Laserfiche WebLink
1. The oversight body and management should demonstrate a commitment to integrity <br />and ethical values. <br />2. The oversight body should oversee the entity's internal control system. <br />3. Management should establish an organizational structure, assign responsibility, and <br />delegate authority to achieve the entity's objectives. <br />4. Management should demonstrate a commitment to recruit, develop, and retain <br />competent individuals. <br />S. Management should evaluate performance and hold individuals accountable for their <br />internal control responsibilities... <br />1.05 Tone at the top can be either a driver, as shown in the preceding paragraphs, or a <br />barrier to internal control. Without a strong tone at the top to support an internal control <br />system, the entity's risk identification may be incomplete, risk responses may be <br />inappropriate, control activities may not be appropriately designed or implemented, <br />information and communication may falter, and results of monitoring may not be <br />understood or acted upon to remediate deficiencies. <br />The Green Book describes the appropriate types of control activities that management should <br />design: <br />10.03... Physical control over vulnerable assets <br />Management establishes physical control to secure and safeguard vulnerable assets. <br />Examples include security for and limited access to assets such as cash, securities, <br />inventories, and equipment that might be vulnerable to risk of loss or unauthorized use. <br />Management periodically counts and compares such assets to control records... <br />The Green Book states that Management should implement control activities through policies: <br />Principle 12 — Implementing Control Activities <br />12.01 Management should implement control activities through policies. <br />Attributes <br />The following attributes contribute to the design, implementation, and operating <br />effectiveness of this principle: <br />• Documentation of Responsibilities through Policies <br />• Periodic Review of Control Activities <br />12.02 Management documents in policies the internal control responsibilities of the <br />organization. <br />12.03 Management documents in policies for each unit its responsibility for an <br />operational process's objectives and related risks, and control activity design, <br />Mass Transit Cash Handling Audit Criteria 144 <br />