News Image

Fraud Risk Management In The Public Sector

A Strategic Approach For Accountants and Auditors
YOONG EE CHUAN
BY YOONG EE CHUAN
18 Mar 2025

TAKEAWAYS

  • As early fraud detection saves costs, organisations can strengthen internal controls through whistleblower programmes, data analytics, and red flag monitoring, to identify fraud risks promptly.
  • Strengthening the segregation of duties, oversight mechanisms, and ethical culture will reduce fraud opportunities.
  • Technology can be used to help mitigate risks and enhance fraud detection

Fraud is a persistent challenge in the public sector, draining valuable resources and undermining public trust. While fraud risk management is well understood in theory, effective detection and prevention remain complex in practice. Accountants, auditors, and financial professionals play a pivotal role in strengthening fraud risk controls, leveraging technology, and fostering a culture of integrity.

This article explores key fraud detection mechanisms and preventive strategies, drawing on real-world public sector cases to illustrate practical takeaways for finance professionals

UNDERSTANDING PUBLIC SECTOR FRAUD RISKS

Public sector fraud encompasses a range of deceptive practices including procurement fraud, payroll fraud, and financial misrepresentation. The Association of Certified Fraud Examiners (ACFE) categorises occupational fraud into three primary types:

  1. Asset misappropriation: The most common form of fraud, including false invoicing, ghost employees, and misuse of government assets;
  2. Corruption: Bribery, kickbacks, and conflicts of interest involving public officials; and
  3. Financial statement fraud: Misstating financial data to conceal mismanagement, inflating results, or hiding unauthorised expenditures.

Several high-profile cases in Singapore have highlighted these risks. For instance, procurement fraud in statutory boards such as the Singapore Land Authority (SLA) and falsified financial transactions in social assistance programmes serve as cautionary examples of systemic weaknesses in controls.

The Report of the Auditor-General also highlights, on occasion, “irregularities” such as potential fabrication of documentary evidence produced for audit, which typically warrant the government agency to conduct further investigations. Some of these investigations have led to the filing of police reports resulting in the prosecution and consequent criminal conviction of the wrongdoers.

THE ROLE OF ACCOUNTANTS AND AUDITORS IN FRAUD DETECTION

While internal controls provide the first line of defence, early fraud detection is crucial in mitigating financial losses. Here are three key fraud detection tools:

1) Whistleblower mechanisms: The power of internal reporting

Studies show that most fraud cases are detected through tips from employees or third parties rather than internal audits. Yet, an ineffective whistleblower policy can discourage reporting due to fear of retaliation or inaction.

Key best practices:

  • Ensure anonymity and protection for whistleblowers;
  • Publicise whistleblowing channels within the organisation and to external stakeholders;
  • Establish independent oversight to investigate reports without bias.

According to ACFE’s 2024 Report to the Nations, organisations with a robust whistleblowing system experienced 50% lower fraud losses than those without one.

From my own experience in charity governance, it was whistleblowing that led to the investigation of wrongdoing in a charity. Most of the actionable tips that led to either internal audit, compliance or regulatory authorities conducting investigations were only made possible when whistleblowers came forward with specific information and, at times, documents to substantiate the allegations of wrongdoing.

2) Data analytics: Identifying fraud patterns

Advancements in data analytics have transformed fraud detection, allowing auditors to detect anomalies in large datasets. Techniques include:

  • Benford’s Law analysis: Identifying unnatural number patterns in financial records;
  • Trend analysis: Monitoring unusual spikes in payments just below approval thresholds;
  • Machine learning algorithms: Identifying suspicious transactions based on historical fraud cases.

For example, Singapore’s Auditor-General’s Office (AGO) has used data analytics to uncover irregularities in procurement processes, revealing inflated invoicing and unauthorised disbursements.

As a former Head of Internal Audit in a government agency, I also used data analytics tools (formerly known as computer-assisted audit tools) such as Caseware IDEA or even Microsoft Excel to analyse data on procurement, expense claims, fixed assets and investments for the various internal audits that were carried out in the past.

3) Red flags and behavioural indicators

Understanding behavioural cues is as important as financial analysis. Common red flags include:

  • Reluctance to take leave: Employees who refuse time off may be concealing fraudulent activities;
  • Living beyond their means: Unexplained wealth or extravagant spending disproportionate to salary;
  • Excessive secrecy or control: Individuals who resist scrutiny over financial records or operations.

Organisations should train employees and auditors to recognise these signs and escalate concerns appropriately.

PREVENTING FRAUD: STRENGTHENING INTERNAL CONTROLS

While detection is critical, prevention remains the ultimate goal. Here are three essential fraud prevention strategies

1) Strengthening internal controls through segregation of duties

One of the simplest yet most effective controls is segregation of duties (SoD), ensuring that no single individual has control over an entire financial transaction. The four key functions that should be separated are:

  1. Authorising transactions,
  2. Executing transactions,
  3. Recording transactions,
  4. Safeguarding assets.

A lack of segregation was a key weakness in past fraud cases, such as procurement fraud in public agencies, where a single officer could both approve and process payments.

2) Tone at the top: Building a culture of integrity

Leadership commitment to ethical conduct sets the foundation for fraud prevention. The “Tone at the Top” framework emphasises:

  • Clear codes of ethics and conflicts of interest policies;
  • Mandatory fraud awareness training for all employees;
  • Regular fraud risk assessments to identify control weaknesses.

A strong ethical culture discourages fraudulent behaviour by increasing the perception of detection.

3) Enhancing oversight and compliance mechanisms

Public sector entities should adopt global best practices in fraud risk management, such as:

  • The COSO Fraud Risk Management Framework: A structured approach to fraud risk governance;
  • Periodic forensic audits: Beyond routine financial audits, forensic audits help detect hidden fraud risks;
  • Proactive monitoring: Real-time transaction monitoring to flag suspicious activities.

KEY TAKEAWAYS FOR ISCA MEMBERS

Given that early fraud detection saves costs, it is important to implement whistleblower programmes, data analytics, and red flag monitoring to identify fraud risks promptly.

Prevention is stronger than detection. So, strengthen the segregation of duties, oversight mechanisms, and ethical culture to reduce fraud opportunities.

Technology is an ally in fraud risk management. Leverage AI-driven analytics, forensic audits, and real-time transaction monitoring to enhance fraud detection.

As fraudsters become more sophisticated, all ISCA members, accountants and auditors must evolve our approach, combining traditional controls with modern technology and behavioural insights. A proactive fraud risk management strategy is no longer optional, it is essential for safeguarding public trust and financial integrity.

Yoong Ee Chuan, FCA (Singapore), CISA, CISM, CIA, ISCA(FFP), CFE, ASEAN CPA, is Founder and Managing Director, RxE Integrity Advisory.

Loading spinner

© 2024 Institute of Singapore Chartered Accountants

×