What is design risk? To “design” is to create, fashion, execute or construct according to plan. The term design as used here refers to the entire scope of a project. A business system design is a collection of design documents and supporting materials which define the system functionality that supports one or more business processes and in the process, creates, retrieves, updates and deletes data.
Topics: IT audit, IT governance, IT infrastructure, IT strategy, IT risk, IT controls, performance management/measurement, KL Tools
Transaction authenticity can be defined as the authentication of a party’s (individual, organization) identity, to ensure that pending transactions and contractual agreements are legal and enforceable.
Topics: IT audit, IT infrastructure, cloud computing, IT risk, IT controls, performance management/measurement, KL Tools
In November 2013, the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) will formally release long-anticipated updates to ISO/IEC 27001 and 27002. The last time these standards were updated was in 2005.
Topics: Protiviti, information technology risk, IT audit, IT governance, IT infrastructure, security, flash report
Changes to a company’s information technology (IT) environment, both information systems and the underlying platforms, are a source of significant operational risk for every organization. To protect its IT investment and reduce operating risk, robust change management processes are critical. The need for a positive control environment and a very unforgiving attitude regarding unauthorized IT changes by management cannot be overemphasized. Insufficiently tested IT changes is an unacceptable practice.
Topics: Hot Issues, IT audit, Dan Swanson, IT governance, IT infrastructure, IT strategy
The "Holy Grail" for IT has always been to be closely aligned with business efforts. For years, business has encouraged IT to focus on delivering business priorities. At the same time, IT has tried to be an integral part of business planning and align IT efforts and investments with business priorities. Ultimately, effective IT alignment really does require the ongoing and engaged involvement of all key participants.
Topics: information technology risk, Hot Issues, Dan Swanson, project management, IT infrastructure, IT strategy, IT investment management, ISACA
Data integrity is the assurance that information can only be accessed or modified by those authorized to access the system. Measures taken to ensure integrity include controlling the physical environment of networked terminals and servers, restricting access to data, and maintaining rigorous authentication practices. Data integrity can also be threatened by environmental hazards, such as heat, dust, and electrical surges.
Topics: IT audit, Data Integrity Risk, IT infrastructure, cloud computing, IT risk, IT controls, data security,, data analytics, performance management/measurement, KL Tools, customer satisfaction
KnowledgeLeader, provided by Protiviti, is the premier resource for internal audit and risk management professionals.
With over 1,400 customizable tools and 1,300 articles by industry experts, we offer the most comprehensive service on the market.
For more information:
