Welcome to our final blog of our COSO 2013 series. Over the course of the series, we have discussed how to develop a control environment, execute risk assessments, design control activities, and how to use information to make decisions regarding your control environment and communicate your control objectives. In this blog, we will cover how…
Archives.
COSO 2013: Information and Communication
Welcome to the fifth post of our COSO 2013 blog series. To date, we have discussed how to develop a control environment, execute risk assessments, and design control activities. In this blog, we will cover how to leverage information to make insightful decisions concerning your control environment, and how to communicate your control objectives to…
COSO 2013: Control Activities
Welcome to part four of our COSO 2013 blog series. We have covered COSO’s guidance around the development of a control environment and execution of risk assessments. In this blog, we will focus on how to use the output of your risk assessments to properly select, design, and implement control activities. How are Risk and…
COSO 2013: Risk Assessment
Welcome to part three of our COSO 2013 blog series. In our previous blog, we discussed the COSO framework’s key principles for the development of a robust control environment and ways that ServiceNow can assist with the implementation of those principles in your organization. Having setup your control environment, we can now focus on the…
4 Business Process and Service Management Resolutions You Should Make
1. Resolve to consolidate your most critical IT and business processes and services. Disparate and duplicative business processes and services are costly and challenging to manage. They also make it impossible to maximize agility, or to deliver consistently excellent experiences to users. Read: “Enterprise Service and Process Excellence: What It Is and How to Get…
COSO 2013: Control Environment
Last week we introduced readers to the changes taking place as a result of the COSO 2013 framework superseding its predecesor, COSO 1992, on December 15th. In this post, we’ll tackle the first of the five components of internal control. When you look at the COSO cube, one of the first sections to jump out…
COSO 2013: Is Your Business Prepared?
ATTENTION: Risk Managers and Audit Directors! Do you know what is so important about December 15TH? No, it’s not just the final countdown to holiday vacation. Rather, today the new COSO 2013 Framework officially supersedes the 1992 Framework. The COSO Framework is the most widely recognized and adopted enterprise risk management framework, and is the…
One Tool You Must Have to Manage Regulatory Change
Michael Rasmussen, Chief GRC Pundit at GRC 20/20 Research, is in the process of publishing a blog series on the daunting challenges that organizations must face when addressing governance, risk, and compliance (GRC). His first post focuses on regulatory change management and what he calls the “tsunami” of regulatory change that overwhelms many organizations. One…
Pushback: A Critical Success Factor in IT Request Management
IT leaders and their teams often find themselves in what I like to call a ‘Dickensian dichotomy’ – a “best of times, worst of times” situation. With access to tools such as Amazon Web Services (AWS) and ServiceNow, savvy IT teams can do almost anything enterprise users ask of them. That’s the “best of times”…
Simplify Internal Controls for ServiceNow GRC Success
Believe it or not, it’s been 10 years since publicly traded companies were first required to comply with the Sarbanes Oxley act. Since then, the majority of public companies have matured their policies and processes, and gained a better understanding of the control activities that should be in place. Today, organizations are focusing their time and…