Risks in 2022

2020-03-02

If risks were considered a key part for internal auditors, in 2022 risks are a must. Audits should be risk-based and agile, responding to emerging risks. For this year, top risks include:

Risks in 2022

  1. Cybersecurity and data privacy: we are moving to a digital era and by doing it, this risk increases. The reason: information and data have more value than gold. The challenge: to minimize it since the criminals are evolving and increasing sophistication to attack their targets. Cybersecurity in any company should include protection against attacks and data leakage. Key controls: intrusion tests done by experts, update the software on a regular basis, block bogus emails and train people to recognize phishing attacks.
  2. Third parties: the risk starts when that third party works with other sub-contractors. Usually, the company has no contract or contact with the sub-contractor and mainly relies on what the third party has done as due diligence. The reality: anything that happens with sub-contractors can affect the company; such as hiring minors, exploiting people, deplorable workplace conditions. Key controls: review any outsourcing arrangements with a risk-based approach, include in the contract the right to audit third parties and sub-contractors, and at least once a year, carry out surprise audits. Key point: That the company understands the extent to which it is exposed to third parties.
  3. Brand value and reputation: corruption, fraud, cyber-attacks can have a lasting impact on a company’s reputation and the value of its brand. Reputational risk is like an earthquake: we can know where the epicenter was, but we can’t know for sure how far its consequences are. Even a poorly managed comment on social media can harm the brand. Key controls: complying with regulations, effective audits, training and addressing issues properly so they won’t be repeated again.


What to know more about risks in 2022 and how you can be seen as a trusted internal advisor? Join us at the Advanced Enterprise Risk Management MasterClass which will be streamed ONLINE on the 29th and 30th of November, 2021.

 

Monica Ramirez Chimal

By Mónica Ramírez Chimal - International Speaker & Trainer, Writer, Consultant-Partner at Asserto RSC

Linkedin Logo twitter logo

 





Get a feel for our events

Signal and Risk Management in Pharmacovigilance MasterClass

Signal and Risk Management in Pharmacovigilance MasterClass

09 & 10 December, 2021

The focus of this two days online MasterClass will be on providing an update of ongoing activities regarding medicines’ risk and signal management.

The EU Clinical Trial Regulation MasterClass

The EU Clinical Trial Regulation MasterClass

16 & 17 December, 2021

This Online MasterClass will provide an essential understanding to help with compliance with the new EU Clinical Trial Regulation (536/2014) and associated implementing acts for carrying out clinical trials in the EU.

Vendor/CRO Management and Oversight MasterClass

Vendor/CRO Management and Oversight MasterClass

12 & 13 January, 2022

On this MasterClass Training you will learn how to prepare a request for proposal (RFP), evaluate and select the right CRO and establish procedures for vendor oversight for projects you need to outsource.

check all pharma events