First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

disaster recovery plan

Do we understand what a risk event is?

COSO ERM talks about the possible effect of an event on objectives, and in common parlance we are talking about something happening that has an effect on the organization. (COSO thinks of risk as the possibility of that event occurring; ISO talks about risk as the effect of what might happen on objectives.)


, , , ,

How does IT recovery planning differ from business continuity planning?

Backup and disaster planning should be evaluated as part of an organization’s overall risk management process. There are two elements to disaster planning…


, , , , , , , ,