Answer:
"We strongly recommend including these three functions in your risk management committee. One significant reason is to secure their support in situations such as internal fraud cases. It becomes particularly important when the identity of the embezzler is unknown. We've observed instances of internal fraud cases where these three departments have clashed over the responsibility for conducting investigations."
Learn more about Barry Thompson's The 15 Worst Security Mistakes webinar.