Information Technology

Identification, assessment, and mitigation of threats to the security and availability of critical systems and data 

Financial Reporting

Development and implementation of internal control programs to support financial reporting processes 

Operations

Identification and mitigation of the risks that threaten the achievement of operational goals and objectives 

Fraud

Identification of internal and external fraud risks throughout the organization

Vendor Management

Risk rating third-party service providers and evaluating vendor controls and processes 

Governance

Identification of risks related to organizational structure, management and Board composition, and company policies and procedures 

Physical Security

Helping organizations account for risks their physical environments 

Human Resources

Identification of risks related to HR policies and procedures that apply to customers, vendors, and communications