Browse: Home > News & Views > Newsletters

Newsletters

DoubleCheck Monthly Newsletter: May ’13…SOX Controls Assurance: Direct Testing vs. Self-Assessment…Pros & Cons? - May 2, 2013

This question arises frequently in my conversations with senior Audit and Compliance executives. The answer for each organization depends upon a myriad... 

DoubleCheck™ Monthly Newsletter: April ‘13…“Are you still depending upon Spreadsheets for your SOX Controls Testing?” - April 1, 2013

Would you be surprised to learn how many Fortune 1000 companies (or even Fortune 100 companies for that matter), are still using spreadsheets for their... 

DoubleCheck Monthly Newsletter: March ’13–“GRC & Audit Software…Do you get it prix fixe or ala carte?” - February 28, 2013

As GRC & Audit software developers, we often are braced with an initial screening question from Buyers before we even learn what their key requirements... 

DoubleCheck™ Monthly Newsletter: Feb ‘13: “Are you managing your Issues or just tracking them?” - February 4, 2013

Here at DoubleCheck™, we have been seeing an increased interest from a variety of organizations in an automated solution to help “track” a myriad... 

DoubleCheck Jan. ’13 Monthly Newsletter: “Do you consider the recent Fiscal Cliff deal a Risk Event for your Company?” - January 7, 2013

There tends to be two divergent schools of thought on the subject of Compromise, including this recent Fiscal Cliff deal last week:  1.  Any deal is... 

DoubleCheck Dec ’12 Monthly Newsletter: “Twelve Days in the Life of a Risk Owner” - December 3, 2012

“Twelve Days in the Life of a Risk Owner” (sung to the tune of “The Twelve Days of Xmas”…) 1.  On the first day of the Risk review, my CRO gave... 

DoubleCheck™ Newsletter: Nov ‘12…“Bow-Tie Risk Analysis: It isn’t your Father’s Half-Windsor…” - November 5, 2012

There is no shortage of Risk Analysis models and tools available to an interested party.  You can look at a multitude of options and read varying opinions... 

DoubleCheck Oct ’12 Monthly Newsletter: “Are People in control of your Risks, or are they the Risk?” - October 1, 2012

The basic premise of SOX compliance as designed in 2002 was to ensure the organization had (and could prove, or at least be willing to attest that they... 

DoubleCheck Sept ’12 Monthly Newsletter: “Risk is a Many-Splendored Thing” - September 10, 2012

Inspired by a classic old movie from the ‘50s with a similar name (substitute “Love” vs. “Risk” for the cinematically challenged), I thought... 

DoubleCheck August ’12 Monthly Newsletter: “Policy Management is More Than Just Document Management” - August 6, 2012

Compliance of most any type hinges on what standard the compliance is being measured against. Many people first think of that standard to be a Control. ... 

DoubleCheck™ July ’12 Monthly Newsletter: “The Difference between Risk-based Audits and the Risks In Audits” - July 11, 2012

With increasing Audit Committee and Board emphasis on ERM, Risk-based Audits are certainly becoming the norm, if not the standard, for the types of audits... 

DoubleCheck June ’12 Monthly Newsletter: “The Role of Technology in Managing Compliance Risk in the Era of the Corporate Bounty Hunter” - June 11, 2012

  By Michael Rasmussen, Corporate Integrity Who is the government inciting to report issues of corruption, fraud, and non-compliance? YOUR EMPLOYEES:... 

DoubleCheck May ’12 Monthly Newsletter: Mitigating Risk in the Era of the Corporate Bounty Hunter - May 14, 2012

  By Michael Rasmussen, Corporate Integrity Business is global, distributed and dynamic. Organizations of all sizes and industries have global client,... 

DoubleCheck™ Monthly Newsletter: April ‘12 “Risk Tolerance: Depends if it is your Risk or someone else’s” - April 9, 2012

Risk Tolerance:  Depends if it is your Risk or someone else’s Psychologists have shown time and time again that Risk Tolerance is directly related to... 

DoubleCheck™ Monthly Newsletter: March ‘12: Should you scope your Controls by Type: Detect, Prevent or Mitigate? - March 5, 2012

When the PCAOB released the AS5 guidelines a few years ago, along with SEC TDRA hierarchy, there was a significant change in how SOX 404 Compliance would... 

DoubleCheck Feb ’12 Newsletter: “Risk Management Lessons from the Costa Concordia?” - February 7, 2012

While being inundated with news about the Costa Concordia disaster, I got wondering about their ERM (Enterprise Risk Management) processes, and quickly... 

DoubleCheck™ January ’12 Newsletter: CAE Exit Interview Headline: “It wasn’t broke, so I didn’t fix it” - January 5, 2012

Chief Audit Executives (CAE) have a difficult task.  They are oftentimes placed in the unenviable position of having to be a “slave to two masters”. ... 

Monthly Newsletter-Dec ’11: “The 12 Days of Audit” - December 5, 2011

“The Twelve Days of Audit” 1.  On the first day of the audit, my Audit Manager gave to me… One bus ticket to Pigeon Forge,Tennessee 2.  On the... 

Nov ’11 Newsletter: “An Audit or a Root Canal…what’s your pleasure?” - November 9, 2011

Since I just finished having a root canal 3 hours ago, this question isn’t as crazy as it may initially seem.  Sitting in an endodontist’s (specialty... 

GRC & Audit Software Reviews: How to perform Apples to Apples vs. Apples to Oranges Comparisons… - October 7, 2011

“Due diligence” is the mantra of any executive considering the acquisition of a new software tool, especially one with broad-reaching scalability... 

GRC Spreadsheets: An Oxymoron? - September 16, 2011

GRC Spreadsheets:  An Oxymoron? Are you still managing your GRC elements just with spreadsheets?  A number of analysts have noted that spreadsheets are... 

“SOX audits vs. Operational Audits: What is the right balance for your IA department?” - August 3, 2011

This is a question that has no right or wrong answer, but is one that every Chief Audit Executive (CAE) needs to consider.  Even private firms that aren’t... 

Control Tests vs. Self-Assessments: What is the Right Balance? - July 8, 2011

This question arises frequently in my conversations with senior Audit and Compliance executives, particularly in the context of SOX compliance.  The answer... 

IT GRC vs. Financial GRC: Which is the Locomotive and which is the Caboose? - June 6, 2011

I know this seems like a trick question. After all, the “best practices” definition of GRC tells us that there should be no separation between... 

Make May your “catch-up” month… - May 6, 2011

Whether you are in Audit, SOX or ERM, May can be your “catch-up” month. May includes some general events (Mother’s Day, Memorial Day) and specific... 

“The Law of Unintended Consequences” - April 4, 2011

How many times in your professional or personal life have you taken an action that had seemed inconsequential at the time but had far reaching unanticipated... 

DoubleCheck™ March ’11 Newsletter: Is your fear of migration keeping you frozen in place? - March 3, 2011

The laws of physics tell us that a body at rest tends to stay at rest.  In the business world, if you stay “at rest”, someone else is going to pass... 

Feb ’11 Newsletter: Risk-Do you assess it or just audit it? - February 1, 2011

Risk:  Do you assess it or just audit it? While this might seem like a simplistic question, the underlying premise is key.  And the question is relevant... 

2011: Are you ready, or are you waiting? - January 4, 2011

It’s a new year, but that’s an old headline.  You might remember (ok, you probably don’t) that this was the headline of the DoubleCheck™ monthly... 

DoubleCheck Newsletter-Dec. ’10: “What role does IT play in your GRC & Audit environment?” - December 3, 2010

In previous monthly newsletters, I have covered a range of subjects regarding governance, risk, compliance (GRC) and audit.  I’ve addressed the shift... 

How Important is After-Sale Vendor Support to You? - November 1, 2010

How important is after-sale vendor support to you?  I know that your decision process for acquiring a new GRC and/or Audit software solution is filled... 

Is your focus on the 3rd Qtr close or 2011 planning? - October 7, 2010

This is typically one of the busiest and most conflicting times for companies on a calendar Fiscal Year. This is particularly true for those responsible... 

What does Compliance mean? Depends who you ask… - September 8, 2010

In the world of GRC, there continues to be an ebb and flow in the emphasis between the “G” (governance), “R” (Risk) and “C” (Compliance). ... 

“GRC & Audit Support the way YOU need it” - August 24, 2010

There is no shortage of software tools available to you for managing one aspect or another of governance, risk, compliance (GRC) and audit activities. ... 

Custom Website Design NJ
Reinhart Marketing Group