Blog: New IIA Three Lines Model Offers Timely Evolution of a Trusted Tool

In his blog, IIA President and CEO Richard Chambers, CIA, QIAL, CGAP, CCSA, CRMA, shares his personal reflections and insights on the internal audit profession. Here’s an excerpt from his latest post:

Today, The IIA unveils an important update to one of the best known and trusted risk management tools. The new IIA Three Lines Model, a fresh look at the venerable Three Lines of Defense model, promises to change the way many organizations look not just at risk, but also at controls, collaboration, communication, accountability, assurance, and more.

I posted a blog more than a year ago announcing The IIA’s plans to explore how best to update the Three Lines of Defense. The intent was to reflect changes in modern risk management and governance, while at the same time preserving the model’s straightforward and clear approach. I am happy to say that, after hundreds of hours of work and input from experts, as well as comments from interested parties around the world, the effort has paid off. 

The project included a comprehensive review of governance approaches from around the world and an analysis of how the old model was embedded into practice and regulation. The project also sought out and incorporated public comments through a formal global exposure process.

Read the full InternalAuditor.org blog post from IIA President and CEO Richard Chambers.