Professional Documents
Culture Documents
Site Audited
Audit Type
If Not a Standard Audit Type, Explain Purpose of Review
Review Stage
Cycle Expenses
Testing performed by
Date of test
Testing reviewed by
Date of review
Control Objective EX-020-010 Purchasing Approvals - All purchases are approved by management.
The Purchasing function procures inventory, supplies, and services to satisfy production requirements and to maintain the
Guidance / Risk Addressed facilities and equipment The purchasing function should not acquire goods or services for which a proper management
approval has not been obtained.
Activity
Control Activity # Control Activity Description SOX or OKC
Scope
The test for EX-020-010-030 requires, through discuss with relevant materials management, reviewing the procedures / process
Prescribed Test(s) of converting customers forecast or orders into raw material purchasing requirement.
Name & Title of Person Providing Base Data (If Not ARMS)
Sample Table (please add / delete rows as necessary, based on the frequency)
Customer's
1 Finished Goods
Demand Process.
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Control Activity #
Name & Title of Person Providing Base Data (If Not ARMS)
Attributes
A
Local direct material policy is valid and
B
Policy coveres all non-routine situation
C There are instances were material is us
D There are instances were material is ob
E There are instances were material is us
F Material Sourced by one of the Custom
A B C
1 Direct Material Policy
Items purchased from
2
different sources
Material Sourced By
3
clients
4
Sample Table (please add / delete row
Attribute Testing Performed (use tickmarks)
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Control Effectiveness
(choose from drop-down list)
s are not purchased in the company's best interests, Vendors are not selected in line with the corporate guidance which can c
d to unfavorable terms for the company, fraud or kickbacks.
als are not purchased using methods to determine the companys best interest, the company could pay higher prices, could
and could be paying based on unfavorable terms - it all can result with company losses.
ally in situation when independent review is not part of the process there is a risk of potential fraud and kickbacks.
Materials are purchased at the most competitive terms - i.e. best price, quality,
service, and delivery lead time. The site has a documented process to ensure
that the most competitive terms are realized and maintains the back-up
documents to support the selection of the supplier. Additionally, it is ensured OKC
that materials bought from vendors mandated by customers are bought only for
that customer's production. Otherwise, the suppliers have to meet all of the
requirements of all other common material vendors.
ning the list of purchased material for period allowing proper analysis of the process (at least last 3 months) and by data analy
king for items purchased from few different sources
g the split between the sources.
ing weather material sourced by clients is used for other clients production
on of the presence of the cases listed above (including I) checking is required whether purchase of material and supplier split
/material selection process has a proper background and is based on market analysis/quotation required in PDM-010-020-010
erview and data analysis checking whether there are instances of purchases from vendors/brokers which are not regular sup
such, review is required of the available evidence of vendor selection, taking into account list of brokers approved by Corpora
Detailed Test Procedures (Attributes)
overes all non-routine situations of multiple material coding for same items, or common components for programs
e instances were material is used for different clients and is sourced by one of them
e instances were material is obtained from multiple sources
e instances were material is used for different clients and is sourced by one of them
Sourced by one of the Customers is not used for another one.
Activity Scope
Comments
Comments
Control Objective PDM-010-010
Control Activity #
1. Competitive bidding/quotations
2. Suppliers invoice
Match PO/PR price, quantity and item to
The test for PDM-010-010-020 requires:
Through discussion with relevant mana
people. The review should include exam
1. Competitive bidding/quotations
2. Suppliers invoice
Match PO/PR price, quantity and item to
Name & Title of Person Providing Base Data (If Not ARMS)
Attributes
A
Competitive quotations obtained
B
Quotation Documentation is retained an
C Justification of vendor selection is clea
D Is Vendor Selected by GPO
E Vendor is selected by different person t
F Invoice price matches PO/PR price
G Quantity on Invoice matches PO/PR qu
H
A B C
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Sample Table (please add / delete row
Attribute Testing Performed (use tickmarks)
# Suppliers Invoice
# Suppliers Invoice
G H
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
s are not purchased in the company's best interests, Vendors are not selected in line with the corporate guidance which can c
d to unfavorable terms for the company, fraud or kickbacks.
als are not purchased using methods to determine the companys best interest, the company could pay higher prices, could
and could be paying based on unfavorable terms - it all can result with company losses.
ally in situation when independent review is not part of the process there is a risk of potential fraud and kickbacks.
Vendors are qualified in-line with Corporate guidelines and in the Company's
best interest. Any exception to Company guidelines has adequate support and is OKC
properly documented and approved
he test requires - basing on the Sample Size guidelines and professional judgment - obtaining samples of Purchase Orders/R
suppliers (including suppliers in Approved Vendor List, Preferred Supplier List, contractual, etc.) not introduced/controlled by
etitive bidding/quotations
ine whether the site has obtained competitive quotations from more than one supplier, and determine whether the number of q
Supplier Qualification Procedure GPO-GPO-3-033-00.
ine whether the site has an adequate process to retain past quotations for reference and audit purposes.
all quotations. Check that unit price on PO is the lowest of available quotations, if not, check that approver indicates justificat
.e. quality, service or delivery lead time. Ensure that this justification is adequately documented.
upplier was selected by Global Procurement, obtain evidence from respective GP personnel.
that the POs are not approved by personnel also approving the selection of the particular vendor.
lect only vendors which are not demanded/selected by customer (in such case site cannot decide to select cheaper supplier).
ers invoice
O/PR price, quantity and item to suppliers invoice to ensure accuracy of billing.
for PDM-010-010-020 requires:
discussion with relevant management to determine whether the criteria for supplier selection is defined and communicated to
The review should include examples of the selection criteria used and reviewing for compliance to the Supplier Qualification P
he test requires - basing on the Sample Size guidelines and professional judgment - obtaining samples of Purchase Orders/R
suppliers (including suppliers in Approved Vendor List, Preferred Supplier List, contractual, etc.) not introduced/controlled by
etitive bidding/quotations
ine whether the site has obtained competitive quotations from more than one supplier, and determine whether the number of q
Supplier Qualification Procedure GPO-GPO-3-033-00.
ine whether the site has an adequate process to retain past quotations for reference and audit purposes.
all quotations. Check that unit price on PO is the lowest of available quotations, if not, check that approver indicates justificat
.e. quality, service or delivery lead time. Ensure that this justification is adequately documented.
upplier was selected by Global Procurement, obtain evidence from respective GP personnel.
that the POs are not approved by personnel also approving the selection of the particular vendor.
lect only vendors which are not demanded/selected by customer (in such case site cannot decide to select cheaper supplier).
ers invoice
O/PR price, quantity and item to suppliers invoice to ensure accuracy of billing.
Detailed Test Procedures (Attributes)
Activity Scope
purposes.
hat approver indicates justification for selection of
d.
or.
de to select cheaper supplier).
Comments
Comments
Comments
Control Objective PDM-010-010
Control Activity #
Name & Title of Person Providing Base Data (If Not ARMS)
Attributes
A
Qualification process documentation is
B
Vendor selection was compliant with th
C All important business factors are taken
A B C
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Sample Table (please add / delete row
Attribute Testing Performed (use tickmarks)
Business factors in
# selection of vendors
process D
Control Effectiveness
(choose from drop-down list)
s are not purchased in the company's best interests, Vendors are not selected in line with the corporate guidance which can c
d to unfavorable terms for the company, fraud or kickbacks.
als are not purchased using methods to determine the companys best interest, the company could pay higher prices, could
and could be paying based on unfavorable terms - it all can result with company losses.
ally in situation when independent review is not part of the process there is a risk of potential fraud and kickbacks.
FOR GPO ONLY: Vendor qualification process used by the GPO organization is
fully compliant with the Supplier Selection and Management policy GPO-GPO-1-
016-00. It covers all critical areas for the Company - i.e. market analysis for the
given material/commodity with pricing trends and existing parties; global OKC
sourcing strategy, supply risk management; price comparisons across all
regions involved; MOQ in agreements against the actual demand; pricing
agreements in comparison to the market prices, etc.
election was compliant with the Supplier Selection and Management Policy GPO-GPO-1-016-00
rtant business factors are taken into account when vendor was selected
Activity Scope
-GPO-1-016-00.
Comments
Comments