Schools are the perfect places to find new opportunities and challenges at every turn. Furthermore, the next challenge your institution faces may not be in the classroom. The front and back office, which includes the accounting department also require effective internal controls. Here are some best practices that should mitigate or prevent issues from happening in your educational institution.
Segregation of duties
Typically, schools have small administrative groups, making the segregation of duties quite difficult. Even so, it is important to separate the activities of authorization, payment, and recording among staff members. For example, try alternating tasks between staff members, and using them as checks for each other.
With so many people coming in and out of schools, the risk of theft or damage to assets increases. Using some simple, physical internal controls can prevent damage or theft. Lock everything! Making sure your school’s doors are locked at all times will protect equipment. Petty cash and checks should be away in a safe. If feasible, electronic access cards and cameras are also good ways to increase security especially for high-value assets.
Today’s students are technologically savvy. Therefore, limiting their access to school computers is one control to implement. Furthermore, make sure school financial and administrative data are password protected with complex passwords that are changed regularly. The ability to add and remove programs should be exclusive to administrators. Access to internal information, whether it’s HR, Finance, or other administrative data, should also be limited to those who need it.
Schools benefit from proper accounting policies. Proper accounting policies can ensure all transactions are authorized, properly recorded, and not omitted from the records. School policies should include keeping a chart of accounts, proper approval steps, and sequential numbering. Map out the accounting internal controls for staff to follow.
Ethics training for all employees is one of the most important activities in internal controls. It will facilitate an ethical control environment across the organization. This mindset helps prevent and detect financial fraud and other unethical behavior. A code of ethics section in the employee handbook can also help let staff know what the expectations are.
For more information on internal controls in schools or Aronson, please contact Dan Kelley at email@example.com.
A third-party vendor is an ancillary process outside the control of your organization, which performs a function or provides a service that isn’t central to your operating purpose, for example, a third-party payroll company.
Although your exempt organization may rely on third-party service providers, your management team carries the ultimate responsibility for maintaining an effective internal control system that produces accurate financial reporting. Taking ownership of this third-party responsibility has become one of the biggest hurdles for exempt organizations as more and more processes move to third-party providers.
Below are some suggestions on how to implement internal controls over financial reporting (ICFR) to assist your exempt organization with meeting the organizational goal of producing accurate financial information:
The internal control function is an indispensable tool in promoting efficiency and effectiveness of your exempt organization. It improves employee confidence, supports external reporting needs, and assists in ensuring your exempt organization serves its mission by using sound ethical practices.
INTERESTED IN LEARNING MORE?
For more information, please contact Aronson’s Melissa Musser, CPA, CISA, at firstname.lastname@example.org or 240.364.2598.
Have an RFP you would like to submit? Click here.
Procurement guidelines had several changes that came with the codification of A-133 into the new Uniform Guidance.
Earlier articles in our nonprofit fraud series focused on the underlying causes and signs of fraud. Now that you are armed with that information, what can you do about it? Fighting fraud requires elements of prevention, deterrence and detection.
Examples of effective anti-fraud controls include:
Conducting even an informal risk assessment periodically can be helpful in assessing what controls are in place and whether some should be added. It is not practical to have controls that would prevent all fraud as it would be too expensive, so it’s important to find a happy medium.
Small nonprofits are limited in the extent of internal controls they can have but there are some basic controls and segregation of duties they can implement. To learn more about how to implement anti-fraud controls in your organization, contact your Aronson advisor or Craig Stevens at 301.231.6200.
Any discussion of prevention and detection of fraud begins with the concept of good internal controls. Internal control is broadly defined as a process, effected by an entity’s board of directors, management and other personnel, designed to provide reasonable assurance regarding the achievement of objectives in the following categories:
According to a COSO report, “Internal Control – Integrated Framework,” the 5 components of internal control are:
If you want to know more about the COSO report referenced without buying the full volume, a Google search will yield a variety of results analyzing the report in detail.