A selection of blog posts by James Paterson.
and that applies to internal audit as well…
The following article has had over 500 views in 2 days on LinkedIn, I hope you find it helpful.
I’ve just facilitated a two-day head of audit event, with only one person pulling out because of COVID19. However, it was inevitably a key topic of conversation, and here are some reflections that might be of interest:
COVID19 has reinforced, again, the problem with a “failure of imagination” in many risk management processes.
A failure of imagination was one of the key learnings from the 9/11 tragedy, and it looks like many organisations have found themselves with a similar problem with COVID19, and all its knock-on impacts. It may not be a big priority right now, but all organisations who have felt blind-sided by what has happened should be prepared, at the right time, to take a long hard look at their risk management processes.
What other risks are there where might we be thinking “that will never happen”?
How do we make sure we prioritise impact over probability?
How good is your organisation in thinking through the knock-on consequences of one risk on other aspects of its operations? Continue Reading
Does internal audit have a blind spot concerning organizational politics?
I was pleased to be asked to present at the 2019 ECIIA conference in Luxembourg. It was an honour and a privilege to present to around 700 attendees. The key messages I delivered were:
I defined organizational politics as:
Organizational politics can be seen in a good or bad light, depending on whether the political activity is genuinely for an organizational benefit, compared to primarily benefiting an individual’s career, power and/or influence.
A primer (part 1)
I’ve just run another course on Culture and auditing culture in London with 12 in attendance. This brief article gives a summary of key points concerning common misperceptions, and is offered as a counter-balance to much of what is currently being said about this topic. The second article will discuss specific approaches that, on my analysis, will lead to long-term progress in this arena.
Expectations of those attending
We discussed why people had come to the course and they said:
I have released an article, with CPD credit, on Root cause analysis for internal audit.
The article and a Q&A (to gain 1 CPD) can be found here.
Very pleased to have been asked by the ACCA to write an article on ‘Corporate Governance Theatre: Risk culture, plausible deniability and wilful blindness’.
An overview follows immediately below, after which is a link to the full article on the ACCA’s website.
Background and introduction
My role as a consultant is to work closely with clients on governance, risk, compliance (GRC) and assurance challenges. Our aim is to ensure GRC improvements are genuinely welcomed and used by business managers, alongside risk, compliance and audit professionals; balancing rigour with pragmatism and cultural fit.
Earlier in 2018, I wrote an article on why we continue to get GRC and assurance surprises of some magnitude, despite management assurances and auditor sign offs. My perspective is that too often we have ‘corporate governance theatre’. Things look good in many ways, but – just below the surface – there are ‘hairline cracks’ that are missed by management, boards and even auditors and regulators, until it is too late.
After writing this article, I was happy to be asked by ACCA to write an article on risk culture – including ‘plausible deniability’ and ‘wilful blindness’, which are part of the theatre problem – and here this article:
Note that, in my experience, progress is not about implementing new systems (though these may help), but rather by looking at what is currently being done from a different angle, with the objective of ‘getting real’ about the issues, and potential gaps, that matter the most.
Read the full article here
Contact and appointments:
Risk & Assurance Insights
T: +44 (0)7802 868914
Email
Please also use our contact form