News & Resources

  1. Home

P2ST2 Methodology in Risk Controls

Risk controls are one of the most common processes that needs to be assessed during a risk assessment. Crest Advisory Africa (Pty) Ltd (hereinafter CA...

Read more

Risk Matrix Modelling Fault

Enterprise Risk Management (ERM) is describing a Risk Matrix[1] as: tool for ranking and displaying risks by defining ranges for consequence and likel...

Read more

What is and how to conducts an Adequacy and effectiveness perspective rating

In the context of combined assurance, the statement emphasizes the importance of evaluating and rating controls within an organization using both inte...

Read more

Internal Control Effectiveness (ICE) Methodology in Risk Controls

Over the years of Risk Training, Advisory and Consulting, one specific challenge that stood out for me is that risk registers are not using a methodol...

Read more

Internal Control Effectiveness (ICE) Methodology in Practice

In the previous articles we have been unpacking various risk-based methodologies, such as the P2ST2 and the Internal Control Methodology. Based on thi...

Read more

Can ISO 31000:2018 be Internationally Certified?

ISO 31000:2018 (Risk Management - Guidelines) cannot be internationally certified by a Certification Body (CB). Here's why. ISO 31000:2018 is a guidel...

Read more

What is and how to conducts an Adequacy and effectiveness perspective rating

In the context of combined assurance, the statement emphasizes the importance of evaluating and rating controls within an organization using both inte...

Read more

The Top-Down and Bottom-Up Approaches in Enterprise Risk Management (ERM)

Over the years that I was involved in Risk Management, I have been fortunate to serve on several high-level Risk and Strategy committees, from Governm...

Read more

Common mistakes in a structured risk register

Every time my company, Crest Advisory Africa (Pty) Ltd, are appointed to review the risk process which includes the Risk Management Framework, The Ris...

Read more

P2ST2 Methodology in Risk Controls

Risk controls are one of the most common processes that needs to be assessed during a risk assessment. Crest Advisory Africa (Pty) Ltd (hereinafter CA...

Read more

Unlocking Success: How Internal Audit Strengthens Risk Management for Strategic ...

Risk Management is an internal structure to drive the Strategic Objectives of the company it serves. Thus, the Risk Management function is the custodi...

Read more

Risk Management vs Internal Audit

Yesterday I came across a discussion piece in a Risk Managers group that I am a member of. The topic was about the relationship between Internal Audit...

Read more

Get Directions