PwC, and I am sure others, have given us their traditional, annual guide to the questions audit committees should address in 2012.
I think these are OK, but are they enough?
The ASX Corporate Governance Council, chaired by the Australian Securities Exchange (ASX), has released a second edition of Corporate Governance Principles and Recommendations (see here for the ASX announcement and related resources, or
These are the posts on my personal blog that obtained the most views. The #1 post, on risk appetite, garnered nearly 3,000 views.
I will later share the top posts on the IIA blog.
The only way risk management has value is if it affects the way you do business. It must influence decisions and actions; otherwise, it is no more than decoration. Risk management should not be a ‘check-the-box’ activity. Used well, it can help an organization achieve and sustain optimal long-term performance.
In their latest issue of The Bulletin, Protiviti summarizes recent developments in the business environment and suggests internal audit teams should capitalize on changing expectations. They highlight these areas:
In my IIA blog, I review a book on corporate governance (or at least a 5 page excerpt I find interesting). In the post, I quote sections where linkage is discussed, especially related to the HealthSouth Corp.
Deloitte has given us yet another fabulous document.
The survey I ran at the end of 2010 had some interesting results. You can see the report, with my summary and comments, here.
Overall, there was an encouraging level of support for the OCEG definition of GRC and the perception that their business-oriented view of GRC has value.
One internal auditing topic that has been of great interest to me over the years is that of continuous auditing. I believe that the technique offers a great opportunity for internal auditing to move to the next level of service and value to its stakeholders – providing them with the assurance they need, when they need it.