I just found this very interesting blog post on the blog of Peter Bonisch. You can find the post here and I suggest you read the post in full.I’ve reacted to this post with my own thoughts on the subject matter. You can find my reply below.Hi Peter, Mike, Matthew,Just wanted to jump into this … Continue reading A reaction to “Kaplan’s heresy”
Category: Stream of Consciousness
Where to put your internal auditors?
Imagine the following theoretical scenario: you have an organization which has a significant number of different activities. It looks a lot like a typical Japanese supercompany, with diverse activities across the entire activity spectrum, not necessarily related to one another. You have one audit committee you need to report to. Where do you put your … Continue reading Where to put your internal auditors?
Stakeholder consultation in risk management
One of the elements COSO-ERM does not thoroughly address is stakeholder consultation in risk management. Sure, there is the required communication capping stone on top of the COSO pyramid, but the activities described therein fails to adequately address the needs and complexity of interacting with your stakeholders on a regular basis in the context of … Continue reading Stakeholder consultation in risk management
Dual using Pocket and Instapaper in one workflow
I’m an absolute Instapaper fanSo much of what I’m about to write feels a bit like betrayal. Betrayal to Instapaper, betrayal to Marco Arment, whose 5by5 podcast I try to listen to weekly. Still, I’ve recently integrated Pocket into my workflow, where it replaced a function I intended Instapaper for, but I never figured out … Continue reading Dual using Pocket and Instapaper in one workflow
Not at the table, but perched on the radiator
HeadlineA number of recent publications have extoled the virtues of internal audit having a seat at the management table. I don’t agree. I think that a seat at the table for the Chief Audit Executive would probably be the worst place to be. We need to be in the room, but probably sitting on top … Continue reading Not at the table, but perched on the radiator
Weaponizing internal audit – part II
I missed an important element when writing the short post in weaponizing internal audit. This post was inspired by a sentence written by Mike Monteiro in his new book, “Design is a Job”. When we talk about using internal audit as a defensive asset whose presence should ensure higher compliance, it also requires internal audit … Continue reading Weaponizing internal audit – part II
Putting the cart in front of the horse, euhm, kid
I had an interesting conversation this morning in the train to work. Discussing the lack of guidance about future avenues school choices taken now imply, I had a flashback. I remember one of my first days at University. We walked into an economics lesson, and the professor started to tell us why economics was so … Continue reading Putting the cart in front of the horse, euhm, kid
Weaponizing internal audit
"Your lawyer is a defensive asset and not to be weaponized unless absolutely necessary.". Courtesy of Mike Monteiro. Internal auditors are much the same. In essence, we are defensive assets. Our presence should prevent issues. But in order to be a relevant defensive asset, you need to be credible as a relevant threat ... Internal … Continue reading Weaponizing internal audit
“You are responsible for what you put into the world”
"But as a designer, hell, as any type of craftsperson, you are responsible for what you put into the world." - Mike Monteiro in his just published book "Design is a job" think about it. It's your responsibility. And don't forget, it's as much about what you do as it is about what you accept, … Continue reading “You are responsible for what you put into the world”
Let’s talk about risk
The importance of consultation and communication in risk managementISO 31000 refers to consultation and communication with stakeholders as a key activity in a well implemented risk management methodology. Let’s examine why these elements are important. The elementsISO talks about consultation and communication with stakeholders. So we need to explain why: consultation communication stakeholders are important. … Continue reading Let’s talk about risk
Exploring The Black Box 