Spreadsheet Woes – Limited Features For Easy Adoption of a Control Framework

Like it or not, regulations are here to stay and for a company to comply with them, its IT and financial systems will have to be equipped with a suitable control framework. One common stumbling block to such an implementation is a company?s over-reliance on spreadsheets.

Why is it so difficult to adopt controls for a system that’s reliant on spreadsheets? To understand this, let’s pinpoint some of the strongest, most powerful attributes of these User Developed Applications (UDA).

By nature, spreadsheets are the epitome of simplicity: easy to develop, easily accessible and easily altered. All computers in your workplace will most likely have them and everyone in your organization may be sharing them, making their own versions, and storing them in personal folders.

Sad to say though, these strengths are also control weaknesses and constitute the very reasons why spreadsheets require effective risk management.

Easy to develop. Being easy to develop, most spreadsheet systems are created by non-IT users who have limited knowledge on best control practices. Being constantly under time pressure, these ?developers? may also relegate documentation, security, and data verification to the back burner in favour of coming up with a timely report.

Easy to access. Information in a spreadsheet can be opened by practically anyone within the organization?s network. Who accessed what? And when? If anything goes wrong, it would be difficult to identify the culprit, and the failure to pinpoint responsibility for erroneous data could lead to bigger, more costly mistakes.

Easy to alter. Lastly, if the information is easy to access, then it can also be easily altered, consequently making reports more prone to both accidental errors and fraudulent modifications.

The rise of multimillion dollar scandals due to accidental and intentional spreadsheet errors have prompted regulatory bodies to publish guidelines for mitigating spreadsheet-associated risks. These controls include:

  • Change control
  • Version control
  • Access control
  • Input
  • Security and data integrity
  • Documentation
  • Development life cycle
  • Backup and archiving
  • Logic inspection/Testing
  • Segregation of duties/roles, and procedures
  • Analytics

In theory, these controls should be able to bring down risks considerably. However, because of the inherent nature of spreadsheets, such controls are rarely implemented effectively in the real world.

Take for example Security and Data Integrity. One of the most common causes of spreadsheet error is due to ?hardwiring?. This happens when values are inadvertently entered into a formula cell, naturally changing the logic of the spreadsheet.

As a way of control, cell locking can be applied on the formula cells to prevent users without the proper authority from making any changes. However, when reporting deadlines approach drawing spreadsheets to the forefront of data processing, more people are given access rights to the locked cells. Ironically, it is during these crunch times, when errors are most likely to happen.

Because the built-in features of a spreadsheet support none of the controls mentioned above, some companies are tempted to purchase control-enabling programs for spreadsheets just to continue using them for financial reporting. But although these programs can integrate the required controls, you?d still be interacting with the same complex and outdated interface: the spreadsheets.

Thus, these band-aid solutions may not suffice because the root cause of these problems are the spreadsheets themselves.

Learn more about our server application solutions and discover a better way to implement controls.

More Spreadsheet Blogs


Spreadsheet Risks in Banks


Top 10 Disadvantages of Spreadsheets


Disadvantages of Spreadsheets – obstacles to compliance in the Healthcare Industry


How Internal Auditors can win the War against Spreadsheet Fraud


Spreadsheet Reporting – No Room in your company in an age of Business Intelligence


Still looking for a Way to Consolidate Excel Spreadsheets?


Disadvantages of Spreadsheets


Spreadsheet woes – ill equipped for an Agile Business Environment


Spreadsheet Fraud


Spreadsheet Woes – Limited features for easy adoption of a control framework


Spreadsheet woes – Burden in SOX Compliance and other Regulations


Spreadsheet Risk Issues


Server Application Solutions – Don’t let Spreadsheets hold your Business back


Why Spreadsheets can send the pillars of Solvency II crashing down

Advert-Book-UK

amazon.co.uk

Advert-Book-USA

amazon.com

Check our similar posts

Mobile Security

Today’s advanced enterprises make extensive use of mobile devices in order for team members to exchange information, collaborate, and carry out business whenever and wherever they need to. BlackBerries, iPhones, Google Phones, and other smartphones as well as PocketPCs and PDAs are now allowed wireless remote access to the enterprise network.

As a result, they introduce additional vulnerabilities into the system.

  • Bluetooth exploits and unencrypted passwords can allow malicious individuals to gain access to private information.
  • Various wireless technologies that have substantially simplified the task of transferring data have provided openings for malicious code. In addition, the diversity of these wireless technologies combined with the constrained environments of these devices have made it difficult to come up with an all-in-one solution.
  • All PocketPCs, PDAs and smartphones can be synchronised with PCs and laptops, giving malware an entry point into computers and networks. Memory cards are guilty of this too.
  • VoIP, which are usually unencrypted, allow other people to perform unauthorised capture and recording of private conversations.

Mobile security is still an emerging discipline. Because of this, many organisations that allow members’ mobile phone access into the network don’t actually have a specific security policy for such devices.

That’s why we’re here to help. We’ll conduct a thorough evaluation of your security policies and systems in relation to mobile devices and seal gaps we spot along the way. If you don’t have the needed policies or if what you have needs an overhaul, we’ll set everything up (including the needed applications and infrastructure) for you.

Once we’ve got everything in place, you won’t have to worry about the vulnerabilities mentioned earlier. In addition to that, your organisation will already be capable of preventing the following:

  • Access to company information when the phone ends up in the hands of anyone other than the authorised user.
  • Being billed for phone usage due to virus activity
  • Unauthorised phone activity monitoring through spyware
  • Other disruptions caused by mobile-based malware

Other defences we’re capable of putting up include:

How FieldElite helps Plumbers

While most people think that running a plumbing business is a very easy job, things are a bit different on the ground. The job goes beyond the dropping by a client’s home and fixing a few pipes. In addition to the actual plumbing work, a plumbing business also involves managing quotes, invoicing customers, dispatching field service workers, and accounting, among others. Undertaking all these operations manually is extremely demanding. Besides the tedious work that it is, you’re likely to end up with a ton of errors. 

However, you can overcome these challenges by employing technology. The use of field service management software allows you to automate tasks. Consequently, you no longer have to deal with paperwork, delayed responses to customer requests, or double assignment of tasks.

If you’re wondering which field service management software to use, FieldElite is your best bet. FieldElite is feature-rich, and it gives you way more than the simple automation of the daily operations of your plumbing business.  

Below are some of the top benefits you’ll reap by using FieldElite to run your plumbing venture.  

Convenient Scheduling

Scheduling is an important aspect of the plumbing industry. Just like other field techs, plumbers would require tasks to be dispatched on time, which is only made possible by proper scheduling. With FieldElite, managers can easily schedule single and recurring tasks for the right plumber in a matter of seconds. 

On the other hand, plumbers can also view the available jobs and job information in the FieldElite easy to use App that’s available for Android, and confirm scheduled jobs. They can also accept these jobs using their smartphones and respond to service requests instantly.

Apart from getting the scheduled tasks, the FieldElite scheduling and dispatch feature is integrated with GPS functionality so that plumbers can get information on where to go next, and the optimal route to take from their mobile phones. 

The scheduling and dispatch feature also gives plumbers the information on the specific tools required for the job to allow them to get the tools in between appointments and schedules. 

Central Data Storage

Just like other field service industries, plumbing also involves big data. Handling data manually would mean more errors for your plumbing business, which will only impact negatively on your business. To eliminate such errors, go paperless with FieldElite. 

You can view everything from one place with FieldElite?s dashboard feature, including information about your plumbers and the scheduled tasks. On the other hand, your plumbers can access job details and the pending tasks from a central place. 

Plumbers can also get service requests from customers on the FieldElite mobile app from wherever they are. All the requests are stored in a central place, making the response to customer requests easier. The end result is satisfied customers, opening doors for return orders. 

In case of an update, all plumbers receive notifications at the same time and, where necessary, respond promptly to the requests. They can update the office instantly with job status changes from a central place. 

Convenient Reporting

Reporting is part of the tasks that plumbers have to do after completing the assigned job. As a manager, you expect your plumbers to keep you updated on the status of each assignment. Reporting on paper is time-consuming, and that’s why you need the services of FieldElite. 

With FieldElite reporting feature, sending over completed job reports is only a few clicks away. Plumbers can generate reports on the mobile app and keep the office staff updated on the status of the job. Using FieldElite, you can capture customer signatures and add attachments to the job status and send them instantly using the mobile app available on Android. 

Since they can do instant reporting via the mobile app, the plumbers can proceed to attend to new service requests as soon as they’re done without having to first come back to the office to submit their reports. 

Effective Communication

Timely communication is very essential if you’re working with field technicians. Since you’ll not always be with them in the field, it’s always important to establish a proper communication channel to ensure information reaches your plumbers in time. Here, you can get much more with FieldElite, including communication automation to remind customers of appointments.

With FieldElite field service management software, plumbers receive notifications through the mobile app. The notifications can be for anything from new task requests, requests for alterations, emergencies, and more. On the other hand, office-based staff gets to access the reports once the plumber completes their given task. 

That means the plumbers in the field and the office-based team gets communication instantly, enabling them to see and manage their workloads. For this reason, plumbers can complete multiple tasks within a short time, thus improving their overall productivity.

Scalability

The biggest question for most entrepreneurs when they want to buy management software is scalability. Businesses grow and incorporate new activities that would also require to be managed from a centralised system. Where that’s not possible, the business would have to move all their information from one system to a more robust one. 

With FieldElite, however, you’re safe. It works perfectly well for startups as well as large-sized plumbing businesses. It allows you to focus on the areas that your organisation covers now, but also lets you add new areas as you introduce them into your business. Moreover, FieldElite is also receiving regular updates to that bring it up-to-speed with new technologies and new ways of doing things, meaning that your business will be in a position to take advantage of the latest and more productive features. 

From the benefits mentioned above, it’s quite clear that your plumbing industry greatly needs the services of a field service management software. Your plumbers too need easier time working on their assigned tasks, adding to the reasons why you need to integrate FieldElite in your plumbing business.

2015 ESOS Guidelines Chapter 6 – Role of Lead Assessor

The primary role of the lead assessor is to make sure the enterprise?s assessment meets ESOS requirements. Their contribution is mandatory, with the only exception being where 100% of energy consumption received attention in an ISO 50001 that forms the basis of the ESOS report.

How to Find a Lead Assessor

An enterprise subject to ESOS must negotiate with a lead assessor with the necessary specialisms from one of the panels approved by the UK government. This can be a person within the organisation or an third party. If independent, then only one director of the enterprise need countersign the assessment report. If an employee, then two signatures are necessary. Before reaching a decision, consider

  • Whether the person has auditing experience in the sector
  • Whether they are familiar with the technology and the processes
  • Whether they have experience of auditing against a standard

The choice rests on the enterprise itself. The lead assessor performs the appointed role.

The Lead Assessor?s Role

The Lead Assessor?s main job is reviewing an ESOS assessment prepared by others against the standard, and deciding whether it meets the requirements. They may also contribute towards it. Typically their role includes:

  • Checking the calculation for total energy consumption across the entire enterprise
  • Reviewing the process whereby the 90% areas of significant consumption were identified
  • Confirming that certifications are in place for all alternate routes to compliance chosen
  • Checking that the audit reports meet the minimum criteria laid down by the ESOS system

Note: A lead assessor may partly prepare the assessment themselves, or simply verify that others did it correctly.

In the former instance a lead assessor might

  • Determine energy use profiles
  • Identify savings opportunities
  • Calculate savings measures
  • Present audit findings
  • Determine future methodology
  • Define sampling methods
  • Develop audit timetables
  • Establish site visit programs
  • Assemble ESOS information pack

Core Enterprise Responsibilities

The enterprise cannot absolve itself from responsibility for good governance. Accordingly, it remains liable for

  • Ensuring compliance with ESOS requirements
  • Selecting and appointing the lead assessor
  • Drawing attention to previous audit work
  • Agreeing with what the lead assessor does
  • Requesting directors to sign the assessment

The Environment Agency does not provide assessment templates as it believes this reduces the administrative burden on the enterprises it serves.

Ready to work with Denizon?

Contact Us Today