This session will highlight critical steps in completing a risk assessment that will meet the requirements of Organizational Standard 4.6. Risk management is how we deal with uncertainty, which begins with the identification and assessment of potential risks. The risk assessment is typically conducted by staff with the help of board oversight. Your agency’s risk assessment should cover all pertinent aspects of operations and include topics such as: governance, financial management, contracts and procurement, human resources, communication, service delivery, protecting vulnerable populations, transportation, and property. By the end of this session, your agency will be equipped with the knowledge to ensure a smooth and effective risk assessment of your agency and compliance with the new standard.
Torpey White is a partner in Wipfli’s risk advisory and forensic services practice. Mr. White has over 25 years of experience in public accounting and private industry performing financial, operational, and business process audits, information systems reviews, fraud investigations, software training, and day to day accounting activities. Mr. White is a Certified Public Accountant, Certified IT Professional, Certified Information Systems Auditor, Certified Governance of Enterprise IT, and Chartered Global Management Accountant. He has extensive experience with SSAE16 engagements and operational auditing projects. Mr. White performs reviews of information technology systems to assess risks and related internal controls; data analysis to identify trends, increase efficiencies and detect potential defalcations; operational and business process audits through the firm’s outsourced internal audit function; and pre-implementation reviews of software installations. He has worked in various industries including financial services, nonprofit, utilities, automotive, horse racing, healthcare, and light manufacturing.
Karen Johnston has over 15 years of experience in public accounting and private industry performing financial, operational, and business process audits, information systems reviews, and fraud investigations. She has extensive experience with business risk assessments, IT audits, and operational auditing projects. Karen served as the Supervisor of Internal Audit for T-Mobile performing monthly audits and Sarbanes-Oxley Section 404 testing. She has planned and performed internal audits and risk assessments during her career while working at Pepco Holdings and Chrysler Financial.