| |
Welcome to the 2009 Regence Internal Fraud Risk Assessment!
As leaders, we share the responsibility to protect our members’ assets and Regence’s assets. Our financial statement audits and NAIC regulations require us to periodically assess the risk of fraud and analyze how we are mitigating those risks. That’s the purpose of this assessment: to help us identify ways in which we may be vulnerable.
To start your wheels turning, we’re giving you an example of the kind of internal loss that companies can suffer. In light of your knowledge of your processes, systems, and people, please consider whether anything like that could happen in your area. If so, please tell us how.
This isn’t a conventional survey. It’s not anonymous, as that would defeat the purpose of identifying where we may be vulnerable. And by and large, we’re asking you to write out short answers instead of picking multiple choice selections. But we estimate that the survey will take no more than 10 minutes, and if you’d like to talk to one of us, there’s an option for you to let us know.
Thank you for everything you do to protect Regence and its members. We appreciate you.
The Internal Fraud Prevention and Corporate Integrity Team
Bob Goetz, Regence Information Technology Services
Alex Johnson, External Audit
Rosemary Reeve, Legal Special Services
Randy Romrell, Ethics & Compliance
Stacy Simpson, Financial Accounting Services
Mark Stimpson, Human Resources
Anjie Vannoy, Internal Audit |
| |
|
|
|
| |
What does our Code of Business Conduct say about preventing fraud?
Fraud
Fraud occurs when someone uses deception to obtain an advantage or avoid a loss or obligation. It can happen inside or outside the company, and it can involve anyone: members, providers, employees, contractors, groups, agents, or suppliers.
Examples:
Employees, contractors, or suppliers who misrepresent the status of a project.
Providers who bill inappropriately.
Employees who obtain confidential information about members or colleagues to use for unauthorized purposes.
When fraudulent behavior impacts Regence, we need to know about it so we can take steps to address it. Report external issues (such as providers who are billing inappropriately) to the External Audit and Investigation Department. Report internal fraud issues to Ethics and Compliance. If you are not sure whom to call, contact an ethics and compliance officer.
|
| |
|
|
|
| |
One Example of Potential Fraud:
Identity Theft
Nearly three million members and more than 6,000 employees have entrusted us with information that could be used to impersonate them for gain. Examples of potential problems include:
o Using someone else’s personal information in a false credit card application.
o Receiving medical services or supplies under someone else’s number.
o Using Regence’s credentials to obtain goods or services.
|
| |
|
|
|
| |
| Does anyone in your division/department have access to information that could be used to impersonate anyone else for personal gain? |
| |
|
|
|
|
| |
| What information could be used? | | |
|
|
|
|
|
|
|
|
| |
| Who has access to this information? (By name or by position) | | |
|
|
|
|
| |
| What red flags are in place to alert you if someone was misusing this information? | | |
|
|
|
|
| |
| What additional red flags could be implemented to identify misuse of this information? | | |
|
|
|
|
| |
| What steps have you taken to prevent or mitigate the opportunity for misuse of this information? | | |
|
|
|
|
| |
| What additional steps could be taken to prevent or mitigate the opportunity for misuse of this information? | | |
|
|
|
|
| |
| If you are aware of identity theft vulnerabilities outside your division, please let us know. | | |
|
|
|
|
|
|
|
|
| |
| Other than the ones already discussed, are you aware of any current risk of internal fraud? |
| |
|
|
|
|
| |
| Other than the ones already discussed, are you aware of any current or past situation in which an employee or contractor tried to obtain an advantage or avoid a loss or obligation by means of deception? |
| |
|
|
|
|
| |
| Do you know how to report a concern about internal fraud? |
| |
|
|
|
|
| |
| How would you report a concern about internal fraud? |
| |
|
|
|
|
|
| |
| Would you like to discuss an answer to any of the questions above? |
| |
|
|
|
|
|
|
|
|
| |
| At what number should we contact you? | | |
|
|
|
|
| |
| What is the best time for us to contact you? (Please include AM or PM, and time zone) | | |
|
|
|
|
| |
| What would you like to discuss? | | |
|
|
|
|
Loading...
