IIA standards need to be updated so audit providing assurance on enterprise-level risks, not what matters to middle management alone.

Continue reading...