Global Finance Standardization (GFS) Training

Record to Report (R2R)

User Access/Segregation of Duties (SOD)

IT General Controls/Interfaces

General

100

What is the typical range of frequency of the GL Master File Edit Report review?

Daily through Quarterly

100

Who ultimately grants access (creates a profile) for a user on any critical ERP used amongst the 5 SSC's?

ITGF / COE

100

Can the following Key Controls be automated or manual: Completeness, Accuracy, Validity, Error Handling, and Restricted Access

Both. Automated and Manual

100

Name one audit cycle area with the GFS function of Record to Report (R2R).

Financial Reporting, Intercompany, Fixed Assets etc.

200

When is the criticality of acccount reconciliations defined?

At GL Account set-up phase and reviewed every January

200

True or False: A cross system review does not have to be performed for all SOX critical systems.

False. A cross system review must be performed for ALL SOX critical systems.

200

Name one IT Affiliate that a Shared Service Center can receive I/T Services from.

COE, I/T SS, and or Business Unit I/T (BUIT)

200

What is one future initiative of GFS?

Standardization, COEs, automated work flows

300

Is supporting documentation required to be accompanied as part of the GL Master File Edit Report detective control?

No. The need to pull supporting documentation is discretionary.

300

Typically, are ERP systems owned by the Shared Service Center, the local affiliate, or the IT Center of Excellence?

IT Center of Excellence

300

True or False: A Shared Service Center must maintain a listing of ALL interfaces that are in scope for their Service Level Agreement (SLA).

True

300

What is one reason why the GFS concept was developed?

Cost savings, standardization, allows Companies to focus on business rather than transactions, allows GFS to analyze across businesses, etc.

400

How many control ownership streams are present for JE’s ?

3 ownership streams

400

Is the following a reflection of an Indirect or Direct approach: GFS-->MRC-->IT COE

Indirect

400

Where should the responsibility to detect and resolve interface errors be stated?

Hand-off Agreement

400

Which Shared Service Center currently provides support to Medical affiliates only?

GFS EMEA (Note: Ap2ple services cross-sector)

500

Name 5 critical control topics within R2R

JE’s, BRAVO submissions, GL MF’s, Account Reconciliations, and BVA controls

500

What is the most common application not included in a SSC's Cross System Review?

BRAVO

500

Which of the following are NOT amongst the stated WICO policies: Copyright Notice, FCPA, Privacy Statement, Legal Notice, and Annual Review.

FCPA

500

How should audit teams determine which MRCs to sample from when auditing a SSC?

Testing at the SSC will only include affiliates which are included in the overall audit plan for the year.