Author: Anne Strong

Cybersecurity and Privacy Become Key ESG Imperatives

By Melissa Musser, CPA, CITP, CISA, Partner and Director, Risk & Advisory Services Cybersecurity and privacy issues have become prominent ESG concerns as organizations frequently manage sensitive information concerning their beneficiaries, employees, third parties, and other stakeholders. Protecting this data from cyber threats and ensuring privacy is a crucial responsibility, as stakeholders expect organizations to…

Read more ›

Risk Management is on the Rise at Not-For-Profit Organizations

2023 State of Risk Oversight Survey Results By Amy Wares, CPA, MBA, Enterprise Risk Management Specialist Managing risk is more challenging than ever. New research reveals that not-for-profit organizations are responding by expanding their risk management practices. On July 11, 2023, the Enterprise Risk Management (ERM) Initiative at NC State University published the 14th edition…

Read more ›

Optimize Risk Management Efforts with Enhanced Collaboration

To some extent, all business functions are responsible for managing risks. However, certain departments have direct responsibilities in risk management, such as Internal Audit, Enterprise Risk Management (ERM), and Fraud Risk Management. Integrating and fostering collaboration between these functions can result in more effectively addressing risks and protecting against fraudulent activities. This is particularly critical…

Read more ›

How INGOs Can Maximize Their Internal Audit Function

International Non-governmental Organizations (INGOs) are particularly vulnerable to fraudulent activity due to their multinational offices and dependence on remote access technologies. These geographically dispersed organizations need to get the full benefit of their internal audit function, where most fraud can be detected or prevented. This was a prevailing issue at a recent Humentum CEO Roundtable…

Read more ›

Best Practices for Mitigating Risk in Expense Reporting Platforms

Expense reporting platforms have simplified the review and approval processes, making it easier to submit documentation for payment. However, this convenience can also lead to less stringent review of submitted documents and opportunities for changing electronic receipts. As a result, organizations need to implement best practices to reduce the risk associated with these reporting systems….

Read more ›

How Internal Audit Can Support Whistleblower Investigations

By Melissa Musser, Partner and Director GRF Risk & Advisory Services, President of the IIA Washington DC Chapter. Do you know if an employee is stealing from your company?  Quite often, the first hint of a problem comes from an insider tip. Having a comprehensive whistleblower program in place is a powerful early warning mechanism…

Read more ›

Top 5 Tax Tips for Small Business Owners

By Jennifer Galstad-Lee, Senior Manager, Tax Services Small business owners have double-duty during tax season – preparing and filing their own taxes as well as taxes for their small business. With so many demands on their time already, tax season can be cause for dread, but advance planning and organization can make life a little…

Read more ›

Essential stages of a third party risk management program

Developing and maintaining a third party risk management (TPRM) program can help to reduce the overall risk to your organization. What is TPRM?  In short, it is the process of analyzing and mitigating risks associated with working relationships with outside entities. These parties can include everyone from contractors providing janitorial services to suppliers of a…

Read more ›

Four Things You Can Do Today to Improve Your Cybersecurity Posture

Cybersecurity is always changing and evolving as threats grow. Here are ideas that you can start on today that will help reduce your risk and improve your cybersecurity posture: 1. Require Multi-Factor Authentication Having multi-factor authentication (MFA) is essential for granting access to confidential data. It helps to reduce the risk of credential loss and…

Read more ›

Workshop Highlights: Navigating the World of Uncertainties Impacting Non-Profit Organizations

The 4th Annual GRF /NC State ERM Workshop for Nonprofits was held on February 23 and 24, 2023. Nonprofit executives and board members from across the U.S. came together to share their experiences and discuss strategies and tactics for strengthening enterprise risk management at tax-exempt organizations. Melissa Musser, Partner and Director of GRF’s Risk Advisory…

Read more ›