If anyone was looking for an example of the benefits that continuous controls can bring to an enterprise, the state of the U.S. economy and the fall of some of the largest, most admired financial institutions in the last couple of years provide more than enough data. And instituting a continuous controls process focusing on risks related to fraud is likely now in the plan for many companies this year.
Check out this seven-step outline, provided by Dustin Lewis, CISA, a senior technical consultant with ACL Services, Ltd. for building an analytics-based program that will allow you to focus on risks that have the greatest chance of reducing shareholder value. For example:
Plus, by focusing on reducing the risk to shareholders, you make management happy, and this can result in a more robust, long-term fraud program.
Also be sure to read Lora Bentley's interview with Peter Millar, director of technology application at ACL Services Ltd., for insights on how to interpret the emotional reaction that discoveries of fraud can create, as opposed to the casual interest many companies take in the situation.
If you want to spend more time this summer paying attention to the barbeque than your firewalls -- then it's time to get your firewalls in shape. ... More >>
There are many things that can be done with existing network infrastructure to protect against network-layer attacks. ... More >>
Tips to help ensure that your electronic document repository is 100 percent secure. ... More >>