NORTH AMERICA EMEA ASIA
All programs BankAudit 2013 InfoSec World Conference & Expo 2013 SuperStrategies Conference & Expo 2013 The Conference on Big Data Security
All programs The Audit Directors & Managers Symposium The MIS Audit Leadership Institute The MIS CAE Master's Program
ABOUT MIS INTERNAL AUDIT IT AUDIT INFO SECURITY IN-HOUSE TRAINING  
 
     Conferences            >      Seminars            >      Symposia            >      Webinars      Online Self Study      Training Weeks      In-House Training      Certificate Programs>      Exhibiting Info      Ways to Save      Request Info      Event Downloads      White Papers      Call for Instructors      Contact MIS      Site Map
Internal Audit IT Audit Info Security
Internal Audit IT Audit Info Security
Auditing the Enterprise Risk Management Process - OAR341 
Using This Critical Management and Governance Tool for a Top-Down, Risk-Based Approach to Mitigating Risk
Learning Level: Intermediate
CPEs: 24 Fee: $2,050.00
Focus and Features Who Should Attend Agenda Register
Agenda

What You Will Learn
1. Defining the Key Components of ERM
- identifying risk events
- assessing risk, probability, and impact
- risk responses
- monitoring the ERM process on an ongoing basis

2. A Top-Down Risk-Based Approach to Establishing an ERM Process
- mapping the organization to determine the natural risk assessment structure
- the risk organizational structure
-- makeup
-- reporting structure
-- process design
-- operating format
- methods of developing risk inventories to be used as the baseline for ERM
- searching for commonalities
- evaluating alternative ERM structures: subjective vs. objective
-- system-centric
-- data-centric
- determining the data/information inventory that will be the primary indicators of risk in each part of the organization
- establishing the logical data pathway of the risk data indicators that drive to the root cause of organizational failures
- designing the responsibility spectrum for risk

3. Integrating Business Risk and Internal Control
- the concept of business risk
- determining the relationship of key business risks and internal controls
- focusing the strategy on fundamental business process
- understanding the key attributes of outcome and output and its impact on governance
- using KPIs as the baseline for process-based oversight

4. Developing an ERM Audit Process
- gaining an understanding of the ERM environment
- risk assessing the ERM environment
- focusing the audit and establishing the audit scope
- determining the audit approach/tools/techniques/strategy
- defining an effective report format to bring about change

5. Auditing the ERM Process
- auditing the risk organizational structure: who, what, where, how and why
- auditing the risk infrastructure for completeness and coverage
- auditing the information flow of the ERM environment
-- timeliness
-- accuracy
-- usefulness

6. Auditing the Effectiveness of ERM in the Organization
- auditing the evaluation criteria of success for the ERM
- evaluating the real-world organizational impact of the ERM process in precluding or minimizing risks
- auditing areas of special concern in ERM, including outsourcing
- auditing the maintenance and future strategic initiatives within ERM to keep it current and cutting-edge

7. Case Study

 
REGISTRATION QUESTIONS?
For questions about your registration, government and team discounts, or multiple registrations, please call Linda Ronconi at (508) 879-7999, ext. 501 or e-mail mis@misti.com.

IN-HOUSE SEMINARS
This seminar is available in-house. For more information about bringing this or other MIS seminars to your organization, please call Mimi Hatch at (410) 692-2465 or e-mail mhatch@misti.com.

 


Dates/Locations
April 22 - 24, 2013
Boston
November 6 - 8, 2013
Orlando