UT_Southwestern_风险与内部控制

整理文档很辛苦,赏杯茶钱您下走!

免费阅读已结束,点击下载阅读编辑剩下 ...

阅读已结束,您可以下载文档离线阅读编辑

资源描述

AnEducationalComputerBasedTrainingProgramCBTEffectivelyControllingRiskUTSouthwesternGeneralComplianceTrainingEffectivelyControllingRiskInordertoachievethegoalsofprovidingthehighestlevelsofmedicaleducation,biomedicalresearchandpatientcare,UTSouthwesternmusthaveeffectiveinternalcontrols.Thereneedstobeanappropriatebalancebetweencontrolsandrisksisnecessarytoprovidereasonableassurancethatthemedicalcenter’soperationswillbeeffective,efficientandincompliancewithlawsandregulations.EffectivelyControllingRiskWhatisthepurposeofthistraining?Whyisitnecessary?Whatisinternalcontrol?Whatarethecomponentsofinternalcontrol?WherecanIlearnmore?EffectivelyControllingRiskWhatisthepurposeofthistraining?Provideemployeeswiththetrainingandtoolstoevaluateinternalcontrolattheactivity,processanddepartmentlevels.Twotoolsavailabletoachievethisgoalarethe:RiskandControlSelf-AssessmentGuidelineRiskAssessmentandControlActivitiesWorksheetEffectivelyControllingRiskWhyisitnecessary?HighlypublicizedfraudsatotherpublicinstitutionshavecausedconcernsamongUTSystemandcomponentadministrators.Whatwasdeterminedtobetheproblem?WEAKINTERNALCONTROLSEffectivelyControllingRiskWhatisinternalcontrol?:Internalcontrolisaprocess,effectedbyUTSouthwestern’sgoverningboard,administration,faculty,andstaff,designedtoprovidereasonableassuranceregardingtheachievementofobjectivesinthefollowingcategories:–Effectivenessandefficiencyofoperations,–Reliabilityoffinancialreporting,and–Compliancewithapplicablelawsandregulations.EffectivelyControllingRiskInternalControlProcess5ComponentsEstablishControlEnvironmentPerformRiskAssessmentImplementControlActivitiesCommunicateInformationMonitorPerformanceInternalControlProcessEstablishControlEnvironmentThecontrolenvironmentisthecontrolconsciousnessofanorganization.Thecontrolenvironmentincludestheintegrityandethicalvaluesofitspeople,theircompetence,andthewaytheydobusiness.InternalControlProcessElementsoftheControlEnvironmentStandardsofConductGuideRegents’Rules,BusinessProceduresMemorandums,etc.DepartmentstandardsofconductHumanresourcespoliciesandproceduresDepartmentpoliciesandproceduresConflictsofinterest--disclosureformsEthicsGuideHonestyZerotoleranceInternalControlProcessPerformRiskAssessmentRiskassessmentistheidentificationandanalysisofrisksassociatedwithachievingyourobjectives.Riskassessmenthelpstoformabasisfordetermininghowtomanageidentifiedrisks.InternalControlProcessWhatisourrisk?Withinternalcontrols,RISKis...ThepossibilitythattheorganizationwillNOT:–Achieveitsgoals–Operateeffectivelyandefficiently–Protectitselffromloss–Providereliablefinancialdata(reports)–Complywithapplicablelaws,regulations,policies,andproceduresInternalControlProcessPerformRiskAssessmentComponentsandDepartmentsmustdefinetheirgoalsandobjectivesinrelationtotheir:–Mission,–Operations,–Financialreporting,–Compliance,and–Significantactivitiesorprocesses.Then,theymustidentifyandanalyzepotentialrisksbyaskingcertainquestions:–Whatcouldgowrong?–Whatmustgoright?–Whatisthesignificanceofourrisks?–Whatisthelikelihoodofoccurrence?InternalControlProcessPerformRiskAssessmentQuestionsemployeesshouldconsider:Whatbusinessareyouin?Whoareyourcustomers?Whatdotheyneedandwant?Whatdoesthatsayaboutwhatyouaretryingtoaccomplish?Howwillyouknowyouhavebeensuccessful?InternalControlProcessPerformRiskAssessmentAriskisANYTHINGthatcouldjeopardizetheachievementofagoalorobjective.Foreachgoalorobjective,identifyyourrisks.Becomprehensive,byconsideringexternalandinternalfactors.InternalControlProcessPerformRiskAssessmentForeachidentifiedrisk,estimatethepotentialsignificance(cost,safety,institutionalimage)andlikelihoodofoccurrence.Focusonthemajorrisks,anddeterminehowthoserisksshouldbemanagedandminimizedtoacceptablelevels.InternalControlProcessImplementControlActivitiesControlactivitiesarethepoliciesandproceduresthathelpensurethatactionsidentifiedasnecessarytomanagerisksarecarriedoutproperlyandinatimelymanner.Controlactivitiesshouldbeproactive,value-added,andcosteffective.InternalControlProcessImplementControlActivitiesRisksControlsProperlybalancingrisksandcontrolsmakesgoodbusinesssense!InternalControlProcessImplementControlActivitiesExamplesofControlActivitiesatUTSouthwestern:Approvals,authorizations,andverifications–HavingwrittenpoliciesandproceduresandlimitstoauthorityReconciliations–ExplanationsofthedifferencebetweentwosetsofdataANDtakingcorrectiveactionInternalControlProcessImplementControlActivitiesExamplesofControlActivitiesatUTSouthwestern,continued...Reviewsofperformance–Forcomponents,departments,andindividualemployeesSecurityofAssets–Limitingaccess,keepingrecords,andmakingperiodiccountstocomparetoourrecordsInternalControlProcessImplementControlActivitiesExamplesofControlActivitiesatUTSouthwestern,continued...SegregationofDuties–Makesurenoonepersoncaninitiate,approve,recordandreconciletransactionsControlsoverInformationSystems–Generalcontrolsoveraccessanddevelopment,aswellasspecificcontrolswithinapplicationsInternalControlProcessCommunicateInfor

1 / 60
下载文档,编辑使用

©2015-2020 m.777doc.com 三七文档.

备案号:鲁ICP备2024069028号-1 客服联系 QQ:2149211541

×
保存成功