Business 1: Corporate Governance

Question 1

Does the BOD have individual authority?

Answer 1

• No

- Must act as group if quorum present

Question 2

What is the primary role of an entity’s BOD?

Answer 2

• Safeguard co assets

- Maximize shareholder return

Question 3

Who has the sole discretion to declare distributions to shareholders, including dividends?

Answer 3

BOD

Question 4

Directors must always act in the best interests of the corporation because they are ________ of the corporation.

Answer 4

Fiduciaries

Question 5

The duty of loyalty prohibits directors from _______ with the corporation.

Answer 5

Competing

Question 6

The articles of incorporation may eliminate or limit a director’s liability to the corporation for money damages for action taken as a director except to the extent of actions taken in _____ _____.

Answer 6

Bad faith

Question 7

Officers are _____ of the corporation who ordinarily manage its day-to-day operations and may bind the corporation to contracts made on it behalf.

Answer 7

Individual agents

Question 8

May the BOD remove an officer with or without cause?

Answer 8

YES

Question 9

What two types of authority does an officer have?

Answer 9

• Actual (oral/written instruction)

- Apparent (title CEO/CFO)

Question 10

Officers also may serve as directors, but good corporate governance would require what?

Answer 10

• Majority of BOD should be independent

Question 11

SOX addresses what three key topics?

Answer 11

1) Corporate responsibility
2) Enhanced financial disclosures
3) Fraud

Question 12

SOX Title III addresses what?

Answer 12

Corporate responsibility (audit committee and CEO/CFO representations)

Question 13

SOX Title III. Audit committee members are to be members of the issuer’s BOD but are to be otherwise what?

Answer 13

Independent

Question 14

SOX Title III. Who must sign certain representations regarding annual and quarterly reports?

Answer 14

CEO and CFO

Question 15

SOX Title IV addresses what?

Answer 15

Enhanced financial disclosures (internal controls and audit committee)

Question 16

What does COSO stand for?

Answer 16

Committee on Sponsoring Organizations

Question 17

Who uses the COSO framework?

Answer 17

Used by

1) Management/board
2) Stockholders

Question 18

Is the Internal Control - Integrated Framework rules-based?

Answer 18

• NO, it is principles-based

Question 19

What are the three categories of objectives within the Internal Control - Integrated Framework?

Answer 19

ORC

1) Operations Objectives
2) Reporting Objectives
3) Compliance Objectives

Question 20

Which of the three objectives within the Internal Control - Integrated Framework is the focus of COSO?

Answer 20

Reporting objectives

Question 21

COSO IC-Integrated Framework. What do the operations objectives relate to?

Answer 21

• Relate to effectiveness and efficiency of an entity’s operations
• Includes financial and operational performance goals
• Ensures that assets of organization are adequately safeguarded against potential losses

Question 22

COSO IC-Integrated Framework. What do the reporting objectives relate to?

Answer 22

• Pertain to reliability, timeliness, and transparency of an entity’s external and internal financial and nonfinancial reporting
• As established by regulators, accounting standard setters, or the firm’s internal policies

Question 23

COSO IC-Integrated Framework. What do the compliance objectives relate to?

Answer 23

• Established to ensure entity is adhering to all applicable laws and regulations

Question 24

What are the five integrated components of internal control?

Answer 24

CRIME

1) Control environment
2) Risk assessment by management
3) Info and communication systems
4) Monitoring
5) Existing control activities

Question 25

What do the five integrated components of internal control apply to?

Answer 25

Applies to all 3 categories of entity objectives “ORC”

Question 26

COSO IC-Integrated Framework. What are the five principles related to the control environment?

Answer 26

EBOCA

1) Commitment to ETHICS and integrity
2) BOARD independence and oversight
3) ORG structure
4) COMMITMENT to competence
5) ACCOUNTABILITY

Question 27

COSO IC-Integrated Framework. What are the three principles related to risk assessment?

Answer 27

EAR

1) Event identification
2) Assess risk
3) Respond to risk

Question 28

COSO IC-Integrated Framework. What are the three principles related to information and communications?

Answer 28

1) Obtain and use info
2) Internally communicate info
3) Communicate with external parties

Question 29

COSO IC-Integrated Framework. What are the two principles related to monitoring activities?

Answer 29

1) Ongoing and/or separate evaluations

2) Communication of deficiencies

Question 30

COSO IC-Integrated Framework. What are the three principles related to existing control activities?

Answer 30

1) Select and develop control activities
2) Select and develop technology controls
3) Deploy through policies and procedures

Question 31

True or False:

There is a direct relationship between an entity’s three objectives, its five integrated internal control components, and the organizational structure of the entity.

Answer 31

TRUE

Question 32

The COSO IC-Integrated Framework requires what in designing, implementing, and conducting IC and in assessing the effectiveness of IC?

Answer 32

Judgement

Question 33

In 2004, the COSO issued ERM-Integrated Framework to assist organizations in what?

Answer 33

Developing a comprehensive response to risk management

Question 34

ERM defines enterprise objectives in what four categories?

Answer 34

S+ORC

1) Strategic
2) Operations
3) Reporting
4) Compliance

Question 35

What are the eight components of ERM?

Answer 35

IS EAR AIM

1) Internal environment
2) Setting objectives
3) Event identification
4) Assessment of risk
5) Risk response
6) Control activities
7) Information and communication
8) Monitoring

Question 36

COSO ERM-Integrated Framework. The internal environment is supported by what eight key elements?

Answer 36

EBOCA HR

1) Commitment to ETHICAL values and integrity
2) BOARD oversight
3) ORG structure
4) COMMITMENT to competence
5) ACCOUNTABILITY
6) HR (risk management philosophy, HR standards, risk appetite)

Question 37

COSO ERM-Integrated Framework. Objective setting is supported by what four key elements?

Answer 37

S+ORC

1) Strategic objectives
2) Operations objectives
3) Reporting objectives
4) Compliance objectives

Question 38

The management philosophy and operating style principle of the control environment component of IC integrated framework suggests strong controls and encourages what?

Answer 38

Management’s attitudes to be congruent with strong financial controls

Question 39

What is the primary benefit of having a financial expert on a company’s audit committee?

Answer 39

The enhanced level of financial sophistication of the financial expert can serve as a resource for the audit committee

Question 40

SOX requires that the officers of a corporation be held accountable to a code of ethics. Codifications of ethical standards should include provisions for what?

Answer 40

• Honest and ethical conduct
• Full, fair, accurate, and timely disclosure of periodic F/S
• Compliance w/ laws, rules, and regulations

Question 41

SOX seeks to improve investor confidence by providing greater transparency for what types of issues?

Answer 41

• Adequacy of IC
• Compliance of senior officers with code of ethics
• Competency of audit committees

Question 42

The Treadway Commission was established to study factors that lead to fraudulent financial reporting. The Treadway Commission was established by whom?

Answer 42

Private sponsoring organizations (COSO is sometimes referred to as the Treadway Commission after its original Chairman James Treadway Jr.)

Question 43

ABC Corporation owns many businesses along the coast of Florida. The company’s management had identified business interruption events as a potential risk resulting from storm damages caused by hurricanes. Management is so fearful of the possibility of storm damage that they elect to divest the company of virtually all properties on the Florida coast. ABC’s response to potential risks is known as what?

Answer 43

Avoidance

Question 44

ABC Corporation owns many businesses along the coast of Florida. The company’s management had identified business interruption events as a potential risk resulting from storm damages caused by hurricanes. ABC elects to insure its properties and “buy down” standard deductibles with additional premium. ABC’s response to potential risks is known as what?

Answer 44

Sharing (insuring against losses or entering into joint venture to address risk is known as risk sharing)

Question 45

When management uses listings of potential events common to a specific industry as a means of identifying risks or opportunities, the method is known as what?

Answer 45

Event inventory

Question 46

Gathering management together to discuss or even brainstorm ideas in a structured manner is known as what?

Answer 46

Facilitated workshop

Question 47

Sending out questionnaires to affected parties requesting opinions on potential events is the what approach?

Answer 47

Questionnaire/survey approach

Question 48

A flow chart of activities used to identify potential risks is a what analysis?

Answer 48

Process flow analysis

Question 49

Objectives are aligned with risk appetite, which drives what?

Answer 49

Risk tolerance levels

Question 50

Control activities are most closely related to what?

Answer 50

Risk responses

Question 51

For the components of ERM to be functioning effectively, there cannot be what?

Answer 51

Material weaknesses in IC

Question 52

What is the criteria for evaluating the effectiveness of ERM?

Answer 52

Components of ERM framework

Question 53

According to COSO, the use of ongoing and separate evaluations to identify and address changes in IC effectiveness can best be accomplished in which stage of the monitoring for change continuum?

Answer 53

Change identification

Question 54

The COSO identifies what four stages of the change continuum?

Answer 54

1) Control baseline
2) Change identification
3) Change management
4) Control validation/update

Question 55

True or false.

The existence of a published code of ethics and a periodic acknowledgement that ethical values are understood is evidence of development of ethical values and ensuring that those values are understood and taken seriously.

Answer 55

True

Question 56

Periodically comparing and updating the mission, vision and values of a not-for-profit would best be classified as what sort of activity?

Answer 56

Monitoring activity

Question 57

Conducting focus groups would most likely be what type of objective?

Answer 57

A related operating objective (focus groups would id the needs of various stakeholders and be used to improve operations)

Question 58

Does a director’s self-dealing automatically void a contract?

Answer 58

NO (contract can be upheld if it was fair)

Question 59

What does the human resources principle say?

Answer 59

That HR policies and procedures should be fully compatible with effective financial reporting and internal control

Question 60

Management of a company has a lack of segregation of duties within the application environment, with programmers having access to development and production. The programmers have the ability to implement application code changes into production w/o monitoring or a quality assurance function. This is considered a deficiency in what?

Answer 60

Change control