The questions included in this document can be used to perform a quality assurance review (QAR) of an internal audit dep...

The pursuit of aggressive environmental, economic and social sustainability goals presents both opportunity and risk. Th...

This IT risk assessment questionnaire is designed to assist with reviewing and documenting the risk profile of your orga...

This audit program sample focuses on understanding current fraud prevention and detection program activities.

This risk policy addresses the components of an effective commodity risk infrastructure.

This article discusses key questions organizations should ask themselves when implementing ERM, outlines critical aspect...

This tool includes risk assessment questions for both IT management and executive IT management.

The Protiviti Risk Model is a comprehensive organizing framework for defining and understanding potential business risks...

The Process Classification Scheme (PCS) is a framework used by Protiviti that can be utilized to organize information ab...

This tool outlines the business risks associated with inappropriate access to systems, data or information and suggests ...

This issue of Board Perspectives discusses six factors for positioning the CRO (and independent risk management) to succ...

The purpose of this memo is to document management’s approach for the current financial year's Sarbanes-Oxley compliance...