Related Posts
What’s your opinion on Cue Health?
Glad my Amazon addiction is beneficial to everybody

Additional Posts in Risk Assurance
Hello - hope everyone is having a great weekend. I'm looking into risk assurance opportunities at Meta, especially Application Manager, Controls (min 5 YOE) and Manager, Compliance (min 12 YOE). I am a Senior Manager with 9 years of IT risks assurance experience. Does anyone have any thought on which position I should apply? If anyone currently at Meta could share your experience, that would also help. If anyone is open to providing referrals, I could provide my background. Facebook (Meta)
New to Fishbowl?
unlock all discussions on Fishbowl.



Community Builder
External audit/attestation - finding
Internal audit/consulting - of course you might want to help
This is key.
We work in the service industry. We go out of our way.
You need to be concerned as to the type of client. (Public or private) and the independence standards you used to accept the work. If the client can’t figure it out, could be a material weakness or significant deficiency in internal control which may have to be reported to those charged with corporate governance.
Definitely an exception for the competency and authority attribute
Do you have the right contact?
Of course, if nobody in the company knows then I don't see how your system would be effective anyway. No way any kind of UAR or change review would ever pass if they can't export a list.
Might be a finding that they aren’t actively monitoring for changes… but yes if you’re internal you show them how and then you get them to start documenting