Tag: IT Audit

Survey: Internal Auditors Still More Concerned with Cybersecurity than AI

As the scale of emerging technology risks facing companies continue to multiply, IT auditors play a key role in identifying these threats and helping their organizations to navigate them. A new survey conducted by Protiviti and The Institute of Internal Auditors (IIA) reveals which risks are keeping IT auditors up Read More

Risks from ChatGPT

Six Risks from ChatGPT that Internal Audit Should Know About

Artificial intelligence applications like ChatGPT are becoming common tools in the workplace to do everything from generating job descriptions, writing and editing reports, and to managing schedules (See related article, “How Employees Are Using ChatGPT on the Job“). But the apps aren’t perfect. In fact, they can be error prone Read More

Data backup and storage security

Internal Auditor’s Checklist: Eight Points to Validate Data Backup Security

Imagine this scenario: Your organization is hit with a sophisticated ransomware attack. The team reluctantly agrees to pay the ransom (in bitcoin, of course) and your data-recovery efforts spring into action to get the organization back up and running. But to everyone’s horror, much of the data is missing and Read More

CFTC to Become First to Adopt New NIST Privacy Framework

The Commodity Futures Trading Commission announced it will become the first federal agency to adopt the recently released privacy framework from the National Institute of Standards and Technology (NIST). The framework is a voluntary tool designed to improve privacy through enterprise risk management. The CFTC will integrate the framework into Read More

cybersecurity image

Survey Identifies Top Tech Challenges for IT Auditors

A new study examines the biggest challenges impacting IT audit professionals as they navigate an evolving risk landscape in an era of digital transformation. The 2019 Global IT Audit Benchmarking Study is the eighth annual audit research project conducted by consulting firm Protiviti and ISACA, a professional association for IT Read More

Machine learning could improve cloud security

How Machine Learning Can Boost Cloud Security

Companies are struggling to keep their networks secure, particularly when they involve cloud computing, but an emerging technology—machine learning—could provide some help to eliminate unauthorized communication in your cloud. One of the biggest challenges of managing network security is understanding the environment: What assets are present? How are they communicating? Read More

Wringing Waste and Inefficiency from Tech-Based Processes

For a long time, many companies have used process improvement strategies—ideas such as Six Sigma, Lean, Kaizen, Total Quality Management, Re-engineering, and a slew of others—to streamline operational processes, and they have done so with great success. Process improvement and continuous improvement initiatives, which often rely on the help of Read More

What Auditors Must Know About Zero Trust Networking

Among the many things that may keep internal auditors up at night are cybersecurity, compliance, and data security and protection, according to a recent survey by the Chartered Institute of Internal Auditors. These top three concerns significantly outrank other risk categories like human resources, regulatory change, and digitalization, although, of Read More