2017 COSO ERM Framework Update​

The updated document, now titled Enterprise Risk Management—Integrating with Strategy and Performance, highlights the importance of considering risk in both the strategy-setting process and in driving performance.

Proposed Global IIA Governance Changes

The IIA’s Global Board of Directors proposes key changes to our current global governance structure. As a member of The IIA’s global association, you have the opportunity to provide your opinion on the proposed changes.

Ny guide: Engagement Planning

All internal auditors will appreciate how this practice guide covers elements of engagement planning – from understanding context to information gathering, and risk assessment to establishing objectives and scope.

Call for nominations

Nominations are now open for IIA Officer, Board and Committee Positions. The IIA is seeking qualified members to serve in the following volunteer leadership roles: Executive Officers, Board of Directors, Internal Audit Foundation Board of Trustees and 18 Committees comprising 250 members.

Gratis opptak til CRMA og CCSA-programmer i august

Earning these certifications is the best way to articulate your expertise in these specialized areas without saying a word. Don’t delay ― begin your application now for either of these distinctive certifications and save USD 200 per program.

Crisis Resilience

Crisis resilience is the ability to resist, react to, and recover from a devastating disruption — terrorism attack, earthquake, product contamination, system failure — and modify an environment to increase security and sustainability.

Insight That Internal Audit Brings to Cybersecurity Culture

Internal audit plays a crucial part in ensuring that an organization's cybersecurity practices and policies are effective and efficient. There are four areas that deserve internal audit's focus: assurance over cyberattack readiness and response, communication about cyberrisk to the board and executive management, collaboration with IT, and coordination and communication based on a broad awareness of the organization's cyberrisks.

Veiledning for risikostyring går globalt

I​​ want to congratulate IIA–Norway for their recent publication, Guidelines for the Risk Management Function. A group of practicing risk practitioners developed this guide with the aim of describing best practices regardless of industry.