Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Newsletter July 28, 2020 EU Privacy Shield La Corte di giustizia europea dichiara invalido il Privacy Shield. Come trasferire i dati negli USA e al di fuori dell’UE? Mercoledì 15 luglio la Corte di Giustizia dell'Unione Europea (CGUE) ha emesso la sentenza sul caso "Schrems II" (causa C-311/18 - Data Protection Commissioner v Facebook Ireland e Maximillian Schrems). Pur concludendo che le Standard Contractual Clauses (SCC) emesse dalla… Flash Report February 28, 2024 NIST Releases Version 2.0 of Its Cybersecurity Framework (CSF): What This Means for Your Organisation On February 26, 2024, The National Institute of Standards and Technology (NIST) released version 2.0 of its updated and widely used Cybersecurity Framework (CSF). This latest edition of the CSF is designed for all audiences, industry sectors and organization types, regardless of their degree of cybersecurity sophistication. Infographic February 21, 2024 Infographic | 2024 Top Risks for Chief Audit Executives Recognizing the interplay of near-term and future risks is essential for comprehensive enterprise-wide risk management. Such reflection and evaluation offer CAEs valuable insights into how these intertwined risks can impact an organization's strategic success and long-term viability. Survey February 21, 2024 2024 Top Risks for Chief Audit Executives CAEs see a riskier near- and long-term environment than do most of their colleagues in the executive suite. Of all C-level respondents to our latest Top Risks Survey, internal audit leaders ascribe the highest-magnitude ratings to risks they expect to challenge their organisation’s ability to achieve its performance objectives during the next 12 months. Survey April 17, 2025 Risk insights for internal audit teams In a dynamic business landscape filled with uncertainty, CAEs perceive most of the macroeconomic, strategic and operational risks organisations face to be higher magnitude threats compared to CEOs, CFOs and other C-suite respondents to our latest Top Risks Survey. This makes it imperative for internal audit leaders to work closely with leaders in the enterprise to ensure that risks are thoroughly… Flash Report May 21, 2019 Esternalizzazione di funzioni e attività aziendali: le nuove Linee Guida dell’European Banking Authority Il 25 febbraio 2019, a seguito del processo di consultazione avviato il 22 giugno 2018 e conclusosi nel settembre 2018, l’EBA ha pubblicato la versione definitiva delle “Guidelines on outsourcing arrangements” in materia di esternalizzazione di funzioni e attività aziendali, applicabile a tutte le istituzioni finanziarie. Tra le principali finalità sottese all’emanazione delle Linee Guida si… Whitepaper August 1, 2022 Protecting the Enterprise: How a Well-Designed Security Analytics Programme Can Help The purpose of security analytics in an organisation Security metrics and the analysis of security information can be challenging concepts even for leading organisations. As information security professionals, most of us have been taught that in order to have a mature information security function we must both document and measure the organisation’s security capabilities. If policies are the… Newsletter September 29, 2023 Private Equity Insights Q3 2023 In our latest issue of Private Equity Insights, we offer Protiviti’s latest thinking on ESG issues – specifically, assessing sustainability through an investment and value creation lens. We offer further thoughts on AI (including generative AI) from the board’s and the CFO’s point of view, and we bring the general counsel into the mix through an informative discussion on building legal operations… Flash Report December 14, 2020 CISA Issues Emergency Directive to Mitigate SolarWinds Orion Code Compromise On December 13, 2020, the Cybersecurity & Infrastructure Security Agency (CISA) issued an emergency directive detailing required action for federal agencies to mitigate the threat of the recently discovered compromise involving SolarWinds® Orion® Network Management products that are currently being exploited by malicious actors. (Read the SolarWinds Security… Insights paper October 8, 2024 Best Practices for Building a Sustainable PCI DSS Compliance Programme Creating and maintaining a sustainable PCI DSS compliance programme is a crucial and complex task for organisations to protect payment card transactions and uphold consumer trust. However, despite the PCI DSS standard being around for almost 20 years, many organisations still struggle to achieve and validate compliance with it.In April 2016, the PCI Security Standards Council (SSC) introduced the… Load More
