Risk Management

A properly functioning risk management process can help the organization protect and grow their value to their stakeholders. Managing risk with excellence supports better decision making. CAEs face a myriad of risks — operational, technological, and reputational, just to name a few. Third-party risk is also on the rise. What role can internal audit play in a vendor management program? Tony Bailey from Umpqua Bank explains how auditors can serve as the glue that binds risk management across third parties. Watch now.

Featured Resources

https://www.theiia.org/centers/aec/PublishingImages/topics/small1.jpg

Defining Alignment in a Dynamic Risk Landscape

By leveraging insights from this year’s Pulse, CAEs can better inform stakeholders about potential underperformance in four key risk areas and take advantage of recommended strategies for identifying and addressing any areas of weakness or misalignment that may exist in their organizations. By having the discussion with the audit committee, concerns are put on the record for action. Download the report.

http://contentz.mkt5790.com/lp/2842/194549/IIARF%20CBOK%20Who%20Owns%20Risk%202015%20Oct%20Update.pdf

https://www.theiia.org/centers/aec/PublishingImages/topics/risk1.jpg

Solutions for Risk Management Challenges

AEC thought leadership summarizing a discussion amongst CAEs about some of the obstacles and the ensuing solutions that have served them well as they deal with heightened expectations and risk management in today’s evolving world. Read the Knowledge Brief.

https://www.theiia.org/centers/aec/Pages/solutions-for-risk-management-challenges.aspx

https://www.theiia.org/centers/aec/PublishingImages/topics/Cybersecurity.jpg

Pulse Solutions: Cybersecurity and CAEs

2019 Pulse of Internal Audit survey respondents report slow progress in building IT and cyber skills among their staffs. Also concerning, an “effort gap” is developing between the effort internal audit functions deliver on cybersecurity and the level CAEs believe they should provide. One potential action item is for CAEs to leverage boards’ increasing interest and involvement in cybersecurity issues to discuss adjustments to the audit plan. Candid discussions with the audit committee about obstacles to internal audit’s performance can help ensure against a future cyber issue.

Find out more.

https://www.theiia.org/sites/auditchannel/Pages/video.aspx?v=huZzRlMzE6rWYEsm_APleE4T-Y_JueTc

Additional Risk Management resources are premium content for Audit Executive Center members only. Members, if you are not already signed in, please sign in to access the resources. Not a member? Learn more about the benefits of AEC membership.