The objective of any report is to provide important information to management in the area reviewed. It represents the end result of weeks of reviews, analyses, interviews and discussions. The quality of that report will have an impact on how well the report is understood and accepted. The best information and recommendations may not be acted upon if the report is poorly written. Poor quality reports can result in management:
Third party agreements cover everything from cleaning to the provision and operation of strategic information technology systems. From the simplest of services to the most complex, such agreements can bring significant benefits including economies, more effective services than could be delivered in house and expert knowledge and skills. However, this comes at a price: strategic risks and new uncertainties can hide within such agreements.
The United Nations Convention Against Corruption was formed as a committee in 2003 to help combat what was being seen as an epidemic against free trade. Organizations working in the international arena now face greater regulatory challenges to continue practicing, to educate their employees, and to monitor for violations. The legal loophole is spreading and the FCPA has recently held financial institutions liable for not reporting clients who fail to comply with FCPA requirements.
The objective is to better understand the breadth of retail payments compliance issues and how to create a framework for reviewing both internal and third-party responsibilities for a successful audit. The primary objectives this session are to evaluate the effectiveness of the internal controls and risk management processes implemented by the financial institution and/or the technology service provider.
Every project undertaken is not a guaranteed success; there are many things that can and do go wrong. Overly optimistic budgets or underfunded projects can result in shortcuts or unrealistic pressures on those working on the project. Staff or resources lacking the skills to work on the project see the assignment as a fast track to promotion and may not be willing to admit they can not handle the project, projects escalated to be done quickly may result in shoddy workmanship, resources pulling on time constraints can stretch employees to thin, opposition may even exist that is looking to have the project fail - yes sabotage is more common than many will admit to.
The procedures provided in this session should not be construed as requirements for control implementation. The selection of controls and control implementation should be guided by the risk profile of the institution. We will discuss procedures that provide additional validation verifying the effectiveness of a financial institution's internal control processes over ACH processing, EFT/POS network processing, check item processing, electronic banking-related retail payments processing, and bankcard processing, clearance, and settlement.
In 2004, the Committee of Sponsoring Organizations of the Tread way Commission (COSO), issued a principle-based guidance on designing and implementing an effective enterprise-wide approach to risk management. This guidance defines essential components - such as risk appetite, risk tolerance and portfolio view, provides guidance using common principles, and provides counseling and strategy for an effective program.
Identifying, mitigating, and stopping fraud is the key to a successful program. Time is of the essence in identifying and reporting this fraud to recover any losses. You should be armed with the tools necessary to properly audit your current process to make sure the potential for fraud is limited.
Financial institutions have long been the payments engines for their customers. However, with heightened competition and the advent of new non-bank entries into the marketplace, financial institutions have been playing more defense than offense. It is now time to go from playing 'not to lose' to using the implied trust and the customer experience to reverse the trend, get back lost customers,and retain existing ones.