TOP TECHNOLOGY CHALLENGES AND THE RELATIONSHIP TO THE AUDIT PLAN. ISACA/Protiviti 6 th Annual IT Audit Benchmarking Survey March 15, 2017 Webinar

Similar documents
Are your company and board ready for digital transformation?

THE INTELLIGENT REFINERY

Is housing really ready to go digital? A manifesto for change

The Citizen View of Government Digital Transformation 2017 Findings

HARNESSING TECHNOLOGY

Venture Capital Search Highlights

Angelo Valletta. Most recently, Angelo has been awarded the following:

DIGITAL TRANSFORMATION LESSONS LEARNED FROM EARLY INITIATIVES

The Content Experts EDITORIAL CALENDAR 2018

Date: Friday, March 24, 2017 Time: 8:30 AM 4:30 PM Location: Baruch College 55 Lexington Avenue, NYC

Growth and Complexity of Real Estate

Digital Government Imperatives of the United Arab Emirates: 92% of Emirati Respondents Believe Online Government Services Have Improved Since 2014

DIGITAL GOVERNMENT TRANSFORMATION

2018 IIF ANNUAL MEMBERSHIP MEETING

Korn Ferry Civil Aviation Practice

THE AGILITY TRAP Global Executive Study into the State of Digital Transformation

Christopher Kunney, CPHIT, MSMOT Executive Healthcare IT Strategist Phone: LinkedIn: Twitter:

Jane Lewis-Raymond Counsel

Digital Disruption Thrive or Survive. Devendra Dhawale, August 10, 2018

In this issue: Current Market Dynamics and Future Growth Trends for Smart Water Metering in the United States

THE C-SUITE TECHNOLOGY AGENDA

Gender pay gap reporting tight for time

Security services play a key role in digital transformation for higher education

Webinar: Perspectives on Board Evaluation Best Practices. March 1, 2018

Bridging law and technology

The Future of Growth and the Energy Industry

FUTURE NOW Securing Digital Success

Creating a Competitive Advantage for REITs

Enhancing Audit Quality and Transparency Supplement Additional information required by Article 13 of EU Regulation 537/2014

2018 IIF ANNUAL MEMBERSHIP MEETING

Pro Bono Strategic Plan 03/07/05

2015 Real Estate Industry Update A landscape for change: Transforming for the future

LETTER FROM THE EXECUTIVE DIRECTOR FOREWORD BY JEFFREY KRAUSE

Smart Cities. Smart Cities Indicator Survey Highlights

America at Risk: CyberSecurity and US Election Impact

TLC ENGINE. Our complete Digital Change Management platform. Training. Testing. Certification. Compliance. Communication

Ethics and technology

SPECIAL FEATURE. Supporting Food Demands and Driving Business Growth FUJITSU. Mansour Zadeh, Global CIO, Smithfield Foods, Inc.

INDUSTRY X.0 UNLOCKING THE POWER OF DIGITAL IN PLANT OPERATIONS

Becoming board ready: Lessons learned for potential board candidates

The Deloitte Innovation Survey The case of Greece

Board composition Technology

Privacy and the EU GDPR US and UK Privacy Professionals

The Leader's Challenge: Leading The Technology Imperative In A Provider Organization

TECHNOLOGY ASSESSMENT STRATEGIC PLAN MISSION STATEMENT VISION STATEMENT

ART CONSULTANT CAREER GUIDE

Connecting Commerce. Professional services industry confidence in the digital environment. Written by

ACCELERATING TECHNOLOGY VISION FOR AEROSPACE AND DEFENSE 2017

AARHUS UNIVERSITY 14. NOVEMBER 2013 EXCHANGE YOUR KNOWLEDGE KURT NIELSEN - VICE DEAN INNOVATION COLLABORATION AT AU WHY AND HOW? knowledge.

Protection of Privacy Policy

MARITIME MANAGEMENT MASTER S DEGREE (ONLINE) Train for a leading role in maritime-based organizations.

The Co-investment Climate in Private Equity

Smart cities: A human-centered approach Engineering and Construction Conference June 20 22, 2018

«INTERNAL AUDITORS AND AUDIT COMMITTEES» Key Elements for sound Corporate Governance

INDUSTRY & INSTITUTION ENGAGEMENT 2017 EVENT ANALYSIS

2016 Smart Cities Survey Summary Report of Survey Results

Draft executive summaries to target groups on industrial energy efficiency and material substitution in carbonintensive

twitter.com/twc_rp Research Announcement

Information & Communication Technology Strategy

MORE POWER TO THE ENERGY AND UTILITIES BUSINESS, FROM AI.

Get Compliant and Stay Compliant with Department of Labor (DOL) Final Rule Fiduciary Regulations. White Paper

EU Support for SME Innovation: The SME Instrument

Election Notice. Upcoming FINRA Board of Governors Election. April 27, Petitions for Candidacy Due: June 11, 2015.

Embracing a Digital Future Vanson Bourne research findings & benchmark methodology

July PwC Irish 2017 Digital IQ Survey

Skills for Digital Transformation Research Report Patrick Hoberg Helmut Krcmar Bernd Welz. In Collaboration with

Six Steps to MDM Success

OUR COMMITMENT TO YOU

2015 Real Estate Industry Update A landscape for change: Transforming for the future

Board of Directors Meeting In Person June 27 and 28, Vancouver, BC

Innovation Report: The Manufacturing World Will Change Dramatically in the Next 5 Years: Here s How. mic-tec.com

Over the 10-year span of this strategy, priorities will be identified under each area of focus through successive annual planning cycles.

CORGI News. Are you focusing on your personal development? Electrical Safety Awareness in Social Housing CORGI. Expect more from CORGI.

Executive Master in Digital Transformation & Innovation Leadership Digital up-skilling to transform and lead in business.

Building a Sustainable Business and Financing Plan

WFEO STANDING COMMITTEE ON ENGINEERING FOR INNOVATIVE TECHNOLOGY (WFEO-CEIT) STRATEGIC PLAN ( )

The future of the legal profession survey

Industry at a Crossroads: The Rise of Digital in the Outcome-Driven R&D Organization

DISRUPT DEVELOP DEMONSTRATE SEPTEMBER 2018 MUMBAI

The Technology Economics of the Mainframe, Part 3: New Metrics and Insights for a Mobile World

Career Pathways Talk - 28 July 2016 (Thursday) 2015 ISCA

Supplement to Form ADV Part 2 Form ADV Part 2B

UNLOCKING THE VALUE OF SASB STANDARDS

CERN-PH-ADO-MN For Internal Discussion. ATTRACT Initiative. Markus Nordberg Marzio Nessi

Globalization, Sustainability and Innovation

The role of internal audit in business innovation. Alessio Miranda Chief Audit Executive ING Group

Sparking a New Economy. Canada s Advanced Manufacturing Supercluster

Cognizanti. Illuminating the Digital Journey Ahead. The First Word. An annual journal produced by Cognizant VOLUME 10 ISSUE

Industry 4.0: the new challenge for the Italian textile machinery industry

2017 Global Digital IQ Survey: 10th anniversary edition. A decade of digital Keeping pace with transformation

The State of Influencer Marketing 2018

MINUTES METROPOLITAN TRANSIT AUTHORITY BOARD OF DIRECTORS REGULAR BOARD MEETING FEBRUARY 21, 2008

Disruption is the new norm

Empirical Research Regarding the Importance of Digital Transformation for Romanian SMEs. Livia TOANCA 1

NASA s Down- To-Earth Principles Deliver Positive Strategic Outcomes

Webinar: A Northwest Vision for 2040 Water Infrastructure. Innovative Pathways, Smarter Spending, Better Outcomes

Removing all roadblocks be ready to have offers out on the same day as the interview

technologies, Gigaom provides deep insight on the disruptive companies, people and technologies shaping the future for all of us.

HARVESTING ROI FROM YESTERDAY S TECH INVESTMENTS HARVESTING ROI FROM YESTERDAY S TECH INVESTMENTS

GOVERNMENT RESOLUTION ON THE OBJECTIVES OF THE NATIONAL INFORMATION SOCIETY POLICY FOR

Transcription:

TOP TECHNOLOGY CHALLENGES AND THE RELATIONSHIP TO THE AUDIT PLAN ISACA/Protiviti 6 th Annual IT Audit Benchmarking Survey March 15, 2017 Webinar

A REMINDER 1 We are recording today s webinar and it will be available for ondemand viewing following the live event. 2 If you are experiencing technical difficulties during the webcast, let us know by submitting questions through the Q&A area of your screen. 3 We encourage you to submit your questions throughout the webcast. We will address as many questions as possible during the dedicated Q&A event. 2

CPE CREDIT We are offering 1.0 CPE credit for this 60-minute webinar. To be eligible to receive this credit, please ensure you answer at least three (3) out of the four (4) polling questions. You will receive the CPE certificate via email approximately two (2) weeks after the webinar date. Conference Dial-In Numbers: Code #: 13657493 Participant (Toll-Free): 866-604-1616 Participant (Toll): 201-689-8043 3

TODAY S SPEAKERS Ed Moyle Ed is currently Director of Thought Leadership and Research for ISACA. Prior to joining ISACA, Ed was senior security strategist with Savvis and a founding partner of the analyst firm Security Curve. In his 20 years in information security, Ed has held numerous positions including: senior manager with CTG's global security practice, vice president and information security officer for Merrill Lynch Investment Managers, and senior security analyst with Trintech. Ed is co-author of Cryptographic Libraries for Developers and a frequent contributor to the Information Security industry as author, public speaker, and analyst. Emoyle@isaca.org 4

TODAY S SPEAKERS Gordon Braun Gordon is a Managing Director at Protiviti where he leads the Kansas City office and the global IT audit practice. For over seventeen years, Gordon has been providing risk consulting services across several industries. He is an active leader of Protiviti s central region internal audit practice and has a particular focus on assisting clients with the assessment and management of business risks associated with the deployment and maintenance of technology. Gordon has served as an engagement leader on multiple outsourced and co-sourced internal audit engagements. Gordon.Braun@protiviti.com 5

TODAY S SPEAKERS David Brand David is a Managing Director and market leader in Protiviti s Atlanta office. He also leads Protiviti s southeast region. He has over 20 years experience working with companies across multiple industries in the areas of IT auditing, computer-assisted auditing techniques, audit formation, risk assessments and audit committee reporting. David.Brand@protiviti.com 6

OUR JOINT STUDY 6th Annual IT Audit Benchmarking Survey The IT audit function has never held a more crucial role. From substantial cybersecurity, privacy and infrastructure challenges and management issues to the implementation of new technologies in the organization, IT auditors work closely with management and the board of directors to fulfill a vital role in helping maintain an effective control environment amid a changing business climate and dynamic global marketplace. The results of the latest IT Audit Benchmarking Study from ISACA and Protiviti illustrate the increasingly integrated role IT audit leaders and professionals are assuming in regard to technology initiatives in their organizations. 7

AGENDA FOR TODAY 1 ISACA and Protiviti partnered to conduct the sixth annual IT Audit Benchmarking Survey in the third quarter of 2016. 2 This global survey, conducted online, consisted of a series of questions covering five categories: Today s Top Technology Challenges Audit s Involvement in IT Implementation Projects IT Audit in Relation to the Internal Audit Department Assessing IT Risks Audit Plan Skills and Capabilities 8

AGENDA FOR TODAY 3 More than 1,000 executives and professionals, including chief audit executives as well as IT audit vice presidents and directors, completed the online questionnaire. 4 Today we will discuss: Key findings from the 6th Annual IT Audit Benchmarking Survey The top 10 technology challenges surfaced by the benchmarking participants How do these technology challenges relate to the internal audit plan? 9

KEY FINDINGS FROM THE IT AUDIT BENCHMARKING SURVEY

KEY FINDING #1 CYBERSECURITY CYBERSECURITY IS VIEWED AS THE TOP TECHNOLOGY CHALLENGE 01 This has been a highly ranked challenge in our prior years surveys, but still has increased in the importance and clearly is the top-of-mind concern for IT audit leaders and professionals. These results are consistent with the results of Protiviti s annual survey of technology leaders, which show that IT security and incident response capabilities dominates the priority lists for CIOs. 11

KEY FINDING #2 EXECUTIVE-LEVEL INTEREST THERE APPEARS TO BE MORE EXECUTIVE-LEVEL INTEREST IN IT AUDIT 02 A majority of IT audit leaders are regularly attending audit committee meetings, and many more are reporting directly to the CEO (though this reporting relationship may not be ideal). There also is more audit committee involvement in the IT audit risk assessment process. 12

KEY FINDING #3 CAE LEADERSHIP MORE CAES ARE BEGINNING TO CARRY LEADERSHIP FOR IT AUDIT DIRECTLY 03 CAEs are becoming increasingly IT-literate and appear to be taking on the daily management and leadership of the IT audit function, especially given technology s importance and risk level in most organizations. This is a positive trend as it provides the IT audit function and responsibilities with greater visibility. 13

KEY FINDING #4 KEY TECHNOLOGY PROJECTS MOST IT AUDIT SHOPS HAVE SIGNIFICANT OR MODERATE LEVEL INVOLVEMENT IN KEY TECHNOLOGY PROJECTS 04 While it is encouraging to find some involvement in the early stages of a project such as planning and design, IT audit functions are more frequently involved post-implementation. Given that a strong majority of organizations have implemented a new IT system or application within the past three years, there likely are opportunities for IT audit to become more involved earlier on with these initiatives. 14

KEY FINDING #5 IT AUDIT RISK ASSESSMENTS MOST PERFORM IT AUDIT RISK ASSESSMENTS, THOUGH A MAJORITY DO SO ANNUALLY OR LESS FREQUENTLY 05 Considering the growing risk landscape resulting from cybersecurity threats and merging technologies, more organizations should consider an approach that includes continually reviewing the IT risk landscape and adjusting IT audit plans accordingly. 15

TOP TECHNOLOGY CHALLENGES AND THE RELATIONSHIP TO THE AUDIT PLAN

TODAY S TOP TECHNOLOGY CHALLENGES 01 IT security and privacy/cybersecurity 06 Budgets and controlling costs 02 Infrastructure management 07 Cloud computing/virtualization 03 Emerging technology and infrastructure changes transformation, innovation, disruption 08 Bridging IT and the business 04 Resource/staffing/skills challenges 09 Project management and change management 05 Regulatory compliance 10 Third-party/vendor management 17

TODAY S TOP TECHNOLOGY CHALLENGES 01 IT SECURITY AND PRIVACY/CYBERSECURITY PRIOR YEAR RANK: #2 HOW DOES THIS IMPACT THE AUDIT PLAN? The global risks in this area have never been higher, and the magnitude is almost certain to intensify in the months and years to come. Cybercriminal activity against global companies surged in the past year, and there are growing signs suggesting that a form of global cyberwar has commenced. 18

TODAY S TOP TECHNOLOGY CHALLENGES 02 INFRASTRUCTURE MANAGEMENT PRIOR YEAR RANK: #4 HOW DOES THIS IMPACT THE AUDIT PLAN? IT infrastructure management has become a major challenge for organizations, particularly those that have aging cores of outdated information systems. A growing number of these organizations are electing to modernize their aging cores to achieve both increased agility and significant long-term savings in costs and resources. 19

TODAY S TOP TECHNOLOGY CHALLENGES 03 EMERGING TECHNOLOGY AND INFRASTRUCTURE CHANGES TRANSFORMATION, INNOVATION, DISRUPTION PRIOR YEAR RANK: #1 HOW DOES THIS IMPACT THE AUDIT PLAN? The most common drivers of transformational initiatives often include new functionality, cost optimization, operational improvement, adoption of emerging technology, and alignment between the IT organization and the business. It is important to understand IT transformation obstacles in the context of the unique challenges for your organization and industry. 20

TODAY S TOP TECHNOLOGY CHALLENGES 04 RESOURCE/STAFFING/SKILLS CHALLENGES PRIOR YEAR RANK: #3 HOW DOES THIS IMPACT THE AUDIT PLAN? In today s market, it s a challenge to find qualified and experienced IT auditors, and talent levels are below where many organizations want them to be. Not only was this noted by respondents as one of today s top IT challenges, this is supported in numerous results within the survey. 21

TODAY S TOP TECHNOLOGY CHALLENGES 05 REGULATORY COMPLIANCE PRIOR YEAR RANK: #9 HOW DOES THIS IMPACT THE AUDIT PLAN? Increasing, and increasingly sophisticated, cyberattacks will likely result in more regulations and oversight, as governments and regulatory authorities seek to bolster protections of consumer and organizational data. This is especially an issue for organizations in highly regulated industries. 22

TODAY S TOP TECHNOLOGY CHALLENGES 06 BUDGETS AND CONTROLLING COSTS PRIOR YEAR RANK: #10 HOW DOES THIS IMPACT THE AUDIT PLAN? IT budgets are rising. Investments in running IT operations and maintaining technology through the business consume large portions of IT budgets, often followed by investments in improvements and innovation, security and compliance. 23

TODAY S TOP TECHNOLOGY CHALLENGES 07 CLOUD COMPUTING/VIRTUALIZATION PRIOR YEAR RANK: #5 HOW DOES THIS IMPACT THE AUDIT PLAN? Cloud adoption and virtualization will continue to take place in the coming years. The widespread adoption of infrastructure as a service, software as a service and platform as a service will require significant planning and changes. 24

TODAY S TOP TECHNOLOGY CHALLENGES 08 BRIDGING IT AND THE BUSINESS PRIOR YEAR RANK: #6 HOW DOES THIS IMPACT THE AUDIT PLAN? Technology risk is a significant component of critical enterprise risks. It is important that internal audit understand the technologyrelated risks that present threats to the business model. Audit should follow these developments closely because of the potential audit and disclosure implications they may have. 25

TODAY S TOP TECHNOLOGY CHALLENGES 09 PROJECT MANAGEMENT AND CHANGE MANAGEMENT PRIOR YEAR RANK: #7 HOW DOES THIS IMPACT THE AUDIT PLAN? In organizations today, there is a growing number of critical initiatives underway as they undergo the types of IT transformation, cloud, digitization and big data projects. However, there are significant roadblocks, both technological (legacy systems and processes) and cultural (change management problems and skills gaps) in nature. 26

TODAY S TOP TECHNOLOGY CHALLENGES 10 THIRD-PARTY/VENDOR MANAGEMENT PRIOR YEAR RANK: NA HOW DOES THIS IMPACT THE AUDIT PLAN? Organizations that rely on IT service providers have found that they must increase the maturity of their vendor management processes. Managing infrastructure is changing as operations and services shift to the cloud. 27

ARE THESE TOP TECHNOLOGY CHALLENGES ADDRESSED IN THE AUDIT PLAN? 01 IT security and privacy/cybersecurity 06 Budgets and controlling costs 02 Infrastructure management 07 Cloud computing/virtualization 03 Emerging technology and infrastructure changes transformation, innovation, disruption 08 Bridging IT and the business 04 Resource/staffing/skills challenges 09 Project management and change management 05 Regulatory compliance 10 Third-party/vendor management 28

QUESTIONS? 29

THANK YOU FOR ATTENDING Visit www.protiviti.com/itauditsurvey to download the publication. Visit www.isaca.org/2017itauditstudy to download the publication. 30

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback