Services: Enterprise Risk Management

How Internal Audit Can Support Whistleblower Investigations

By Melissa Musser, Partner and Director GRF Risk & Advisory Services, President of the IIA Washington DC Chapter. Do you know if an employee is stealing from your company?  Quite often, the first hint of a problem comes from an insider tip. Having a comprehensive whistleblower program in place is a powerful early warning mechanism…

Read more ›

Aligning Business Continuity Planning with Third Party Risk Management

Does your organization know all the third-party vendors who access and manage data on your behalf? In the event of a disaster, any gaps in responsibilities, security, and communications prolong the outage of business operations, so it’s better to identify and eliminate these gaps now before a disaster happens.

GRF Announces Partnership with Industry Leading Whistleblower Software

Combined capabilities provide clients with a robust anti-fraud program April 17, 2023 – GRF CPAs & Advisors (GRF) is pleased to announce a new strategic partnership with Whistleblower Software, an industry-leading system that empowers employees to report fraud at their organization in confidence. This powerful tool enables GRF clients to quickly establish a whistleblower program…

Read more ›

Essential stages of a third party risk management program

Developing and maintaining a third party risk management (TPRM) program can help to reduce the overall risk to your organization. What is TPRM?  In short, it is the process of analyzing and mitigating risks associated with working relationships with outside entities. These parties can include everyone from contractors providing janitorial services to suppliers of a…

Read more ›

Four Things You Can Do Today to Improve Your Cybersecurity Posture

Cybersecurity is always changing and evolving as threats grow. Here are ideas that you can start on today that will help reduce your risk and improve your cybersecurity posture: 1. Require Multi-Factor Authentication Having multi-factor authentication (MFA) is essential for granting access to confidential data. It helps to reduce the risk of credential loss and…

Read more ›

Workshop Highlights: Navigating the World of Uncertainties Impacting Non-Profit Organizations

The 4th Annual GRF /NC State ERM Workshop for Nonprofits was held on February 23 and 24, 2023. Nonprofit executives and board members from across the U.S. came together to share their experiences and discuss strategies and tactics for strengthening enterprise risk management at tax-exempt organizations. Melissa Musser, Partner and Director of GRF’s Risk Advisory…

Read more ›