Recent events within Australia and internationally suggest a strong nexus between fraud and corruption within business entities on the one hand and fundamental governance failure at senior levels on the other. Controlling the risk of fraud and corruption is a governance issue which must be given due attention by the controllers of all business entities. Increasingly, major fraud incidents or endemic corruption within an entity will be viewed as indicative of a failure of the business entity's controllers to discharge these more prescribed governance obligations (AS 8001-2008). According to ACFE, we are in the midst of a 'deception epidemic'. A Global Fraud Study (2016) concluded that fraud has a far greater impact on small & medium businesses who often have limited security resources.