Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Flash Report June 3, 2022 SEC Cybersecurity Disclosure Enhancements: They’re Coming, in One Form or Another Three months ago, the U.S. Securities and Exchange Commission (SEC) proposed amendments to its rules on cybersecurity risk management, strategy, governance and incident reporting by public companies subject to the reporting requirements of the Securities Exchange Act of 1934. The SEC’s view is that cybersecurity threats and incidents pose an ongoing threat to public companies, investors and… Client Story June 16, 2023 Leading Biotechnology Company Enhances AWS Environment Security and Risk Control A leading biotechnology company that develops life-transforming medicines has worked for decades to improve the lives of those who rely on their work. But recently, they found themselves in need of assistance to enhance the security of their AWS environment. Client Story June 16, 2023 Blockchain/Web3 Startup Blocks Gaps and Improves AWS Security Posture A blockchain/web3 startup engaged Protiviti to review their AWS environment. While getting the product to market as fast as possible was a primary goal for the client, security was an afterthought in many scenarios. To address this need and prevent a potential catastrophic security event, the client wanted a quick and consistent way to understand where their security gaps were and how they could… Whitepaper July 22, 2022 AML and Data Governance Issue Financial institutions have invested significant time, money and resources into developing and maintaining anti-money laundering (AML) compliance programs. One key enabler of an AML compliance program is the software used to review customers, analyze transactions to identify suspicious activities, and provide analytical and research capabilities to support the filing, or non-filing, of… Newsletter February 12, 2021 Implementing Operational Resilience Across the Organization: An Essential Checklist Like any enterprisewide organizational change, implementing an operational resilience program across an organization requires a careful and collaborative effort to be successful. Whether implementation has been in the works for several years or is just beginning, turning the resilience program from concept to reality is hard work. Except for the most dynamic and change-oriented organizations,… Flash Report March 23, 2022 The War in Ukraine: Globalization Takes Another Hit Since the crisis in Ukraine began, Protiviti has issued three Flash Reports. The first addressed Vladimir Putin’s initial foray into two Ukrainian regions with “peacekeeping forces,” the West’s initial wave of sanctions and the implications for companies worldwide. The second reported on the unprovoked all-out invasion of Ukraine, the economic fallout and other actions ostracizing Russia from the… Whitepaper June 29, 2020 Managing Financial Crime Risks in a Changing Economic Environment U.S. Edition | June 2020 Financial Crime Risks in the Current Climate The current economic and business climate is a new frontier for financial institutions seeking to navigate challenges posed by deteriorating market conditions, customer anxiety and the ever-watchful eyes of industry regulators. Concurrently, bad actors that pose an ongoing threat are also discovering new channels of… Flash Report December 18, 2020 SolarWinds Vulnerability Update – Indicators of Compromise and Recommended Actions The news of the cyber attacks being experienced by government agencies and an expanding list of organizations continues to grow and change on almost an hourly basis. This is proving to be potentially one of the most significant cyber breaches in recent times. Following up on our December 14, 2020, Flash Report on the CISA advisory, and in response to numerous questions and inquiries we continue… Flash Report December 14, 2020 CISA Issues Emergency Directive to Mitigate SolarWinds Orion Code Compromise On December 13, 2020, the Cybersecurity & Infrastructure Security Agency (CISA) issued an emergency directive detailing required action for federal agencies to mitigate the threat of the recently discovered compromise involving SolarWinds® Orion® Network Management products that are currently being exploited by malicious actors. (Read the SolarWinds Security Advisory here.) Given the nature… Client Story April 9, 2021 Global Chocolatier Adopts Privacy Technology to Prevent Data Exposure Data privacy has become a strategic priority as companies adapt to comply with rapidly proliferating data privacy laws. Recent years have seen the adoption of the European Union’s General Data Protection Regulation (GDPR), the more recent California Consumer Protection Act (CCPA), and similar regulations. These safeguards require companies to document the types of protected personal data used in… Load More
