All Internal Controls articles – Page 46
-
Article
Post-Investigation Follow-Up and Discipline at 3M
Image: What role should compliance officers have in investigations and discipline? How can they maintain independence during an investigation and subsequent sanctions decisions, while developing an effective strategy for what happens next? We talked to Jim Zappa, chief compliance officer at 3M Corp. about his approach. Zappa will be among ...
-
Blog
Survey: Disparate IT Systems Increase Compliance Costs
Many companies still rely on disparate systems and manual processes to manage their human capital management-related compliance, which in turn is putting a drain on company resources, according to a new survey released today by CFO Research and ADP, an HCM solutions provider. Details on the survey results inside.
-
Article
CW 2015 Conference Preview: Assessing Program Effectiveness
Image: Compliance officers are under constant pressure to demonstrate to senior executives, their boards, and regulators that the compliance function works. That means finding ways to measure compliance program effectiveness. To develop those metrics properly, “you have to define your goals,” says Anne Harris, former chief ethics officer of General ...
-
Blog
NY Comptroller: Sweeping Compliance Overhaul in the Works
Image: The New York Comptroller’s Bureau of Asset Management is implementing sweeping compliance, ethics, and audit reforms for how it oversees the assets of the five city pension funds. These reforms will “significantly enhance accountability, transparency and ethics in my office,” said Comptroller Scott Stringer. Details inside.
-
Blog
Prudential Financial Adopts New Clawback Policy
Prudential Financial this week adopted a new clawback policy covering all incentive-based compensation made to its executive officers in the form of stock options and other equity awards. "The policy, which marks an expansion of Prudential’s previous clawback policy, was adopted by the Board as part of its annual review ...
-
Blog
Audit Committees, Operational Risk, and Unease
Image: News flash: Audit committees are still overworked and unsure how to handle new risks confronting Corporate America. So says the 2015 edition of the KPMG Audit Committee Survey, which tells some good news on financial reporting risks, amid a more troubling morass of operational and cyber-security risks nobody seems ...
-
Blog
JPMorgan Breach Leads to Multi-State Probe
The attorneys general of 19 states have launched a joint investigation into JP Morgan, in the wake of its massive data breach last year that affected 76 million households and millions more small businesses. In a letter to JP Morgan sent last month, the states present a long list of ...
-
Blog
Franklin Synergy Spins Off Compliance Unit
Franklin Financial Network, the parent company of Franklin Synergy Bank, has spun off its wholly-owned subsidiary, Banc Compliance Group, to BCG Consulting. The newly-independent company will continue to operate under the name Banc Compliance Group, and will continue to be managed by President Connie Edwards. Details inside.
-
Article
Shop Talk: Useful Metrics, Effective Training
Effective compliance programs hinge on good training and proper metrics to see how your training influences employee behavior. That was the subject of Compliance Week’s latest executive roundtable, held in Washington and sponsored by LRN. Complete coverage is inside, from what effective metrics look like to how effective training works.
-
Article
Effective governance and the Three Lines of Defense
Compliance officers, internal auditors, fraud investigators, controllers—all of them might work at one company together to assist the business in managing risk. The trick to effective governance is to assign all those professionals (and more) to their proper places in the Three Lines of Defense model.
-
Blog
COSO 2.0: Same Same but Different
Image: After 18 months of forewarning, the new COSO framework for internal control went into effect last week—and despite all the promises that COSO 2.0 isn’t substantively different than the old framework companies have used for a decade to manage SOX compliance, in reality, Compliance Week Editor Matt Kelly writes, ...
-
Blog
Report: Companies Struggle to Secure Sensitive Data
Many companies still struggle with how to secure their most sensitive data, elevating the risk of a data breach, according to a new cyber-security report of nearly 500 IT and security professionals conducted by information-security firm Trustwave. The report reveals significant security deficiencies and common security weaknesses still remain in ...
-
Article
Netflix Lawsuit a Lesson in Proper Internal Controls
Netflix is suing a former IT executive, alleging the man created a kickback scheme that netted him more than $500,000 as he executed contracts and approved invoices through sham arrangements with two vendors. Painful for Netflix, yes, but we have key lessons in segregation of duties and internal control worth ...
-
Blog
Some Predictions for the Coming Year in Corporate Governance
As 2014 enters its final month and the coming year looms just around the corner, it’s time for those lists of predictions of what 2015 will bring. Inside, columnist Richard Steinberg takes a look into his crystal ball for what developments will be shaping corporate governance in the coming year. ...
-
Blog
Rising Tides Around IT Audit
Image: At long last, IT audit is finding its place in the sun—so says the latest IT Audit Benchmarking Study, published last week by ISACA. By almost any measure, IT audit is getting a higher profile at large organizations. What does that mean for compliance officers, and how can they ...
-
Blog
Effective ICFR? The Citigroup Example
Earlier this year, Citigroup received a comment letter from the SEC asking about the effectiveness of its internal control over financial reporting, given the discovery of fraud in its Banamex division in Mexico. In this guest post, Audit Analytics examines the issues raised by the SEC, how Citi responded, and ...
-
Resource
e-Book: What to Look Out for When Implementing the COSO Framework Update
Like a house built with a solid frame, internal controls are at the core of ensuring effective compliance and risk management. Two recent developments have spurred companies to review that system of internal controls. The first is an update, published by COSO last year, to the framework most public companies ...
-
Article
Separation Conundrum: Should Compliance Be Independent of Legal?
Image: Title: RubinDespite the ongoing push for companies to separate the compliance and legal functions, giving chief compliance officers greater independence than they might otherwise enjoy while reporting to the general counsel, not everyone agrees it’s the only way to go. “I don’t think there is a right or wrong ...
-
Article
The Real Data Breach Risks Are Right Under Your Nose
While companies fret about shadowy hackers based in Russia and China hell bent on stealing customer information, employees—not cyber-criminals—pose the biggest threat to create data breaches and data loss, according to a recent study. Ungoverned and negligent file-sharing by employees is hitting epidemic proportions: More than half of respondents to ...