The following 126 items are listed by Content Data.
Newsletters
Time to Take a Fresh Look at ERM
This article discusses key questions organizations should ask themselves when implementing ERM, outlines critical aspect...
Subscriber Content
Checklists & Questionnaires
IT Risk Assessment Questionnaire
This tool includes risk assessment questions for both IT management and executive IT management.
Subscriber Content
Policies & Procedures
Sustainability Policy
This sample policy helps to ensure that principles of sustainability are incorporated into actions carried out by the co...
Subscriber Content
Methodologies & Models
Protiviti Risk Model
The Protiviti Risk Model is a comprehensive organizing framework for defining and understanding potential business risks...
Subscriber Content
Guides
Enterprise Risk Assessment Methodology for Internal Audit Plan Development Guide
This guide presents a detailed approach to enterprise risk assessment methodology for internal audit plan development.
Subscriber Content
Methodologies & Models
Process Classification Scheme (PCS)
The Process Classification Scheme (PCS) is a framework used by Protiviti that can be utilized to organize information ab...
Subscriber Content
Benchmarking Tools
External Access Risk Key Performance Indicators (KPIs)
This tool outlines the business risks associated with inappropriate access to systems, data or information and suggests ...
Subscriber Content
Audit Programs
Product Lifecycle Risk Audit Work Program
This sample work program reviews the risks in the planning and initiation, requirements analysis, design, development, t...
Subscriber Content
Audit Programs
Risk Assessment Audit Work Program
This sample work program assesses and validates key controls in place for the risk assessment component of the COSO fram...
Subscriber Content
Newsletters
Positioning Independent Risk Management to Succeed
This issue of Board Perspectives discusses six factors for positioning the CRO (and independent risk management) to succ...
Subscriber Content
Memos
Sarbanes-Oxley Act Project Approach Memo
The purpose of this memo is to document management’s approach for the current financial year's Sarbanes-Oxley compliance...
Subscriber Content
Newsletters
Ten Principles for Risk Oversight Revisited
While risk oversight has always been an important part of the board’s agenda, the disruptive financial crisis taught eve...
Subscriber Content