Insight Search Search Submit Sort by: Relevance Date Search Sort by Relevance Date Order Asc Desc Blogs July 31, 2023 Cyber risk quantification for chaos management The most important use of any risk assessment tool is that it must contribute to better decision making on how to manage individual risks. Whether that is treating and reducing risk, or accepting that risk exists, risk management activities must ultimately help management make better decisions. Executives and risk management leaders, though, are increasingly faced with risk decisions they have… Blogs January 31, 2024 Capabilities, limitations of Microsoft’s native SoD tool Segregation of duties (SoD) is a well-known term among auditors and anyone who has ever been audited. SoD is the understanding that no user should have access to two conflicting business functions that would allow a user to commit fraud or error (e.g., the ability to create a vendor record, then process a payment to that vendor). The idea can be intimidating and overwhelming to those who do not… Blogs May 28, 2024 Future-proofing your enterprise with DevOps and modern platform engineering DevOps is dead – or so the story goes. This statement is echoed more and more these days, much to the dismay of the DevOps faithful, however technologists need to be careful to read between the lines. DevOps is most certainly NOT dead. DevOps is more alive than ever, although the connotation of the term DevOps continues to evolve. The key point remains: as software development teams move past… Podcast June 7, 2024 Podcast | Strategic Sourcing: Gaining Advantage, Mitigating Risk – with Lucas Manganaro Supply chain management continues to be a hot topic in countless organisations in light of ongoing geopolitical challenges, evolving impacts of climate change, new tariffs, changing labor markets, and much more. How can supply chain and procurement leaders attack these and other challenges? It starts with building and implementing a strategic sourcing strategy. Protiviti recently published… Podcast July 17, 2024 Risky Women Podcast | Risk Management With Purpose In this episode of Protiviti's Risky Women podcast series, Ghislaine Entwisle, Managing Director of the Australia Technology Consulting and Business Performance Improvement practice, speaks with Gloria Yuen, Head of Regulatory Enablement and Delivery at National Australia Bank. Blogs June 5, 2020 Hong Kong Monetary Authority - Bank Culture Reform On 19 December 2018, the Hong Kong Monetary Authority (HKMA) issued a circular titled “Supervision for Bank Culture” which provided further guidance to its original 2 March 2017 “Bank Culture Reform” guidance. The new guidance introduced supervisory measures to Authorized Institutions (AIs), including self-assessments and site visits. The HKMA commenced a self-assessment exercise under the new… Flash Report March 5, 2021 SEC Indicates Greater Interest in Climate Change Disclosures March 4, 2021 - On February 24, 2021, Allison Herren Lee, acting chair of the U.S. Securities and Exchange Commission (SEC), issued a statement directing the SEC’s Division of Corporation Finance to review climate-related disclosures in public company filings and determine the extent to which companies are addressing the topics identified in “Commission Guidance Regarding Disclosure Related to… Podcast Transcript March 28, 2023 Transcript | Executive Perspectives on Top Risks for 2023 and 2032 – with Mark Beasley and Jim DeLoach The level of uncertainty in today’s global marketplace and the velocity of change continue to produce an array of potential risks that can disrupt an organisation’s business model and strategic plan on very short notice. The results of the latest Top Risks Survey from NC State University’s ERM Initiative and Protiviti indicate the business landscape, to no surprise, looks much riskier for 2023… Blogs April 6, 2023 3 Steps to Understanding IAM Challenges in Securing the DevSecOps Ecosystem DevSecOps is an organisational software engineering culture and practice that aims at unifying software development (Dev), application security (Sec), and operations (Ops). The main characteristic of DevSecOps is to monitor and apply security at all phases of the software lifecycle: Planning, development, integration, delivery, deployment and production. Looking at DevSecOps through an IT… Blogs July 25, 2025 Mastering Copilot Feels Just Like Playing the Piano — Here’s Why Microsoft Copilot is an incredible tool. Yet, in my work with clients (I’ve probably taught Copilot in some form to nearly 50 different companies), I continue to be surprised at how most organisations are overlooking this opportunity to transform their business processes. Load More