What the CFO and the CAE Should Expect from Each Other

Posted on Feb 28, 2012

I have had the privilege of writing pieces each month for CFO.com. Two related pieces discussed the relationship and mutual expectations of the CFO and CAE.

continue reading...

Risk, Internal Audit, and Parachutes

Posted on Feb 23, 2012

Have a look at the picture of a soldier having his parachute inspected. Before he jumps, it is critical that he understands and is ready to handle all likely events and situations — the uncertainties or risks he might face. It is also critical that all of his equipment functions exactly as he needs it.

continue reading...

Risk and Control Issues Commonly Overlooked by Internal Audit - 8: Data Warehouses and Business Intelligence/Analytics

Posted on Feb 18, 2012

This post includes a sneak preview from the soon-to-be-released update of my SOX book for management. It will be an IIA Research Foundation publication and I will share details later. 

continue reading...

How Being Human Affects our Assessment, Evaluation, and Response to Risks

Posted on Feb 15, 2012

I have been reading with great interest a piece by Lloyd’s, Behavior: Bear, Bull or Lemming (shared by David Hancock).

continue reading...

Comments on the COSO Draft Update of the Internal Controls Framework

Posted on Feb 11, 2012

COSO has released a draft update of its excellent 1992 Internal Control–Integrated Framework as an exposure draft for comment. 

continue reading...

The Perfect Internal Auditor

Posted on Feb 7, 2012

Many years ago, I read a description of the "perfect internal auditor." It was so great I kept it. 

continue reading...

Time for a Change in Our Attitude Around Risk

Posted on Feb 3, 2012

This morning, I read a piece in ComputerWeekly that made me cheer.

Risk and audit professionals, as a rule, have never seen an (adverse) risk they didn’t want to stamp on and kill. 

continue reading...