortality on Infant Mortality Michael C. Lu, MD, MPH

Toward A National Strategy on Infant Mortality on Infant Mortality Michael C. Lu, MD, MPH

Toward A National Strategy on Infant Mortality on Infant Mortality Michael C. Lu, MD, MPH Associate Administrator Associate Administrator Maternal and Child Health Bureau Health Resources and Services Administration Grantmakers in Health January

358 views • 31 slides
Docket No. 4631 Tariff Advice to Amend Net Metering Provision Rhode Island Public Utility

Docket No. 4631 Tariff Advice to Amend Net Metering Provision Rhode Island Public Utility

Docket No. 4631 Tariff Advice to Amend Net Metering Provision Rhode Island Public Utility Commission Technical Session January 11, 2017 2016 Changes to Net Metering Recent legislation in Rhode Island includes several important

807 views • 15 slides
PREPARATION AND CHARACTERIZATION OF TIO 2 /GRAPHENE HYBRID BY SOL-GEL PROCESS ASSISTED WITH

PREPARATION AND CHARACTERIZATION OF TIO 2 /GRAPHENE HYBRID BY SOL-GEL PROCESS ASSISTED WITH

18 TH INTERNATIONAL CONFERENCE ON COMPOSITE MATERIALS PREPARATION AND CHARACTERIZATION OF TIO 2 /GRAPHENE HYBRID BY SOL-GEL PROCESS ASSISTED WITH MICROWAVE IRRADIATION Dinh Huong Nguyen, Han Na Kim, and Dai Soo Lee* School of Semiconductor and

243 views • 6 slides
BMO Global Metals and Mining Conference February 25-28, 2018 Forward Looking Information This

BMO Global Metals and Mining Conference February 25-28, 2018 Forward Looking Information This

BMO Global Metals and Mining Conference February 25-28, 2018 Forward Looking Information This presentation contains "forward-looking information" within the meaning of Canadian securities legislation. This information and these

563 views • 40 slides

More recommend