TEC 2016, Day 2: A Focus on Focus (and ERM)

performance

The show-stopper for Day 2 of Workiva’s TEC 2016 user conference was a talk by Carey Lohrenz, the first female fighter pilot for the U.S. Navy. She gave an excellent keynote presentation Thursday morning about achieving high performance. Much to my surprise, however, Lohrenz’ comments also struck lots of chords with another TEC 2016 session that preceded…

Read More

Is This GRC in Our Future?

enterprise

One of my other favorite blogs about compliance and risk management is the one maintained by ACL, a software vendor that caters to the internal audit industry. Those of you who like to ponder the future of our profession might want to read the most recent post there, “The Maturing World of GRC” by John…

Read More

Govt Agencies Embark on ERM Adventure

An experiment is about to begin in the government sector: federal agencies are going to try embedding enterprise risk management into their operations. risk and internal control professionals in the private sector might want to watch this effort and see how it goes. Final word on the ERM initiative came down last week, when the…

Read More

Keeping Your Audit Committee Current on Risks

internal audit

I spent a lot of time these days reading audit committee charters, to see how boards address risk management. I’ll be giving a talk on that subject later this year at the Society of Corporate Compliance & Ethics annual conference, and what better way to prepare than to go straight to the raw material? How…

Read More

More Clues on Draft ERM Framework

erm framework

COSO Chairman Robert Hirth visited Boston yesterday, speaking to the CAE Leadership Forum about COSO’s proposed new framework for enterprise risk management. I was lucky enough to attend and Hirth raises some excellent points about how COSO wants to help companies implement ERM, so let me recap the highlights here. First, we mentioned in this…

Read More

Draft ERM Framework Is Here! How to Get Started

erm framework

Sharpen your pencils, all enthusiasts of enterprise risk management: COSO has unveiled its new draft framework for ERM and is calling for public comment. The exposure draft is available on the COSO website, and the comment period runs from now until Sept. 30. This is COSO’s first update to the ERM framework, which it originally…

Read More

Finding Parallels in SOX Compliance and ERM

enterprise

My phone rang earlier this week, and at the other end of the line was my compliance officer contact in higher education. “Matt,” she said, “I’m looking for GRC software that can help with the university’s risk management program. We started with a database in Microsoft Access and want something that can really handle enterprise…

Read More