Risk Management

We lead the Enterprise Risk Management (ERM) Program and GAO/OIG Audit Liaison functions for the Department.  

Enterprise Risk Management (ERM)

Manages the Department's Enterprise Risk Management (ERM) Program, including:

• Developing integrated and consistent policies and procedures for assessing and managing risks.
• Advising Department leadership and bureau management on risks associated with programs and activities, and serving as a resource for information on best practices in risk management.
• Sharing responsibility with the Office of the Chief Information Officer for managing risk associated with information technology systems, functions, and activities.

Inspector General (IG) and U.S. Government Accountability Office (GAO) Audit Follow-up

Responsible for:

• Serving as the Department's main point of contact for GAO and OIG engagements and, under the direction of the CFO/ASA, establishing policies and procedures for GAO and OIG audit liaison and follow-up activities throughout the Department.
• Coordinating with other Departmental offices and bureauson the performance, resolution and disposition of audits and reviews conducted by the OIG and GAO.

Internal Control Management (Non-Financial)

Responsible for coordinating the Department's operational, strategic and programmatic control activities under the Federal Manager's Financial Integrity Act (FMFIA). This work is done in conjunction with the Department's Office of Financial Management which is responsible for financial internal control requirements.

Office of Risk Management
Office of the Secretary, Office of the CFO/ASA
U.S. Department of Commerce
1401 Constitution Ave., N.W.
Washington, DC 20230

Office of Acquisition Management
Office of the Chief Financial Officer and Assistant Secretary for Administration
Office of the Secretary
U.S. Department of Commerce

Send questions and comments about this page to OAMWebmaster@doc.gov

This page was updated on November 21, 2019