Internal audit

The Three Lines Model – 3 Reasons Why I Don’t Like It

Everyone likes a clear-cut template that offers an easy way to create or manage something…I mean what’s not to like about a step-by-step process for accomplishing what you want? Sometimes this can work without any issues, such as the case with the Project Management Book of Knowledge (PMBOK), ISO 9001 standard, or a new cooking…
Read More
ERM & audit

Understanding the Changing Dynamics between ERM & Audit

As is often repeated here and elsewhere, the world is changing at an incredibly fast pace. Even without this year’s coronavirus pandemic, this pace will only accelerate in the years and decades ahead as automation, AI, machine learning, and other technologies continue to develop. ERM and audit are not immune to this change… Internal auditors…
Read More

ERM and Internal Audit: The Right Relationship

There is much discussion and debate about how Internal Audit and Enterprise Risk Management (ERM) should be connected. Some say ERM can be embedded within the internal audit group. I don’t fall in this group. Internal audit standards say that internal auditors should be objective and not unduly influenced. In other words, independent. I have…
Read More