POPULARITY
This month's episode focuses on a project looking at intensive dairy systems in Inland NSW and Northern Victoria over the last 7 years. This has provided the industry with quality foundational information on the profitability, cost structures and risks of these systems. Claire Waterman from Agriculture Victoria and Sheena Carter (NSW DPI) led the project for their respective regions and were recently interviewed for a Rural Bank podcast called “Beyond the Farm Gate”. A big thank you to Rural Bank who have kindly allowed us to use the recording to share the project findings via this podcast. Links to useful resources related to this podcast:Project Report and Case Studies Intensive Farm Systems Economics | Dairy AustraliaThis podcast is an initiative of the NSW DPI Dairy Business Advisory UnitIt is brought to you in partnership the Hunter Local Land ServicesPlease share this podcast with your fellow farmers and colleagues and feel free to contact us with suggestions or comments via this email address thebusinessofdairy@gmail.comFurther NSW DPI Dairy channels to follow and subscribe to include:NSW DPI Dairy Facebook pageDPI Intensive Livestock Twitter feedNSW DPI Dairy NewsletterTranscript hereProduced by Video LiftThe information discussed in this podcast are for informative and educational purposes only and do not constitute advice.
In this engaging conversation, Michael Gayed talks with Fabiana Lara, publisher of the Next Big Rush. Fabiana discusses her journey into the uranium market, highlighting her self-taught approach to understanding the industry. She also shares her views on the increase in gold and silver investments, her interest in tin and platinum, and her speculation on the future of the uranium and nuclear energy market. Additionally, Fabiana provides insights into mining stocks, various companies' strategies, the political aspect of nuclear energy, and the role of marketing in the industry. With a focus on diversification and understanding risks, her main advice to investors is to embrace learning and stay informed about their investment ventures.ANTICIPATE STOCK MARKET CRASHES, CORRECTIONS, AND BEAR MARKETS WITH AWARD WINNING RESEARCH. Sign up for The Lead-Lag Report at https://theleadlag.report/leadlaglive and get 30% off as a podcast listener.Nothing on this channel should be considered as personalized financial advice or a solicitation to buy or sell any securities. The content in this program is for informational purposes only. You should not construe any information or other material as investment, financial, tax, or other advice. The views expressed by the participants are solely their own. A participant may have taken or recommended any investment position discussed, but may close such position or alter its recommendation at any time without notice. Nothing contained in this program constitutes a solicitation, recommendation, endorsement, or offer to buy or sell any securities or other financial instruments in any jurisdiction. Please consult your own investment or financial advisor for advice related to all investment decisions. Sign up to The Lead-Lag Report on Substack and get 30% off the annual subscription today by visiting http://theleadlag.report/leadlaglive. Foodies unite…with HowUdish!It's social media with a secret sauce: FOOD! The world's first network for food enthusiasts. HowUdish connects foodies across the world!Share kitchen tips and recipe hacks. Discover hidden gem food joints and street food. Find foodies like you, connect, chat and organize meet-ups!HowUdish makes it simple to connect through food anywhere in the world.So, how do YOU dish? Download HowUdish on the Apple App Store today:
"With faster payments comes faster fraud" In the long awaited episode on Faster Payments I sit down with Julie Conroy from Datos Insights (Formerly Aite-Novarica Group) to talk about the world of Faster Payments with names you've all heard like FedNow, RTP, and Zelle. What are they really though and what do they each mean. Payments being faster is something we have asked for for a long time and here we talk about the different types of rails, how they work, who is using them, and of what it means for consumers and businesses alike. And, of course, we talk the fraud that comes along with it! Enjoy! Julie Conroy: https://www.linkedin.com/in/julie-conroy-6997/ Julie is the Head of Risk Insights and Advisory at Aite-Novarica Group. Prior to time at Aite-Novarica Group, Julie spent a number of years leading the product management team at Early Warning Services, and prior to that was in product and process management roles at a large credit card issuer and as well as an ACH, wire, and SWIFT processor. Julie is fluent in Spanish, holds an M.A. from the Monterey Institute of International Studies and a B.A. from the Michigan State University Honors College. About Datos Insights: https://www.linkedin.com/company/datos-insights/ Datos Insights are the advisor of choice to the banking, insurance, securities, and retail technology industries—both the financial institutions and the technology providers who serve them. The Datos Insights mission is to help our clients make better strategy and technology decisions so they can protect and grow their customers' assets. ------------ Today we welcome on newest sponsor Darwinium! The Darwinium platform unifies security with fraud prevention to create complete visibility of customer journeys across every digital touchpoint – Web, Apps and APIs. Darwinium's unique integration point, running on the perimeter edge via content delivery networks (CDNs), is privacy preserving and low latency. Businesses have a holistic view of customer behavior, from pre-authentication, through account creation, login, change-of-details and payments. Businesses are better equipped to separate human and automated traffic, protect customers from account takeover, identify scams and social engineering behaviors, block content and promo abuse, and detect fraudulent payments. Darwinium is implemented once, and then covers every interaction a user makes on your website or mobile app. What's more, these user journeys can be fully configured within the platform and adapted at the click of a button, based on trust and risk. Please give them a warm welcome and visit www.darwinium.com to learn more about their revolutionary product!
This podcast episode features a guest named Jacob Jones, who is running a solar company and working as a consultant. The conversation covers various topics, including the competitive mindset, the importance of learning from mistakes, the significance of making decisions based on emotions rather than logic, and the power of providing a unique experience to customers. The guest shares his experiences in sales and consulting for small businesses, emphasizing the need for simplicity and reproducibility in business operations. d
Welcome to the second episode of Risk Radar, where we dive into a topic that has garnered significant attention within our community. In the past month, the focus on Geopolitical Risk has intensified, driven by the current state of the world. As such, we've delved into Geopolitical Risk, and addressed several key questions: How do geopolitical risks influence businesses in terms of their strategy, innovation, and bottom-line performance? What are the linkages between geopolitics and ESG factors, and how can organizations effectively navigate these interconnections? What are the common obstacles that firms encounter when managing geopolitical risks, and how can these challenges be overcome? From the standpoint of external stakeholders such as investors, governments, and regulators, how are their views on geopolitical risk and corporate exposures evolving? What are the primary methods for businesses to assess and mitigate geopolitical risks in their current operations and long-term planning? How do cybersecurity and third-party vendor management intersect with geopolitical risk management? What considerations should organizations bear in mind when integrating these aspects? and more. For more information regarding these topics we recommend to check our recent Risk Management Show Episode with Brian Zawada and our recent Geopolitical Risk Management Course with Derek Leatherdale.
Join Reh Bhanji and David Lee as they sit down with Mathew Smith, Regional Vice President of Sales at Desjardins. With a strong background in Actuarial Science, Mathew shares his expertise on managing risk, both in his personal and professional life. Gain valuable insights and practical strategies for navigating risks and making informed decisions. Tune in to this engaging conversation and unlock the secrets to effective risk management. Watch the Discovery Series “Ignite 5 Pay Par” and earn CE credits here: https://lnkd.in/gZVdAyaB
Join us for this episode of The CyberPHIx podcast where we hear from Ryan Patrick, Vice President of Adoption at HITRUST. Ryan works with clients to understand and implement the HITRUST-validated assessments that best suit their organization's risk profile. Prior to this role, he spent many years as a security practitioner and IT lead in a wide range of organizations from the US Army to Covered Entities to healthcare cybersecurity consulting firms. He has a wealth of practical security experience that informs every discussion about security or HITRUST. Topics covered in this session include: The new HITRUST v11 and what it means for organizations who are considering the HITRUST journey HITRUST's traversable levels of assurance from e1 to i1 to r2 A newly created threat adaptive control selection process they use How broken and unsustainable TPRM (Third Party Risk Management) is today How HITRUST services fit into the third-party risk landscape A discussion about the new Health Third Party Trust (H3PT) council and what that group is trying to do to solve TPRM An invitation to meet either of us in person at HIMSS in Chicago April 17 – 21 And a cool update on HITRUST's Results Distribution System (RDS) and the automation opportunities it will provide
Our guest is Cathy O'Neil, author of Weapons of Math Destruction: how big data increases inequality and threatens democracy.Cathy joined us to discuss critical aspects for auditors to consider, including:The human element: why understanding 'for whom an algorithm might fail' is more important than the detailed technical design of an algorithm.Algorithm testing: the importance of post-deployment testing to ensure there are no unintended adverse outcomes. Setting standards: the need for industry-wide standards so that regulators can ensure there is no bias or discrimination in how algorithms operate. Laggers and leaders: the four big industries/domains using algorithms that need to step up audit in their space and how law-makers and regulators are catching up.Emerging AI, e.g. language models/chatbots - why trust by users is key, and the pros and cons of using these models.LinksCathy's company, ORCAA Weapons of Math Destruction (book) This episode's web page: https://www.riskinsights.com.au/podcast/the-assurance-show-64/About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In episode 4 of the podcast "Scam Rangers," Julie Conroy, the Head of Risk Insights and Advisory at Aita-Novarica group and I talk about online scams and the perspectives of both financial institutions and consumers. We discuss the gap between what banks think they're doing to educate and protect customers from scams, and how it's being received by consumers.This podcast is hosted by Ayelet Biger-Levin, who spent the last 15 years building technology to help financial institutions authenticate their customers and identify fraud. She beleives that when it comes to scams, the story starts well before the transaction. She has created this podcast to talk about the human side of scams, and to learn from people who have decided to dedicate their lives to speaking up on behalf of scam victims and who take action to solve this problem. Be sure to follow her on LinkedIn and reach out to learn about her additional activities in this space.
Listen to our latest Risk Insights episode led by Chris Snider, Zurich Resilience Solutions and guest Glenn McGillivray, Managing Director at the Institute for Catastrophic Loss Reduction. This episode covers the ICLR and their relationship with the personal and commercial insurance industry by highlighting topics such as wildfire floods and wind exposures.
Imperial and Risk Insights jointly hosted the official launch of the World Economic Forum (WEF) New Champions Chapter in South Africa, which took place in Johannesburg, South Africa. It is the first new local chapter and it is a big feat. Esha Mansingh speaks to Nonso Mordi about this initiative. She is the Executive Vice President: Corporate Affairs & Investor Relations at Imperial; Young Global Leader World Economic Forum 2022; Co-Chairman: WEF New Champions S.A Board.
Imperial and Risk Insights jointly hosted the official launch of the World Economic Forum (WEF) New Champions Chapter in South Africa, which took place in Johannesburg, South Africa. It is the first new local chapter and it is a big feat. Esha Mansingh speaks to Nonso Mordi about this initiative. She is the Executive Vice President: Corporate Affairs & Investor Relations at Imperial; Young Global Leader World Economic Forum 2022; Co-Chairman: WEF New Champions S.A Board.
Imperial and Risk Insights jointly hosted the official launch of the World Economic Forum (WEF) New Champions Chapter in South Africa, which took place in Johannesburg, South Africa. It is the first new local chapter and it is a big feat. Esha Mansingh speaks to Nonso Mordi about this initiative. She is the Executive Vice President: Corporate Affairs & Investor Relations at Imperial; Young Global Leader World Economic Forum 2022; Co-Chairman: WEF New Champions S.A Board.
Why is data important in the audit process? And why should internal auditors approach data themselves? For several reasons, including that it helps improve audit quality and acquires better insights on a business. But there are many more causes that we uncover today. Yusuf Moolla, Director and Co-Founder of Risk Insights, will help us understand the role of data in performance audits. Yusuf has over twenty years of experience in data and assurance. He previously worked for two Big Four firms, Deloitte and KPMG, leading audits and data projects worldwide. Yusuf is also the Co-Host of The Assurance Show, a podcast for internal auditors and performance auditors that focuses on data and risk, and Co-Author of The Data-Confident Internal Auditor. In this episode, we discuss: - Helping internal audit teams use data - Why should CFOs support the use of audit data analytics? - How does a successful audit find solutions across departments? - Using data for more effectively and higher-quality audits For more interviews from the CFO Weekly podcast, check us out on Apple, Spotify, or your favorite podcast player! Presented by Personiv https://insights.personiv.com/cfo-weekly
In this episode, I talk with Yusuf Moolla about the noble profession of auditing and how a good audit program, along with open, regular, and two way communications between the risk function and the audit team maximise results.And a big part of the secret of their success is utilising data to gain insight - whether that be through a performance audit, a program evaluation or an internal audit engagement.Yusuf and the team at Risk Insights have many years of experience across a variety of industry and government audit engagements.Contact them to discuss your audit needs at riskinsights.com.auEnjoy the podcast!
Conor McGarrity's background includes KPMG and the public sector. Passionate about leveraging data for better audit outcomes and redefining the limits of what's possible, he is the co-founder of Risk Insights - a specialist advisory firm that focuses on using data for internal and performance audit. He also enjoys displaying a unique blend of “skill” and “finesse” on the soccer field. The Data Confident Auditor
Conor McGarrity's background includes KPMG and the public sector. Passionate about leveraging data for better audit outcomes and redefining the limits of what's possible, he is the co-founder of Risk Insights - a specialist advisory firm that focuses on using data for internal and performance audit. He also enjoys displaying a unique blend of “skill” and “finesse” on the soccer field. The Data Confident Auditor
Zurich Canada's Perspective podcast has launched a new series with Chris Snider, Head of Sales & Distribution, Zurich Resilience Solutions, Risk Services Canada. This episode will introduce Risk Insights and the Zurich Resilience Solutions launch in Canada through a conversation with Hanno Mijer, Global Head of ZRS and Thomas Fioretti, North American Head of ZRS.
Maarit Widmann is a data scientist at KNIME.In this episode, we discuss:What KNIME isWhy the visual programming paradigm (workflows, rather than code) is appealing to both technical and non-technical professionalsThe most challenging aspects of the data science lifecycle, and what auditors should be aware ofThe most important aspects of the data science lifecycle Links: KNIME (www.knime.com)This episode's web page (riskinsights.com.au/podcast/the-assurance-show-55/)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Tom Fox welcomes Yusuf Moolla on this episode of the Innovation in Compliance Podcast. Yusuf is a Director at Risk Insights, co-cost of The Assurance Show Podcast, and co-author of The Data Confident Internal Auditor. He joins Tom to talk about how compliance professionals can utilize data analytics, data governance, and internal auditing. Best Approaches To Data The easiest way to approach data, Yusuf suggests, is to think about it as another form of evidence. "Over the years we've collected lots of manual documents as evidence…Data is just another piece of evidence," he tells Tom. Data can be used by anybody, and it is very simple to do so. Currently, there has been an emergence of open source tools to process data which has made it easier and cheaper for individuals. These open-source tools have made it safer as well, as there are options to look into the source code for digital traps. Visualization is another approach to data that individuals can utilize. While relatively new, being able to visualize techniques both in terms of exploring and explaining data is becoming something that is gaining traction in the data analytics world. Internal Auditing Approaches Yusuf explains to Tom that there are four main data approaches to consider when doing internal audits: Data being used purely for reporting The data-driven approach where the data does the talking The process-focused approach The hypothesis-focused approach There are similarities between the process and hypothesis approaches. The process-focused approach has been the traditional way of doing audits. Over the years, however, it's become less about how the process is done to achieve the intended result; it's now about what the auditing result is. "So it's not about looking at whether a process actually works the way that it's been designed, it's about looking at whether the process is working in the way in which it's intended to be able to achieve its outcome," Yusuf adds. Data Governance in Auditing Making sure that data doesn't fall into the wrong hands as an auditor is one of the main facets of data governance. It is a very basic and traditional approach, but over the years professionals have been implementing it in an overzealous way. This can hinder the ability to create value through data. Yusuf suggests a slight reverse approach where everyone has access to data unless there is a specific reason for them not to. "We want to keep a range of data elements secure, but others we want to open up," Yusuf tells Tom. A Look Ahead Tom asks Yusuf what the future of data analytics, data governance, and internal auditing will look like in the coming years. Yusuf explains that there will be a greater use of data science, and a greater use of data within internal audit without the need for data scientists and specialists. More practitioners will be getting into, and understanding IT, and more people will be using data for themselves. This will free the data scientists from the more mundane tasks, so they will have time to dedicate to the more advanced techniques. The same would apply for compliance as well. Resources Yusuf Moolla | LinkedIn Risk Insights The Assurance Show The Data Confident Internal Auditor
Yusuf Moolla is a Certified Internal Auditor who has over twenty years of experience in data and assurance. He has worked for both Deloitte and KPMG, leading audits and data projects globally, and is co-founder of Risk Insights - a specialist advisory firm that focuses on using data for internal and performance audits. He also is the author of The Data-Confident Internal Auditor: A Practical, Step-by-Step Guide.
Yusuf Moolla is a Certified Internal Auditor who has over twenty years of experience in data and assurance. He has worked for both Deloitte and KPMG, leading audits and data projects globally, and is co-founder of Risk Insights - a specialist advisory firm that focuses on using data for internal and performance audits. He also is the author of The Data-Confident Internal Auditor: A Practical, Step-by-Step Guide.
In this episode we discuss the use of the word "analysis" in the context of using data for audits.This is an attempt to define the "analysis phase" - or stop using it as the name of a phase - so that we can better structure our work.Link: This episode's web page (riskinsights.com.au/the-assurance-show-54)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
This episode is a pre-recorded interview with Benji Block for the Author Hour podcast. We discuss our new book, The Data-Confident Internal Auditor.For internal auditors, developing trends in data analysis and data science can feel less like a wealth of information and more like an avalanche. Still, better use of data provides an opportunity to advance your career by adopting new invaluable skills. The missing link: jargon-free guidance that cuts through the hype. The Data-Confident Internal Auditor demystifies the use of data in internal audits through practical step-by-step guidance. With concepts and tools that are easy to understand and apply, this comprehensive guide shows you how to approach data yourself without having to wait on a data scientist or a technical expert.Developed over the course of hundreds of actual audits, these real-world approaches and practices are distilled into a simple sequence of steps that will leave you feeling confident and even eager to apply them for yourself.Links: The Data-Confident Internal Auditor on Amazon (https://geni.us/DataConfidentInternal)The Data-Confident Internal Auditor site - with bonus resources (http://data-confident.com/)This episode's web page (riskinsights.com.au/the-assurance-show-53)The original episode on Author Hour (https://authorhour.co/the-data-confident-internal-auditor-yusuf-moolla-conor-mcgarrity/)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
To quote Susan Taylor Martin, Chief Executive at BSI "The past few years have put a spotlight on global supply chains and reinforced their crucial role in our day-to-day life. Because of this unprecedented moment, the supply chain is about to have a make-or-break year and needs to be right at the top of the C-suite agenda.” Unfortunately for organizations, supply chain and logistics programs are at risk. In this episode Jim Yarbrough, Global Intelligence Program Manager at BSI joins to provide some insights on the recently released report “Delivering Supply Chain Resilience: The five questions we need to answer in 2022” by BSI. We will discuss: The importance of 2022 will have in supply chains Five key themes for a successful and sustainable supply chain Links from the Episode Check out the report here! Contact Jim Yarbrough at screen@bsigroup.com
This is the fourth in a series of episodes that focus on performance auditing.In this episode, we discuss five suggestions to help improve the conduct (fieldwork / execution) phase.Link: This episode's web page (riskinsights.com.au/the-assurance-show-52)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
The Fourth episode of Digital Tells: A BioCatch Podcast dives into the phenomenon of online money mules. What is a mule? How does one become a mule? Why do or why should financial institutions care about mule activity? And what can be done to detect mules?We open with commentary from Julie Conroy, Head of Risk Insights and Advisory at Aite-Novarica Group. Julie discusses the role of money mules inside criminal organizations and introduces some different mule back-stories. Digital Tells' host Peter Beardmore digs deeper into 5 mule personas. BioCatch's Raj Dasgupta explains the regulatory and reputational risks that mules represent to financial institutions. And John Paul Blaho, Senior Director of Product Marketing, shares a look at how behavioral biometrics can enhance mule account detection.TranscriptPeter BeardmoreAre you a mule? So, the title of this episode is admittedly a bit preposterous. If you're listening to this podcast, it's doubtful you're a money mule (or a drug mule, or an actual mule for that matter). But the point I'm attempting to make with this title is that there are different kinds of mules out there ~ ranging from the completely complicit (let's just call them criminals) to the vulnerable / gullible victims of scam activities that we've discussed in previous episodes. The FBI defines a money mule as Ok, that makes sense, right… I mean if you're going to make money scamming people, stealing, selling drugs, human trafficking ~ that money's got to get someplace where you can eventually retrieve it, right? ~ ideally below the radar of authorities ~ or even better ~ laundered sufficiently so the proceeds can be spent or invested without drawing the attention of law enforcement. In episode 2 Tom O'Malley walked us through all the specialized functions in a cyber criminal syndicate that the U.S. government prosecuted a few years back. Remember there were malware developers, crypters, spammers, bulletproof hosters, account take over specialists - and then there were these cash-out specialists. These were the people who ran the money mules - they had these networks of accounts where money could be moved quite quickly - beyond the reach of the direct victims, their financial institutions, investigators, and authorities. On this episode of Digital Tells - A BioCatch Podcast - we're taking a look at the mules themselves. What is a mule? How does one become a mule? Why do or why should financial institutions care about mule activity? And what can be done to detect mules?Act 1Julie Conroy is the head of risk insights and advisory for Aite-Novarica Group. She advises financial institutions, vendors, and merchants about risks relating to fraud and financial crime ~ strategies and tactics to mitigate those risks ~ and what that all means for customer experiences.I spoke with Julie recently about how financial institutions are struggling with mule accounts, and I asked her specifically about the spectrum of mule personas that I mentioned earlier.Julie ConroyYou have this organization of functions in financial crime, just as we do on the side of the good. And so you do have some people that are specifically leveraging stolen identities, synthetic identities to open up your accounts with the express purpose of exiting these funds. You also have folks that have been brought over on visas, and they're using their identities for a period of time to open up accounts. And then after those accounts have been used to serve their muling purpose for a while, they go back to their country and there's no consequences, really. Somewhere in the middle, you have people that respond to the make money in your sleep signs. They know ultimately that this isn't quite right, but they are still using their own identities in order to help facilitate the mewling. And then at the other end of things, you have people that truly have been duped by romance scams or other things into opening up these accounts, facilitating the sending of funds and truly don't know that what they're doing is facilitating financial crime.Peter BeardmoreAt BioCatch, we've actually developed personas to help us bring some clarity to the spectrum of mules – from the more complicit to less complicit – we'll share a link in the shownotes.OK, so let's briefly discuss these personas:There's The Deceiver – who opens an account specifically to perpetrate fraud – The deceiver is obviously the most complicit on the spectrum.Then there's The Peddler – who sells their genuine bank account to a criminalThere's The Accomplice – a willing participant who's chasing an “easy money” opportunity.There's The Chump – who executed a transaction believing the money is clean – this is your prototypical scam victim.And then finally there's The Victim – a victim of credential theft, unaware that there's even been a break-in – The Victim obviously the less complicit persona.As I started to research these personas, a couple things struck me.First – with the exception of The Deceiver – the most complicit, and The Victim – the least complicit – the others – The Peddler, The Accomplice, The Chump, – they're all kind of Sad, right? I mean, these aren't societies winners… people basking in their own success? ‘living the dream' so to speak? More likely – they're desperate – They've fallen for easy money or get rich quick schemes – or romance schemes – and they're either desperate enough to knowingly sell their own identity and accounts – or desperate enough to live with the ambiguity that they may have involved themselves in a criminal enterprise – or their just gullible – I mean, if you're gullible enough to execute a transaction for a stranger on the internet - believing nothing is wrong – could that possibly be the only time someone has taken advantage or exploited you? I'm reminded of that Clint Eastwood character in his movie The Mule that came out a few years ago. This very old man, clearly he'd made a slew of bad decisions in his life, and realizing in his final years that he was destitute – his home was foreclosed - and he's alone / his family had lost faith in him and his x-wife (with plenty of justification) was rubbing his nose in his failures – but with just a glimmer of hope for redemption with his family and friends - he made a naïve decision to earn some money – and then around the time he realizes what he's doing and who he's involved with – the draw of all that money takes over – and the bad decisions just spiral. And then the second thing that struck me, when I thought about the actual online behavior of money mules. Well, there are elements of the account take over problem we discussed in episode 2 – there's some of the Account Origination and identity theft issues we discussed in episode 3 – and the scams we explored in episode 4 are pretty thick here too. So as complex as the mules themselves are, so too will be connecting the dots through a continuum of online activity. What are the digital Tells of mules?Well, before we get to that, there's another important question we need to ask. Act 2You may recall meeting Raj Dasgupta in an earlier episode. He's director of fraud strategy at BioCatch. I asked Raj – Do Banks even care about mule accounts? And if so, why?Raj DasguptaThe banks do care and they're required to care because of regulation. So if there is money laundering activity going on within their account base, they're responsible for it because by law, they're required to look into suspicious activity and report that activity and take action. If they're not there, then inadvertently playing a role in money laundering and money laundering can be used to fund a variety of fraudulent activity, criminal activity, including terrorism. So there is a very strong responsibility on the part of the banks to make sure that money laundering is not happening within their account base. It's against the law. And if they are not following the law, there can be heavy penalties and fines levied on them. And then, of course, there's a reputational issue. If you are known to not pay attention to mule activity going on and it's all bringing you a lot of negative press, you wouldn't want that. But that's on the softer side and the hard side. If you've not followed the law, there will be real dollar value impact in terms of fines and fees.Peter BeardmoreSo there's regulation and reputation. And those are good reasons – reasons that have been around for a while. But as Julie Conroy explains – there are market dynamics at play that have accelerated the urgency for financial institutions to focus on mules. Here's Julie:Julie ConroyIt was something that we at Aite group had been seeing building even prior to 2020, as you have faster payments spreading across countries across the globe. And so, as we've seen faster payments hitting large markets like the US and Canada, even in 2019, we were seeing a greater emphasis on desire to invest in mule detection technology in those countries. Then you bring 2020 and add a massive global pandemic and the hundreds of billions worth of stimulus that were pumped into ecosystems around the world and the fraudsters quickly responded. And what we saw was as you were stealing hundreds of billions of dollars from things like unemployment claims from small business loan programs, you need a very robust new network to exit those funds from the system. And so we have a couple of bodies of research that just showed market increases in mule activity during the pandemic and carrying into 2021. And with that, you know, that only further emphasized the importance from a financial institution perspective to start building. More robust controls to detect this activity, both because many believe that there is a moral obligation to be stopping this financial crime.Peter BeardmoreThis stimulus fraud that Julie mentioned is a phenomenon that BioCatch has seen up close. It serves to reason that if you're going to massively defraud the government of program money from the U.S. Payment Protection Program or enhanced unemployment benefits – you'll need a place to send that money – a mule account. Back in June, as covid-related unemployment rates were slowly declining, the state of Virginia reported a 58% spike in unemployment applications in a single week! Not coincidently, BioCatch simultaneously saw a correlation in our data. There was a spike in high-risk applications for new deposit accounts originating from Virginia at the very same time. A spike in fraud – A spike in mule activity.You won't need to look too far to find news stories of stimulus fraud from the past year ~ and it's like that some of that accounting (or reconning) is only just beginning ~ so aside from the regulatory and reputational reasons for caring about mule activity that Raj cited – there's a wave of activity that has financial institutions searching for answers.Act3So what are they to do? What technologies are financial institutions relying on to detect and route out mule activity? Here's Julie Conroy again.Julie ConroyYou know, I've seen institutions just start with some simple rule deployment and looking for, you know, patterns of behavior that in the first 90 days and an account like we didn't see much activity, there were no direct deposits. And then all of a sudden on day 93, we see $10000 come in and ninety nine hundred dollars go out. Very just basic things like that. It's a good starting point. And then as you progress along that spectrum, there are great indicative behavioral solutions like BioCatch that can examine the behavior of the account and compare it to the way that normal people interact with the account. Also, seeing that, you know, typically it's not just a mule that is logging into their account. You also have a mule herder who is managing multiple mules, and they will also periodically be logging into the account to make sure that these mules are doing what they're supposed to be doing. So recognizing not only that second person periodically logging into the account, but then also bringing the intelligence that second person is logging into 20 other accounts at this institution, that type of behavioral analysis. Can be really powerful.Peter BeardmoreSo there's a lot there from Julie ~ but her key point here is yes, the rather binary rules financial institutions have traditionally used for monitoring account activity are a good place to start. But mules, while they may open and typically use their mule accounts on their own, those same accounts – are often controlled by complex and sophisticated organizations – either directly or indirectly. And those differences in behavior – may include some of the Digital Tells that behavioral biometrics can use to identify mule activity!And well, that's something BioCatch has been taking a hard look at – working with our customers and data scientists – and the good news is – there's something there.I recently spoke with JP Blaho, he's senior director of product marketing at BioCatch, and I tried to get him to spill the beans on any upcoming BioCatch announcement. Here's JP.JP BlahoSo, Peter, we've been talking about mule attacks and mule fraud for well over a year now. Due to the coronavirus we've seen a significant increase in this type of activity, and we've been working with some of our partner banks for this last year to identify where these are happening and how we can identify them using behavioral biometrics faster. And with these handful of financial institutions, we've refined the solution to a point that we are going to launch formally the general availability of of mule money or money mule detection solution in November. So we are already engaging with our customers around the solution, showing them how we can prevent this. But we'll do more of a formal announcement to new customers, net new opportunities and to the analyst community next month.Peter BeardmoreSo, JP ~ let's fast forward a bit. I want to zero in on what mule detection actually means for the bank and for the customer. What happens when those digital tells start to alert?JP BlahoYou know, in many of those instances, I think the bank identifies that account before the individual realizes that it's happening. And in many of those instances, the account gets frozen and until that consumer tries to perform a transaction, realizes that they don't have access to the account is when they have to coordinate and work with the bank to have that account reopened or have it moved into a new account. So there's a lot of pain associated with that too to the victim, you know, not just for the fact that they're part of a criminal transaction, but now they most likely have to move their account to a different within a new account number, et cetera. But also their money is frozen until they can prove that they're not part of the problem or they were not actively part of the problem. So that's a really good point.Peter BeardmoreBack to my point earlier about the topic of mules. This is a game of very few winners. But I think we have an obligation to apply the science of behavioral biometrics to help financial institutions identify mule accounts – to help them manage compliance and liability risk, to interrupt cybercriminal networks when possible - and help those who may have unwittingly found themselves in the middle of something really bad – to at least confront the truth. Digital Tells is written and narrated by me Peter Beardmore, in partnership with my producer Doug Stevens of Creative Audio and Music, and with the unwavering support and sponsorship of my employer, BioCatch.Special thanks to Julie Conroy, Raj Dasgupta, and JP Blaho. I mentioned those Mule Personas that BioCatch has identified earlier in the episode – you can find a link in the shownotes to take a closer look. For more information about this episode, behavioral biometrics, or to share a comment or idea, visit biocatch.com/podcast.Join us for episode 6, in which we'll take a look behind the scenes at biocatch – how the sausage gets made, so to speak, and some special insights on transforming fraud management to fuel digital business. Until then, take care.
In this episode we discuss why and how audit quality is improved when we keep things simple.Link: This episode's web page (riskinsights.com.au/the-assurance-show-51)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
This week, it's an honor to welcome QBE's Chief Risk Officer John Langione to The FourBlock Podcast. In conversation with co-host and FourBlock Founder Mike Abrams, John shares insights from his incredible career, beginning with his work in the public sector at the New Jersey Office of the Attorney General's Division of Criminal Justice through his transition to the private sector and the insurance industry, to his role today as the Chief Risk Officer for QBE's North American and Bermuda Operations. In this episode, John and Mike discuss some of the cultural changes that John had to navigate when making the switch from the public to the private sector and some of the similarities between that career transition and the military to civilian transition. They then dive into the insurance business, with John providing perspective on the industry, what people need to do to be successful in it, and some good places to start for veterans looking to break into the insurance industry. John also shares his advice for operating within a larger company and starting something new within it. To close out the episode, Mike asks John to talk about his role as executive sponsor for QBE's Valor Business Resource Group, which supports various veteran-related causes and helps to provide an organized means for employees to participate in a broad array of veteran's related supporting activities and events. John joined QBE in 2010 and was named Chief Risk Officer in 2012. In his role at QBE, John is responsible for overseeing that an effective risk management framework is in place to support all dimensions of QBE's operations including strategic and business planning processes. He is also one of the executive sponsors for QBE's Valor Business Resource Group, whose mission is to foster a respectful and inclusive environment that welcomes QBE's veteran and military-affiliated employees and provide opportunities for their support and networking. Previously, John served as Senior Vice President, Internal Audit. John has nearly 30 years of experience in insurance, finance and risk roles. Prior to joining QBE, John was the Deputy Comptroller, Financial Controls with AIG International and the Senior Vice President, Financial Controls at ACE Insurance. He has served as a partner in Ernst & Young's Advisory Services Group providing risk, controls and internal audit support for various financial services organizations. He also held positions with State Farm Insurance, Prudential Insurance and the New Jersey Office of the Attorney General, Division of Criminal Justice, where he led criminal investigations within the organized crime and racketeering bureau as well as the major frauds unit. John received his MBA in Professional Accounting from Rutgers Graduate School of Business. ABOUT US Welcome to the FourBlock Podcast, a show that examines veteran career transition and the military-civilian divide in the workplace. General Charles Krulak coined the term "Three Block War" to describe the nature of 21st-century military service defined by peace-keeping, humanitarian aid, and full combat. But what happens next? Veterans are often unprepared to return home and begin new careers. We call this the Fourth Block. FourBlock is a national non-profit that has supported thousands of transitioning service members across the nation in beginning new and meaningful careers. Mike Abrams (@fourblock) is an Afghanistan veteran, founder of FourBlock, and author of two military transition books. He represents the military transition perspective. Lindsey Pollak (@lindsaypollak) is a career and workplace expert and New York Times bestselling author of three career advice books. Lindsey represents the civilian perspective of this issue. Veterans, explore new industries and make the right connections. Find a career that fits your calling. Join us at fourblock.org/ Sponsor our program or host a class to equip more of our veterans at fourblock.org/donate. Follow FourBlock on Social Media LinkedIn Facebook Instagram Twitter Podcast episodes are produced and edited by the Columbia University Center for Veteran Transition and Integration.
This is the third in a series of episodes that focus on performance auditing.In this episode, we discuss the benefits of adopting a data focused approach during audit planning.Link: This episode's web page (riskinsights.com.au/the-assurance-show-50)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
This is the second of a series of episodes that focus on performance auditing.In this episode, we discuss the importance of balance in your work program - covering each of the four objectives:EffectivenessEfficiencyEconomyComplianceLink: This episode's web page (riskinsights.com.au/the-assurance-show-49)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
This is the first of a series of episodes that focus on performance auditing.In this episode, we discuss strategic audit planning (a.k.a. forward work planning).For internal auditors, this is similar to annual (or equivalent) audit planning.Understanding your community / public expectationsUnderstanding your elected body / parliamentariansUnderstanding the entities within your audit office's jurisdictionLink: This episode's web page (riskinsights.com.au/the-assurance-show-48)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
How can we use crowdsourcing to obtain human risk insights? We're all familiar with companies that have faced big issues in terms of misconduct. When there's a big scandal — whether that's banks engaging in bad behaviour or the diesel emissions cheating scandal in the motor industry - it's very easy to look back with hindsight and point to things that could have been spotted at the time. But wouldn't it be better for regulators, shareholders, customers and the companies themselves, if we could identify warning signs early on? That's the challenge that my guest on this episode Dr Ruidi Shang, set to address. She's an Associate Professor at Tilburg University in the Netherlands and a visiting scholar at Harvard Business School. Ruidi is the co-author of some new research entitled Tone At The Bottom: Measuring corporate misconduct from the text of employee reviews. What she and co-author Professor Dennis Campbell set out to identify was whether it would be possible to take information that is already available about companies, and determine from that which are more or less likely to have misconduct issues. To get hold of that information they turned to an unexpected source, Glassdoor.com — a website that allows employees and former employees to leave anonymous reviews about what it is like to work for a particular company. It's designed to help jobseekers understand the realities of working in a particular place before they decide to apply or join a company. On the face of if this might sound odd. What can a website designed to help job seekers, tells us about the risk of misconduct? As it happens quite a lot. Because in talking about their employee experience, people end up describing the corporate culture. Since culture is a driver of misconduct, this is potentially highly relevant. Look at enough of those reviews, and you can start to build a pattern of what goes on in the organisation, and so form a picture of potential issues. What's clever about this dataset is that it recognises that asking people about directly misconduct is a heavily loaded question. Respondents might choose not to answer truthfully, or they might not actually recognise the fact that a high-pressure environment — which they might actually enjoy working in — could be a driver of potential misconduct. So the best way to get a good picture is not to ask people about it at all. Rather its to crowdsource insights from lots of anecdotal accounts of what it is like to work within the organisation. It turns out that analysing the dataset on Glassdoor does have predictive capabilities. By backtesting the analysis with companies that had public scandals and exploring what was being said, before the scandals emerged, the researchers discovered that these reviews can provide advanced warning of potential misconduct issues. As we explore on the show.To find out more about Ruidi and her work: https://www.tilburguniversity.edu/staff/r-shangTo find out more about her co-author Professor Dennis Campbell: https://www.hbs.edu/faculty/Pages/profile.aspx?facId=10677To read Tone At The Bottom: Measuring corporate misconduct from the text of employee reviews: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3850554
In this episode we discuss three simple ways to improve the data cleansing process - easier, faster and higher quality.Find the optimal data source (e.g., don't use a poorly structured dataset)Cleanse iteratively - you may not need all of the fields/columnsImport iteratively - start with a subset of the data and build on that as neededLink: This episode's web page (riskinsights.com.au/the-assurance-show-47)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we discuss the use of risk/performance indicators.These can be used by audit teams, risk teams and integrity agencies.For audit teams, they are useful throughout the audit lifecycle - planning / risk assessment, fieldwork / conduct and reporting.We explore why they are useful, what to do and briefly how to get started.This page (riskinsights.com.au/the-assurance-show-46) contains an example of a dashboard that brings risk indicators together. Link: This episode's web page (riskinsights.com.au/the-assurance-show-46)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Christine (performance audit) and Xiaoyan (data analytics) are Directors with ANAO, the Australian National Audit Office.In this episode we discuss:What ANAO doesThe five ways ANAO uses data in its performance auditsHow performance audit teams work with the central data teamChallenges with data preparationThe benefits of a strong focus on data qualityLinks: The Australian National Audit Office (www.anao.gov.au)This episode's web page (riskinsights.com.au/the-assurance-show-45)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Tiina Landau is an internationally recognized sustainability expert and Certified European Financial Analyst (CEFA). She currently works as Sustainability Manager at Neste Corporation, embedding sustainability considerations into new business models and supply chains. She has extensive experience as a speaker in media and seminars and also writes a column in the Finnish financial newspaper Kauppalehti.In this episode, we discuss Tiina's book: Sustainable Investing - Beating the Market with ESG. We also explore how internal auditors can help their organizations navigate ESG risks and opportunities. Links: This episode's web page (riskinsights.com.au/the-assurance-show-44) Tiina's book: Sustainable Investing - Beating the Market with ESG (www.palgrave.com/gp/book/9783030714888)Tiina on LinkedIn (www.linkedin.com/in/tiinalandau/) About this show: The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Erica Toelle is a senior product marketing manager on the Microsoft compliance product team, with focus on information governance and records management. Erica is a long-time member of the SharePoint and Microsoft 365 community, a former Microsoft MVP, a published author, and a recognized expert in the information governance area. In this episode, we discuss Erica's book - Microsoft 365 Compliance: A Practical Guide to Managing Risk. Links: This episode's web page (riskinsights.com.au/the-assurance-show-43)Erica's book - Microsoft 365 Compliance: A Practical Guide to Managing Risk (https://www.apress.com/us/book/9781484257777)Erica on LinkedIn (https://www.linkedin.com/in/ericatoelle/) About this show: The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Michael DeCero is an Internal Audit Analytics Manager at TDS, a telecommunications company. In this episode, Michael explains how he helps his audit team use data. Links: This episode's web page (riskinsights.com.au/the-assurance-show-42)Towards Data Science (www.linkedin.com/company/towards-data-science) Michael on LinkedIn (www.linkedin.com/in/michael-decero-39b95b44/)About this show: The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Gary Booysen of RandSwiss takes a look at the latest market movements. Coreshares's Chris Rule talks their new Total World ETF. Anashrin Pillay of Risk Insights on the best and worst ESG sectors on the JSE.
Steve Rummel is a Senior Internal Audit Analytics Manager at CVS Health.In this episode, Steve explains how he helps his audit team use data.Link: This episode's web page (riskinsights.com.au/the-assurance-show-41)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Ari Levien is an experienced Chief Information Officer who has also played the role of Chief Risk Officer.In this episode we discuss how a CIO (with an understanding of risk) thinks about security and risk. We also discuss his views of Internal Audit and what good looks like for IA.Link: This episode's web page (riskinsights.com.au/the-assurance-show-40)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In using data for audits, quality assurance of our work is important.In this episode, we discuss: 1. The four main QA stepsTechnical QA Functional QA Business QA (validation) Audit QA 2. Why we need a QA PlanLink: This episode's web page (riskinsights.com.au/the-assurance-show-39)About this podcastThe podcast for performance auditors and internal auditors focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode, we discuss FIVE major benefits of investing our time in preparing our data and checking its quality.These include, in reverse order of importance:1. Exploration during data prep to understand the data2. Ensure the data is in the right format for analysis3. Save time by avoiding incorrect conclusions4. Confidence in the analysis and result5. Identify important data related improvement opportunitiesLink: This episode's web page (riskinsights.com.au/the-assurance-show-38)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Morag (Senior Manager) and Gemma (Director) are Performance Auditors with Audit Scotland.In this episode we discuss how they are using data in their audits, their experience in developing Audit Scotland's data capabilities, collaboration with other audit offices and what the future roadmap looks like. We also discuss their focus on ensuring their reports meet their audience's needs, and how data visualisations and charts are being used to communicate key messages.Link: This episode's web page (riskinsights.com.au/the-assurance-show-37)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode, we discuss why it is important to focus on our audit objective when using data analysis in our audit.We explore:Why a focus on the objective helps us measure successWhy we should avoid rules based analysisHow a focus on the objective helps us stay true to our audit mandateCost benefit analysis when we find things that are not related to the auditWhy a focus on the objective helps us in reporting on data quality or missing dataLink: This episode's web page (riskinsights.com.au/the-assurance-show-36)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Stephen leads the data science team within Performance Audit at VAGO, the Victorian Auditor General's Office. We discuss:What VAGO doesStephen's approach to helping auditors use dataWhy it's important for all performance auditors to have data skillsHow VAGO has used open data to improve transparencyYou can reach out to Stephen via LinkedIn (www.linkedin.com/in/smcateer).LinksVAGO Audit Report – Measuring and reporting on service delivery with interactive dashboard for exploring Victorian department performance (www.audit.vic.gov.au/report/measuring-and-reporting-service-delivery)VAGO Audit Report – Accessibility of Tram Services with interactive map on the accessibility of Melbourne's tram network (www.audit.vic.gov.au/report/accessibility-tram-services)VAGO Audit Report – Council Libraries which uses Data Envelopment Analysis (DEA) to evaluate efficiency (www.audit.vic.gov.au/report/council-libraries)This episode's web page (riskinsights.com.au/the-assurance-show-35) About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Taka is the inaugural Chief Data Scientist at the US Government Accountability Office. He also leads the GAO's Innovation Lab. We discuss:What the GAO doesHow data science is helping GAOInnovation and experimentation at GAOMachine learning assuranceYou can reach out to Taka via the GAO website.LinksThis episode's web page (riskinsights.com.au/the-assurance-show-34)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode, we discuss 10 of the more common areas of focus in using data for audits.Get over the fear of using dataFocus on the objective and develop the hypothesesCheck for previous work, to avoid duplicationSource the data – internal and openPrepare the data and check qualityPerform the analysis, prove/disprove the hypothesesConduct QA and business validationReport and visualizeShare for potential reuse (audit team, management, other agencies)Lessons learnt: governance, quality of data, timing, process, etc.Link: This episode's web page (riskinsights.com.au/the-assurance-show-33)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Note: This is a guest interview.Alli is an information design consultant and host of the Data Viz Today podcast.We talk about a range of data visualization matters, including 3 key mistakes that people make when starting out in dataviz (and solutions to those). You can reach out to Alli via her website (www.allitorban.com).LinksFinancial Times Visual Vocabulary (github.com/ft-interactive/chart-doctor/tree/master/visual-vocabulary)Stephanie Evergreen's What, So What, Now What (stephanieevergreen.com/what-so-what-now-what)Template for all those charts done in excel (policyviz.com/product/visual-vocabulary-in-excel)Alli's brainstorming worksheet for developing visual metaphorsAlli's brainstorming template for focusing the story in your data vizAlli's Tessellated Unit Chart for Viz for Social GoodViz for Social Good (www.vizforsocialgood.com)Reuter's "Drowning in Plastic"This episode's web page with transcript (riskinsights.com.au/the-assurance-show-32)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we wrap up, talking about:a few things we've learned this yearfeedback - what people found valuablefeedback - what people want to hear more aboutsome of the tech/software used to produce this podcastLinks This episode's web page with transcript (riskinsights.com.au/the-assurance-show-31)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Note: This is a guest interview.John talks to us about what audit offices (a.k.a. supreme audit institutions) do and the role of the CTO in an audit focused organization.He shares his views on a range of issues including: His positive experience with their (outsourced) internal auditorsHow he supports an audit focused organizationCyber and data governance frameworks; evolving IT practices that auditors need to keep a close eye on.John is open to connecting with like-minded professionals.You can reach out to him on LinkedIn.LinksJohn Moore on LinkedIn (www.linkedin.com/in/john-moore-01986a7a)Where John works (Queensland Audit Office) (www.qao.qld.gov.au)Where John studied (Loughborough University) (www.lboro.ac.uk)The Essential Eight (strategies to mitigate cyber security incidents) (www.cyber.gov.au/acsc/view-all-content/essential-eight/essential-eight-explained)ISO27001 (www.iso.org/isoiec-27001-information-security.html)Microsoft password policy recommendations (docs.microsoft.com/en-us/microsoft-365/admin/misc/password-policy-recommendations)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-30)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Note: This is a guest interview.Andrew talks to us about machine learning (ML) and what auditors should consider regarding ML assurance. You can reach out to Andrew via the Monitaur website.LinksMonitaur (monitaur.ai)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-29)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Note: This is a guest interview.David talks to us about IAC's latest report, the Talent Barometer and the upcoming Diversity report. He shares his views on a range of issues including: Data skill gapsLeadership skill gapsWhy culture is importantDavid is open to connecting with Internal Auditors.You can reach out to him on LinkedIn.LinksDavid Haylor on LinkedIn (www.linkedin.com/in/internalaudit)The IAC Talent Barometer (iac-auditsearch.com/the-iac-talent-barometer)Where David became an army officer (Royal Military Academy at Sandhurst)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-28)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we discuss how answering a few simple questions about your audience can improve your audit reporting.These help make several report areas better:Scope and titleContextFindings / Improvement oppsLink: This episode's web page with transcript (riskinsights.com.au/the-assurance-show-27)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Note: This is a guest interview.Carlos talks to us about what auditors should consider regarding cyber security and information security. He shares his views on a range of issues including: Cyber securityHow cyber security and information security differWhat auditors should focus on in planning and conducting cyber audits Carlos is open to connecting with like-minded professionals.You can reach out to him on LinkedIn.LinksCarlos Phoenix on LinkedIn (www.linkedin.com/in/carlos-phoenix)O.MG cables (mg.lol/blog/omg-cable)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-26)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we learn a bit about Yusuf, one of the co-hosts of the show.He explains what he considers to be the highlights of his career.Link: This episode's web page with transcript (riskinsights.com.au/the-assurance-show-25)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we discuss why discovery exercises are becoming very useful for audits.They help de-risk the conduct of audits, and the three main scenarios we use them for: Audit topic validation and overall audit planningScoping, depth and deliverablePlanning individual auditsLink: This episode's web page with transcript (riskinsights.com.au/the-assurance-show-24)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we explore Principle 3 - Maximize the Benefits of the use of data within Internal Audit and Performance Audit.Sub-principles3a: Sharing lessons amongst the team. 3b: Identifying other risks and opportunities. 3c: Continuous improvement. Links The blog article where this principle was originally outlined (riskinsights.com.au/blog/audit-data-governance-5)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-23)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
Note: This is a guest interview.Josam Watson is the CRO of Tyme, a digital banking group that owns one of the world's fastest growing digital banks. He was previously Chief Audit Executive of a large credit union. Before that, he spent time in internal audit, risk consulting, external audit and in banking operations.Josam talks to us about what he has learned working in various international markets. He shares his views on a range of issues including: internal audit independence (spoiler: he thinks it is overplayed)how internal audit and risk functions have the same focusexerting influence in a positive way over organisational cultureInternal audit creating value – by focusing on both performance and conformancewhy every auditor should have a data mindset, to find and solve business problems. Josam enjoys networking with risk and assurance professionals. You can reach out to him on LinkedIn.LinksJosam Watson on LinkedIn (www.linkedin.com/in/josam-watson-7a35024)Tyme, a digital banking group that owns one of the world's fastest growing digital banksThis episode's web page with transcript (riskinsights.com.au/the-assurance-show-22)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we discuss four (4) approaches to using data for internal audits and performance audits.Reporting onlyProcess focusedHypothesis-basedExploratory (a.k.a. data driven or data led)LinksRelated blog article (riskinsights.com.au/blog/4-audit-data-approaches)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-21)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we discuss six (6) sets of words and phrases that are commonly misused.Using data vs analyticsAlgorithm vs modelData owner vs data "custodian"AI vs machine learningOpen source vs open dataBig data vs big dataLink: This episode's web page with transcript (riskinsights.com.au/the-assurance-show-20)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we learn a bit about Conor, one of the co-hosts of the show. He explains what inspires him to promote the use of data for integrity and assurance.Link: This episode's web page with transcript (riskinsights.com.au/the-assurance-show-19)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we explain why auditors are looking for alternatives to traditional audit management software and audit analytics software.Link: This episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss a few key matters that auditors need to know relating to the use of AI and auditing AI.3 key objectives: Bias and ethics. Providing sound decision making support. Maximizing the opportunities. 3 key considerations:Model accuracy.The quality of data. Deploying, controlling, security and change.Link: This episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we explore five ideas for working with small datasets as part of internal audits or performance audits.Extend the timeframeCombine with proprietary dataCombine with open dataScenario analysisNatural language processing (free text)LinksEpisode 13 - Open Data for internal audit and performance auditThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss how using data enables audit efficiency outcomes.That is, if we think outside of the audit bubble and consider the broader organizational context (in the case of internal audit) or broader public sector context (in the case of performance audit), then using data for our audits can help improve efficiency. LinksThe blog article where this was originally detailedThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss:3 perspectives that auditors should consider regarding data governance, and 3 considerations for auditors in implementing data governance within their functions/teams.LinksControlling access to data within the audit team – open or closed?This episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss the use of Open Data for internal audit and performance audit.Links The Open Data HandbookGoogle dataset searchThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss the use of open source software for internal audit and performance audit.We bust 3 common open source myths:Security - that open source is less secureSkills - that open source software has smaller talent poolsQuality - that open source has lower quality.Links Blog: 3 open source myths that might be inhibiting your team's progressThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss the evaluation of customer feedback/complaints and the use of customer feedback data, within internal audit and performance audit.This includes:Auditing the customer feedback processUsing the customer feedback content (data/information)Using customer feedback data for deeper, more effective, audit analytics.Links Blog: why are auditors increasingly using complaints and customer feedback data?This episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
This is part 6 of a 6-part series.In the first episode, we discussed the 5 most commonly cited data in audit challenges. In this episode, we discuss solutions to the 5th challenge - reporting (and timing).The five items are:Access to data - you can't get all the data, or you can't get it quickly enough.Low value - the analysis doesn't provide new insights.False positives - too many of them; results are overwhelmingly noisy, distracting your focus.Superficiality - the results are not deep enough to properly understand and refine the problems or to provide opportunities for improvement.Reporting - the results are not available in time for reporting, the report is not tailored to the audience.Links Blog article - 5 challenges to tackle - data in auditBlog article - Principle 3: Maximize benefitsThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
This is part 5 of a 6-part series.In the first episode, we discussed the 5 most commonly cited data in audit challenges. In this episode, we discuss solutions to the 4th challenge - superficiality.The five items are:Access to data - you can't get all the data, or you can't get it quickly enough.Low value - the analysis doesn't provide new insights.False positives - too many of them; results are overwhelmingly noisy, distracting your focus.Superficiality - the results are not deep enough to properly understand and refine the problems or to provide opportunities for improvement.Reporting - the results are not available in time for reporting, the report is not tailored to the audience.Links Blog article - 5 challenges to tackle - data in auditBlog article - Principle 3: Maximize benefitsThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
This is part 4 of a 6-part series.In the first episode, we discussed the 5 most commonly cited data in audit challenges. In this episode, we discuss solutions to the 3rd challenge - false positives.The five items are:Access to data - you can't get all the data, or you can't get it quickly enough.Low value - the analysis doesn't provide new insights.False positives - too many of them; results are overwhelmingly noisy, distracting your focus.Superficiality - the results are not deep enough to properly understand and refine the problems or to provide opportunities for improvement.Reporting - the results are not available in time for reporting, the report is not tailored to the audience.Links Blog article - 5 challenges to tackle - data in auditBlog article - Principle 3: Maximize benefitsThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
This is part 3 of a 6-part series.In the first episode, we discussed the 5 most commonly cited data in audit challenges. In this episode, we discuss solutions to the 2nd challenge - low value.The five items are:Access to data - you can't get all the data, or you can't get it quickly enough.Low value - the analysis doesn't provide new insights.False positives - too many of them; results are overwhelmingly noisy, distracting your focus.Superficiality - the results are not deep enough to properly understand and refine the problems or to provide opportunities for improvement.Reporting - the results are not available in time for reporting, the report is not tailored to the audience.Links Blog article - 5 challenges to tackle - data in auditBlog article - Principle 3: Maximize benefitsThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
This is part 2 of a 6-part series.In the first episode, we discussed the 5 most commonly cited data in audit challenges. In this episode, we discuss solutions to the 1st challenge - access to data.The five items are:Access to data - you can't get all the data, or you can't get it quickly enough.Low value - the analysis doesn't provide new insights.False positives - too many of them; results are overwhelmingly noisy, distracting your focus.Superficiality - the results are not deep enough to properly understand and refine the problems or to provide opportunities for improvement.Reporting - the results are not available in time for reporting, the report is not tailored to the audience.Links Blog article - 5 challenges to tackle - data in auditBlog article - Principle 3: Maximize benefitsThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss five key challenges that assurance professionals - internal auditors and performance auditors - face in using data for audits.This is part 1 - outlining the challenges. In parts 2 to 6, we will discuss solutions to each challenge individually.The five items are:Access to data - you can't get all the data, or you can't get it quickly enough.Low value - the analysis doesn't provide new insights.False positives - too many of them; results are overwhelmingly noisy, distracting your focus.Superficiality - the results are not deep enough to properly understand and refine the problems or to provide opportunities for improvement.Reporting - the results are not available in time for reporting, the report is not tailored to the audience.Links Blog article - 5 challenges to tackle - data in auditBlog article - Principle 3: Maximize benefitsThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we discuss going beyond the audit report. That is, the audit report is not necessarily the end point or final deliverable. There are a few things that we can do to go beyond that and increase the value that we provide. This includes:Remedial actions - going beyond the initial remedial action (related blog article here). Using the report for maximum impact. Following up on reported items. Links Blog article - going beyond the initial remedial actionThe Plain English CampaignThis episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk. Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we explore Open Access to data used within Internal Audit and Performance Audit teams, with focus on 8 exceptions that may necessitate a level of restriction. In general, access should be as open as possible, as explained in the previous episode. But there are 8 specific exceptions to consider, carefully: Cross-border concerns. Strict organizational data governance regimes. Highly sensitive data. The need to maintain Chinese walls. Very large audit teams. Where specific data is sensitive. If there is risk that data will be altered. Vulnerability - heightened security/cyber risk. Links The blog article where this was originally outlined This episode's web page (with full transcript)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we explore why restricting access to data is less efficient and less effective than we intend it to be. That is, such “controls” create risk. Links: The article about why more access to data can reduce risk This episode's web page (with full transcript)About this podcast: The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights.
In this episode we explore Principle 2 - Quality - for the use of data within Internal Audit and Performance Audit. Sub-principles 2a: Understand the audience and meet their needs. 2b: Focus on the audit objective. 2c: Ensure quality (a.k.a. quality assurance). Links The blog article where this principle was originally outlined (riskinsights.com.au/blog/audit-data-governance-4)This episode's web page with transcript (riskinsights.com.au/the-assurance-show-1)About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).
In this episode we introduce the show: - who it is for - what we discuss - the format / structure - release schedule - how listeners can get involvedThis episode was recorded in October 2020, eight months after the first episode was released, then backdated to reflect as the first episode of the show. We explain why we did this at the beginning of the episode.Links This episode's web page with transcript (riskinsights.com.au/the-assurance-show-0)The contact form that we mentioned - for your feedback, ideas, questions, etc (riskinsights.com.au/contact).About this podcast The podcast for performance auditors and internal auditors that focuses on data & risk.Hosted by Conor McGarrity and Yusuf Moolla. Produced by Risk Insights (riskinsights.com.au).