Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Flash Report February 28, 2024 NIST Releases Version 2.0 of Its Cybersecurity Framework (CSF): What This Means for Your Organisation On February 26, 2024, The National Institute of Standards and Technology (NIST) released version 2.0 of its updated and widely used Cybersecurity Framework (CSF). This latest edition of the CSF is designed for all audiences, industry sectors and organization types, regardless of their degree of cybersecurity sophistication. Whitepaper March 21, 2023 Mitigating crypto sanctions evasion risk in financial institutions The Financial Action Task Force (FATF) has long warned that criminals leverage virtual assets not only for predicate or money-laundering offenses but also to evade financial sanctions and raise funds to support terrorism. Even so, the number of recent headlines about criminal activity and sanctions evasion in the crypto industry is alarming. Cryptocurrency-based crime hit an all-time high of $20.… Survey October 2, 2018 GDPR: Maturità delle imprese italiane rispetto agli adempimenti richiesti GDPR: qual è il grado di maturità delle aziende italiane? A questa domanda intende rispondere la survey condotta da Oracle Community for Security insieme a Protiviti, Clusit, AUSED ed Europrivacy nel periodo compreso tra marzo e giugno 2018 e rivolta a 239 aziende operanti per lo più nei settori dell’Information Technology, Manifatturiero, Bancario e Finanziario, Utilities, Servizi e Professioni… Flash Report May 21, 2019 Esternalizzazione di funzioni e attività aziendali: le nuove Linee Guida dell’European Banking Authority Il 25 febbraio 2019, a seguito del processo di consultazione avviato il 22 giugno 2018 e conclusosi nel settembre 2018, l’EBA ha pubblicato la versione definitiva delle “Guidelines on outsourcing arrangements” in materia di esternalizzazione di funzioni e attività aziendali, applicabile a tutte le istituzioni finanziarie. Tra le principali finalità sottese all’emanazione delle Linee Guida si… Whitepaper August 1, 2022 Protecting the Enterprise: How a Well-Designed Security Analytics Programme Can Help The purpose of security analytics in an organisation Security metrics and the analysis of security information can be challenging concepts even for leading organisations. As information security professionals, most of us have been taught that in order to have a mature information security function we must both document and measure the organisation’s security capabilities. If policies are the… Newsletter September 29, 2023 Private Equity Insights Q3 2023 In our latest issue of Private Equity Insights, we offer Protiviti’s latest thinking on ESG issues – specifically, assessing sustainability through an investment and value creation lens. We offer further thoughts on AI (including generative AI) from the board’s and the CFO’s point of view, and we bring the general counsel into the mix through an informative discussion on building legal operations… Survey March 29, 2023 The Innovation vs. Technical Debt Tug of War Technology leaders are exploring new ways to drive innovation and maximise the value of IT in a changing world driven by disruption and a need for acceleration Executive Summary Innovation is the name of the game in today’s global market. Recognising this new reality, CIOs, CTOs, CISOs and other technology executives and leaders are exploring new ways to fuel innovation throughout their… Newsletter March 15, 2022 Private Equity Insights: Top Risks for 2022 In this issue of Private Equity Insights, we take a deep dive into the top risk issues facing companies owned by private equity (PE) in 2022 and over the next 10 years. These insights were obtained from our 10th annual survey of top risks by Protiviti and NC State University’s ERM Initiative.Of the global boards of directors and executives surveyed, respondents from PE-owned company leaders… Whitepaper May 28, 2024 DORA Compliance: Untangling Key Hurdles to Implementation The Digital Operational Resilience Act (DORA), or more formally known as Regulation (EU) 2022/2554, took effect on 16 January 2023, with final industry compliance required by 17 January 2025. The regulation underscores the importance of digital operational resilience in today’s increasingly interconnected and digitized landscape and seeks to expand the reach of European regulators incorporating… Newsletter July 17, 2024 Private Equity Insights Q2 2024 In this issue of Private Equity Insights, we offer guidance on how private equity can leverage procurement to unlock value and drive performance improvements. We also look at the growing role of AI in finance and how the board can sharpen its focus on M&A due diligence. Other topics include the board’s role in talent management and the results of our latest VISION survey on the future of… Load More