.

Friday, April 12, 2019

Risks and Internal Controls for Kudler Fine Foods Essay Example for Free

Risks and inseparable Controls for Kudler Fine Foods EssayInternal controls are policies and procedures a company uses to ensure the accuracy and validity of their data. Risks are threats to that data that could be intimate or external of the company (Hunton, Bryant, Bagranoff, 2004). The following paragraphs testament find out and analyze the bumps and cozy controls as they join to the nurture systems for Kudler Find Foods. This will give Kudler information on how to evaluate guesss and the application of the internal controls and this history will discuss other external risks associate with buying a raw accounting information system (AIS). Identifying and Analyzing Risks There are many types of risks that a company has to confront each day in information engine room (IT). The four main types of risk are business, audit, security, and continuity risks. A business risk is when a company will not be able to achieve its goals and objectives this could be union issue s, a competing company, fraud, or production equipment failure. Audit risks admit misstatement of financials by an auditor or a failure by an auditor to uncover fraud or material errors.A security risk can be a host of things that would ruin the integrity and access of the data, which can in addition lead to fraud or misuse of other information from internal (like employees) to external (like hackers) sources. And, fin ally, continuity risks are information system risks that accept to do with backup, recovery and day to day availability of the system. When unplanned risks occur, management and auditor need to make a motion quickly to intercept the risk, balance the risk with cost-effective countermeasures, since it is impossible to plan all risks (Hunton, Bryant, Bagranoff, 2004).It is important to exhaustively evaluate the AIS selected for risks as it includes confidential customer, v closing curtainor, payroll and corporate information within the master databases. The types of risks associated with Kudlers new AIS system are system setup, data transfer and implementation issues, the AIS exceeding server capacity, other technology issues, and internal security breaches such as fraud, loss, or misuse of data.Typically the risks to AIS systems are primarily internal threats, as processing occurs behind the Companys firewalls and system access is usually limited to except company employees. Kudler has multiple stores, so it might be web-enabled, allowing vendor users and employees to access the system over the Internet, which will expose their system to external threats. This increased connectivity might make unauthorized access easier for hackers and therefore data loss, industrial espionage, fraud and system outages could occur as well (Goldenberg, 2011).Internal controls are vital to plant into place from this point of assessing the risks. Identifying and Analyzing Internal Controls The purposes of internal controls for an AIS are to protect the data resources against fraud, damage, and loss. It is also to ensure accuracy, validity, and dependability of the financials and operating data, which will help Kudler to stay compliant with its policies and procedures of the company and make better decision make strategies.For best business practices, internal controls need to be put into place, as the risks are many for Kudler, scarce in order for management to document their understanding of internal controls, they should use a flowchart to highlights risk issues and areas needing control. Attached are Appendix A, B, C, and D Data Flowcharts for Kudler. On these charts are highlighted areas of possible risks and authorization internal controls to put into place (Apollo Group, 2013). The first step to developing an effective internal control system is to identify the areas where exploitation or errors are likely to occur.Separation of duties is the key to eliminate many fraudulent concerns adjoin accounting and finance. No employe e should handle more than one of the following responsibilities record keeping, authorization, reconciliations, and custody of assets. The following areas in accounting should also be reviewed for internal risks * Cash receipts and disbursements This will include deposits save and do promptly to the bank, checks signed and reviewed by management, petty cash secured and roperly save, bank reconciliations are done monthly and reviewed by Management, AP and AR master data files are secured with end user controlled passwords.* Payroll This will include that all payroll changes should be approved by a supervisor, that disbursements are for actual employees, and tax filing are filed in compliance. * Fixed Assets This will include all purchases of Fixed Assets are properly labeled and recorded and are used solely for work purposes, should be reviewed by Management monthly. Ordering (Inventory) This will include all orders are approved before placing, audits are done of inventory regular ly, and inventory is properly recorded in compliance with depreciation schedules. * System changes Approval of all changes that will occur to the system moldiness be assigned by the Security Administrator to the Programmers and the Programmers must work with the end users for the changes and then take approval from Management before implementing the changes (BDO Consulting, 2009).Controls Outside of the System Other controls outside of the system that Kudler should evaluate for risks and approach could be environmental controls, such as physical access to the building or utilities, or in operation(p) controls, such as personnel policies, strategic planning, administration, and supply chain, or even reputation controls, such as internal or external communications and media issues.Achieving understandable business controls on any level requires Kudler to clear state procedures for handling each area, including a system of checks and balances in which segregation of duties has been established from beginning to end of the process. Management has the responsibility for setting a tone and degree of accountability and preciseness regarding the companys assets and responsibilities. Management fulfills that responsibility in part by approving many aspects of the internal controls (Disaster Recovery Journal, 2011). inferenceIt is the responsibility of Kudler Fine Foods management to understand, monitor, and control risks. This document has shed some light on potential risks the company could face, but being prepared for all risks is impossible. Evaluating and implementing a system of internal controls allows the company to score peace of mind that the organization is able to deal effectively with managing its data, resources, and operations from certain risks. Internal controls also support reliable reporting and compliance with laws and regulations, which are necessary for best practices in business.

No comments:

Post a Comment