It’s time to refocus your internal control lens on risks. Not benchmarks.
Provided by 
Deloitte2018-02-27T09:00:00
The first paper in Deloitte’s new series on ICFR takes a closer look at financial statement risk assessments and provides a risk assessment diagnostic scorecard to help get you started. The paper also discusses how world-class organizations are applying innovation to their ICFR programs as part of the risk assessment ...
Related articles
-
PremiumShadow AI: Another element of TPRM
Companies may face significant financial and legal risks if they fail to vet suppliers and third parties over their use of unauthorized AI and how the technology may use and share their corporate data.
-
OpinionBeyond the Binder: Policy governance in practice
Most compliance professionals have faced it: a regulator or client requests a policy, and several slightly different “final” versions appear. The issue often stems from reactive, siloed work without a unified governance framework.
-
ArticleHow food and beverage companies adjust to the throes of tariff woes
On-again-off-again tariffs, a down economy, and a long list of global supply chain disruptions are challenging U.S. food and beverage companies to adjust their supply chain operations in a variety of ways.
More from Thought Leadership
-
ResourceWhite paper: Constructing a Cohesive Cybersecurity Foundation
The individual requirements for your security and risk operations are increasingly complex—and interconnected. Yet despite this increased interconnectivity, many organizations still manage their security operations (SecOps) and integrated risk management (IRM) functions in silos.
-
ResourceWhite paper: Top 5 Mobile Compliance Best Practices
The message from the regulators is clear - having an off-channel policy for mobile communications is not good enough.
-
ResourceWhite paper: SEC doubles down on cyber risk management accountability
To help investors gain a better understanding of cyber risk, the US Securities and Exchange Commission (SEC) has created sweeping new rules—forcing companies to take a more proactive approach to cybersecurity.