RISK ADVISORY SERVICE
Internal controls, in the broadest sense, includes the plan of organization, and the methods and
procedures adopted by management to meet its goals. Internal control includes processes for
planning, organizing, directing, controlling, and reporting on the agency…

The three objectives of Internal Control (IC) are:
  • Effectiveness and efficiency of operations,
  • Reliability of financial reporting, and
  • Compliance with applicable laws and regulations.

The safeguarding of assets is a subset of all of these objectives.  Internal control should be designed
to provide reasonable assurance regarding the prevention of or prompt detection of unauthorized
acquisition, use, or disposition of assets.

GWIS, evaluates the IC at the enterprise level (Policies/Procedures/Technology/Human Capital) via
the following Frameworks: COSO or CobiT, whereby the scope of the engagement entails :

  • Control the Environment
  • Managers and Employees Awareness
  • Risk Assessment
  • Risk Analysis, Risk Mitigation, & Risk  Avoidance
  • Information & Communication
  • Management identifies, capture, and communicates pertinent information
  • Control Activities
  • Appropriate Policies, Procedures, and Techniques
  • Monitoring
  • On-going monitoring activities…separate evaluation
  • CobiT, defines as Fiduciary Requirements
  • Effectiveness & Efficiency of Operations
  • Reliability of Information
  • Compliance with Laws & Regulations

If you would like to learn more about how we can help.  Let’s Talk.
Risk Advisory Service (RAS)
Financial Systems/Resources
Independent Verification &
Validation (IV&V)
Software Quality Assurance
(SQA)
Continuous Process
Improvement (CPI)
Test & Evaluation (T&E)
Information Assurance (IA)
G.W. Integrity Systems, Inc

Management & Technology
Consultants

GregoryWaters@gwisinc.com
240.535.9644

©2007 All rights reserved.

Legal Disclaimer and Privacy
Anchored in Integrity