The Original COSO Framework

Name:
Internal Control - An Integrated Framework (established 1992)

Emphasis:
Establishes a framework for internal controls.
Has three objectives:
1) accuracy of financial reporting
2) compliance with laws and regulations
3) effective and efficient operations.


Control Components:
                      see also The COSO Cube

The original COSO framework contains five control components needed to help assure sound business objectives. The control components are:
Resources:
        
 The COSO-ERM Framework

Name:
Enterprise Risk Management (ERM) COSO Framework (established 2004)

Emphasis:
Builds on original COSO framework, while emphasizing the importance ofentifying and managing risks across the enterprise.

COSO-ERM Components
           see also The New Coso Cube


The new Enterprise Risk Management (ERM) COSO framework consists of eight components:
The three new components of the COSO framework are Objective setting, Evententification, and Risk response.

Resources:
 COSO and COSO-ERM
             see also Where COSO Gets Its Name


COSO is an internal controls framework focusing on fiscal responsibility. COSO-ERM builds on COSO, with a focus on Enterprise Risk Management. Below is a comparison of the two frameworks.

Copyright 2004-2008 The Data Governance Institute, LLC. All Rights Reserved
The site is brought to you in partnership with the Business Intelligence Network

DGI Header
GwenThomas
Data Governance.com
DataGovernance.com is an affiliate of BeyeNETWORK
Home

Other Governance and Architecture Frameworks

- CMM  and
  CMMI

- COBIT

- COSO and
  COSO-ERM

- IT Governance

- ITIL

- IT Portfolio   Management

- OMG's Model
  Driven Architecture

- Prince2

- RUP

- Six Sigma

- TOGAF

- UML

- US FEA DRM

- Zachman Framework

The DGI Data Governance Framework

Sitemap