article thumbnail

Audit Checklist for SOC 2

Reciprocity

If your company is a service organization and your customers trust you with their data, you may need to pass a SOC 2 (System and Organization Controls 2) audit. Compliance and certification are the goals of a SOC 2 audit. The SOC 2 compliance audit gives them that assurance. Develop a SOC 2 Audit Framework. What is SOC 2?

Audit 52
article thumbnail

How Banks Can Prepare for the FDIC’s Proposed Standards

LogisManager

In what is seen as a significant shift, the Proposed Standards will move away from the reliance on state law in favor of establishing governance and oversight obligations for banks. Internal Audit and Assurance: For the third line of defense, LogicManager can be used to facilitate internal audit processes.

Banking 89
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

What is the Three Lines of Defense Approach to Risk Management?

LogisManager

The proposed standards emphasize a stronger corporate governance and include an over-arching requirement for these banks to adopt the Three Lines Model. This includes business units, departments, and individuals directly responsible for managing and executing processes and activities that generate risk.

article thumbnail

What is the Three Lines of Defense Approach to Risk Management?

LogisManager

The proposed standards emphasize a stronger corporate governance and include an over-arching requirement for these banks to adopt the Three Lines Model. This includes business units, departments, and individuals directly responsible for managing and executing processes and activities that generate risk.

article thumbnail

Failure in Risk Management: The Turbulent Times of Boeing Airlines

LogisManager

This revelation comes on the heels of the Federal Aviation Administration’s (FAA) findings from a six-week audit that pointed out non-compliance issues in Boeing’s manufacturing process control, parts handling and storage, and product control. They’re failures in corporate governance.

article thumbnail

How to Report On ESG

LogisManager

This applies especially to your Environmental, Social and Corporate Governance (ESG) program: you may be working in accordance with ESG best practices, standards and frameworks, but you must report on your ESG activities to prove to third-party stakeholders like investors and customers that you’re doing what you’re saying you’re doing. .

article thumbnail

Silicon Valley Bank (SVB) Failures in Risk Management: Why ERM vs GRC

LogisManager

Following the Great Recession, regulators began requiring enhanced disclosure about risk and corporate governance. For example, SVB had a Moody’s A1 issuer rating and KPMG signed off on SVB’s bank’s audit just 14 days before it declared bankruptcy. ” You can outsource the activity to the vendor but not the risk.

Banking 84