EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Internal Audit's role in the risk assessment process at KeyCorp

Christian Trudell

Journal of Risk Management in Financial Institutions, 2014, vol. 7, issue 4, 370-374

Abstract: With the recent (at the time of this writing) financial crisis and the continued focus on a strong risk management culture at KeyCorp, the need to ensure that the lines of business (first line of defence), independent risk management (second line of defence) and internal audit (third line of defence) utilise a common risk framework has been paramount. This was driven by the desire for timely and accurate reporting to management and risk committees, as well as the Board of Directors. An opportunity to leverage a common governance, risk and compliance (GRC) approach across the institution arose in 2011 as KeyCorp began to leverage GRC software to implement the various risk related activities across the bank on a common platform. A variety of risk assessment tools existed that spanned business units and risk disciplines. However, KeyCorp recognised the need for risk convergence and a consistent approach to risk assessment. Over the next three years a plan was set in motion to implement a number of modules in the new platform including risk and control self assessment (RCSA), findings and remediation tracking, risk profiles, operational losses and others. From an internal audit perspective, the decision was made to re-evaluate the audit universe and risk assessments with an aim towards a common framework with the first and second lines of defence. This presented an array of opportunities and challenges. Additionally, Internal Audit recognised the need to utilise the company's new GRC software for its audit projects, workpapers, risk assessments and findings documentation to further serve these efforts and the journey towards risk convergence officially began.

Keywords: risk assessment; internal audit; risk covergance; audit universe; Risk and Control Self Assessment (RCSA) (search for similar items in EconPapers)
JEL-codes: E5 G2 (search for similar items in EconPapers)
Date: 2014
References: Add references at CitEc
Citations:

Downloads: (external link)
https://hstalks.com/article/3423/download/ (application/pdf)
https://hstalks.com/article/3423/ (text/html)
Requires a paid subscription for full access.

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:aza:rmfi00:y:2014:v:7:i:4:p:370-374

Access Statistics for this article

More articles in Journal of Risk Management in Financial Institutions from Henry Stewart Publications
Bibliographic data for series maintained by Henry Stewart Talks ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-19
Handle: RePEc:aza:rmfi00:y:2014:v:7:i:4:p:370-374