Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Insights paper October 8, 2024 Best Practices for Building a Sustainable PCI DSS Compliance Programme Creating and maintaining a sustainable PCI DSS compliance programme is a crucial and complex task for organisations to protect payment card transactions and uphold consumer trust. However, despite the PCI DSS standard being around for almost 20 years, many organisations still struggle to achieve and validate compliance with it.In April 2016, the PCI Security Standards Council (SSC) introduced the… Infographic February 21, 2024 Infographic | 2024 Top Risks for Chief Audit Executives Recognizing the interplay of near-term and future risks is essential for comprehensive enterprise-wide risk management. Such reflection and evaluation offer CAEs valuable insights into how these intertwined risks can impact an organization's strategic success and long-term viability. Client Story June 16, 2023 Global Leader in Design Software Hardens Its Platform Infrastructure to Meet FedRamp Compliance Requirements This global leader in software for designers, builders, engineers and others has worked to provide a solid platform across a multitude of industries. However, recent changes in FedRamp compliance requirements drove them to develop a new instance of its product platform, hardening their infrastructure for customers in the public sector. Client Story June 16, 2023 Leading CRM Provider Improves Configuration Checks on AWS Resources to Comply with HIPAA Framework A globally-recognized CRM provider engaged Protiviti to assist them in determining methods to better protect customer data while complying with each customer's unique regulatory requirements. The client needed an efficient method to perform configuration checks on AWS resources to ensure it would remain compliant with the HIPAA framework so that it could grow its footprint in the healthcare… Survey April 17, 2025 Risk insights for internal audit teams In a dynamic business landscape filled with uncertainty, CAEs perceive most of the macroeconomic, strategic and operational risks organisations face to be higher magnitude threats compared to CEOs, CFOs and other C-suite respondents to our latest Top Risks Survey. This makes it imperative for internal audit leaders to work closely with leaders in the enterprise to ensure that risks are thoroughly… Newsletter May 8, 2024 Sharpening the Board’s Focus on M&A Due Diligence Whether an acquisition is a stand-alone, complementary entity or an integration, the due diligence process is undergoing a paradigm shift due to the higher cost of funding and the impact of failed transactions. Boards should expect a more aggressive focus on due diligence.How has the due diligence process changed in recent years? For sure, the complexity of certain topics, such as environmental… Podcast August 20, 2020 Embracing the Next Generation of Internal Auditing It’s time for internal audit leaders and professionals to stand up and ride their own wave of transformation and innovation. But the results of the latest Next-Generation Internal Audit survey from Protiviti show that much progress still needs to be made in growing competency levels and next-generation auditing methodologies, in advancing innovation and transformation initiatives, and in… Whitepaper September 20, 2020 Early Signs of Regulatory Alignment on Operational Resilience Concepts, Themes In early August 2020, the Basel Committee on Banking Supervision (BCBS) released a consultative document, titled “Principles for Operational Resilience,” that proposed a pragmatic yet flexible approach to operational resilience, one intended to be principles-based. Publication of the consultative document was expected and timely, coming amid a growing regulatory focus on operational risks and the… Whitepaper September 16, 2020 The Road to Resiliency – Building a Robust Audit Plan for Operational Resilience Executive Summary The financial services industry has long relied on internal audit functions to assess and challenge the effectiveness of various programmes designed to protect and build organisational value. These programmes have included disaster recovery, business continuity, risk management, cybersecurity, and many others designed to help institutions recover from an event. The pressure… Whitepaper September 21, 2020 Driving Operational Resilience From the C-Suite The actions and decisions of C-suite leaders are typically driven by strategies designed to guide businesses toward growth and success. These plans invariably contain many assumptions. One is the expectation that their organisations will be able to deliver goods and services to customers even under stressful conditions – an expectation of resilience that is sometimes ill-conceived and… Load More
