- This topic has 1 reply, 2 voices, and was last updated 6 years, 11 months ago by .
-
Topic
-
If you get a written communication that specifically asks for a certain amount and you know less than what they are asking what is the best way to answer. In the below question, I knew three of the 4 elements: risk response, event ID, and objective setting. The last was internal, but I had no idea. If that was the case during the test, is it better just to put the 3 elements I know and don’t put a 4th one or just make an educated guess at what the 4th one might be.
As an internal auditor, you are familiar with COSO’s Enterprise Risk Management—Integrated Framework, and you realize that there are other components the company should be addressing both in its memo and in its process. Draft a memo to your supervisor suggesting the additional four elements of the ERM framework and provide a definition for each one.
Trust the ProcessFAR - 83 Wiley
BEC - 68 Wiley, 74 (Wiley & NINJA), 79 (Wiley, NINJA, & Becker SIMS)
AUD - 72 Wiley, 77 (Wiley & NINJA)
REG - 88 Wiley & NINJA
- You must be logged in to reply to this topic.