Verizon Report Shares Insights After Analyzing 47,000 Data Breaches

Posted on Dec 14, 2013

Verizon’s 2013 Data Breach Investigations Report analyzes thousands of 2012 incidents, using data supplied from a variety of partners (including police and other agencies in Holland, Malaysia, Australia, Denmark, Spain, Ireland, and the United States). They were limited to data breaches reported to third parties. The 47,000 incidents led to 621 actual data breaches. 

continue reading...

How to Build an IT Audit Plan

Posted on Dec 7, 2013

This post is primarily for IT auditors, but its philosophy applies equally to those charged with assessing so-called IT risk.

continue reading...

Does Your Internal Audit Department Understand All the Tools It Has?

Posted on Dec 2, 2013

Earlier this year, I appeared on an IIA AuditChannel.tv video “Rethink Your Approach to Technology.” I spoke to the need to look first at what your organization already owns and is using before acquiring solutions specifically for internal audit. Too few internal audit departments understand how they can use technology for analytics and business intelligence for their own data mining, continuous auditing, and monitoring. I am interested in your views on the advice I provided in the video. 

continue reading...