Question: Problem 12. (10 points total) 1. Using COSO's Internal ControlIntegrated Framework Executive Summary, identify (by circling in Column B) whether the action listed in Column
Problem 12. (10 points total)
1. Using COSO's Internal ControlIntegrated Framework Executive Summary, identify (by circling in Column B) whether the action listed in Column A on the next page is either an "entity" or "process" level control.
2. Identify (by circling in Column C) the nature of the control activity or activities involved in the action (e.g., control environment, monitoring, risk assessment, etc.).
3 Identify from the list below the "principle" or "principles" associated with the action shown in Column A on the next page from the list below.
| COSO Component | COSO Principles | |
Control Environment | 1. The organization demonstrates a commitment to integrity and ethical values. | |
2. The board of directors demonstrates independence from management and exercises oversight of the development and performance of internal control. | ||
3. Management establishes, with board oversight, structures, reporting lines, and appropriate authorities and responsibilities in the pursuit of objectives. | ||
4. The organization demonstrates a commitment to attract, develop, and retain competent individuals in alignment with objectives. | ||
5. The organization holds individuals accountable for their internal control responsibilities in the pursuit of objectives. | ||
Risk Assessment | 6. The organization specifies objectives with sufficient clarity to enable the identification and assessment of risks relating to objectives. | |
7. The organization identifies risks to the achievement of its objectives across the entity and analyzes risks as a basis for determining how the risks should be managed. | ||
8. The organization considers the potential for fraud in assessing risks to the achievement of objectives. | ||
9. The organization identifies and assesses changes that could significantly impact the system of internal control. | ||
|
Control Activities | 10. Organization selects and develops control activities | |
11. Organization selects and develops general controls over technology | ||
12. Organization deploys policies and procedures | ||
Information and Communication | 13. The organization generates and uses relevant, quality information to support the functioning of internal control. | |
14. The organization internally communicates information, including objectives and responsibilities for internal control, necessary to support the functioning of internal control. | ||
15. The organization communicates with external parties regarding matters affecting the functioning of internal control. | ||
|
Monitoring Activities | 16. The organization selects, develops, and performs ongoing and/or separate evaluations to ascertain whether the components of internal control are present and functioning. | |
17. The organization evaluates and communicates internal control deficiencies in a timely manner to those parties responsible for taking corrective action, including senior management and the board of directors, as appropriate. | ||
| Column A. Control Action | Column B. Circle correct answer: Entity Level (EL) or Process-Level (PLC) Control | Column C. Circle theInternal Control component(s) that apply to the action:
| Column D. Identify the NUMBER of the underlying COSO principle or principles associated with action in Column A from list of 17 above | |
1 | All key policies and procedures are documented and updated annually. | EL PLC | CE RA M CA IC | |
2 | Internal audit is staffed with Certied Internal Auditors who maintain their certications by meeting biannual CPE requirements. | EL PLC | CE RA M CA IC | |
3 | Accounting clerks insure that supplier invoices, company shipping documents, and company purchase orders agree prior to approval for payment. | EL PLC | CE RA M CA IC | |
4 | Performance goals (nancial and nonnancial) are established annually for all employees. | EL PLC | CE RA M CA IC | |
5 | HR employees are unable to enter pay adjustments into the payroll system. | EL PLC | CE RA M CA IC | |
6 | A whistleblower phone line enables employees, customers, and vendors to report potential fraud. The phone line, which is advertised on the company's website, is monitored by the Chief Compliance Ofcer who reports activity to the board of directors each quarter. | EL PLC | CE RA M CA IC | |
7 | All employees have unique point-of-sale access codes that must be entered prior to posting sale transactions | EL PLC | CE RA M CA IC |
Step by Step Solution
There are 3 Steps involved in it
Get step-by-step solutions from verified subject matter experts
Study Help