Insight Search Search Submit Sort by: Relevance Date Search Sort by Relevance Date Order Asc Desc Podcast November 9, 2023 Podcast | Emerging Regulations in Tech: Understanding the Digital Services Act – with Kaitlin Kirkham-Cooper and Roxanne Miller As of August 25, 2023, large technology companies providing hosting services, online platforms and search engines, are required to put processes in place to be notified of illegal content and to act on notifications under the European Union’s Digital Services Act (DSA). Tech firms that do not meet a 45-million-user threshold have to comply with many of the DSA’s provisions beginning February 2024… Flash Report April 28, 2022 Moving Beyond the Heat Map: Making Better Decisions with Cyber Risk Quantification A major cybersecurity event can dissolve millions of dollars in assets and tarnish even the strongest company's reputation. As cybersecurity concerns grow and evolve, companies need to be prepared for the inevitable cyber attacks with strong defenses to identify breaches and minimise damage. But how does leadership know where to invest in cybersecurity? How much is at risk? What should be… Whitepaper July 21, 2022 Customer remediation: Making it right (and better) In our Compliance Priorities for 2022 in the Financial Services Industry, we emphasised the interconnectivity among the risks we identified, including how the pandemic, the global focus on environmental, social and governance (ESG) issues, and continued regulatory emphasis on culture and conduct were combining to shine a bright light on how financial institutions (used broadly herein to refer to… Whitepaper January 13, 2025 Sanctions and Export Controls: The Current and Future Landscape for Global Financial Institutions For two years running, Protiviti has published a paper on the major sanction developments in the past year and our expectations for the coming year. We did this, in part, because the pace, scale and enforcement of economic sanctions reached unprecedented levels after Russia’s invasion of Ukraine in February 2022. We now seem to have settled into an environment where world events and geopolitical… Insights paper March 20, 2024 Mastering Data Dilemmas: Navigating Privacy, Localisation and Sovereignty In today's digital age, data privacy management is paramount for businesses and individuals alike. With the ever-changing regulatory landscape surrounding data protection, organisations must adapt swiftly to ensure compliance and maintain trust with their customers and stakeholders. However, both data sovereignty and localisation play an important role in privacy, as discussed in a previous post… Video August 12, 2025 Video | Why Leaders Miss the Mark on Buy-In, and How to Fix It In the fast-moving world of financial services, transformation isn’t just about technology or process — it’s about people. In this video from The Modern CIO Dilemma , Protiviti Managing Director Michael Bertan explores the critical signals that reveal whether change initiatives are truly taking hold, and why even the most well-intentioned leaders can miss the mark on organisational buy-in. Whitepaper November 26, 2024 Network and information security directive 2 (NIS2) The European Commission has revised the NIS Directive, expanding its scope to include numerous new sectors. This revision aims to enhance cybersecurity across the entire European region by unifying national laws with common minimum requirements. For many companies located within European Union (EU) Member States, as well as non-EU organisations that provide services within the EU, NIS2 represents… Whitepaper May 1, 2023 What Do the Silicon Valley Bank and Signature Bank Failures Mean for Bank Supervision? On April 28, four reports were issued on the failures of Silicon Valley Bank and Signature Bank. These reports signal the next stage of what is likely to be a lengthy examination of the issues surrounding these failures and the actions that should be taken to prevent such events in the future. Podcast August 29, 2023 Implications of U.S. Banking Regulators’ Final Guidance on TPRM – with Brian Kostek, Kathryn Hardman and Helen Smith In June, nearly two years after issuing their proposal for third-party risk management (TPRM), the U.S. banking regulators – the Office of the Comptroller of the Currency, the Board of Governors of the Federal Reserve System and the Federal Deposit Insurance Corporation – finalised their guidance.In this podcast, Brian Kostek from Protiviti interviews Kathryn Hardman from Veritex Bank and Helen… Blogs June 22, 2023 Harnessing Analytics to Streamline and Automate Your Control Environment In an increasingly complex business landscape, organisations confront mounting challenges linked to their operating models and cost management. These pressures are prompting a discernible shift in focus towards streamlining and simplifying controls to cut costs, boost responsiveness and enhance the control environment. Central to this evolution is recognising that a well-structured control… Load More