Collaborate Disseminate
While COVID-19 was a tectonic shift for businesses, compliance programs were largely unimpacted, according to a report by A-LIGN. In fact, cybersecurity teams have compelling opportunities to consolidate audit operations and leverage technology to acce… Continue reading Despite the pandemic, 85% of organizations completed their audits as planned
Synopsys released a report that examines the results of more than 1,500 audits of commercial codebases. The report highlights trends in open source usage within commercial applications and provides insights to help commercial and open source developers… Continue reading Open source security, license compliance, and maintenance issues are pervasive in every industry
Supply chain attacks target the weakest spot in most every enterprise’s security program: third-party access. The SolarWinds hack was a classic supply chain attack, compromising downstream organizations in order to traverse the victim’s extended enterp… Continue reading 4 things you can do to minimize cyberattacks on supply and value chains
Internal audit’s ongoing digital transformation will rapidly accelerate in 2021, with 22% of respondents reporting that they will implement cloud-based technology this year, resulting in a majority of internal audit teams using a cloud-based audit mana… Continue reading Cloud technology adoption gap between internal audit and other enterprise functions to narrow
A study of 299 internal audit organizations showed that the function faced both declining budgets and a significantly expanded workload in 2020, according to Gartner. “For many heads of audit, it’s not clear where the extra capacity is going to come fr… Continue reading Leaders need to find ways to increase internal audit capacity without increasing budgets
Companies are required to comply with regulations that set standards specific to financial and size thresholds, industry type, customer categories, or other parameters. But audits can be frustrating for companies that use cloud services and rely on the… Continue reading Passing a compliance audit in the cloud doesn’t have to be hard
Concerns around security, privacy, cloud and technology resilience are being further fueled by shifting business priorities, the pandemic-induced remote work environment and accelerated deployment of new technologies, according to a survey from Protivi… Continue reading Organizations further along the digital transformation maturity spectrum have an advantage
Whether you are talking to your leadership or external auditors, it’s always best to be able to explain that your cybersecurity program is based on a framework utilizing industry best practices. A recent framework by Gartner is one that I recommend hav… Continue reading How to take SASE from a buzzword to a plan
COVID-19 has reorganized the risk landscape for chief audit executives (CAEs), as CAEs have listed IT governance as the top risk for 2021, according to Gartner. Analysts said the pandemic is giving rise to new sets of risks while exacerbating long-stan… Continue reading How the pandemic has accelerated existing risk trends
A majority of audit and risk professionals believe the risk environment will continue to be dynamic and unpredictable in 2021, rather than returning to more stable pre-pandemic conditions, an AuditBoard survey finds. The top risk they cited for the com… Continue reading Risk professionals expect a dynamic risk environment in 2021