Project Risk Management (Based on ISO 31K Framework)
2 – days
1. Introduction
2. Risk Fundamentals
3. Risk Frameworks
4. Establish the Context
5. Set Risk Objectives
6. Identify Risks
7. Analyze Risks
8. Evaluate Risks
9. Accept Risks
10. Treat Risks
11. Communicate & Consult
12. Monitor & Review (Assurance
Process Risk Management (Value Added Auditing)
1 ½ days
1. Value Added Auditing and Process Fundamentals
a. Process Management 101
2. Managing Value Added Auditing
3. Planning the Value Added Audit
a. Step 1: Understand audit and business objectives
b. Step 2: Notify/visit auditee
c. Step 3: Understand auditee’s system, process and product documentation
d. Step 4: Develop audit plan
e. Step 5: Develop audit survey
4. Conducting the Value Added Audits
a. Step 1: Assess organizational maturity
b. Step 2: Assess process capabilities
c. Step 3: Assess system/process risks
d. Step 4: Evaluate control effectiveness
e. Step 5: Assess evidence
f. Step 6: Issue opinion
g. Step 7: Conduct exit meeting
5. Reporting Value Added Audit Results
a. Step 1: Communicate audit results
b. Step 2: Decide audit report format
c. Step 3: Correct – Prevent – Predict – Preempt
d. Step 4: Maintain audit file
Enterprise Risk Management (Based on COSO Risk Framework)
1 day
1. Federal ERM
2. Commercial ERM drivers
3. Key ERM Concepts & Terms
4. ERM Capability & Maturity
5. COSO Risk Framework
6. Internal Environment
7. Objective Setting
8. Event Identification
9. Risk Assessment
10. Risk Response
11. Control Activities
12. Information & Communication
2 – hour Certificate Review