About Board and Fraud

Board and Fraud is a blog that aims to bring a practical approach to issues facing the board of directors and the audit committee specifically in the area of governance, risk management, compliance, and internal audit, with a strong focus on fraud, ethics, and internal controls.

Speaking and Training on Fraud, Compliance, Ethics, and More…

Welcome to my site. I have spoken and been the keynote speaker for many conferences, including the ABA, ACC, ACFE, IIA, and IMA to name a few. I have designed customized training for the board, senior leadership, legal, compliance, internal audit, and others for some of the world’s largest organizations.

» Read More

How Tight is Your Grip on Cash?

IIA you Awarded Winning Article

The treasurer of one of the largest oil companies in the United States recently learned the internal controls over the initiation of wire transfers were

Internal Control Defined and Some Guidance

Compliance officers talk about controls constantly. Effective controls are the lifeblood of what makes a compliance program work. Most of us can rattle off examples of controls, or recognize a control when we see one.
So my fellow speaker asked the audience: What is a control?

Nobody dared answer. We all, me included, were suddenly uncertain that we could define a control correctly.

The speaker who posed this question is Jonathan T. Marks, partner at Baker Tilly and a prolific thinker on all things forensics, audit, and internal control. Lately Marks has been asking audit and compliance audiences to define a control — and to his dismay, most people can’t.

Read Marks’ definition of internal control.

» Read More

Fraud Risk Assessment – A Recipe for Greater Success!

In addition to establishing an ethical environment, board members and management must also take the lead in implementing and maintaining a formal fraud risk management program. One key element of such a program is a fraud risk assessment.

Risk assessments are part of the discipline of risk management, where enhanced frameworks and techniques have emerged. Risk management comprises the identification, assessment, and prioritization of risks followed by the coordinated and efficient use of resources to monitor, minimize, and otherwise control the impact of the risks on the organization.

» Read More
Skip to toolbar