About "Risk assurance"
The PwC risk assurance practice focuses on the details of company risk. Specifically, it looks at processes, policies, systems and controls with a fresh eye as well as business processes, regulation, IT and other projects, internal audit, data integrity, and the third parties you work with.
More about this author
- Vendor Controls Assurance (SOC 2+): A cost effective approach to building customer trust
2/24/15 | Risk Assurance
The rate of global outsourcing of both core and support functions within organizations is rapidly rising. In an attempt to further reduce costs, organizations are asking that outsourced vendors play a larger role in supporting critical activities of the business. The result is increased pressure on service providers to provide greater transparency over their controls, so that their customers’ have assurance over their vendor’s operations. PwC’s Vendor Controls Attestation Report (SOC 2+) is designed to manage outsourcing risks and provide assurance over vendor controls, while saving both the vendor and customer money and time.
- SOC 2 and 3: Building customer trust through controls reporting
2/24/15 | Risk Assurance
Organizations are increasingly looking to global markets for outsourcing as a means of reducing costs and increasing efficiencies. In order to receive assurance over their vendors’ operations, companies are demanding SOC (Service Organization Controls) reports prepared by independent auditors.
- Empower loss prevention with strategic data analytics
2/9/15 | Risk Assurance
Retailers are realizing that the strategic management of risk and the reduction of shrink can have substantial impact on both profitability and customer satisfaction. Savvy retailers are using data analytics to add value to their loss prevention and risk management programs. This paper outlines key ways retailers are building successful enterprise-wide loss prevention programs that apply data and analytics.
WebcastSignificant Others - Risks and Rewards of Third Party Business Relationships - February 3, 2015
1/15/15 | Risk Assurance
Join PwC and a panel of industry guests for a recorded webcast discussion on what organizations can be doing to enhance their Third Party Risk Management program governance, monitoring and compliance benefits.
WebcastPave the way: Build a value driven SAP roadmap - January 29, 2015
1/13/15 | Risk Assurance
We invite you to watch PwC's SAP GRC webcast to learn about leading practices in building a business case and a roadmap for your GRC program and technologies.
- Are you prepared to protect your brand? Enhance your product recall process
12/9/14 | Risk Assurance
Recalls can have a devastating impact on the operations and brands of retail and consumer companies. But companies that manage the recall process effectively can transform a potential crisis into a business advantage.
- If you hold a C-Suite title then PwC invites you to participate in our annual State of the Internal Audit Profession and Risk in Review Survey
11/20/14 | Risk Assurance
Over the years, thanks to the input of thousands of executives from a number of sectors and territories, we have gained significant insight into how organizations are addressing the evolving risk landscape. The findings are published in both PwC's State of the Internal Audit Profession Study and our Risk in Review Study.
- The CMO’s role in privacy: Are your marketing programs affecting your brand?
11/10/14 | Risk Assurance
Organizations often use customer information collected online to understand and effectively target consumers. This process requires not only the attention of the chief privacy officer, but also the chief marketing officer. Almost daily, news headlines underscore the importance of this with data breaches becoming commonplace. For consumers to provide complete and accurate information, they must know they can trust your organization.
- Rethinking media auditing and benchmarking pools
11/10/14 | Risk Assurance
Knowing how your advertising spend compares to that of your competitors is an important benchmark that allows you to save money; and using media auditing and benchmarking pools is the definitive way to do this. Or is it? It’s time to question the value of these pools.
- Present and functioning: Fine-tuning your ICFR using the COSO update
11/7/14 | Risk Assurance
With the COSO’s 1992 Control Framework being superseded by the 2013 updated edition on December 15, 2014, now is the time for companies to use the updated framework to evaluate the effectiveness of their systems of internal control over financial reporting. This paper talks through the updated framework and these competencies to evaluate the effectiveness of companies’ systems of internal control over financial reporting.
- Fortified for success - Building your company’s risk, controls and compliance ecosystem, for the IPO and beyond
11/5/14 | Risk Assurance
Going public is a transformational event that pushes a company into view of regulatory, investor, and analyst scrutiny. Companies that delay getting their risk management, compliance and compliance infrastructure in order until after the IPO may be jeopardizing their ability to reap the full benefits of going public. This paper lays out steps that will help companies establish a foundation and cover the company’s critical risks and controls, both pre-and-post IPO.
WebcastThe European Data Protection Regulation: What this means for US businesses - November 4, 2014
10/10/14 | Risk Assurance
The proposed General Data Protection Regulation, which is currently proceeding through the European legislature, would introduce widespread data protection changes and greatly increase financial sanctions for noncompliance. These changes are likely to raise significant challenges in regard to data protection compliance for all businesses (regardless of the location of their establishments) that operate or provide goods and services within the European Union (EU). During the webcast, Jay, Stewart and James will discuss the changes the new law would introduce, its current status and how US companies can prepare.
- Metrics by design - A practical approach to measuring internal audit performance
10/1/14 | Risk Assurance
As leading internal audit functions have transformed to meet increasing expectations, metrics have become a critical tool for Internal Audit to demonstrate its value to the organization and drive its performance against stakeholder expectations. Building on key findings from PwC’s 2014 State of the Internal Audit Profession study, this paper explores how internal audit functions can leverage metrics to both communicate the value they are providing as well as drive results.
- Goods gone bad: Addressing money-laundering risk in the trade finance system
10/1/14 | Risk Assurance
The rise of trade-based money laundering presents direct financial, reputational, and compliance risk to the financial services companies, banks, and global trade organizations that provide and utilize trade finance. Financial firms can address these increased AML challenges by leveraging analytics and statistical transaction monitoring techniques to identify information, trends, connections, and anomalies indicative of trade-based money laundering schemes.
- Managing the Shadow Cloud - Integrating cloud governance into your existing compliance program
9/10/14 | Risk Assurance
The world of computing has changed, and executives have begun to realize that shadow cloud activity cannot be ignored. At the same time, realizing the benefits of the cloud with more confidence about the risks and rewards depends on knowing how to prudently say “yes” to the cloud.
- EU Data Protection Reform The challenges and benefits of compliance for businesses
7/31/14 | Risk Assurance
The passage of the General Data Protection Regulation that is proceeding through the European legislature is likely to raise significant challenges in regard to data protection compliance for all businesses that operate or provide goods and services within the European Union. With passage likely, proactive companies are taking steps today that will help them prepare to comply with future requirements.
- Deeper insights for greater strategic value: Oracle Advanced Controls (GRC) Study
6/2/14 | Risk Assurance
GRC Technology has become an increasingly critical factor for driving value (i.e., recovering profitability, increasing efficiency, detecting fraud, etc.) and automating manual compliance and risk management activity in the enterprise. Organizations have increased their adoption of Oracle Advanced Control (“AC”) to improve the oversight of corporate governance, including financial reporting compliance, enterprise risk management (ERM), and related audits. To better understand organizations’ awareness and how organizations are using (or considering using) Advanced Controls technology to drive value in an enterprise, PwC conducted an Oracle Advanced Controls study.
WebcastData at Risk. Protecting your intellectual property within SAP - November 13, 2014
5/5/14 | Risk Assurance
PwC's SAP practice invites you to attend the ‘Data at Risk! Protecting your intellectual property within SAP' webcast to find about leading practices to classify, identify and protect sensitive data within SAP systems.
- 2014 State of the Internal Audit Profession Study
4/2/14 | Risk Assurance
Our annual State of the Internal Audit Profession, which includes responses from more than 1,900 chief audit executives (CAEs), internal audit managers, members of senior management, and board members, representing 24 industries and 37 countries, provided substantial insight into how internal audit is performing and the steps individual functions are taking to increase their contribution to their respective organizations.
10Minutes10Minutes on service provider transparency
12/10/13 | Risk Assurance
Businesses depend on service providers to handle confidential data, run essential business processes, and manage critical technology. This can leave businesses vulnerable to service provider breakdowns. The result can be the providers’ clients violating regulations and even losing customer trust. Yet many businesses may know less than they realize about their service providers’ controls. This 10Minutes discusses how SOC 2 and SOC 3 reports can give businesses the picture they need to have solid confidence in their service providers.
10Minutes10Minutes on why the COSO Update deserves your attention
5/14/13 | Risk Assurance
COSO has published a PwC-authored update to its framework, the first in over 20 years, which gives you an opportunity to refresh your controls for today's environment.