Citigroup's internal controls and the purpose they serve.

  In the United States, the management and auditors of publicly held companies must evaluate their internal controls annually. The purpose of the evaluation is to look for any control deficiencies. Doing so will help avoid any penalties such as the $10.5 million that the SEC imposed on Citigroup Inc. as a result of its internal controls failures. See the article from SEC.gov, Citigroup to Pay More Than $10 Million for Books and Records Violations and Inadequate ControlsLinks to an external site.. You are an external auditor hired by Citigroup to perform an audit. You will be reporting to Citigroup's audit committee. Instructions Write a 2–3 page report for the audit committee in which you: Critique Citigroup's internal controls and the purpose they serve. Distinguish between operation and design control deficiency. Determine the reasons that led Citigroup Inc. to pay $10.5 million in penalties. Recommend techniques that will overcome the weaknesses of Citigroup's internal controls; justify the recommendation.

Sample Solution

   

To: Citigroup Audit Committee From: External Auditor Date: March 8, 2023 Subject: Review of Citigroup Internal Controls

Critique of Citigroup's Internal Controls

Citigroup's internal controls are designed to provide reasonable assurance regarding the reliability of financial reporting and the achievement of operational objectives. The controls are in place to mitigate risks and ensure that transactions are recorded accurately, assets are safeguarded, and laws and regulations are complied with.

Full Answer Section

     

Some of the key internal controls in place at Citigroup include:

  • Segregation of duties: Employees are assigned different roles and responsibilities so that no one individual has complete control over a transaction.
  • Authorization controls: Transactions are only authorized by appropriate personnel.
  • Reconciliations: Accounts are reconciled on a regular basis to ensure that they are accurate.
  • Physical controls: Assets are safeguarded from theft or loss.
  • Information technology controls: Access to sensitive data is restricted.

Overall, Citigroup's internal controls are well-designed and comprehensive. However, there are some areas where the controls could be strengthened. For example, the company could improve its controls over the review of journal entries and the monitoring of employee compliance with policies and procedures.

Purpose of Internal Controls

The purpose of internal controls is to provide reasonable assurance regarding the achievement of the following objectives:

  • Reliability of financial reporting: Internal controls help to ensure that financial statements are accurate and complete.
  • Compliance with laws and regulations: Internal controls help to ensure that the company complies with all applicable laws and regulations.
  • Safeguarding of assets: Internal controls help to safeguard the company's assets from theft, fraud, and misuse.
  • Efficiency and effectiveness of operations: Internal controls help to ensure that the company's operations are efficient and effective.

Operation and Design Control Deficiency

An operation control deficiency is a weakness in the implementation of an internal control. For example, an operation control deficiency could occur if employees do not follow established procedures.

A design control deficiency is a weakness in the design of an internal control. For example, a design control deficiency could occur if a control is not effective in mitigating a risk.

Reasons for Citigroup's $10.5 Million Penalty

The Securities and Exchange Commission (SEC) imposed a $10.5 million penalty on Citigroup for the following reasons:

  • Books and records violations: Citigroup failed to maintain accurate books and records. For example, the company did not properly record certain transactions.
  • Inadequate internal controls: Citigroup's internal controls were not adequate to prevent or detect the books and records violations.

Recommendations for Strengthening Internal Controls

The following are some recommendations for strengthening Citigroup's internal controls:

  • Improve the review of journal entries: The company should implement a more rigorous review process for journal entries. This would help to ensure that journal entries are accurate and properly authorized.
  • Monitor employee compliance with policies and procedures: The company should implement a program to monitor employee compliance with policies and procedures. This would help to identify and address any instances of non-compliance.
  • Enhance training on internal controls: The company should provide employees with enhanced training on internal controls. This would help to ensure that employees understand their roles and responsibilities in maintaining effective internal controls.

Conclusion

Citigroup's internal controls are generally well-designed and comprehensive. However, there are some areas where the controls could be strengthened. By implementing the recommendations outlined in this report, Citigroup can improve the effectiveness of its internal controls and reduce the risk of future control failures.

We are here to help
We have crazy offers
It’s quick and easy to place an order. We have an efficient customer service that works 24/7 to assist you.It’s quick and easy to place an order. We have an efficient customer service that works 24/7 to assist you.

We are here and ready to help

Order Now

IS IT YOUR FIRST TIME HERE? WELCOME

USE COUPON "11OFF" AND GET 11% OFF YOUR ORDERS

PLACE AN ORDER NOW REGISTER NOW