Layers of defense should exist in an organization’s systems, with the most sensitive information protected by the most layers.
Risk management and internal control
Internal auditors can play a pivotal role in managing technology risks ranging from cybersecurity to social media. The risks are ranked in a new report that shows how internal audit can help manage them.
Audits of the complex area of internal control over financial reporting (ICFR) may be improving, Jeanette Franzel, a member of the Public Company Accounting Oversight Board, said in a speech.
A “three lines of defense” model can help organizations establish responsibility for duties under the COSO framework.
Internal auditors may need to change their approach to audit planning to keep up with unexpected and fast-paced changes in risks, a new global survey shows.
Find out how internal auditors can maintain their objectivity in the face of pressure to omit or modify an important audit finding.
Olivia Kirtley, CPA, CGMA, an accomplished corporate director with almost 20 years of experience serving on boards, talks about strategic, risk, and compliance issues that keep board members up at night.
Mark Pearson, who works in supply chain forensics for Deloitte, explains how companies can probe one of the top risks—third-party expense categories—and avoid overpaying.
As businesses transform in response to market shifts, internal audit functions may need to provide more value-added services and proactive advice to management in the coming years.
Businesses are placing increasing emphasis on ethics and compliance, and the area is set to gain further importance in the near future.
Senior finance executives say their organizations are often not in alignment about the need for structured enterprise risk management, a survey on behalf of the AICPA shows.
Some familiar risks are top-of-mind for executives and board members, and new concerns are emerging as well, according to survey results released Monday.
Here’s how companies with outsourced service providers can meet the requirements of the updated internal control framework of the Committee of Sponsoring Organizations of the Treadway Commission (COSO).
Accountants can leverage the training and experience they have in managing compliance risks to become strategic risk advisers for their organizations.
Risk concerns have put a strain on audit committees, who say they need more time and expertise to exercise proper oversight.
Although web-connected products and the “internet of things” provide opportunities for transformative growth, they also may carry substantial risks.
Six factors are critical for organizations in implementing and maintaining ERM.
A well-known framework for risk management is scheduled for another update. The Committee of Sponsoring Organizations of the Treadway Commission (COSO) announced Tuesday that it is undertaking a project to update its Enterprise Risk Management—Integrated Framework, which debuted in 2004. Organizations use the framework to help them manage uncertainty, consider
Corporate board members of U.S. public companies are keenly focused on risk, but many are not comfortable with their understanding of which risks the companies are willing to take, according to new PwC survey results released Tuesday. In the interest of reducing fraud risk, an increasing percentage of board members
In a business environment where a damaging Twitter post can have disastrous effects on a company’s financials, reputational risk remains the top nonfinancial concern for corporate directors, according to a new survey report. Another risk rooted in technology—cybersecurity and information technology risk—is rising quickly among directors’ concerns, according to the