Are you hungry for a better approach to risk appetite?
While the cost of control is certainly something to consider, there are times (many, many times) when more risk should be taken because of the potential for increased reward.
business objectives
The core principles for effective internal auditing
The IIA has published a new Practice Guide (PG), Demonstrating the Core Principles for the Professional Practice of Internal Auditing.
Hyperventilating about cyber – Part 2
Is the level of concern about cyber merited? Should organizations and individuals be as worried about the possibility and consequences of a breach as they are advised by the consultants, information security pundits, and in news reports?
