- Risk assessment, taking into account the quantitative importance of the relevant account, the size and complexity of the transaction, the likelihood of loss resulting from errors or fraud
- Update according to job description and flow chart
- Build control activities and test procedures to meet identified risks per process level control (PLC: Process Level Control)
Poongsan has established and operated an internal accounting control system in order to enhance internal and external credibility and reliability of accounting information (including information on transactions that form the basis of accounting information) prepared by the company in accordance with Article 2-2 of the Act on External Audit of Stock Companies.
Purpose of Internal Accounting Control
check 01
Ensuring the efficiency and effectiveness of enterprise operation
check 02
Ensuring the reliability of financial information
check 03
Compliance with relevant laws and policies for Anti-Corruptions
- Enhance the effectiveness of design and operation of internal accounting controls through legal risk-based approaches
- Strengthening prevention of anti-fraud and anti-corruption
- Optimization of IT General Controls and Automated Controls in an IT environment
Internal Control Target
| Mega Process | Target Index | |
|---|---|---|
| Entity Level Conrtol | 89 | |
| Process Level Control | Sell | 81 |
| Purchase | 32 | |
| Inventory and Cost | 50 | |
| Financing | 63 | |
| HR and Salary | 67 | |
| Fixed Assets | 23 | |
| Securities | 20 | |
| Financial settlement | 86 | |
| IT Control | 52 | |
| TOTAL | 563 | |
Process Design
- 01Control Environment
-
Descriptions An environment in which an organization can understand and participate in internal control as the foundation of individual morality, integrity, and business competence.
Policy and Procedure Top Management’s Leadership for Ethics Management and publication of Code of Conduct Control by Audit CommitteeTraining and Education Program for Compliance
Investigation and punishment system for employees
- 02Risk Assessment
-
Descriptions Identify and assess factors that impede the achievement of the organization's goals and provide criteria for effective internal control design
Policy and Procedure Accounting Policy Steering Committee (PSAM)
Establish mid- to long-term vision and annual business plan IT Disaster Recovery Plan and ERP Steering Committee
- 03Control Activity
-
Descriptions Provide confidence in meeting organizational goals by designing and operating effective control activities
Policy and Procedure Systematic operation of advanced internal control management systemIT general control (IT security activity plan and IT business plan etc.)
- 04Information and Communication
-
Descriptions Gathering information related to internal and external business performance and establishing horizontal and vertical information communication system
Policy and Procedure Whistle blowing system (Cyber report etc.)Groupware and in-house messenger
Customer support function for homepage to gather external opinions
- 05Monitoring
-
Descriptions Monitor effectiveness to ensure that operational internal controls are working properly
Policy and Procedure Continuous monitoring by automation systemReflecting continuous monitoring and internal and external audit results into internal control management system
풍산은 내부 Data를 이용하여, 사전에 정의된 Rule에 의해서 이상징후를 상시적으로 모니터링하는 상시모니터링 시스템을 운영하고 있습니다.
- Filter the company's internal data primarily (SQL Query)
- Interfaces to Continuous Monitoring System
- Audit Division checks on web screen
- Listening to and confirming the opinions of the identified issues
Such monitoring and check shall be conducted by the dedicated person properly qualified and trained to perform the function.
The relationship between the Internal Control System for the purpose of securing the reliability of financial information and the Continuous Monitoring System for monitoring fraud prevention and repetitive errors
