Auditing at the speed of risk with an agile, continuous audit plan
Risks and business conditions change all the time, so an annual plan or even one that is updated quarterly won’t lead to auditing what matters today. You audit what used to matter.
Finance and Accounting
Do smaller companies manage risk better than larger ones?
Why is risk management in SMEs better than in large corporations? Here are my comments.
Is there an effective risk culture?
If you want to promote effective management, de-emphasize independence and have the CRO report to the CEO with access to the board. Then hold the CEO (not the CRO) accountable for the effective management of risk and opportunity.
