Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc In Focus October 17, 2024 The DoD unveils the Cybersecurity Maturity Model Certification Programme: A primer for defense contractors As cybersecurity threats evolve, the U.S. Department of Defense (DoD) has introduced a long-awaited pivotal framework aimed at bolstering the security of its national defense supply chain: The Cybersecurity Maturity Model Certification (CMMC) Programme. The new rule, published Oct. 15, marks a significant step towards enhancing cybersecurity across the Defense Industrial Base (DIB). Client Story April 19, 2024 Rural Lifestyle Retailer Builds Customer Loyalty With Enhanced CIAM Strategy Protiviti partnered with a rural lifestyle retailer client to assess its Customer Identity and Access Management (CIAM) program and architecture. Newsletter May 6, 2025 Private Equity Insights Q2 2025 In this issue of Private Equity Insights, we begin by sharing insights from Protiviti’s Private Equity Top Risks Survey Brief. Economic concerns, such as inflationary pressures and slower growth, are causing some private equity firms to focus more on enhancing portfolio company value and efficiency. Next, we continue the focus on key economic issues with a Protiviti Powerful Insights podcast on… In Focus April 25, 2025 Navigating the DOJ final rule on bulk sensitive personal data: What does it mean for your business? Multinational organisations must now comply with a sweeping new U.S. Department of Justice rule that restricts the transfer of bulk sensitive personal data to foreign adversaries. The rule, established under Executive Order 14117, went into effect earlier this month and introduces prohibitions and controls on data transactions involving countries of concern such as China, Russia, Iran, North… Insights paper October 8, 2024 Best Practices for Building a Sustainable PCI DSS Compliance Programme Creating and maintaining a sustainable PCI DSS compliance programme is a crucial and complex task for organisations to protect payment card transactions and uphold consumer trust. However, despite the PCI DSS standard being around for almost 20 years, many organisations still struggle to achieve and validate compliance with it.In April 2016, the PCI Security Standards Council (SSC) introduced the… Newsletter September 29, 2025 Technology Insights Welcome to June issue of Technology Insights. Explore new webinars, videos, blogs, podcasts and much more. Whitepaper May 28, 2024 DORA Compliance: Untangling Key Hurdles to Implementation The Digital Operational Resilience Act (DORA), or more formally known as Regulation (EU) 2022/2554, took effect on 16 January 2023, with final industry compliance required by 17 January 2025. The regulation underscores the importance of digital operational resilience in today’s increasingly interconnected and digitized landscape and seeks to expand the reach of European regulators incorporating… Survey February 21, 2024 2024 Top Risks for Chief Audit Executives CAEs see a riskier near- and long-term environment than do most of their colleagues in the executive suite. Of all C-level respondents to our latest Top Risks Survey, internal audit leaders ascribe the highest-magnitude ratings to risks they expect to challenge their organisation’s ability to achieve its performance objectives during the next 12 months. Infographic February 21, 2024 Infographic | 2024 Top Risks for Chief Audit Executives Recognizing the interplay of near-term and future risks is essential for comprehensive enterprise-wide risk management. Such reflection and evaluation offer CAEs valuable insights into how these intertwined risks can impact an organization's strategic success and long-term viability. Flash Report February 28, 2024 NIST Releases Version 2.0 of Its Cybersecurity Framework (CSF): What This Means for Your Organisation On February 26, 2024, The National Institute of Standards and Technology (NIST) released version 2.0 of its updated and widely used Cybersecurity Framework (CSF). This latest edition of the CSF is designed for all audiences, industry sectors and organization types, regardless of their degree of cybersecurity sophistication. Load More
