Internal Control System Software
Processes, risks, controls – an internal control system with seamless transition to process management
A host of legal requirements and regulations motivate companies – capital market-oriented companies in particular – to operate a system for internal control. An internal control system (ICS) becomes an indispensable part of a company’s approach to managing governance, risks, and compliance; its purpose is to avert risks and damages and to safeguard the effectiveness, efficiency and regularity of operational and entrepreneurial transactions. The system continuously monitors internal and external guidelines; it systematically checks and assesses risks and corresponding measures.
An internal control system includes all organizational measures a company needs to take in order to comply with relevant laws, rules, and standards; to protect operational assets; to guarantee both the effectiveness and the efficiency of business processes; to secure an adequate internal environment; and, finally, to foster truthful reporting.
A company’s internal control system has to be lived. An explicit risk culture and maximum transparency in processes and decisions are needed on all corporate levels. Digital solutions contribute significantly to such a culture; they document events, automate processes, provide decision support through detailed analyses; and they make sure that internal processes harmonize with external regulations.
That is precisely what DHC VISION ICS stands for: The software covers the entire internal control process, i.e. from process documentation, risk assessment, the definition of corresponding controls to the test of controls by internal or external auditors. A comprehensive approach covers all organizational levels; risk assessments and controls on the company resp. entity level are supported as are analyses on the level of business processes and IT systems (networks, data bases, software systems etc.). Internal measures correlate with external regulations (COSO, BilMoG etc.) or the company’s own internal standards. Detailed analyses and reports reflect the actual state of the internal control system: Gross/net comparisons, risk levels, weak points and the effectiveness of controls are captured through qualitative and quantitative assessments in a very transparent way. Comprehensive workflow support is available, e.g. for risk assessments, controls, and tests (Test of Design – ToD; Test of Effectiveness – ToE). The software is highly flexible when it comes to system integration and customization; system configuration, IT landscape and ICS design harmonize to a very high extent.