The KnowledgeLeader team recently added two risk and control matrices (RCMs) to its tool repository. These RCMs focus on IT-oriented risks and controls.Read More
In November 2013, the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) will formally release long-anticipated updates to ISO/IEC 27001 and 27002. The last time these standards were updated was in 2005.
A well-designed transaction monitoring (TM) system is an important component of an effective anti-money laundering (AML) compliance program. It supports efforts to combat money laundering and terrorist financing by helping financial institutions identify unusual or suspicious activity that must be reported to regulatory authorities, and aids law enforcement in tracking and prosecuting criminals involved in money laundering and terrorist financing.
In the Protiviti and Association of Healthcare Internal Auditors (AHIA) joint study, Top Priorities for Internal Auditors in U.S. Healthcare Provider Organizations, healthcare organizations responding to Protiviti’s 2013 Internal Audit Capabilities and Needs Survey provided an updated picture of how they rate their technical knowledge and skill levels and what competencies most need improvement.
Changes to a company’s information technology (IT) environment, both information systems and the underlying platforms, are a source of significant operational risk for every organization. To protect its IT investment and reduce operating risk, robust change management processes are critical. The need for a positive control environment and a very unforgiving attitude regarding unauthorized IT changes by management cannot be overemphasized. Insufficiently tested IT changes is an unacceptable practice.
In January 2013, healthcare provider organizations bid farewell to an era defined by uncertainty, at least with regard to healthcare reform, and ushered in an era that may very well be defined by volatility, at least in terms of internal systems, processes and procedures. If this assessment is an exaggeration, it is only a slight one. After all, one of the primary sources of uncertainty – whether the Patient Protection and Affordable Care Act (PPACA) would be implemented – was resolved in 2012, following the Supreme Court's monumental decision regarding the law's constitutionality.
Information technology is critical to the long-term success of most organizations. It is a key driver for the cost of operations, and cost of operations tends to be a vital component of overall profitability. It facilitates the introduction of new business initiatives, as well as the ongoing improvement of current processes, and allows the management team to monitor and report on performance. IT enables business operations through connectivity, information processing, business intelligence and the like. Lastly, and especially important to this audience, IT can contribute greatly to a company’s system of internal control.