Implement effective strategies for corporate fraud management with ISO 37003


ISO 37003, titled "Fraud Management in Organizations," is a crucial guide that enables the establishment, implementation, maintenance, and optimization of an anti-bribery management system, both in internal processes and where third parties are involved.

This guide serves as an excellent action framework for organizations of any size, geographic location, and activity, as it includes policies, procedures, and both financial and non-financial controls for any organization committed to ethics to implement. Below is a brief summary of the main points covered by the Standard:

  1. Introduction and Scope:
    • Establishes the scope of the standard and the purpose of having a framework for fraud management.
    • Highlights the importance of fraud prevention, detection, and response within an organization.
  2. Terms and Definitions:
    • Contains a section with key terms and definitions related to fraud management to ensure that all members of the organization have a clear understanding, leading to a common comprehension of the different types of fraud and how to address it.
  3. Context of the Organization:
    • Proposes developing an analysis of the external and internal context, which can determine the organization's capacity to manage fraud.
    • Identification of stakeholders and their expectations regarding fraud management.
  4. Leadership and Commitment:
    • Details the role of top management in leading and committing to fraud prevention, deterrence, and detection.
    • Emphasizes the need for an anti-fraud policy and the assignment of responsibilities starting from top management down to other members of the organization.
  5. Planning:
    • Presents guidelines for fraud risk assessment and the implementation of effective controls.
    • Emphasizes the objectives of fraud management and the appropriate planning to achieve them.
  6. Support:
    • Lists multiple recommendations on the necessary resources, staff competence, awareness, and training on fraud-related topics needed in organizations.
    • Highlights the importance of internal and external communication, as well as the effectiveness of proper documentation.
  7. Operation:
    • Provides guidelines on how to operate and control fraud management measures in organizations.
    • Delivers procedures for the prevention, detection, and investigation of fraud incidents.
  8. Performance Evaluation:
    • Describes methods for monitoring, measuring, analyzing, and evaluating the performance of the fraud management system.
    • Emphasizes the importance of regular internal audits and management reviews, demonstrating a commitment to best practices and ethical management.
  9. Improvement:
    • Provides guidelines to follow for the continuous improvement of the fraud management system.
    • Describes how to manage non-conformities and corrective actions.

As mentioned, implementing ISO 37003 in organizations not only provides a structured and systematic approach to effective fraud management but is also an unequivocal sign of the organization's commitment to minimizing fraudulent behaviors, resulting in increased trust and credibility while complying with international legal standards.

Author: Guillermo Casal
International consultant and trainer in fraud prevention and investigation and anti-money laundering. He is a Certified Public Accountant, holds a Master's degree in Economics and Administration, and has six international certifications, including the CFE (Certified Fraud Examiner), CIA (Certified Internal Auditor), and CISA (Certified Information Systems Auditor).

Guillermo Casal
LinkedIn

Guillermo Casal   argentina

A professional with 40 years of experience in the fields of forensic and internal auditing. He graduated as a Certified Public Accountant (UBA - Argentina) and holds a Master's in Economics and Administration (ESEADE - Argentina). He possesses certifications including CFE (Certified Fraud Examiner), Certified Internal Auditor (CIA), and Certified Information Systems Auditor (CISA).

He established the forensic auditing practices at IFPC - IGI, a firm founded and chaired by Stephen P. Walker, a former special agent of the FBI, and at the Law Firm of Dr. Luis Moreno Ocampo, former prosecutor of the International Criminal Court in The Hague.

He has led three Internal Audit units in large companies in Argentina and served as the Executive Director of FLAI, the Latin American Federation of Internal Auditors.

He presided over the Institute of Internal Auditors of Argentina. He has acted as a consultant, fraud investigator, and speaker in various countries in Latin America, the United States, Spain, and Mozambique.

Regulatory compliance with SHOGUN ethical line

European Whistleblower Protection Directive

ISO 37301: Compliance Management System

ISO 37001: Anti-bribery management system

ISO 37002: Whistleblower Channel System

EU General Data Protection Regulation

Corporate Anti-Fraud program

COSO: Committee of Sponsoring Organizations of the Tradeway Commission

 

Request a demo

Learn how SHOGUN can positively impact your organization