Skip to main content
FoxPointe FoxPointe
  • Services
    • Cyber Risk, Assurance and Compliance
    • IT Audit
    • Penetration Testing
    • General Consulting
    • Virtual Chief Information Security Officer (vCISO)
  • About Us
    • Management Team
    • Credentials
    • Careers
  • Resources
    • Events
    • News
    • Videos
    • Whitepapers
  • Blog
  • Contact Us
FoxPointe
  • Services
    • Cyber Risk, Assurance and Compliance
    • IT Audit
    • Penetration Testing
    • General Consulting
    • Virtual Chief Information Security Officer (vCISO)
  • About Us
    • Management Team
    • Credentials
    • Careers
  • Resources
    • Events
    • News
    • Videos
    • Whitepapers
  • Blog

Enter Keywords

  1. Home
  2. Blog

FoxPointe Security Hub

The Impact of Internal Controls on Fraud Prevention

October 21, 2021 by Ryan Krawczyk, Security Consultant

All fraud begins with a line of thinking that follow three major factors: Opportunity, Rationalization, and Pressures. Rationalization is the excuse an individual uses to provide comfort or assurance that they need to commit fraud. An example of this could be: “I’ll put the money back, I just need it on loan” or “This company makes so much money, they won’t miss a few dollars here and there”. Pressures are represented by an external factor that would drive a person to steal money from a company. Examples of pressures include pay-cuts, medical issues/expenses, or addictions. The final factor is opportunity. This describes the individual’s ability to create fraud. For example, an employee’s position, responsibilities, or access can provide opportunities for employees to steal from a company. This is the only factor that companies have complete control over and can be mostly remediated with strong internal controls.

The Association of Certified Fraud Examiners (ACFE) performed a global study in 2020. In this study, they discovered that a lack of internal controls contributed to 33% of all reported fraud (pg. 5). Additionally, they discovered that a lack of internal controls and the ability to override weak internal controls contributed to 50% of all internal controls related fraud (pg. 36).

How SOC Assessments Can Help

SOC assessments are designed to test a company’s internal controls. These assessments can find gaps in organizations’ internal controls, which, if remediated, can reduce the opportunity for fraud within the organization. Reducing the opportunity for fraudsters will discourage most fraud. Additionally, SOC assessments encourage organizations to train employees in security awareness and fraud prevention. Completing an assessment that tests internal controls will help an organization identify gaps that could have been used to commit fraud.

FoxPointe Solutions is Here to Help

To learn more about SOC Reporting and how FoxPointe Solutions can help your organization get started, visit our SOC Reporting page or contact us today. 

 

Learn More

Share
Twitter Facebook LinkedIn
  • Topics
  • Authors
  • Data Security (12)
  • Data Privacy (15)
  • Compliance (4)
  • Risk Management (7)
  • Cybersecurity Alert (7)
  • Cybersecurity (25)
  • Archive (34)
  • Charlie Wood | PCI QSA, CISA, CRISC, CISM
  • Carl Cadregari | CISA, CCSFP, CTPRP
  • Allison Hall | PCIP, CCSFP
  • Courtney Caryl | CCSFP, CHQP
  • Andrew Parks | PCI QSA
Let us show you how we can help
Request Quote
FoxPointe

171 Sully's Trail
Pittsford, NY 14534

Call 844-726-8869
or Contact Us

Subscribe to the Blog

Services
Cyber Risk, Assurance and ComplianceIT AuditPenetration TestingGeneral ConsultingVirtual Chief Information Security Officer (vCISO)
Company
Management TeamAbout UsBlogCareersPrivacy Policy
©2023 FoxPointe
Website by Corporate Communications, Inc.
We use cookies and other technologies to optimize site functionally, analyze website traffic, and share information with our service and analytics partners. To view our Privacy Policy, which discusses cookies, click here. By continuing to use & browse our services, you agree to our Privacy Policy, our use of cookies, and the Terms and Conditions.