Results for Search Submit Filter by: Advanced Filter All results Solutions Industry Typelist People Client Story Insights/Blogs Filter Search Sort by RelevanceDate Order AscDesc Blog January 11, 2017 IT Innovation: Does Your IT Budget Have Room for It? One of the budget struggles chief information officers are continually faced with is reducing operating costs to make room for innovation. And while several studies, including our own, show that they have succeeded in bringing down “lights on” expenditures over the past decade or so, in many cases those savings have been absorbed by urgent non-strategic needs, such as compliance and security, too… Blog January 17, 2017 Managing Your Organization’s Culture During Rapid Growth Early in December 2016, I had the pleasure of leading an in-depth webinar exploring how fast-growing companies can prepare for challenges related to changes in their culture and talent requirements, particularly when ramping up for an IPO or following one. I was joined by Carmela Krantz, Vice President of Human Resource at WideOrbit; Danielle Soucek, Director of Insight Product at Equilar; and… Blog January 20, 2017 Considerations for SOC 2 Readiness As more organizations trade in-house IT applications, systems and related processes for third-party services to enhance capabilities, simplify operations and lower costs, it is critical to demonstrate that data and systems are well-controlled, regardless of where the data resides. While the COSO Internal Control – Integrated Framework clearly states that management is responsible for the design… Blog January 24, 2017 IT Innovation, Part 2: Maximizing the Value of Security Investments As my colleague Ed Page indicated in his January 11 post, digital transformation represents one of the biggest innovation opportunities of the 21st century, and failure to respond quickly to innovation opportunities is one of the biggest risks faced by any business today. A recent Protiviti white paper, Catching the Digital Wave of Change, points out that no industry is isolated from the… Blog January 26, 2017 Bank Charters for Fintech Companies Top January Compliance News In December 2016, the Office of the Comptroller of the Currency (OCC), which oversees many of the largest banks in the country, released its plans to consider granting special-purpose national bank charters to a broad range of financial technology (fintech) companies, who are engaged in providing technology-driven financial products and services to consumers and small businesses. The idea is not… Blog January 26, 2017 2016 Vendor Risk Management Benchmark Study Results Released Protiviti and the Shared Assessments Program recently released the results of our jointly conducted 2016 Vendor Risk Management Benchmark Study. This is the third year that Shared Assessments and Protiviti have partnered on this research, which is based on the comprehensive Vendor Risk Management Maturity Model (VRMMM) developed by the Shared Assessments Program. At right, you'll find… Blog January 30, 2017 Regulatory Hot Topics in Financial Services for 2017 Regulatory compliance is always top of mind in the financial services industry, and all the more so this year, with the sweeping, and sometimes conflicting, changes that many expect on the American political landscape. So it wasn’t surprising that our annual regulatory recap webinar for members of The IIA’s Financial Services Audit Center, conducted at the end of last year, drew a large and… Blog February 1, 2017 Will Hiring Hackers Help Energy's Cybersecurity Efforts? The chief cybersecurity engineer for a major industrial process company advocated not long ago that oil and gas companies hire hackers to improve their cybersecurity defenses. At an annual European-Middle East-Africa user group conference in The Hague last October, Eric Knapp urged attendees to drop their negative perceptions and put hackers to work on their teams. Knapp’s advice followed a… Blog February 2, 2017 Public Breach Disclosure Laws Up the Ante on Security – But Do They Work as Intended? On January 3, The Massachusetts Office of Consumer Affairs and Business Regulation announced that it will report all data breaches to a publicly accessible state website. Previously, this information could only be obtained with a public record request. The new site includes summary information of the breach and is organized by year. The breached organization's name, the magnitude of the … Blog February 2, 2017 Taking a Global Look at IT Audit Best Practices - ISACA/Protiviti Survey Protiviti and ISACA, a global business technology professional association for IT audit/assurance, governance, risk and information security professionals, have released the results of our joint annual IT Audit Benchmarking Survey. Key takeaways from this year's study include the following: Cybersecurity is viewed as the top technology challenge. There appears to be more executive-level… Load More
