The COSO Internal Control Framework 2013: What are you Waiting For?

Written by Sargon Youmara, Partner, Vonya Global If more companies knew how easy the migration from the 1992 to 2013 framework can be, fewer would drag their heels. A startling fact: a good many companies that have not migrated to the Committee of Sponsoring Organizations of the Treadway Commission (COSO) 2013 Internal Control Framework were […]

Social Networking Carries Real Compliance Risks

Written by Steven Randall and Veronika Fritz, Partners, Vonya Global Between all the bathing suit selfies and Worldwide Wrestling fan pages, social media seems, well, silly and inconsequential. It becomes less silly when the FDIC or FTC come knocking because they caught you sneaking an ad into your blog post, or an advisor made a […]

Baseline Testing: Benchmarking of Automated Controls

Written by Sargon Youmara, Partner, Vonya Global Baseline testing is a term used in accounting and audit to describe the testing of an automated application control. Once an automated application control has been tested and it is determined by an auditor to be effective, the auditor may conclude that the control remains effective over subsequent […]

New Norms For Reporting Fraud To The SEC

Written by Steven Randall, Partner, Vonya Global Prior to 2013, the Securities and Exchange Commission (SEC) had permitted companies in fraud cases to settle without admitting to any wrongdoing; this meant that even in serious cases of accounting fraud, companies could simply walk away without admitting their malfeasance despite the loss of millions on the […]

Breach Management: Best Practices and Policies

Written by Veronika Fritz, Partner, Vonya Global Cybercrime puts any business at risk—more so now than ever before, as the recent Target and Sony attacks emphasize. Cybercriminals are constantly working to find devious ways to destroy brands, disrupt operations, and steal information. Breach management policies are the key to addressing these growing cyber crime risks. […]

Guidelines for Auditing Ethics and Compliance Programs

Written by Steven Randall, Partner, Vonya Global Auditing ethics and compliance programs ensures that an organization “walks the walk.” This is the way any business can safeguard itself against fraud by seeing that the practices that exist in its daily operations match up with the procedures it espouses in its policies and code of conduct. […]

Protecting Customer Data: Five Things You Can Change Now

Written by Steven Randall, Partner, Vonya Global There have been several recent examples of the damage that poor data protection can cause even very powerful companies: just ask Sony, Home Depot, or Target. Trouble protecting consumer data can cost a company more than bad publicity. Lawsuits, fines, and permanent loss of business are all likely consequences […]

Risks and Rewards of a Bring Your Own Device Policy

Written by Steven Randall, Partner, Vonya Global Today most people can’t imagine getting through the day without their mobile devices, and many employees expect to be able to use their personal electronics at work. In fact, even if your employees really aren’t supposed to use their own devices for work purposes, chances are good that […]

The Risks of Conducting Business Internationally

Written by Veronika Fritz, Partner, Vonya Global Conducting business internationally carries many risks that domestic business does not. International business involves exposure to local economic conditions, fraud, and bribery. Business can be interrupted by political problems such as insurrections, problematic diplomatic relations, hostility from locals, and volatile foreign governments. Unstable currency exchange rates and exchange […]

Handling Misconduct at the Management Level the Right Way

Written by Sargon Youmara, Partner, Vonya Global Recently, the SEC awarded a whistleblower with more than $300,000. Though the employee first reported misconduct internally, the company failed to act and suffered greater consequences for inaction. This was the first such award given to a whistleblower working in compliance, and acts as a signal to the […]