Types of Internal Controls in Accounting


The Worldcom, Enron and HealthSouth accounting scandals, among others, have heightened the importance of internal controls for companies everywhere. The Sarbanes-Oxley Act mandates that companies develop and maintain adequate internal control systems. In the U.S., internal controls are evaluated in the context of the Committee of Sponsoring Organizations (COSO) framework. There are three types of internal controls: Preventive, Detective and Corrective. In order to gain an understanding of the internal control concept, it is necessary to have a basic understanding of the COSO framework.

COSO Framework

  • The COSO framework consists of five primary components: the control environment, risk assessment, control activities, communication and information, and monitoring. If any one of these primary components is not functioning properly or is weak, the entire internal control system may be compromised. For example, if the monitoring of accounts does not occur on a regular basis, errors will go undetected and uncorrected. There will also be opportunities for fraud by employees that would not exist if monitoring were occurring on a regular basis. Each of the primary components has sub-components that are essential to the proper functioning of the primary component. If the sub-components are faulty, the primary components will not function properly or be weak, and the entire internal control system will be negatively affected. For example, analytics should be built into accounting systems to ensure that data is processed correctly or is kicked out if it does not meet established criteria.

Preventive Controls

  • Preventive controls are the most effective types of internal controls because they are put in place before errors or irregularities occur and are designed to keep these flaws from happening. Examples of preventive controls are: adequate separation of duties (not having the same person both authorize and process transactions), proper authorization of transactions (a supervisor authorizes a purchase by reviewing and approving the purchase request) and adequate documentation and control of assets (when purchases are made, there should be an approved purchase request and an invoice and receiving documents to show delivery of the items).

Detective Controls

  • Detective controls are designed to note errors and irregularities after they occur. Examples of these types of controls are: exception reports (computer reports of occurrences outside the norm), reconciliations (bank reconciliations and general ledger reconciliations) and periodic audits (both independent external audits and internal audits which help to uncover errors, irregularities and noncompliance with laws and regulations).

Corrective Controls

  • Corrective controls are designed to prevent errors and irregularities from reoccurring once they are discovered. Examples of these types of controls are: policies and procedures for reporting errors and irregularities so they can be corrected, training employees on new policies and procedures developed as part of the corrective actions, positive discipline to prevent employees from making future errors and continuous improvement processes to adopt the latest operational techniques.

Internal Control Limitations

  • Internal controls only provide reasonable assurance that an entity's goals and objectives will be accomplished, no matter how elaborate the internal control system. This is because human involvement always has the potential for errors which may not be discovered in a timely manner.

Related Searches


Promoted By Zergnet


You May Also Like

  • Examples of Internal Controls

    Internal controls are policies and procedures companies use to help prevent errors and fraud, which can include theft, embezzlement, favoritism or math...

  • Examples of Internal Controls Tests

    Internal controls ensure that all financial information represented on a company's financial statements is accurate and valid. Testing internal controls is an...

  • How to Write an Internal Control Report

    Internal control reviews provide management with assurance about the effectiveness of their control environments. The reviews can be undertaken by internal or...

  • The Effects of Management Controls on Productivity

    Management controls include a variety of tools used by both managers and employees to ensure work may proceed as necessary. While management...

  • What Are Preventive Internal Controls?

    Internal controls at companies are based on three phases. Preventive controls are put in place before there are errors, loses or fraud...

  • What Are the Types of Internal Controls?

    Internal controls are the policies and procedures that a business puts into place in order to protect its assets, ensure its accounting...

  • Types of Internal Audit Controls

    Internal audit controls are also known as internal controls. Companies rely on these policies to safeguard operating assets against the risks of...

  • Types of Risks in Internal Control

    Internal control is a process that provides reliable financial reporting, effectiveness of operations and compliance with laws. It is a process companies...

  • Types of Internal Control Reporting Options

    Internal reporting options are vital in keeping employees, regulators and investors up-to-date. The format must be understandable for managers, leaders and investors....

  • Types of Internal Controls

    Internal controls in finance include control environment, risk assessment, control activities and control related to information and communication. Monitor internal controls for...

  • Examples of Internal Controls for Balance Sheets

    Internal controls are becoming more important as firms try to mitigate increased levels of risk. This risk is created by data and...

Related Searches

Check It Out

Are You Really Getting A Deal From Discount Stores?

Is DIY in your DNA? Become part of our maker community.
Submit Your Work!