antares RiMIS® ICS
Thanks to the complete documentation of process controls and workflow-supported monitoring, antares RiMIS® ICS uses effective procedures to ensure that your business processes are transparent, secure and run according to defined (legal) regulations. The procedure includes all corporate bodies, including the supervisory board and the management.
The main objectives of the ICS include monitoring and preventing risks, ensuring the functionality and efficiency in business processes as well as the reliability of operational information and asset protection. Comprehensive control measures and complete documentation prevent material misstatements in financial reporting and ensure complete, correct accounting records. To achieve these goals, antares RiMIS® ICS relies on various principles, such as transparency and minimum information.
Internal control system
Systematic control workflow
Authorisation concept
Sorting the pending controls
Convenient report portfolio generator
Functions of the ICS
- Efficient risk assessment procedures and systematic control workflow.
- Consideration of the four ICS principles.
- Effective mechanisms to review controls for effectiveness, traceability and achievement of objectives.
- Possibility to connect further analysis, reporting and planning modules and easy combination with extension modules like antares RiMIS® ISMS (information security), antares RiMIS® DSMS (data protection) or antares CIRS (anonymous reporting system).
- Secure authorisation concept, internal auditing and simple reporting.
- Options: On-premise or cloud-based solution.
Extract from our references
Process management at a glance
Control workflow
Our software provides a systematic workflow of the controls as well as the presentation of the control activities to be carried out on a filterable and searchable overview screen. The monitoring system thus ensures completeness, transparency and clarity. The tool allows the definition of control owners, whereby different owners per control can be defined per organisation, legal entity and process.
Documentation
The execution of control activities is automatically reported to the control manager. The release process can be individually specified and the four-eye principle can be designed with several levels. In this way, the control objectives are kept in mind.
Effectiveness
Controls are reviewed at regular intervals for their effectiveness, traceability and fulfilment of objectives. The periodic review provides information on whether the controls are suitable to have a positive effect on the control objectives and to counteract the deposited risk or whether measures are necessary to adjust a control. In short, as soon as control objectives are not achieved, the periodic reviews help to realign control measures.
Monitoring
Already in the standard functional scope of the control system, evaluations of the status of controls within the processes, aggregated views from a process, legal and organisational perspective with drill-down are possible. In addition, the control measures can be sorted according to their effectiveness.
Integration
The internal control system is available as an integral part of our GRC software solution antares RiMIS®. Due to the web capability, any number of employees access the system decentrally, participate permanently in the project and obtain information independently. The basis for setting up a more comprehensive risk management system with an internal control system is the COSO ERM framework (Enterprise Risk Management).
Reporting
With the convenient report portfolio generator of the control system, the user has the possibility to create independent report portfolios as well as to integrate the ICS area into the risk management report of our software solution for opportunity and risk management antares RiMIS®.
FAQ
Can the controls be flexibly assigned to the company/organisational structure?
The controls are managed in the software as master data and can be "distributed" within the company as desired and flexibly.
Can an individual process structure be stored in the system?
Yes. In addition to various possibilities of structural assignment, there is also an assignment to the process. The structure can be built up multi-dimensionally.
Can a distinction be made regarding the intensity of control within the company?
Yes, controls can be both weakened and strengthened selectively.
Can mandatory controls be defined?
Yes, the control type can be used to define mandatory, target and optional controls.
Is there a reminder function for carrying out the checks.
Yes, reminders can be sent directly in the application as well as by email.
Is there also a link from controls to potential risks?
Yes, there is a two-way allocation option (control to risk and risk to control).
Download
An effective internal control system (ICS) helps you to address risks with controls so that acts of abuse and damage to companies are prevented. For more information on the ICS module and its workflow, see the white paper.
Arrange initial meeting now
Jochen Brühl | Managing director
Select your desired option and arrange a non-binding and free consultation with our managing director Jochen Brühl.
We will answer your questions and make sure that you get to know our software in detail. We will be happy to show you the solution to your individual requirements. Afterwards, if you wish, we will present the performance spectrum of our software to you, live and directly, via web session or personally at your premises.
Information on data protection
Further contents
antares RiMIS® LkSG software
As of 01.01.23, corporate responsibility for compliance with human rights along supply chains is to be regulated for the first time. The new Supply Chain Due Diligence Act (LkSG) is closely linked in organizational terms to corporate risk management.
Efficient risk management by means of simulation
Simulations are a suitable tool to aggregate quantified risks and opportunities. antares RiMIS® offers the possibility to simulate risks and opportunities with a special distribution adapted to practical considerations in addition to the usual distribution functions.
Monte carlo simulation
Companies face a variety of constantly changing risks every day. Summarize your risks using probability distributions and visualize the results. Identify risk scenarios and initiate countermeasures.
Risk aggregation and quantification according to IDW PS 981 & PS 340
Only those who know their specific challenges and are well prepared for crisis situations can take advantage of potential opportunities. Discover our practical workshop for risk managers and controllers now! The workshop contents take into account the IDW requirement.
Introduction of risk management software in times of Corona
An interview with the controlling manager of Marquard & Bahls AG about the implementation of antares RiMIS® in a challenging time. The company employs around 6,700 people worldwide and has subsidiaries in more than 30 countries.
IDW auditing standard 340
The Institute of Public Auditors in Germany (Institut der Wirtschaftsprüfer, IDW) acts in the interest of German auditors and sets standards for risk management in IDW PS 340. Due to a new regulation, companies are now facing new challenges in practical implementation.
Expert estimates in risk analysis
What is meant by "risk analysis", which distribution types are available for modeling risks and in which cases are expert estimates needed? We address these and many other topics in "Expert Estimates in Risk Analysis".
Risk management system
Make sound business decisions with our GRC solution antares RiMIS®.
Risk management process at a glance
Avoid risks and seize opportunities. Successful corporate governance with an effective risk management process. Integrate risk management system.
The evolution compliance
The term "compliance" describes the observance of legal regulations and guidelines by companies. To meet these requirements, a systematic, company-wide compliance management system must document, implement and maintain.
Compliance and mid tier
What constitutes the topic of compliance? Is this topic only relevant for "global players"? These and other questions are answered by the expert Prof. Dr. Roland Franz Erben (Professor of Business Administration at the Stuttgart University of Applied Sciences (HfT)) in an exciting guest article.
Information security management according to TISAX®
The TISAX® standard for information security has been in force since 2017. Suppliers and manufacturers have been requiring this certification from their partners ever since. We help to permanently manage, control, maintain and continuously improve information security.
Certification according to ISO/IEC 27001
Through ISO 27001 certification of the existing information security management system (ISMS), companies or scopes demonstrate that information security requirements and data protection measures have been met and implemented.
Management information system
Successful corporate management and secure controlling with a management information system: Analyze and evaluate data and visualize it in the form of reporting. An indispensable basis for the continuous supply of information with decision-relevant data.
GDPR checklist
In May 2018, the new General Data Protection Regulation (GDPR) became binding in the European Union. These requirements pose new challenges for companies of all industries and sizes in handling data. Violation of these principles can lead to heavy fines.
Whistleblower system
Whistleblowers or so-called whistleblowers publish confidential information or documents. As a result of the new Whistleblower Protection Act (HinSchG) and the preceding EU directives, there is an express obligation to set up a reporting office to protect these persons.
