Security tops the list of priorities for internal audit
MENLO PARK, CA – A survey of internal audit professionals put the international standard for information security (ISO27000) at the top of priorities for improvement. The study was carried out by internal audit and risk management consultancy and software provider Protiviti.
A total of 516 internal audit professionals, a third of them chief audit executives, participated in the research, which highlighted the growing number of IT and data security risks.
Bob Hirth, Protiviti’s executive vice-president of global internal audit solutions, says: “An ever-increasing reliance on IT-generated data and the plethora of data security breaches are contributing to the need for internal auditors to enhance their skills in this critical area. Clearly, more organisations view themselves to be vulnerable to such risks and are relying on internal auditors to help mitigate and monitor them.”
Behind ISO27000 came the interrelated issues of better enterprise-wide risk management and fraud risk management.
“Now, more than ever, the internal audit profession requires innovative thinkers who are ready to meet a wide range of GRC challenges, explore new technologies, identify and help to mitigate emerging risks, and develop creative solutions to today's complex business challenges,” says Hirth.
More on Operational Risk
Conference hears of conflicting guidance
A scaling methodology to include external data in operational risk calculation is introduced
Day-by-day coverage of Tom Hayes Libor trial
Court hears of payments promised in exchanged for skewed submissions
Sign up for Risk.net email alerts
Sponsored video: Elseware
Oxford professor David Vines argues that the carrot is as important as the stick
Sponsored webinar: IBM
Watch highlights of this year's London conference
There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.