The 4th Annual GRF /NC State ERM Workshop for Nonprofits was held on February 23 and 24, 2023. Nonprofit executives and board members from across the U.S. came together to share their experiences and discuss strategies and tactics for strengthening enterprise risk management at tax-exempt organizations. Melissa Musser, Partner and Director of GRF’s Risk Advisory…
As we look ahead to the new year and beyond, what are leading risk watchers expecting for 2023? The Risk and Advisory Services team at GRF combed through leading political, economic, and business experts’ predictions for 2023 to identify common themes and assess the implications for nonprofits and associations. Major themes include: We are entering…
As the operating environment for organizations becomes more complex, the role of the board of directors in risk management becomes more important. It is critical for boards and management to understand their responsibilities and how to work together effectively on risk management to fulfill their organization’s mission. Join GRF’s risk management experts as we explore…
TLDR: End user cybersecurity training is essential for preventing malicious actors from gaining unauthorized access to your organization’s network. Creating a risk-averse organization involves making your staff aware of best-practices for identifying common attacks, like phishing scams. At the end of this article, you will find a cyber hygiene template and risk checklists for privacy,…
Using emerging technologies for risk management and audit procedures can be done cost-effectively today using creative strategies, such as co-sourcing, outsourcing with subject-matter-experts, and/or bringing these technologies in-house.
Travel & Expense (T&E) reimbursement fraud can have a significant impact on your organization. The Association of Certified Fraud Examiners’ 2022 Report to the Nations found the average loss from an expense reimbursement scheme was $152,000. The report, which is based on a worldwide survey of Certified Fraud Examiners conducted between July and September 2021,…
By Darren Hulem, CISA, CEH, Security+, Supervisor, IT and Risk & Advisory Services As cyberattacks grow in frequency and complexity, organizations are asking, “Is Cyber Insurance worth it?” The short answer is “Absolutely!” Before contacting an insurance company, we recommend some research and due diligence to position your organization for reasonable rates. Coverages can vary…