Articles
Tag: risk it
-
Remove the Restraints of the Audit Report Format
We are not limited to a rigorously enforced standard for communicating in person. Why should we be limited when we are writing?
Continue reading...
-
Enterprise Data Security Still Has a Long Way to Go
Despite many warnings, new research from Microsoft shows a large number of enterprises are still not securing their data as they should.
Continue reading...
-
Enterprise Risk Management and the Internal Audit Plan
One of internal audit's values is to tell management when the controls to manage risks and assure opportunities aren't working.
Continue reading...
-
How Do We Fix Risk Management?
Instead of risk management, can we think of it as success management or effective management? Because that's what it is.
Continue reading...
-
The Risk of Excessive Red Tape
Practitioners need to have the courage to stimulate management to remove controls and other procedures that cost more than they are worth.
Continue reading...
-
Risk Management and Cloud Computing: Two Approaches
Any discussions of IT-related risk should start with an understanding of the organization's business objectives and go from there.
Continue reading...
-
Why US Businesses Are Adopting a Zero Trust Model With Technology
In response to the growing number of cyberattacks, the U.S. is developing a zero trust technology strategy in conjunction with the private sector. Here's why.
Continue reading...
-
Exploring the Positive Side of Risk
Pretty much every situation has several potential outcomes — some positive, some negative. Focusing only on the latter doesn't make business sense.
Continue reading...
-
How Risk Management Can Build Credibility With Management
ERM wants a seat at the management table. What do risk practitioners need to do to make this happen? And should that really be their goal?
Continue reading...
-
Revitalizing Risk Management Through a Changed Reporting Structure
Would a change in reporting structure revitalize and give new energy to a risk management function and practice?
Continue reading...
-
Assessing and Addressing Technology Risk
Any technology risk assessment should be made in terms of the potential effect on the business, not any effect on IT assets or goals.
Continue reading...
-
Protecting Data Against the Rising Tide of Ransomware
The number of ransomware attacks is on the rise. Here's what enterprises can do to minimize their exposure.
Continue reading...
-
Is Risk-Based Audit the Best Approach?
Risk-based audit needs a reset to enterprise risk and value auditing.
Continue reading...
-
Mancini's Law Says: Information Chaos Has Consequences
Without intervention, information chaos will threaten the viability of our systems. The ransomware attacks are one of the visible consequences.
Continue reading...
