You are previewing Auditing the Risk Management Process.
O'Reilly logo
Auditing the Risk Management Process

Book Description

Risk management is a part of mainstream corporate life that touches all aspects of every type of organization. Auditors must focus firmly on risk: risk to the business, the executives, and the stakeholders. Auditing the Risk Management Process incorporates all the latest developments in risk management as it applies to auditors, including the new Committee of Sponsoring Organizations of the Treadway Commission (COSO) enterprise risk paper. Auditing the Risk Management Process includes original risk maps and process models developed by the author, explaining where and how topics fit within an overall audit framework, all the latest developments in risk management as it applies to auditors, and insight into how enterprise risk management affects the responsibilities of both internal and external auditors.

Table of Contents

  1. Cover Page
  2. Title Page
  3. Copyright
  4. About the Institute of Internal Auditors
  5. Dedication
  6. Contents
  7. Preface
  8. List of Abbreviations
  9. Chapter 1: Why Risk Management?
    1. Introduction
    2. Risk Management Framework Model: Phase One
    3. Risk Management Framework Model: Phase Two
    4. Risk Management Framework Model: Phase Three
    5. Risk Management Framework Model: Phase Four
    6. Risk Management Framework Model: Final
    7. Summary
    8. Notes
  10. Chapter 2: Determining Risk Management Maturity
    1. Introduction
    2. Risk Management Maturity Model: Phase One
    3. Risk Management Maturity Model: Phase Two
    4. Risk Management Maturity Model: Phase Three
    5. Risk Management Maturity Model: Phase Four
    6. Risk Management Maturity Model: Final
    7. Summary
    8. Notes
  11. Chapter 3: Enterprise-Wide Risk Management
    1. Introduction
    2. Enterprise Risk Management Model: Phase One
    3. Enterprise Risk Management Model: Phase Two
    4. Enterprise Risk Management Model: Phase Three
    5. Enterprise Risk Management Model: Phase Four
    6. Enterprise Risk Management Model: Final
    7. Summary
    8. Notes
  12. Chapter 4: Risk Appetite
    1. Introduction
    2. Risk Appetite Model: Phase One
    3. Risk Appetite Model: Phase Two
    4. Risk Appetite Model: Phase Three
    5. Risk Appetite Model: Phase Four
    6. Risk Appetite Model: Final
    7. Summary
    8. Notes
  13. Chapter 5: Control Risk Self-Assessment
    1. Introduction
    2. Control Risk Self-Assessment Model: Phase One
    3. Control Risk Self-Assessment Model: Phase Two
    4. Control Risk Self-Assessment Model: Phase Three
    5. Control Risk Self-Assessment Model: Phase Four
    6. Control Risk Self-Assessment Model: Final
    7. Summary
    8. Notes
  14. Chapter 6: Developing an Audit Approach
    1. Introduction
    2. Audit Approach Model: Phase One
    3. Audit Approach Model: Phase Two
    4. Audit Approach Model: Phase Three
    5. Audit Approach Model: Phase Four
    6. Audit Approach Model: Final
    7. Summary
    8. Notes
  15. Chapter 7: The Illusion of Perfection
    1. Introduction
    2. Poor Practice Model: Phase One
    3. Poor Practice Model: Phase Two
    4. Poor Practice Model: Phase Three
    5. Poor Practice Model: Phase Four
    6. Poor Practice Model: Final
    7. Summary
    8. Notes
  16. Chapter 8: A Holistic ERM Concept
    1. Introduction
    2. ERM Program Model: Phase One
    3. ERM Program Model: Phase Two
    4. ERM Program Model: Phase Three
    5. ERM Program Model: Phase Four
    6. ERM Program Model: Final
    7. Summary
    8. Notes
  17. Appendix A: Applying an ERM Diagnostic Tool
  18. Index