Services: Enterprise Risk Management

A Guide to Third Party Risk Management

Understanding and mitigating third party risk has become more important than ever, which makes now the perfect time for your organization to implement a third-party risk management program. This guide covers several aspects of third-party risk management, including steps for developing a program, tips for vetting new vendors, and the new risks presented by AI tools.

Cybersecurity: Is AI the Secret Weapon?

Join us as we delve into the cutting-edge realm of cybersecurity and artificial intelligence. In a rapidly evolving digital landscape, the ability to anticipate, identify, and counter emerging cyber threats is paramount. That’s why we’re excited to present a comprehensive exploration of AI-enabled threat intelligence, uncovering actionable insights from data, and fostering collaboration between AI…

Read more ›

ESG for Non-Profit Risk Managers

Bottom Line: ESG is becoming more important to donors, employees, partners, and other stakeholders. Non-profit risk managers need to be prepared to answer tough questions about how their organization is managing critical ESG risks. ESG Basics for Non-Profits ESG refers to environmental, social, and governance factors in an organization’s operations. There is no universal definition…

Read more ›

Mitigate Online Donation Risks with PCI Compliance and Third-Party Risk Management

Taking donations online is a huge benefit to nonprofit organizations, but online payments also expose potential risks. To safeguard their operations and donors’ financial information, nonprofits must prioritize Payment Card Industry (PCI) compliance and third-party risk management. Nonprofits are at a higher risk of credit card test attacks than other organizations due to certain functionality…

Read more ›

Part 2: How to Set Up a World-Class Whistleblower Program

Early detection can limit the impact of fraud, and insider tips are by far the most effective source. Having a comprehensive whistleblower program in place is a powerful tool for identifying this potential fraud or misconduct. Join GRF as we discuss the process for establishing a secured incident reporting platform that includes online reporting, document…

Read more ›

GRF’s Kristen Ocampo Earns CFE Credential

August 2, 2023 (Bethesda MD) — GRF CPAs & Advisors is pleased to announce that Kristen Ocampo, Risk & Advisory Services Supervisor, has been awarded the Certified Fraud Examiner (CFE) credential by the Association of Certified Fraud Examiners (ACFE). To achieve the award, Kristen met a stringent set of criteria and passed a rigorous exam…

Read more ›