Insights | Risk

Read More

10 Jul

Risk Featured Internal Audit

Choosing a GRC Solution That’s ‘Just Right’

This article was featured on Internal Audit 360.

Choosing the right Governance, Risk, and Compliance (GRC) tool can be a daunting task. There are several software solutions that can help companies..
Read More

17 May

Risk Featured Internal Audit

Why non-public companies need a strong internal control environment

This article was featured in Internal Audit 360.
Read More

17 May

Technology Risk Featured

Innovate with Your Head in The Clouds: Balancing Cloud Risk with Innovation

As cloud computing continues to bring about dramatic technological advances, organizations must balance the risk of not innovating with its risk appetite for cloud usage. This should begin with..
Read More

10 Apr

Risk Featured Internal Audit

Why Details Matter When Internal Audit Assesses Corporate Culture

Once upon a time, Little Red Riding Hood ventured out into the forest to visit her poor, sick grandmother. Along the way, she encountered a charming wolf who gave her no cause for alarm. Although..
Read More

25 Feb

Technology Risk Featured Internal Audit

For the Non-IT Auditor: Talking ‘Cloud’

As internal auditors, whether we have IT in our educational background or not, we have learned the basics around IT General Controls because so much of the control environment resides in..
Read More

07 Aug

Financial Services Risk Intelligent Automation & Data Analytics Internal Audit

4 Ways for Internal Audit to Keep Pace with Technology

In 2018, everyone is talking about data analytics. Many areas within an organization have been quick to adopt data analytics, and its maturity is evidenced by things such as dedicated workforce,..
Read More

16 Apr

Cyber & Privacy Risk

GDPR: Not Just Privacy by Design, but Privacy by Default

In a previous post, we provided a high-level primer on the upcoming European Union General Data Protection Regulation (GDPR), which will come into full effect on May 25, 2018. As we move closer to..
Read More

21 Feb

Cyber & Privacy Risk

11 Steps to Prepare for the Impending EU GDPR Regulation

Pay your taxes. Walk the dog. Submit that expense report. Each of us has that ever-growing catalogue of tasks to accomplish and slowly cross items off the list. Whether we are holding ourselves..
Read More

25 Jan

Cyber & Privacy Risk

How to Prepare for the NYDFS Cybersecurity Regulation

Throughout 2018, senior leadership – and even the boards – of major financial institutions in New York will be discussing cybersecurity. This is something most security professionals have been..
Read More

17 Oct

Risk Featured Internal Audit

4 Ways for Internal Auditors to Exhibit Personal Courage

As I sent my son back to school last month, I quickly realized the carefree days of summer were behind us. It means battles over stricter bedtime, doing homework and more screen-time limits. It..
Read More

10 Aug

Financial Services Risk

Winter is coming... Are you 504 ready?

The final month of a NYC summer never gets any easier. The subway stations turn into communal saunas, half the workplace has gone on vacation leaving you as their “out of office urgent matters..
Read More

02 Aug

Risk Featured Internal Audit

The Art of Negotiation for Internal Auditors

I used to define negotiation as that arduous battle of wills between two parties that was best illustrated by my least favorite activity in the world…buying a car. That was until I became a..
Read More

14 Jun

Risk Internal Audit

How Internal Audit Can Help Shape Your Risk Culture

Last weekend I played “The Game of Life” with my son and I realized how early we expose our kids to the concept of risk. As he approached the choice to take “The Safe Path of Life” or “The Risky..
Read More

17 May

Risk Featured Internal Audit

How to Cultivate Curiosity in your Internal Audit Team

I recently took my six-year old to see Beauty and the Beast. After the movie, he began asking questions like “Why did the Beast throw the rose on the ground?” or “Why did the Enchantress turn the..
Read More

27 Feb

Cyber & Privacy Risk

5 Key Takeaways from the Proposed SEC Ruling on BCP

The 2016 proposed rule released by the Securities and Exchange Commission (SEC) represents significant change from the current SEC Rule 204-2 (“Advisers Act”). At this time, the rule currently..
Read More

31 Jan

Cyber & Privacy Risk

Five Ways the CFTC is Shaping Cybersecurity in 2017

In mid-December 2015, the U.S. Commodity Futures Trading Commission (CFTC) unanimously passed changes to existing regulations which would require "all derivatives clearing organizations,..
Read More

08 Dec

Cyber & Privacy Risk

How Can Your CISO Benefit from Quantitative Risk Scoring?

Research has found that Chief Information Security Officers (CISO) spend over 75% of their time simply trying to protect their assets rather than acting strategically to manage risk in the..
Read More

01 Nov

Cyber & Privacy Risk

In Good Company: M&A Cybersecurity Due Diligence

Mergers and Acquisitions (M&A) activities occur across industries of all sizes. Organizations move in this direction to remain competitive, achieve economies of scale, increase market share and..
Read More

30 Aug

Cyber & Privacy Risk Intelligent Automation & Data Analytics

Design Considerations for Data Privacy in the Cloud

In a previous post, we focused on security risk and controls to keep in mind when considering a cloud migration strategy, and how the choice of deployment and service model influence the security..
Read More

13 Jul

Risk

To DevOps or not to DevOps – That is the Question

Since its debut, development and operations, otherwise known as “DevOps”, has gained momentum in various industry sectors as a mainstream strategy.

1 2