Internal control and risk management内部控制与风险管理外文翻译

1、internal control and risk management1. internal control -, standard and legislationin 1985, the united states in order to curb the growing business of accounting fraud activities, formed a committee against financial fraud treadway committee), (accounting fraud activities investigation led to reason

2、 and proposed solutions. the scheme emphasized the importance of internal control, requests and suggestions of all listed companies should provide in the annals of internal control reports. the report shall include admit management authorities of financial reporting and internal control is responsib

3、le, and discuss the implementation of these responsibilities. in the end the mission treadway committee after the five, the commission launched organization jointly established a new committee - the com - mittee coso (sponsoring organizations of the treadway of ordinary), namely the organizing commi

4、ttee treadway committee launched. it consists of the american public institute of certified public accountants (aicpa), american accounting association (aaa), international financial management association (fei), internal auditors association (type iia), international accounting association (naa wou

5、ld) (a managerial accounting association jointly sponsored ima predecessor). coso continue to study and in 1992 it issued a programmatic document about the internal control, namely internal control - the overall framework (internal control - integratedframework). the reports are put forward the coso

6、 u.s. federal reserve, the united states securities and exchange commission, the basel committee regulators or international organizations such as the recognition and adopted, many of these definitions, suggestions and ideas absorbed into the legislation and regulations, worldwide has had a broad im

7、pact. since the end of 2001, the united states broke with enron, worldcom, xerox and other companies financial cases of fraud as a representative of accounting scandals, hit u.s. capital markets and the economy, also concentrated exposure for american companies in the existing problem of internal co

8、ntrol, thus causing the united states adopted the sasha class nice -, the extension of the law (sarbanes oxley act) -. the bill made clear company managers ceo and cfo finance director of internal control, and will be held directly responsible shall undertake economic and criminal consequences; grea

9、tly improve the punishment of accounting fraud; strengthening the internal audit, external audit and audit supervision. this legislation represents a large capital market system, also make the progress of the importance of internal control people have more deeply.2. the internal control and risk man

10、agement comparisoninternal control and risk management has the close relation. coso internal control is that part of the risk management. therefore, the committee in the whole framework of internal control - the basis of, and in 2003 issued a new report -, enterprise risk management framework. at pr

11、esent the report was only a rough draft, in public, revised later, is expected to formally released this year. the enterprise risk management framework inherit and contains the whole framework of internal control - the main content also expanded the three elements, added a goal, updated some ideas f

12、or countries to provide a unified enterprise risk management terms and concepts of comprehensive application guide system. coso internal control and risk management of the definition and elements were: internal control: enterprise internal control is by the enterprise board of directors, managers, a

13、nd other staff to implement, for financial reporting accuracy, business activity of efficiency and effect, the relevant laws and regulations such as the follow to achieve the goal of the process and provide reasonable assurance. it includes five elements: control environment, risk assessment, contro

14、l activities, information and communication, the surveillance. risk management: enterprise risk management is a process of the board of directors, the management of enterprises and other personnel to implement, applied in strategy formulation and enterprise all levels of activity, aims to identify p

15、ossible influence enterprise various potential events, and according to enterprises risk preference for enterprises to manage risk, to achieve the goal of providing reasonable assurance. it has eight elements: the internal environment, goal setting, event risk identification, risk assessment, counte

16、rmeasures, control activities, information and communication, the surveillance. the two reports from the coso perspective, the enterprise risk management and internal control has the following similar or different places: first, they are made by enterprise board, management and other personnel to im

17、plement, emphasize the point, says the participation parties on the internal control and risk management has a corresponding roles and responsibilities. second, they are all clearly is a process, not as a static thing, such as system files, technical model and so on, also not be alone or extra activ

18、ities, such as inspection, evaluation is best placed inside enterprise daily management process, as a kind of routine operation mechanism to construction. third, they are for the realization of the goal of enterprise provide reasonable assurance. risk management objectives are four categories, inclu

19、ding three categories and internal control collocated, namely report targets, business targets and follow the targets. but the report targets have expanded, it not only include financial report, also requires all the accuracy of internal and external non-financial class report issued by the accurate

20、 and reliable. in addition, risk management increased the strategic target, namely and enterprise vision or mission related high-level objectives. this means that risk management is not only ensure management efficiency and effect, and intervention in the enterprise strategy (including business obje

21、ctives) formulation process. fourth, risk management and internal control elements have five aspects, i.e. (overlap is control or internal) environment, risk assessment, control activities, information and communication, the surveillance. these coincide most of their goals and realization mechanism

22、coincide of similar decision. risk management increased goal setting, event identification and risk countermeasures three factors. coincide elements, connotation, for example, has been extended internal control environment including honest character and moral values, staff quality and ability, the b

23、oard of directors and the audit committee, management philosophy and management style, the organizational structure, the power and the allocation of responsibility, human resource policies and practices seven aspects. risk management internal environment in addition to include these seven aspects ou

24、tside, still include risk management philosophy, risk preference (appetite) and risks associated cultural three new content. in the risk assessment elements, risk management requires the consideration of the inherent risk and residual risk, with expectations, worst case values or probability distrib

25、ution measure risk and to consider time preferences and risk association between the role. in information and communication, risk management emphasized the past, present and future of the relevant data about obtaining and analysis, provides information of the depth and timeliness, etc. fifth, risk m

26、anagement proposes risk portfolio and the overall risk management (in tegrated management) - are new idea. the enterprise risk management framework in the theory of modern financial borrowing portfolio risk theory, this paper puts forward the concept of combination and overall management from enterp

27、rise level, demanding dispersed in the overall grasp all levels and departments of enterprise, the risk exposure with overall consideration risk countermeasures, prevent dispersed consider and coping by department, such as will risk the risk in technology, financial, separated by information technol

28、ogy, environment, safety, quality, auditing departments, and considering the interaction between risk events, prevent two tendencies: one is the departments risk in risk preference can withstand ability, but within the overall effect may be beyond sustaining limit, because individual risk influence

29、is not always add, may be multiplied; second is the risk of individual departments over its limits, but exposure to the overall risk level havent beyond sustaining range, because sometimes has offset the effects of the event of the effect. at this time, and further, strive for higher return risk wit

30、h room to grow. according to risk portfolio and the overall management point of view, need unification consideration risk events as risk countermeasures between interaction between, overall risk management plan formulated. 3. internal control and risk management inner link enterprise system evolutio

31、n and risk associated with the development. the establishment of a limited liability system is running or partnership enterprise organization from the key turning into a modern shares, it enables shareholders steps possessions and enterprise property and enterprise economic responsibility independen

32、t, shareholder transformation will no longer affect the enterprise credit capacity for equity transactions, expanded range and increased liquidity, which reduces the risk of investment and promoting enterprise financing, contributed to today a giant corporation. in order to make equity trading and t

33、he shareholders transform business continuity, influence and to make capital and management ability realize more optimal combination of ownership and management, enterprise in the modern enterprise of altitude, which also separate brings new risks, namely professional operators might not perform its

34、 accountability and shareholders expense. in addition, limited liability may also lure enterprise engaged in high risk and damage the projects creditors. because in limited liability, the potential revenue mainly by the enterprise (shareholders) to obtain, and the risk of failure, the major that ban

35、kruptcy is borne by the obligee. the risk is not marketization, the market competition spontaneous constraints or market transactions, such as providing a hedge product quality or natural disasters, but mechanism, belongs to the organization or trade in agency issues, need to regulate rules and syst

36、em. these systems include corporate governance in the liability system, such as financial report, an internal control and audit, etc. internal control and risk management is the fundamental role maintenance, security enterprise asset investor interest, and create new value. fama&jensen (1983) analyz

37、ed under the board of directors of ownership and separation of the internal control functions; jensen (1993) further analyzed the american board of directors in internal control with reasons for the failure of performance. theoretically, the enterprise internal control is the enterprise system compo

38、nent, is in the enterprise management and ownership of the separation of investor benefit under the condition of the protection mechanism. its purpose is to ensure the accuracy and reliability of the accounting information management, prevent manipulation of statements and fraud and protect the comp

39、anys property security, comply with the law in order to maintain the companys reputation and avoid incur pecuniary loss, etc. the historical origin of internal control, the requirements to earlier more basic, easier or appropriate rise to legislative level. enterprise risk management is in the new t

40、echnology and the market conditions of natural extension of internal control. coso in the enterprise risk management framework of risk management of significance about when this is the case discussion: enterprise risk management strategy and organization used in the various levels activities. it ena

41、bles managers in the face of uncertainty can identify, evaluate and manage risk, play the role of creation and maintain value. risk management can make risk preference and strategic keeps consistent, will risk and growth and return overall consideration, promote the decision against risks and reduce

42、 the risk and losses, identify business management and enterprise crossover risk, for various risks to provide overall countermeasures, capture opportunities and make capital rationalization. coco in explaining the generalized control and risk discusses way: leadership in the face of uncertainty inc

43、lude choice. risk refers to individuals or organizations are making choices adverse consequences after the possibility of suffering. the risk is opportunity counterparts. obviously, these discussions have realized that enterprise exists for shareholders or stakeholders (for nonprofit organization, e

44、tc.), and create value value creation is not only passive assets security, it should also include the use of opportunity. moreover, the threat of shareholder value comes not from the operator internal factors such as accounting frauds, including from the market risk, etc. technology and market condi

45、tions, promote the new progress of internal control to risk management. in advanced information technology conditions, accounting records realized the electronic control, real-time update, make traditional error-detection and prevent disadvantages accounting control seems outdated. however, the risk

46、 is often caused by trading or organization innovation, these innovation comes from emerging market practice, such as enron will energy trading large developed into similar financial derivatives trading. on the other hand, environmental protection and the enforcement of protection of consumer rights

47、, strengthened the social responsibility of the enterprise, if an enterprise may have inadvertently, suffer from commodity market or capital market for the enterprise, and punish the performance brand value, or the capital market capitalisation put-downs. therefore, the enterprise need a daily opera

48、tion function and structure to guard against risks, including abide by laws and regulations, and ensure the trust of investors and ensure financial information management efficiency, etc. therefore, from maintenance and promote this basic function value creation standpoint, risk management and inter

49、nal control target is consistent, just in new technology and the market conditions, in order to effectively protect the interests of investors need in the basis of the development of internal control more active and more comprehensive risk management. 4.from internal control to risk management there

50、 is a debate that risk management include internal control, or internal control contains risk management. the author thinks that what kind of conclusion that is not very important, the most important is to clear risk management and internal control of the relation between the superposition place. wh

51、os wider, may be with time, technology, market conditions, legal and regulatory practice and different, for example, in the early development of internal control, market risk management tools and technology conditions are not fully (such as computer systems, statistics theory, quantity model, hedge

52、tools and insurance etc.), then the internal control contains (alternative) risk management function is very natural. even in the same era, different industry their emphasis may also different, for example, in the financial industry regulatory strict or involving the peoples lives and health pharmac

53、y and medical industry, the urgency of risk management, enterprise stronger with risk management leading internal control may be more convenient. and in some other enterprise, in order to comply with information disclosure requirements of internal control reports with the internal control system, en

54、terprise for leading, give attention to two or morethings risk management may be more suitable. because of the internal control and risk management is the intrinsic relation, countries with different ways were gradually integrate internal control and risk management connected. january 8, 2004, china

55、s relevant aspects held the commercial bank risk management and internal control bbs, this shows that our banking also began to internal control and risk management connected. the basel committee issued by the banking group of internal control system framework said: the board of directors approved a

56、nd regularly check the overall strategy, and important system, understand the main risk, the bank for these risks setting acceptable level, ensure management to take necessary steps to identifying, measuring, supervision and control these risks. here, the risk management is obviously the content int

57、o the internal control framework. in the uk the fsa comprehensive standards (thecombined code) about the internal control regulation, it is first in official documents containing definitely in risk management in internal under control. this code is that the board should keep sound internal control s

58、ystem to protect shareholders investment and enterprise assets (principle d. 2). the board of directors at least once a year, and check the effectiveness of enterprise internal control systems, and to shareholders and report. reports should include all the control, such as financial, management, fol

59、low control and risk management (d. 2.1). this rule is listed on the london stock exchange enterprise must abide by. canadian association of certified accountants control standards committee (coco) think control should include risk identification and reduce the risk of, in which not only include the risk of achieving specific goals related, but also include general, if cant identify and took advantage of the opportunity, cannot make enterprise in the face of not anticipate events and uncertain information