Our Thoughts On

Sort by

Categories
Authors

Risk Advisory/Internal Audit

Articles 41 - 50 of 100

FDIC Information Technology Risk Examination (InTREx) Program Overview

The FDIC’s Information Technology Risk Examination (InTREx) Program is its current information technology and IT operations examination procedures.

What You Need to Know About the Ohio Data Protection Act

What Is the Ohio Data Protection Act? On August 3, 2018, Ohio Governor John Kasich signed the Ohio Data Protection Act (“the Act”) into law.

Is Your Organization Failing Password Security Management?

Security management may be implementing high-cost sophisticated measures in your organization, but it’s often the first factor of enterprise authentication

Cyber Monday Growth Brings Evolving Risks for Retailers

The trees outside are turning vibrant shades of red, orange and yellow, which has retailers seeing green. As Black Friday and Cyber Monday quickly approach,

Register to receive our weekly newsletter with our most recent columns and insights.

Phishing, Don't Take the Bait!

We’ve all heard about phishing by now. It’s the attack vector of choice for many hackers – in which the weapon used is a simple email.

Will Cloud Service Providers' SOC 2 Reports Satisfy SaaS Companies' Customer Assurance Needs?

Software-as-a-Service (SaaS) companies tend to provide services that require their customers to entrust them with their sensitive data. Therefore, customers

Don't Be Lulled Into a False Sense of Security

In my journey as a cybersecurity professional, I provide a wide variety of services to an even wider variety of clients. Within those services, there is

SECURITY NOTICE: MAJOR ONLINE BANKING PLATFORM VULNERABILITY - FISERV

Businesses that utilize Fiserv eBanking platforms should take note of an online banking information disclosure vulnerability that was made public. Fiserv

Register to receive our weekly newsletter with our most recent columns and insights.

Strategies for Service Organizations to Prepare for the New SOC 2 Reporting Requirements

Service Organizations that undergo a SOC 2 examination or are currently preparing to have one performed, should be aware of the recently updated requirements

SOC 2 Reporting Standards Updated: Effective 12/15/2018

The AICPA recently updated the SOC 2 reporting standards to align with the COSO 2013 Internal Control Framework. The specific updates pertain to the updated

Register to receive our weekly newsletter with our most recent columns and insights.