What is the review and revision component of the COSO ERM framework?
Review and revision is one of the key components of the COSO ERM framework. By reviewing entity performance, an organization can consider how well the enterprise risk management components are functioning over time and in light of substantial changes, and what revisions are needed. The organization reviews and revises its current ERM capabilities and practices based on changes in strategy and business objectives. The 3 principles that relate to review and revision consist of:
Assesses Substantial Change—The organization identifies and assesses changes that may substantially affect strategy and business objectives.
Reviews Risk and Performance—The organization reviews entity performance and considers risk.
Pursues Improvement in Enterprise Risk Management—The organization pursues improvement of enterprise risk management.
Back To All Questions