Spreadsheet Risk Issues

It is interesting to note that the riskiness of operational spreadsheets are overlooked even by companies with high standards of risk management. Only when errors amount to actual losses do they realize that these risks have been staring them in the face all along.

Common spreadsheet risk issues

Susceptibility to trivial manual errors

Due to the fundamental structure of spreadsheets, a slight change in the formula or value in any of their inhabited cells may already affect their overall output. An

accidental copy-paste,
omission of a negative sign,
erroneous range selection,
incorrect data input or
unintentional deletion of a character,cell, range, column, or row

are just some of the simple errors spreadsheet users frequently encounter. Rarely are there any counter-checking controls in place in a spreadsheet-based activity and manual errors therefore easily go undetected.

Possibility of the user working on the wrong version

How do you store spreadsheet files?

Since the most common reports are usually generated on a monthly basis, users tend to store them using variations of these two configurations:

If you notice, a user can accidentally work on the wrong version with any of these structures.

Prone to inconsistent company-wide reporting

This happens when a summary or ?final? spreadsheet is fed information by different departments coming from their own spreadsheets. Even if most of the data in their spreadsheets come from one source (the company-wide database), erroneous copy-pasting and linking, or even different interpretations of the same data can result to contradicting information in the end.

Often defenceless against unauthorised access

Some spreadsheets contain information needed by various individuals or department units in an organisation. Hence, they are often shared via email or through shared folders in a network. Now, because spreadsheets don’t normally use any access control, any user can easily open a spreadsheet file and view or modify the contents as he wishes.

Highly vulnerable to fraud

A complex spreadsheet system with zero or very minimal controls provides the perfect setting for would-be fraudsters. Hidden cells with malicious formulas and links to bogus information can go unnoticed for a long time especially if the final figures don’t deviate much from expected values.

Spreadsheet risk mitigation solutions may not suffice

Inherent complexity makes testing and logic inspection very time consuming

Deep testing can uncover possible errors hidden in spreadsheet cells and consequently mitigate risks. But spreadsheets used to support financial reporting are normally large, complex, highly-personalised and, without ample supporting documentation, understandably hard to follow.

No clear ownership of risk management responsibilities

There?s always a dilemma when an organisation starts assigning risk management responsibilities for spreadsheets. IT personnel believe users in the business side of the organisation should be responsible since they are the ones who create, edit, store, duplicate, and share the spreadsheet files. On the other hand, users believe IT should be responsible since they have always been in-charge of managing IT infrastructure, applications, and files.

To get rid of spreadsheet risks, you’ll have to get rid of spreadsheets altogether

One remedy is to have a risk management activity that involves both IT personnel and spreadsheet users. But wouldn’t you want to get rid of the complexity of having to distribute the responsibilities between the two parties instead of just one?

Learn more about Denizon’s server application solutions and how you can get rid of spreadsheet risk issues.

More Spreadsheet Blogs

Spreadsheet Risks in Banks

Top 10 Disadvantages of Spreadsheets

Disadvantages of Spreadsheets – obstacles to compliance in the Healthcare Industry

How Internal Auditors can win the War against Spreadsheet Fraud

Spreadsheet Reporting – No Room in your company in an age of Business Intelligence

Still looking for a Way to Consolidate Excel Spreadsheets?

Disadvantages of Spreadsheets

Spreadsheet woes – ill equipped for an Agile Business Environment

Spreadsheet Fraud

Spreadsheet Woes – Limited features for easy adoption of a control framework

Spreadsheet woes – Burden in SOX Compliance and other Regulations

Spreadsheet Risk Issues

Server Application Solutions – Don’t let Spreadsheets hold your Business back

Why Spreadsheets can send the pillars of Solvency II crashing down

amazon.co.uk

amazon.com

Contact Us

(+353)(0)1-443-3807 – IRL
(+44)(0)20-7193-9751 – UK

Check our similar posts

Keys to Successful Matrix Management

Matrix management, in itself, is a breakthrough concept. In fact, there are a lot of organizations today that became successful when they implemented this management technique. However, there are also organizations that started it but failed. And eventually abandoned it in the end.

Looking at these scenarios, we can say that when you implement matrix management in your organisation, two things can happen – you either succeed or fail. And there?s nothing in between. The truth is, the effectiveness of matrix management lies in your hands and in your implementation. To ensure that you achieve your desired results, recognise these essential keys to successful matrix management.

Establish Performance Goals and Metrics

This should be done as soon as the team is formed, at the beginning of the year or during the process of setting organisational objectives. Whenever it is, the most important thing is that each team player understands the objectives and metrics to which their performances will be evaluated. This ensures that everyone is looking at the same set of objectives as they carry out their individual tasks.

Define Roles and Responsibilities

One pitfall of matrix management is its internal complexity. Awareness of this limitation teaches you to clearly define the roles and responsibilities of the team players up front. Basically, there are three principal sets of roles that should be explained vividly ? the matrix leader, matrix managers and the matrixed employees. It is important to discuss all the possible details on these roles, as well as their specific responsibilities, to keep track of each other?s participation in the projects of the organisation.

One effective tool to facilitate this discussion is through the RACI chart – Who is Responsible? Who is Accountable? Who should be Consulted? Who will Implement? With this, clarification of roles and responsibilities would be more efficient.

When roles are already clearly defined, each participant should review their job descriptions and key performance metrics. This is to make sure that the roles and responsibilities expected of you integrates consistently with your job in the organisation, as a whole.

Manage Deadlines

In matrix management, the employees report to several managers. They will likely have multiple deadlines to attend to and accomplish. There might even be conflicts from one deadline to another. Hence, each should learn how to schedule and prioritise their tasks. Time management and action programs should be incorporated to keep the grace under pressure.

Deliver Clear Communication

Another pitfall of matrix management is heightened conflict. To avoid unrealistic expectations, the matrix leaders and managers should communicate decisions and information clearly to their subordinates, vice versa. It would help if everyone will find time to meet regularly or send timely reports on progress.

Empower Diversity

Knowledge, working styles, opinions, skills and talents are diverse in a matrix organisation. Knowing this fact, each should understand, appreciate and empower the learning opportunities that this diversity presents. Trust is important. Respect to each other?s opinions is vital. And acknowledgement of differing viewpoints is crucial.

The impetus of matrix management is the same ? mobilise the organisation’s resources and skills to cope with the fast-paced changes in the environment. So, maximise the benefits of matrix management as you consider these essential keys to its successful implementation.

How FieldElite helps Plumbers

While most people think that running a plumbing business is a very easy job, things are a bit different on the ground. The job goes beyond the dropping by a client’s home and fixing a few pipes. In addition to the actual plumbing work, a plumbing business also involves managing quotes, invoicing customers, dispatching field service workers, and accounting, among others. Undertaking all these operations manually is extremely demanding. Besides the tedious work that it is, you’re likely to end up with a ton of errors.

However, you can overcome these challenges by employing technology. The use of field service management software allows you to automate tasks. Consequently, you no longer have to deal with paperwork, delayed responses to customer requests, or double assignment of tasks.

If you’re wondering which field service management software to use, FieldElite is your best bet. FieldElite is feature-rich, and it gives you way more than the simple automation of the daily operations of your plumbing business.

Below are some of the top benefits you’ll reap by using FieldElite to run your plumbing venture.

Convenient Scheduling

Scheduling is an important aspect of the plumbing industry. Just like other field techs, plumbers would require tasks to be dispatched on time, which is only made possible by proper scheduling. With FieldElite, managers can easily schedule single and recurring tasks for the right plumber in a matter of seconds.

On the other hand, plumbers can also view the available jobs and job information in the FieldElite easy to use App that’s available for Android, and confirm scheduled jobs. They can also accept these jobs using their smartphones and respond to service requests instantly.

Apart from getting the scheduled tasks, the FieldElite scheduling and dispatch feature is integrated with GPS functionality so that plumbers can get information on where to go next, and the optimal route to take from their mobile phones.

The scheduling and dispatch feature also gives plumbers the information on the specific tools required for the job to allow them to get the tools in between appointments and schedules.

Central Data Storage

Just like other field service industries, plumbing also involves big data. Handling data manually would mean more errors for your plumbing business, which will only impact negatively on your business. To eliminate such errors, go paperless with FieldElite.

You can view everything from one place with FieldElite?s dashboard feature, including information about your plumbers and the scheduled tasks. On the other hand, your plumbers can access job details and the pending tasks from a central place.

Plumbers can also get service requests from customers on the FieldElite mobile app from wherever they are. All the requests are stored in a central place, making the response to customer requests easier. The end result is satisfied customers, opening doors for return orders.

In case of an update, all plumbers receive notifications at the same time and, where necessary, respond promptly to the requests. They can update the office instantly with job status changes from a central place.

Convenient Reporting

Reporting is part of the tasks that plumbers have to do after completing the assigned job. As a manager, you expect your plumbers to keep you updated on the status of each assignment. Reporting on paper is time-consuming, and that’s why you need the services of FieldElite.

With FieldElite reporting feature, sending over completed job reports is only a few clicks away. Plumbers can generate reports on the mobile app and keep the office staff updated on the status of the job. Using FieldElite, you can capture customer signatures and add attachments to the job status and send them instantly using the mobile app available on Android.

Since they can do instant reporting via the mobile app, the plumbers can proceed to attend to new service requests as soon as they’re done without having to first come back to the office to submit their reports.

Effective Communication

Timely communication is very essential if you’re working with field technicians. Since you’ll not always be with them in the field, it’s always important to establish a proper communication channel to ensure information reaches your plumbers in time. Here, you can get much more with FieldElite, including communication automation to remind customers of appointments.

With FieldElite field service management software, plumbers receive notifications through the mobile app. The notifications can be for anything from new task requests, requests for alterations, emergencies, and more. On the other hand, office-based staff gets to access the reports once the plumber completes their given task.

That means the plumbers in the field and the office-based team gets communication instantly, enabling them to see and manage their workloads. For this reason, plumbers can complete multiple tasks within a short time, thus improving their overall productivity.

Scalability

The biggest question for most entrepreneurs when they want to buy management software is scalability. Businesses grow and incorporate new activities that would also require to be managed from a centralised system. Where that’s not possible, the business would have to move all their information from one system to a more robust one.

With FieldElite, however, you’re safe. It works perfectly well for startups as well as large-sized plumbing businesses. It allows you to focus on the areas that your organisation covers now, but also lets you add new areas as you introduce them into your business. Moreover, FieldElite is also receiving regular updates to that bring it up-to-speed with new technologies and new ways of doing things, meaning that your business will be in a position to take advantage of the latest and more productive features.

From the benefits mentioned above, it’s quite clear that your plumbing industry greatly needs the services of a field service management software. Your plumbers too need easier time working on their assigned tasks, adding to the reasons why you need to integrate FieldElite in your plumbing business.

How Internal Auditors can win The War against Spreadsheet Fraud

To prevent another round of million dollar scandals due to fraudulent manipulations on spreadsheets, regulatory bodies have launched major offensives against these well-loved User Developed Applications (UDAs). Naturally, internal auditors are front and center in carrying out these offensives.

While regulations like the Sarbanes-Oxley Act, Dodd-Frank Act, and Solvency II can only be effective if end users are able to carry out the activities and practices required of them, auditors need to ascertain that they have. Sad to say, when it comes to spreadsheets, that is easier said than done.

Because spreadsheets are loosely distributed by nature, internal auditors always find it hard to: locate them, identify ownership, and trace their relationships with other spreadsheets. Now, we’re still talking about naturally occurring spreadsheets. How much more with files that have been deliberately tampered?

Spreadsheets can be altered in a variety of ways, especially if the purpose is to conceal fraudulent activities. Fraudsters can, for instance:

hide columns or rows,
perform conditional formatting, which changes the appearance of cells depending on certain values
replace cell entries with false values either through direct input or by linking to other spreadsheet sources
apply small, incremental changes in multiple cells or even spreadsheets to avoid detection
design macros and user defined functions to carry out fraudulent manipulations automatically

Recognising the seemingly insurmountable task ahead, the Institute of Internal Auditors released a guide designed specifically for the task of auditing user-developed applications, which of course includes spreadsheets.

But is this really the weapon internal auditors should be wielding in their quest to bring down spreadsheet fraud? Our answer is no. In fact, we believe no such weapon has to be wielded at all?because the only way to get rid of spreadsheet fraud is to eliminate spreadsheets once and for all.

Imagine how easy it would be for internal auditors to conduct their audits if data were kept in a centralised server instead of being scattered throughout the organisation in end-user hard drives.

And that’s not all. Because a server-based solution can be configured to have its own built-in controls, all your data will be under lock and key; unlike spreadsheet-based systems wherein storing a spreadsheet file inside a password-protected workstation does not guarantee equal security for all the other spreadsheets scattered throughout your company.

Learn more about Denizon’s server application solutions and discover a more efficient way for your internal auditors to carry out their jobs.

Spreadsheet Risk Issues

Common spreadsheet risk issues

Spreadsheet risk mitigation solutions may not suffice

To get rid of spreadsheet risks, you’ll have to get rid of spreadsheets altogether

More Spreadsheet Blogs

Contact Us

Check our similar posts

More Spreadsheet Blogs

Ready to work with Denizon?