Chris McClean, who blogs for Forrester reminds us that ISO 31000 will not be a game-changer nor start a revolution in the immediate future. He agrees with many that organizations will benefit from a “commonly accepted risk vocabulary and a…
COSO ERM book is like an 8-Track player
I have to give my props to Harry Cendrowski and William C. Mair of Cendrowski Corporate Advisors for writing a book about enterprise risk management, but writing one titled “Enterprise Risk Management and COSO: A Guide for Directors, Executives, and…
Internal audit is not risk management even in New Zealand
Keeping with today’s theme “internal auditors are not risk managers”, here’s something I quite enjoyed courtesy of a report from Marsh in New Zealand called The 2008 State Sector Risk Management Practices Report. Page 17 it reads: Internal Auditors play…
I’ll review ISO 31000 if you send me a copy
It looks like the long-awaited new International Standard, ISO 31000:2009, Risk management – Principles and guidelines is finally out and can be yours for only CHF 112, or about USD 110 or CAD 116. Here’s the link to the press…
Marcano rants about the misuse of “mitigate”
I came across a great post by Antony Marcano who rants about the misuse of the word “mitigate”. (For your information, this post is considered great because I agree with it.) You can read his entire post here: http://www.testingreflections.com/node/view/8138 Mr.…
From AS/NZS 4360 to ISO 31000 – A history lesson
A consultant from New Zealand named Chris Peace, traces the history of the AS/NZS 4360 standard and the new ISO 31000, due out just in time for Christmas, in this copy of Safety and Health Practitioner dated October 16, 2009.…
ERM policy for United Nations agency
It’s nice to see that an agency of the United Nations, The International Fund for Agricultural Development (www.IFAD.org), has an enterprise risk management policy. This one is pretty straightforward with a good format and definitions. IFAD ERM policy (Riskczar).pdf They…
H. Felix Kloman – COSO ERM vs ANZ 4360 Deathmatch
Here’s a 2003 article written by Mr. Kloman where he reviews a draft version (at the time) of 4360 and one of COSO ERM authored by PwC. Although he is not reviewing the final versions, one can still draw similar…
Risk Management Frameworks are Boring
There are plenty of frameworks out there on the Internet that you can read or download for free so why not just read one of those? Well, first of all, frameworks are boring; people who write policies for a living…