Vendors represent one of the highest risk areas in an organization’s cybersecurity structure.
IT Governance, Risk & Controls
Layers of defense should exist in an organization’s systems, with the most sensitive information protected by the most layers.
Internal auditors can play a pivotal role in managing technology risks ranging from cybersecurity to social media. The risks are ranked in a new report that shows how internal audit can help manage them.
The digital sun will never set, which means that digital threats to business and government will only grow in the future, Tom Ridge said Friday.
Mark Pearson, who works in supply chain forensics for Deloitte, explains how companies can probe one of the top risks—third-party expense categories—and avoid overpaying.
Although web-connected products and the “internet of things” provide opportunities for transformative growth, they also may carry substantial risks.
The principles outlined in a popular internal control framework can help organizations manage their cybersecurity.
In a business environment where a damaging Twitter post can have disastrous effects on a company’s financials, reputational risk remains the top nonfinancial concern for corporate directors, according to a new survey report. Another risk rooted in technology—cybersecurity and information technology risk—is rising quickly among directors’ concerns, according to the
CPAs can assess the effectiveness of their organization’s information technology controls by using Principle 11 of the newly updated internal control framework of the Committee of Sponsoring Organizations of the Treadway Commission (COSO). See a step-by-step procedure for applying Principle 11 to IT controls.
Companies rarely use technology to effectively identify risks beyond those related to business and transaction processing in financial and operating system internal controls. This article provides techniques to expand the scope of an organization’s risk management processes—in a way that may help some identify hidden risks before they emerge as full-blown crises.