The IR Management and Reporting Template attempt to assist the CISO – not only perform a top edge response to cyberattacks but also ensure that this professional and critical work is understood and ...

Forbes contributors publish independent expert analyses and insights. In a global survey of CFOs and finance leaders conducted by Protiviti, ESG metrics and measurement stand out as the highest ...

One of the problems with many risk management functions, as I see it, is their reporting structure. The ideal is viewed by many (including regulators) as reporting directly to the board or a committee ...

If your first thought turns to the U.S. Securities and Exchange Commission’s (SEC) final rules on climate disclosures that are anticipated by the end of this year, your team may not be as prepared as ...

In the following article, from 2014, I discussed an organization-related issue that limits the overall positive impact the purchasing function can have on company financials. Specifically, the article ...

Nearly a decade ago, I tried and failed to convince the board of a company in midwestern Ohio of the need to invest in new threat intelligence tools, despite evidence of data egressing from the ...

A nonpunitive safety event reporting regime is likely to encourage staff to participate in reporting and to focus on systemic deficiencies. A punitive approach to safety event reporting at healthcare ...

Environmental, social, and governance (ESG) reporting is a complex undertaking for many organizations. Although companies have minimal control over the data they must report, there are steps they can ...

After more than 10 years of sounding alarms about the dangers of having internal audit report administratively to the chief financial officer, I must grudgingly concede my warnings have fallen on deaf ...

Change is inevitable. React too slowly? You’ll land in Chapter 11. React too quickly? You’ll produce a half-measure that’s quickly surpassed. That’s why ...