Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Blogs April 6, 2023 3 Steps to Understanding IAM Challenges in Securing the DevSecOps Ecosystem DevSecOps is an organisational software engineering culture and practice that aims at unifying software development (Dev), application security (Sec), and operations (Ops). The main characteristic of DevSecOps is to monitor and apply security at all phases of the software lifecycle: Planning, development, integration, delivery, deployment and production. Looking at DevSecOps through an IT… Blogs May 19, 2023 ChatGPT disruption: AI’s evolving vision renews need for trusted, governed data Access to artificial intelligence (AI) and the drive for adoption by organisations is more prevalent now than it’s ever been, yet many companies are struggling with how to manage data and the overall process. As companies open this “pandora’s box” of new capabilities, they must be prepared to manage data inputs and outputs in secure ways or risk allowing their private data to be consumed in… Blogs March 2, 2020 Blog: Risk Realities and Enterprise Risk Management in 2020 By Jim DeLoach, Managing Director, Protiviti Uncertainty and opportunity are two familiar bywords of the digital age. An ever-changing and disruptive marketplace provides an abundance of opportunities, but it also creates proliferating risks which can upend any organization whether it chooses to pursue those opportunities or not. And that is what’s especially fascinating about the digital age:… Whitepaper April 17, 2024 Internal Audit’s Role in Supporting Sustainability Reporting Environmental, social and governance (ESG) guidance, stakeholder demands and regulatory mandates are evolving and becoming more specific, and the time of taking a “soft approach” to sustainability reporting has passed. As the need to provide, or prepare to provide, limited and/or reasonable assurance in sustainability reporting grows, internal audit’s role in the reporting process becomes obvious… Blogs May 17, 2024 Inclusive culture starts with contract language Anyone who wins business via competitive bid may have noticed that requests for proposals (RFPs) increasingly feature instructions to adopt inclusive language in responses. Over the past several years, more and more potential customers are seeking cybersecurity partners whose values in the areas of diversity, equity and inclusion (DEI) correspond with their own. Sometimes, enterprises will… Newsletter June 12, 2024 21st-Century Board Oversight of Talent Acute talent shortages across numerous industries underscore the risks emanating from outdated, reactionary approaches to managing people, succession and culture. The question arises, what is the board’s role in forging a 21st-century approach to managing talent?Changing times have led to fleeting employee loyalty, as talented individuals have more options than ever before with greater… Podcast June 7, 2024 Podcast | Strategic Sourcing: Gaining Advantage, Mitigating Risk – with Lucas Manganaro Supply chain management continues to be a hot topic in countless organisations in light of ongoing geopolitical challenges, evolving impacts of climate change, new tariffs, changing labor markets, and much more. How can supply chain and procurement leaders attack these and other challenges? It starts with building and implementing a strategic sourcing strategy. Protiviti recently published a… Podcast Transcript September 14, 2023 Transcript | Achieving Digital Maturity in Finance – with Chelsea Black and Kizzy Gift In this episode, we discuss digital maturity in finance. Or more specifically, how more finance organisations are employing ERP systems, moving to cloud-based systems, transitioning more to analytics, and with that, understanding the talent management and risk management needs that are required with these major changes.Sharing their insights on these issues are two Protiviti experts, Chelsea… Blogs May 5, 2023 Creating a resilient cybersecurity strategy: The governance lifecycle approach Cybersecurity governance should do more than manage cyber risk. Good cybersecurity governance creates efficiencies by clarifying the outcomes expected from its processes and establishing boundaries of responsibility among cybersecurity practitioners, frontline operational areas, senior leaders and board members. Recently, numerous crises have drawn senior leaders and board members down into… Survey May 9, 2023 Technical Debt and Innovation – the CFO’s Perspective Organisations today spend an average of 30% of their IT budgets and invest a fifth of their IT human resources on technical debt management. This research, based on a global survey of more than 1,000 CIOs, CTOs and other technology leaders, underscores the burden created by technical debt and likely is an eye-opener for the CFO.[1] As organisations strive to increase their focus, and time and… Load More