Organizational Governance and Risk Mitigation in a Digital WorldMohan Tanniru. Ph.D.Senior executives in the Forbes/Deloitte survey mentioned the following as their biggest concerns: Social media; Data mining and analytics; Mobile applications; Cloud computing; and Cyber attacks. Rethinking governance in the digital age, according to Deloitte, is moving from value protection to value creation. Such a value creation calls for a better mangement of customer journey, according to McKinsey, and this calls for a careful understanding of on-line presence, managing the digital media process, and engaging customer carefully to both recognize and address various risks. The digital services developed to support such a customer jouney calls for an agile information system architecture, and this architecture has to be closely tied to an agile business architecture that is not just governing internal and external stakeholders relationships and addressing risks, but enabling the firm to creating value. Examples in health care are used to illustrate this approach.
Dr. Mohan Tanniru is the Professor of MIS in the Decision and Information Science Department of the School of Business Administration at Oakland University. He has published extensively in information technology research for the last 30 years in areas such as IT strategy, knowledge base/expert systems, decision support and business analytics, and health care delivery management. His work has appeared in journals such as ISR, MIS Quarterly, Decision Sciences, DSS, JMIS, IEEE Transactions in Eng. Management, Expert Systems and Applications, Information and Management and Communications of ACM. He has taught at the University of Arizona, Syracuse, and the University of Wisconsin-Madison, and was the Dean of the School of Business Administration and the founding director of the Applied Technology of Business Program at Oakland University.Read more >
Based on all your feedback, we are bringing Dr. Aggarwal back for another webinar. This is an introductory seminar on the major costs and risks faced by a business when it considers or engages in cross-border operations. Nevertheless, this seminar presents a powerful but intuitive and simple framework for thinking about and dealing with the challenges in globalization. Three major categories of such risks will be considered. 1) Those due to Distance, 2) Those due to Institutional Differences, and 3) Those due to Cultural Differences.
This webinar is designed to be suitable not only for executives just starting to consider globalization, but also for executives with extensive experience in global business.
How safe is your organization? With many recent, highly publicized security breaches, it’s clear that we’re all at risk. Hacking has literally become a global business with personal data at the top of the list of commodities up for sale. With all the breaches in the news, many media outlets have focused on the susceptibility of companies to malware, while ignoring other critical flaws that likely contributed to the success of these breaches. Among these are failures in common IT processes such as change management, software release control, and access control to production environments. A common thread in these flaws is most often the lack of effective governance and oversight of the information risks inherent in these processes. This webinar will help you 1) learn about some common flaws in security and IT practices, 2) understand the critical role a partnership between security and Internal Audit has in breach prevention, and 3) identify some practical steps your information security and audit teams can take to reduce risks.
According to IIA guidance, internal auditors are charged with monitoring organizational ethics and assessing whether management policies, procedures, and practices support ethical operations. And while management usually seeks to set, promote, and perpetuate an ethical climate, some leaders seem either motivated by self-interest or so focused on other operational priorities that they overlook their obligation to steward organizational ethics.
What can internal audit do to articulate this risk of unethical behavior? How can internal audit influence the tone at the top? How can internal auditors persuade management to see the value proposition for ethical leadership? This webinar addresses these questions and equips auditors, audit directors, and CAEs to make a compelling argument as to how ethical leadership drives bottom-line results.
By the end of this webinar, participants should be able to:
-Compare contrasting views of behavioral ethics
-Differentiate between moral and conditioned honesty
-Examine rationalizations commonly indicative of moral disengagement
-Explain why ethical stewardship is a primary leadership responsibility
-Correlate ethical leadership to organizational results
-Formulate a compelling argument in favor of an ethical tone at the top
Richard Cozart will provide insights into the mysteries of windows logs. He will discuss the following:
•Configuring Audit Policies
•What information is contained in windows logs?
•How to interpret the windows logs?
•Recommendations for event monitoring
•Security Information & Event Management (SIEM) Software
We all have heard that everyone should review logs, this is your chance to get details on how to do it.
From political hacktivists to international cybercrime organizations, enterprise security has been under a barrage of attacks that run the gamut of complexity. Security breaches now seem inevitable even at organizations that invest heavily in their information security operations. With numerous recent examples of cybercriminals and malware penetrating corporate networks almost at will, the role of incident response teams has been thrust into the spotlight. In this presentation I will discuss the fundamentals of incident response planning and the critical role audit has in reviewing incident response plans, documentation and the plan testing process.
At the end of this session:
You will understand:
-identify the different types of incidents
-roles and responsibilities
-team activation process
-response process flows
-response scenarios, and
-auditing incident response
We all heard of the recent hacks of Target and Neiman Marcus. Millions of consumers were affected as their Personally Identifiable Information (PII) were stolen. This incident raised a reg flag for majority of the organizations. The question is being asked: What can we do to protect our environment from such an incident? And usually the auditor is asked if the organization is prepared to protect its PII.
This webinar will identify the information each auditor must understand regarding PII and also list out the tasks each auditor must do to protect the PII.
As a member of several corporate boards, Dr. Aggarwal is well aware of the responsibilities of being a board of directors member. One of the primary responsibilities, according to Tom Horton (“Directors & Boards” author), is to secure the future of the organization. According to Mr. Horton, the very survival of the organization depends on the ability of the board and management not only to cope with future events but to anticipate the impact those events will have on both the company and the industry as a whole.”
According to Dr. Aggarwal, it is incumbent on directors to demand information and insight that will help them secure the future of the organization—which could be everything from the seemingly most innocuous moves by a competitor to the most threatening moves by a foreign nation potentate.
Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) are a couple topics about which the directors should demand information and insight. When is the last time these two topics were discussed during your board meeting? You could have discussed the succession plan of a CEO as part of business continuity. But with BCP and DRP, we are implying the readiness of your organization in event of a natural or man-made disasters.
In this webinar, Dr. Aggarwal will provide a series of ten questions which every board member must consider, and every internal auditor must be prepared to answer.
Most of you are probably excited about the new release of Apple’s operating system, iOS7. This operating system not only has enhanced user features but has several cool security features. Jeff Ingalsbe will present the key security enhancements in iOS7 and identify those features which every auditor must know and understand.
Jeff Ingalsbe is an Assistant Professor, Department Chair, and Director of University of Detroit Mercy’s “Center for Cyber Security and Intelligence Studies.” Mr. Ingalsbe runs a state-of-the-art cyber security laboratory where students gain real world competencies through exploration of cyber security problems. Until recently, Mr. Ingalsbe managed the Information Technology Security Consulting Group at Ford Motor Company. He was involved in information security solutions for the enterprise, consumerization exploration, threat modeling efforts, and strategic security research. His BSEE and MSCIS degrees are from Michigan Technological University and the University of Detroit Mercy, respectively. He is currently working on a PhD Information Systems Engineering at the University of Michigan Dearborn.
This webinar will cover the details of assessing and managing risks of changing currencies.
Some of the major topics covered in this webinar will include:
•Why Exchange Rates Change?
•Changing Exchange Rates, Trade, and Investment
•Corporate Impact of Exchanges Rate Changes
•Determining Transactions, Translation, and Economic Exposures
•Financial Hedging of Net Exchange Rate Risks
•Operational Hedging of Net Exchange Rate Risks
•Audit Considerations in Exchange Rate Risk Management