Risk Management: Moving Beyond SOX Compliance


SOX compliance is very important. SOX enforcement is missing so far. Nothing really happens to companies that do not comply but the threat is always there. So it is better to comply.

But Risk Management - the idea behind corporate governance - is a topic we should focus on. That requires thinking beyond SOX or the other flavors of the month.

The attached presentation has a very good discussion on the topic. It is onerous to read through but worth it.

Download (Please login and scroll down)

Download Document: Documents are in common file formats such as Microsoft Word (doc), Powerpoint (ppt), Excel (xls,csv,xlsx), and Adobe pdf.
Download


Related Categories




Related Topics




Related Articles


7 Key Information Technology Risks

This article discusses the seven key information technology (IT) risks that a CIO must "discuss, strategise and budget for."

An Introduction to Enterprise Risk Management (ERM)

This introduction to enterprise risk management (ERM) covers its definition, key trends, best practices and future direction.

Corporate Governance of Information Technology

This presentation makes the connection between corporate governance, information technology IT governance, information security governance, and risk management.

Implementing the COSO Framework

 This presentation provides an overview of the COSO framework and discusses its use and implementation considerations.

Improving Information Security Compliance

This paper presents a process-oriented approach to manage organizational change needed to improve information security compliance. The approach uses Business Aligned Information Security  anagement (BAISeM) and principles that have been derived from...

Integrated Framework for Enterprise Risk Management (ERM)

This paper presents an executive summary of COSO - an integrated framework for enterprise risk management (ERM).

Key Compliance Requirements

This whitepaper discusses the requirements for compliance, and their implications for actions that an organization must take to avoid legal, and regulatory jeopardy. The paper presents these imperatives in the context of the key laws, and regulations...

Management of Risk: Guidance for Practitioners Primer

 Everything you wanted to know about Management of Risk: Guidance for Practitioners (M_o_R®) in less than one thousand words

Managing Enterprise Risk

 This presentation discusses the imperative of transitioning to "active and predictive enterprise-wide risk management, monitoring & control"

Managing Enterprise Risk

This paper presents the opinion and experiences of CIOs - and their peers - on enterprise risk management - what are the key issues in ERM? How to address risk management in the enterprise? who is responsible? what are some leading practices? Good Di...

Managing Risk in Process Improvement

This presentation discusses the lessons learned about risk management in process improvement projects.

Overview of Risk IT Framework

  Introduction to the Risk IT Framework which "complements and extends COBIT and Val IT to make a more complete IT governance guidance resource."

Risk Assessment Process

 Risk assessment process with steps and checklist (chart)

Risk assessment tips for smaller companies

I have seen quite a lot of smaller companies (up to 50 employees) trying to apply risk assessment tools as part of their ISO 27001 implementation project. The result is that it usually takes too much time and money with too little effect.

Risk Management Guide

 Risk Management Guide for Information Technology Systems describes a risk management methodology, framework and process for risk assessment, evaluation and management.

Risk Management with Balanced Scorecard

 This case study highlights incorporating risk management into balanced scorecard enabled strategy.

Risk management, Maslow and Memetics

This paper argues for the management of “opportunity” within the risk process and provides practical solutions toward that end. 

The evolving role of IT managers and CIOs

The 2010 IBM Global IT Risk Study revealed investing in IT risk management can provide significant business benefits

Top 10 Risks for Global Businesses

 This report discusses leading risk management practices and how they can positively affect business value creation even if the feared event does not happen.




Posted on 03/18/2009 by


Risk Management: Moving Beyond SOX Compliance author Webmaster1

Webmaster1




Signup For ThoughtLeader









Subscribe


CIO Index

What every CIO needs to know

CIO Index is the world's largest professional network for CIOs - of the CIO, for the CIO, by the CIO. 

Over 60,000 CIOs and other IT Executives use CIO Index to Learn, Network and Share.

 

Cioindex, Inc.

  • (+1) 800-309-3550
  • Mon - Fri 9:00am - 5:00 pm
  • 115 Franklin Tpke, Mahwah, NJ 07430