Audit & Risk

Half of companies fall short on fraud risk management

New survey finds that nearly half of businesses believe they lack the internal resources to be able to effectively manage the risk of fraud.

in News.

Article Image

Nearly half of companies fail to conduct a formal fraud risk assessment on an annual basis, a new survey of US companies has shown, highlighting just how many businesses are leaving themselves exposed to white collar crime. 

Not only that, more than a quarter have never implemented a formal fraud risk assessment, the joint study by consulting firm Protiviti and the Economic Crime and Justice Studies Department at Utica College has shown.

Companies face a number of challenges in effectively and proactively managing fraud risk. Of these the limited availability of internal resources was cited by 47 per cent of respondents as the biggest. Meanwhile, 31 per cent said that their company lacks a unified fraud risk management strategy and 29 per cent reported that fraud and misconduct is not considered high risk to the organisation. 

In the majority of cases the chief financial officer is designated responsibility for fraud risk management within organisations (18 per cent), followed by the chief legal officer, internal audit director and the chief risk officer, who each have prime responsibility in 13 per cent of those companies surveyed. 

When it comes to combatting fraud, the majority of companies run ethics and fraud awareness training programmes, although only 46 per cent conduct these every year and more than half lack a fraud detection programme. Most respondents reported that their company has a telephone hotline, website or electronic mailbox for employees to report fraud, only 13 per cent regularly conduct surprise audits.

“Fraud detection techniques, such as having a code of conduct set in place, employee background checks, awareness training, third-party due diligence and surprise audits, are crucial in not only detecting risk, but also proactively preparing for future threats,” said Donald Rebovich, professor of criminal justice and executive director of the Centre for Identity Management and Information Protection at Utica College. “A programme that engages all levels and departments in prevention and detection is vital to a company’s financial health and reputation.”

Read the full report here

The IIA: find out more

Visit the main IIA site

Jobs

Senior Auditor

Ref: HE/3188
Directorate: Finance & Business Services
Location: Nationwide
Salary: £40,188 - £44,208
Number of Positions: 5
Full-time

Principal Auditor

Salary: £36,937 - £39,660
Permanent – 37 hours
Location: Westgate Plaza One, Barnsley, South Yorkshire

Careers advice

Destination designation

The Chartered IIA is keen to work with organisations that want to ensure all their internal auditors have the right skills to succeed in today’s industry. One of these is Citigroup, which recently launched a training scheme accredited by the institute and put 20 senior internal auditors through the Chartered by Experience route to achieve CMIIA. So what does this look like in practice?
Words: Ruth Prickett

Gold standard – the value of recognition

Being chartered demonstrates your skills and competence and gives you influence within both your organisation and the wider profession. All dedicated internal auditors should aspire to it, writes Ian Peters, chief executive of the IIA.

Chartered by Experience

There is a new route to becoming a chartered internal auditor: Chartered by Experience.

Training & Development

Destination designation

The Chartered IIA is keen to work with organisations that want to ensure all their internal auditors have the right skills to succeed in today’s industry. One of these is Citigroup, which recently launched a training scheme accredited by the institute and put 20 senior internal auditors through the Chartered by Experience route to achieve CMIIA. So what does this look like in practice?
Words: Ruth Prickett

Gold standard – the value of recognition

Being chartered demonstrates your skills and competence and gives you influence within both your organisation and the wider profession. All dedicated internal auditors should aspire to it, writes Ian Peters, chief executive of the IIA.

PwC launches cyber-breach simulation game for executives

Big four consultancy PwC has launched "Game of Threats" – an interactive game to teach senior executives the risks of cyber-attacks and encourage them to test how they would respond in real time.

Tools

Harnessing the power of technology in ERM: driving a continuous and verifiable process

Sponsored content
Some of the greatest strides in the formalisation of enterprise risk management (ERM) have occurred within the past decade – prompted by problems such as the global financial crisis and the increasing threat of cyberattacks. So how do organisations effectively focus on a formalised risk management structure? Workiva's white paper "Harnessing the Power of Technology in ERM: Driving a Continuous and Verifiable Process" suggests some answers.

You asked us

Our technical helpline provides valuable advice to members on a host of professional issues. Here are some of the questions you’ve recently asked.

Raising Standards

IIA Global is introducing two new professional Standards and updating some of its existing Standards with effect from 1 January 2017. So what are the changes?