Skip to main content

Risk Management in Payroll

What are the risks in a payroll department?   There are many variations of the three below, but it all comes down to them.
  1. Fraud
  2. Error
  3. Confidentiality
Good processes and governance go a long way to preventing all of them, and, of course, the positive effect of getting it right the first time, is so much better than having to constantly correct problems.   Payroll errors have a very negative impact on morale.

 Fraud   

From ghost employees to duplicate bank accounts, payroll fraud is wide ranging and yet we are frequently told that payroll administrators manage the full process from data entry to EFT without anybody else checking the output.   While it is clearly not good governance, it is also quite simply putting temptation on the table.

Another concern is that there are many repeat offenders out there, protected by the employer who chooses to not take action, and by the companies who do not insist on full background checks when hiring into such a sensitive role.

Errors

Payroll departments work under extreme pressure, and deadlines are not always adhered to by the rest of the company.   This increases the opportunities for errors of omission, unclear communication or a lack of understanding of the requirements.

The majority of people operating in payroll departments have grown up in the position, ie they have no formal training in payroll administration, are trained on the job, and their skill set is often deep knowledge of a particular payroll software package.

We have also noticed that there is very little formal training in spreadsheet products which can be very valuable for controls.

The risk of an underpayment not being reported is low, but overpayments and incorrect calculations are frequently unreported.

Confidentiality

With the PoPi bill on its way, keeping people information confidential has never been more important, and yet there is significant risk in many payroll departments.   Some of the main areas of concern are:
  • Designing security levels that allow only the relevant people access to the information
  • Setting up firewalls correctly
  • Understanding whether the IT department has access to the encrypted data, and ensuring that there is full signed contractual confidentiality.   For convenience, in larger IT departments, the access is spread quite broadly, and it is in the interests of companies to confirm who should and shouldn't have access.
Governance and controls need to be in place.   The way the payroll is checked each month should also be standardised.   Variance reports are particularly useful as a first step, so that it is easy to see where the differences are, month on month.   Line management need to sign off on their direct reports, and should have a check list to work through eg
  • Employees who are in their last month of work
  • Employees terminated in the previous month
  • New employees
  • Increases given
  • Bonuses given
  • Savings and loans
  • Commissions
  • Travel claims
  • Reimbursements
This checking by line management subjects the payroll to an external review process, and reduces risk immediately.  Terminations and new hires should be checked with the employment contract at hand.   Audit reports should also be checked each month to confirm that all changes in the system are valid.

No matter what systems are in place, it is possible to commit fraud, make errors and break confidentiality, particularly as processes often become less tight over time.   It is advisable to ensure that payroll departments are regularly submitted to an external risk management /health check process, which confirms best practice, as well as process flows and reporting models that highlight anomalies.

Risk Management
e-Mail: support@accsys.co.za
Enquiry: Contact Form 

Payroll Training
Payroll Administration Diploma


Labels:

Comments

Post a Comment

Popular posts from this blog

Its all about the numbers - retirement age

Weight, height, age, dress size, shoe size, all numbers that we (and the media) use to define people. I was fascinated by an article from the Leicester Mercury where the age of each witness to a bus crash in January were carefully listed. Sue Kellett, 56, whose front garden is bordered by the wall, was one of the first at the scene. Read more: http://www.leicestermercury.co.uk/Bus-driver-airlifted-hospital-collision-tractor/story-20512289-detail/story.html#ixzz31lXUuyZg Read more at http://www.leicestermercury.co.uk/Bus-driver-airlifted-hospital-collision-tractor/story-20512289-detail/story.html#9cHShVptF30lJw4X.99 Sue Kellett, 56, whose front garden is bordered by the wall, was one of the first at the scene. Read more: http://www.leicestermercury.co.uk/Bus-driver-airlifted-hospital-collision-tractor/story-20512289-detail/story.html#ixzz31lXUuyZg Read more at http://www.leicestermercury.co.uk/Bus-driver-airlifted-hospital-collision-tractor/story-20512289-detail/story.htm...
Post a Comment
Read more

Flexibility in the workplace

Is flexibility now a reality in the workplace?   And is it really working?   The assumption of control over one’s own time and deliverables does look like a great way to work and live, and it seems to be is a high priority for those entering the business world. Decision makers in business, along with HR managers and recruitment consultants, are very much aware that both current employers and new recruits are looking for guidance and ideas as how to achieve work/life balance. It is accepted that this balance has to form part of the workplace. Yes people still need to prove themselves, initiative is still expected, hard work and commitment are still viewed as non-negotiable – but the dynamics of employer/ employee relationship has changed. And it is innovation in ICT that has paved the way. The advantages of a mobile workforce can include an increase in productivity, lower total cost of ownership and a wider, more direct reach to the market. In ess...
Post a Comment
Read more

Sales - Setting Targets

Are your salespeople included in setting targets?   Very few are.  Sales targets are based on previous individual performance, sales division performance and budget requirements.   In some companies everybody gets the same target, regardless of abilities or previous successes, while in others it is an enormously complex beast with all sorts of criteria used. While the business requirements have to be met, it is important to discuss and collaborate with the salespeople themselves. Sales is a game, and each time you play a game, you should want to do better.   If you are not competitive by nature, sales can be a very tough career.  It is, anyway. More and more, sales management is about coaching, not managing, so it really important for sales managers to understand how coaching works.  There are great courses out there which guide sales managers through the coaching methodology. A simple, but structured approach to target setting with lots of commun...
Post a Comment
Read more