Learn lessons on adaptive working, shifting to global views on risk, and creating opportunities to innovate current risk mitigation practices.
Understand how internal audit is adapting to the demands of today and the unknowns of tomorrow – includes lessons on aligning internal audit to business objectives, smarter use of technology, and building connections with people.
While you have settled into a temporary state of normal during the pandemic ─ adjusting to disrupted risk evaluations, revising mitigation plans, and embracing new forms of communication ─ you still need to plan how to adjust for the future normal in risk management. Read our five predictions on the future of risk management.
Five predictions on the future of audit activities. Will they hold true? Following each prediction is a series of actions the internal audit function can take to evolve and become a more strategic leader in the business.
Onspring’s leadership, product, solution engineering, professional services and sales teams have hundreds (yes, hundreds!) of years of combined experience in business process automation with a focus on GRC. Nearly all of us here have had experience working for other GRC software providers or have helped to deliver consulting and implementation services across nearly every GRC product listed in a review, quadrant, report or software list.
Being a project manager (PM) can be a tough gig; when everything is going fine, you may, at times, be viewed with disdain: a mere “meeting scheduler” who collects status updates from the key stakeholders and SMEs, reporting them upwards. When everything isn’t going fine, they are in the cross-hairs of everyone: the key stakeholders, the SMEs and the higher-ups they report to.
Big data is a phrase that represents an extremely large information set that can be utilized, processed, and computationally analyzed in order to find patterns and material about a gathered set of data as a whole. At a simpler level, it is data that can provide answers to questions.
The concept of a risk management system—what it is and consists of—is something that is often misunderstood or misinterpreted. A big challenge many companies face is evolving the management of their risk and dealing with it properly as it changes. While risk itself is a recurring instance for most companies, the problem is not just dealing with different risks, but having a universal definition of what they are and also specifically having a risk identification plan.
Throughout the course of my career, I’ve collaborated with many, many SMEs. Sometimes I didn’t know I was with a SME, other times I knew exactly who and what they were. The best ones always had the same traits, the stuff that makes their expertise jump off the page, or at the very least, flow in a coherent manner through distinguishable disguise, ultimately ending up as valuable scribbles in my notebook.
Wherever you are in the platform evaluation process, narrowing your choices down and selecting a new solution is never easy. This guide helps balance out the pros and cons of what your needs really are as you evaluate your current system and prepare to make a final leap to a new GRC platform.
Much like fire and early man, the Excel-based RCM-to-Assurance Professional relationship has seemingly been in existence since the dawn of time (or at least the dawn of Excel). Thankfully there is a better way to manage this critical element of your assurance process. And you can do it without having to sacrifice what made the Excel-based approach so appealing in the first place—structured data, demonstration of key relationships, management of key attributes.
There are a lot of advantages to opening up your data—within reason. Team members who are both a key holder and a person trying to access sequestered data can find it to be a tricky proposition as to when to be an open model and when to remain closed.