Insight Search

Sort by:
  • Blogs

    July 31, 2023
    The most important use of any risk assessment tool is that it must contribute to better decision making on how to manage individual risks. Whether that is treating and reducing risk, or accepting that risk exists, risk management activities must ultimately help management make better decisions. Executives and risk management leaders, though, are increasingly faced with risk decisions they have…
  • Blogs

    January 31, 2024
    Segregation of duties (SoD) is a well-known term among auditors and anyone who has ever been audited. SoD is the understanding that no user should have access to two conflicting business functions that would allow a user to commit fraud or error (e.g., the ability to create a vendor record, then process a payment to that vendor). The idea can be intimidating and overwhelming to those who do not…
  • Blogs

    May 28, 2024
    DevOps is dead – or so the story goes. This statement is echoed more and more these days, much to the dismay of the DevOps faithful, however technologists need to be careful to read between the lines. DevOps is most certainly NOT dead. DevOps is more alive than ever, although the connotation of the term DevOps continues to evolve. The key point remains: as software development teams move past…
  • Podcast

    June 7, 2024
    Supply chain management continues to be a hot topic in countless organisations in light of ongoing geopolitical challenges, evolving impacts of climate change, new tariffs, changing labor markets, and much more. How can supply chain and procurement leaders attack these and other challenges? It starts with building and implementing a strategic sourcing strategy.  Protiviti recently published…
  • Podcast

    July 17, 2024
    In this episode of Protiviti's Risky Women podcast series, Ghislaine Entwisle, Managing Director of the Australia Technology Consulting and Business Performance Improvement practice, speaks with Gloria Yuen, Head of Regulatory Enablement and Delivery at National Australia Bank.
  • Blogs

    June 5, 2020
    On 19 December 2018, the Hong Kong Monetary Authority (HKMA) issued a circular titled “Supervision for Bank Culture” which provided further guidance to its original 2 March 2017 “Bank Culture Reform” guidance. The new guidance introduced supervisory measures to Authorized Institutions (AIs), including self-assessments and site visits. The HKMA commenced a self-assessment exercise under the new…
  • Flash Report

    March 5, 2021
    March 4, 2021 - On February 24, 2021, Allison Herren Lee, acting chair of the U.S. Securities and Exchange Commission (SEC), issued a statement directing the SEC’s Division of Corporation Finance to review climate-related disclosures in public company filings and determine the extent to which companies are addressing the topics identified in “Commission Guidance Regarding Disclosure Related to…
  • Podcast Transcript

    March 28, 2023
    The level of uncertainty in today’s global marketplace and the velocity of change continue to produce an array of potential risks that can disrupt an organisation’s business model and strategic plan on very short notice. The results of the latest Top Risks Survey from NC State University’s ERM Initiative and Protiviti indicate the business landscape, to no surprise, looks much riskier for 2023…
  • Blogs

    April 6, 2023
    DevSecOps is an organisational software engineering culture and practice that aims at unifying software development (Dev), application security (Sec), and operations (Ops). The main characteristic of DevSecOps is to monitor and apply security at all phases of the software lifecycle: Planning, development, integration, delivery, deployment and production. Looking at DevSecOps through an IT…
  • Blogs

    July 25, 2025
    Microsoft Copilot is an incredible tool. Yet, in my work with clients (I’ve probably taught Copilot in some form to nearly 50 different companies), I continue to be surprised at how most organisations are overlooking this opportunity to transform their business processes. 
Loading...