Industry insiders tout enterprise risk management (ERM) as the most effective strategy an organization can use to manage a plethora of risks, running the gamut from strategic, market, credit, operational and financial exposure to the daunting array of man-made and natural disasters. New internal audit standards from the Institute of Internal Auditors (IIA) may change the paradigm; they require internal auditors to assume responsibility for monitoring enterprise risk, creating tension in some organizations over who is in charge. CPAs with internal audit or risk management responsibilities can use this article to determine whether ERM is a strategy that will benefit their organizations and who should be responsible for overseeing risk management. While the process of building an ERM strategy is similar, overall responsibility for enterprise risk is changing because of the IIA standards.
Enterprising Views of Risk Management
Journal of Accountancy
Length of Resource