As the scale of emerging technology risks facing companies continue to multiply, IT auditors play a key role in identifying these threats and helping their organizations to navigate them. A new survey conducted by Protiviti and The Institute of Internal Auditors (IIA) reveals which risks are keeping IT auditors up Read More
Office workers are using ChatGPT, or similar conversational AI models, for various tasks and purposes. Some of these uses can create risks of which compliance officers should be aware. Here are a few examples: 1) Virtual Assistants: ChatGPT can act as a virtual assistant, helping office workers manage their schedules, Read More
Artificial intelligence applications like ChatGPT are becoming common tools in the workplace to do everything from generating job descriptions, writing and editing reports, and to managing schedules (See related article, “How Employees Are Using ChatGPT on the Job“). But the apps aren’t perfect. In fact, they can be error prone Read More
Imagine this scenario: Your organization is hit with a sophisticated ransomware attack. The team reluctantly agrees to pay the ransom (in bitcoin, of course) and your data-recovery efforts spring into action to get the organization back up and running. But to everyone’s horror, much of the data is missing and Read More
The Commodity Futures Trading Commission announced it will become the first federal agency to adopt the recently released privacy framework from the National Institute of Standards and Technology (NIST). The framework is a voluntary tool designed to improve privacy through enterprise risk management. The CFTC will integrate the framework into Read More
A new study examines the biggest challenges impacting IT audit professionals as they navigate an evolving risk landscape in an era of digital transformation. The 2019 Global IT Audit Benchmarking Study is the eighth annual audit research project conducted by consulting firm Protiviti and ISACA, a professional association for IT Read More
Companies are struggling to keep their networks secure, particularly when they involve cloud computing, but an emerging technology—machine learning—could provide some help to eliminate unauthorized communication in your cloud. One of the biggest challenges of managing network security is understanding the environment: What assets are present? How are they communicating? Read More
For a long time, many companies have used process improvement strategies—ideas such as Six Sigma, Lean, Kaizen, Total Quality Management, Re-engineering, and a slew of others—to streamline operational processes, and they have done so with great success. Process improvement and continuous improvement initiatives, which often rely on the help of Read More
Among the many things that may keep internal auditors up at night are cybersecurity, compliance, and data security and protection, according to a recent survey by the Chartered Institute of Internal Auditors. These top three concerns significantly outrank other risk categories like human resources, regulatory change, and digitalization, although, of Read More
The Defense Department has long known that weaknesses in its information technology systems are a major reason it’s never been able to successfully undergo a financial statement audit. But now that the entire department has been through a full audit for the first time, the results paint a clear picture Read More
