To provide CPAs and other finance professionals with a practical understanding of risk management and internal controls, enabling them to develop effective ERM frameworks, address emerging risks, and strengthen fraud prevention and compliance efforts.

• Eight building blocks of a successful risk management program
• How to establish an effective framework for Enterprise Risk Management (ERM)
• SEC disclosures: risk factors
• SEC concept release
• Cybersecurity and AI risks and concerns
• New rules around climate change and climate risks
• The impacts of: 
  – Geopolitical conflict
  – Tariffs
  – Trade
  – Inflation
  – Interest rates
• The intersection of risk management and AI, including:
  – Foundation models
  – Generative AI
  – Agentic AI
• Third party risks and SOC reports
• The convergence of cyber risks and AI in 2026

This targeted self-study webinar will provide you with a firm grasp of the common financial and operational risks that still confront companies and what you need to do, beyond insuring against them, to manage those risks.

DETAILED LEARNING OBJECTIVES

• Identify the basis upon which risk management programs should be established

• Identify appropriate risk management metrics 

• Identify the goals of an effective risk management program

• Recognize the relationship between the ERM framework, risk assessment, and the COSO framework

• Recognize the step to be taken after senior management has established an organization’s strategic goals

• Identify the “building blocks” in a risk management program

• Recognize the role of fraud within the COSO framework

• Identify the categories of risk to be considered within a risk management program

• Identify the perspective from which the ERM framework identifies risks

• Recognize the perspective from which key performance indicators are typically viewed

• Identify common metrics used by organizations to indicate increasing risk exposure

• Identify the role of insurance in risk management

• Recognize the optimum timing for evaluation and monitoring of existing risk management strategies 

• Recognize the requirements for the identification of problems with current risk management strategies 

• Identify the relative role of MIS in controlling risk 

• Identify risks unique to MIS 

• Identify recommended MIS user access controls 

• Recognize recommended steps for the MIS prevention of data loss 

• Recognize the changes to SSAE No. 18 relative to SSAE No. 16

• Identify the SSAE No. 18 changes to the SOC 2 report 

• Identify the relative attention given to an entity’s internal controls by regulators

• Identify the general characteristics of an effective service organization’s control environment

• Recognize an organization’s likelihood of being subject to a cyber attack

• Recognize the characteristics all business cyber attacks have in common

• Recognize effective risk alignment strategies 

• Recognize specified statistics on recent cybersecurity incidents

• Recognize the role of insurance in risk management programs

• Recognize the cyber risks unique to employees working from home 

• Identify the expenses covered by specified cyber insurance policy coverage areas

• Identify suggested public relations strategies for a breach 

• Identify the regulatory players within the cybersecurity realm

• Recognize the role of the Department of Homeland Security in cybersecurity matters

• Recognize the focus of the SEC’s jurisdiction over cybersecurity 

• Eight building blocks in establishing a strong risk management program
• Enterprise Risk Management (ERM)
• Quality of data for key risk indicators
• SEC disclosures
• SEC concept release
• Cybersecurity release and disclosures
• Climate change
• Geographic conflict
• Inflation and interest rates
• Generative artificial intelligence
  – Financial risk strategy and application
  – Limitations
  – Third party risk
  – SSAE 18 update
  – SOX II report
• Cybersecurity risks expectations