Articles
We may have a business card that says we are internal auditors. But we are part of the management team and our first duty is to help the organization succeed.
Continue reading...
With AI now used in many apps that drive the digital workplace, more questions around the privacy implications are surfacing in the enterprise.
Continue reading...
Value is what people would be willing to pay for, not what you say it is. The same applies to internal audit.
Continue reading...
Risk management is not about managing the possibility of harmful events or situations. It’s about managing the likelihood and extent of success.
Continue reading...
Can you assess risk management without considering related internal controls? I don’t think so.
Continue reading...
Google announced it will be blocking Less Secure Apps (LSA) from accessing G Suite, third-party apps will now have to be OAuth compliant.
Continue reading...
We need to be not only agile in our audit planning, but also provide the assurance and insight that is needed at speed.
Continue reading...
The National Institute of Standards and Technology (NIST) is offering a new tool to help organizations manage privacy risks. Here's how it works.
Continue reading...
Thankfully, most practitioners have moved on to focus on those elements of GRC that are meaningful to them rather than trying to implement software for “GRC.”
Continue reading...
As of Jan. 14, Microsoft will no longer offer security or support for the Windows 7 and Windows Server 2008/R2 operating systems.
Continue reading...
With the CCPA only days away, many organizations are struggling to stay compliant, but the recent rules around GDPR are an indicator how to navigate. Here's why.
Continue reading...
The cost of fraud is high for both consumers and businesses. Here are a few steps both sides can take to reduce the risk (hint: retire your 12345 password).
Continue reading...
To improve enterprise risk management maturity, you need to define your risk appetite, ensure the right people are taking responsibility, and measure progress.
Continue reading...
Risk management is not like looking into a crystal ball and predicting the future with certainty.
Continue reading...