Internal auditors are shedding their number -crunching shells and taking wing as corporate-wide risk experts, recent trends seem to show. Building on their Sarbanes-Oxley (SOX) expertise in perfecting financial controls, auditors should--and many are beginning to--play critical roles in assessing enterprise-wide business and operational threats, according to a recent PricewaterhouseCoopers report. With SOX demands decreasing, notes Jim LaTorre, PWC internal audit services leader, "manpower is being freed up to tackle all risk issues that impact shareholder value."
That's presuming the environment is receptive, notes Michelle Scott, director of research and analysis at the Institute of Internal Auditors (IIA). "Our members are equipped and eager to contribute to risk assessment in all areas," she says. "It's more a question of whether management is open to the expanded role. You can tell executives all day about risks and what they should do about them, but it means nothing if those warnings are not heeded."