The Institute of Internal Auditors has issued a new practice guide to help audit third-party risk management. This latest practice guide informs chief audit executives and their audit teams on how to understand and assess risks related to the use of third-party providers. Risks related to vendors, suppliers, resellers, and Read More
Some talk about opportunity as “the other side of the coin” from risk. One is good and the other bad. That is how COSO views the two words, risk and opportunity. ISO sees them differently, though, defining risk as the effect on objectives. That effect could be positive or harmful. Read More
A new survey of chief audit executives in the United Kingdom finds that more than one in three organizations has yet to do any Brexit scenario planning, despite the impending deadline for the U.K. to leave the EU. According to the Brexit Preparedness Survey, conducted by the Chartered Institute of Read More
Two leaders of BDO’s Nonprofit & Education Advisory Services practice, Ken Eye and Andrea Wilson, recently provided a list of “top 10 challenges keeping internal auditors up at night, and possible remedies to help continue the critical work.”
n the abstract, a rare event is merely a low-likelihood occurrence. In the real world, that dry coinage can translate into significant disruption and far-reaching consequences. A rare event could take the form of a large-scale calamity — a deadly storm, an epidemic, a financial crisis. For a business, the Read More
A new report out from the Institute of Internal Auditors’ research arm provides some needed insight on how internal audit can better align itself with the rapidly changing strategic direction of the company. The research, conducted by the IIA’s Internal Audit Foundation, finds that while internal audit has made some Read More
The Institute of Internal Auditors issued a new guide on insider threat programs that is designed help internal auditors understand insider threats and related risks by providing an overview of common traits of main players, key risks, and potential impacts. The guide also covers security frameworks, techniques, considerations, and resources Read More
More companies are providing compliance and ethics training for board members in light of the recent string of sexual harassment charges at several organizations and the emergence of the #MeToo campaign, according to a new report. But many companies still provide little or no specific sexual harassment training to directors, Read More
Editor’s Note: This is part two of a six-part series on the Internal Audit Value Chain, which can act as a blue print for building a successful internal audit function. Click here for the other articles in the series. Whenever it comes to talking about internal audit’s role in risk Read More
An angry Tesla employee tried to damage the company by inserting bad code into the electric car company’s manufacturing system and illegally exporting data to third parties. The case serves as a reminder to the damage that rogue employees can do and the need for internal controls to prevent such Read More
