Learn from the experience of others and share your experience! blog
Have you ever asked your peers or professional colleagues what risk management or compliance tools they use? We value the ground well tread because we know that learning comes from making mistakes. How would you like to know what 1000's of your peers are saying about GRC ven
WYSIATI - Jumping to Conclusions with Limited Evidence blog
Over confidence in our ability to assess risks has led to more mistakes than we care to admit. WYSIATI - "What You See Is All There Is" describes a set of biases that prevents us from becoming better risk managers. Why is this the case? Because we jump to conclusions based on weak evidence and confuse correlation with causation.
Risk management -- it's like laser eye surgery for your business blog
Despite all the recent buzz-words surrounding risk management (or broader GRC) in the past few years since SOX, Basel and other regulations around the world, the fundamentals haven't changed for centuries or even millennia because they are about real situations in the real world.
A more radical view of what the Audit Committee should worry about in 2012 blog
PwC, and I am sure others, have given us their traditional, annual guide to the questions audit committees should address in 2012.
I think these are OK, but are they enough?
Excellent guidance on corporate governance from Australia blog
The ASX Corporate Governance Council, chaired by the Australian Securities Exchange (ASX), has released a second edition of Corporate Governance Principles and Recommendations (see here for the ASX announcement and related resources, or
Norman’s most popular 2011 posts on GRC, risk management, audit, and more blog
These are the posts on my personal blog that obtained the most views. The #1 post, on risk appetite, garnered nearly 3,000 views.
I will later share the top posts on the IIA blog.
From Corporate Board Member: Real Scenarios for Real Performance in Risk Oversight blog
Technology change, competitor action, cyber attacks, supply chain disruption, regulatory change, product blunders and executive departures–the risks to business performance are unceasing in a dynamic environment. Yet, in the need for performance lies the seed of improved risk management.
Director - Internal Audit blog
I am planning on taking the GRC Certification exam after taking the bootcamp. Do you have any suggestions for the best way to use and study the Red Book, tgake advantage of the bootcamp or any others study materials to help ensure I pass the exam? Your suggestions will be greatly appreciated.
