Book excerpt: Risk management is a part of mainstream corporate life that touches all aspects of every type of organization. Auditors must focus firmly on risk: risk to the business, the executives, and the stakeholders. Auditing the Risk Management Process incorporates all the latest developments in risk management as it applies to auditors, including the new Committee of Sponsoring Organizations of the Treadway Commission (COSO) enterprise risk paper. Auditing the Risk Management Process includes original risk maps and process models developed by the author, explaining where and how topics fit within an overall audit framework, all the latest developments in risk management as it applies to auditors, and insight into how enterprise risk management affects the responsibilities of both internal and external auditors.