Author Archives for Jim DeLoach

Effectively Briefing the Board on IT Risks

Published by

Innovative technology can be a differentiator as well as a disruptor in today’s marketplace. Technological advancements are rapidly compressing the half-life of business models and industries that historically have not been viewed as dependent on technology are now being transformed by it and their business models can no longer function without these latest advancements. Consider Uber. The ability to book, track, and pay for a cab from a mobile device significantly differentiated this business from traditional taxi services. The bottom line is that technology is no longer a mere enabler. At Protiviti, we often receive feedback from directors stating they... Read More

Managing Cyber Threats with Confidence

Published by

The reality of risk management is that risks are impossible to eliminate, resources are finite, and risk profiles are ever-changing. This is especially true of cyber threats. That is why it is important to focus on protecting an organization’s most important information assets and systems—the  “crown jewels”—by  understanding the changing threat landscape and risk tolerances and preparing for inevitable incidents. Key Considerations  Few businesses have given focused attention to defining their information assets across the enterprise or thoroughly assessing their tolerance for cybersecurity risk. In reality, most think their risk tolerance is low, but act as though it is relatively... Read More

Positioning Compliance for Maximum Effectiveness

Published by

At Protiviti, we often receive questions regarding the proper positioning of compliance in an organization. The debate often centers on addressing to whom compliance reports. Unfortunately, this line of inquiry does not focus on the fundamental issue of roles and responsibilities. One reason there is disparity among organizations in positioning compliance is that there are different views regarding the responsibilities expected of the function. Positioning the compliance function for effectiveness is a matter of first defining the roles executive management and the board wants that function to play. An understanding of these roles consequently provides a powerful context for evaluating... Read More