How to Measure the Value of Your Internal Audit Group

Size: px
Start display at page:

Download "How to Measure the Value of Your Internal Audit Group"

Transcription

1 How to Measure the Value of Your Internal Audit Group Best practices to follow, pitfalls to avoid and success metrics to measure May 17, 2012

2 Agenda Strategic challenges: Implications for the enterprise How to address challenges and add value How technology can help?

3 Organizational Implications of the New Reality Operational Risk Management The new centerpiece of Organizational Strategy IMPLICATIONS FOR THE ORGANIZATION Strategic Increasing pace of regulatory changes Stringent enforcement New global and local regulations Differing interpretations Convergence in risk management Need for greater assurance Tactical Generating business value Increasing Volume BIG DATA Increasing complexity of information Revealing the opaque Need to rationalize Simplify to improve facilitation

4 Divergent Path: Operational Losses & Business Performance Increasing Increases Decreases Operational Losses Business Performance Internal Fraud Return on Investment External Fraud Employment Practices and Workplace Safety Clients, Products, & Business Practice Cost of Investment Growth Prospects Competitive Advantage Damage to Physical Assets Business Disruption & Systems Failures Reducing Operations Execution, Delivery, & Process Management Market Goodwill

5 Strategic Challenges for Internal Audit New product development: exposure to new risks Mobile banking and payments, multi-family lending, residential lending and refinancing Convergence in risk management Operational, IT, vendor, regulatory, credit, market Increasing pace of regulatory changes and related risks Stringent enforcement means financial and strategic impact Information overload and differing interpretations Need for greater risk assurance Rating agency, board, investor requirements

6 The rising cost of Operational Risk Credit Losses RISKS * UDAAP Late Projects Fair Lending Weak/anemic loan demand RISKS * Enforcement Actions Social Media Information asymmetry Concerned Customers Suspicious Investors Aggressive Competitors Strategic Costs Financial Costs Continuing Instability Economic Volatility Corporate Credit THREATS Politics Law & Regulations Corporate Governance Compliance Costs Operational Costs Scarcity of Resources Adapting Technology Changing Processes RISKS * Information Security National Mortgage Settlement RISKS * Vendor Management Incomplete Documentation

7 Implications for the Enterprise THREATS RISKS IMPLICATIONS FOR THE ENTERPRISE Compliance Costs UDAAP Fair Lending National Mortgage Settlement Act Civil money penalties Headline news Stock downgrades Re-classify loans to nonaccruing Financial Costs Enforcement Action Social Media Limits dividend payment Hold on M&A Consumer expectations regarding real time responses Information Asymmetry Inconsistent data taxonomy

8 Implications for the Enterprise THREATS RISKS Credit Losses IMPLICATIONS FOR THE ENTERPRISE Insufficient tier one capital Strategic Costs Late Projects Weak/anemic loan demand Loss of competitive edge De-risking the portfolio to re-set the product portfolio Vendor Management Risk assessments, oversight Operational Costs Inadequate documentation Information Security Loan buy-backs, hold for servicing Maintain trust

9 Confluence of Operational Risk and Reputational Risk in a Social World One reflects on the other Social Media Chief Marketing Officer Chief Risk officer Chief Communications Officer Marketing Sales Customer Service HR Risk Management convergence Integration Analysis

10 Operational Losses: Bigger than your calculations 1 Operational Loss Incident 5.6 Bn Personal Communication Devices 2 Bn People Connected to the Internet 3 Tr Interconnected intelligent devices 2.9 Mn 20 Hrs 50 Mn 700 Bn 375 MB s every second Youtube Video Upload/min Tweets per day Mins on facebook/month Household data consumption/day IMPLIES Word will spread Organizations can no longer hide Losses will spill over - Reputational impact on future business Incidents will be forever - Loss incidents will live on forever

11 How Well Organizations Manage These Risks? Source: PWC Survey Report 2012 State of Internal Audit

12 How to address challenges and add value?

13 Importance of IA s contribution to monitoring risks Source: PWC Survey Report 2012 State of Internal Audit

14 Risks that receive less attention from internal audit Source: PWC Survey Report 2012 State of Internal Audit

15 Risk areas in which stakeholders and CAEs want/plan to add internal audit capabilities Source: PWC Survey Report 2012 State of Internal Audit

16 Risk-driven Internal Audit System Helps align audits with risks and organizational goals Helps in identifying critical areas

17 Integrate Activities with Others Transcend organizational silos, and establishes an integrated audit management Help align audits with risks and organizational goals Help identify all issues, internal as well as external such as issues related to compliance reporting, regulations, self-assessments etc. Enhance collaboration with other assurance functions and senior management

18 Cross-Organizational GRC Platform Develop common risk & business framework for cross-organizational alignment Leverage cross-organization governance, risk & compliance activities Identify & mitigate issues across the organization (regulatory, compliance etc. ) Internal Audits Enterprise Risk Operational Risk Corporate Compliance Issue Tracking & Resolution Library Organizations Processes Controls Risks Tests IT Audits SOX Policy Management Fraud others

19 Communicate Clearly Specify & Simplify the Facts Adopt a highly structured & standardized method of reporting audit results Report should highlight critical information across the organization Should provide valuable risk insights and intelligence Should provide top-level visibility for CAEs, highlighting key risk areas Decision making process should be streamlined and real-time, based on hard facts and data

20 How Technology Can Help?

21 Technology Strategy Broad Communication of Company Centralized Visibility Technology Unified Risk Program Workflow-Based Solutions Reusable library of risks and Controls Centralized Repository Decentralized Point Solutions Risk Effectiveness

22 Universal and Consistent Information Model Comprehensive Definition of Risk Relating it to Business Growth and Profitability Board Directives Corporate Governance Organizational Structure Business Objectives Areas of Compliance Functions Processes Risks Controls Growth FSA IT Process 1 Op Risk Control 1 Profitability FIRNA Treasury Process 2 IT Risk Control 2 Market Share PCI Lending Process 3 Reputation Control 3 Services Quality ISO SOX Sales Marketing References Policies/Documents Risk Assessments Issues Regulation 1 Regulation 2 Standard 1 Standard 2 Policy 1 Procedure 1 Work Instruction 1 Risk-Based Requirement-Based Business Unit-Based Action Plan Implement Monitor

23 Information Model supports Audit Planning Process Risk Library Auditable Entities Annual Audit Plan Audit Universe Audit Projects Risk 1 Risk 2 Risk 3 Business Unit 1 Business Unit 2 Process 1 Process 2 Policy 1 Policy 2 Process 1 Process 2 Site 1 Site 2 Key Risks Audit Project 1 Audit Project 2 Audit Project 3 Risk 1 Risk 3 Template Repository Audit Project Work Program Template Checklists Questionnaires Control Test Plans Tasks & Milestones Work Paper Documents Workflows, s & Alerts Draft & Final Reports

24 Manage the Complete Audit Lifecycle Perform all types of audit-related activity on a single integrated platform Project Management Active Resource Management Calendar Control Milestone Tracking Enable a targeted, risk-based audit with consistent analysis & assessment of risks Eliminate errors & inconsistencies through standardized data collection Powerful reporting and analytics for real-time visibility Improve the overall efficiency and productivity

25 Things To Look After For Your Audit Infrastructure must Align business focus on the right set of business risks Provide an integrated framework to collate crucial information Ensure optimal resource utilization and effectiveness Simplify compliance with embedded regulatory content & standards Provide real-time business intelligence and risk insights Increase collaboration across the enterprise Respond to change quickly Better justify & manage costs

26 Succeeding in a Risk-Focused Environment Common information model leverages business line risk assessments Multiple sites, regulations, functions Collaboration driven Standardized data collection to eliminate errors and inconsistencies Manage compliance, risk and audits as a central function Integrated and real-time information flow Leveraging internal and external sources Decision making and performance management Easy access to analytics - with minimal manual work Tied to a closed-loop remediation, corrective actions processes Seamless integration between compliance, risk and audit process

27 Risk Monitoring and Reporting at Sterling Bank* Committees review their risks and KRIs according to a defined review schedule and report on actions taken to mitigate high residual risks ECER reviews key residual risks and actions plans Board committee receives business risk reports Credit and Risk Committee Executive Credit & Risk Committee Audit Committee Monitors Legal risk Governance and Compensation Committee *Used with permission

28 About MetricStream Vision Integrated Governance, Risk & Compliance (GRC) for Better Business Performance Solutions Audit Management Risk Management Corporate and Supplier Governance Regulatory and Operational Compliance Quality Management Partners Governance Differentiators Big 4 KPMG, PWC, Deloitte, E&Y System Integration Firms like Tata Consultancy, TBD Networks Associations SIFMA, IIA, GARP, RMA, NACD, Policy Makers Kleiner Perkins Caufield & Byers (Google, Amazon, Cisco, Genentech) Integral Capital Partners 650+ employees with strong-growth (60% year-on-year) Technology - Enterprise GRC Platform Breadth of Solutions Single Vendor for all GRC needs Cross-industry Best Practices and Domain Knowledge ComplianceOnline.com - Largest GRC Portal on the Web GRC Consulting & Advisory Services

29 Thank You Susan Palm Vice President, Industry Solutions MetricStream, Inc.

Improve GRC Maturity through Combined Assurance

Improve GRC Maturity through Combined Assurance White Paper Improve GRC Maturity through Management External Assurance Providers Internal Assurance Providers Oversight Governance; Risks and Controls Figure 1: The Model What is Combined Assurance? With

More information

MEGA S SOLUTIONS FOR GOVERNANCE, RISK, AND COMPLIANCE

MEGA S SOLUTIONS FOR GOVERNANCE, RISK, AND COMPLIANCE MEGA S SOLUTIONS FOR GOVERNANCE, RISK, AND COMPLIANCE Give your board a real-time, 360⁰ vision of the Corporate Governance framework REGULATORY COMPLIANCE Rc INTERNAL CONTROL Ic INTERNAL AUDIT Ia Rm RISK

More information

Third Party Risk Management ( TPRM ) Transformation

Third Party Risk Management ( TPRM ) Transformation Third Party Risk Management ( TPRM ) Transformation September 20, 2017 Internal use only An introduction to TPRM What is a Third Party relationship? A Third Party relationship is any business arrangement

More information

Trusted by more than 150 CSPs worldwide.

Trusted by more than 150 CSPs worldwide. RAID is a platform designed for Communication Service Providers that want to leverage their data assets to improve business processes and gain business insights, while at the same time simplify their IT

More information

RSA ARCHER INSPIRE EVERYONE TO OWN RISK

RSA ARCHER INSPIRE EVERYONE TO OWN RISK RSA ARCHER INSPIRE EVERYONE TO OWN RISK Executive Priorities Growth is the highest priority 54 % 25 % Technology initiatives are second priority Business Growth & Technology Copyright 2016 EMC Corporation.

More information

Crowe Consumer Compliance Consulting Services

Crowe Consumer Compliance Consulting Services Crowe Consumer Compliance Consulting Services How Well Is Your Organization Managing Regulatory Risk in Consumer Banking and Financial Services? Audit / Tax / Advisory / Risk / Performance Smart decisions.

More information

RouteONE Helping enhance the real value from SAP GRC Risk Management

RouteONE Helping enhance the real value from SAP GRC Risk Management RouteONE Helping enhance the real value from SAP GRC Risk Management Contents Business context: Governance, risk and compliance Approach overview: SAP GRC Risk Management Implementation: More than a technical

More information

DUBAL s ISO based ERM Program

DUBAL s ISO based ERM Program DUBAL s ISO 31000-based ERM Program Building a Harmonized, Proactive and Sustainable Approach to Risk Management October, 2013 Toby Shore Corporate Treasurer & Chief Risk Officer DUBAL Key Things To Discuss

More information

Agile Risk Assessment Reinventing RCSAs

Agile Risk Assessment Reinventing RCSAs POINT OF VIEW Agile Assessment Reinventing RCSAs The Building Blocks of Agile Management Protiviti s Agile Management philosophy enables organizations to focus on growth, improve efficiency and become

More information

Strategies to Mitigate the Cost of a Risky Third-Party Relationship

Strategies to Mitigate the Cost of a Risky Third-Party Relationship Strategies to Mitigate the Cost of a Risky Third-Party Relationship Experts on Panel Linda Tuck Chapman President, Ontala SIG: Sourcing Resource Center Chair, Thought Leaders Council Manu Gopeendran Senior

More information

Extended Enterprise Risk Management

Extended Enterprise Risk Management Extended Enterprise Risk Management Driving performance through the extended enterprise October 2015 A network within a network The Extended Enterprise is the concept that an organization does not operate

More information

Reengineering your core processes and service layer A critical digital ecosystem enabler

Reengineering your core processes and service layer A critical digital ecosystem enabler Reengineering your core processes and service layer A critical digital ecosystem enabler Stéphane Hurtaud Partner Cybersecurity Leader Deloitte Jesper Nielsen Director Technology & Enterprise Application

More information

Five Tips: How to measure the value of your internal audit department

Five Tips: How to measure the value of your internal audit department Five Tips: How to measure the value of your internal audit department By Connie Valencia CIA, CCSA, principal with Elevate Consulting and Gaurav Kapoor COO with MetricStream Measuring the performance of

More information

RSA ARCHER IT & SECURITY RISK MANAGEMENT

RSA ARCHER IT & SECURITY RISK MANAGEMENT RSA ARCHER IT & SECURITY RISK MANAGEMENT INTRODUCTION Organizations battle growing security challenges by building layer upon layer of defenses: firewalls, anti-virus, intrusion prevention systems, intrusion

More information

Operational Excellence By Automating Operational Risk Management. February 4, 2016 Doug Hatler, EVP of Sales

Operational Excellence By Automating Operational Risk Management. February 4, 2016 Doug Hatler, EVP of Sales Operational Excellence By Automating Operational Risk Management February 4, 2016 Doug Hatler, EVP of Sales Industry is in a Paradigm Shift Stakeholders & Reputation Operational Excellence & Risk Management

More information

IBM Sterling B2B Integrator

IBM Sterling B2B Integrator IBM Sterling B2B Integrator B2B integration software to help synchronize your extended business partner communities Highlights Enables connections to practically all of your business partners, regardless

More information

Cisco Tidal Intelligent Automation for SAP

Cisco Tidal Intelligent Automation for SAP Cisco Tidal Intelligent Automation for SAP Automation Packs for SAP Solutions Product Overview Cisco Tidal Intelligent Automation for SAP is the software platform on which to standardize, unify, and automate

More information

Risk Advisory Services Developing your organisation s governance for competitive advantage

Risk Advisory Services Developing your organisation s governance for competitive advantage Advisory Services Developing your organisation s governance for competitive advantage The Deloitte Advisory Platform of Services can help you to govern your strategic plan to guide your operations measure

More information

BlackLine Compliance

BlackLine Compliance BlackLine Compliance The Compliance Imperative Compliance and Internal Audit teams are facing a complex regulatory and operating environment. Many teams are under significant cost pressure to improve efficiency

More information

Enterprise Compliance Management for Credit Unions

Enterprise Compliance Management for Credit Unions Enterprise Compliance for Credit Unions Streamline Regulatory Compliance with a Unified Platform to Manage Requirements and Demonstrate Compliance to Regulators Industry Challenge Credit unions are subject

More information

OPTIMISING INFORMATION WORKFLOW MANAGEMENT (IWM) IN BANKING

OPTIMISING INFORMATION WORKFLOW MANAGEMENT (IWM) IN BANKING OPTIMISING INFORMATION WORKFLOW MANAGEMENT (IWM) IN BANKING Powerful forces are reshaping the banking industry. Customer expectations, technological capabilities, regulatory requirements, demographics

More information

Generating value within the Risk Ecosystem Risk powers performance

Generating value within the Risk Ecosystem Risk powers performance Generating value within the Risk Ecosystem Risk powers performance The Risk Ecosystem Disruption and volatility are impacting today s business climate. CROs and risk executives function in a Risk Ecosystem,

More information

Building a Framework for Effective Third-Party Risk Management (TPRM)

Building a Framework for Effective Third-Party Risk Management (TPRM) Building a Framework for Effective Third-Party Risk Management (TPRM) GARP Webcast Series On24 Tech Tips Brenda Boultwood Christopher Thackray APRIL 2016 Make sure your speakers are on Hit F5 any time

More information

Case Study Webinar: Vendor Risk Management at Global Lending Services

Case Study Webinar: Vendor Risk Management at Global Lending Services Case Study Webinar: Vendor Risk Management at Global Lending Services Al Palmer, SVP Compliance, Global Lending Services LLC (GLS) Melissa Brown, Compliance Manager, Global Lending Services LLC (GLS) John

More information

Boards and internal audit: Working together to strengthen risk management

Boards and internal audit: Working together to strengthen risk management Boards and internal audit: Working together to strengthen risk management Growing demands on boards The role of the board has always been an important and demanding one, but today s board members face

More information

Intelligent automation and internal audit

Intelligent automation and internal audit Intelligent automation and internal audit Adding value through governance, risk management, and controls Second article in the series kpmg.ch Contents Governing intelligent automation across the enterprise

More information

Internal Audit Solutions:

Internal Audit Solutions: Internal Audit Solutions: Internal Audit Leading Practices - Continuous Monitoring / Auditing Provided to Sioux Falls, SD IIA Chapter Thursday January 25, 2018 11:30 AM 1:00 PM CT Today's Presenter Anne

More information

SOLUTION BRIEF RSA ARCHER AUDIT MANAGEMENT

SOLUTION BRIEF RSA ARCHER AUDIT MANAGEMENT RSA ARCHER AUDIT MANAGEMENT INTRODUCTION Internal audit departments are struggling to deliver strategic leadership, coordinated assurance and other services their stakeholders need, but this task isn t

More information

Maximizing value from your lines of defense

Maximizing value from your lines of defense Insights on governance, risk and compliance December 2013 Maximizing value from your lines of defense A pragmatic approach to establishing and optimizing your LOD model Contents Introduction Are you getting

More information

Blockchain Unleashed: Petrochemical Industry Impact

Blockchain Unleashed: Petrochemical Industry Impact Blockchain Unleashed: Petrochemical Industry Impact 1 Business networks, wealth and markets Business Networks benefit from connectivity Participants are customers, suppliers, partners Cross geography &

More information

SOLUTION BRIEF RSA IDENTITY GOVERNANCE & LIFECYCLE SOLUTION OVERVIEW ACT WITH INSIGHT TO DRIVE INFORMED DECISIONS TO MITIGATE IDENTITY RISK

SOLUTION BRIEF RSA IDENTITY GOVERNANCE & LIFECYCLE SOLUTION OVERVIEW ACT WITH INSIGHT TO DRIVE INFORMED DECISIONS TO MITIGATE IDENTITY RISK RSA IDENTITY GOVERNANCE & LIFECYCLE SOLUTION OVERVIEW ACT WITH INSIGHT TO DRIVE INFORMED DECISIONS TO MITIGATE IDENTITY RISK BENEFITS ACT WITH INSIGHTS Identity has emerged as today s most consequential

More information

Fast Forward Shareholder Value from your SAP Investment using IBM Rational

Fast Forward Shareholder Value from your SAP Investment using IBM Rational Fast Forward Shareholder Value from your SAP Investment using IBM Rational James Hunter Worldwide Offerings Manager Packaged Applications and System Integrators The premiere software and product delivery

More information

RouteONE Helping enhance the real value from SAP GRC Access Control

RouteONE Helping enhance the real value from SAP GRC Access Control RouteONE Helping enhance the real value from SAP GRC Access Control Contents Business context: Governance, risk and compliance Implementation: A challenge in itself Approach overview: SAP GRC Access Control

More information

Crowe Activity Review System

Crowe Activity Review System Crowe Activity Review System Quality at the Source Audit Tax Advisory Risk Performance With ever-increasing expectations of review processes from various stakeholders, organizations are under pressure

More information

IBM Service Management Buyer s guide: purchasing criteria. Choose a service management solution that integrates business and IT innovation.

IBM Service Management Buyer s guide: purchasing criteria. Choose a service management solution that integrates business and IT innovation. IBM Service Management Buyer s guide: purchasing criteria Choose a service management solution that integrates business and IT innovation. Close the integration gap between business and IT innovation According

More information

Four Best Practices To Improve Quality In the Supply Chain. Lower supply chain risks and cost of quality

Four Best Practices To Improve Quality In the Supply Chain. Lower supply chain risks and cost of quality Four Best Practices To Improve Quality In the Supply Chain Lower supply chain risks and cost of quality 1 Table of Contents 3 Introduction 7 Quality Risks in the Supply Chain 10 The Big Challenge 16 Best

More information

LEADING WITH GRC. The Return of the ERM Extending Beyond It s Past Scope. Brenda Boultwood, SVP Industry Solutions, MetricStream

LEADING WITH GRC. The Return of the ERM Extending Beyond It s Past Scope. Brenda Boultwood, SVP Industry Solutions, MetricStream LEADING WITH GRC The Return of the ERM Extending Beyond It s Past Scope Brenda Boultwood, SVP Industry Solutions, MetricStream The Return Of The Jedi Extending beyond its past scope June 7, 2017 In Today

More information

COMPLIANCE TRUMPS RISK

COMPLIANCE TRUMPS RISK RSA ARCHER GRC Product Brief COMPLIANCE TRUMPS RISK Organizations are finding themselves buried in compliance activities and reacting to the latest laws and regulations. The ever-increasing volume, complexity

More information

EY Center for Board Matters. Leading practices for audit committees

EY Center for Board Matters. Leading practices for audit committees EY Center for Board Matters for audit committees As an audit committee member, your role is increasingly complex and demanding. Regulators, standard-setters and investors are pressing for more transparency

More information

Point of View on AI & Cognitive. Deloitte Cognitive Lab

Point of View on AI & Cognitive. Deloitte Cognitive Lab Point of View on AI & Cognitive Deloitte Cognitive Lab Cognitive technologies capabilities The art of creating machines that perform functions that require intelligence when performed by people (Kurzweil,

More information

RSA Solution for egrc. A holistic strategy for managing risk and compliance across functional domains and lines of business.

RSA Solution for egrc. A holistic strategy for managing risk and compliance across functional domains and lines of business. RSA Solution for egrc A holistic strategy for managing risk and compliance across functional domains and lines of business Solution Brief Enterprise Governance, Risk and Compliance or egrc is an umbrella

More information

Solution Sheet. Profitable SME Lending

Solution Sheet. Profitable SME Lending Solution Sheet Profitable SME Lending Overview The Small and Medium Enterprise sector is critical for strengthening the economy and generating employment opportunities. Loans to the SME sector are important

More information

Streamline Physical Identity and Access Management

Streamline Physical Identity and Access Management Streamline Physical Identity and Access Management Quantum Secure s SAFE Software Suite automates key processes and empowers IT teams to implement, streamline and manage physical access Table of Contents

More information

RSA. Sustaining Trust in the Digital World. Gintaras Pelenis

RSA. Sustaining Trust in the Digital World. Gintaras Pelenis 1 RSA Sustaining Trust in the Digital World Gintaras Pelenis +370 698 75456 Gintaras.pelenis@emc.com 2 IN 2011 THE DIGITAL UNIVERSE WILL SURPASS 1.8 ZETTABYTES 1,800,000,000,000,000,000,000 3 $ 4 5 Advanced

More information

Achieve Continuous Compliance via Business Service Management (BSM)

Achieve Continuous Compliance via Business Service Management (BSM) Achieve Continuous Compliance via Business Service (BSM) Brian Holmes, CISA Solutions Consultant BMC Software Agenda Introduction Compliance: The Business Driver Challenges of IT Compliance Business Service

More information

RSA ARCHER MATURITY MODEL: AUDIT MANAGEMENT

RSA ARCHER MATURITY MODEL: AUDIT MANAGEMENT RSA ARCHER MATURITY MODEL: AUDIT MANAGEMENT OVERVIEW Internal Audit (IA) plays a critical role in mitigating the risks an organization faces. Audit must do so in a world of increasing risks and compliance

More information

EY Forensic & Integrity Services

EY Forensic & Integrity Services EY Forensic & Integrity Services EY Business Intelligence A disruptive offering to traditional due diligence The difference between information and intelligence is context and experience. Fred Gebauer,

More information

Internal Audit Challenges & Opportunities Speaker: Laurie Shen, Director, Grant Thornton LLP

Internal Audit Challenges & Opportunities Speaker: Laurie Shen, Director, Grant Thornton LLP Internal Audit Challenges & Opportunities Speaker: Laurie Shen, Director, Grant Thornton LLP March 28, 2012-1 - Speaker Introduction Laurie Shen is a Director at Grant Thornton's Northeast Internal Audit

More information

EY Center for Board Matters Boards and internal audit

EY Center for Board Matters Boards and internal audit EY Center for Board Matters Boards and internal audit Working together to strengthen risk management Growing demands on boards The role of the board has always been an important and demanding one, but

More information

Corporate Functions & Business Operations

Corporate Functions & Business Operations Corporate Functions & Business Operations BlackRock was founded by eight entrepreneurs who wanted to start a very different company. One that combined the best of a financial leader and a technology pioneer.

More information

Business Risk Intelligence

Business Risk Intelligence Business Risk Intelligence Bringing business focus to information risk It s a challenge maintaining a strong security and risk posture. CISOs need to constantly assess new threats that are complex and

More information

Business Process Services: A Value-Based Approach to Process Improvement and Delivery

Business Process Services: A Value-Based Approach to Process Improvement and Delivery WHITE PAPER Business Process Services: A Value-Based Approach to Process Improvement and Delivery In this white paper, we examine how your business can be improved through business process services. Business

More information

Evolving Core Tasks for Improved Internal Audit Performance. Copyright 2018 AuditBoard Inc. 1

Evolving Core Tasks for Improved Internal Audit Performance. Copyright 2018 AuditBoard Inc. 1 Evolving Core Tasks for Improved Internal Audit Performance Copyright 2018 AuditBoard Inc. 1 Introductions Built by experienced auditors, AuditBoard allows enterprises to collaborate, manage, analyze and

More information

Identify and Manage Third Party Vendor Risks:

Identify and Manage Third Party Vendor Risks: Identify and Manage Third Party Vendor Risks: Using Automation to Increase Visibility Westfield Group Brian Roche Chief Procurement Officer Opus Samuel Mele Vice President Sales sig.org/summit Identify

More information

Using data analytics and continuous auditing for effective risk management

Using data analytics and continuous auditing for effective risk management Using data analytics and continuous auditing for effective risk management November 2013 Irakis Kanavaris Agenda Current trends Common terminology of Data Analytics and CA/CM KPMG approach & observations

More information

5 Core Must-Haves for Improved Internal Audit Performance. Copyright 2018 AuditBoard Inc. 1

5 Core Must-Haves for Improved Internal Audit Performance. Copyright 2018 AuditBoard Inc. 1 5 Core Must-Haves for Improved Internal Audit Performance Copyright 2018 AuditBoard Inc. 1 Introductions Built by experienced auditors, AuditBoard allows enterprises to collaborate, manage, analyze and

More information

What s the cost of control? Keeping control of your business when cash is king

What s the cost of control? Keeping control of your business when cash is king Get up to speed Building Better Finance Functions What s the cost of control? Keeping control of your business when cash is king whatwouldyouliketochange.com 2 PricewaterhouseCoopers LLP Contents Managing

More information

Demystify Governance, Risk & Compliance For Lifesciences

Demystify Governance, Risk & Compliance For Lifesciences www.hcltech.com Demystify Governance, Risk & Compliance For Lifesciences Competitive global markets, more-demanding patients, regulations from multiple regulatory authorities and high product development

More information

Securing Intel s External Online Presence

Securing Intel s External Online Presence IT@Intel White Paper Intel IT IT Best Practices Information Security May 2011 Securing Intel s External Online Presence Executive Overview Overall, the Intel Secure External Presence program has effectively

More information

Learning and Knowledge enabling the magnet for talent

Learning and Knowledge enabling the magnet for talent Learning and Knowledge enabling the magnet for talent About KPMG KPMG is a global network of professional services firms providing audit, tax and advisory services to a wide variety of public and private

More information

Asset Acceptance Capital Corp.

Asset Acceptance Capital Corp. Asset Acceptance Capital Corp. A Practical Approach to Enterprise Risk Management Detroit Chapter IIA September 14, 2010 1 Presenters Jeffrey S. Bankowski, CIA, CPA, CFF Jeff is currently the Vice President

More information

The winning tax transformation trinity. Data, technology and operations

The winning tax transformation trinity. Data, technology and operations The winning tax transformation trinity Data, technology and operations Panel Moderators Daryl Blakeway Director South Africa Tax Performance Advisory Anthony Davis Executive Director EMEIA Tax Performance

More information

Presentation for INCC LUMS 2008 May 2, 2008 Presented by Shahed Latif, KPMG LLP, Silicon Valley

Presentation for INCC LUMS 2008 May 2, 2008 Presented by Shahed Latif, KPMG LLP, Silicon Valley MAINTAINING A SECURE GLOBAL ENTERPRISE : Challenges and Emerging Solutions Presentation for INCC LUMS 2008 May 2, 2008 Presented by Shahed Latif, KPMG LLP, Silicon Valley The 2008 Chief Information Security

More information

Control and testing transformation

Control and testing transformation Control and testing transformation 1 Control and testing transformation Innovation and disruption are providing incredible opportunities and challenges to the process, risk and control environment in the

More information

On the road(map) again. Balancing the emerging regulatory requirements in the Middle East public sector

On the road(map) again. Balancing the emerging regulatory requirements in the Middle East public sector On the road(map) again Balancing the emerging regulatory requirements in the Middle East public sector 38 Deloitte A Middle East Point of View Fall 2014 Public Sector Final destination Governments in the

More information

Data rich governance. Three keys to leading consumer data and information practices. kpmg.com

Data rich governance. Three keys to leading consumer data and information practices. kpmg.com Data rich governance Three keys to leading consumer data and information practices kpmg.com 2018 KPMG LLP, a Delaware limited liability partnership and the U.S. member firm of the KPMG network of independent

More information

FUELING FINANCE S NEEDS FOR INSIGHTS WITH SAP S/4HANA

FUELING FINANCE S NEEDS FOR INSIGHTS WITH SAP S/4HANA FUELING FINANCE S NEEDS FOR INSIGHTS WITH SAP S/4HANA INTRODUCTION: PUTTING THE PIECES TOGETHER We are in a decade of data-driven businesses and new business models such as the sharing economy. Organizations

More information

Navigating the New Health Economy

Navigating the New Health Economy Navigating the New Health Economy How non-traditional healthcare players are using the HITRUST CSF to drive their security programs forward Speakers Dennis Quandt Risk Assurance Director, PwC Boston, MA

More information

Vendor Management Risk Mitigation:

Vendor Management Risk Mitigation: Vendor Management Risk Mitigation: The Importance of Having a Formalized Methodology Sun Life Financial Laura Williams AVP, Procurement Opus Sam Mele Vice President Sales sig.org/summit Case Study: Supplier

More information

Board Audit Committee Training Automation of Audit Function. Anthony Wanyoike TeamMate Consulting East, Central & West Africa

Board Audit Committee Training Automation of Audit Function. Anthony Wanyoike TeamMate Consulting East, Central & West Africa Board Audit Committee Training Automation of Audit Function Anthony Wanyoike TeamMate Consulting East, Central & West Africa Agenda 1. Automation of Audit Function Steps of developing automated Audit Operational

More information

7 Key Trends in Enterprise Risk Management

7 Key Trends in Enterprise Risk Management 7 Key Trends in Enterprise Risk Management John Verver, CPA CA, CISA, CMC Kevin Legere, ACDA Presenters John Verver Consultant and Advisor to ACL Kevin Legere Director of Product Design Agenda Excellence

More information

Emerging & disruptive technology risks

Emerging & disruptive technology risks Emerging & disruptive technology risks Shawn W. Lafferty, KPMG Partner IT Internal Audit/Risk Assurance April 2018 Why IT internal audit? find ways to overcome resource and budgetary constraints. This

More information

Big data strategy to support the CFO and governance agenda

Big data strategy to support the CFO and governance agenda Financial Accounting Advisory Services Big data strategy to support the CFO and governance agenda Big data has the potential to change the way people work. It is creating a culture in which business and

More information

GOVERNANCE. Overview. The Governance Module can address all applicable standards and regulations.

GOVERNANCE. Overview. The Governance Module can address all applicable standards and regulations. GOVERNANCE Overview The platform facilitates the design and development of Information Security Frameworks supported by embedded content and process models that vary depending on the industry sector as

More information

Finance & Performance Management Services. Helping organizations master the finance capabilities that drive high performance

Finance & Performance Management Services. Helping organizations master the finance capabilities that drive high performance Finance & Performance Management Services Helping organizations master the finance capabilities that drive high performance Acknowledged as an industry leader, Accenture offers markettested solutions,

More information

Are you prepared for this Challenge? The new COSO Enterprise Risk Management Framework

Are you prepared for this Challenge? The new COSO Enterprise Risk Management Framework Are you prepared for this Challenge? The new COSO Enterprise Risk Management Framework CAGFO 2018 Conference Winnipeg, MB September 13, 2018; 10:30am Agenda 01 What is being said of ERM today? 02 What

More information

SOLUTION BRIEF EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER

SOLUTION BRIEF EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER ARRIVAL OF GDPR IN 2018 The European Union (EU) General Data Protection Regulation (GDPR) that takes effect in 2018 will bring changes for

More information

Key Success Factors for Digital Transformation in the Banking Industry

Key Success Factors for Digital Transformation in the Banking Industry WHITE PAPER Key Success Factors for Digital Transformation in the Banking Industry Sponsored by: TCS Digital Software & Solutions Jerry Silva November 2015 In 2015, IDC conducted in-depth interviews with

More information

IBM Sterling B2B Integrator for B2B Collaboration

IBM Sterling B2B Integrator for B2B Collaboration IBM Sterling B2B Integrator for B2B Collaboration IBM gives you improve control beyond the edge of your enterprise Overview In this solution overview, you will learn: Marketplace momentum is gained as

More information

Powered by technology, our experts are unlocking the value of your audit. Dynamic Audit

Powered by technology, our experts are unlocking the value of your audit. Dynamic Audit Dynamic Audit Powered by technology, our experts are unlocking the value of your audit 1 Audit is evolving The world is changing. By harnessing the power of data, companies are seizing opportunities to

More information

PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3)

PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3) PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3) 3.1 IV&V Methodology and Work Plan 3.1.1 NTT DATA IV&V Framework We believe that successful IV&V is more than just verification that the processes

More information

Gain strategic insight into business services to help optimize IT.

Gain strategic insight into business services to help optimize IT. Closed-loop measurement and control solutions To support your IT objectives Gain strategic insight into business services to help optimize IT. Highlights Gain insight and visibility across the IT project

More information

CLAconnect.com/creditunions. Impact the Future of Credit Unions

CLAconnect.com/creditunions. Impact the Future of Credit Unions CLAconnect.com/creditunions Impact the Future of Credit Unions We Believe Enabling your success means a better world for all of us, but now, more than ever, a greater number of operational, regulatory,

More information

IBM INDUSTRY GO TO MARKET MODEL

IBM INDUSTRY GO TO MARKET MODEL IBM INDUSTRY GO TO MARKET MODEL Tom Inman, Vice President, Industry Strategy & Integration tinman@us.ibm.com Market success happens when IBM and partners work together Industry Strategy ISVs Go-To-Market

More information

Simplifying the Risk & Compliance THE PREMISE

Simplifying the Risk & Compliance THE PREMISE Monitoring the evolution of risks and compliance activities Simplifying the Risk & Compliance THE PREMISE Organizations face a number of challenges in implementing a risk and compliance management process

More information

Manage Risk. Enhance Compliance. Boost Profitability.

Manage Risk. Enhance Compliance. Boost Profitability. Manage Risk. Enhance Compliance. Boost Profitability. ORM Operational integrity for the petrochemical, oil & gas, manufacturing, mining and utility industries. How do you anticipate, mitigate, and manage

More information

Financial Institutions Consulting. Quality service. Personal attention.

Financial Institutions Consulting. Quality service. Personal attention. Financial Institutions Consulting Quality service. Personal attention. Why Weaver? With more than 65 years of experience and a commitment to our financial institution clients, Weaver is established as

More information

Fulfilling CDM Phase II with Identity Governance and Provisioning

Fulfilling CDM Phase II with Identity Governance and Provisioning SOLUTION BRIEF Fulfilling CDM Phase II with Identity Governance and Provisioning SailPoint has been selected as a trusted vendor by the Continuous Diagnostics and Mitigation (CDM) and Continuous Monitoring

More information

Architecting Business Flexibility. KC Wu, Vice President Cisco Value Chain IT

Architecting Business Flexibility. KC Wu, Vice President Cisco Value Chain IT Architecting Business Flexibility KC Wu, Vice President Cisco Value Chain IT Speed of Change Change is the only constant in life Rate of Change has grown exponentially Globalization Information, Ideas,

More information

10/18/2018. London Governance, Risk, and Compliance

10/18/2018. London Governance, Risk, and Compliance 10/18/2018 Governance, Risk, and Compliance Contents Contents... 4 Applications and integrations supporting GRC workflow... 6 GRC terminology... 7 Domain separation in... 9 Policy and Compliance Management...11

More information

Utility of Analytics Analytics in India. Rajarshi Sengupta Deloitte Touche Tohmatsu December 10, 2014

Utility of Analytics Analytics in India. Rajarshi Sengupta Deloitte Touche Tohmatsu December 10, 2014 Utility of Analytics Analytics in India Rajarshi Sengupta Deloitte Touche Tohmatsu December 10, 2014 India 2014 Facts and Figures India the third largest internet population in the world 15.1% of the population

More information

Solution Sheet. Profitable Small Business Lending

Solution Sheet. Profitable Small Business Lending Solution Sheet Profitable Small Business Lending Improve Profitability by Making Your Small Business Lending Scalable & Efficient Overview Small Business Lending is a complex process. The risk associated

More information

Regulatory Change Management. French Caldwell, Chief

Regulatory Change Management. French Caldwell, Chief Regulatory Change Management French Caldwell, Chief Evangelist @itguru Preserve Protect Perform 3 The GRC Promise I promise to do my best to: Preserve our corporate integrity, Protect our reputation and

More information

Optimizing an Enterprise Wide Effective Vendor Risk Management Program. Pam Schott Head and VP Enterprise Supplier Governance

Optimizing an Enterprise Wide Effective Vendor Risk Management Program. Pam Schott Head and VP Enterprise Supplier Governance Optimizing an Enterprise Wide Effective Vendor Risk Program Pam Schott Head and VP Enterprise Supplier Governance June 1, 2015 Emerging Industry Trends As Procurement organizations mature; their focus

More information

SOLUTION BRIEF EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER

SOLUTION BRIEF EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER EU GENERAL DATA PROTECTION REGULATION COMPLIANCE WITH RSA ARCHER ARRIVAL OF GDPR IN 2018 The European Union (EU) General Data Protection Regulation (GDPR), which takes effect in 2018, will bring changes

More information

BMC - Business Service Management Platform

BMC - Business Service Management Platform 1 Value proposition BMC - Business Service Management Platform Service Stability and Process Control Self Service. Service Desk. Problem Resolution. Asset Management. Change and Release. Identity Management.

More information

Why PMOs Fail: Is Your Organization at Risk?

Why PMOs Fail: Is Your Organization at Risk? Why PMOs Fail: Is Your Organization at Risk? June 10, 2010 Presented by Phil Kyle Infinitive 2010 1 Agenda» Defining Our Terms» How PMOs Create Tangible Value» What Are the Common PMO Pitfalls?» Assessing

More information

ENABLE DIGITAL - % COMPLETE ENGAGED WORKFORCE - % COMPLETE

ENABLE DIGITAL - % COMPLETE ENGAGED WORKFORCE - % COMPLETE Each commitment listed below consists of one or more projects, and has at least one performance measure. Every year, targets are established to track progress towards the measure(s). The status shown on

More information

CGMA Competency Framework

CGMA Competency Framework CGMA Competency Framework Technical Skills CGMA Competency Framework 8 Technical Skills : This requires a basic understanding of the business structures, operations and financial performance, and includes

More information

FINRA 2090/2111 Solutions & Expertise

FINRA 2090/2111 Solutions & Expertise FINRA 2090/2111 Solutions & Expertise TABLE OF CONTENTS Overview... 3 Requirements for Institutions... 3 Recommended Approach... 4 Actimize Solutions for FINRA Know Your Customer & Suitability Requirements...

More information