Lessons from Winnie the Pooh on Risk Assessments

Here is information from a recent article I wrote for Compliance Week entitled: “Lessons from Winnie The Pooh on Risk Assessments — Using an integrated GRC approach to risk assessments and risk-based audit planning.”   Lessons from Winnie The Pooh on Risk Assessments Using an integrated GRC approach to risk assessments and risk-based audit planning…

Continue Reading →

Questions about Risk Based Internal Audit – July 2014

I have a couple of exciting things to share with you. First, I am close to finishing my new book on Risk Based Internal Audit, and anticipate it will be ready for purchase in the next couple of months. Stay tuned for the announcement when it is ready. A great way to make sure you…

Continue Reading →

Is My Company Compliant with the Revised Federal Sentencing Guidelines?

Not all organizations are required to have a governance, risk management and compliance (GRC) system that incorporates the Sarbanes-Oxley Act (SOX) or Dodd-Frank, but every organization should conform with the Federal Sentencing Guidelines for Organizations (FSGO). Not having an ethics and compliance program that conforms to the FSGO can cost your organization significantly more when…

Continue Reading →

Is there value in getting professional certifications?

Companies value professionals who proactively seek opportunities to develop their skills and expertise. One of the best ways for individuals to demonstrate their commitment to career growth is by pursuing industry-recognized certifications. Earning professional designations can provide numerous benefits, including improved career prospects and enhanced earning power. According to the Robert Half 2008 Salary Guide,…

Continue Reading →

Can Internal Audit Rely on Risk Management’s Risk Assessment for Audit Plan?

I have been asked the following questions about relying on a risk assessment performed by the risk management function.  Here are the questions and answers: QUESTION #1. Who conducts the annual risk assessment used for establishing a risk-based plan to determine priorities of the internal audit activity? and QUESTION #2. Is this a risk assessment…

Continue Reading →

What GRC certifications are available?

OCEG is the largest and most respected GRC professional organization in the world, with over 40,000 member.  Through its sister organization GRC Certify, GRC professionals can obtain individual certifications.  This is an amazing opportunity to prove your GRC competence and add another designation to your resume. There are currently two certifications offered: GRC Professional, and…

Continue Reading →

Do you need GRC training in 2014?

Plan your CPE for 2014 to include getting a GRC Professional certification.  By attending a GRC Professional seminar you not only get CPE and valuable information to help you in your GRC capability, but you also learn what you need to successfully pass the GRC Professional certification exam.  At the end of this seminar you…

Continue Reading →

Page 4 of 4