This article was featured on Internal Audit 360.
Choosing the right Governance, Risk, and Compliance (GRC) tool can be a daunting task. There are several software solutions that can help companies..
As cloud computing continues to bring about dramatic technological advances, organizations must balance the risk of not innovating with its risk appetite for cloud usage. This should begin with..
Once upon a time, Little Red Riding Hood ventured out into the forest to visit her poor, sick grandmother. Along the way, she encountered a charming wolf who gave her no cause for alarm. Although..
As internal auditors, whether we have IT in our educational background or not, we have learned the basics around IT General Controls because so much of the control environment resides in..
In 2018, everyone is talking about data analytics. Many areas within an organization have been quick to adopt data analytics, and its maturity is evidenced by things such as dedicated workforce,..
Pay your taxes. Walk the dog. Submit that expense report. Each of us has that ever-growing catalogue of tasks to accomplish and slowly cross items off the list. Whether we are holding ourselves..
Throughout 2018, senior leadership – and even the boards – of major financial institutions in New York will be discussing cybersecurity. This is something most security professionals have been..
As I sent my son back to school last month, I quickly realized the carefree days of summer were behind us. It means battles over stricter bedtime, doing homework and more screen-time limits. It..
The final month of a NYC summer never gets any easier. The subway stations turn into communal saunas, half the workplace has gone on vacation leaving you as their “out of office urgent matters..
I used to define negotiation as that arduous battle of wills between two parties that was best illustrated by my least favorite activity in the world…buying a car. That was until I became a..
Last weekend I played “The Game of Life” with my son and I realized how early we expose our kids to the concept of risk. As he approached the choice to take “The Safe Path of Life” or “The Risky..
I recently took my six-year old to see Beauty and the Beast. After the movie, he began asking questions like “Why did the Beast throw the rose on the ground?” or “Why did the Enchantress turn the..
In a previous post, we focused on security risk and controls to keep in mind when considering a cloud migration strategy, and how the choice of deployment and service model influence the security..
Since its debut, development and operations, otherwise known as “DevOps”, has gained momentum in various industry sectors as a mainstream strategy.