Author groups

About "Risk assurance"

The PwC risk assurance practice focuses on the details of company risk. Specifically, it looks at processes, policies, systems and controls with a fresh eye as well as business processes, regulation, IT and other projects, internal audit, data integrity, and the third parties you work with.

More about this author

Article archive

  • Webcast
    The Privacy Enforcement Storm webcast - June 10, 2015

    5/14/15 | Risk Assurance

    An unprecedented wave of privacy fines, penalties, and settlements has thrust data privacy onto the agenda of corporate boards across all sectors and regions. During this webcast, PwC presenters will summarize the discussions occurring among corporate boards and executive teams and forecast enforcement trends for the coming year.

  • Webcast
    The broad impacts of PHI: Addressing the demands of customers and regulators webcast - May 28, 2015

    5/4/15 | Risk Assurance

    This webcast explains how to address the demands of customers and regulators around PHI, and discusses the latest privacy, security, and third party reporting trends impacting organizations that operate in the healthcare spectrum.

  • Risk in review: Decoding uncertainty, delivering value

    4/14/15 | Risk Assurance

    In our 2015 Risk in review survey, over 1,200 global business leaders shared how they assess and manage risk in their markets. Results show that correctly managing business risks drives performance and revenue growth.

  • The alignment challenge: How strategic is your Enterprise Risk Management (ERM) program?

    4/8/15 | Risk Assurance

    Our second article in the series, The Alignment Challenge - How Strategic is Your ERM Program? provides actions to refocus ERM programs to better integrate risk management activities with strategic priorities.

  • Webcast
    Access request in high gear! How one-stop-shop business roles can help accelerate user provisioning in SAP webcast

    3/23/15 | Risk Assurance

    Watch a recording of our SAP GRC webcast to learn about a practical and proven approach to business role design. We walk you through a business role design methodology including strategic, risk, and technology considerations when implementing business roles.

  • Why risk assessments fail
    Steps to a successful enterprise risk management assessment

    3/13/15 | Risk Assurance

    An effective Enterprise Risk Management (ERM) assessment relies on a disciplined, continuous and business outcome focused approach. Challenges can come at any time during the risk assessment and preparation is key. With a proper understanding of the risks, a good communication strategy and process follow-through, the ERM assessment can be successful providing many benefits including contributing to the strategic and risk objectives of the organization.

  • Vendor Controls Assurance (SOC 2+): A cost effective approach to building customer trust

    2/24/15 | Risk Assurance

    The rate of global outsourcing of both core and support functions within organizations is rapidly rising. In an attempt to further reduce costs, organizations are asking that outsourced vendors play a larger role in supporting critical activities of the business. The result is increased pressure on service providers to provide greater transparency over their controls, so that their customers’ have assurance over their vendor’s operations. PwC’s Vendor Controls Attestation Report (SOC 2+) is designed to manage outsourcing risks and provide assurance over vendor controls, while saving both the vendor and customer money and time.

  • SOC 2 and 3: Building customer trust through controls reporting

    2/24/15 | Risk Assurance

    Organizations are increasingly looking to global markets for outsourcing as a means of reducing costs and increasing efficiencies. In order to receive assurance over their vendors’ operations, companies are demanding SOC (Service Organization Controls) reports prepared by independent auditors.

  • Empower loss prevention with strategic data analytics

    2/9/15 | Risk Assurance

    Retailers are realizing that the strategic management of risk and the reduction of shrink can have substantial impact on both profitability and customer satisfaction. Savvy retailers are using data analytics to add value to their loss prevention and risk management programs. This paper outlines key ways retailers are building successful enterprise-wide loss prevention programs that apply data and analytics.

  • Webcast
    Significant Others - Risks and Rewards of Third Party Business Relationships

    1/15/15 | Risk Assurance

    Join PwC and a panel of industry guests for a recorded webcast discussion on what organizations can be doing to enhance their Third Party Risk Management program governance, monitoring and compliance benefits.

  • Webcast
    Pave the way: Build a value driven SAP roadmap

    1/13/15 | Risk Assurance

    We invite you to watch PwC's SAP GRC webcast to learn about leading practices in building a business case and a roadmap for your GRC program and technologies.

  • Are you prepared to protect your brand? Enhance your product recall process

    12/9/14 | Risk Assurance

    Recalls can have a devastating impact on the operations and brands of retail and consumer companies. But companies that manage the recall process effectively can transform a potential crisis into a business advantage.

  • If you hold a C-Suite title then PwC invites you to participate in our annual State of the Internal Audit Profession and Risk in Review Survey

    11/20/14 | Risk Assurance

    Over the years, thanks to the input of thousands of executives from a number of sectors and territories, we have gained significant insight into how organizations are addressing the evolving risk landscape. The findings are published in both PwC's State of the Internal Audit Profession Study and our Risk in Review Study.

  • The CMO’s role in privacy: Are your marketing programs affecting your brand?

    11/10/14 | Risk Assurance

    Organizations often use customer information collected online to understand and effectively target consumers. This process requires not only the attention of the chief privacy officer, but also the chief marketing officer. Almost daily, news headlines underscore the importance of this with data breaches becoming commonplace. For consumers to provide complete and accurate information, they must know they can trust your organization.

  • Rethinking media auditing and benchmarking pools

    11/10/14 | Risk Assurance

    Knowing how your advertising spend compares to that of your competitors is an important benchmark that allows you to save money; and using media auditing and benchmarking pools is the definitive way to do this. Or is it? It’s time to question the value of these pools.

  • Present and functioning: Fine-tuning your ICFR using the COSO update

    11/7/14 | Risk Assurance

    With the COSO’s 1992 Control Framework being superseded by the 2013 updated edition on December 15, 2014, now is the time for companies to use the updated framework to evaluate the effectiveness of their systems of internal control over financial reporting. This paper talks through the updated framework and these competencies to evaluate the effectiveness of companies’ systems of internal control over financial reporting.

  • Fortified for success - Building your company’s risk, controls and compliance ecosystem, for the IPO and beyond

    11/5/14 | Risk Assurance

    Going public is a transformational event that pushes a company into view of regulatory, investor, and analyst scrutiny. Companies that delay getting their risk management, compliance and compliance infrastructure in order until after the IPO may be jeopardizing their ability to reap the full benefits of going public. This paper lays out steps that will help companies establish a foundation and cover the company’s critical risks and controls, both pre-and-post IPO.

  • Metrics by design - A practical approach to measuring internal audit performance

    10/1/14 | Risk Assurance

    As leading internal audit functions have transformed to meet increasing expectations, metrics have become a critical tool for Internal Audit to demonstrate its value to the organization and drive its performance against stakeholder expectations. Building on key findings from PwC’s 2014 State of the Internal Audit Profession study, this paper explores how internal audit functions can leverage metrics to both communicate the value they are providing as well as drive results.

  • Goods gone bad: Addressing money-laundering risk in the trade finance system

    10/1/14 | Risk Assurance

    The rise of trade-based money laundering presents direct financial, reputational, and compliance risk to the financial services companies, banks, and global trade organizations that provide and utilize trade finance. Financial firms can address these increased AML challenges by leveraging analytics and statistical transaction monitoring techniques to identify information, trends, connections, and anomalies indicative of trade-based money laundering schemes.

  • Managing the Shadow Cloud - Integrating cloud governance into your existing compliance program

    9/10/14 | Risk Assurance

    The world of computing has changed, and executives have begun to realize that shadow cloud activity cannot be ignored. At the same time, realizing the benefits of the cloud with more confidence about the risks and rewards depends on knowing how to prudently say “yes” to the cloud.

  • EU Data Protection Reform The challenges and benefits of compliance for businesses

    7/31/14 | Risk Assurance

    The passage of the General Data Protection Regulation that is proceeding through the European legislature is likely to raise significant challenges in regard to data protection compliance for all businesses that operate or provide goods and services within the European Union. With passage likely, proactive companies are taking steps today that will help them prepare to comply with future requirements.

  • Deeper insights for greater strategic value: Oracle Advanced Controls (GRC) Study

    6/2/14 | Risk Assurance

    GRC Technology has become an increasingly critical factor for driving value (i.e., recovering profitability, increasing efficiency, detecting fraud, etc.) and automating manual compliance and risk management activity in the enterprise. Organizations have increased their adoption of Oracle Advanced Control (“AC”) to improve the oversight of corporate governance, including financial reporting compliance, enterprise risk management (ERM), and related audits. To better understand organizations’ awareness and how organizations are using (or considering using) Advanced Controls technology to drive value in an enterprise, PwC conducted an Oracle Advanced Controls study.

  • 2014 State of the Internal Audit Profession Study

    4/2/14 | Risk Assurance

    Our annual State of the Internal Audit Profession, which includes responses from more than 1,900 chief audit executives (CAEs), internal audit managers, members of senior management, and board members, representing 24 industries and 37 countries, provided substantial insight into how internal audit is performing and the steps individual functions are taking to increase their contribution to their respective organizations.

  • 10Minutes
    10Minutes on service provider transparency

    12/10/13 | Risk Assurance

    Businesses depend on service providers to handle confidential data, run essential business processes, and manage critical technology. This can leave businesses vulnerable to service provider breakdowns. The result can be the providers’ clients violating regulations and even losing customer trust. Yet many businesses may know less than they realize about their service providers’ controls. This 10Minutes discusses how SOC 2 and SOC 3 reports can give businesses the picture they need to have solid confidence in their service providers.

  • 10Minutes
    10Minutes on why the COSO Update deserves your attention

    5/14/13 | Risk Assurance

    COSO has published a PwC-authored update to its framework, the first in over 20 years, which gives you an opportunity to refresh your controls for today's environment.