Conditions - Annexure G

More documents

Recommendations

Info

Risk Assessment: Every entity faces a variety of risks from external and internal sources that must be assessed. Risk assessment is the identification and analysisof relevant risks and their impact on the achievement of the company’s objectives. Management must form a basis for determining how risk should be managed.Because economic, industry, regulatory, and operating conditions will continue to change, management will need to employ mechanisms that enable management toidentify and address the special risks that result from such change.Objective Key control activities AdministratorKey ControlsAuditProceduresFindings andexceptionsnotedExplanationformmanagementin respect ofexceptionsSafeguarding of assets16(d)16(a)Management of the administrator hasestablished risk identification practices inplace which include mechanisms toanticipate, identify, analyze, evaluate,manage and mitigate the risksassociated with safeguarding of assetswhich is communicated and reinforced.Management has ensured that duties aresegregated and that there are frequentreconciliationsWhere the administrator fulfils the duty ofsafe custody of assets, the administratorhas policies and procedures to complywith conditions 15 and 16 of the<strong>Conditions</strong>10
Maintaining suitablefunding levels (liquidity)16(f) and 16(g)Monitoring of continuous compliancethroughout the financial period as well asto ensure that procedures are in place todetect any deviation from compliance inensuring compliance with conditions 13.2and 13.3 of the <strong>Conditions</strong>.Management hasprofessional indemnityand fidelity cover.424Documented policies and procedures toassess adequacy thereof iscommunicated and reinforced.A register of professional indemnityclaims are kept. Corrective actionmechanisms, policies and proceduresare documented, communicated andreinforcedManage risk of systemand database failureswith business continuity,system recovery plan3 Management of the administrator has adocumented disaster recovery planincluding policies and procedures fordisaster recovery, which iscommunicated and tested on a regularbasis.11
Page 1 and 2: ANNEXURE GMANAGEMENT REPRESENTATION
Page 3: 8. We conducted the business within
Page 6 and 7: Control Environment: The control en
Page 8 and 9: Management’sphilosophy and operat
Page 12 and 13: Control Activities: Control activit
Page 14 and 15: Effective contributionmanagement10,
Page 16 and 17: Effective general ITcontrol16(e), 2
Page 18 and 19: esponsibilities and significant mat
Page 20 and 21: Information andcommunication withex
Page 22 and 23: organisation. Thisrepresents the
Page 24 and 25: and data (Security)controls(The pro

Conditions - Annexure G

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?