Fraud

Question 1

What percentage of fraud cases resulted in some sort of internal punishment and what percentage were fired?

Answer 1

80% received punishment

66% were fired.

59% referred to LE

10% allowed or required to resign

9% were placed on suspension or probation.

Question 2

Organizational crime vs occupational crime.

Answer 2

Origniazational crime the benefits go to the organization. Example: Price fixing

Occupational. The benefits go to the individual. Example: Accepting kickbacks

Question 3

Rational choice theory

Answer 3

Suspect performs cost benefit analysis that evaluates possibility of getting caught.

Best way to reduce crime is reduce opportunities.

Question 4

What are the three elements that influence crime in the routine activity theory.

Answer 4

The availability of suitable targets

The absence of capable guardians

The presence of motivated offenders

Question 5

Theory of differential association.

Answer 5

Criminal behavior is learned

Learned from people you hang out with. IE GANGS

Question 6

What is social control theory

Answer 6

Society keeps them in line. What would my mom think of me? Dad? If they found out.

Question 7

Effects of white collar crime.

Answer 7

On going damages

Loss of competitive advantage

Loss of employee confidence in job security

Loss of employee productivity

Question 8

What is the OECD definition? Corporate governance

Answer 8

Procedures and processes according to which an organization is directed and controlled

Distribution of rights and responsibilities

Lays down rules for decision making.

Question 9

What is the Cadbury Report.

Answer 9

to encourage the efficient use of resources and require responsibility.

Solid Corporate governance practices are necessary when owners are not responsible for setting strategy or exciting business activities. IE. publicly

Question 10

The treadway commission. What is the auditor’s responsibility in preventing fraud?

Answer 10

MandatoryINDEPENDANT audit committee

Written charter

Adequate resources and authority

Audit committee members should be informed, vigilant, and effective.

Question 11

What are the four principles of corporate governance. RAFT

Answer 11

Accountability: hold management accountable.

Transparency: accurate, complete, timely financial statements and disclosure of all material matters

Fairness: all stakeholders treated equitably

Responsibility: act in the organization and society’s best interest.

Question 12

What it is internal control? ROC

Answer 12

Designed to provide assurance regarding the achievement of objective.

Efficiency of OPERATIONS
Reliability of financial and non financial REPORTING
COMPLIANCE with applicable laws and regulations.

Question 13

Identify the five interrelated components of internal control? CRIME

Answer 13

Control environment 
Risk assessment 
Control activities 
Information and communication 
Monitoring

Question 14

What does the controlled environment provide?

Answer 14

Makes up the ethical and moral culture of the organization.

Question 15

What does risk assessment do? OICA

Answer 15

Identify and assessment of risks relevant to achieving control goals. 
  Set clear objectives 
  ID risks 
  Consider potential for fraud 
   Assesses changes.

Question 16

What does control activities mean?

Answer 16

Controls policies
INFO AND COMMUNICATION Exchanges information in a way that allows employees to carry out responsibilities.
MONITORING the effectiveness of the control system over time

Question 17

What is a material misstatement. And materiality.

Answer 17

If omitting, misstating, or obscuring it could reasonably be expected to influence the decision of the primary financial statement users.

Materiality is often considered in quantified terms within the audit. Like a large amount for that company. Ie don’t review anything under $10k. (Quantitative)

But you find 30 transactions of $9,999. (Qualitative)

Question 18

What is ISA 240

ISA 265

Answer 18

240: establish standards and provide guidance on the auditors responsibility to consider fraud in an audit of financial statements.
265: provide guidance regarding the auditors responsibility to communicate an organizations internal control deficiencies with management and those charges with governance.

Question 19

What is the auditors requirements if they find a deficiency in the internal controls?

Answer 19

Communicate significant deficiencies in writing to those charged with governance in a timely manner. Unless it would be inappropriate

Question 20

What is the international organization of supreme audit institution? And why are they different

Answer 20

Umbrella for external GOVERNMENT audit community.

They are broader
Consideration of the concept of abuse
Inability to withdrawal from the engagement
Additional communications about fraud related matters.

Question 21

What are inherent risks

What are residual risks

Answer 21

INHERENT: Risks that are present before the effect of internal controls. Including anti fraud controls

RESIDUAL: risks that remain after the effect of these controls.

Question 22

What is a fraud risk assessment.

Answer 22

An ongoing, continuous process aimed at proactively, identifying and addressing an organizations vulnerabilities to both internal and external fraud.

Question 23

What are elements of a good fraud risk assessment.

Answer 23

Collaborative effort.
Independence and objectivity
Functional knowledge of the business
Thinking like a fraudster

Question 24

Most effective techniques used to conduct fraud risk assessment

Answer 24

Interviews
Focus groups
Surveys
Anonymous feedback mechanisms

Question 25

What to do when you find residual fraud risks?

Answer 25

Avoid the risk: eliminate the assets Transfer the risk: purchase a insurance policy Mitigate risk: implement prevention and detection controls Assume the risk:

Question 26

The audit process in the fraud risk assessment

Answer 26

Identify and map the existing preventative and detection controls Perform tests to see if controls are operating effectively and efficiently Identify risk management override controls Develop reports with results of auditor validation and testing of fraud controls

Question 27

What are the five COSO ENTERPRISE fraud risk management components. GSPRI

Answer 27

Governance and culture: who does what Strategy and objective setting: business objective Performance: identify and assess risks Review and revision: Information, communication and reporting:

Question 28

What are the two principles of ISO 31,000?

Answer 28

Is customized and proportionate to operations and objectives Is dynamic and responsive to change.

Question 29

How to manage third party fraud risks

Answer 29

Customer due diligence Simplified: ID standard: Enhanced: high profile, large value transactions. Sources of income and overall net worth. Expected pattern of purchasing Expected method of payment

Question 30

Vender third party risks.

Answer 30

Ensure vendors have their own ethics and compliance program before engaging. Include contract clauses requiring vendors to report and misconduct

Question 31

What are the 5 fraud risk management principles GAAIM

Answer 31

Fraud risk governance Fraud risk assessment Fraud control activities Fraud investigation and corrective actions Fraud risk management monitoring activities.

Question 32

What does punishment involve?

Answer 32

Applying a negative stimulus or WITHDRAWING A positive stimulus

Question 33

What are three things we can do to demonstrate proactive audit procedures.

Answer 33

Use of analytical review procedures Fraud assessment questions Surprise audits when possible.

Question 34

What is the most effective fraud prevention method.

Answer 34

Increasing Perception of detection.

Question 35

What should you have when developing a good ethics program

Answer 35

Define organization organization values. Designated ethics official. Ethics task force or committee

Question 36

What is an effective compliance program.

Answer 36

Management is responsible for establishing the program Reasonably designed, implemented, and enforced to be effective in preventing and detecting criminal conduct.

Question 37

What does Preventive controls and detective controls do.

Answer 37

Preventive: stops something bad from happening before it occurs. Detective controls: designed to ID something bad that has already happened.

Question 38

Who would be a good sponsor.

Answer 38

Senior in organization, ideally an independent board direct or audit committee member.

Question 39

Fraud risks are classified into these four areas: CAFE

Answer 39

Fraudulent financial reporting: inappropriately reported revenue, expenses,assets, or liabilities Assist misappropriation: theft of tangible or intangible assets Corruption: bribes, kickbacks, aiding and an eating vendor fraud External fraud: fraud committed by customers, vendors, or other third parties.

Question 40

What are the 5 components of enterprise risk management

Answer 40

``` Government and culture Strategy and objective setting Performance Review and revision Information/communication/ and reporting ```

Question 41

What does ISO 31000 do? Principals of effect risk management

Answer 41

Customized and proportionate to operations and objectives Dynamic and responsive to change

Question 42

Board of directors role

Answer 42

Setting the tone and expectations management to enforce an anti fraud culture Develop a strategy to assess and manage fraud risks that aligns with the organizations risk appetite and steric plan.

Question 43

Audit committee role.

Answer 43

Oversee financial and audit and accounting matters Report to board of directors Oversee how management is going to oversee the fraud risk management plan

Question 44

Assets misappropriation is the most common? Financial state fraud is most commonly?

Answer 44

Assets: most common occupational fraud and is the least costly. Financial statement fraud causes the greatest median loss.