What Critics Say on Three Lines of Defense

By Joe Mont2015-02-10T13:15:00

The Three Lines of Defense model for risk oversight—business units in the first line, compliance in the second, internal auditors in the third—has been hugely popular in recent years. Proponents love it, and regulators have come to expect it. Critics, however, say the Three Lines model is too simplistic a ...

THIS IS MEMBERS-ONLY CONTENT

JOIN NOW

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Article
Deloitte: financial institutions reengineer risk management

2019-01-28T12:00:00Z By Joe Mont

Financial institutions are beginning new efforts to reengineer their risk management programs and tap into emerging technologies, according to a survey conducted by Deloitte Global.
Article
Where Internal Audit Can Help in Cyber-Security

2015-02-24T09:30:00Z By Tammy Whitehouse

Image: With yet another huge data breach hitting Corporate America—add insurance giant Anthem to the Hall of Shame—internal audit departments are trying to pinpoint what expertise they can bring to the company’s cyber-security risk assessment. Plenty, many audit executives say. “There are technical aspects of these projects, but regardless of ...
Opinion
The Compliance - Audit gap in ESG and financial reporting

2025-10-28T20:25:00Z By Tawakalit Ibiyeye, CW guest columnist

ESG reporting has moved from a voluntary PR exercise to an expectation for regulators and investors, but the compliance audit gap now threatens credibility.

What Critics Say on Three Lines of Defense

THIS IS MEMBERS-ONLY CONTENT

Related articles

Deloitte: financial institutions reengineer risk management

Where Internal Audit Can Help in Cyber-Security

The Compliance - Audit gap in ESG and financial reporting