Risk Assessment | by OCEG the Open Compliance and Ethics Group

Anti-Corruption, Governance

Managing the Business Risk of Fraud: A Practical Guide (2008)

IIA, Using Nonfinancial Measures to Assess Fraud Risk (2008)

Anti-Corruption, Financial Assurance, Taxation

Journal of Forensic Accounting

Anti-Corruption

Management Antifraud Programs and Controls: Guidance to Help Prevent and Deter Fraud (AICPA, 2002)

DOJ, 2005 Money Laundering Threat Assessment

UK, The risk-based approach to anti-money laundering (AML) (FSA)

Competitive Practices, Information Management, Supply Chain Management (SCM)

CSO Security and Risk Magazine Archive

Employment

NIOSH Safety and Health Topic: Occupational Violence

Financial Assurance

BIS, Implementation of the compliance principles (Basel Committee on Banking Supervision, 2008)

BIS, Compliance and the compliance function in banks (Basel Committee on Banking Supervision, 2005)

AICPA, Risk Assessment Standards Nos. 104-111

New Basel Capital Accord, The (BIS, 2001, as issued for comment)

Protecting Your Capital Against Risk (2007)

IFAC, Managing Risk to Enhance Stakeholder Value (2002)

RiskCenter

FFIEC, Business Continuity Planning (2008)

European Commission: Solvency II

Guidance on Due Diligence Requirements in Determining Whether Investment Securities Are Eligible for Investment, Proposed guidance with request for comment (November 2011)

Financial Assurance, Governance

Observations on Risk Management Practices during the Recent Market Turbulence (March 2008)

Governance

FAQs for COSO's Enterprise Risk Management Integrated Framework

COSO, Enterprise Risk Management Integrated Framework: Executive Summary

RiskMetrics Group, Risk & Governance Blog

Risk Intelligent Approach to Corporate Responsibility & Sustainability, The (2008)

From internal control to enterprise risk management (2005)

COSO, Internal Control - Integrated Framework Guidance on Monitoring, Internal Control Systems, Volume III - Application Techniques (Exposure Draft, June 2008)

Enterprise Risk Management: Tools and Techniques for Effective Implementation (IMA, 2007)

OpRisk & Compliance Magazine

PCAOB Release No. 2008-006: Proposed Auditing Standards Related to the Auditor's Assessment of and Response to Risk; Proposed Conforming Amendments to PCAOB Standards (2008)

Australia, Better Practice Guide - Risk Management (2008)

Putting Risk in the Comfort Zone: Nine Principles for Building the Risk Intelligent Enterprise (Deloitte, 2008)

SEC Publishes Its Guidance for Management on Evaluating Internal Controls (FSA, IIA, 2007)

LRN 2008 Risk Management Practices Report

Sarbanes-Oxley Sections 302 & 404: A White Paper Proposing Practical, Cost Effective Compliance Strategies (April 2003)

Measuring the Effectiveness and Performance of Your Program (July 2007)

DHS, Risk Management Approaches to Protection (October 2005)

Index of Risk Assessment Articles, Information Systems Audit and Control Association (ISACA)

IT Audit Checklist: Risk Management (2006)

Enterprise Risk Management for CIOs (2007)

New ASX Rules Rein In Risky Business (2007)

Risk Management in the Enterprise (2007)

Driving Principled Performance: Key Findings from the 2007 OCEG Governance, Risk Management, and Compliance (GRC) Strategy Survey (August 2007)

Risk in the Strategic Planning Process (May 2007)

Planning For Risk; Analysis Of Risk Management (2007)

Federal Sentencing Guidelines: Enterprise Risk Management (2004)

Enterprise Risk Management Specialty Guide May 2006 (Society of Actuaries)

Australia, Better Practice Guides, Appendix 6 - Risk Management

Global Association of Risk Professionals (GARP)

Professional Risk Managers International Association (PRMIA)

Society for Risk Analysis (SRA)

Enterprise Risk Management Resources: The Many Faces of Risk

COSO Internal Control Framework Resources

Risk Management Toolkit

GAO, Risk Management: Further Refinements Needed to Assess Risks and Prioritize Protective Measures at Ports and Other Critical Infrastructure (2005)

Global Risk Management Survey 2007 (AON)

ERM: Frameworks, Elements, and Integration (2006)

Overview of Enterprise Risk Management (2003)

Looking for Risk in all the Right Places (2006)

USSC, Amendments to the Sentencing Guidelines - Reader Friendly Version of Amendments (Aprill 28, 2011)

ARRA and Single Audits: Addressing the Risks and Challenges (2010)

OMB Circular A-133 Compliance Supplement March 2009

SEC, Public Company Accounting Oversight Board; Notice of Filing of Proposed Rules on Auditing Standards Related to the Auditor’s Assessment of and Response to Risk and Related Amendments to PCAOB Standards (2010)

SEC: Public Company Accounting Oversight Board; Order Approving Proposed Rules on Auditing Standards Related to the Auditor’s Assessment of and Response to Risk and Related Amendments to PCAOB Standards (2010)

Asia Risk Magazine

Standard & Poor's Ratings: Enterprise Risk Management

Governance, Information Management

GAO, Information Security Risk Assessment: Practices of Leading Organizations (1999)

Information Management

NIST, Managing Risk from Information Systems, Second Public Draft (April 2008)

Convergence of Physical and Information Security in the Context of Enterprise Risk Management, The (2007)

Early Warning Signs of IT Project Failure: The Dominant Dozen (2006)

UK, 2008 information security breaches survey: technical report (BERR, 2008)

Product Quality/Safety

Critical Examination of the FDA's Efforts to Preempt Failure-to-Warn Claims, A (2008)

Taxation

OECD Guidance Note, Compliance Risk Management: Managing and Improving Tax Compliance (2004)