Corporate Governance Flashcards
What is the primary duty of the board of directors?
To monitor management behavior.
What is the responsibility of the Nominating or Corporate Governance Committee of the board of directors?
Oversees the board
Responsible for hiring new CEO
What is the responsibility of the audit committee of the board of directors?
The audit committee appoints and oversees the external auditor.
What is the duty of the compensation committee of the board of directors?
The compensation committee handles the CEO’s compensation package.
What does the NYSE and NASDAQ require of the board of directors?
They require the board to be independent.
What is the main goal in an executive compensation package?
The package should ensure that the goals of management should match those of the shareholders.
How can an executive compensation package ensure that goals of management align with those of shareholders?
Executive compensation should create an incentive for management to govern in a shareholder-friendly way that doesn’t sacrifice the long-term success of the enterprise for short-term gain.
Which influences help mold the direction that management takes?
They range from internal (Board of Directors- Audit Committee- Internal Control) to external (Creditors- SEC- IRS)
These influences should not be tainted by undue influence from management or have financial ties to management such as compensation-related duties
What is shirking?
When management doesn’t act in the best interest of shareholders.
It can be alleviated by tying compensation to stock performance or company profit.
What requirements are imposed on a public company under Sarbanes-Oxley?
Management must submit a report on the effectiveness of Internal Control in the 10K.
Management must disclose significant Internal Control deficiencies.
CEO/CFO must certify that the financial statements comply with securities laws and fairly present the financial condition of the company.
What characteristics are promoted by the COSO framework on Internal Control?
Reliable financial reporting
Effective and efficient operations
Compliance
What are the elements of the control environment?
Integrity & Ethics Competence The Board of Directors & Audit Committee Management's Operating Style Organizational Structure Authority & Roles of Responsibilities HR Policies
What are control activities?
A component of Internal Control that includes actions being taken to promote the control environment.
What are the basic elements of Internal Control?
Control Environment Risk Assessment Control Activities Information and Communication Monitoring
What is the significance of the Information and Communication aspect of Internal Control?
Management must have access to relevant and timely information to make good decisions.
How does Monitoring affect Internal Control?
Internal Control activities must be constantly monitored and evaluated for effectiveness.
What activities does the COSO framework for enterprise risk management include?
Identifies Risk Factors Promotes Risk Response Decisions Compares Management Risk vs. Shareholder Goals Aids in evaluating opportunities Promotes Quicker Capital movement
Does NOT eliminate all risk
What are possible responses to risk under the COSO framework for enterprise risk management?
Avoid or Reduce
Share or Accept
Define the “SOX Clawback provision”.
This provision allows firms to reclaim incentive and bonus payments to officers that turn out to have been made based on wrongdoing by those officers.
What does the acronym SOX mean?
Sarbanes-Oxley Act.
List prohibitions observed by corporate insiders and outside auditors.
They must observe the following prohibitions: fraudulent influence; coercion; manipulation; and misleading.
Pro forma financial statements must be reconciled with what?
They must also include comparable GAAP numbers.
Describe the three levels of the corporate pyramid.
Bottom: shareholders (vote for directors);
Middle: directors (select officers and set broad policies);
Top: officers (run firm day-to-day).
Under the Sarbanes-Oxley Act of 2002, what are the requirements and responsibilities of Audit Committees?
All directors must be independent;
New role: select, compensate, fire outside auditor; set up whistleblower procedures.
Define “internal control.”
A process, effected by the entity’s Board of Directors, management, and other personnel, that is designed to provide reasonable assurance regarding the achievement of objectives in the following categories: effectiveness and efficiency of operations, reliability of financial reporting, and compliance with applicable laws and regulations.
Define “feed-forward controls.”
A process in which future results are projected based on current and past information and, if the future results are undesirable, the inputs to the system are changed to avoid the projected outcome. Many inventory ordering systems are essentially feed-forward controls: the system projects product sales over the relevant time period, identifies the current inventory level, and orders inventory sufficient to fulfill the sales demand.
Define “corrective controls.”
Paired with detective controls, they attempt to reverse the effects of the error or irregularity which has been detected. Examples of corrective controls include maintenance of backup files, disaster recovery plans, and insurance.
Define “detective controls.”
“After the fact” controls designed to detect an error after it has occurred (though preferably before the erroneous information is used to update the database or appears in reports). Examples of detective controls include data entry edits (field checks, limit tests) and reconciliation of batch control totals.
Define “preventive controls.”
“Before the fact” controls designed to stop an error or irregularity from occurring. Examples of preventive controls include locks on building and doors, password protected access to files, and segregation of duties.
Define “application controls.”
Controls over specific data input, data processing, and data output activities. Designed to ensure the accuracy, completeness, and validity of transaction processing. As such, application controls have a relatively narrow focus on those accounting applications that are involved with data entry, update, and reporting.
Define “general controls.”
Controls over the environment as a whole. Apply to all functions, not just specific accounting applications. General controls help ensure that data integrity is maintained.
Define “feedback controls.”
A procedure in which the results of a process are evaluated and, if the results are undesirable, the process is adjusted to correct the results; most detective controls are also feedback controls.
Define “risk assessment” (according to the COSO internal control framework).
One of five components of internal control. The process of identifying, analyzing and managing the risks related to achieving the organization’s objectives.
Define “control activities” (according to the COSO internal control and ERM frameworks).
One of five components of internal control. Relates to the policies and procedures that ensure that organizational actions address key risks related to the achievement of management’s objectives.
Define “control environment” (according to the COSO internal control framework).
One of five components of internal control. Encompasses management’s philosophy towards controls, organizational structure, system of authority and responsibility, personnel practices, and policies and procedures. The core or foundation of any system of internal control.
Define “monitoring” (according to the COSO internal control framework).
One of five components of internal control. This component ensures the ongoing reliability of information and control processes by monitoring and testing the control system.
Define “information and communications” (according to the COSO internal control framework).
One of five components of internal control. Enable an organization’s personnel to identify, process, and exchange the information needed to manage and control operations.
Define competence in the context of designing internal control.
A commitment to attract, develop, and retain highly qualified individuals consistent with achieving organizational objectives. Includes establishing policies, assessing competencies, and planning for turnover and succession.
Define organizational policies.
The organization’s control activities that establish stakeholder expectations regarding conduct and operations.
Define inbound communications.
Communications with outsiders to the organization, including customers, suppliers, external auditors, regulators, financial analysts and others.