Security tops the list of priorities for internal audit
MENLO PARK, CA – A survey of internal audit professionals put the international standard for information security (ISO27000) at the top of priorities for improvement. The study was carried out by internal audit and risk management consultancy and software provider Protiviti.
A total of 516 internal audit professionals, a third of them chief audit executives, participated in the research, which highlighted the growing number of IT and data security risks.
Bob Hirth, Protiviti’s executive vice-president of global internal audit solutions, says: “An ever-increasing reliance on IT-generated data and the plethora of data security breaches are contributing to the need for internal auditors to enhance their skills in this critical area. Clearly, more organisations view themselves to be vulnerable to such risks and are relying on internal auditors to help mitigate and monitor them.”
Behind ISO27000 came the interrelated issues of better enterprise-wide risk management and fraud risk management.
“Now, more than ever, the internal audit profession requires innovative thinkers who are ready to meet a wide range of GRC challenges, explore new technologies, identify and help to mitigate emerging risks, and develop creative solutions to today's complex business challenges,” says Hirth.
More on Operational Risk
Verdict marks end of first criminal case against an individual in the scandal
Banks likely to be cautious even after trade restarts
Boom in op risk means more places in front line
OpRisk Asia: Revised standardised approach an improvement but no panacea
Sign up for Risk.net email alerts
Catch up with the debate at OpRisk's flagship London conference
Sponsored video: Elseware
Oxford professor David Vines argues that the carrot is as important as the stick
Sponsored webinar: IBM
There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.