Publications

October 24, 2011
Poll: IT Priorities for 2012
This week’s poll question asks: Which of these IT issues is the most important for your organization in 2012?
CONTENT AREA: Polls
TOPICS: Cloud Computing, Information Technology Risk, IT Infrastructure, IT Strategy, Security, Privacy

October 24, 2011
SEC Staff Provides Guidance on Public Companies' Disclosure Obligations Relating to Cybersecurity Risks and Cyber Incidents
Last week, the staff of the Securities and Exchange Commission (SEC) issued guidance on an issuer’s disclosures regarding cybersecurity risks and cyber incidents. In issuing this guidance, the SEC staff noted that they are mindful of the risk of providing a road map to cybercriminals who seek to infiltrate an issuer’s network security. No one wants that to happen. Therefore, the staff noted that detailed disclosures that could compromise cybersecurity efforts are not required under the federal securities laws.
CONTENT AREA: Regulatory Updates
TOPICS: Financial Reporting, Information Technology Risk, Security, Network & Internet Security, Privacy

October 24, 2011
The Volcker Rule: The End of Proprietary Trading?
The United States, the Federal Reserve Board, the Office of the Comptroller of the Currency, the Federal Deposit Insurance Corporation, and the Securities and Exchange Commission coordinated the release of proposed regulations implementing the “Volcker Rule” as part of the Dodd-Frank Wall Street Reform and Consumer Protection Act. If enacted as written, these regulations, in addition to restricting bank investments in hedge and private equity funds, will likely achieve the primary goal of forcing insured depository institutions, bank holding companies, as well as their subsidiaries and affiliates to exit the proprietary trading business.
CONTENT AREA: Regulatory Updates
TOPICS: Cash & Treasury, Financial Services Industry, Compliance, Dodd-Frank Act, Laws & Regulations

October 17, 2011
New Risk-Assessment Audit Standards Seek to Spotlight Fraud
Companies can expect more scrutiny from their audit firms this coming annual report season, thanks to new standards the audit firms must meet to assess risk, including the risk of fraud. "We have to quit treating fraud risk as a bolt-on, as if it's an exercise separate from the others," says James Comito of audit firm Mayer Hoffman McCann. A look at the new standards is inside.
CONTENT AREA: Articles
TOPICS: Risk Assessment, External Auditor, Ethics, Fraud

October 17, 2011
Poll: Ten major challenges for 2012
This week’s poll question asks: Which of these challenges is the most important for your organization in 2012?
CONTENT AREA: Polls
TOPICS: Enterprise Risk Management, Financial Services Industry, Audit Committee & Board, Audit Planning

October 17, 2011
Product Lifecycle Management: A New Path to Shareholder Value?
Manufacturers are implementing a powerful, enterprise-wide software solution known as product lifecycle management (PLM) – complementary to ERP — to manage the product's digital life. PLM is a flexible, dynamic environment that can manage product knowledge and data as it flows from and to a wide variety of sources. It gives companies the power and flexibility to innovate and then deliver more value through management of information.
CONTENT AREA: Articles
TOPICS: Materials Management & Inventory, Revenue, Supply Chain, Automotive Industry, Manufacturing & Distribution Industry, Cost Management, Intellectual Property, Performance Management/Measurement

October 17, 2011
Setting the 2012 Audit Committee Agenda for Financial Institutions
Industry restructuring, technological advances and globalization of financial markets have increased competition and the importance of brand differentiation in the financial services industry. Changing risk profiles and regulatory demands are driving new challenges and complexities for financial services executives and directors to address. Volume 3, Issue 8 of FS Insights provides observations for consideration by boards and audit committees of financial institutions.
CONTENT AREA: Newsletters
TOPICS: Enterprise Risk Management, Financial Services Industry, Audit Committee & Board, Audit Planning, Security, Privacy

October 17, 2011
Setting the 2012 Audit Committee Agenda for Non-Financial Services Companies
Over the past year, the economic environment has shown signs of stabilizing; but recent events suggest the seas are likely to remain choppy for some time to come. There are many factors contributing to the uncertainty businesses face as they look to the future. Volume 4, Issue 9 of The Bulletin explores these issues and provides observations for boards and their audit committees to consider.
CONTENT AREA: Newsletters
TOPICS: Supply Chain, Internal Audit, Audit Committee & Board, Continuous Auditing, Performance Management/Measurement

October 17, 2011
The General DP Directive and Transfer of Personal Data to Third Countries
This section of "The Global Privacy and Information Security Landscape: Frequently Asked Questions" focuses on what the General DP Directive means to companies outside Europe. Topics covered include: What if there is conflicting opinion between the European Commission and the member state with regard to the adequate level of protection? Are there any exceptions that allow the transfer of data to a third country that does not ensure an adequate level of protection? And, what options are available to organizations when transferring personal data out of EU countries?
CONTENT AREA: Questions & Answers
TOPICS: Cross Border & Non-US Issues, European Union, Security, Investigations/Forensics, Security Management Practices, Laws & Regulations, Privacy

October 10, 2011
Forty Hard-Won Business Continuity Lessons from the 2011 Earthquakes in New Zealand and Japan
Drawing mainly on news coverage of the earthquakes in Christchurch, New Zealand and the Sendai region of Japan earlier this year, this article presents a series of forty generally applicable lessons for business continuity management.
CONTENT AREA: Articles
TOPICS: Business Continuity Management, Disaster Recovery, Operations Security, Physical Security