Broschiertes Buch

Value Added Auditing Third Edition

Standard Manual of Risk Based, Process Auditing

Versandkostenfrei!

Versandfertig in 1-2 Wochen

60,99 €

inkl. MwSt.

Jetzt bewerten

PAYBACK Punkte

30 °P sammeln!

Weiterlesen / Aufklappen

Who is the author: Greg Hutchins PE CERM? Greg Hutchins is a professional engineer, writer, maker, curator, and developer. Greg is the author of 15 ISO, risk, and supply management books. Greg is the risk evangelist who coined the expression Future of Quality: Risk® and is the developer of Certified Enterprise Risk Manager® (CERM) certificate. What is Value Added Auditing(TM) (VAA)? Value Added Auditing (440 pages) is a process and risk based manual for ISO management system and risk based audits. The manual can be used to conduct performance, operational, IT, cyber, and supply management assessments. The objective of the manual is to enhance: 1. Risk-based, problem solving and 2. Risk-based, decision making. All ISO 9001:2015 and ISO 14001 companies should read this book to understand and implement Risk Based Thinking (RBT) and Risk Based Auditing (RBA). VAA is also core to the CERM certificate. What This Book Can Do For You? Value Added Auditing can be used as your 'how to' primer or reference for the following assessments: ISO 9001, ISO 14001, and other ISO management system assessments that focus on continual improvement and achieving business objectives. The book is harmonized to ISO 31000. Business assurance assessments including attestation, compliance, maturity, capability, and benchmarking. Internal auditing (Yellow Book/Red Book/Quality) providing independent and objective assurance that an organization can accomplish its business objectives within its risk appetite. Supplier auditing that may involve risk forensics, assurance, and analytics. Risk based Information Technology (IT) audits including ISO 27001, COBIT, ITIL, HIPAA, PCI, FISMA, and SOX assessments. Risk assurance assessments ensuring an organization can meet its governance, risk, and compliance (GRC) objectives. Assurance and opinion audits based on international standards. Bonus Materials/Resources Access to 1000 risk and RBT articles through CERM Academy - www.http://insights.cermacademy.com/ Get a discount for the Certified Enterprise Risk Manager® (CERM) certificate. Get discounts for CERM Academy products.

Weniger Details

Greg Hutchins PE CERM is the founder of: + 800Compete.com. + WorkingIt.com. + CERMAcademy.com. + QualityPlusEngineering.com, and other startups. + CERMAcademy.com. Greg Hutchins is the risk evangelist who coined the expression Future of Quality: Risk®. He is the founder of Certified Enterprise Risk Manager Academy®. He can be contacted at GregH@europa.com or 503.233.1012. Greg is the founder of Working It Academy and the author of Working It: Disruption Rules. Greg Hutchins PE CERM is also the principal professional engineer Quality + Engineering - international supply and quality management firm. Q+E is the designer and developer of Certified Enterprise Risk Manager® (CERM), CERM Cyber¿ certificate, and best-selling ISO and ERM books. Q+E has deep domain expertise in ISO 31000, ISO 27001, and NIST 800's. Q+E designed CERM based on its security IP including Critical Infrastructure Protection: Forensics, Assurance, Analytics®; Value Added Auditing¿; Certified Enterprise Risk Manager®; Future of Quality: Risk®; CERM: Risk Based, Problem Solving Risk Based, Decision Making®; etc. Q+E has been certified by the Department of Homeland Security for Critical Infrastructure Protection: Forensics, Assurance, Analytics®. Q+E has conducted the following Critical Infrastructure Protection (CIP) risk assessments: + Analytical. Q+E engineers and scientists conduct analytical analyses following Q+E protocols evaluating business continuity, cyber security, and physical security systems against IEEE, NFPA, ISA, PMI, ISO, NIST, COSO, NERC, DIACAP, FISMA, and ASIS standards. + Assurance. Q+E offers the client three levels of assurance: + Compliance. Q+E conducts a compliance audit against appropriate standards and guidance. + Assurance with opinion. Q+E issues an opinion based on the results of a governance, risk, and compliance (GRC) audit or ERM controls assessment. + Assurance with insurance coverage. Q+E conducts an audit and provides the requisite level of due diligence for the auditee to be covered. + Forensics. Q+E provides the above levels of assurance as well as supplies a letter to the regulatory authority averring compliance that criteria have been met. Our ISO background includes: Was lead trainer and consultant for first US based certification body in 1987 (AGA Laboratories). Was member of US TAG in 1987 - developer of ISO 9001 Consulted and trained FAA in risk-based auditing, certification, etc.