Tags » COSO

Risk Management is not about Defense

From time to time, I get into trouble with the IIA.

Here’s another opportunity.

The IIA has embraced the Three Lines of Defense Model and in 2013 issued a Position Paper (identified as… 616 more words

Audit

A Call For Internal Audit Change

The IIA has released a new report calling for change. Enhancing value Through collaboration: A call to action has a lot of value, drawing on the results of IIA, KPMG, and PwC surveys and reports among others, together with insights and comments from IIA leaders and CAEs. 780 more words

Audit

COSO in policyIQ – “It was really as simple as you said it would be.”

For those of you looking to use the 2013 COSO Framework as the model for your Internal Control Environment, we want to remind you that you can use policyIQ to make quick work of capturing the COSO Principles and Points of Focus, as well as your Controls, Tests and other related documentation. 336 more words

Industry News

Understanding Governance Risks

How many boards, let alone risk officers, think about the risks to their organization if the governance by the board and top management is ineffective? 222 more words

Audit

Guidance for Directors on Disruptive Change

Every organization needs to be able to not only anticipate and address the inevitability of change that might disrupt its business, but be prepared to take advantage of the opportunities that will present themselves. 668 more words

Audit

Risk Management Challenge – The Answer

The Question

In a recent blog, I said I had asked one of the leaders of a CPA firms’ ERM consulting practice this question: 917 more words

Audit

Board Oversight of Cyber-Risks

Over the last few years, “cyber” has moved from science fiction to business reality. I am not sure why we changed from talking about information security to cyber, but I am told (yet not convinced) that there is a difference. 533 more words

Audit