KPMG conducted penetration tests for 200 New Zealand organisations and was able to gain admin access and unauthorised access to applications and premises of all of them. So what are some lessons for local organisations?
ISACA vice president Marc Vael lists the top trends impacting IT audit and risk professionals
National security may be at stake as private businesses try to manage a growing number of cyberthreats, but IT professionals shouldn't have to bear that burden alone.
One of the biggest obstacles to improving information security within an organisation is the business executives, with the CIO being a big part of the problem, PwC's Global State of Information Security 2014 report has revealed.
How Steve Rubinow of Thomson Reuters started as a university professor with a PhD in chemistry, and moved to a succession of business technology executive roles in food manufacturing, car rental and finance.
Four New Zealand CIOs talk about key issues their teams are facing, and the new areas ICT is working on.
Tony Hayes, ISACA international president, talks about the trends that CIOs should prepare for, and the “inexcusable” high rate of failed ICT projects.
SAS made a huge difference in our ability to understand and price our risk profiles, says Carl Rajendram, manager for commercial pricing and analytics.
Mastering power, manipulation and warfare is an essential skill for today’s ICT leaders – and they can take their cue from the controversial Italian political philosopher, says Gartner analyst Tina Nunno.
For any IT pro, signing a new contract can be a daunting task. With line-of-business managers increasingly keeping a watchful eye over the IT department, IT managers need to be extra-careful about how they spend their budgets -- and who they spend it with. Now, more than ever, it's advisable to test the waters before diving straight into a big contract.
An analytics company is trying a novel approach to evaluating risk: by putting a price on it.
Data encryption could help enterprises protect their sensitive information against mass surveillance by governments, as well as guard against unauthorized access by ill-intended third parties, but the correct implementation and use of data encryption technologies is not an easy task, according to security experts.
Let's say your organization doesn't have a formal enterprise risk management program. If you're at a big company, ERM might seem daunting because of silos, inertia and so on.
Enterprise reinvention and enterprise risk management have been a challenge to implement in many large organizations. The key to unlocking the potential of both is to understand and overcome why the traditional implementation approach consistently struggles.
Business fraud committed by middle and senior management across New Zealand has increased by almost 20 percent over the past year, according to the latest PricewaterhouseCoopers Global Economic Crime Survey.
This shift is a cause for concern as senior staff have the ability to override internal controls and can potentially cause greater financial loss to organisations,” says Eric Lucas, PwC Forensic Services partner, in a press statement.