Did you know OCEG is updating its GRC Capability Model to version 3.0 in September 2015? The updates are meant to help simplify the model and make it more consistent with being able to use the GRC Capability Model v3.0 for your whole GRC capability, or any individual capability within the GRC capability. It is …
Continue reading “OCEG is Updating the GRC Capability Model to v3.0 in September 2015”
Internal auditors are told they need to develop a risk-based audit plan, but many internal audit activities simply risk rank their audit universe and believe that is risk-based auditing. Another common mistake is to identify risks to audit without ever determining if they are relevant to the organization’s objectives. Risk-based internal auditing is really about …
Continue reading “NEW Risk-Based Internal Auditing Book Published”
If you are a professional working the area of governance, risk management, compliance, internal audit, or any other function that is an integral part of a GRC capability, you owe it to yourself to get personally certified as a GRC Professional. It is actually much easier to get certified than you might expect. OCEG, the …
In this course about risk-based internal audit you will learn … What risk-based internal auditing is and what its not. The Risk-Based Internal Audit Model – only available in this course. Risk management basics. How to transform your internal audit activity to a truly risk-based function. How to develop a risk-based internal audit plan. Get …
Here is information from a recent article I wrote for Compliance Week entitled: “Lessons from Winnie The Pooh on Risk Assessments — Using an integrated GRC approach to risk assessments and risk-based audit planning.” Lessons from Winnie The Pooh on Risk Assessments Using an integrated GRC approach to risk assessments and risk-based audit planning by …
Continue reading “Lessons from Winnie the Pooh on Risk Assessments”
