A silver lining: Sarbanes-Oxley compliance may reveal hidden dividends for insurers.Passage of the Sarbanes-Oxley Act See SOX. of 2002 has generated an almost unprecedented level of activity within the insurance industry related to corporate governance Corporate Governance The relationship between all the stakeholders in a company. This includes the shareholders, directors, and management of a company, as defined by the corporate charter, bylaws, formal policy, and rule of law. , financial reporting and regulatory compliance, along with a new search for best practices. But despite the burden of compliance, the new mandate may yield hidden dividends for many insurers. With daily calls for data transparency (1) The ability to easily access and work with data no matter where they are located or what application created them. (2) The assurance that data being reported are accurate and are coming from the official source. in the investment world, insurance companies, as some of the largest institutional investors Institutional Investor A non-bank person or organization that trades securities in large enough share quantities or dollar amounts that they qualify for preferential treatment and lower commissions. , are winners when more credible information on financial performance is available. Insurance companies that underwrite To insure; to sell an issue of stocks and bonds or to guarantee the purchase of unsold stocks and bonds after a public issue. The word underwrite has two meanings. directors and officers, professional liability, and errors and omission coverages also have the opportunity to gain better underwriting Underwriting 1. The process by which investment bankers raise investment capital from investors on behalf of corporations and governments that are issuing securities (both equity and debt). 2. The process of issuing insurance policies. and risk assessment information and also may require their insureds to adopt the key safeguards of Sarbanes-Oxley. This law impacts the merger and acquisition activities and the materiality MATERIALITY. That which is important; that which is not merely of form but of substance. 2. When a bill for discovery has been filed, for example, the defendant must answer every material fact which is charged in the bill, and the test in these cases seems to of due diligence Research; analysis; your homework. This term has caught on in all industries, because it sounds so "wired." Who would want to do analysis or research when they can do due diligence. See wired. , especially in circumstances involving the overstatement o·ver·state tr.v. o·ver·stat·ed, o·ver·stat·ing, o·ver·states To state in exaggerated terms. See Synonyms at exaggerate. o of revenues or fraudulent accounting of companies involved. The direct costs of noncompliance noncompliance failure of the owner to follow instructions, particularly in administering medication as prescribed; a cause of a less than expected response to treatment. noncompliance through fines, penalties, and litigation An action brought in court to enforce a particular right. The act or process of bringing a lawsuit in and of itself; a judicial contest; any dispute. When a person begins a civil lawsuit, the person enters into a process called litigation. can be high; however, indirect costs Indirect costs are costs that are not directly accountable to a particular function or product; these are fixed costs. Indirect costs include taxes, administration, personnel and security costs. See also
Publicly traded insurance organizations are being forced to assume full responsibility for the information included in their financial reports and to review and certify cer·ti·fy v. cer·ti·fied, cer·ti·fy·ing, cer·ti·fies v.tr. 1. a. To confirm formally as true, accurate, or genuine. b. the procedures by which they gather, index and compile this information. Key to compliance is the transparency of financial reporting, the ability to gain a better view into business activity as it takes place throughout the organization and from there, monitor and control these activities. The organization achieves transparency when access to critical information is more immediate and decision-making is more rapid and effective. Technologies that enable organizations to monitor their business processes, produce meaningful and timely analytical information, and manage ever-increasing quantities of information have come to the forefront of the drive to compliance. It is through the enforcement of policies and procedures Policies and Procedures are a set of documents that describe an organization's policies for operation and the procedures necessary to fulfill the policies. They are often initiated because of some external requirement, such as environmental compliance or other governmental that compliance is ensured. Content in all organizations, such as scanned images, electronic documents, rich media and faxes, is escalating. It is important to manage the retention and the appropriate elimination of content through a records management strategy. Process Approach Is Key Insurance organizations that can manage their complex business processes, data, and the information that is used to drive those processes can address the complexities of compliance with Sarbanes-Oxley and other regulations. Process resides at the core of all insurance organizations. It is how business gets done, with its ability to automate, control, and accelerate. Further refinements enable processes to be modeled, analyzed an·a·lyze tr.v. an·a·lyzed, an·a·lyz·ing, an·a·lyz·es 1. To examine methodically by separating into parts and studying their interrelations. 2. Chemistry To make a chemical analysis of. 3. , and continually improved to ensure ongoing compliance and operational efficiency. By bringing together the processes and the content, insurance organizations can gain a greater degree of internal transparency. Developing Compliance Strategies With Sarbanes-Oxley, the importance of records management has gone from the basement to the boardroom almost overnight. Both records management and corporate accountability are now center stage, in light of past high profile corporate scandals A corporate scandal is a scandal involving allegations of unethical behavior by people acting within or on behalf of a corporation. A corporate scandal sometimes involves accounting fraud of some sort. , especially in the area of electronic record keeping and e-mail storage. Insurance organizations are realizing that their compliance and records management policies need to be enforced via process and technology rather than being dependent on people for their enforcement. Sections 302, 404 and 409 of the Sarbanes-Oxley Act have wide ranging impact on insurance organizations in managing both their internal processes and the content that drives these processes. Section 302: Ensuring Compliance in Financial Reporting--Section 302 addresses immediate compliance concerns as it establishes corporate responsibility for financial reports, requiring that the organization's principal executive and financial officers certify the contents of their corporate reports. As signing officers, these senior executives also are responsible for establishing and maintaining internal controls for compiling financial information. Financial penalties and prison terms await corporate officers who certify financial reports that are prepared in a manner inconsistent with established controls or that deliberately contain false or misleading financial information. Responding to Section 302, organizations need to use content and records management strategies to securely store and retrieve virtually unlimited quantities of information at any time during the required seven-year audit retention period. These strategies need to incorporate robust search capabilities to rapidly locate and access information stored in the organization. A process-based approach enables a direct linkage linkage In mechanical engineering, a system of solid, usually metallic, links (bars) connected to two or more other links by pin joints (hinges), sliding joints, or ball-and-socket joints to form a closed chain or a series of closed chains. between process documentation and execution. As a result, when changes occur in a documented process, they should roll out immediately to the enterprise for day-forward adherence. Organizations need to document processes, accelerate and manage information gathering, and rapidly determine the source and approval process for critical financial information. With this type of control, management can represent the process by which information was gathered, identify participants and when it was gathered and modify the process for greater control. Content management allows auditors to directly view compliance processes, documentation, and reporting information. With secure, yet direct access to financial reporting documentation and process information, transparency into the organization increases. Organizations can achieve meaningful cost reductions from more efficient auditor assessments and rapid response to regulatory inquiries. Section 404: The Most Difficult and Complex Aspect of Compliance--Section 404 has created the greatest overall concern in that it establishes direct management responsibility for the assessment of internal controls. For all annual financial reports produced after June 15, 2004, management is required to include an assessment of internal controls and procedures for producing financial reporting information. Additionally, the corporation's public accounting firm is required to attest To solemnly declare verbally or in writing that a particular document or testimony about an event is a true and accurate representation of the facts; to bear witness to. To formally certify by a signature that the signer has been present at the execution of a particular writing so as to this assessment. Most public corporations are moving aggressively toward a "standardized standardized pertaining to data that have been submitted to standardization procedures. standardized morbidity rate see morbidity rate. standardized mortality rate see mortality rate. " state defined by established and adequately documented internal controls. Therefore, insurance organizations must not only document their internal procedures, but must demonstrate their strict adherence. Compliance with Section 404 in particular requires a remarkable degree of transparency into the organization's content and processes. Organizations must establish stringent controls not only to document critical processes, but also to ensure that they are carried out. Senior management requires entirely new levels of visibility into reporting processes to gain the confidence to certify the content of their financial reports. Corporations need to establish a complex, bottom-up approach for evaluating their internal controls, soliciting individual input and assessment from across the enterprise. Thus, the approach to Sarbanes-Oxley needs to support top-down visibility and oversight while enabling bottom-up input into both reporting and control assessment. An approach that manages both content and process enables executives to comply with Section 404 without requiring an exorbitant amount of time, cost, or risk to the individual or corporation. Section 409: Moving to Real-Time Reporting--Compliance also drives the need for accelerated or even real-time reporting. In Section 409 of the Sarbanes-Oxley Act, publicly traded corporations are required to "disclose to the public on a rapid and current basis" any material changes in the organization's financial condition. Moreover, the definition of a "material change" is rapidly expanding to include items as detailed as the loss of a principal customer or account. Also, insurance organizations will have to view changes to loss reserves in a totally new light. Insurers will have to gain a clearer understanding of reserving practices for claims, as well as other events that have an impact on underwriting results. This issue of transparency and aspect of compliance requires that the content and processes that drive the organization are under control and can be monitored. Organizations can leverage a process-based approach to monitor for events that represent "material changes" and trigger a responsive, controlled process to ensure that required disclosures are generated within the prescribed pre·scribe v. pre·scribed, pre·scrib·ing, pre·scribes v.tr. 1. To set down as a rule or guide; enjoin. See Synonyms at dictate. 2. To order the use of (a medicine or other treatment). time period. The Cost of Compliance With this law as a goal for compliance, many insurance organizations have scrambled scram·ble v. scram·bled, scram·bling, scram·bles v.intr. 1. To move or climb hurriedly, especially on the hands and knees. 2. to meet stated deadlines. The unfortunate side effect is that the cost of compliance has rapidly begun to escalate es·ca·late v. es·ca·lat·ed, es·ca·lat·ing, es·ca·lates v.tr. To increase, enlarge, or intensify: escalated the hostilities in the Persian Gulf. v.intr. and, with other equally complex issues also impacting the situation such as the foreign regulations for operational risk as required by the Basel II Basel II is the second of the Basel Accords, which are recommendations on banking laws and regulations issued by the Basel Committee on Banking Supervision. The purpose of Basel II is to create an international standard that banking regulators can use when creating regulations Capital Accord, the increase appears likely to continue. While Section 404 of the Sarbanes-Oxley Act requires that internal controls are in place, Basel II tracks and manages the exposure to risk by banks and financial institutions. To achieve compliance quickly, both consulting and external audit fees have increased industrywide in·dus·try·wide adv. & adj. Throughout an entire industry: sales that have decreased industrywide; industrywide cooperation. . A dramatic rise in insurance premiums has proven to be another hidden cost of Sarbanes-Oxley. Many organizations are now turning to the more complex, and costly, effort to document their internal controls in accord with Section 404. As they do, they are looking not only for near-term fixes but also for a compliance approach that can address current and future regulatory requirements Regulatory requirements are part of the process of drug discovery and drug development. Regulatory requirements describe what is necessary for a new drug to be approved for marketing in any particular country. . While a simple point approach may address some present-day Sarbanes-Oxley requirements, they may be unable to scale to address new requirements as they evolve, including those associated with Basel II. Benefits of Sarbanes-Oxley A growing group of insurers are looking to move beyond compliance to derive additional value from their efforts to enhance their relative competitive advantage. These organizations are working to implement a compliance approach that ultimately will enable an "optimized" environment that delivers real-time monitoring--true transparency--and continuous, rapid process improvement. Thus empowered, these organizations can dramatically reduce the cost of compliance, accomplish near real-time reporting, and rapidly respond to current and future regulatory requirements. Key Points * Insurers are developing ways to enhance their competitive advantage as a byproduct by·prod·uct or by-prod·uct n. 1. Something produced in the making of something else. 2. A secondary result; a side effect. Noun 1. of compliance mandates. * Sarbanes-Oxley compliance is essential to retaining the integrity of the corporate brand for insurers. * Technologies that monitor business processes and manage information are important in the drive to compliance. John Sarich is the industry marketing manager for FileNet Corp., a provider of enterprise content management solutions. |
|
||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion