Beruflich Dokumente
Kultur Dokumente
The COSO, an independent private-sector initiative, is THE 17 PRINCIPLES TO EVALUATE INTERNAL CONTROL
established to provide thought leadership through the OVER COMPLIANCE:
development of comprehensive frameworks and guidance
on enterprise risk management, internal control and fraud The framework is very adaptable to compliance. All 17
deterrence to improve organizational performance and principles, under the five components, are presumed relevant
governance, and to reduce the extent of fraud in organizations. for all entities and need to be present and functioning to have
The whole purpose of updating the existing framework was to effective internal control.
increase its relevance in the increasingly complex and global
CONTROL ENVIRONMENT
business environment so that organizations globally can better
Demonstrates commitment to integrity and ethical
design, implement, and assess internal control.
values
The new framework retains the core definition of internal RISK ASSESSMENT
control, the objectives; the five components of internal control Specifies relevant objectives with sufficient clarity to
and its seventeen principles that continues to emphasize enable identification of risks
the importance of judgment in designing, implementing and Identifies and assesses risk
conducting a system of internal control, and in assessing its
Considers the potential for fraud in assessing risk
effectiveness. The new framework codifies principles that
support the five components of internal control, clarifies Identifies and assesses significant change that could
the role of objective-setting in internal control, reflects the impact system of internal control
increased relevance of technology, incorporates an enhanced
CONTROL ACTIVITIES
discussion of governance concepts, expands the reporting
Selects and develops control activities
category of objectives, enhances consideration of anti-fraud
expectations, and increases the focus on non-financial Selects and develops general controls over technology
reporting objectives. Deploys through policies and procedures
INSIGHT