- Topics
- Regions
- Events
- Webcasts
- Resources
- CW Exclusives
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
Analysis: Comparing the IIA’s new ‘Three Lines Model’ to the old one
By 
Jaclyn Jaeger2020-07-29T16:42:00
The Institute of Internal Auditors (IIA) last week unveiled a modernized version of its widely adopted “Three Lines of Defense Model” to reflect the evolving role of risk management and to encourage greater collaboration between business functions in a way the previous model did not.
The new model, unveiled July 20, was the culmination of a robust effort that began last year, headed by a core working group of governance experts and led by IIA Senior Vice Chair Jenitha John. The working group relied upon the vast experiences of an additional 30-member advisory group, as well as public comments. Additionally, the project included a comprehensive review of governance approaches from around the world.
One significant change in the newly revamped model is the elimination of the word “defense” in the title. Now simply called the “Three Lines Model,” the name change reflects one of the principal criticisms of the old model, which was primarily that it focused too heavily on defending against risk, rather than focusing on value creation and prospectively managing risk.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
ArticleIncoming IIA chief Anthony Pugliese to prioritize technology, D&I
Compliance Week caught up with Anthony Pugliese, the incoming president and chief executive officer of the Institute of Internal Auditors, to discuss his plans for the future of the IIA and the internal audit profession at large.
-
ArticleSurvey: Practitioners weigh in on IIA’s new Three Lines Model
A look at results from a joint survey from Compliance Week and Workiva reveals companies could benefit from a deep dive into the IIA’s new Three Lines Model, especially in light of the recent pandemic.
-
ArticleQ&A: IIA president Chambers on Three Lines update, COVID-19, more
In the wake of drastic updates to the “Three Lines Model” for managing risk, IIA President and CEO Richard Chambers catches up with Compliance Week to discuss the changes, how COVID-19 has impacted the internal audit profession, and more.
More from Risk Management
-
News BriefPortuguese bank ousts chief risk officer after ‘suspicious’ transactions uncovered
Portuguese bank Novo Banco, S.A., fired Chief Risk Officer Carlos Jorge Ferreira Brandão “with just cause” after an internal probe discovered “suspicious financial transactions” in his sphere.
-
News BriefTop 5 risks for 2025: U.S. uncertainty, global trade war, digital attacks
A prominent risk management firm has issued its predictions for the top five risks for business in 2025, along with guidance for how organizations should prepare and respond.
-
PremiumWorries DOJ is ‘dumping’ AI responsibilities on compliance departments in ECCP update
When the DOJ released its revised Evaluation of Corporate Compliance Programs, it turned some heads. Tucked into a section on risk assessments was a strongly worded series of questions that appeared to shoulder compliance teams with the responsibility for ensuring the safe use of AI tools by their firms.