Collect and analyse data to find and prevent fraud

Summary

Collect and analyse data to:

• improve processes and controls
• increase payment accuracy
• find and prevent non-compliance, fraud and corruption.

Why this countermeasure matters

Not collecting and analysis data to improve processes and payment accuracy may lead to:

• unclear or ineffective processes, leading to unidentified risks and control vulnerabilities
• unseen and unchecked fraud and corruption
• fraudsters deliberately exploiting program weaknesses
• systemic fraud and corruption.

How to put this countermeasure in place

Some ways to implement this countermeasure include:

• profiling fraud methods against program data
• conducting risk scoring using specific data points
• analysing trends and patterns in program data such as increased fraudulent behaviour via online channels
• conducting spatial analysis to identify claiming patterns and checking what is different from the standard, normal or expected such as claims for disaster relief payments outside affected areas
• comparing large data sets to identify suspicious activity, also known as data washing.

How to measure this countermeasure's effectiveness

Measure the effectiveness of this countermeasure by using the following methods:

• Consult subject matter experts on the data analytics that is performed.
• Review data analytic exercises to see if they conform to national guidelines and frameworks.
• Review the methods used to analyse the data.
• Review how data is used to analyse processes and fraud risks.
• Confirm sufficient data is collected to effectively analyse compliance, payment accuracy and potential fraud.
• Conduct a system or process walkthrough by having staff show you how data is collected and analysed.
• Review how often data analytics is performed.
• Confirm the data is:
  • reliable
  • current
  • meaningful.
• Check if and how the results are used to improve processes and controls.