The enterprise internal control theory The internal control is an important symbol of modern enterprise management, through the practice of the conclusion is: to control is strong, weak, without control is controlled, disorderly. The new regulations "accounting law 27 units shall establish and perfect the system of supervision unit interior accountant. Unit interior accountant controls on the execution, the internal control is. What is the internal control The internal control is the formation of a series of measures to control functions, procedures, methods, and standardized and systematized, make it become a rigorous, relatively complete system. According to the control of the internal control can be divided into different purpose accounting control and management control. Accounting control and protection of assets is safe, the accounting information authenticity and integrity and financial activities related to the legitimacy of control, Management control means to ensure operation policy decision, implementation of business activities and promote the efficiency and effectiveness, and the effect of the relevant management to achieve the goals of control. Accounting control and management control and not mutually exclusive, incompatible, some control measures can be used for accounting control, and can also be used to control. The goal is to ensure that the internal control unit operations efficiency and effect, safety, economic information of assets and financial reports of reliability. Its main functions: one is to achieve target management policy and management, Second is the assets of safety protection unit is complete, prevent loss of assets, Three is to guarantee the business and financial accounting information authenticity and integrity. In addition, the legitimacy of the financial activities within the unit is the internal control goals. Good, although the internal control to achieve these goals, but whether the internal control design and operation, it is not how to eliminate its inherent limitations. This limitation must also be clear and prevention. Main show is: (1) the limited by cost benefit principle, (2) if the employee has different responsibility ignore control program, misjudgment, even the collusion, inside and outside, often cause in fraud internal control malfunction, (3) management personnel abuse, and to set up or Passover control of internal control ignored, also can make the establishment of internal control non-existing. Second, the basic structure of internal control The basic structure of internal control. Mainly includes control environment, accounting system and control procedures in three aspects: (a) control environment. Control environment refers to establish or implement a policy of various factors, which affect mainly reflects unit managers and other personnel to control the attitude, understanding and action. Specific include: management ideas and management style, unit organization structure, functions and managers of these functions, determine the powers and responsibilities of the manager monitoring and inspection method, the working personnel policy measures to control, and its implementation, this unit of various external business relations. (2) accounting system. Accounting system refers to establish accounting and accounting supervision procedure and method of business activities. Effective accounting system should do: 1, confirmed and record all real business, timely and detailed description of economic business, so in the financial and accounting reports of economic business appropriately classified. 2 and measurement value of economic business, so in the financial and accounting reports records in the appropriate monetary value. 3 and determine the time, business to business records in the appropriate accounting period. 4 in the financial and accounting reports, business and proper disclosure of expression related matters. (3) control procedures. Control program to formulate policy and managers to ensure a certain procedure. Specific include: business and economic activity approval, The relevant personnel division of responsibilities clear, and prevent fraud, The bill and certificates and use, should guarantee business activities and recorded properly, Property and its use to have documented exposure measures to protect, For registered business valuation, and to review, etc. Third, the basic way of internal control The basic way of internal control mainly has: organization planning control, authorized control, budget control, material control, cost control, risk control and audit control. (a) to organize the control. According to the internal control requirements, the unit in determining the organizational structure and improve the process, incompatible duties shall follow the principle of separation, the so-called incompatible duties, refers to those if by a man or a department, and may cheat yourself concealing its position of frauds. The economic activity of the unit can usually divided into five stages: namely, the approval issued by authorized, execution, and records. Normally, if each step by the relatively independent researchers (or department), can guarantee the separation incompatible duties, facilitating the function of the internal control. Organize and control mainly includes two aspects: 1 and incompatible duties of separation. If the accounting work of accountant and cashier incompatible duties, need to separate. Should be separate positions usually have an authorized: economic business duties to separation, Execute a business with the position of the post to review: Execution of an economic position and record the business to business position: Keep a record of the property of the position and position of property to separation etc. Incompatible duties separation is based on the assumption that two personal unconscious accomplice a possibility, but the possibility of a person gains more than two people. If this hypothesis, breakthrough incompatible duties of separation cannot play control function. [NextPage] 2, the organization's control. A unit of economic activities according to the needs of different departments and institutions set, the organization's set of responsibilities and should reflect the mutual control requirements. Specific requirement is: the responsibility and authority of the organizations must be licensed and guarantee the authority within the scope of authority without intervention, Each business must pass in operation of the department and guarantee in different departments concerned to check each other, In every business, should belong to was not inspectors, in order to ensure that the inspectors check out the problem was solved quickly. (2) authorized control. The authorized department of internal control unit to handle business or staff access control. Some departments or units within a clerk in the treatment of economic business, must be authorized or approved to, no approval. Authorized control unit can guarantee the implementation course and abuse. Authorized are generally authorized and particular authorized two forms: general mandate is to deal with average economic business level and the approval of the right conditions stipulated in the unit, usually in the internal control of clarifying, Special authorization of special economic business processing is the right level and approval conditions, such as when a prescribed amount exceeds the economic business department, only after approval within specific authorized to handle. Authorized the basic control requirement is: first, must be clear and specific license authorization of the general line and responsibility, Secondly, to clear the authorized business each program, Again, to establish the necessary examination system, to ensure that the processing after the authorized business working quality. Some current unit executes leadership "pen", with the approval of the internal control principles and requirements, should reform. Practice has proved, rights should be restricted, lose the right to restrict the corruption which easily. (3) budget control. Budget control is an important aspect of internal control, including financing, financing, purchasing, production, sales, investment and management activities. The economic business units to prepare detailed budget and plan, and through the authorized by relevant departments, the budget or plan implementation control, the basic requirements: first, the unit budget must reflect the management goal, and clear responsibility. Second, the budget shall be permitted by the authorized to budget adjustments to budget and more practical. Third, it shall timely feedback or regular budget implementation. (4) physical assets control. Physical assets control mainly include restrictions to control inventory control and regular two, this is the real assets of unit of safety control measures. There are two main: first, to limit to strictly control, to physical assets and the relevant documents of the physical assets, such as cash and bank deposit, securities and inventory, warehouse, the warehouser except cashier personnel and other personnel is limited, contact, to ensure the safety of assets. Second, regular physical assets inventory, guarantee the physical assets conform with the actual amount recorded book, such as accounts inconsistent, should investigate the cause and treatment. In addition to the above, physical assets control say from broad sense, also include the physical assets of purchase, storage, and shipping and sales process control. (5) cost control. Modern cost control can be divided into "extensive" and "intensive" two. Extensive cost control, refers to the production technology, product process under the condition of invariable, rely solely on reducing consumption materials, reasonable material to lower the cost of cost control, Intensive cost control, refers to raise the level of technology to improve the production technology, product process, thus reducing the cost control. These two kinds of methods, combining modern cost control. 1, extensive cost control, the cost of raw materials procurement control from the final product sold throughout, and is one of the most fundamental and most main control method. First, the raw materials procurement cost control. For bulk materials generally used to open ZhaoBiaoFa or according to manufacturer direct purchasing. Second, the use of materials cost control. Generally, there are two ways: one is the objective cost control, it is through the "target cost price - goals profits target =", which is obtained by cost method to control costs. Veto Second, it is the cost control of various assignments, and through the analysis of cost drivers, costs and expenses of the collection, not only more reasonable truly computational cost, and thus find income and cost ratio or not only put no gains, so can largely reduce costs. Third, product sales, cost control. Mainly propaganda cost control, notable is, advertising, promotional role played only product quality is the foundation of the user's trust. Therefore, we should grasp investment and expenses of the matching principle. [NextPage] 2 and intensive cost control. And can be divided into two types: one is to improve production technology by to reduce cost control. There are many ways to improve production technology, such as the introduction of new production line adopts high-tech products, etc. Two is improved by process to reduce the cost of cost control. Intensive cost control on intellectual achievements, it can make the excess profit achievements. (6) risk control. Risk is usually referred to as a result of the action, and the risk associated with another concept is uncertain. Some people only know beforehand action may result, but don't know they appear probability, or both all don't know, but only as a rough estimate. For example, enterprise test-manufacturing a new product, this product can certainly advance trial success or failure. But don't know these two consequences of possibility appeared. Business decisions are generally in uncertain circumstances. In practice, a result of action has many may not sure, risk, And as a result of the action, it is certainly not risk. The risk control is to prevent and avoid as far as possible adverse outcome. According to the reasons of the formation of risk and risk management can generally be divided into two categories: the financial risk, 1, management risk. Risk management refers to the production and business operation reasons for corporate profits to the uncertainty. Due to the production and operation of enterprises will be derived from many aspects of the external and internal factors, thus greatly, and the uncertainty of uncertainty, causes the enterprise profit margins or the changes, thus bringing risk. Operational risk changes from the external, nonetheless, enterprises should adopt the effective internal control measures to prevent. 2, financial risk. Financial risk and risk, it is to because debt and the enterprise's financial results for uncertainty. Companies operating in the capital, debt all except the part of self-capital, borrowed funds for enterprise self-capital affect profitability, At the same time, borrowed money to repay captital with interest, if unable to repay debts that are due, the enterprise will into financial difficulties or bankruptcy. When the enterprise rate than pre-tax profit margins funds borrowed funds rate, use borrowed money earn profits and residual interest except compensation and thus make the self-capital profitability improve. However, if the enterprise income tax profit margins than money borrowed funds, at this moment, use borrowed money to finance the profits are not pay interest, still need to use their own funds to pay interest on the part of the profit margins, thereby reducing the self-capital, make enterprise losses incurred, even the bankruptcy of the danger. The risk for financing risk. The size of the risk degree of self-capital by borrowing money, borrowed money ratio, the greater the risk degree proportion with smaller proportion, borrowed funds, risk degree also decrease. For financial risk control, the key is to ensure a reasonable capital structure, maintain the appropriate level of debt, should make full use of the debt management skill gain financial leverage income, improve the self-capital profitability, To avoid excessive debt caused by the financial risk, which is the important link of the enterprise internal control, must take the necessary measures to prevent fundraising risk. (7) auditing control. Audit control mainly refers to the internal audit, internal audit and control of accounting is to supervise. Accounting information to internal audit, internal control is an integral part of the internal control is a kind of special form. Internal auditing is an organization in all kinds of activities and the internal control system of independent evaluation to determine whether the policy implementation, establish the procedure is in compliance with the standard of resources utilization, whether reasonable, effective and unit of objectives achieved. Internal audit content is very extensive, generally include internal financial audit and internal management audit. Internal audit supervision of accounting information, and is not only the internal control is effective means to ensure that the accounting information is true and complete. According to the basic principle of internal control and accounting work in our country actual situation, the new "law" regulation, the unit shall in internal accounting supervision system of accounting information in the regular internal audit methods and procedures, in order to make the internal audit institutions or internal auditors of accounting information system and procedure of audit work. In addition to the above seven internal control, and documentation control. Performance control and worker quality control, etc. The new system of accounting supervision system on the unit interior, the main contents of the internal control system. Including: responsibilities, and strict procedures, truthfully record, regular check, etc. In practice, establishing and implementing internal control should also consider: enterprise scale, organizational system and the owners' rights and interests; etc. Business property, diversity and complexity, Transfer, processing, and the methods to information, Applicable regulatory requirements, etc. At present many enterprise internal control was not good, except knowledge level, the main reasons of the administration is to establish and implement effective internal control of power, pressure, coerce, enough. This change of the accounting law depends on the implementation of new science and the modern enterprise system and the establishment of corporate governance structure. To help enterprises to establish internal control, can consult other countries and regions, by the relevant departments of the internal control of some important industry and points for each unit, reference, and learning to use gradually perfect the internal control system, in order to promote the comprehensive enterprise in our country, and in essence.本回答被提问者采纳
您可以来我们图书馆查找Wiley、SD、IEEE、Springer、nature这些数据库的高权文献,并下载,欢迎来咨询本回答被网友采纳
【摘要】文章对国内外企业风险评估的现状进行分析。根据企业的特点和发展趋势,指出进行内部控制风险评估的现实意义,并从全面风险管理目标、收集风险管理初始信息、风险识别、风险分析、风险评价、风险管理策略等方面,探讨了如何建立我国企业内部控制中的风险评估体系。 【关键词】内部控制;风险评估;管理策略 为了加强和规范企业内部控制,提高企业经营管理水平和风险防范能力,根据国家有关法律法规,财政部会同证监会、审计署、银监会、保监会制定了《企业内部控制基本规范》。该规范自2009年7月1日起在上市公司范围内施行,鼓励非上市的大中型企业执行。我国《企业内部控制基本规范》提出我国内部控制的基本要素包括内部环境、风险评估、控制活动、信息与沟通和内部监督等五项,并在《基本规范》中单辟一章,就风险评估的有关内容进行了规定。这说明国家和企业已经意识到风险评估在企业内部控制中的重要作用,那么企业应该从哪些方面来加强识别企业风险,建立风险评估系统,进一步改善内部控制呢? 一、国内外企业风险评估体系研究综述 国外对内部控制的研究已有很长的历史。1988年美国注册会计师协会发布《审计准则公告第55号》,该公告提出内部控制结构的三个要素:控制环境、会计制度、控制程序。进入90年代以后,COSO提出《内部控制—整体框架》的报告,将内部控制分为控制环境、风险评估、控制活动、信息与沟通和监督五个部分,实现了内部控制由三要素向五要素的飞跃。自此风险评估被纳入内部控制系统之中。最新内部控制研究结果表明,内部控制与风险管理愈发趋向目标一致,某些内容也有较大重合,COSO也于2001年起着手进行风险管理研究,从最初的将风险评估作为一个要素纳入内部控制整体框架中到目前的着手进行风险管理研究,足可以看出内部控制与风险管理的趋同性和风险这一因素在内部控制中的作用和地位越来越重要。 近年,我国理论界和实务界越来越重视内部控制的研究和应用,学者们在理论观念的引进和研究方面做了大量的工作。由财政部、证监会等五部委联合发布的我国第一部《企业内部控制基本规范》就是很好的证明。 二、进行内部控制风险评估研究的现实意义 史学家汤因比曾说过:“一个国家乃至一个民族,其衰亡是从内部开始的,外部力量不过是其死亡前的最后一击”。企业的存亡又何尝不是如此呢。既然一个企业的衰亡也是从其内部开始的,那若要寻求企业的生存发展之路就必须从其内部抓起,内部控制正是基于这一点才得到了世界各国理论界和实务界的重视。同时,市场经济从微观角度来说是一种风险经济,企业作为市场的基本单位时刻置身于风险之中,越是开放发达的市场经济,其中蕴藏的风险和不确定性越大。随着市场经济的发展成熟和市场开放程度的加大,风险己经成为企业关注和管理的焦点,作为企业内部管理核心的内部控制要想发挥其应有的作用,必须不断充实和发展,以求跟上市场发展的步伐,正是基于这个基础,风险的概念逐步进入了内部控制的范围。减轻或避免风险是内部控制活动的目标,各种风险因素是内部控制的对象。所以,企业要实施有效的内部控制,就要识别和衡量它所面临的风险及其风险因素,这是采取有效控制活动的依据和前提,这里的识别和衡量风险就是风险评估。目前COSO整体框架和我国《企业内部控制基本规范》把风险评估作为一项基础要素纳入到内部控制框架之中,这一发展是理论顺应客观实际发展的必然结果。 进行内部控制和风险评估研究具有重要的现实意义:内部控制的缺失和不健全是导致会计舞弊泛滥的根本原因之一;内部控制制度的极度缺失和对风险的忽视是导致我国企业生命周期短的根本原因; 国有企业改革的成功离不开健全的内部控制制度及风险的管理和控制;风险评估是内部控制制度设计控制活动和发挥应有作用的基础。 风险评估是内部控制系统的基础组成部分,要使控制制度发挥其应有的作用,企业必须清楚所面临的风险,并对整个企业的风险进行定性或定量的评估,然后针对风险评估的结果采取相应的控制活动。其实内部控制也就是风险的管理与控制活动,如果毫无风险,也就不需耗费大量的人力财力物力去搞什么内部控制。既然风险的存在是控制的原因所在,进行风险评估就成为整个内部控制制度的基础和关键。无论是从国际大环境来看还是从我国的具体情况出发,内部控制的研究和应用都是非常重要的。但是,作为有效实施内部控制的基础条件的风险评估却还没有得到足够的发展,研究会计和审计的人都早已熟知制度基础上的审计,但风险基础上的控制观念还是个新概念,还没有建立起比较完善的体系。因此,进行内部控制和风险评估研究无疑具有非常重要的现实意义。 三、风险评估体系的构建 鉴于风险评估在我国内部控制中的运用,笔者认为可以通过以下几个步骤来建立风险评估系统。 (一)确定全面风险管理目标 风险是指企业在未来经营中面临的、可能影响其经营目标实现的所有不确定性。风险评估是企业及时识别、系统分析经营活动中与实现内部控制目标相关的风险,并合理确定风险应对策略。全面风险管理是指企业围绕总体目标,制定风险管理策略,在企业经营管理的各个方面和业务过程中的各个环节进行风险管理的基本流程,落实风险理财措施,培育良好的风险管理文化,建立健全风险管理的组织体系、信息系统和内部控制系统的过程和方法。 企业目标是企业宗旨的具体化,是企业各项业务和管理活动所指向的终点。企业风险管理的首要任务,就是确定目标。只有先确立了目标,管理层才能针对目标确定风险并采取必要的行动来管理风险。确定全面风险管理目标要做到:企业风险管理目标的确定应与员工沟通;企业计划和预算与风险管理目标、战略计划及当前情况具有一致性;业务活动风险目标要具体;领导层参与制定企业风险目标并对其负责。 (二)收集风险管理初始信息 实施全面风险管理,企业应广泛、持续不断地收集与本企业风险和风险管理相关的内部、外部初始信息,包括历史数据和未来预测。应把收集初始信息的职责分工落实到各有关职能部门和业务单位。 1.在财务风险方面,企业至少收集以下信息 (1)负债、或有负债、负债率、偿债能力。(2)现金流、应收账款及其占主营业务收入的比重、资金周转率。(3)应付账款及其占购货额的比重。(4)成本和管理费用、财务费用、营业费用。(5)成本核算、资金结算和现金管理业务中曾发生或易发生错误的业务流程或环节。 2.在市场风险方面,企业至少收集以下信息 (1)产品的价格及供需变化。(2)产品供应的充足性、稳定性和价格变化。(3)主要客户、主要供应商的信用情况。(4)潜在竞争者、竞争者及其主要产品情况。 3.在运营风险方面,企业至少收集以下信息: (1)新市场开发,市场营销策略。(2)企业组织效能、管理现状、企业文化,中、高层管理人员和重要业务流程中专业人员的知识结构、专业经验。(3)质量、安全、环保、信息安全等管理中曾发生或易发生失误的业务流程或环节。(4)因企业内、外部人员的道德风险致使企业遭受损失或业务控制系统失灵。(5)企业风险管理的现状和能力。 企业对收集的初始信息应进行必要的筛选、提炼、对比、分类、组合,以便进行风险评估。 (三)风险识别 企业风险的识别应当以一种系统方法来进行,以确保公司的所有主要活动及其风险都被囊括进来,并进行有效的分类。根据企业实际情况和技术水平,风险识别主要以定性识别方法为主,适当结合定量识别方法,同时根据业务发展和管理水平的不断提高,逐步引进和加大定量识别方法。 企业应选择适当的风险识别方法,保证风险识别的规范性和科学性,具体措施有: 1.建立科学的风险识别方法体系,对企业和各职能部门随时关注企业活动中存在的风险提供指导。 2.对风险识别方法进行规范化和制度化,确保企业和各职能部门使用统一的识别方法体系对风险识别结果进行描述。 3.利用历史事件诸如违约支付、产品价格变动等,关注未来事件诸如人口变动、新市场条件以及竞争者行为等对风险进行趋势分析和关注。 4.建立损失事件数据库,通过事件列表、事件分类、内部分析、推动讨论和会谈、流程分析等方法进行风险识别,确定风险因素发展趋势和根源。 (四)风险分析 企业风险分析评估的方法多种多样,采用定量分析方法,特别是利用数学模型进行风险分析,可以使风险管理建立在科学的基础上,并为最终的决策提供可靠的依据。风险分析及度量,需要充分地获得企业在历史年度内发生的各种风险的次数以及所导致的损失,统计时段越长,风险评估的准确性越高。风险评估不仅要了解历史上各种风险发生的频率,还要充分考虑风险的客观环境是否改变,如果有变化,就要在历史数据的趋势分析上进行修正。在实际操作中,许多风险发生的可能性实际上难以量化,它们至多只能定性地被描述为“大的”、“中的”、或“小的”风险。 企业在分析风险发生的可能性(或频率、概率)和风险发生的条件方面,可采取如下措施: 1.企业基于风险识别的结果对风险的发生概率进行分析评估,选择采用诸如预期估计或情况评价等术语来表达潜在的可能性,或采用数据或图表的形式来描述和评价风险发生的概率。 2.企业建立风险分析模型,通过关键风险指标管理方法、压力测试和情景分析等定量技术手段和会谈、工作组会议等定性评价技术对风险发生的条件因素进行分析,以确定风险发生的具体条件。 3.企业自查与外部检查、事前与事后检查相结合。 4.企业引进技术手段,由日常业务数据、财务数据入手,按照既定的模型做预警提示。 (五)风险评价 企业风险评价是在风险识别、风险分析的基础上,评估风险对企业可能产生的影响以及确定风险的重要性水平的过程。企业风险评价包括两个方面的内容,即分析风险可能产生的影响和确定风险的重要性水平。企业风险评价通常是和风险分析同步进行的,因而其方法也和风险分析相同。 企业风险评价的控制措施有: 1.企业对于重要事项面临的重要风险可能带来的重大影响,应当通过定量分析技术,确定各种可能性造成影响的数量,从而为企业采取恰当的风险对策提供科学的依据。 2.企业应当按照风险可能带来的影响程度的大小,对风险进行排序,明确重要风险和一般风险。 3.企业应当对重要风险予以特别的关注,避免重要风险可能给企业带来的重大损失。 (六)风险管理策略 一般情况下,对战略、财务、运营和法律风险,可采取风险承担、风险规避、风险转换、风险控制等方法。 1.企业针对各种风险建立确定风险应对措施的程序和方法,对具有较高发生概率、影响重大的风险优先考虑。 2.建立一套广泛适应的风险决策判断标准,即根据风险严重程度和企业的风险承受程度确定不同的决策。 3.企业对降低风险水平所需成本进行合理分析,评估风险应对措施的成本与效益。 4.企业选定风险处理措施后,根据剩余风险重新校订风险。 5.企业要持续获得风险变化信息,有效地控制、管理风险,防范新风险的产生。 6.对重要风险进行实时监控。 四、结论 企业风险评估是一个持续反复的过程,一次风险评估并不能一劳永逸。企业应当结合不同发展阶段和业务拓展情况,持续收集与风险变化相关的信息,进行风险识别和风险分析,根据情况的变化及时调整风险应对策略,以避免由于原来选择使用的风险应对策略无效而影响内部目标的实现。特别是当企业经营活动所处的外部环境发生变化时,企业必须保持应有的灵敏度,针对变化的外部环境进行相应的风险评估,以使企业的目标在变化了的外部环境中得以实现。我国企业只有建立比较完善的风险评估系统,才能真正完善我国企业的内部控制,真正促进我国企业的进一步发展。 【参考文献】 [1] 李玉环.内部控制中的风险评估[J].会计之友,2008 (10). [2] 马宏杰.企业内部控制制度存在的问题与对策[J].财会研究,2007(4). [3] 印发《企业内部控制基本规范》的通知[J].安徽水利财会, 2008(4). [4] 王立勇.企业内部控制中的风险评估研究[J].交通财会,2002(2).制定一个危险源管理方案的参考文献
我们也可以找到这样的参考文献,简单列举如下: 1 企业内部控制与企业档案管理的相关性分析——基于《企业内部控制基本规范》的档案话题 期刊:《档案学研究》 时间:2012年2期作者:覃兆刿;罗琴2,企业内部控制与财务危机预警耦合研究——一个基于契约理论的分析框架 期刊:《会计研究》 2012年5期作者:徐光华;沈弋 3,中国企业内部控制文化构建问题研究——详解《企业内部控制基本规范》中的文化因素 ,期刊:《会计之友》 2011年26期作者:彭妍喆;陈艺婷 5. 智能信息控制:物联网下企业内部控制的核心 期刊:《会计之友》 2012年7期作者:许金叶;韩玲 资料来源:学术资讯网希望能够帮到你。
从国外来看,国际内部审计师协会于 1978 年第一次发布了《国际内部审计实务标准》,1999 年国际内部审计师协会对该标准进行了重新修订,并于 2002年 1 月 1 日起正式实施,该标准被认为是内部审计质量的衡量标准[1]。2004 年 5月国际内部审计师协会又出台两个新的实务公告,并对原来的 5 个实务公告进行了修订。2002 年修订后的《内部审计实务标准》要求大多数在公司负责内部审计的高级官员建立一个持续的质量保证和改进项目。相关的实施标准明确了这一项目的若干不同要素,其中包括由内部审计部门开展的持续监督和定期质量评价,以及至少每五年实施一次的外部质量评价[2]。国外一些学者对内部审计质量控制提出了自己的观点。Lawrence B·Sawyer认为内部审计部门应该有一个内部审计质量控制计划,这个计划应保证内部审计工作符合相关内部审计准则、内部审计部门章程和其它适用标准的要求。质量控制计划应包括下列成分:监督、内部审查和外部审查。质量控制计划应当可以用来评价内部审计部门的工作[3]。Andrew D·Chambers 认为应通过目标管理和定期考核来监督内部审计人员的工作,监督的目的是保证内部审计部门的工作质量能令人满意。此外,为评价内部审计部门的工作质量,应该对内部审计部门进行内部检查和外部检查[4]。Robert·Moeller 认为应开展内部审计质量保证复核,这种复核是一种专门的审计类型,可以使内部审计机构评价审计程序的质量,评估对内部审计准则的执行情况[5]。K·H·Spencer Pickett 认为内部审计质量受以下因素影响:优秀的标准、高素质的员工、员工具有的良好的方向感、固定的方法、优秀的文档记录以及控制良好的组织等[6]。我也在写这个论文。留个方式吧。我们可以多联系。
[1] 财政部注册会计师委员会办公室.审计[Z].,2001..[2] 朱荣恩.内部控制的方式[J].中国审计,2002,(7):.[3] 李国盛.内控制度的现状、成因及对策建议[J].四川会计,:.[4] 张俊民.企业内部会计控制目标构造及其分层设计[J].重庆财会,:.[5] 王纬.COSO模型在会计控制中的应用[J].江苏财会,2002,(2):.追问
英语的啊 !!!!![23] Alchain, A. and H. Demsetz. "The Property Rights Paradigm". Journal of Economic History.1973,(33): 16-27[24] Barzel, Y. "Economic Analysis of Property Rights". Cambridge, Mass.:Cambridge University Press.1989[25] Coase, R. "The Problem of Social Cost". Journal of Law and Economics. 1960,(3):1-44晕晕的说。
浅析内部审计风险的成因及解决途径 [摘 要] 内部审计风险成因包括内部审计机构的独立性不够,内部审计人员的业务不精,内部审计方法的科学性不强,内部审计管理的制度不健全。为了降低内部审计风险,应加强内部审计的法制建设,保证内部审计的独立性,提高内部审计人员的素质,执行科学合理的审计工作程序,正确处理降低风险与经济效益的关系,开展以风险为导向的风险基础审计。 [关键词] 审计 风险 管理 内部审计风险包括固有风险和控制风险。固有风险是指在假定与内部会计控制无关的情况下,被审计单位整体财务报表和各账户余额或某项业务发生重大差错的可能性,即由于被审计单位经济业务的特点和会计核算工作本身的不足而形成的审计风险。如某些企业缺乏对会计制度应有的重视,账户体系庞杂、会计信息明晰性降低,报表利用困难,成本、费用缺乏成本核算概念等。控制风险是指由于被审单位内部控制制度不够健全完善,内部控制行为不力,不能及时发现和纠正某个账户或某种业务中的重大错误而形成的审计风险。有时即使审计人员确认被审计单位的内部控制制度不合理或在关键环节上失控,其提出的修正建议能否真正适合被审计单位的经营活动,也会形成一种修正风险。 一、内部审计风险形成的原因 1.内部审计机构的独立性不够 内部审计机构是单位内设机构,在单位负责人的领导下开展工作,为单位服务。因此,内部审计的独立性不如社会审计,在审计过程中,不可避免地受本单位的利益制约。内审人员面临的是与单位领导层之间的领导与被领导的关系以及与各科室、部门之间的同事关系,所涉及的人不是领导就是同事,非直接有关也是间接相关,审计过程及结论必然涉及到具体的个人利益,因而审计过程难免受到各类人员干扰。 2.内部审计人员的业务不精 审计人员素质的高低是决定审计风险大小的主要因素。审计人员的素质包括从事审计需要的政策法规水平、专业知识、经验、技能、审计职业道德和工作责任。 审计经验是审计人员应有的一种重要技能,审计经验需要实践的积累。我国的内部审计人员中不少人仅熟悉财务会计业务,一些审计人员不了解本单位的经营活动和内部控制,审计经验有限。另外,内部审计人员工作责任和职业道德也是影响审计风险的因素。由于我国内审准则工作规范和职业道德标准方面还有一些空白,许多内审机构和人员缺乏应有的职业规范的约束和指导。总之,目前我国内审人员总体素质偏低,直接影响到内审工作开展的深度和广度。面对当今内审对象的复杂和内容的拓展,内审人员势单力簿,这将直接导致审计风险的产生。 3.内部审计方法的科学性不强 我国内审方法是制度基础审计,随着企业内部经营管理环境复杂化,这种审计模式不适应开展内部管理审计的需要,因为它过分依赖于对企业内部管理控制的测试,本身就蕴藏巨大的风险内部审计一般采用统计抽样方法,由于抽样审计本身是以样本的审查结果来推断总体的特征,因此,样本和总体之间必然会形成一定的误差,形成审计的抽样风险。随着信息化程度提高,被审计单位的会计信息资料会越来越多,差错和虚假的会计资料掺杂其中,失察的可能性也随之加大。虽然统计抽样是建立在坚实的数学理论基础之上,但其本身是允许存在一定的审计风险的。同样,大量的分析性审核也会产生相关风险,使审计风险的构成内容更为复杂。 4.内部审计管理的制度不健全 内部审计管理的制度建设及执行情况是内部审计的前提和基础。健全有效的内部管理制度能及时发现和控制企业经济活动中发生的各种差错和舞弊。为保证内部审计质量,内审组织应建立完善的质量控制制度,但是,部分审计机构至今仍缺少事前的审计计划、事中的审计程序和报告期的审计复核;审计工作底稿不完整,一般仅记录审计问题事项,而未记录审计人员认为正确的审计事项,使得审计复核、审计质量控制无从入手;审计报告以协调关系为出发点,以肯定工作成绩为基调,问题定性模棱两可。以上现状的存在,使得保证内部审计质量成为一句空话,更谈不上防范风险。 二、降低内部审计风险的途径 1.加强内部审计的法制建设 完善和健全审计法规体系是内部审计风险控制的基础措施。审计规范是审计人员的行为规范和工作准则,不仅可以控制和减少审计风险,而且也是衡量审计人员法律责任的标准。我国内部审计起步较晚,与西方国家相比,在相关制度建设上存在着许多不完善的地方。为了适应现代内部审计不断发展的要求,就必须加强审计工作法制化、规范化建设,尽量减少审计工作的盲目性和随意性。 2.保证内部审计的独立性 独立性可以使内部审计师提出公正的和不偏不倚的专业判断,这对审计工作的恰当开展是必不可少的。内部审计机构独立性的内涵应主要表现为形式上的独立和实质上的独立两方面。形式上的独立要求内部审计在组织内具有较高的组织地位,内部审计师的工作应能够获得高级管理层和董事会的支持。实质上的独立是指内部审计人员在精神上必须保持必要的独立性,应以公正的态度,避免利益冲突,在开展内部审计工作时,保持诚实的信念,遵守职业道德准则,在整个审计过程中不做出重大的妥协。 3.提高内部审计人员的素质 审计人员是审计工作的具体执行者,其业务素质的高低直接关系到审计项目质量的好坏和审计风险的大小。因此,提高审计人员的素质,对控制和防范审计风险,提高审计质量起着根本性作用。首先,应加强内审人员政治素质教育和能力的培养,树立内审人员一丝不苟的工作精神和扎扎实实的工作作风,对其进行定期与不定期的培训,使其具备与其工作相适应的高尚品质,高度的事业心、责任感以及处理问题的能力;二是要引导审计人员通过工作实践,及时总结内审工作经验,不断完善审计手段和方法,不断提高运用理论知识解决实际问题的本领和应对复杂多变的工作局面的能力;三是要在进一步完善审计队伍准入制度,实行执证上岗的基础上,建立科学的激励机制,充分调动审计人员的积极性,激发其爱岗敬业的热情,使审计工作队伍在稳定的基础上不断发展壮大;四是要加强审计人员的业务培训和继续教育,使他们能熟练掌握审计的基本知识、基本技能和基本方法,熟悉会计、经济管理、经济法规等相关知识,提高内审人员的审计查证能力,以适应新形势的需要。 4.执行科学合理的审计工作程序 科学的审计程序是圆满完成各项审计任务、降低审计风险的重要手段。从审计任务的下达和审计工作方案的编制,到实施审计、编制审计工作底稿、出具审计报告整个工作流程必须有一套规范的程序。在实施审计的工作中,要充分运用现代的及成熟的审计技术方法。从审计组提交审计报告到作出审计决定阶段应有完善的“把关”程序。要抓好执法检查和廉政回访工作,要检查审计人员在审计活动中,证据收集是否齐全,程序是否符合要要求,决定是否合法,发现问题要及时进行补救和纠正。审计人员应严格按照程序操作一环扣一环,并且对每个环节进行控制,将审计风险隐患消灭在审计的各个环节。 5.正确处理降低风险与经济效益的关系 审计风险可以控制但不能完全消除,如果一味降低审计风险,就可能违背成本效益原则。因此,在接受审计任务时,要认真评价被审计单位的风险程度,高风险单位应该选派经验丰富,解决问题能力强的人员,并适当延长审计时间,而对低风险单位可以投入较少的人力,物力和时间,这样就能使降低审计风险、提高效率和降低成本三者统一起来。 6.开展以风险为导向的风险基础审计 风险基础审计是通过对审计风险进行系统的分析和评价,来确定审计风险是否可以控制在可以接受的范围内。它主要运用分析性复核的方法,不仅对客户的控制风险进行评价,同时更要对产生风险的各个要素进行分析和评价,以确定实质性测试的范围和重点。这样就使审计风险与整个审计过程密切联系起来,以风险的分析与控制为出发点,以保证审计质量为前提,统筹运用符合性测试、实质性测试、分析性检查等方法,综合各种审计证据,以控制审计风险。近年来,风险基础审计在世界各国已广泛应用,其原因就在于它从审计准备阶段开始就考虑审计风险。我国内部审计也应尽快实现向这种审计模式的过渡,以提高审计质量。 参考文献: [1]邱 嘉:试论内部审计与内部控制的关系.消费导刊,2008.2:84 [2]范太艳等:浅议内部审计的咨询服务职能.网络财富,2008.06:52~53 [3]段 琳:内部审计:风险管理的抓手.中国石油企业,2007.12:31~33 [4]刘 莉:企业内部审计风险分析与规避对策.商业会计,2008.12:46~47 [4]赵 菁:降低内部审计风险的途径.西安建筑科技大学学报,2008.02:17~20 [5]张孝兰等:内部审计的风险与防范对策.乐山师范学院学报,2007.08:52~53 [6]周丽琼:企业内部审计的风险管理.企业家天地,2007.10:77~80 Analysis of the causes of internal audit risk and its solution [Abstract] internal audit risk factors include the independence of internal audit bodies enough, the internal audit staff ill-equipped business, internal audit of the scientific method is not strong, internal audit management systems. In order to reduce the risk of internal audit, internal audit should strengthen the legal system, guarantee the independence of internal audit, internal audit staff to improve the quality of the audit of the implementation of scientific and rational work processes, reduce risks and to correctly handle the relationship between economic efficiency and conduct a risk - oriented risk-based audit. [Key words]Audit,Risk,Risk Internal audit risks include the inherent risks and control risks. The inherent risks is the assumption that has nothing to do with internal accounting controls, the units being audited financial statements and the overall balance of the account of a business or the possibility of a major error, that is caused by the audit unit economic characteristics of business and accounting work itself the formation of the lack of audit risk. Some enterprises such as the lack of due attention to the accounting system, account system complex, reducing clarity of accounting information, reports, use of difficulty, cost, cost of lack of cost accounting concepts. Control risk refers to as a result of inadequate internal control system被审单位perfect, weak internal control behavior, not timely detection and correction of a business account or a major error in the formation of audit risk. Sometimes, even if the auditors audited units to confirm the internal control system is unreasonable or out of control in key areas, the amendments proposed by the audit can really suitable for operating activities, but will also create a risk amendment. First, the internal audit risk causes 1. The independence of the internal audit agency enough Internal audit body is set up units in institutions, in the unit under the leadership of the responsible persons to work as a unit of service. Therefore, the independence of internal audit as social audit, the audit process, inevitably affected the interests of the unit constraints. OIA staff faced with the unit leadership was among the leadership and the leadership of the relationship, as well as with various sections, the relationship between colleagues, people are not involved in the leadership of my colleagues is, non-directly related to also indirectly related to the audit process and conclusions will inevitably involve the interests of specific individuals, which inevitably affected the audit process for all categories of personnel interference. 2. Internal audit operations personnel ill-equipped The quality of auditors is to determine the size of audit risk factors. The quality of the audit including those engaged in the audit of the policies and regulations need to level of expertise, experience, skills, audit professional ethics and work responsibilities. Audit experience, the audit staff should have an important skill, the need for the audit practice of the accumulation of experience. China's internal audit staff, many people only familiar with the financial and accounting operations, some auditors do not understand the business activities of this unit and internal controls, audit limited experience. In addition, the internal audit staff responsibilities and professional ethics is the impact of audit risk factors. Because of China's internal guidelines for the work of norms and ethical standards still some gaps, and many internal organs and personnel lack of occupational norms bound and guidance. In short, China's overall quality of the low OIA staff and directly affected the internal audit work carried out by the depth and breadth. Faced with the complexity of today's OIA object and content development, internal audit staff and powerful single force book, which will directly lead to the selection of audit risk. 3. Internal audit of the scientific method is not strong China's system of internal audit is the basis of the audit, with the internal operation and management of environmental complicated models are not suited to carry out this audit internal management audit of the needs, because it is overly dependent on the internal management of enterprises controlled test, in itself a huge potential the risk of internal audit generally use statistical sampling methods, as a result of the sample itself is based on a sample audit of the results of the review can be inferred from the general characteristics, therefore, between the samples and the overall form is bound to a certain degree of error, the formation of audit sampling risk. With the degree of information technology improved, the audited accounting information will be more and more errors and false accounting information doped them, and failed to investigate the possibility of also increasing. Although the survey sample is built on the solid foundation of mathematical theory, but its existence is to allow a certain degree of audit risk. Similarly, a large number of analytical review will also have associated risks, so that the composition of the contents of audit risk is more complicated. 4. Internal Audit management systems Internal audit management system construction and implementation of internal audit is the prerequisite and foundation. Sound and effective internal management system to detect and control of enterprise economic activity occurring in a variety of errors and fraud. To ensure the quality of internal audit, internal audit organizations should establish a perfect quality control system, however, some audit institutions still lack of prior audit plan, a matter of auditing procedures and audit review of the reporting period; the audit working papers incomplete, generally only Records of audit matters, not the recording of audit staff that the correct audit matters, making the audit review, audit quality control no way; to coordinate the relationship between the audit report as a starting point to certain performance-based, qualitative ambiguous issues. More than the existence of the status quo, making the internal audit quality assurance become an empty talk, let alone ward off risks. Second, reduce the risk of internal audit ways 1. Strengthen the internal audit of the legal system Improve and perfect the legal system for the audit of internal audit is the basis of risk control measures. Audit norms, the audit staff code of conduct and guidelines, not only to control and reduce audit risk, but also to measure auditors liability standards. China's internal audit late start compared with Western countries in the relevant system-building there are many imperfections. In order to adapt to the continuous development of modern internal audit requirements, it is necessary to strengthen the audit work of legalization and standardization construction to minimize the audit work of blindness and randomness. 2. To ensure the independence of internal audit The independence of the internal auditor can make a fair and impartial professional judgment, which is appropriate to carry out the audit work is essential. The independence of internal audit bodies connotation should be reflected mainly in the form of independence and de facto independence in two ways. Formal independence requirements of internal audit in the organization of organizations with high status, the internal auditor should have access to senior management and board of directors support. Essentially refers to an independent internal audit staff in the spirit of the need to maintain the necessary independence, should be a fair and just manner and avoid conflicts of interest, in carrying out internal audit work, to maintain an honest belief in compliance with the Code of Ethics for the entire audit process does not make a significant compromise. References: [1]Qiu Jia: On the internal audit and internal control relationship. Consumer Guide, 2008.2:84 [2]Fan Wen-Yan ,etc: On the internal audit function of the advisory services. Network wealth 2008.06:52 ~ 53 [3] Duan Lin: Internal Audit: Risk Management grasps. China's oil companies, 2007.12:31 ~ 33 [4] Liu Li: Corporate Internal Audit Risk Analysis and Countermeasures to circumvent. Commercial accounting, 2008.12:46 ~ 47 [4] Zhao Qing: Reduce the risk of internal audit ways. Xi'an University of Architecture and Technology Journal, 2008.02:17 ~ 20 [5]Zhang Xiao-Lan,etc: internal audit risks and preventive measures. Leshan Teachers College Journal, 2007.08:52 ~ 53 [6]Zhou Li-Qiong: enterprise internal audit risk management. Entrepreneurs world, 2007.10:77 ~ 80 仅供参考,请自借鉴 希望对您有帮助 补充: 由于篇幅限制,不是很完整,欢迎你随时给我留言。内部审计机构是单位内设机构,在单位负责人的领导下开展工作,为单位服务。因此,内部审计的独立性不如社会审计,在审计过程中,不可避免地受本单位的利益制约。内审人员面临的是与单位领导层之间的领导与被领导的关系以及与各科室、部门之间的同事关系本回答被提问者采纳
How to Manage a Small Business After you've started your small business, the surest path to success is managing and growing it effectively. This section of our website is dedicated to helping the small business owner manage, organize and systemize their company so it can virtually run itself!本回答由网友推荐
【参考文献】1、孙永尧:《企业内部会计控制》,经济管理出版社,2007年9月1日。2、龚杰、方时雄:《企业内部控制》,浙江大学出版社,2006年11月1日。3、王军辉:《企业内部会计控制方法与实务》,中国市场出版社,2008年5月1日。4、陈少华:《内部会计控制》,厦门大学出版社,2005年7月1日。5、张福康、姚瑞马:《企业内部会计控制研究》,社会科学文献出版社,2007年8月1日。 或者去当当网输入.就可以找到了.....
参考资料:当当网
本回答由网友推荐我处禁止上传文件,相关PDF外文文献有,没那么多,不知是否满足近几年的要求,翻译没有,翻译得靠你自己,希望能满足你的需要,能帮到你,多多给点悬赏分吧,急用的话请多选赏点分吧,这样更多的知友才会及时帮到你,我找到也是很花时间的,如果需要请直接百度 私信 或者 Hi 中留言贴出你在 百度知道的问题链接地址 及 邮箱地址什么主题的啊?
风险 内部审计 内部控制 企业 企业内部 风险评估 人员
