Comments about New Century's Examiner's Report regarding the Audit Committee and Internal Audit


By Dave Tate, CPA, Esq. - The 500+ page February 29, 2008 report of Michael J. Missal, Bankruptcy Court Examiner, in In re New Century TRS Holdings, Inc., U.S. Bankruptcy Court for the District of Delaware, offers a somewhat rare opportunity to view how a person who is knowledgeable and has experience, in this case the Court Examiner (and his legal counsel), might, after the fact, evaluate the actions of corporate officers, directors, audit committee members, internal auditors and outside auditors in a corporate bankruptcy proceeding. Although the Examiner’s report does not hold the weight of a reportable court decision, it is nevertheless truly useful as a tool, such in the manner that a mock trial might be useful. The report can be found here.

The following discussion addresses only the Examiner’s report with respect to the audit committee and internal audit.

The Examiner notes that the four independent audit committee members “were capable individuals who approached their role with a sense of responsibility.” From May 2005 to the close of 2006 the audit committee met in person or by phone 21 times. “Moreover, the Audit Committee undertook significant activities in analyzing the ramifications of strategic decisions, the structure of management, reviewing financial reports, loan quality issues, and addressing operational concerns.” “The Audit Committee also turned to others for assistance, including [the outside auditor] for financial issues and the Internal Audit Department for operational issues.”

Nevertheless, the Examiner faulted the Audit Committee in four areas:

1. The Audit Committee did not ensure that management conducted an adequate analysis of entity-wide risk;

2. The Audit Committee did not ensure that key operational risks were addressed;

3. The Audit Committee did not give sustained attention to loan quality until 2006; and

4. The Audit Committee did not adequately supervise or make effective use of internal audit.

The Examiner also notes that internal audit was led by “a well-qualified internal audit professional,” who “hired qualified staff,” and that the internal audit personnel “seemed to pursue their responsibilities diligently and professionally.” “Moreover, consistent with sound practices, Internal Audit reported to the Audit Committee, developed a risk-based ranking of issues, typically provided written audit reports to the Audit Committee and developed a procedure to monitor recommendations for improvements. Internal Audit made valuable contributions to the governance and operations of New Century by preparing a significant number of audit reports, and in the process, identified issues concerning loan quality, regulatory compliance, loan servicing and loan appraisals.”

Nevertheless, the Examiner found the following “significant deficiencies” with internal audit:

1. Internal audit did not perform a thorough assessment of entity-wide risk;

2. Internal audit did not identify and examine certain areas of operational risk; and

3. Internal audit did not address internal control over financial reporting risk.

It should be kept in mind that neither the audit committee nor internal audit is responsible for the day-to-day operations of the business; thus, neither the audit committee nor internal audit was or could be the direct cause of the problems at the business. Essentially, although both the audit committee and internal audit diligently performed their functions, when looking at the financial problems that led to New Century’s bankruptcy, it is possible in hindsight to identify audit committee and internal audit deficiencies that may have helped to allow the financial problems to remain unfixed. It is that type of scenario that can present a most difficult dilemma for both the audit committee and internal audit: despite exercising diligence, if something goes wrong often it is possible for someone to argue that greater diligence or better diligence could have prevented the wrongful situation. The Examiner essentially argues that the audit committee and internal audit should have been more diligent, that they may have missed a couple of issues, and that they dropped the ball or did not aggressively enough follow through or pursue certain issues and deficiencies with management.

A lesson can be viewed from the Examiner and his approach to the New Century situation: it can only be concluded that at the end of the day, in performing their functions, both the audit committee and internal audit must do all that they can do to ensure that they have fully resolved each and every issue that they consider important to the risk management of the entity. And that leads to what appears to be a central criticism by the Examiner, that the entity should have and was required to fully implemented and entity-wide enterprise risk management program. Keep in mind that management, the audit committee and internal audit did engage in risk management. The Examiner concluded that those activities were not sufficient.

There is little hard authority for the proposition that the audit committee is responsible for oversight of entity-wide enterprise risk management. New Century was a public company, listed on the New York Stock Exchange. The Examiner references only “best practices for corporate governance,“ and cites N.Y.S.E. Listed Company Manual §303A.07(c)(iii) and (d), and Business Roundtable, Principles of Corporate Governance 17-20 (Nov. 2005). Section 303A.07 pertains only to audit committees of N.Y.S.E. listed companies, but does require those audit committees to discuss with management policies and guidelines relating to risk assessment and risk management, and the company's major financial risk exposures. There is other statutory authority requiring audit committees of all public companies listed in the U.S. to have certain oversight of financial and accounting internal controls; however, oversight of internal controls is not necessarily the same as oversight of enterprise risk management.

With respect to internal audit responsibilities, the Examiner does cite extensively from a couple of sources including from materials published by the Institute of Internal Auditors. The functions and responsibilities of internal audit to engage in enterprise risk management are much more clear. And, of course, the audit committee does interact with and oversee the performance of internal audit.

Whether or not sufficient authority exists to establish the proposition that public company audit committees are responsible for oversight of entity-wide enterprise risk management, or that it is now a broadly established best practice for public company audit committees to perform that oversight function, it can be argued that public company audit committees should at least be considering going in that direction to help protect themselves from after the fact second guessing if something goes wrong. Audit committees also should be working on their interaction with and oversight of internal audit. Internal audit is a tremendous resource to help the audit committee satisfy its functions and responsibilities, and to help the committee evaluate and monitor risk management.

Dave Tate, Esq.
http://davidtate.us
tateatty@yahoo.com

Bloggers crew

Steve Knowles has spent 25 years in business and practice in the UK, but he also worked in the states and the years haven't dulled his way of seeing an alternative view to everyone else, and every day is a new adventure.

48579

Joel M. Ungar, CPA is a lifelong resident of the Detroit area and a graduate of The University of Michigan. He is a principal with Silberstein Ungar, PLLC, a Top 15 auditor of SEC public reporting companies.

81812

Allan Boress, CPA, with over 25 years as a practitioner and consultant to the accounting profession. Mr. Boress is the author of 12 published books in 6 different languages, including a best-seller, The "I-Hate-Selling" Book.

53744

Larry Perry, CPA, CPA Firm Support Services, LLC, is the author of accounting and auditing manuals, author and presenter of live staff training seminars, and author of webcast and self-study CPE programs. He blogs about small audits, reviews, and compilations.

97092
Sandra Wiley, COO and Shareholder, is ranked by Accounting Today as one of the 100 Most Influential People in Accounting as a result of her prominent role as an industry expert on HR and training as well as influence as a management and planning consultant. She is also a founding member of The CPA Consultant's Alliance. Sandra is a certified Kolbe™ trainer who advises firms on building balanced teams, managing employee conflict and hiring staff.
24544

Maria Calabrese, CIR, Human Resources manager for Fazio, Mannuzza, Roche, Tankel, LaPilusa, LLC in Cranford, New Jersey, Maria's topics revolve around the world of: Mentoring, Performance management, and The "Y Generation," a.k.a. "The whY generation".

61109

William Brighenti is a CPA, Certified QuickBooks ProAdvisor, and Certified [Business] Valuation Analyst, operating an accounting, tax, and QuickBooks consulting firm in Hartford, Connecticut, Accountants CPA Hartford.

86878

Ken Garen, CPA, is the co-founder and President of Universal Business Computing Company (www.ubcc.com), a software development firm of high-volume, high-productivity accounting and payroll technology.

28475

Eva Rosenberg, MBA, EA, is the publisher of TaxMama.com, and author of the weekly syndicated Ask TaxMama column. She provides answers to tax questions from taxpayers and tax professionals worldwide.

69873

Amy Vetter, CPA, CITP is the CPA Programs Leader for Intacct Corporation responsible for leading the CPA/BPO Partners nationally.

38169
Brian Strahle is the owner of LEVERAGE SALT, LLC where he provides state and local tax technical services to accounting firms, law firms and tax research organizations across the United States. He also writes a weekly column in Tax Analysts State tax Notes entitled, "The SALT Effect." For more info, visit his website: www.leveragestateandlocaltax.com
109876
Scott H. Cytron, ABC, is president of Cytron and Company, known for helping companies and organizations improve their bottom line through a hybrid of strategic public relations, communications, marketing programs and top-notch client service. An accredited consultant, Scott works with companies, organizations and individuals in professional services (accounting, finance, medical, legal, engineering), high-tech and B2B/B2C product/service sales.
29943

Rita Keller is a nationally known CPA firm management consultant, speaker, author, mentor and blogger. She has over 30 years hands-on experience in CPA firm management, marketing, technology and administrative operations.

58080
Stacy Kildal is the mom of two fantastic kids, an Advanced Certified QuickBooks ProAdvisor, Certified Enterprise Solutions ProAdvisor, Sleeter Group Certified Consultant, a nationally recognized member of the Intuit Trainer and Writer Network, and co-host of RadioFree QuickBooks.
31969
Michael Alter's blog specializes in providing practical advice to those who seek greater profitability and practice management tactics that enhance deeper client relationships.
36570

Sally Glick, CMO, Principal, Marketer of the Year in 2003 and AAM Hall of Famer in 2007, leads a lively discussion of the constantly expanding roles of marketing and the professional marketers that drive this initiative in accounting firms of all sizes.

108656

The IMA Young Professionals Blog features the insights of IMA’s Young Professionals Committee. Committee members share advice and experiences on careers, continuing education, work/life balance, and other issues affecting young accounting and finance professionals.

37843

FEI Financial Reporting Blog provides highlights from SEC, PCAOB, FASB, IASB, and other regulatory news, including reporting under Sarbanes-Oxley Sect 404. It is written by Edith Orenstein, Director of Technical Policy Analysis at FEI.

119820

Sue Anderson has 30 years of experience in continuing education for accountants. Currently she is the program director for online CPE provider CPE Link.

67214

Jim Fahey is COO of Apple Growth Partners, a regional CPA firm in Ohio. His focus is on the effective and efficient use of technology within the firm by all team members.

43624
Caleb Newquist is the Editor-in-Chief of Sift Media US, overseeing content for both AccountingWEB and Going Concern.
71322

Leita Hart-Fanta, CPA, CGFM, and CGAP is the author of "The Yellow Book Interpreted" and owner of Yellowbook-CPE.com a website devoted to training for governmental auditors.

98229

AccountingWEB is more than just a U.S. team of journalists and financial and technology experts - we have an international side, too! Members of our British team who publish AccountingWEB.co.uk share their ideas, insights, and perspectives from across the pond.

58828