Spreadsheet Risk Issues

It is interesting to note that the riskiness of operational spreadsheets are overlooked even by companies with high standards of risk management. Only when errors amount to actual losses do they realize that these risks have been staring them in the face all along.

Common spreadsheet risk issues

Susceptibility to trivial manual errors

Due to the fundamental structure of spreadsheets, a slight change in the formula or value in any of their inhabited cells may already affect their overall output. An

  • accidental copy-paste,
  • omission of a negative sign,
  • erroneous range selection,
  • incorrect data input or
  • unintentional deletion of a character,cell, range, column, or row

are just some of the simple errors spreadsheet users frequently encounter. Rarely are there any counter-checking controls in place in a spreadsheet-based activity and manual errors therefore easily go undetected.

Possibility of the user working on the wrong version

How do you store spreadsheet files?

Since the most common reports are usually generated on a monthly basis, users tend to store them using variations of these two configurations:

spreadsheet storage

If you notice, a user can accidentally work on the wrong version with any of these structures.

Prone to inconsistent company-wide reporting

This happens when a summary or ?final? spreadsheet is fed information by different departments coming from their own spreadsheets. Even if most of the data in their spreadsheets come from one source (the company-wide database), erroneous copy-pasting and linking, or even different interpretations of the same data can result to contradicting information in the end.

Often defenceless against unauthorised access

Some spreadsheets contain information needed by various individuals or department units in an organisation. Hence, they are often shared via email or through shared folders in a network. Now, because spreadsheets don’t normally use any access control, any user can easily open a spreadsheet file and view or modify the contents as he wishes.

Highly vulnerable to fraud

A complex spreadsheet system with zero or very minimal controls provides the perfect setting for would-be fraudsters. Hidden cells with malicious formulas and links to bogus information can go unnoticed for a long time especially if the final figures don’t deviate much from expected values.

Spreadsheet risk mitigation solutions may not suffice

Inherent complexity makes testing and logic inspection very time consuming

Deep testing can uncover possible errors hidden in spreadsheet cells and consequently mitigate risks. But spreadsheets used to support financial reporting are normally large, complex, highly-personalised and, without ample supporting documentation, understandably hard to follow.

No clear ownership of risk management responsibilities

There?s always a dilemma when an organisation starts assigning risk management responsibilities for spreadsheets. IT personnel believe users in the business side of the organisation should be responsible since they are the ones who create, edit, store, duplicate, and share the spreadsheet files. On the other hand, users believe IT should be responsible since they have always been in-charge of managing IT infrastructure, applications, and files.

To get rid of spreadsheet risks, you’ll have to get rid of spreadsheets altogether

One remedy is to have a risk management activity that involves both IT personnel and spreadsheet users. But wouldn’t you want to get rid of the complexity of having to distribute the responsibilities between the two parties instead of just one?

Learn more about Denizon’s server application solutions and how you can get rid of spreadsheet risk issues.

More Spreadsheet Blogs


Spreadsheet Risks in Banks


Top 10 Disadvantages of Spreadsheets


Disadvantages of Spreadsheets – obstacles to compliance in the Healthcare Industry


How Internal Auditors can win the War against Spreadsheet Fraud


Spreadsheet Reporting – No Room in your company in an age of Business Intelligence


Still looking for a Way to Consolidate Excel Spreadsheets?


Disadvantages of Spreadsheets


Spreadsheet woes – ill equipped for an Agile Business Environment


Spreadsheet Fraud


Spreadsheet Woes – Limited features for easy adoption of a control framework


Spreadsheet woes – Burden in SOX Compliance and other Regulations


Spreadsheet Risk Issues


Server Application Solutions – Don’t let Spreadsheets hold your Business back


Why Spreadsheets can send the pillars of Solvency II crashing down

?

Advert-Book-UK

amazon.co.uk

?

Advert-Book-USA

amazon.com

Contact Us

  • (+353)(0)1-443-3807 – IRL
  • (+44)(0)20-7193-9751 – UK

Check our similar posts

How AI Helps Improve Field Service

Its seems that with the current rate of technological innovation that these is something new every single day.  Therefore, you’re always looking forward to a new technological innovation that’s going to help you make your business operations more efficient and automated.

One of the most fascinating milestones in the field of technology is the integration of Artificial Intelligence (AI) in business. In one way or the other, AI gives a glimpse of machine supremacy that allows computers to perform tasks that were initially performed by humans. 

Are machines going to completely replace people in the workplace?

Of course, not.  Technologies like AI and Machine Learning are designed and meant to support employees in doing their tasks too boost their productivity.

AI is predominantly used to eliminate jobs and tasks that humans find boring, demotivating or monotonous. In some cases AI is also used to do jobs that are considered dangerous for humans to preform.

Previously the most common implementations for AI were all about gaming, entertainment, and advanced science,  now it’s spreading into a number of industries including the field service industry.

FieldElite – Field Service Software , can help you optimise the day-to-day operations of your business.

AI in field service management will enhance you business capabilities with:

  • Information Sharing
  • Real Time Updates
  • Automated Workflows
  • Digital Form Data Collection
  • Data Analysis

Improved Customer Service

For Service Based companies, customer retention is vital. Primarily because It can be 5-25 times more costly to acquire a new customer than it is to retain an existing ones.

Therefore customer retention should be a primary focus.? The good news is that by making use of AI you can implement services It can be 5-25 times more costly to acquire a new customer than it is to retain an existing one.

Staying on top of and ensuring you satisfactorily address and meet you customer demands and expectations can be a daunting task.? It can also be an expensive one,? especially for small field service based businesses like :

  • Heating & Plumbing Engineers
  • Electrical Contractors
  • Fire Safety Inspectors
  • HVAC Engineers
  • Facility Management
  • Building, Construction & Trade

Implementing Artificial Intelligence and Machine Learning to automate mundane and repetitive customer administration tasks will enable your staff to be free to provide additional value added tasks for your customers. Making your customers happier.

?Think about the active Chatbots. You can always get complaints directly from customers and address them right away.??

If at any point the customer is unhappy with your services, they can always raise the issue via the Chatbots. Since the bots contain necessary customer information, you can always get back to them and fix the issue at hand.?

With AI in field service, you can solve problems before they arise, or what is otherwise known as predictive maintenance,? In that way, you’ll have better customer relations because you’ll be able to address your customer concerns before they even become aware of them.

Improved Productivity

Scheduling tasks and managing the workforce isn’t a walk in the park. It goes beyond assigning tasks to your team members in the field and giving them deadlines to meet. Whether it’s a small firm or a big organisation, it’s quite difficult to organise the workforce.?

However, adopting Artificial Intelligence can iron out the difficulties most field organisations face in scheduling and managing tasks. Some years back, most firms relied on human intelligence to dispatch jobs to the right people based on given conditions. This was quite difficult, especially that it wasn’t always successful. But thanks to AI. With field service apps like FieldElite scheduling tasks and managing workforce is only a few clicks away.?

What’s more? There?s no room for error. Therefore, you’ll always match the right people for the job. Again, your team will always get tasks on time. That means, the job completion rate will go up, and hence the workforce becomes more productive.?

Predictive Maintenance

Usually, most business operations are based on ?solve the problem as it occurs?, which is just OK. However, it’s not always safe to wait until a problem occurs so that you solve it. Prevention is better than cure, and that’s why Artificial Intelligence comes handy in Field Service.

Using FieldElite Workforce Management Software , you don’t have to wait until something breaks.? Utilizing AI in field service enables you to proactively address field service needs and prevent unforeseen failures and interruptions.?

The ability to predict field service needs through field service apps like FieldElite enables you to make more accurate forecasts. In this way, resource planning is made easier, and as such, you’ll have smoothly running workflows. Again, by taking care of unforeseen circumstances in advance, you’re flexible enough to take care of the unexpected. And that means the overall productivity of your business will go up.

Job Management

Most field service jobs involve multiple stages that can take several days to complete. In addition to this, more often than not, you have to coordinate lots of equipment and contractors at the same time. All these can’t be achieved solely by human efforts. For more successful outcomes, it’s important to incorporate Artificial Intelligence in your field service operations.?

FieldElite is the field service solution that can help you manage sophisticated tasks. The app is packed with field service management tools that enable you to assign complicated tasks and keep track of your field techs. For long-cycle jobs, FieldElite app enables you to follow up on the activities going on the field to ensure they’re completed.?

With AI, there?s no room for error even when the jobs become more sophisticated.

Data Analysis

?

Field service industry involves lots of data. Some years back, organisations depended on human intelligence to analyse big data. Well, things still worked out, but as a human is to err, the outcome wasn’t always perfect. However, with Artificial Intelligence data analysis, 100% accuracy in data analysis is achievable. Field service solutions like FieldElite provide sophisticated data analytic tools that enable you to crack massive data and offer accurate solutions.?

FieldElite data analytics capabilities give you an insight into what’s not working and what needs to be improved. In that way, you can always address matters arising and take care of the loopholes.?

It’s time to go paperless with field management software like FieldElite if you?d like to make your business more profitable. Apart from improving the productivity of your workforce, incorporating AI in your business increases profitability. If you’re still doing your usual field rounds with a clipboard, it’s time to simplify your task with FieldElite app.?

Contact Us

Data Leakage Prevention – Protecting Sensitive Information

When DuPont lost $400 million in intellectual property, it wasn’t because a hacker from the other side of the world infiltrated their system. The information was simply stolen by a former employee. Alarmingly, data loss incidents are not always caused by deliberate actions.

A file containing personal information accidentally attached to an email and sent to multiple recipients; financial data stored in a USB pen drive, accidentally left in a restaurant; or bank account data of colleagues, inadvertently posted on a company website – these are also some of the everyday causes of data loss.

A report done by research company Infowatch regarding global data leaks in 2010 showed that there were actually more accidental data leaks in that year compared to intentional ones. Accidental leaks comprised 53%, while intentional leaks comprised 42% (the rest were unidentified).

But even if they ?only? happened accidentally, breach incidents like these can still be very costly. The tens of thousands of dollars that you could sometimes end up paying in civil penalties (as in the case when you lose other people?s personal information) can just be the beginning. More costly than this is the loss of customer and investor confidence. Once you lose those, you could consequently lose a considerable portion of your business.

Confidential information that may already be leaking out right under your nose

With all the data you collect, process, exchange, and store electronically every day, your IT system has surely now become a storehouse of sensitive information. Some of them, you may be even taking for granted.

But imagine what would happen if any of the following trade secrets fell into the wrong hands: marketing plans, confidential customer information, pricing data, product development strategies, business plans, supplier information, source codes, and employee salaries.

These are not the only kind of data that you should be worried about. You could also get into trouble if your sloppy IT security fails to protect employee or client personal information such as their names; social security numbers; drivers license numbers; or bank account numbers and credit/debit card numbers along with their corresponding PINs.

In some countries, you could face onerous data breach notification requirements and heavy fines when these kind of data are involved.

There are now more holes to plug

It’s not just the different varieties of sensitive electronic information that you have to worry about. Because these data can take on different forms, i.e. data-at-rest, data-in-motion, and data-at-the-endpoints, you also need to take aim at different areas in your IT system.

Sensitive information can be found ?at rest? in each of your employees? hard disks, in your servers, storage disks, and in off-site backup disks. They can also be found ?in motion? in email, instant messaging, social networking messaging, P2P file sharing, ftp, http, and so on.

That’s not all. Your highly mobile workforce may have already introduced yet another high-risk area into your system: data-at-the-endpoints. This includes USB flash-disks, laptops, portable hard disks, CDs, and even smartphones.

The main challenge of data leak prevention

Having been made aware of the various aspects of data leakage, have you already come to grips with the extent of the task at hand?

There are two major things you need to do here to prevent data leakage.

One, you need to identify what data you have that can be considered as sensitive/confidential information. Of course you have financial information and employee salaries in your files. But do you also store personally identifiable information? Do you have trade secrets that are stored in electronic form?

Two, you need to pinpoint their locations. Are they only on your hard disks and laptops? Or have they made their way to flash drives, CDs/DVDs, or portable HDDs? Are they being transmitted through email or any other file transfer media?

The reason why you need to know what your sensitive data are as well as where they are is because you would like all efforts of securing them to be as efficient and unobtrusive as possible.

Let’s say, as a way of protecting your data, you decide to implement encryption. Since encryption can consume a lot of storage space and significantly reduce performance, it may be impractical to encrypt your entire database or all your files. For the same reason, you wouldn’t want to encrypt every single email that you send.

Thus, the best way would be to encrypt only the data that really need encryption. But again, you need to know what data needs to be encrypted and where those data can be found. That alone is no simple task.

Not only will you need to deal with the data you already have, you will also have to worry about the data that will go through your systems during the course of your day-to-day transactions.

Identifying sensitive data as it enters or leaves your system, goes through your network, or gets stored in your file system or database, and then applying the necessary security actions should be done automatically and intelligently. Otherwise, you could end up spending on a lot of man-hours or, worse, wasting them on a lot of false positives and negatives.

Contact Us

  • (+353)(0)1-443-3807 – IRL
  • (+44)(0)20-7193-9751 – UK
How DevOps oils the Value Chain

DevOps ? a clipped compound of development and operations – is a way of working whereby software developers are in a team with project beneficiaries. A client centred approach extends the project plan to include the life cycle of the product or service, for which the software is developed.

We can then no longer speak of a software project for say Joe?s Accounting App. The software has no intrinsic value of its own. It follows that the software engineers are building an accounting app product. This is a small, crucially important distinction, because they are no longer in a silo with different business interests.

To take the analogy further, the developers are no longer contractors possibly trying to stretch out the process. They are members of Joe?s accounting company, and they are just as keen to get to market fast as Joe is to start earning income. DevOps uses this synergy to achieve the overarching business goal.

A Brief Introduction to OpsDev

You can skip this section if you already read this article. If not then you need to know that DevOps is a culture, not a working method. The three ?members? are the software developers, the beneficiaries, and a quality control mechanism. The developers break their task into smaller chunks instead of releasing the code to quality control as a single batch. As a result, the review process happens contiguously along these simplified lines.

Code QC Test ? ? ?
? Code QC Test ? ?
? ? Code QC Test ?
? ? ? Code QC Test
Colour Key Developers Quality Control Beneficiary

This is a marked improvement over the previously cumbersome method below.

Write the Code ? Test the Code ? Use the Code
? Evaluate, Schedule for Next Review ?

Working quickly and releasing smaller amounts of code means the OpsDev team learns quickly from mistakes, and should come to product release ahead of any competitor using the older, more linear method. The shared method of working releases huge resources in terms of user experience and in-line QC practices. Instead of being in a silo working on its own, development finds it has a richer brief and more support from being ?on the same side of the organisation?.

The Key Role that Application Program Interfaces Play

Application Program Interfaces, or API?s for short, are building blocks for software applications. Using proprietary software-bridges speeds this process up. A good example would be the PayPal applications that we find on so many websites today. API?s are not just for commercial sites, and they can reduce costs and improve efficiency considerably.

The following diagram courtesy of TIBCO illustrates how second-party applications integrate with PayPal architecture via an API fa?ade.

Working quickly and releasing smaller amounts of code means the OpsDev team learns quickly from mistakes, and should come to product release ahead of any competitor using the older, more linear method. The shared method of working releases huge resources in terms of user experience and in-line QC practices. Instead of being in a silo working on its own, development finds it has a richer brief and more support from being ?on the same side of the organisation?.

imgd2.jpg

The DevOps Revolution Continues ?

We close with some important insights from an interview with Jim Stoneham. He was general manager of the Yahoo Communities business unit, at the time Flickr became a part. ?Flickr was a codebase,? Jim recalls, ?that evolved to operate at high scale over 7 years – and continuing to scale while adding and refining features was no small challenge. During this transition, it was a huge advantage that there was such an integrated dev and ops team?

The ?maturity model? as engineers refer to DevOps status currently, enables developers to learn faster, and deploy upgrades ahead of their competitors. This means the client reaches and exceeds break-even sooner. DevOps lubricates the value chain so companies add value to a product faster. One reason it worked so well with Flickr, was the immense trust between Dev and Ops, and that is a lesson we should learn.

?We transformed from a team of employees to a team of owners. When you move at that speed, and are looking at the numbers and the results daily, your investment level radically changes. This just can’t happen in teams that release quarterly, and it’s difficult even with monthly cycles.? (Jim Stoneham)

Contact Us

  • (+353)(0)1-443-3807 – IRL
  • (+44)(0)20-7193-9751 – UK

Ready to work with Denizon?

Contact Us Today