- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Kyle Brasseur2020-07-20T18:30:00
The Institute of Internal Auditors (IIA) on Monday announced an update to its widely utilized “Three Lines of Defense” model to focus more on defined roles in an effort to boost collaboration.
The new “Three Lines Model,” as it is now referred to by the IIA, “acknowledge[es] that risk-based decision-making is as much about seizing opportunities as it is about defensive moves,” the organization stated in a press release. “The new Three Lines Model helps organizations better identify and structure interactions and responsibilities of key players toward achieving more effective alignment, collaboration, accountability and, ultimately, objectives.”
The original Three Lines of Defense model consisted of the first line (risk owners/managers), the second line (risk control and compliance), and the third line (risk assurance). Each line reported up to senior management, with the third line of internal audit representing the last wall before external audit and regulators.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Register for free
Receive the CW newsletter and access CPE webcasts.
In the wake of drastic updates to the “Three Lines Model” for managing risk, IIA President and CEO Richard Chambers catches up with Compliance Week to discuss the changes, how COVID-19 has impacted the internal audit profession, and more.
The biggest improvement in the IIA’s new “Three Lines Model” of risk management is it allows for greater flexibility between “lines” and is less likely to be interpreted so literally.
The Institute of Internal Auditors announced longtime President and Chief Executive Officer Richard Chambers plans to step down at the end of March.
A lack of risk visibility is causing companies to reject customers–and potentially lose money–over fears they might be in danger of violating rules around anti-money laundering and sanctions regulations.
The Treasury Department’s Financial Crimes Enforcement Network updated an alert first issued in February warning financial institutions of Israeli extremists fomenting violence in the West Bank.
A Bank of England report warned of private equity risk management deficiencies as interest rates remain stagnant, with international coordination important.
