-
Cyber Risks and Controls Through the COSO Lens
June 26, 2018
Recent political, technological and economic changes have had a large impact on information technology (IT) risk leaders. The primary operational priority of CIO’s has shifted to IT performance stability while…
-
The Age of Cloud Computing
June 26, 2018
The emergence of cloud computing has provided a significant opportunity for businesses to increase their business model capabilities and the ability to meet demand while avoiding investments in infrastructure and…
-
Risk Management in the Internet of Things
February 1, 2016
Risk Management for the Internet of Things Today’s world is defined by more than just the internet and shared data; it is defined by connected technology that can create, process,…
-
Managing Risks of ERP Implementations for Enterprise Success
August 21, 2013
As companies grow, the time comes where the idea of an ERP solution becomes a reality. When businesses reach that point, they sometimes reluctantly make the plunge knowing the journey…
-
ERP Implementation Risk: Managing Sources of Project Delays and Other Risk
June 19, 2013
Over the past two decades, enterprise resource planning (ERP) systems have allowed managers to utilize software to integrate information about projects across the enterprise. These systems are designed to integrate…
-
Q & A: Controlling Spreadsheet Risk
January 10, 2013
Spreadsheets are widely used in today’s business environment, and rightly so – they provide users with a powerful, flexible solution for getting things done. However, there is a difficult truth…
-
Special Report: Risk Lessons from the 2011 Japan Earthquake Disaster
January 1, 2012
In the Global Risks 2012 report, the World Economic Forum features a special report on the Great East Japan Earthquake of March 2011. The special report highlights some lessons learned…
-
The World Economic Forum’s Global Risks 2012 Report
January 1, 2012
The World Economic Forum’s seventh edition of the Global Risks 2012 report details the survey results of 469 global experts from different sectors. The experts ranked the likelihood and impact…
-
IT Projects – Black Swans Aren’t so Rare
December 1, 2011
IT projects can bring about significant, positive change for a company. However, many times just the opposite happens, as 16% of IT projects are affected by “black swan” risk events…
-
Cyber Crisis Management: A New Philosophy and Approach to Incident Response
September 1, 2011
Cyber crime is becoming an increasing problem for companies in the United States, resulting in million dollar damages and creating major reputation risks for entities affected. While attacks are often…
-
Managing Social Media Risks
July 1, 2011
As organizations realize the potential of social media to positively benefit their marketing and advertising strategies, they are also aware of potential risks. In a white paper published by Crowe…
-
Raising Awareness of Cybersecurity Risks
March 1, 2011
Given the highly interconnected world that technology now accommodates, organizations are able to expand their operations and systems all around the globe. While those IT systems create significant business opportunities,…
-
How Risk Management Is Changing in Response to the Economic Crisis
July 1, 2009
The economic crisis is changing the risk management landscape in various ways. The government bailouts enacted in response to the economic crisis will have many effects, with the greatest potential…
-
Enhancing IT Risk Management: An Exposure Draft
February 1, 2009
Information Technology (IT) risk is a business risk associated with the use, ownership, operation, involvement, influence and adoption of IT within an enterprise. Even though the use of IT can…
-
The Audit Committee Journey: Charting Gains, Gaps, and Oversight Priorities
September 30, 2008
This report by KPMG, LLP describes insights from audit committee members of public companies regarding audit committee priorities and processes. The data come from the 2007-2008 Public Company Audit Committee…
-
GRC Strategic Agenda: The Value Proposition of Governance, Risk, and Compliance
February 1, 2008
The increasing barrage of governmental, industry specific, and internal regulations, coupled with the pressures of increased competition and risk in a global market has clearly defined the need for organizations of all sizes to implement GRC initiatives. This article explains the need for GRC, GRC’s interconnectivity with IT, and the high level importance risk management plays in GRC initiatives.
-
The Convergence of Physical and Information Security in the Context of Enterprise Risk Management
December 31, 2007
This report gives insight into the general state of security convergence, integration of converged security as part of ERM, role of risk councils, and benefits of converged risk management.
-
ERM and Information Technology
April 1, 2006
Internal auditors are faced with new challenges as the importance of understanding information technology (IT) and its impact on risk management becomes even more critical. Internal auditors can provide value to businesses if they use their IT knowledge to help an organization implement a successful enterprise risk management (ERM) program.
-
CROs (Chief Risk Officer) Challenged by IT Risks
September 1, 2005
The white paper focuses on the increasing dependency companies have on IT processes and the new challenges placed on CROs. Senior executives at various industries were asked to provide insight on digital risks and the role CROs play in tackling such risks.
-
Using Technology to Support ERM: A Case Study
December 31, 2003
Companies face added complexity to overall risks threatening an enterprise. Management needs a risk management program that is complete and proactive toward risk. This article highlights steps that Zions Bancorporation took to develop an application to facilitate risk management.