Norman D. Marks, CPA, CRMA

About Norman D. Marks, CPA, CRMA

Norman has led large and small internal audit departments, been the Chief Risk Officer and Chief Compliance Officer, and managed IT security and governance functions.

He retired in early 2013. However, he still blogs, writes, trains, and speaks – and mentors individuals and organizations when he can.

By Norman D. Marks, CPA, CRMA | 3 Minutes Read November 15, 2023

When enterprise risk-based audit plans are not enough

Enterprise risk-based auditing means that the audit plan is designed to provide assurance, advice, and insight on the more significant sources of risk to the organization and the achievement of its objectives.

By Norman D. Marks, CPA, CRMA | 5 Minutes Read October 18, 2023

More useful information about cyber risk

A couple of new pieces provide some interesting insights into cyber risk and the effect of the new SEC cyber disclosure rules.

By Norman D. Marks, CPA, CRMA | 6 Minutes Read October 3, 2023

How do you measure internal audit effectiveness?

There is comfort in having a deep understanding and trust in processes that have been used and perfected over the years. But reliance on this kind of thinking leads us to the punchline of a meme.

When enterprise risk-based audit plans are not enough

More useful information about cyber risk

How do you measure internal audit effectiveness?

About us

First Reference Talks

Main Menu

About Norman D. Marks, CPA, CRMA

About us

First Reference Talks

Main Menu

Stay Connected