This presentation discusses: design as the invisible half of risk management; cultural differences between audit and IT people; managing pressure to comply and pressure to buy; directing the design of control systems; and how to cultivate and use skill in designing controls.
