BEGIN:VCALENDAR X-WR-TIMEZONE:US/Eastern DTSTART:20190206T130000 DTEND:20190206T143000 VERSION:2.0 LOCATION:OnlinePRODID:-//Training Doyens //EN METHOD:REQUEST BEGIN:VEVENT DTSTAMP:20190206T000000 DTSTART;TZID="US/Eastern":20190206T130000 DTEND;TZID="US/Eastern":20190206T143000 SUMMARY:How to Assess Risks and Evaluate Controls DESCRIPTION: Every organization is set up to accomplish its primary business objective. Whether it is a “for-profit” organization or a “non-profit” organization, there is always a primary business objective. And whenever there is an objective, there is always the risk that the objective will not be achieved. Management has the responsibility of risk and control assessment and of establishing controls to ensure that business objectives are achieved. Internal Audit has the responsibility to evaluate those controls to determine if they are adequate and effective. For the auditor, the process starts with the development of a risk-based annual audit plan to identify the various risk areas. The risk areas are prioritized and subject to audit based on the high-level risk assessment process. Each area is further subject to a more detailed review of their particular risks and controls. PRIORITY:3END:VEVENT END:VCALENDAR