Image 1 of 1
Image 1 of 1
Image 1 of 1
Image 1 of 1
ISO 37003 provides guidance for organisations to develop, implement and maintain a fraud control management system (FCMS), addressing the full lifecycle of fraud risk — from prevention and detection to response and continual improvement. Published by ISO TC309 in May 2025, it is the first globally recognised standard specifically dedicated to fraud control, complementing ISO 37001 (anti-bribery) and ISO 37301 (compliance management) to create a more complete organisational integrity framework.
This course develops participants' capability to understand, apply, and evaluate fraud control management systems against ISO 37003. Content covers the standard's scope and structure — following the ISO High-Level Structure for integration with other management systems; fraud risk assessment methodology, including collaboration with other risk management functions; the fraud control function's role and its relationship with information security, internal audit, and compliance; fraud prevention, early detection of fraud, and effective response to fraud events that have occurred or can occur in the future; internal, external, and collusive fraud typologies and how each requires different control responses; fraud detection mechanisms, red flag indicators, data analytics, and the role of speak-up channels in fraud identification; incident response — investigation, evidence preservation, escalation, and external reporting decisions; remediation and lessons learned; and how ISO 37003 connects to ISO 37001, ISO 37008 (internal investigations), ISO 37301, and ISO 31000.
Participants work through practical fraud risk assessment exercises and fraud response scenarios throughout the course. Suitable for compliance officers, internal auditors, risk managers, finance and treasury teams, legal counsel, and those responsible for fraud risk governance across any sector.
ISO 37003 provides guidance for organisations to develop, implement and maintain a fraud control management system (FCMS), addressing the full lifecycle of fraud risk — from prevention and detection to response and continual improvement. Published by ISO TC309 in May 2025, it is the first globally recognised standard specifically dedicated to fraud control, complementing ISO 37001 (anti-bribery) and ISO 37301 (compliance management) to create a more complete organisational integrity framework.
This course develops participants' capability to understand, apply, and evaluate fraud control management systems against ISO 37003. Content covers the standard's scope and structure — following the ISO High-Level Structure for integration with other management systems; fraud risk assessment methodology, including collaboration with other risk management functions; the fraud control function's role and its relationship with information security, internal audit, and compliance; fraud prevention, early detection of fraud, and effective response to fraud events that have occurred or can occur in the future; internal, external, and collusive fraud typologies and how each requires different control responses; fraud detection mechanisms, red flag indicators, data analytics, and the role of speak-up channels in fraud identification; incident response — investigation, evidence preservation, escalation, and external reporting decisions; remediation and lessons learned; and how ISO 37003 connects to ISO 37001, ISO 37008 (internal investigations), ISO 37301, and ISO 31000.
Participants work through practical fraud risk assessment exercises and fraud response scenarios throughout the course. Suitable for compliance officers, internal auditors, risk managers, finance and treasury teams, legal counsel, and those responsible for fraud risk governance across any sector.