There’s no debate about the value of using open source software (OSS) when building new business applications—cost, flexibility, quality and ease of use, to name a few—but its use comes with legal obligations and security vulnerabilities that can pose significant risks to organizations. To effectively pre-empt such risks, proactive OSS Read More
Editor’s Note: This is part two of a six-part series on the Internal Audit Value Chain, which can act as a blue print for building a successful internal audit function. Click here for the other articles in the series. Whenever it comes to talking about internal audit’s role in risk Read More
A new study from Deloitte indicates that it might be time to audit the crisis management plan. The study based on responses of 523 senior executives involved in risk, crisis management, and business continuity finds just 17 percent say their organizations have tested their crisis response plans. That’s way to Read More
A definitive guide to producing, using, and improving a risk heat map at your organization. A good risk assessment is an important part of the process of putting together a solid internal audit plan. But gathering risk information from throughout the company and organizing it into manageable and actionable material Read More
The latest Global Internal Audit Common Body of Knowledge (CBOK) Stakeholder Study report, Auditing Strategic Risks: Practical Insights from Internal Audit Leaders, reveals that nearly two-thirds (64 percent) of stakeholders want internal audit to take a more active role in strategic risks. Many chief audit executives are reporting they are Read More
Advertising spend is often a “black box” at many companies and when budgets and economic conditions are tight, it can be the first area to be cut. The correlation of ad spend to revenue is usually not well understood, while spending reductions will presumably flow directly to the bottom line. Read More
Risk and internal audit expert Norman Marks recently expounded on the idea of what are the attributes of a great risk officer. “While for some situations, especially where a key decision is needed and multiple possibilities (and multiple effects) need to be carefully analyzed, quant methods such as modeling and Read More
Audits of the extended enterprise can yield benefits, such as greater flexibility, innovation, brand confidence, and even revenue gains. There are big risks lurking in your supply chain and in interactions with the vast network of third parties with whom companies do business. A new survey by Deloitte finds that Read More
Editor’s Note: This is part one of a six part series on the internal audit value chain, which can act as a blue print for building a successful internal audit function. Click here for the other articles in the series. We’ve all heard the many clichéd ways to describe when Read More
In a hyper-partisan world, companies can easily get pulled into political battles, risking alienating customers and suffering reputational damage. It’s time to assess the risks and get it on your risk radar. For internal auditors, political risks have generally meant keeping an eye on the geo-political changes in countries where Read More
