The ups and downs in the economy during the novel coronavirus pandemic are causing audit committees at public companies to focus on the disclosures in their financial statements and SEC filings about the current and potential impacts of COVID-19, according to a new report from KPMG.
The report, Challenges Presented by COVID-19, found that companies are reassessing, enhancing or establishing new internal controls due to pandemic-related disruptions to their business operations. Meanwhile internal auditors are adjusting their audit plans and activities.
Evan Fitzpatrick is the CEO of Suralink. Previously, Fitzpatrick served as the chief product officer at AuditBoard, where he oversaw company strategy and product development. During his tenure at AuditBoard, he also served as SVP and general manager of the IT risk and compliance product line, overseeing product strategy and development as well as go-to-market and customer success. Prior to that, he spent 10 years at Bain Capital as an operating partner and executive, working with portfolio company management teams to drive transformational growth. Fitzpatrick has a Bachelor's of Science in Accounting from Brigham Young University.
Christina Powers is a Partner in West Monroe's Cybersecurity practice. She leads the firm's Cybersecurity Advisory for Private Equity (CAPE) program, helping private equity firms and their portfolio companies maintain visibility into cybersecurity practices and risks. Christina also conducts cybersecurity due diligence for potential acquisitions, supporting investment decisions and operational resilience.
She brings deep experience in cybersecurity strategy, with a focus on risk mitigation and identity and access management. Prior to joining West Monroe, Christina worked in Accenture's Technology Consulting Security practice. She holds a bachelor's degree in Electrical Engineering from the University of Notre Dame and has completed executive education at the Yale School of Management.
Bepi Pezzulli is an associate professor in the MBA program at University Canada West as well as a solicitor of the senior courts of England & Wales, specializing in cryptofinance.
Forecasting has become more challenging, including developing assumptions for the recoverability of goodwill and nonfinancial assets, as well as the realizability of deferred tax assets, making going-concern determinations and figuring other asset impairments more difficult, according to the report.
Nevertheless, audit committees are adapting to the new environment, as their companies allow more flexibility for remote work. Among the biggest areas of concern cited by the 114 U.S. audit committee members polled by the KPMG Audit Committee Institute are disclosures about the current and potential effects of COVID-19 (79 percent), preparation of forward-looking cash flow estimates (48 percent), and impairment of nonfinancial assets such as goodwill and other intangible assets (43 percent).
Audit committee members indicated that the remote work environment accelerated by COVID-19 has so far had little impact on the efficiency and effectiveness of their interactions with the management team and auditors.
Companies are reassessing their internal controls in response to COVID-19-related disruptions to their business operations. The most commonly cited disruptions included return-to-work plans (73 percent), IT system access and authentication for remote workers (69 percent) and cybersecurity (66 percent).
Audit committee members expect some environmental, social and governance issues to get much more attention from boards as a result of COVID-19 and recent protests against systemic racism. Survey respondents cited employee health, safety and well-being (85 percent), diversity within the company including the boardroom (53 percent) and corporate reputation (39 percent) as areas of greater focus for boards.
The pandemic has also caused many audit committees to reassess the scope of their workload agendas in addition to their risk oversight responsibilities. Most audit committee members who responded to the survey cited oversight responsibilities for a variety of COVID-related risks, including financial risks (83 percent), legal and regulatory compliance (70 percent), cybersecurity (62 percent) and data privacy (42 percent).
