The updated document, now titled Enterprise Risk Management—Integrating with Strategy and Performance, highlights the importance of considering risk in both the strategy-setting process and in driving performance.
The IIA’s Global Board of Directors proposes key changes to our current global governance structure. As a member of The IIA’s global association, you have the opportunity to provide your opinion on the proposed changes.
All internal auditors will appreciate how this practice guide covers elements of engagement planning – from understanding context to information gathering, and risk assessment to establishing objectives and scope.
This report sets out the findings of a field study commissioned by the Professional Practices Committee of IIA Netherlands. The
aim of this report is to encourage and support the use of analytics in Internal Audit Functions (IAFs).
Nominations are now open for IIA Officer, Board and Committee Positions. The IIA is seeking qualified members to serve in the following volunteer leadership roles: Executive Officers, Board of Directors, Internal Audit Foundation Board of Trustees and 18 Committees comprising 250 members.
Earning these certifications is the best way to articulate your expertise in these specialized areas without saying a word. Don’t delay ― begin your application now for either of these distinctive certifications and save USD 200 per program.
Crisis resilience is the ability to resist, react to, and recover from a devastating disruption — terrorism attack, earthquake, product contamination, system failure — and modify an environment to increase security and sustainability.
Internal audit plays a crucial part in ensuring that an organization's cybersecurity practices and policies are effective and efficient. There are four areas that deserve internal audit's focus: assurance over cyberattack readiness and response, communication about cyberrisk to the board and executive management, collaboration with IT, and coordination and communication based on a broad awareness of the organization's cyberrisks.
I want to congratulate IIA–Norway for their recent publication, Guidelines for the Risk Management Function. A group of practicing risk practitioners developed this guide with the aim of describing best practices regardless of industry.
The aim of this guidance is, through the presentation of a set of questions, to give a better understanding of the most important risks which can impact an enterprise and how these can be managed.