All directors should take great care that they are able to fulfil this duty, for their own personal protection as well as for the shareholders and other stakeholders.
Most major corporate scandals have been the result of directors being unaware of the true financial position of the organisation for which they are responsible.
Every organisation should have a robust system of financial control. The organisation's auditors should be encouraged to review the controls in the business and report to the directors on their findings.
Internal control includes financial, operational and compliance controls and risk management.
Successful business involves taking risks. The purpose of internal control is to help manage and control risk appropriately, rather than to eliminate all risks, since profits are in part the reward for successful risk taking in business.
Risk assessment and control should not be limited to financial risks but should also include other relevant matters. These include external factors that should be exposed in the PEST analysis as well as an increasing range of other factors such as employment litigation, loss of key individuals, succession planning, IT failure/data loss, reputation risk etc.
There are four possible responses to risk: -
Does the board set appropriate policies on internal controls, seek regular assurance that the system is working satisfactorily, and ensure that the system is effective in managing risks?
Does the board consider: -
* Inspired by the Institute of Directors Standards for the Board
Brefi Group Limited
15 Clos Mancheldowne
Barry CF62 5AB, United Kingdom
Reg. No. 1669333