Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Whitepaper October 6, 2021 Fortified In The Cloud - The Risk Management Strengths of Cloud Service Providers for the Financial Services Industry Cloud is on the rise in financial services and regulators are taking note. The widespread use of cloud service providers (CSPs) in the financial services industry continues to grow. According to a recent study by the Cloud Security Alliance (CSA), 91% of financial services organisations are actively using cloud services today or plan to employ them within six to nine months. That is double the… Whitepaper March 11, 2024 Healthcare IA Benchmarking Internal audit (IA) functions continue to undergo significant changes ranging from the expanded use of emerging technologies, including robust data analytics and artificial intelligence (AI), and options on where their people work (i.e., remote, hybrid or onsite). IA functions within healthcare organizations have continued to evolve and adapt— some faster than others. Keep the pace by comparing… Newsletter May 16, 2022 Three Keys for CEOs: Relevance, Culture and Alignment A recent Protiviti global survey indicates varying views across different executive groups about the overall risk environment. CEOs rate the relative riskiness of the business environment higher for 2022 than anyone else, jumping from the lowest rating in 2021 to the highest rating in 2022. Also, the number of risks that CEOs noted would have a “significant impact on their business”… Flash Report April 28, 2022 Protecting your organisation from insider threats in a changing world Cybersecurity threats are growing exponentially as companies introduce an increasing number of Internet of Things (IoT) devices into operations and collect and store an ever- escalating amount of data. This technology and data sprawl is providing bad actors with more entry points into networks and systems. Too often, organisations have failed to make commensurate investments in data protection,… Whitepaper November 26, 2024 Network and information security directive 2 (NIS2) The European Commission has revised the NIS Directive, expanding its scope to include numerous new sectors. This revision aims to enhance cybersecurity across the entire European region by unifying national laws with common minimum requirements. For many companies located within European Union (EU) Member States, as well as non-EU organisations that provide services within the EU, NIS2 represents… Whitepaper April 21, 2022 PCI Security Standards Council publishes updated data security standard DSS 4.0 addresses rapidly evolving threat environment and provides flexibility for how organisations can achieve compliance On March 31, 2022, the PCI Security Standards Council (PCI SSC) released a new version of the PCI Data Security Standard (DSS). PCI DSS 4.0 is the first revision to the DSS in almost four years. It represents a major update to the standard as the payments industry faces an… Blogs June 11, 2024 Key takeaways: New SEC cyber risk management disclosure rules While the ink is still drying on many 2023 Form 10-Ks, Protiviti has reviewed a subset of the filings to gauge how firms are responding to the U.S. Securities and Exchange Commission’s (SEC’s) amended Cybersecurity Disclosure Rule adopted in July 2023. Newsletter December 12, 2021 Assessment Questions for Audit Committees to Consider (Offered in Conjunction With Protiviti’s The Bulletin, “Setting the 2022 Audit Committee Agenda”) As they self-assesses their performance periodically, audit committees may find useful the illustrative questions we have made available in our Assessment Questions for Audit Committees to Consider. Committee members should periodically assess the committee’s composition, charter and agenda… Newsletter November 29, 2023 Setting the 2024 Audit Committee Agenda Compared to prior years, our suggested 2024 audit committee agenda has taken a bit of a turn due to ongoing and recent market and regulatory developments.A complex business environment: The 2024 audit committee agenda includes important enterprise, governance, process, technology, and financial reporting and disclosure issues that merit consideration by the audit committee beyond its ongoing… Newsletter March 15, 2022 Framing the Data Privacy Discussion in the Boardroom Data proliferation and data privacy regulatory activity across the globe have created the need for focused boardroom discussions. While cybersecurity continues to be an issue for boards, a more targeted focus on data privacy is increasingly necessary to ensure compliance across a rapidly expanding number of privacy regulations. Privacy risk represents a unique challenge driven by the volume and… Load More
