Next, we open our dialogue with the Chief Audit Executive for InFission Corporation.
We help him develop the Audit plan to confirm the risks to the enterprise mission and ensure that the controls that mitigate for those risks are effective.
Within Oracle this is really the realm of GRC Manager and GRC Intelligence. This topic will be covered in detail when we get to the risk management section of the book. The reason that we also touch on it in the governance section of the book is to point out the overlap between the strategic direction setting for the enterprise and the risk management activities of the enterprise. Part of direction setting needs to be risk assessment.
As the Institute of Risk Management in the UK puts it as "The Board has responsibility for determining the strategic direction of the organization and for creating the environment and the structures for risk management to operate effectively. This may be through an executive group, a non-executive...