APPENDIX A: REFERENCE MATERIALFor ExecutivesAmerican Institute of Certified Public Accountants (AICPA), Management Override of Internal Controls: The Achilles’Heel of Fraud Prevention, 2005, www.aicpa.org.Association of Certified Fraud Examiners (ACFE)/AICPA, Fraud Tools, www.<strong>acfe</strong>.com.Canadian Institute of Chartered Accountants (CICA), 20 Questions Directors Should Ask About Codes of Conduct,www.cica.ca.Corporate Executive Board, A Constant Vigilance, Safeguarding the Corporation from Fraud and Abuse, AuditDirectors Roundtable Research Findings, 2005.I.J. Alexander Dyck, Adair Morse, and Luigi Zingales, “Who Blows the Whistle on Corporate Fraud?”, CRSP WorkingPaper No. 618, January 2007, www.ssrn.com/abstract=959410.Robert Tillman and Michael Inderguard, Control Overrides in Financial Statement Fraud, A Report to the Institute forFraud Prevention, 2007, St. John’s University, www.theifp.org.U.S. Securities and Exchange Commission, Commission Guidance Regarding Management’s Report on Internal ControlOver Financial Reporting Under Section 13(a) or 15(d) of the Securities Exchange Act of 1934 (Release Nos. 33-8810,34-55929, FR-77; File No. S7-24-06; June 27, 2007), www.sec.gov.Fraud RisksACFE, 2006 ACFE Report to the Nation on Occ<strong>up</strong>ational Fraud & Abuse, 2006,www.<strong>acfe</strong>.com.Ernst & Young LLP, “9th Global Fraud Survey, Fraud Risk in Emerging Markets,” 2006, www.ey.com.Transparency International, “TI Corr<strong>up</strong>tion Perceptions Index,” 2007, www.transparency.org.U.S. Department of Justice, “Principles of Federal Prosecution of Business Organizations,” 2006, www.usdoj.gov.45
Fraud ControlsDeloitte Forensic Center, Ten Things About Fraud Control: How Executives View the“Fraud Control Gap,” 2007, www.deloitte.com.Ethisphere Council, 43 Considerations for Writing, Reviewing or Revising a Code of Conduct,www.ethisphere.com.KPMG LLP, Fraud Risk Management: Developing a Strategy for Prevention, Detection, and Response, 2006,www.us.kpmg.com.Open Compliance and Ethics Gro<strong>up</strong> (OCEG), Foundation Guidelines Red Book, 2007, www.oceg.org.OCEG, Hotline/Helpline Guide: Designing, Managing, and Measuring Hotlines/Helplines, 2006, www.oceg.org.OCEG, Internal Audit Guide: Evaluating a Compliance and Ethics Program, 2006, www.oceg.org.OCEG, Measurement & Metrics Guide: Performance Measurement Approach and Metrics for a Complianceand Ethics Program, 2006, www.oceg.org.PricewaterhouseCoopers LLP, Key Elements of Anti<strong>fraud</strong> Programs & Controls, 2003, www.pwc.com.Security Executive Council, 2007 Corporate Governance and Compliance Hotline Benchmarking Report, 2007,www.securityexecutivecouncil.com.The Network, Best Practices in Ethics Hotlines, 2006, www.tnwinc.com.U.S. Sentencing Commission, 2005 Federal Sentencing Guidelines Manual, Chapter Eight: Sentencing ofOrganizations, 2005, www.ussc.gov.Internal AuditingThe Institute of Internal Auditors (IIA), Definition of Internal Auditing, www.theiia.org.The IIA, Practice Advisory 1210.A2-1: Auditor’s Responsibilities Relating to Fraud Risk Assessment, Prevention, andDetection, www.theiia.org.The IIA, Practice Advisory 1210.A2-2: Auditor’s Responsibilities Relating to Fraud Investigation, Reporting, Resolution,and Communication, www.theiia.org.The IIA–UK and Ireland, Fraud Position Statement, www.iia.org.uk.46
- Page 1 and 2:
ACFE FRAUD PREVENTIONCHECK-UP
- Page 3 and 4:
ACFE FRAUD PREVENTIONCHECK-UPThe Be
- Page 5 and 6:
ACFE FRAUD PREVENTIONCHECK-UPACFE F
- Page 7 and 8: ACFE FRAUD PREVENTIONCHECK-UPACFE F
- Page 9 and 10: ACFE FRAUD PREVENTIONCHECK-UPACFE F
- Page 11 and 12: ACFE FRAUD PREVENTIONCHECK-UPACFE F
- Page 13 and 14: Sponsored by:The Institute of Inter
- Page 15 and 16: Team Members:Toby J.F. Bishop, CPA,
- Page 17 and 18: Managing the Business Risk of Fraud
- Page 19 and 20: establish their own fraud risk mana
- Page 21 and 22: Fraud risk identification may inclu
- Page 23 and 24: Thus, to properly address fraud ris
- Page 25 and 26: The board also has the responsibili
- Page 27 and 28: • Implementing adequate internal
- Page 29 and 30: Fraud Risk Management Program Compo
- Page 31 and 32: ecently been hired in the purchasin
- Page 33 and 34: Organizations can identify and asse
- Page 35 and 36: The Risk Assessment TeamA good risk
- Page 37 and 38: This also involves understanding th
- Page 39 and 40: - Invoices for goods not received o
- Page 41 and 42: Other RisksRegulatory and Legal Mis
- Page 43 and 44: SECTION 3: FRAUD PREVENTIONPrincipl
- Page 45 and 46: An organization’s HR group is oft
- Page 47 and 48: SECTION 4: FRAUD DETECTIONPrinciple
- Page 49 and 50: Process ControlsProcess controls sp
- Page 51 and 52: keep such information confidential.
- Page 53 and 54: will vary depending on the nature,
- Page 55 and 56: Conducting the InvestigationPlannin
- Page 57: • Extended investigation — Cond
- Page 61 and 62: APPENDIX B: SAMPLE FRAMEWORK FOR A
- Page 63 and 64: APPENDIX C: SAMPLE FRAUD POLICY 41N
- Page 65 and 66: CONFIDENTIALITYThe ______________ U
- Page 67 and 68: Sample Fraud Policy Decision Matrix
- Page 69 and 70: Identified Fraud Risksand Schemes (
- Page 71 and 72: 2) Misappropriation of:a) Tangible
- Page 73 and 74: ) Embezzlement(1) False accounting
- Page 75 and 76: Fraud Prevention Area, Factor, or C
- Page 77 and 78: Fraud Prevention Area, Factor, or C
- Page 79 and 80: Fraud Prevention Area, Factor, or C
- Page 81 and 82: Fraud Prevention Area, Factor, or C
- Page 83 and 84: O-Organization / PersonnelO1-Leader
- Page 85 and 86: O4.3 Enhance Operational Skills & C
- Page 87 and 88: PR-Prevent, Protect & PreparePR1-Ge
- Page 89 and 90: E-Periodic EvaluationE1-Evaluation
- Page 91 and 92: I2-CommunicationI2.1 Develop Commun
- Page 93 and 94: CriminologyFraud Prevention Program
- Page 95 and 96: CriminologyFraud Prevention Program
- Page 97 and 98: CriminologyFraud Prevention Program
- Page 99 and 100: CriminologyFraud Prevention Program
- Page 101 and 102: CriminologyFraud Prevention Program
- Page 103 and 104: CriminologyFraud Prevention Program
- Page 105 and 106: CriminologyFraud Prevention Program
- Page 107 and 108: CriminologyFraud Prevention Program
- Page 109 and 110:
CriminologyFraud Prevention Program
- Page 111 and 112:
CriminologyFraud Prevention Program
- Page 113 and 114:
CriminologyFraud Prevention Program
- Page 115 and 116:
CriminologyFraud Prevention Program
- Page 117 and 118:
Sample Fraud PolicyAssociation of C
- Page 119 and 120:
Sample Fraud PolicyCONFIDENTIALITYT
- Page 121 and 122:
Sample Fraud PolicyFraud Policy Dec
- Page 123 and 124:
Fraud’s Worst Enemyhttp://www.fra
- Page 125 and 126:
ACFE Insights - ACFE Insightshttp:/
- Page 127:
ACFE Insights - ACFE Insightshttp:/