Professional Course
4.8 (5 Reviews)

Auditing the Enterprise Risk Management Process

ACI Learning, Online (+1 locations)
2 days
1,600 USD
Next course start
Inquire for dates and prices (+2 start dates)
On-site, Self-paced Online
2 days
1,600 USD
Next course start
Inquire for dates and prices (+2 start dates)
On-site, Self-paced Online

Course description

Auditing the Enterprise Risk Management Process

This course will start with an overview of the Enterprise Risk Management process and all the underlying elements of an Enterprise Risk Management, including a discussion on risk appetite, governance, and roles & responsibilities. Once the Enterprise Risk Management fundamentals has been established, the course will provide more details into the attributes that make an Enterprise Risk Management process effective such as addressing black swans, using risk driven metrics as well as linking Enterprise Risk Management with the organization’s strategy. There will also be a discussion of Internal Audit’s role in the Enterprise Risk Management initiative. The majority of the course will involve methods for auditing the Enterprise Risk Management process by assessing the Enterprise Risk Management process according to the COSO framework which is comprised of 5 components and 20 principles. The 5 components include: 1) Governance & Culture 2) Strategy & Objective Setting 3) Performance 4) Review & Revision. The objective of the assessment procedures is to determine if the organization’s ERM process exhibits these 20 principles. There will also be a discussion to address another risk management framework, ISO 31000. A summary of key highlights of ISO 31000 will be covered as well as comparing the commonalities and differences between the ISO risk management framework and the COSO risk management framework.

Do you work at this company and want to update this page?

Is there out-of-date information about your company or courses published here? Fill out this form to get in touch with us.

Upcoming start dates

Choose between 2 start dates

Inquire for dates and prices

  • On-site
  • Worldwide

Start anytime

  • Self-paced Online
  • Online

Who should attend?

Audit directors and managers, risk officers, internal and external auditors, information technology auditors and operations managers


 Risk School (OAR201) or equivalent experience

Training content

  1. Enterprise Risk Management (ERM)
  2. COSO Principles 1-20

Course delivery details

This course is available through AuditProTV — a subscription-based, on-demand learning platform. As a subscriber, you will have access to an &'all you can watch' library of courses that are built in alignment with the National Association of State Boards of Accountancy (NASBA) standards.

Bring this course to your organization at your convenience. ACI Learning can deliver this instructor-led course for your team at a chosen location or virtually. Alternatively, choose the topic(s) you need and ACI will craft a training solution to keep your team future-proof.

Certification / Credits

NASBA Certified CPE: 16 Credits Auditing

Risk and Compliance Certificate

What You'll learn

You will learn the characteristics and functionality of effective ERM programs, and how auditors can evaluate the risk management process.

Course Objectives

  • The learner will understand the basic elements of the entire ERM process, including governance, execution, and reporting.
  • The learner will define common ERM vocabulary and terminology.
  • The learner will understand how the ERM process should be linked to the organization's strategy.
  • The learner will apply the ERM framework principles and develop auditing procedures to assess the effectiveness of an organization's ERM process.
  • The learner will identify the differences between the two of the most used ERM frameworks, COSO and ISO.


Average rating 4.8

Based on 5 reviews.
Write a review!
Gregory C.
23 Oct 2019
Very satisfied

Very satisfied with course content and delivery

Brittany B.
08 May 2019
Excellent course all the way around

Excellent course all the way around. Enjoyed Back Bay venue.

Emily L.
01 May 2019
A good course in ERM, but a bit too long

This was a good course in defining what ERM should be doing and as a result what to look for when auditing ERM. However, I think it could easily be done in 2 days.

ACI Learning

ACI Learning

At ACI Learning, we train leaders in Cybersecurity, Audit, and Information Technology. Whether you're starting your IT career, mastering your profession, or developing your team, we're with you every step of the way. We believe that training is not a...

Read more and show all training delivered by this supplier