RISK AND COMPLIANCE SURVEY
リスクとコンプライアンス調査
PERCEPTIONS OF JAPANESE COMPANIES IN
BANGALORE
在バンガロール日系多国籍企業における意識調査
RISK
MANAGEMENT
FRAUD
CONTROL
TM
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
2 @ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
Introduction
Executive Summary
Risk Management
Fraud Control
Code and Whistle blowing mechanism
Prevention of Harassment
Business with Third Parties
CONTENTS
3
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
INTRODUCTION
With the modulating economic scenario and the looming regulatory drive,
businesses across are attempting to identify opportunities to control cost,increasing efficiency and prevent losses. These attempts aid in creating orenhancing value of the businesses.
Risk Management and Fraud Control become imperative in these circumstancesto contribute to such value enhancements. While Japanese MNC’s have been inIndia for considerable period of time, the risks associated with doing businessin India are continuously changing. With such varying risks, a structuredapproach in handling risks and compliances is essential.
In an attempt to gather the perspectives and perceptions of the executives inJapanese MNC’s in Bangalore, we conducted a survey covering RiskManagement, Fraud Control, Whistle Blowing and Code of Conduct, Preventionof Harassment and Handling risks relating to Third Parties.
Hope you enjoy reading the survey.
4
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
経済シナリオの変調や、迫り来る規制の施行に伴い、企業はコストを抑えたり、効率を高
め、ロスを防ぐための機会を見極めようとしています。これらの試みは、企業価値の創造
や向上に役立ちます。
そのような状況の中で、企業価値の創造や向上に必要不可欠なものがリスクマネジメント
であり、不正防止なのです。日本の多国籍企業がかなりの期間、インド進出している一方、
インドでのビジネスを行う事に関連したリスクは、連続的に変化しています。そのような
様々なリスクには、リスクやコンプライアンスの取り扱いに関する体系的な取り組みが不
可欠です。
当社では、在バンガロールの日系多国籍企業の幹部を対象に、リスクマネジメント、不正
防止、内部通報、行動規範、ハラスメント防止、第三者に関するリスクの取り方について
の意識調査を実施しました。
次頁からの調査結果をご覧下さい。
5
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
EXECUTIVE SUMMARY
With the change in political environment, there is a lot of hopes on better
governance and bright opportunities for Japanese Companies in India. With theopportunities setting in, the risk associated with the opportunities also emerge.Our Risk Management and Fraud Control survey reflects multiple perspectivesassociated with handling of such risks and compliances. Key trends andperceptions along with their associated view points are summarized below:1. Internal Audit: Internal audit is considered as one of the prominent
approaches for managing risk. More than half of the respondentorganizations had in-house internal audit teams/ head office audit teams.65% of respondents stated that audits were conducted once in a year. Over50% of them opined that coverage of significant business processes andlack of major deviations from audits as elements that establishes thatinternal audit is commensurate to the size of business. We believe thatincreased frequency of management reviews/ audits can provide greatervalues in nature of efficiency / controls to business.
2. Companies Act compliance: Over 40% of respondents stated that theyunderstood about compliance to Companies Act 2013 and about 40%referred that they do risk assessment of all the processes. With the InternalFinancial Control provisions of Companies Act, expecting risk assessmentand control evaluation of all functions, these organizations would be muchprepared for such compliance requirement.
3. Board reporting of risk management: 35% of the respondents stated thatthey report to the board on risk management practices only on annualbasis. With the increasing governance requirements and need fortransparency, we believe board reporting should be more frequent.
4. Fraud Risks: Respondents felt that bribery and confidential informationleakage were key fraud risks faced by Japanese Companies in India. Inaddition to these fraud risks, we believe conflict of interest issues to bemore prominent amongst all risks. Lack of adequate monitoring mechanismwas identified as key root cause for such frauds.
5. Investigations: Organizations do not appear to use adequate digital forensicprocedures for gathering evidences in investigations. We believe with theincreasing trend of use of digital technology, use of digital forensictechniques would be imperative.
6. Creating whistle blowing awareness: 50% of respondents rely on trainingsfor creating awareness. In our experience we have seen whistle blowerssurvey (to understand awareness) to be equally effective.
7. Prevention of Workplace Harassment: Respondents’ awareness ofcompliance requirement of the Prevention of Sexual Harassment atWorkplace appears to be limited, as many of them stated that investigationcommittee was headed by men than women as required by the act.
6
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
インドにおける政局の変化に伴い、日系企業にとってより有利なガバナンスや有望な契機
が多く見出されています。そのような好機には、また同時に、リスクも伴います。当社の
リスクマネジメントや不正防止に関する調査では、そのようなリスク及びコンプライアン
スの取り扱いに関連した複数の視点が浮かび上がっています。
それらに関連する視点と共に、主な傾向や見解を以下にまとめます。
1.内部監査;内部監査は、リスク管理のための優れたアプローチの一つとして考えられて
います。回答者の半数以上の企業は、社内の内部監査チームまたは本社監査チームを持っ
ていました。回答者の65%は、監査が年に一回実施されたと述べています。その内の50%以上は、内部監査がビジネスサイズに釣り合っていることを証明する要素として、重要なビジネスプロセスをカバーしている事と監査から大幅な逸脱が無いと述べています。
2.会社法のコンプライアンス;回答者の40%以上の企業が、インド新会社法2013のコンプライアンスについて理解していると述べ、約40%がすべてのプロセスのリスク評価を
行うと言及しました。これらの企業は、会社法の財務上の内部統制規定に伴い、すべての
機能のリスク評価ならびに統制評価を見越して、多くのコンプライアンス要件の準備をす
るでしょう。
3.リスクマネジメントについて取締役会報告;回答者の35%が年次ベースでリスクマネ
ジメント実務について取締役会に報告すると述べました。ガバナンス要件の増加や透明性
の必要性に伴い、当社は取締役会への報告がより頻繁に行われるべきであると考えます。
4.不正リスク;回答者は、インドにおける日本企業が直面する主要な不正リスクとして、
贈収賄や機密情報の漏洩を挙げています。これらの不正リスクに加え、利益相反がすべて
のリスクの中で突出した問題だと当社では考えています。そのような不正の主たる根本的
な原因は、十分なモニタリングメカニズムの欠如だと考えられます。
5.調査;企業は、調査における証拠を収集するために十分なデジタルフォレンジックの手
順を使用していないようです。デジタルテクノロジーを使用する傾向の増加に伴い、当社
ではデジタルフォレンジック技術の使用が不可欠であると考えています。
6.内部通報の意識付け;回答者の50%が内部通報制度を定着させるためにトレーニング
を行っていると答えました。しかし、当社が今まで扱ってきた事例から、内部通報に関す
る意識調査もまた、トレーニングと同等の効果が得られる事が分かっています。
7.職場でのハラスメントの防止;職場でのセクシュアルハラスメント防止に対するコンプ
ライアンスについて、限定的な実状であることが分かりました。会社法では女性を筆頭と
した調査委員会の設立を求めている一方で、男性主導で実施している企業が多いようです。
7
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
Companies Act 2013
44% Understand requirement | 会社法要綱を理解している 59%
In compliance with ICFR requirement
| 財務報告に係る内部統制要綱に伴うコンプライアンスを理解している35%
Require compliance under J-SOX
| J-SOX法に基づいたコンプライアンスを義務付けているBoard reporting
68%Board has oversight on risk management| 取締役会がリスクマネジメントを管理している 29%
Quarterly reporting to board on risk management
| リスクマネジメントに関する四半期報告を取締役会に提出しているInternal audit adequate because
29%Key process covered
in Internal audit| 内部監査の主要なプロセスがカバーされている 24%
No major concern in Head Office reviews
| 本社による監査で目立った懸案事項は指摘されていない
RISK MANAGEMENT
Risk Assessment (Internal audit) covers
All business processes| ビジネスプロセス全体をカバーしている
Compliance with Companies Act 2013
Were compliant | 5段階評価中のコンプライアンスに準拠している
8
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
30%Managing
Director, CEO or President
| 常務取締役最高経営責任者社長
Companies Act compliance handled by
29%Legal and
Compliance | 法務・コンプライアンス 18%
CFO or Finance controller
| 財務担当責任者財務管理者Risk Management Policy
56%Had Risk management policy
| リスクマネジメントポリシーがある
41%All business processesビジネスプロセス全体をカバーしている
Internal Audit
61%Had in-house function
| 社内で内部監査を実施している 65%Once in a year
frequency of internal audit
| 1年に一度内部監査を実施しているRisk Assessment (Internal audit) covers
Compliance with Companies Act 2013
59%upto 4 or more out of 54または5という高水準でコンプライアンスに準拠している
9
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
35%Inadequate monitoring
mechanism | 監視システムの不備
35%Bribery and
corruption | 贈収賄
24%Leakage of confidential
information | 機密情報の漏えい
KEY ROOT CAUSE
KEY FRAUD RISK
KEY FRAUD RISK
FUNCTIONS VULNERABLE TO FRAUDS
| 不正に遭いやすい部署FRAUD CONTROL
50%Supply chain
| サプライ・チェーン26%
Sales and Marketing | 営業・マーケティング(先行販売や特注生産を含む)
24%Accounts and Finance
| 経理・財務24%
Other Key services | キーサービス(総務、人事、情報システム)
OPPORTUNITY TO COMMIT FRAUDS LIES WITH
| 不正
10
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
OPPORTUNITY TO COMMIT FRAUDS LIES WITHを犯す機会を得やすい立場
32%Line managers
| ラインマネージャー32%
Non managerial employees
| 役職者以外の従業員29%
Vendors, distributors/ dealers | 外部業者、卸売業者販売業者
38%Tone at the Top| トップの姿勢
35%Internal control
mechanism| 内部統制メカニズム
32%Whistle blower
mechanism| 内部通報メカニズム
47%Investigation by internal/ external
agency| 内部・外部機関による調査
MEASURES TO COMBAT FRAUD
| 不正を防止する対策 INVESTIGATION AND EVIDENCE GATHERING
| 調査ならびに証拠集め42%
Were able to gather only upto half of the evidence| 必要な法廷証拠を集める事が出来たケースが最大でも半数以下の企業割合
>40%Were able to gather
transactional/ documentary evidence| 業務取引または証拠書類から集めた
33%Were able to gather
communications (including emails) as
evidence| Eメールを含むコミュニケーション手段から集めた
11
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
CODE OF CONDUCT AND WHISTLE BLOWING
59%Code mandates annual
declaration| 行動規範が毎年の公表を義務化している
56%Are aware of whistle blowing
requirement as per Companies Act
| 会社法での内部通報制度の設置義務について知っている62%
Have whistle blowing mechanism
| 内部通報メカニズムがある12
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
71%Have structured code
of conduct| 行動規範ポリシーがある
62%Have whistle blowing
policy| 内部通報ポリシーがある
Whistle blowing awareness created through
Key elements of whistle blower policy are
50%Through trainings to
employees/ third party| 従業員または第三者(仕事関係者)へのトレーニング 12%
Through Employee/ third party surveys
| 従業員または第三者(仕事関係者)への調査
50%Management 'zero' tolerance approach
| 管理側の断固とした措置 41%Reporting channel | 内部通報の通報手段 44%
Anonymity and confidentiality
| 匿名性と機密性 41%Anti-
retaliation | 通報者の保護
Code and whistle blowing are applicable to
29%Employees, contractors
and third parties| 従業員、請負業者仕事関係者 56%
Employees| 従業員 12%
Third parties| 第三者(仕事関係)
13
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
HARASSMENT AT WORKPLACE
56%Interviews | インタビュー
6%CCTV images | 防犯カメラ画像
HARASSMENT
EVIDENCE
COMMITTEE
12%Digital evidence | デジタル証拠
6%Female as chairman in respondent companies
| ハラスメント防止委員会の女性委員長59%
Respondent companies have HR to handle
concerns | 人事部による対処 >80%Respondent companies did not have external
representative| 外部有識者の不在
74%Receive less than 10
concerns a year| 懸案事項は年に10件以下62%
Has a policy to prevent harassment
| ハラスメント防止ポリシーがあるCONCERN
14
Thought Leadership @ TRUSTUS Institute, 2015
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
BUSINESS WITH THIRD PARTIES
JOINT VENTURE| 合弁事業CO-BRANDING
| ブランド提携BUSINESS PARTNER
| ビジネスパートナーDEALER OR
DISTRIBUTOR| 販売業者や卸売業者VENDOR OR
SUPPLIER| 専門業者や供給業者
CONTRACTOR | 請負業者
50%Conduct Due diligence at the
time of onboarding| 新人研修時のデューディリジェンスの実施
>40%Consider Conduct and
Financials as key parameters for due
diligence| デューディリジェンスのための主要パラメータとして事業活動や財政の安定を考える
Bribery (32%) & Leakage of
confidential info (50%) are key risks
| 贈賄と情報漏えいを主なリスクと考えている38%
Expect third parties to comply with code
| 第三者(仕事関係者)が企業規則に従うと期待している35% Have right to audit clause
| 監査権条項がある21%
have conducted third party audits
| 第三者(仕事関係者)に監査を実施している
15
@ TRUSTUS Institute, 2015 Thought Leadership
Risk Management and Fraud Control Survey – Perceptions of Japanese Executives
RISK
MANAGEMENT
FRAUD
CONTROL
TM
Contacts
Corporate Office
S813, South Block, Manipal
Center, 47, Dickensen Road,
Bangalore – 560042
About this publicationTRUSTUS conducted a survey on Risk and Compliance, in an attempt to gather perceptions of Japanese
companies in Bangalore during December 2014 to January 2015. TRUSTUS received 33 responses from
Japanese companies in Bangalore. This document represents the outcomes of the survey.
This publication is from TRUSTUS Institute, a center for research and thought leadership on ethics and
compliance. TRUSTUS Institute is a unit of TRUSTUS Solutions, a professional services firm providing valued
and lasting services to clients with risk management and fraud control services.
This publication is prepared by TRUSTUS Solutions to provide the reader a generic overview of the market
scenarios and current updates regarding risk management and fraud control. All information contained herein are
sourced from survey responses of the representatives from Japanese companies in Bangalore, and TRUSTUS
Solutions makes no warranties or representations regarding the accuracy, correctness or reliability of the
information contained herein. The information, events and analysis contained herein are of generic nature only
and are not intended to be construed as advice of any manner against any event or circumstances.
TRUSTUS Solutions neither assumes nor accepts any responsibility for any loss arising to any person or entity
acting or refraining from acting as a result of any material contained in this publication. This publication is not
intended to transfer or license any rights including intellectual property rights upon the reader. This publication is
not intended to substitute or by-pass or to overrule any laws currently prevailing in India which the reader is
bound to observe and abide by law.
App to spread knowledge on
fraud investigation and risk
“Forensic Dimensions blog”
to share key perspectives.
Follow us on twitter
@TRUSTUSForensic
Copyright @ 2015, TRUSTUS Institute
Images credit: Flickr
Creative Commons
Icons credit: Flat Icon
Branch Office
Level IV, Prabhavee Tech Park,
125, Baner Road,
Baner, Pune - 411045
7
6
7
4
2
11
6
Manufacturing Automotive Trading
Logistics Heavy machinery Infrastructure
Information technology Others
b. Respondents profilea. Respondent industry
5
13
2
5
9
Director CEO, CFO, MD, President
VP, Deputy Managing Director General Manager
Others
Recommended