Enterprise Compliance Risk Management

Enterprise Compliance Risk Management Author Saloni Ramakrishna
ISBN-10 9781118550281
Release 2015-11-16
Pages 320
Download Link Click Here

The tools and information that build effective compliance programs Enterprise Compliance Risk Management: An Essential Toolkit for Banks and Financial Services is a comprehensive overview of managing compliance and compliance risk. With unique hands-on tools including templates, checklists, and scorecards, practitioners can immediately begin to jumpstart compliance initiatives. Written from a real-world perspective, the book goes beyond theory to describe the practical aspects of active compliance management from all facets. Compliance professionals aren't the only stakeholders in active risk management. These concerns involve the various strata of management within the organization, regulators, industry bodies, and customers. Although a young and evolving discipline, compliance risk management is being brought to center stage as the complexity of the financial world increases exponentially, layering nuance and dimension on to an already complex topic.Enterprise Compliance Risk Management meets the need for a comprehensive reference, providing a framework for keeping up-to-date with the multitude of diverse legal requirements and guidelines bankers face. Topics include: Active compliance management as a strategic intervention Connections to reputation, legal risk, governance, and customer satisfaction The entire ecosystem of stakeholders outside of designated compliance officers Operation, training, and reporting of various compliance models The book also includes a direct examination of "risk", including identification, measurement, mitigation, monitoring, remediation, and regulatory dialogue, and an exploration of multidimensional financial services that points out focal points for active compliance management. Compliance professionals seeking a handle on this vital but fledgling discipline can find the information they need inEnterprise Compliance Risk Management.



Enterprise Risk Management Best Practices

Enterprise Risk Management Best Practices Author Anne M. Marchetti
ISBN-10 9781118149539
Release 2011-08-26
Pages 180
Download Link Click Here

High-level guidance for implementing enterprise risk management in any organization A Practical Guide to Risk Management shows organizations how to implement an effective ERM solution, starting with senior management and risk and compliance professionals working together to categorize and assess risks throughout the enterprise. Detailed guidance is provided on the key risk categories, including financial, operational, reputational, and strategic areas, along with practical tips on how to handle risks that overlap across categories. Provides high-level guidance on how to implement enterprise risk management across any organization Includes discussion of the latest trends and best practices Features the role of IT in ERM and the tools that are available in both assessment and on-going compliance Discusses the key challenges that need to be overcome for a successful ERM initiative Walking readers through the creation of ERM architecture and setting up on-going monitoring and assessement processes, this is an essential book for every CFO, controller and IT manager.



COSO Enterprise Risk Management

COSO Enterprise Risk Management Author Robert R. Moeller
ISBN-10 9781118102541
Release 2011-07-26
Pages 384
Download Link Click Here

A fully updated, step-by-step guide for implementing COSO's Enterprise Risk Management COSO Enterprise Risk Management, Second Edition clearly enables organizations of all types and sizes to understand and better manage their risk environments and make better decisions through use of the COSO ERM framework. The Second Edition discusses the latest trends and pronouncements that have affected COSO ERM and explores new topics, including the PCAOB's release of AS5; ISACA's recently revised CobiT; and the recently released IIA Standards. Offers you expert advice on how to carry out internal control responsibilities more efficiently Updates you on the ins and outs of the COSO Report and its emergence as the new platform for understanding all aspects of risk in today's organization Shows you how an effective risk management program, following COSO ERM, can help your organization to better comply with the Sarbanes-Oxley Act Knowledgeably explains how to implement an effective ERM program Preparing professionals develop and follow an effective risk culture, COSO Enterprise Risk Management, Second Edition is the fully revised, invaluable working resource that will show you how to identify risks, avoid pitfalls within your corporation, and keep it moving ahead of the competition.



Beyond Sarbanes Oxley Compliance

Beyond Sarbanes Oxley Compliance Author Anne M. Marchetti
ISBN-10 9780471741947
Release 2005-07-22
Pages 256
Download Link Click Here

Designed to lead financial managers from initial compliance with the Sarbanes-Oxley Act, through ongoing maintenance and monitoring, Beyond Sarbanes-Oxley Compliance helps readers seize this opportunity to revitalize their business practice, drive greater performance, and transform their finance organization into a key contributor to the business. Focusing on the present and future financial road ahead, Beyond Sarbanes-Oxley Compliance explores how to implement enterprise risk management processes that comply with Sarbanes-Oxley 302/404/409 requirements, ways to build on initial compliance activities that will improve financial management processes and profitability, compliance and quarterly close checklists, timelines, and table summaries to help readers achieve their goals, and much more.



Governance Risk Management and Compliance

Governance  Risk Management  and Compliance Author Richard M. Steinberg
ISBN-10 9781118102572
Release 2011-06-28
Pages 336
Download Link Click Here

An expert's insider secrets to how successful CEOs and directors shape, lead, and oversee their organizations to achieve corporate goals Governance, Risk Management, and Compliance shows senior executives and board members how to ensure that their companies incorporate the necessary processes, organization, and technology to accomplish strategic goals. Examining how and why some major companies failed while others continue to grow and prosper, author and internationally recognized expert Richard Steinberg reveals how to cultivate a culture, leadership process and infrastructure toward achieving business objectives and related growth, profit, and return goals. Explains critical factors that make compliance and ethics programs and risk management processes really work Explores the board's role in overseeing corporate strategy, risk management, CEO compensation, succession planning, crisis planning, performance measures, board composition, and shareholder communications Highlights for CEOs, senior management teams, and board members the pitfalls to avoid and what must go right for success Outlines the future of corporate governance and what's needed for continued effectiveness Written by well-known corporate governance and risk management expert Richard Steinberg Governance, Risk Management, and Compliance lays a sound foundation and provides critical insights for understanding the role of governance, risk management, and compliance and its successful implementation in today's business environment.



Enterprise wide Risk Management EWRM Implementation Compliance and Value Creation Among Public Listed Companies PLCs in Malaysia

Enterprise wide Risk Management  EWRM  Implementation  Compliance and Value Creation Among Public Listed Companies  PLCs  in Malaysia Author Norlida Abdul Manab
ISBN-10 OCLC:953652859
Release 2009
Pages 313
Download Link Click Here

Enterprise wide Risk Management EWRM Implementation Compliance and Value Creation Among Public Listed Companies PLCs in Malaysia has been writing in one form or another for most of life. You can find so many inspiration from Enterprise wide Risk Management EWRM Implementation Compliance and Value Creation Among Public Listed Companies PLCs in Malaysia also informative, and entertaining. Click DOWNLOAD or Read Online button to get full Enterprise wide Risk Management EWRM Implementation Compliance and Value Creation Among Public Listed Companies PLCs in Malaysia book for free.



Implementing Enterprise Risk Management

Implementing Enterprise Risk Management Author John Fraser
ISBN-10 9781118746189
Release 2014-10-09
Pages 688
Download Link Click Here

Overcome ERM implementation challenges by taking cues from leading global organizations Implementing Enterprise Risk Management is a practical guide to establishing an effective ERM system by applying best practices at a granular level. Case studies of leading organizations including Mars, Statoil, LEGO, British Columbia Lottery Corporation, and Astro illustrate the real-world implementation of ERM on a macro level, while also addressing how ERM informs the response to specific incidents. Readers will learn how top companies are effectively constructing ERM systems to positively drive financial growth and manage operational and outside risk factors. By addressing the challenges of adopting ERM in large organizations with different functioning silos and well-established processes, this guide provides expert insight into fitting the new framework into cultures resistant to change. Enterprise risk management covers accidental losses as well as financial, strategic, operational, and other risks. Recent economic and financial market volatility has fueled a heightened interest in ERM, and regulators and investors have begun to scrutinize companies' risk-management policies and procedures. Implementing Enterprise Risk Management provides clear, demonstrative instruction on establishing a strong, effective system. Readers will learn to: Put the right people in the right places to build a strong ERM framework Establish an ERM system in the face of cultural, logistical, and historical challenges Create a common language and reporting system for communicating key risk indicators Create a risk-aware culture without discouraging beneficial risk-taking behaviors ERM is a complex endeavor, requiring expert planning, organization, and leadership, with the goal of steering a company's activities in a direction that minimizes the effects of risk on financial value and performance. Corporate boards are increasingly required to review and report on the adequacy of ERM in the organizations they administer, and Implementing Enterprise Risk Management offers operative guidance for creating a program that will pass muster.



Beyond Play

Beyond Play Author Dawn Pretorius
ISBN-10 9781493194513
Release 2014-05-02
Pages 448
Download Link Click Here

There is a lot of information available on governance, risk and compliance as separate subjects but little on the interrelation between the three components known in the industry as enterprise-wide governance, risk and compliance (eGRC). This book brings eGRC to the reader in a way that starts with simple concepts and builds on them to provide insight and a practical guide for a holistic approach to eGRC. Companies have to manage risk in order to remain a sustainable force in the marketplace. Efforts to reduce risk can, unintentionally, be uncoordinated, disjointed or even neglected. Through not implementing a more cohesive and systematic approach to managing risk, opportunities to benefit the company can also be missed. Beyond Play offers a practical and simple approach. Compliance is a very specific form of risk: that of complying with the law, but the role of the compliance officer includes a lot more. Working with the law and regulators and applying a compliance methodology are explained to provide value to learners, compliance officers, managers, prescribed officers and directors. Many companies ‘play’ at corporate governance, probably because it is perceived as being ‘too big’ to grasp. This book will change your thinking and will help directors’ pave the way for implementing a framework that can be worked with on a practical level within an enterprise wide risk management context. The systemic nature of risk means it can spread to customers, shareholders, communities and economies as the credit bubble of 2008 has proved. Equally, a company that applies a robust an intelligent approach to eGRC has a positive influence on the marketplace, the community and a nation. Do you believe that your business, whether for profit or not for profit and on the basis on which it currently operates, is sustainable in an increasingly dynamic world? This book uses examples from the financial services industry; it also makes reference to South African legislation and governance codes. These references do, however, focus on international best practices so the methodologies can be universally applied. Governance, risk and compliance is an integrated concept to be incorporated within an enterprise risk framework which helps an organisation, either private or public, for profit or non profit, to direct its strategies and operations with integrity and within the law; the reason being to achieve its goals in such a way that its stakeholders and the economy as a whole are never compromised or put at risk beyond that which has been carefully defined and deemed acceptable.



Under Control

Under Control Author Jacob Lamm
ISBN-10 9781430215936
Release 2010-04-06
Pages 235
Download Link Click Here

With the economic crisis that began in 2008, a long-standing trend toward increased regulation is becoming a flood. The clamor for improved enterprise risk management and the complexity of multinational compliance present executives with a dramatically new array of challenges. Governance should offer solutions, but it is clear that yesterday’s governance practices aren’t up to the task. In both design and implementation, they are too disconnected and incomplete to fully address our complex compliance and risk management puzzle. Executives get only fragmented views of their true business performance, and inefficiencies drive up costs. The consequences of inadequate governance were demonstrated in the economic meltdown of 2008. As the world struggles to recover from that crisis, business is now faced with a confusing array of evolving regulations, the challenge of managing compliance across multinational organizations and a new imperative for risk management that is coordinated across the enterprise. It’s clear that yesterday’s governance practices don’t meet today’s need for centralized controls, integrated compliance and risk management and greater transparency. The need for organizations to change—and change now—is clear. Under Control captures decades of business governance experience from many of the leading authorities at CA, Inc. This book sets out not only to explain the essential challenges of effective business governance, but to help you build solutions for your organization based on lessons learned at CA from its customers and in its own corporate structure. From governing the organization’s policies as a whole instead of in silos, to a department-by-department look at the role and impact of governance, to governing your green initiatives, to the role of the board of directors, to the importance of risk management, this book lays out some of the strategies and processes that may help your organization manage its risk and regulatory requirements. It is clear that the governance standards in the past were inadequate, and that risks have not been properly assessed or understood. This book is a first step in solving this problem so that your organization is prepared and able to respond and thrive in today’s rapidly evolving environment. Under Control is the first book published in the new CAPress imprint, a joint publishing program between Apress and CA Inc. “One of the defining factors of the first decade of the 21st century has been the increase of regulation and governance. To explain these trends, and the various best practices for ensuring governance, enterprise IT management solutions provider CA Inc. enlisted more than a dozen subject matter experts from its ranks to contribute content. The resulting book explores the need for broad governance, different areas where governance is important, and various ways for organizations to manage and implement compliance, including IT governance, project portfolio management, information governance and sustainability management. The book, while largely vendor-neutral, draws on CA's experience creating governance solutions as well as managing its own governance issues.” —Aaron Smith, [email protected]



Approaches to Enterprise Risk Management

Approaches to Enterprise Risk Management Author Bloomsbury Publishing
ISBN-10 9781849300261
Release 2010-07-01
Pages 240
Download Link Click Here

Approaches to Enterprise Risk Management is a multi-author book written by leading experts in the field of risk management including Aswath Damodoran, John C. Groth and David Shimko. It is a valuable tool that enables you to assess the potential business threats, both from within your organization and from external sources. It comprises over 25 chapters covering the range of risks your organization might face including financial, strategic, operational risks. It offers you over 20 practical step-by-step guides on the required steps to cope with any detrimental event that could impact on your company's financial health. There are also a range of checklists including Balancing Hedging Objectives with Accounting Rules (FAS 133) , Creating a Risk Register, What Is Forensic Auditing? And Managing and Auditing the Risk of Business Interruption, Captive Insurance Companies: How to Reduce Your Costs, Hedging Credit Risk-Case Studies and Strategies.



Governance Risk Management and Compliance GRC High impact Strategies What You Need to Know

Governance  Risk Management  and Compliance  GRC   High impact Strategies   What You Need to Know Author Kevin Roebuck
ISBN-10 1743045670
Release 2011
Pages 224
Download Link Click Here

Governance, Risk Management, and Compliance or GRC is the umbrella term covering an organization's approach across these three areas. Being closely related concerns, governance, risk and compliance activities are increasingly being integrated and aligned to some extent in order to avoid conflicts, wasteful overlaps and gaps. While interpreted differently in various organizations, GRC typically encompasses activities such as corporate governance, enterprise risk management (ERM) and corporate compliance with applicable laws and regulations. Widespread interest in GRC was sparked by the US Sarbanes-Oxley Act and the need for US listed companies to design and implement suitable governance controls for SOX compliance, but the focus of GRC has since shifted towards adding business value through improving operational decision making and strategic planning. It therefore has relevance beyond the SOX world. Governance, Risk, and Compliance or ""GRC"" is an increasingly recognized term that reflects a new way in which organizations are adopting an integrated approach to these aspects of their business. This book is your ultimate resource for Governance, Risk Management, and Compliance (GRC). Here you will find the most up-to-date information, analysis, background and everything you need to know. In easy to read chapters, with extensive references and links to get you to know all there is to know about Governance, Risk Management, and Compliance (GRC) right away, covering: Governance, risk management, and compliance, Governance, Risk management, Association of Management Consulting Firms, Peter L. Bernstein, Building Safer Communities. Risk Governance, Spatial Planning and Responses to Natural Hazards, Burn pit, Cascading Discontinuity Sets, Dangerous Goods Safety Advisor, Defensive driving, David Eager, Exposure Factor, Michael Featherstone, Financial risk management, Fish & Richardson, Flood Forecasting Centre, Hazard prevention, Institute of Risk Management, Insurance Certificate Tracking, Investment Controlling, ISO 31000, List of books about risk, Master of Science in Risk Management Program for Executives, Moody's Analytics, Occupational safety and health, Opasnet, Open assessment, Operational risk management, Profit risk, Project risk management, Ready Georgia, Risk assessment, Risk governance, Risk International, Risk management framework, Risk management tools, Risk pool, RiskAoA, Security risk, Singapore Mercantile Exchange, Singapore Workplace Safety and Health Conference, Student Investment Advisory Service (SIAS Fund), Julian Talbot (risk management), Tsunami, Tsunamis in lakes, Regulatory compliance, Regulatory Risk Differentiation, Chief compliance officer, Clothing label, Compliance and ethics program, Compliance Week, Corporate security, Compliance cost, Electronic message journaling, Financial repression, Food sampling, Greatland Corporation, Health Care Compliance Association, Compliance intelligence, Outbound content compliance, Regulatory Science, Society of Corporate Compliance and Ethics, Tax compliance software, Trade compliance, Compliance training, Corporate governance of information technology, Corporate Governance of ICT, AS 8015, Autonomic Networking, Certified in the Governance of Enterprise IT, Chief web officer, COBIT, Information technology controls, Data custodian, Data governance, Data steward, Data visualization, Governance Interoperability Framework, IBM Tivoli Unified Process (ITUP), ISO/IEC 38500, Project governance, Public ROI, Risk IT, SOA Governance, TickIT, Total cost of ownership, Val IT, Web content lifecycle...and much more This book explains in-depth the real drivers and workings of Governance, Risk Management, and Compliance (GRC). It reduces the risk of your technology, time and resources investment decisions by enabling you to compare your understanding of Governance, Risk Management, and Compliance (GRC) with the objectivity of experienced professionals.



Enterprise Risk Management

Enterprise Risk Management Author William G. Shenkir
ISBN-10 UVA:X030365820
Release 2007
Pages
Download Link Click Here

... analyzes a methodology that companies of all sizes can adopt to identify, assess, and manage risk. Companies increasingly operate in a volatile business environment. Accordingly, managing risk must take an enterprise-wide perspective, focusing on strategic, operational, and financial risks in addition to the traditional attention to hazard risk. While enterprise risk management is not a mathematical exercise, the measurement of risk is important. The portfolio examines various assessment approaches, from qualitative to quantitative. The portfolio discusses how enterprise risk management can be integrated with other management initiatives such as strategic planning, merger and acquisition evaluations, the balanced scorecard, budgeting, internal auditing, crisis management, and corporate governance.



Enterprise Wide Risk Management EWRM Practices

Enterprise Wide Risk Management  EWRM  Practices Author Norlida Abdul Manab
ISBN-10 3848449919
Release 2013
Pages 256
Download Link Click Here

The Enterprise-Wide Risk Management (EWRM) concept seems to be gaining ground worldwide. Although this concept is still new in many parts of Asia and other developing countries, there are positive indications that EWRM is beginning to receive much attention, and that this topic is being widely discussed on an industry-wide basis. Numerous studies on this concept have been done by the practitioners, consultant firms, and professional bodies, rather than by academicians. The emergence of EWRM is cited to be driven most by corporate governance, and its effective implementation is claimed to contribute toward value creation. This book provides empirical evidence on the EWRM practices and their relationships with value creation. It can be used as a reference to all types of organisations of different sizes and industries in the implementation of EWRM and provides benefits for policy makers and the relevant bodies to improve or upgrade the existing risk management requirement and develop a risk management standard.



Mastering 21st Century Enterprise Risk Management

Mastering 21st Century Enterprise Risk Management Author Gregory M. Carroll
ISBN-10 9781483510446
Release 2013-10-22
Pages 92
Download Link Click Here

Risk management has traditionally focused on the downside—the "what if"—of risk: "What if I get audited; will my documentation be in order? What if someone gets hurt?" Risk has also traditionally been as siloed in many organizations, each functional area requiring its own unique parameters. Accounting and Finance are concerned with financial regulations; manufacturing is concerned about safety and equipment validation; etc. Each used a different method of risk management to help them meet regulatory requirements and stay out of trouble. Not only was IT application management a nightmare, but the siloed, stay-out-of-trouble approach to risk management drove inefficiency up and shareholder value down. Modern risk management philosophy goes beyond "staying out of trouble." It incorporates the upside of risk—the people and process efficiencies that result when a holistic risk management framework is integrated into all aspects of the business and aligned to specific business objectives. Investments in risk management must produce a good return. In this book you'll learn why many risk management systems are broken and what needs to be done to fix them. Whether you're new to risk management or a seasoned veteran, you'll learn effective approaches and emerging models that are backed by real-world examples. Welcome to 21st century risk management.



GCRM Governance Risk and Compliance Management High impact Strategies What You Need to Know Definitions Adoptions Impact Benefits Maturity Vendors

GCRM   Governance  Risk and Compliance Management  High impact Strategies   What You Need to Know  Definitions  Adoptions  Impact  Benefits  Maturity  Vendors Author Kevin Roebuck
ISBN-10 9781743444702
Release 2012-10-24
Pages 190
Download Link Click Here

The Knowledge Solution. Stop Searching, Stand Out and Pay Off. The #1 ALL ENCOMPASSING Guide to GCRM. An Important Message for ANYONE who wants to learn about GCRM Quickly and Easily... ""Here's Your Chance To Skip The Struggle and Master GCRM, With the Least Amount of Effort, In 2 Days Or Less..."" GRCM refers to the measures, mechanisms and processes in operation within an organisation with the objective of managing Governance, Risk Management and Compliance. Get the edge, learn EVERYTHING you need to know about GCRM, and ace any discussion, proposal and implementation with the ultimate book - guaranteed to give you the education that you need, faster than you ever dreamed possible! The information in this book can show you how to be an expert in the field of GCRM. Are you looking to learn more about GCRM? You're about to discover the most spectacular gold mine of GCRM materials ever created, this book is a unique collection to help you become a master of GCRM. This book is your ultimate resource for GCRM. Here you will find the most up-to-date information, analysis, background and everything you need to know. In easy to read chapters, with extensive references and links to get you to know all there is to know about GCRM right away. A quick look inside: GRCM, Governance, Risk management, Regulatory compliance, Governance, risk management, and compliance, Enterprise risk management, ISO/IEC 27001, Association of Management Consulting Firms, Peter L. Bernstein, Black swan management, Building Safer Communities. Risk Governance, Spatial Planning and Responses to Natural Hazards, Burn pit, Cascading Discontinuity Sets, Dangerous Goods Safety Advisor, Defensive driving, David Eager, Exposure Factor, Michael Featherstone, Financial risk management, Fish & Richardson, Flood Forecasting Centre, Hazard prevention, Institute of Risk Management, Investment Controlling, ISO 31000, List of books about risk, Master of Science in Risk Management Program for Executives, Megaprojects and Risk: An Anatomy of Ambition, Moody's Analytics, Occupational safety and health, Opasnet, Open assessment, Operational risk management, Profit risk, Project risk management, Ready Georgia, Risk assessment, Risk governance, Risk International, Risk management framework, Risk management tools, Risk pool, RiskAoA, Security risk, Singapore Mercantile Exchange, Singapore Workplace Safety and Health Conference, Student Investment Advisory Service (SIAS Fund), Tactical Risk Management, Julian Talbot (risk management), Tsunami, Tsunamis in lakes, Asset (computer security), Business continuity, CESG Listed Advisor Scheme, Contingency plan, Disaster recovery, Granular Configuration Automation, HMG Infosec Standard No.1, Incident response team, Information assurance, IT risk, IT risk management, Joint Services Publication 440, Risk IT...and Much, Much More! This book explains in-depth the real drivers and workings of GCRM. It reduces the risk of your technology, time and resources investment decisions by enabling you to compare your understanding of GCRM with the objectivity of experienced professionals - Grab your copy now, while you still can.



Governance Risk and Compliance Handbook for Oracle Applications

Governance  Risk  and Compliance Handbook for Oracle Applications Author Nigel King
ISBN-10 9781849681711
Release 2012-08-24
Pages 488
Download Link Click Here

The book is not organized by product, rather by the governance and risk assurance processes. A given product may be represented in multiple places within the book and a given process may contain multiple product references. To ensure that we keep ourselves grounded in real problems, the book is written as a journal of a fictional company establishing its governance processes. It will introduce managers and directors responsible for various aspects of the governance, risk and compliance problem and where that problem is exposed and how it is addressed in the technology and business applications. The audience for this book is the people that advise the board, the internal audit department and CIO office on controls, security and risk assurance. Consultants that are implementing Financials or GRC Applications who wish to gain an understanding of the Governance Risk and Compliance processes, and how they are represented in Oracle, should find it a useful primer. Risk Assurance professionals will find it a reliable companion.



Implementing Enterprise Risk Management

Implementing Enterprise Risk Management Author James Lam
ISBN-10 9781118221563
Release 2017-03-09
Pages 432
Download Link Click Here

A practical, real-world guide for implementing enterprise risk management (ERM) programs into your organization Enterprise risk management (ERM) is a complex yet critical issue that all companies must deal with in the twenty-first century. Failure to properly manage risk continues to plague corporations around the world. ERM empowers risk professionals to balance risks with rewards and balance people with processes. But to master the numerous aspects of enterprise risk management, you must integrate it into the culture and operations of the business. No one knows this better than risk management expert James Lam, and now, with Implementing Enterprise Risk Management: From Methods to Applications, he distills more than thirty years' worth of experience in the field to give risk professionals a clear understanding of how to implement an enterprise risk management program for every business. Offers valuable insights on solving real-world business problems using ERM Effectively addresses how to develop specific ERM tools Contains a significant number of case studies to help with practical implementation of an ERM program While Enterprise Risk Management: From Incentives to Controls, Second Edition focuses on the "what" of ERM, Implementing Enterprise Risk Management: From Methods to Applications will help you focus on the "how." Together, these two resources can help you meet the enterprise-wide risk management challenge head on—and succeed.