KG Business Management

Linkedin
Twitter
Facebook
Youtube
Tiktok
Bulesky

9 tips for being more responsive to clients

Posted by Ram 
· 19/01/2018 
· No Comments

9 tips for being more responsive to clients

Developing strong relationships with clients is a key to attracting and retaining new business. That’s one reason why it’s vital for CPAs to be both available and responsive.

“One of the top reasons accountants lose clients is because they are not responsive enough,” said Edward Mendlowitz, CPA, partner at WithumSmith+Brown in New Brunswick, N.J.

But being responsive isn’t always easy. CPAs and their firms face daily pressures and have hectic schedules. Clients contact them via phone, email, and text. Multiple clients may want attention simultaneously. And clients may expect their CPAs to be on call day and night.

If communication is light or lacking, sometimes CPAs do not realize that clients are dissatisfied with their level of responsiveness.

How can CPAs and their firms ensure they are being sufficiently responsive to their clients? Leaders in the profession offer the following advice:

  • Return calls, emails, and texts in a timely manner to establish trust. It’s all too easy to push things off until the next day. Many firms have a 24-hour rule, stressing the importance of callbacks or returned emails or texts within that time frame. “I try to return every client phone call by the end of that day,” Mendlowitz said. “Returning phone calls is an indication of availability. Clients want to know that you are there if they have a real serious problem. If a client calls you at an inconvenient time, ask them when you can call them back.”
  • Establish a response policy. Firm leaders should create a policy that explains how quickly clients must receive a response, and then communicate that policy to employees, said Hank Levy, CPA, founder of The Henry Levy Group in Oakland, Calif., and a partner at ELLO, an MGO member firm. Joseph Tarasco, CPA, founder and CEO of consulting firm Accountants Advisory Group in Cold Spring, N.Y., advises firms to drop everything if a client has a crisis. “With competition you have to respond,” he said. “That’s today’s world—everyone is walking around with cellphones, and clients know this.”
  • Choose to communicate in a way that suits your client. Some clients prefer emails; others prefer texts or phone calls. Some want to meet in person. So know how your clients want to communicate. “Respond back in a fashion that will retain that client and keep that client happy,” Tarasco said. Also, reach out to clients occasionally just to say hello, as that can help build relationships as well.
  • Prioritize. Make lists of clients you need to contact and/or respond to. Take advantage of different productivity tools, such as spreadsheets and apps, and keep revisiting and updating your lists, Levy said. Also, if at all possible, don’t delegate client-related tasks that are priorities and time-sensitive. “If you do delegate, make sure you follow up. Do not assume that it will always get done,” Tarasco said.
  • Use language your client will understand. Your clients “are not tax accountants with advanced tax degrees,” Tarasco noted. So avoid sending them jargon-filled emails and instead explain things to them in layman’s terms.
  • If a client wants to meet, do it. If a client requests a meeting, “do not make an appointment for two weeks out,” Mendlowitz said. Instead, try to meet as soon as possible, even the next day if you have time. Doing so highlights your availability and responsiveness. Similarly, don’t write a 10-page email if there is a lot to discuss. In addition to the necessary written documentation, you also should meet face-to-face for something that is important or complicated, Tarasco advised.
  • Be compassionate. Clients should view you as a trusted adviser, and that means being a good listener. “If a client has pain, try to find out the pain and meet with the client to help them through it,” Mendlowitz said. “Empathize with the client and feel what they are going through.” Also, be sensitive to clients’ changing needs.
  • Follow up. Even if a client seems satisfied with your response to issues that arise, contact them again within a few days. Ask, “How are things going? Did it work out as planned? Did my advice help? Did anything else get uncovered?” Tarasco said. “Follow-up is key.”
  • Keep your client roster manageable. While it’s great to add more clients to your roster, having too many can make it difficult to serve all of them in a timely manner and keep them happy, so don’t take on too much. “If you are not responsive to clients, you give them a reason to leave you, look outside, and complain,” said Richard Lash, CPA, managing partner at Walthall CPAs in Cleveland.

Most partners in public accounting firms achieved their success because they were responsive to their clients. “That’s the No. 1 commandment,” Tarasco said. “So if you are breaking that No. 1 commandment, you can’t stay in business.”

No Comments
Categories : Resources
Tags : , , , ,

Delegating like a boss

Posted by Ram 
· 19/01/2018 
· No Comments

Delegating like a boss

The most effective leaders don’t do everything themselves: They delegate, freeing up time for more essential work while giving others the chance to develop.

It isn’t always easy. Delegating can be difficult because many people link accomplishments with working hard. They may also fear being viewed as bossy or lazy. But delegation can help advance careers. “If you’re focusing on the most important things that need your attention, you’re going to make more impact on the organization and more impact on your career success,” said Joel Garfinkle, an executive coach and author of Getting Ahead: Three Steps to Take Your Career to the Next Level. “Shift the mindset from ‘I’m going to do everything myself’ to ‘I’m going to let people learn.'”

Here’s how to get started:

Think about what you can give up. Consider what only you can do and keep that. Anything confidential, essential, or sensitive likely needs to stay with you. Client meetings might be kept, but scheduling those meetings could be passed along to someone else. But don’t focus on just the mundane tasks, Garfinkle said. Delegate things that will help colleagues enrich their jobs and feel empowered.

Identify to whom you can delegate. People have to have the “skill and the will,” said Lisa Barrington, a workplace strategist and speaker based in Phoenix. An employee with more experience may not be interested, but a lower-level staffer may be willing to take on the task. You can also consider peers at your level, provided they can benefit from the work. Remember that everyone can “get bored if they’re not trying new things or learning new things,” Barrington said. Of course, beware of overloading someone.

Do the heavy lifting early. To ensure the task is done properly, delegating requires ongoing communication. First, explain that this as a growth opportunity, provide detailed instructions, and be specific on outcome expectations. “The more you’re involved upfront, the less time you need to be later on,” Garfinkle said. Then, set up check-ins to discuss progress and issues. Express gratitude for a job well done.

Alter guidance. Be available for questions, and be willing to make adjustments as needed. Then, as the person masters the task, reduce your oversight. “You can pull back on the direction to more of a guide,” Barrington said. Then, let them “come to you if they need to.”

No Comments
Categories : Resources
Tags : , , ,

Workplace Health and Safety a Vital Component of Mature Risk Management

Posted by Ram 
· 03/10/2017 
· No Comments
risk management

Workplace Health and Safety a Vital Component of Mature Risk Management

Businesses of all types are being transformed by technology, and so are the many kinds of workplaces that support their operations. Changing business strategies and increased productivity lead to rapid changes in process, which often means that executives lack a full understanding of the impact on the health and safety of employees and third parties. Workplace health and safety risks are among the most critical to address, as they can result directly in loss of life and limb—not to mention chronic injury and illness, work stoppage, lawsuits, and damage to brand reputation.

Traditionally, workplace health and safety matters have been addressed by dedicated safety teams working apart from the business, and risk management teams relying on spreadsheets, checklists, and incident reports as tools of the trade. As the number and interdependence of risk factors increases, this is no longer a sustainable approach—the cost of managing each regulation, requirement, change, or incident out of siloed programs will continue to rise, while effectiveness erodes.

The growing influence of international standards for risk management (e.g., ISO 31000, ISO 9001 and ISO 45001), and emphasis on integrated risk management as a key factor in cultivating business resiliency have created prime opportunities for workplace safety professionals to raise awareness of their role in risk management and of the impacts of accidents. With the right processes and technology, safety professionals can help protect their organizations from a range of negative outcomes from employee absences to insurance premium increases to fines and lawsuits.

With this in mind, health and safety leaders, C-level executives, and boards should be incorporating workforce well-being into strategic planning, corporate responsibility programs, and risk maturity initiatives across the enterprise. Governance, risk management, and compliance (GRC) efforts are not abstract—they are interrelated, and each function can be made stronger when addressed holistically. Carrying out integrated GRC initiatives (including health and safety programs) involves orchestrating and centralizing numerous interdependent policies, processes, and reports.

Integrated risk management should raise continuous, data-driven improvement of health and safety measures to the same level as other operational risk measures (e.g., cyber security, outsourcing, fraud prevention). Supporting these efforts with a systematic and streamlined process and toolset for documentation, tracking, training, reporting, and analysis is fundamental to incorporating them throughout the enterprise.

Integrated risk management processes help organizations foster accountability and collaboration, form a clear and complete picture of risk, cover compliance obligations more efficiently, reduce safety and health incidents, and improve incident response. The longer problems remain unaddressed, the greater the liability and risk exposure. Ineffective responses to workplace health and safety issues can lead to repeat accidents, illnesses, absences, loss of productivity, higher fines, higher insurance premiums and increased scrutiny from regulators and business partners. The GRC processes that need to be optimized include: performing risk analysis and business impact analysis; maintaining and reviewing process and safety documentation; investigating and reporting on accidents, injuries, illnesses and near misses; analyzing injuries and issues by site to pinpoint and measure risk; automating generation of incident forms for outside agencies (e.g., OSHA and HSE); executing job hazard analyses; managing site inspections and remediation actions; and ensuring employees are aware of safety processes.

There are few excuses for the blind spots that lead to major workplace health and safety issues. If we integrate policies and controls with processes and systems across the enterprise, we can gather and analyze metrics on just about every aspect of operations, as well as incorporating employee input and best practice guidelines. GRC technology solutions that include a health and safety component can help automate and bring a new level of intelligence to the associated risk analysis.

Enterprise-wide data integration enables predictive analytics capabilities, making it possible to identify health and safety issues and communicate them to executive decision-makers before they turn into incidents and losses for the company. Data captured during risk or safety assessments, and investigations into near misses and incidents generates insights to be incorporated into safety protocols and job training. The same types of analyses can be applied to vendor and supply chain management to improve health and safety outcomes throughout the value chain.

Data-driven safety programs should also include mechanisms for gathering input and feedback from the workforce. Whistleblower capabilities, responsive communications, and reliable procedures for following up after an incident or near-miss cultivate a safety-first environment. The ability to reassure workers that their wellbeing is a management priority positively impacts everything from recruitment and retention to incident rates, productivity, and corporate reputation.

Organizations cannot reach a mature, effective level of risk management without incorporating health and safety into their operational risk programs. An informed and comprehensive view of risk leaves enterprises better prepared for planned growth as well as unexpected opportunities and challenges. To strengthen business resiliency and sustain competitive advantage, executives must prioritize the continuous monitoring of health and safety risk and compliance across all business units, partners, and vendors. Mature risk management not only saves lives, but also lowers insurance costs, increases productivity and protects the sizable investments companies make in acquiring, training, and retaining their workforce.

No Comments
Categories : Resources
Tags : , , , , , , ,

Keys to Embracing Disruptive Technology

Posted by Ram 
· 03/10/2017 
· No Comments

Keys to Embracing Disruptive Technology

In taking stock of potentially disruptive technologies, CEOs should be ready—really ready. Reinhard Fischer, chief of strategy for Audi of America, urges CEOs to “stop denying reality, which is what taxi operators did with Uber. Now Uber has taken about one-third of the taxi traffic in big cities.” Disruption is happening faster than ever. “Before when you talked about technologies coming, you’d name one or two,” says EY global chief innovation officer Jeff Wong. “Now there are 10, and they’re all relevant and important. That’s what’s really changing for the CEO.”

Here are some key pointers for CEOs looking to embrace disruptive tech solutions:
Don’t panic. The world is rife with examples of businesses where technological revolution fell short of its warnings. Early participants in e-learning, for example, still haven’t made money, says Julian Birkinshaw, a professor at London Business School. “Sometimes we forget about industries that haven’t been turned completely, immediately upside down. You have to make an ultimate commitment to new technology, but it’s not like you necessarily have to do that immediately.”

 

1. Take a long and broad view. Wall Street may demand rapid returns but woe be unto the CEO who concedes wholesale. “You’ve got to try to optimize for 10 years from now, not even just one to two years ahead,” warns Guo Xiao, CEO of the consulting firm ThoughtWorks. CEOs must also broaden their transformation push to encompass relationships with suppliers, customers and other external constituencies. “The greatest success comes through building an ecosystem of alliances and not thinking that the impact of technology is all within the four walls of your company,” says Nichole Jordan, national managing partner of markets, clients and industry for Grant Thornton.

2. Disrupt yourself. Critically evaluate your existing business model much as a hacker would try to take down a cybersecurity network. “Find out what the weak points are that you don’t see so that a disruptor can’t take advantage of them—and so you can disrupt yourself,” says Fischer.

“YOU’VE GOT TO TRY TO OPTIMIZE FOR 10 YEARS FROM NOW, NOT EVEN JUST ONE TO TWO YEARS AHEAD.”

3. Seed early successes. Enable a “culture of testing and learning new technologies, not necessarily passing and failing them,” advises Roger Park of EY. Former Humana innovation chief Paul Kusserow, now CEO of Amedisys, recommends testing technologies with “people in the company who have a very specific problem that a technology could solve—more acute than anywhere else in the company—or who believe that a process needs to be changed and this could help it. Then you need to make sure these people get not only the benefit of the innovation but credit for taking the risk.”

4. Create emerging-tech scrums. EY’s Jeff Wong suggests charging a team with “actually getting dirty with tech and playing with it, trying to address and answer problems.” Audi of America created a “digital team where we pull all the bright young minds that are working on digital topics and merge them with people who do strategy for the long term,” Fischer says. “It’s a little lab where we play around with all kinds of ideas and ask ‘what if?’ questions.”

5. Expect resistance. “There are incredible forces working against innovation” in any organization, Kusserow says. “Technology has to be so good that someone has to be willing to take the risk of restructuring or disassembling an existing process to which their success or maybe their careers may be tied.”

6. Don’t get hung up on a specific technology. Resist the urge to make a big bet on the latest buzzword technology, says John Mullen of CapGemini. “Don’t prepare yourself to chase certain technologies, but [rather] to get better decision making in your organization, because the technologies that pass through your ecosystem are going to be different tomorrow than today.”

7. Focus on building capabilities. CEOs need to see their roles as “building an organizational culture that can rapidly figure out which technologies are advancing, what the paybacks are and what the future leverages of those technologies are in order to determine whether they’re part of the business strategy going forward,” Mullen says. Consider putting tech people on the board and add the CIO to the company’s core management team. “You need to infuse specific technology skill sets in management—people who understand digital as well as your industry,” says Jeanne Beliveau-Dunn, VP and general manager of Cisco Systems. “They need to be embedded in each business unit.”

8. Reckon with legacy IT. A company’s IT base typically must provide the computing horsepower and platforms for embracing machine learning and other data-intensive disruptors. Many CEOs get excited about a shiny new app, “but they shouldn’t lose sight of the fact that existing IT can be an enabler or an inhibitor of new digital services,” advises Paul Appleby, EVP of transformation for BMC Software. “They have to work on how to turn their existing infrastructure into a competitive differentiator. It may not be the exciting piece, but it’s what will allow you to be agile and scale and do so in a trusted environment.”

No Comments
Categories : Resources
Tags : , , , , , , ,

Chinese airlines poised for windfall as in-flight broadband fosters sky-high e-commerce

Posted by Ram 
· 03/10/2017 
· No Comments

Chinese airlines poised for windfall as in-flight broadband fosters sky-high e-commerce

 Carriers are expected to gain a significant share of the estimated US$130 billion global in-flight broadband ancillary revenue by 2035

 

 China, the world’s fastest-growing commercial aviation market, is poised to see its airline industry generate greater revenue as more carriers provide e-commerce services to passengers over their in-flight broadband systems.

The mainland, which has the world’s largest smartphone and online retail markets, is predicted to corner a considerable share of the estimated US$130 billion of global in-flight broadband-enabled ancillary revenue forecast for airlines by 2035.

“Globally, if airlines can provide a reliable broadband connection, it will be the catalyst for rolling out more creative advertising, content and e-commerce packages”

“We can expect to see significant growth in China because passengers prefer to bring their personal electronic devices on board to access their choice of content and services, as they would enjoy on the ground,” Otto Gergye, the vice-president for Asia-Pacific at British satellite telecommunications company Inmarsat, told the South China Morning Post on Thursday.

“In-flight broadband is able to bring about tremendous customer service and revenue possibilities for airlines, brands and internet companies.”

His comments followed the release on Wednesday of a research study on the emerging in-flight market segment, Sky High Economics, by the London School of Economics and Political Science in association with Inmarsat.

Airlines in Asia-Pacific can expect to see the greatest opportunity from in-flight broadband-enabled ancillary services, with total revenue projected to reach US$10.3 billion on the back of passenger growth and wide availability of such services, according to the study.

Revenue would come from broadband access fees, advertising, so-called premium content and e-commerce sales  arrangements with companies such as JD.com and Alibaba Group Holding. New York-listed Alibaba owns the Post.

The study estimated airlines around the world currently receive, on average, an additional US$17 per passenger from traditional ancillary services, such as duty free buys and in-flight retail, food and drink sales. In-flight broadband-enabled ancillary revenues would add an extra US$4 by 2035, it said.

“Globally, if airlines can provide a reliable broadband connection, it will be the catalyst for rolling out more creative advertising, content and e-commerce packages,” said Alexander Grous, the author of the study.

A recent global survey of 9,000 airline passengers from 18 countries conducted by market research firm GfK and Inmarsat found 68 per cent of passengers in China ranked in-flight connectivity as more important than in-flight entertainment.

The survey also found the mainland airline likely to lead in providing in-flight Wi-fi services is Beijing-based national flag-carrier Air China, according to 46 per cent of respondents. It was followed by China Eastern Airlines, headquartered in Shanghai, and Guangzhou-based China Southern Airlines.

“The major airlines in China have already struck strategic partnerships with the country’s largest online retailers, such as JD.com and Alibaba Group, to serve their passengers,” Gergye said.

“These include making online flagship stores available across various flight routes and providing online payment support, such as through Alipay.”

Such demand is fuelled by how mainland consumers are more accustomed to using the internet than anywhere in the world, with 731 million users at the end of December last year, according to the China internet Network Information Centre. Of that number, 695 million people access the internet on their smartphones.

Online shopping has also remained buoyant on the mainland, despite a slowdown in the domestic economy. The country’s online retail market is predicted to grow to US$1.7 trillion by 2020, compared with US$750 billion last year, according to a report from Goldman Sachs.

“There’s no doubt that in-flight broadband will revolutionise the way we work, play and consume content whilst in the air,” said Paul Haswell, a partner at international law firm Pinsent Masons.

“There is potential for airlines to generate additional revenue, but these carriers should not just treat in-flight broadband as an extension of an in-flight shopping magazine. Instead, they should look at innovative ways to entice passengers to spend.”

At present, only 53 out of an estimated 5,000 airlines worldwide offer in-flight broadband connectivity, the study said.

China is forecast to record a total of 1.3 billion passengers flying to, from and within the country by 2035, according to a forecast made last year by trade group the International Air Transport Association.

This article appeared in the South China Morning Post print edition as: China poised for revenue lead from in-flight internet
No Comments
Categories : Resources
Tags : , , , , , , ,

Single Touch Payroll Program Lead at Australian Taxation Office

Posted by Ram 
· 27/09/2017 
· No Comments

Single Touch Payroll Program Lead at Australian Taxation Office

Single Touch Payroll is a game changer for tax and super reporting and the broader economy. It is an exciting digital initiative as it ultimately unlocks real time salary and wage information for all employees in Australia.

For now, it means employers will report payments such as salaries and wages, pay as you go (PAYG) withholding and super information to the ATO directly from their payroll solution at the same time they pay their employees.

For employers with 20 or more employees, Single Touch Payroll reporting starts from 1 July 2018. The first year will be a transition, we are keen to help people make this change and accept that there needs to be a bedding in period while everyone gets used to this new process.

The Australian Government has also announced it intends to expand Single Touch Payroll to include smaller employers with 19 or less employees from 1 July 2019, subject to legislation being passed in parliament.

What will I need to do differently under STP?

Single Touch Payroll is a new way of reporting payroll information to the ATO. As you pay your employees through your own payroll process, you will be sending us their tax and super information at the same time.

This will align your reporting obligations to your usual pay cycle. In other words, you’ll be interacting with the ATO at the point where you pay your employees. This will typically be through your accounting or payroll software and the majority of software developers are already building updates into their payroll products to deliver Single Touch Payroll reporting.

When the ATO receives the payroll information, they’ll match that to your records, as well as your employees’ records. You won’t need to provide your employees with a payment summary if you have reported their information through Single Touch Payroll. The ATO will provide that to your employees through myGov or through their pre-filled income tax returns.

What’s next?

We’re working closely with our industry partners – including software providers and tax practitioners – to make sure the move to Single Touch Payroll reporting is a smooth one for everyone.

In the next month we’re also writing to employers with 20 or more employees to let them know about their reporting obligations from 1 July 2018 so they can start planning for Single Touch Payroll.

If you’d like more information you can visit www.ato.gov.au/singletouchpayroll.

Source: John Shepherd via LinkedIn:

No Comments
Categories : Resources
Tags : , , , , , , ,

Personal Liability for Unpaid GST raised with introduction of Director Identification Number

Posted by Ram 
· 27/09/2017 
· No Comments

As part of the reforms, the Government is consulting on widening the scope of directors personal liability to include GST liabilities as part of the Director Penalty provisions.

It is likely that personal liability for unpaid GST will operate in a similar way to current Director Penalty Notices that currently affect only unpaid PAYG and Superannuation. That is;

  • If a Director does not report by lodging a BAS return within 3 months of the due date for lodgement, there will be an automatic personal liability for a Company’s unpaid GST debt as well as its unpaid PAYG and Super debts.
  • Where a Director does report within the 3 month window, they will be able to avoid personal liability for the various company tax debts provided the Company is placed into liquidation within 21 days of the date on the Director Penalty Notice.

The Government’s consulting on Personal liability for directors with unreported and unpaid Company GST debts is a significant development that all directors must be made aware of.

As we discover more, we will keep you informed.

Media release from The Hon Kelly O’Dwyer MP

(Go here to view complete, unedited release)

A comprehensive package of reforms to address illegal phoenixing

The Turnbull Government is taking action to crack down on illegal phoenixing activity that costs the economy up to $3.2 billion per year to ensure those involved face tougher penalties, the Minister for Revenue and Financial Services, the Hon Kelly O’Dwyer MP, announced today.

Phoenixing – the stripping and transfer of assets from one company to another by individuals or entities to avoid paying liabilities – has been a problem for successive governments over many decades. It hurts all Australians, including employees, creditors, competing businesses and taxpayers.

The Government’s comprehensive package of reforms will include the introduction of a Director Identification Number (DIN) and a range of other measures to both deter and penalise phoenix activity.

The DIN will identify directors with a unique number but will also interface with other government agencies and databases to allow regulators to map the relationships between individuals and entities and individuals and other people.

In addition to the DIN, the Government will consult on implementing a range of other measures to deter and disrupt the core behaviours of phoenix operators, including non-directors such as facilitators and advisers. These include:

  • Specific phoenixing offences to better enable regulators to take decisive action against those who engage in this illegal activity;
  • The establishment of a dedicated phoenix hotline to provide the public with a single point of contact for reporting illegal phoenix activity;
  • The extension of the penalties that apply to those who promote tax avoidance schemes to capture advisers who assist phoenix operators;
  • Stronger powers for the ATO to recover a security deposit from suspected phoenix operators, which can be used to cover outstanding tax liabilities, should they arise;
  • Making directors personally liable for GST liabilities as part of extended director penalty provisions;
  • Preventing directors from backdating their resignations to avoid personal liability or from resigning and leaving a company with no directors; and
  • Prohibiting related entities to the phoenix operator from appointing a liquidator.

The Government will also consult on how best to identify high risk individuals who will be subject to new preventative and early intervention tools, including:

  • a next-cab-off-the-rank system for appointing liquidators;
  • allowing the ATO to retain tax refunds; and
  • allowing the ATO to commence immediate recovery action following the issuance of a Director Penalty Notice.

Consultation on the non-DIN measures will commence in the coming weeks.

These reforms complement and build on other Government action to combat crime and fraud in the economy, including:

  • instituting the Phoenix, Black Economy and Serious Financial Crime Taskforces;
  • strengthening disciplinary rules for insolvency practitioners;
  • legislating to improve information sharing between key regulatory agencies;
  • reviewing and enhancing ASIC’s powers and enforcement tools;
  • consulting on law reform initiatives to curb the excessive drain on the taxpayer funded Fair Entitlement Guarantee scheme, which covers employees’ entitlements left outstanding as a result of failed business enterprises;
  • improving the collection of GST on property transactions from 1 July 2018; and
  • consulting on a register of beneficial ownership of companies to be made available to key regulators for enforcement purposes.

“The Government is committed to ensuring individuals who engage in illegal phoenixing activity are held to account and that the regulators are equipped to take stronger action to both deter and penalise phoenixing activity for the benefit of all Australians,” Minister O’Dwyer said.

Source  : insolvencyexperts.com.au

No Comments
Categories : Resources
Tags : , , , , , , ,

Six Ways to Curb the Costs of a Data Breach

Posted by Ram 
· 21/08/2017 
· No Comments

Six Ways to Curb the Costs of a Data Breach

You can’t lose a customer’s or an employee’s data if you don’t have it.

For those paying attention, 2017 has provided a steady and impressive litany of data breach victims, from video games to hotels to burrito shops to nearly every American voter. This is a direct continuation of the trend from 2016, in which roughly 40% of breached companies had under $100 million in revenue, and only 11% had revenue greater than $1 billion. No matter what size you are, you’re a target.

Even as CFOs are increasing spend on IT security technology to prevent incidents, we know security is never guaranteed. It’s now incumbent upon CFOs to take on cyber risk through the lens of damage mitigation, not just prevention.

CFOs, however, are often challenged when they try to understand the true cost drivers of a cyber incident. For example, in the health-care industry, we’ve seen one organization receive a regulatory fine of $750,000 for exposing 90,000 patient records and another a fine of $3.2 million for losing 2,400. This apparent irregularity of costs extends to all industries.

While the drivers of data breach costs can sometimes be unexpected, they are not random. Here are six lessons CFOs can learn about breach costs and how to keep them down:

  • You can’t lose what you don’t have. Simply put, you can’t lose a customer’s (or employee’s) data if you don’t have it. While this may seem obvious, it’s not trivial. In 2015, the health insurer Anthem and its affiliates served 69 million customers, yet when they were breached that year, they exposed 78 million records. The extra nine million records most likely come from former customers. Each of these individuals had to be notified and offered credit monitoring, driving up costs. The first lesson: You can potentially dramatically reduce your exposure by destroying records of past customers.
  • You can’t mail letters if you don’t have an address. In the event of a breach, companies are typically required to notify affected individual via old-fashioned, handwritten “snail mail.” But they can use alternative methods of notification, such as email or public announcement, if they do not have a valid mailing address. Physical, written notifications can cost up to $2 per person, and the cost quickly adds up. It may be worth asking twice what the business need for those customer addresses is and considering not capturing these addresses to reduce the exposure to notification requirements.
  • You say it wasn’t a breach, but can you prove it? Data from BakerHostetler shows that that in 44% of incidents, public notification is not required. To avoid notification, companies must prove that, even if they were attacked, no records were improperly accessed. To do so, they use systems logs, which keep track of user activity and show who accessed what records, when. Unfortunately, many companies don’t activate their systems’ logging or don’t configure them properly. Without logs, a company may be forced to assume a breach occurred because it cannot prove otherwise. CFOs don’t have to be network experts to ask, “do we have sufficient logging enabled to prove whether personal records have been accessed?”
  • You can’t stop credit card fraud after a breach. For breaches that involve credit card data, reimbursing card companies for fraudulent transactions can amount to a staggering cost, from $3-$30 or more per card, according to the BakerHostetler study. New chip cards are designed to reduce fraud, and early data show they are having the intended effect – MasterCard reported a 54% reduction in counterfeit card fraud costs at retailers who have switched to chip cards. While there are many considerations for companies transitioning to chip cards, CFOs should factor reduced damages from data breaches into their cost-benefit calculations.
  • If you’ve never done this before, get help from someone who has. Your breach response effort is not a good time to reinvent the wheel. Missteps happen fast and have serious consequences. One example is customer communications. After a breach, the pressure to communicate quickly with customers can be intense. But ineffective communications can cause panic, dramatically increasing the rate at which customers phone into call centers and sign up for credit monitoring. Credit monitoring alone can cost $5 to $30 per person. Data breach specialists, such as PR consultants or data privacy lawyers, often have seen as many as hundreds of data breaches and are highly practiced at helping you craft a genuine story that keeps confusion – and costs – down.
  • You are going to be investigated by regulators. In the wake of a breach, a company may be investigated by a number of regulatory agencies. While it’s not guaranteed to occur, it is likely, and there are simple steps you can take to prevent sensational fines if it does. To start, CFOs should be strong advocates for implementation of the security controls recommended by external auditors or by regulators themselves. The $3.2 million fine cited earlier came on a hospital’s second breach in a short span, over which they had knowingly refused to make the improvements previously recommended to them.

While these steps will help mitigate the cost of a data breach, for many CFOs, new cyber threats such as ransomware are a growing threat. Finance chiefs should be aware that one of the first steps in response to a ransomware incident is to determine whether the attack also constitutes a data breach (that is, if the ransomware attackers have access to the encrypted files). If the incident is also considered a data breach, the actions above are equally relevant.

While the costs of a data breach can vary widely on a case-by-case basis, CFOs who understand the drivers behind the expense will be better positioned to take steps needed to protect their organization when the unfortunate – but inevitable – happens.

 

No Comments
Categories : KG Business Management
Tags : , , ,

10 Keys For Executives To Manage Reputation Risk

Posted by Ram 
· 21/08/2017 
· No Comments

10 Keys For Executives To Manage Reputation Risk

With today’s electronic and social media, the news cycle reporting on the downward spiral of a once-proud organization that has suffered severe reputation impairment is not a pleasant one to watch. Unfortunately, such news events capture our attention all too frequently, leaving an indelible impression about a company’s reputation and brand image.

Applied to a business, “reputation” represents an interpretation or perception of an organization’s trustworthiness or integrity. While the truth ultimately prevails over the long term, reputation can be based on false perceptions in the near term. If accurate over time, reputation provides a barometer of how an organization is likely to respond in a given situation. However one defines reputation, everyone agrees it’s a precious enterprise asset and recognizes a reputation that has been damaged beyond repair.

We define “reputation risk” as the current and prospective impact on earnings and enterprise value arising from negative stakeholder opinion. To one author, it is “the loss of the value of a brand or the ability of an organization to persuade.”1Bottom line, reputation is fragile. What takes decades to build can be lost in a matter of days.

Below, we explore 10 essential keys for senior executives and directors to consider in managing reputation risk. We classify them in five critical areas – strategic alignment, cultural alignment, quality commitment, operational focus and organizational resiliency.

Strategic Alignment

#1: Effective board oversight: Reputation risk management starts at the top. Strong board oversight on matters of strategy, policy, execution and transparent reporting is vital to effective corporate governance, a powerful contributor to sustaining reputation and the ultimate checkpoint on CEO performance. For example, the board’s oversight of risk is important because effective identification and management of risk can identify major threats to reputation and ensure they are reduced to an acceptable level.

#2: Integration of risk into strategy setting and business planning: The board and executive management must ensure that risk is not an afterthought to strategy setting and business planning. Integrating risk with these core management processes makes it a relevant factor at the decision-making table, facilitates a strategic view to undertaking risk, and intersects risk management with performance management. In an effort to make the strategy more robust, directors and executives should understand the critical assumptions underlying the strategy, ask appropriate questions to challenge assumptions constructively and consider reasonable scenarios that could render one or more of the assumptions invalid. It is important for management to define the inherent soft spots, incongruities and opportunity and loss drivers that could impact execution of the business plan and dramatically affect performance. Also, the budgeting and forecasting processes supporting the business plan must be effective in managing liquidity risks that can threaten the organization’s viability during the planning period.

#3: Effective communications, image and brand building: Building brand recognition unique to a business is vital to market success and, when all else is working well, augments reputation. A good story is easy to tell, but every savvy board and CEO know that some companies are better at telling their story than others. Therefore, directors and executives need to understand the image and brand-building game plan. Typically, the best companies are customer-focused; understand their value proposition; develop powerful and distinctive messaging; listen well and act to improve their processes, products and customer experience continuously; establish accountability for results with metrics, measures and monitoring; work social media effectively; and passionately live up to their brand promise every day. The messages the press, analysts and others communicate about the company through print and electronic media and word of mouth are influenced by good marks on the other nine keys to managing reputation risk.

Cultural Alignment

#4: Strong corporate values, supported by appropriate performance incentives: The trickle-down notion that, if tone at the top is good, the organization’s culture must be good, doesn’t always hold. Lower-level employees often pay more attention to the messaging and behavior of their supervisory middle managers than the messaging and values communicated by the organization’s leaders. Boards need to ensure that executive management implements a strong tone at the top, a variety of effective escalatory processes, and periodic assessments of the tone in the middle and tone at the bottom. To that end, the executive team needs to ensure alignment of performance incentives with corporate values to shape and influence the corporate culture end to end:

  • Up, down and across the organization
  • Upstream with strategic suppliers
  • Downstream with channel partners

Also, executives and directors need to pay attention to the warning signs posted by the independent risk management function and in audit reports evidencing the possibility of dysfunctional behavior.

#5: Positive culture regarding compliance with laws, regulations and internal policies: Few incidents undermine reputation more than serious compliance violations with the attendant headline effect of the brand being dragged through the mud by the media. Senior executives, with board oversight, should ascertain that effective internal controls over compliance matters are implemented. Executive management must “walk the talk” with respect to compliance, meaning executives should:

  • Maintain strong compliance administration and oversight across the organization;
  • Periodically conduct a comprehensive risk assessment;
  • Refresh the compliance program for changes arising from new regulatory developments;
  • Understand the players and third-party agents in countries in which the organization does business and monitor their dealings closely;
  • Implement robust compliance training and certification;
  • Ensure that adequate documentation of compliance-related communications to and training of employees is maintained; and
  • Implement escalatory processes for reporting wrongdoing and suspected violations along with effective follow-up upon receipt of allegations meriting investigation.

In addition, effective auditing and monitoring capabilities to evaluate compliance effectiveness should be in place to ensure the above capabilities are functioning as intended.

Quality Commitment

#6: Priority focus on positive interactions with stakeholders: The executive team and board of directors should ensure that there is a passionate focus on improving stakeholder experiences. These are the accumulation of day-to-day interactions that customers, employees, suppliers, regulators, shareholders, lenders and other stakeholders have with a company as a result of its business operations, branding and marketing. If internalized and acted upon, they are a powerful driving force for improving and sustaining reputation. To illustrate, organizations that take the time to really know their customers, align company goals with customer needs and act to ensure a distinctively different experience for customers are going to be noticed in the marketplace.

#7: Quality public reporting: When public companies restate previously issued financial statements for egregious errors in the application of accounting principles or omission or misuse of facts, investors notice. For companies contemplating an initial public offering, a well-designed financial close process, effectively functioning internal financial reporting controls and an understanding of what not to say when talking with the press and the investor community are important. For established companies, vigilance in maintaining internal control over financial reporting and in deploying effective disclosure controls and procedures is important to ensure reliable public reports. The markets take quality public reporting at face value. Once a company loses the public’s confidence in its reporting, it’s tough to earn it back.

These points suggest that a strong audit committee is an imperative.

Operational Focus

#8: Strong control environment: A critical component of internal control, the control environment lays the foundation for a strong culture around achieving the organization’s operational, compliance and reporting objectives. In addition to management’s commitment to integrity and ethical values and the oversight provided by the board of directors in carrying out its governance responsibilities, as discussed earlier, the control environment consists of the organizational structure and assignment of authority and responsibility; the processes for attracting, developing and retaining competent people; and the rigor around setting the appropriate performance measures, incentives and rewards that drive accountability for desired results. Because embarrassing control breakdowns can tarnish reputation, every board should expect and demand a strong control environment.

#9: Company performance relative to competitors: Even if a company does everything else right, its reputation will suffer if its business model is not competitive. Market recognition of success is a huge validation of a company and its management team. Recognition of differentiating strategies, distinctive products and brands, proprietary systems and innovative processes are intrinsic sources of value that can translate into superior quality, time, cost, innovation, talent management and customer-fulfillment performance relative to the company’s competitors. On the other hand, significant performance gaps vis-à-vis competitors can diminish reputation if they are not addressed in a timely manner. These factors should weigh heavily on a board’s evaluation of company performance over time.

Organizational Resiliency

#10: World-class response to a high-profile crisis: Sooner or later, every company is tested. As a crisis event is a severe manifestation of risk, crisis management preparation is a natural follow-on to risk assessment, particularly for high-impact risk events with high-velocity, high-persistence and low-response readiness.

Executive management, under the board’s oversight, should ensure that the risk assessment process is designed to identify areas where preparedness is lacking and, therefore, response planning is needed. If a crisis management team doesn’t exist or isn’t prepared to address a specific sudden crisis scenario, a rapid response will be virtually impossible. Fires cannot be fought with a committee. Response teams should be supported with robust communications plans emphasizing the importance of transparency, straight talk and effective use of social media. The response team should update and test the rapid response plan periodically.

While a one-size-fits-all approach to reputation risk management does not exist, attention to how a company addresses these 10 keys will help shape its reputation over time. Reputation risk management is inextricably linked to the company’s risk management and crisis management disciplines, as well as to the alignment of strategy and culture with the enterprise’s commitment to quality and operational excellence.

From the standpoint of executive management and the board’s oversight, the 10 keys offer a framework for focusing on what’s really important when managing reputation risk.

Questions for Executive Management and Boards

The following are some suggested questions that senior executives and boards of directors may consider, based on the risks inherent in the entity’s operations:

  • Is executive management focused on the appropriate fundamentals for enhancing and preserving the enterprise’s reputation?
  • Does the risk assessment process source significant threats to the company’s reputation and identify areas requiring consideration of response plans to improve preparedness and rapid response? Is there a rapid response plan for the high-impact, high-velocity and high-persistence scenarios identified in the risk assessment process?
  • Is there adequate focus on the critical enterprise risks that could impair the enterprise’s reputation if not managed effectively? Does management apprise the board timely of significant changes in the enterprise’s risk profile? Is there a process for identifying emerging risks on a timely basis?
No Comments
Categories : KG Business Management
Tags : , , ,

4 best ways to use advanced analytics

Posted by Ram 
· 21/08/2017 
· No Comments

4 best ways to use advanced analytics

4 best ways to use advanced analytics

Predictive and prescriptive analytics help companies use the increasing amounts of data to improve their business and financial performance.

Predictive analytics use statistical analysis, data modelling, real-time scoring, and machine learning to detect trends for forecasting. Prescriptive analytics rank the trade-offs of different courses of action companies may take to reach certain objectives, for example through scenario modelling.

“Traditional analytics such as profit, cash flow, and return on assets don’t really tell the full story,” said Chris Ortega, an artificial intelligence expert and senior finance manager at Emarsys, a global software-as-a-service marketing cloud company.

Advanced analytics can increase learning and knowledge throughout the business, produce repeatable analytics to measure success or failure, and hold the business accountable to results, Ortega suggested.

While the potential benefits are compelling, most companies face challenges in implementing advanced analytics. They revolve around the classic pillars of any company – people, processes, and technologies. “Some organisations don’t have the right processes driving the data, or the people in place to identify and understand the analytics, or some don’t have the technology in place to make sense of advanced analytics,” Ortega said.

The biggest challenges of implementing analytics, according to the Financial Executives Research Foundation, include:

Getting quality data out of multiple legacy IT systems that don’t share information, in companies with processes that aren’t standardised, or in companies that rely on spreadsheets.
Overcoming cultural resistance to change.
Finding qualified data scientists who can work well with IT, understand databases, and know how to explain and meet business needs.
Best analytics practices
The increasing flow of data, generated rapidly inside and outside the company, can be overwhelming, but advanced analytics can turn the data into a competitive advantage for a company. The Financial Executives Research Foundation found that companies prefer to use advanced analytics for these four purposes:

Gain deeper insights. Analytics can help companies anticipate the effects of variables such as marketing campaigns, market conditions in a specific region, or price discounts to project sales and plan production. Analytics also provide insights into supply-chain metrics such as inventory turnover, stock values, procurement trends, warehouse performance, quality control, and compliance.

Identify root causes. To figure out what causes, for example, higher reports of damaged items among custom-ordered products, a company can use analytics to determine that improper packing and shipping of delicate materials was not the problem. Instead, the company may find that sales and return data point towards incorrect orders. To resolve the issue, the company can then retrain its sales team.

Assess market competition. Companies can use analytics to identify patterns that suggest which customers are more likely to leave, and quantify the likely effects on revenue and profit. This information is valuable in determining which investments are most likely to increase customer retention and growth.

Identify and manage risk. Analytics can help companies analyse accounts receivable to create profiles that rank customers based on the likelihood that they will pay invoices promptly. This, in turn, allows a company to customise its credit terms and communications plans to increase the efficiency of its collection efforts.

SOURCE : GCMA

No Comments
Categories : KG Business Management
Tags : , ,
← Previous Page
Next Page →

KG Business Management PTY LTD

ABN    : 80 611 481 264

(HQ) L24, Tower 3, 300 Barangaroo Ave

Sydney, NSW 2000

Phone   O + 1300 998 248

Registered Tax Agent 25961752 on TPB Register

IPA

Liability limited by a scheme approved under Professional Standards Legislation.

Privacy Information & Terms & Conditions of Use

Copyright © 2015-2025 KG Business Management Pty Ltd. All rights reserved.