This site uses cookies to provide you with a more responsive and personalized service. By using this site you agree to our use of cookies. Please read our cookie notice for more information on the cookies we use and how to delete or block them.

Bookmark Email Print page

Reporting on the effectiveness of risk management and internal control

How do I make a well-founded report on the effectiveness of my risk management system and internal controls in my annual report?

A well-founded conclusion on the effectiveness of your risk management and internal controls begins with a systematic approach. In practice several risk and control frameworks are already available. The best known is the COSO framework.

Important elements for the implementation of such a framework are:

  • Risk awareness
  • A common language
  • A uniform system for the execution of risk and management analysis
  • Uniform reporting
  • An explicit assignment of tasks and responsibilities for risk and control
  • Clear lines for the accountability for risks and the related management

Submit a request for proposal


Tel: +31 (0)88 288 28 88

Deloitte RSS feed  Deloitte YouTube  Deloitte Google+  Deloitte Facebook  Deloitte LinkedIn  Deloitte Twitter 

© 2014. See legal for more information.

Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see for a more detailed description of DTTL and its member firms.

In The Netherlands the services are provided by independent subsidiaries or affiliates of Deloitte Holding B.V., an entity which is registered with the trade register in The Netherlands under number 40346342.