COSO Internal Controls Framework Flashcards

1
Q

COSO stands for…

A

Committee of Sposoring Organizations by the Treadway Commission

Provides frameworks for Internal Controls and Enterprise Risk Management respectively

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

COSO - Internal Control Framework’s objectivs

A

Provide a framework for an organization in establishing and maintaining sound internal controls over:

1) Financial reporting,
2) Effectiveness and efficiency of operations;
and 3) Compliance with regulations and laws

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which SOX section makes CEO or CFO responsible for reviewing the company’s internal control process?

A

Section 302. Have to perform a Top Down Risk Assessment as well (TDRA), which is a high-level review starting at the entity level then working all the way down to the transaction level of detail

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Components of COSO’s Internal Control Framework

A

CRIME

Control Environment (VIR COSO A)
Risk Assessment (done in-house)
Information and Communication (at all levels of the organization)
Control Activities  (policies and procedures)
Monitoring (through audit committee, internal audit, and external audits)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Elements that make up the Control Environment aka Internal Environment

A

VIR COSO A

Committment to Integrity and Ethical Values (VIR)

Committment to Compentency and having HR policies, processes, and procedures for hiring and training the right people

Organizational Structure - to help clearly identify lines of authority

Committment to Oversight by those charged with corporate governance - BoD establishes an audit committee and is active in the oversight process, e.g. address concerns identified by Internal Auditor and External Auditors

Accountability is enforced

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What happens to CEO or CFO that misrepresents the company’s financials?

A

They get penalized and imprisonment. It is up to the Board of Directors to remove the CEO or CFO (which they usually do anyway).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How is the COSO’s framework for internal control different from enterprise risk management?

A

Framework for enterprise risk management has more components and brings internal control system to a risk management focus.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly