Finding Text
Finding 2024-001: Criteria: Formal segregation of duties is a form of risk management that requires record keeping, custody of assets, and authorization for the use of assets be fully segregated functions. Condition and Context: During the audit, we observed that the Executive Director has both signature authority and direct access to financial recording. Cause: The Executive Director has authorization for the use of assets and access to the financial records. Effect: The lack of segregation of duties increases the risk to the Village. Recommendation: We recommend implementing appropriate segregation of duties associated with control of cash assets in the accounting system, which could include implementation of an electronic payables system or positive pay system. Responsible Official’s Response: Subsequent to year-end, Management hired a Controller which has allowed the Village to modify its internal control practices to ensure proper segregation of duties. This allows the Village to modify access to the financial accounting system to be limited to the Business Manager and the Controller and restricting the Executive Director’s access to “view only.” Additionally, management will evaluate the implementation of an electronic payables system and a positive pay system with its banks to enhance segregation of duties. Planned Implementation Date of Corrective Action: Management has implemented this change subsequent to year-end. Person Responsible for Corrective Action: Executive Director with advice from the Board of Directors.