• Search in Protiviti.com

Insight Search

Sort by:

  • Whitepaper

    March 31, 2021
    Fair Lending and Servicing Practices Face Deeper Scrutiny Under New Administration - Top of Mind Compliance Issues for 2021
    New presidential administrations often establish new demands and priorities with regard to addressing and enforcing current regulations based on their own priorities. The latest change in the White House, with the Biden administration assuming control, has been no exception. Whereas the Trump administration scaled back enforcement of financial regulations in a number of areas, including but not…

  • Whitepaper

    October 5, 2020
    Private Equity and Cybersecurity – Gaining a Holistic View
    An emerging trend among private equity firms is their growing attention to the remediation, monitoring and reporting of cybersecurity capabilities of the companies in their portfolios. Historically, they have not fully appreciated the varying degrees of cybersecurity risk relative to a company’s specific industry. And understandably, the emphasis on investing in promising businesses and improving…

  • Whitepaper

    June 24, 2022
    PCI Security Standards Council Publishes New Versions of Self-Assessment Questionnaires
    On April 29, 2022, the PCI Security Standards Council (PCI SSC) released new versions of the PCI DSS Self-Assessment Questionnaires (SAQs) ahead of the anticipated June 2022 release timeline. After the release of the new version of PCI DSS 4.0 a month prior, the new versions of the SAQs have been updated to reflect changes in the standard, as well as to adjust requirements applicable for…

  • Whitepaper

    July 12, 2021
    Top 10 pitfalls of an IAM programme
    In spite of over 20 years of experience as an industry, Identity & Access Management (IAM) programmes continue to struggle — and with good reason. There is a lot that can go wrong with an IAM programme. Lack of funding, treating IAM like a project and not a programme, not having business buy-in, and trying to overly customise packaged software are all examples of significant challenges that…

  • Whitepaper

    July 13, 2021
    How to implement an effective identity management strategy
    Identity management doesn’t happen overnight; there’s no “Easy” button to press, or magic snap-of-the-fingers instant fix. In fact, identity management has transformed into something far more complex than password authentication and simple security measures. It’s important to understand that jumping into a new technology instantaneously isn’t necessarily the right first step to ensuring a…

  • Newsletter

    May 10, 2022
    SIFMA Quantum Dawn VI
    A Decade of Testing and ResilienceOver the past 10 years, the Securities Industry and Financial Markets Association (SIFMA) has coordinated a series of industrywide resilience exercises known as Quantum Dawn. These exercises provide a forum for financial firms, regulatory bodies, central banks, law enforcement, government agencies, trade associations and information-sharing organisations to…

  • Whitepaper

    February 21, 2023
    ISO 27001: 2022 - Key Changes and Approaches to Transition
    This article will address the changes and updates to ISO 27001 standard published on October 25, 2022, and the approaches organisations can take to implement the changes introduced. There have been significant advancements in technology, as well as an increase in the complexity of security threats since the last iteration of ISO 27001 was published on September 25, 2013. The changes introduced in…

  • Flash Report

    April 28, 2022
    Protecting your organisation from insider threats in a changing world
    Cybersecurity threats are growing exponentially as companies introduce an increasing number of Internet of Things (IoT) devices into operations and collect and store an ever- escalating amount of data. This technology and data sprawl is providing bad actors with more entry points into networks and systems. Too often, organisations have failed to make commensurate investments in data protection,…

  • Whitepaper

    June 1, 2022
    How can an enterprise use access management to establish a Zero Trust environment?
    A hybrid RBAC, ABAC and PBAC framework is the best practice approach A strong access management programme is foundational to establishing a Zero Trust environment by using contextual information to continuously validate that users are who they say they are and by restricting user access to necessary resources only. Within the Zero Trust framework, identity governance and risk-based…

  • Flash Report

    July 17, 2020
    European Court of Justice Invalidates the EU-US Privacy Shield Framework
    July 17, 2020 On Thursday, July 16, the Court of Justice of the European Union (CJEU) implemented a landmark ruling in case C-311/18 - Data Protection Commissioner v Facebook Ireland and Maximillian Schrems (more commonly referred to as “Schrems II”). While it concluded that Standard Contractual Clauses (SCCs) issued by the European Commission…
Loading...