| |
| |
Preface | |
| |
| |
Importance of Enterprise Risk Management Today | |
| |
| |
COSO Risk Management: How Did We Get Here? | |
| |
| |
COSO Internal Controls Framework | |
| |
| |
COSO Internal as a Recognized Standard | |
| |
| |
Origins of COSO ERM | |
| |
| |
Risk Management Fundamentals | |
| |
| |
Fundamentals: Risk Management Phases | |
| |
| |
Other Risk Assessment Techniques | |
| |
| |
Risk Management Fundamentals Going Forward | |
| |
| |
Components of COSO ERM | |
| |
| |
ERM Definitions and Objectives: A Portfolio View of Risk | |
| |
| |
COSO ERM Framework Model | |
| |
| |
Other Dimensions of the ERM Framework | |
| |
| |
COSO ERM Organization Objectives | |
| |
| |
ERM Risk Objective Categories | |
| |
| |
COSO ERM Entity and Unit Level Risks | |
| |
| |
Putting It All Together | |
| |
| |
Implementing an Effective ERM Program | |
| |
| |
Roles and Responsibilities of an Enterprise Risk Management Function | |
| |
| |
ERM Communications Approaches | |
| |
| |
CRO and an Effective Enterprise Risk Management Function | |
| |
| |
Integrating ERM with COSO Internal Controls | |
| |
| |
COSO Internal Controls: Background and Earlier Legislation | |
| |
| |
COSO Internal Control Framework | |
| |
| |
COSO Internal Controls and COSO ERM Compared | |
| |
| |
Sarbanes-Oxley and COSO ERM | |
| |
| |
Sarbanes-Oxley Background | |
| |
| |
SOx Legislation Overview | |
| |
| |
SOx and COSO ERM | |
| |
| |
Importance of ERM in the Corporate Board Room | |
| |
| |
Board Decisions and Risk Management | |
| |
| |
Board Organization and Governance Rules | |
| |
| |
Audit Committee and Managing Risks | |
| |
| |
Establishing a Board-Level Risk Committee | |
| |
| |
Audit and Risk Committee Coordination | |
| |
| |
COSO ERM and Corporate Governance | |
| |
| |
Role of Internal Audit in ERM | |
| |
| |
Internal Audit Standards for Evaluating Risk | |
| |
| |
COSO ERM for More Effective Internal Audit Planning | |
| |
| |
Risk-Based Internal Audit Findings and Recommendations | |
| |
| |
COSO ERM and Internal Audit | |
| |
| |
Understanding Project Management Risks | |
| |
| |
Project Management Process | |
| |
| |
Project-Related Risks: What Can Go Wrong | |
| |
| |
Implementing COSO ERM for Project Managers | |
| |
| |
Establishing a Program Management Office (PMO) | |
| |
| |
Information Technology and ERM | |
| |
| |
IT and the COSO ERM Framework | |
| |
| |
Application Systems Risks | |
| |
| |
Effective IT Continuity Planning Worms, Viruses, And System Network Risks | |
| |
| |
IT and Effective ERM Processes | |
| |
| |
Establishing an Effective Risk Culture | |
| |
| |
First Steps to Launching the Culture - An Example | |
| |
| |
Promoting the Concept of Enterprise Risk | |
| |
| |
Building the COSO ERM Culture: Risk-Related Education Programs | |
| |
| |
Keeping the Risk Culture Current | |
| |
| |
ERM Worldwide | |
| |
| |
ERM "Standards" Versus an ERM Framework | |
| |
| |
ERM and ISO | |
| |
| |
Convergence Of Risk Management Standards And Practices | |
| |
| |
COSO ERM Going Forward | |
| |
| |
Future Prospect for COSO ERM | |
| |
| |
COSO ERM and ISO | |
| |
| |
Learning More about Risk Management | |
| |
| |
ERM: New Professional Opportunities | |
| |
| |
Index | |