Story image

Three ways organisations can prevent fraud and enforce policy compliance

07 May 18

Business insiders are the most common perpetrators of business fraud, making up 36% of all fraud attributed to business management, a 2017 survey from KPMG says.

But how can Australian organisations safeguard against the threat of inside jobs? SAP Concur says it requires proper controls to catch fraud before it happens.

As employees spend more money across different categories and use more payment methods, this leaves organisations vulnerable to fraud and compliance risks – unless they look at solutions that keep pace with employee spending.

SAP Concur’s managing director for Australia and New Zealand, Matt Goss, explains:

“Many organisations think their policies and processes are good enough because they either haven’t had a major issue to rectify, or trust their employees to be honest about their spending. However, there are many things to consider including visibility, security, and compliance. Businesses need the right tools, policies, and procedures in place to bring risks under control.”

The company says there are three ways organisations can prevent fraud and enforce policy compliance.

1. Update policies 
When spending is less structured and centralised, businesses experience gaps in spend data and lose oversight. This is why policies need to be current, have realistic boundaries, and be clearly understood by all employees.

It’s also important to adjust policies to meet spending patterns or needs that may have changed. For example, an increased reliance on mobile devices may result in higher phone bills. Employees should be informed about appropriate expenditures, and procedures if a policy is violated. 

2. Plug any leaks 
Organisations should take some time to review receipts to see if expense reports are matching up. The best way to get a tighter control on expense management is to introduce a corporate card.

This lets businesses monitor employee spending behaviours, eliminate costly mistakes, audit expenses efficiently, and improve compliance. 

3. Automate routine tasks 
Comprehensive, easy-to-understand policy is as important as technology. Manual data entry can account for many issues, including typos, counting receipts twice, or calculation mistakes, which can be mistaken for fraud.

An automated solution that integrates travel, expense, and invoice data creates a centralised information source that brings risks under control. It also gives finance leaders greater visibility into spend. 

 “Adopting a zero-tolerance policy and shining a light on fraudulent behaviour are the most effective ways organisations can deter further fraud,” Goss says.

“Organisations should ensure their processes follow industry best-practices, resulting in time and money savings, and an overall improved experience for employees.” 

ForeScout acquires OT security company SecurityMatters for US$113mil
Recent cyberattacks, such as WannaCry, NotPetya and Triton, demonstrated how vulnerable OT networks can result in significant business disruption and financial loss.
Ransomware infection? Here’s how you control the damage
Ransomware has evolved to be more sophisticated and targeted, and remains a threat to businesses of all sizes.
Exclusive: Fileless malware driving uptake of behavioural analytics
Fileless malware often finds its way into organisations via web browsers (or in combination with other vectors such as infected USB drives).
'DerpTrolling’ faces jail time for Sony DoS attacks
A United States federal court has charged a 23-year-old man for the hacks on Sony Online Entertainment and other major companies back in 2014.
It's time to rethink your back-up and recovery strategy
"It is becoming apparent that legacy approaches to backup and recovery may no longer be sufficient for most organisations."
Dropbox strengthens security with raft of new partnerships
Integrations will keep customer content protected and secure with tools for controlling identity access, governing data, and managing devices.
Companies swamped by critical vulnerabilities – Tenable
Research has found enterprises identify 870 unique vulnerabilities on internal systems every day, on average, with over 100 of them being critical.
Don’t let your network outgrow your IT team
"IT professionals spend less than half of their time at work optimising their networks and beefing it up against future security threats."