KnowledgeLeader Blog

It's been two years since we released the new tool area: Risk and Control Matrices. To celebrate, we published one new RCM each week of May. 

Hopefully you were able to see the latest risk and control matrices published on KnowledgeLeader during May. These extensive tools contain a compilation of risks and a vast array of possible controls. 

You may have noticed that the KnowledgeLeader team loves a good list. Lists are not only good for organization and clarification in auditing, but they are also great for understanding and communicating how our tools and publications are being received by our subscribers.

No list does this better than our annual top 25. 2016 was a big year for updating and adding content on KnowledgeLeader—we published 14 brand-new Risk and Control Matrices (RCMs) and added and updated over 460 audit tools, templates, publications and booklets.

If you already have a KnowledgeLeader subscription, of course all of this content (along with the entire KnowledgeLeader database of thousands of tools and publications) is available for download. But if you haven't joined yet, you can view and download everything we published in 2016, including the top 25 below, by signing up for a free 30-day trial subscription, as trial subscriptions have access to the most recent 18 months of content on the site.

System development lifecycle (SDLC) methodology promotes and provides a controlled business environment where an orderly process takes place to minimize risk for implementing major new applications or changes to existing applications that have an urgent priority for an organization.

Cash and treasury management refers to a broad area of finance involving the collection, handling, and usage of cash and assessing market liquidity, cash flow, and investments. This process has the ultimate goal of managing the firm’s liquidity and mitigating a large variety of risks.

The KnowledgeLeader team recently added two risk and control matrices (RCMs) to its tool repository. These RCMs focus on IT-oriented risks and controls. 

Each quarter, when I take a look at which audit tools and publications were most popular on KnowledgeLeader, I learn a lot about which content resonates most with our subscribers. 

KnowledgeLeader first started publishing RCMs in May 2015. In that time span, we've added 12 of this valuable tool type to our site, and we're very excited to keep adding to the list as time moves forward.

It is in this dynamic environment that IT audit leaders and functions must operate to help their organizations identify, mitigate and monitor an escalating volume of IT risks. Working in collaboration with executive management, the board of directors, IT, legal, human resources and numerous other departments, IT auditors face the daunting task of helping their organizations manage potential IT risks that could cripple the enterprise. Properly and proactively managing the organization’s IT strategy has never been more important.

Managing security and privacy for an organization is not an IT issue—it is a business issue requiring a comprehensive, risk-based approach to manage. Because of the risk and impact to the internal control environment, information security risk is an absolute must when outlining topics to address in the audit risk assessment and audit planning process.

Diversity refers to "human qualities” that are different from our own and those of groups to which we belong, but that are manifested in other individuals and groups. Dimensions of diversity include, but are not limited to: age, ethnicity, gender, physical abilities or qualities, race, sexual orientation, educational background, geographic location, income, marital or partner status, military experience, parental status, religious beliefs, work experience, and job classification. Diversity is about what makes us unique and includes our backgrounds, personality, life experiences and beliefs. It is a combination of the visible and the invisible differences that shape our view of the world, our perspective and our approach.