Shahla Raei wrote a new post, New York Department of Financial Services Issues Final Cybersecurity Regulation, on the site MIS5208 Spring 2017 5 months, 3 weeks ago
New York Department of Financial Services Issues Final Cybersecurity Regulation
On February 16, 2017, New York’s Department of Financial Services (DFS) issued the “first-in-the-nation” cybersecurity reg […]
You are right! the greatest impacts on audit from millennials is in IT aspect. Managers would benefit from their strong technology literacy. Technology is one of the biggest drivers of change in organizations and millennials like to work in challenging environment. They seek ever-changing tasks within their work and cannot tolerate…[Read more]
Millennials are the technological and connected generation. In Audit Assurance profession, Managers can take advantage of their comfort level with teams.
We millennials used to working in groups and teams, we have experienced team success and like to network around the world electronically.
Audit and Assurance profession need to have strong…[Read more]
Well said, your comment to this question is pointing to what I mentioned about question 2, from an Audit perspective , auditors that have deep and detailed knowledge about technology “The Geek”, can waste an excessive amount of the auditees’ time on irrelevant and negligible subjects.
Also I was thinking about recruiting process for A…[Read more]
My answer to this question is “how technology impacts an organization”.
In the current dynamic and turbulent business environment, Information Technology is considered a very competitive advantage. One of the main requirements for obtaining benefits from investing in IT, is strategic alliances with business and technology. Alignment imp…[Read more]
From my point of view, the worst type of auditor from Ed Glebstein’s list is “Well connected”.
It was just last week that our senior audit manager in our department (Internal audit) asked us to complete an annual affirmation survey. Questions were based on the definition of internal auditor code of ethics. They asked if we have any relat…[Read more]
Paul Thank you so much for sharing this information it was helpful and I added my screen shot in to media section of our blog. here is the link to it .
I have experience working with Microsoft SQL and PLSQL Developer, and this information will help me to love working…[Read more]
This article is talking about audit management solutions and how the security and risk management leaders can improve productivity and manage the internal auditor’s role by facilitating audit management s […]
Very Interesting topic, and as Sean mentioned to a good point that the trend of data analytics that being outsourced is growing.
I believe If the data is critical to the company’s business survival, it should be kept in-house. Other analytics can be outsourced.
I found a related example about your topic online:
Example is r…[Read more]
Nice topic, Unethical behavioral!
Based on my research, Financial regulation cannot prevent this kind of scandal. Finally it is human nature at the root of this problem. In this case I’ve found out that Wells Fargo had a two-day ethics workshop in 2014 explicitly telling their employees not to create fake customer accounts. However, the…[Read more]
Interesting topic, Use of AI is not a new concept. AI solutions can be used to improve security across a number of business in financial industries. Organizations rely on AI to trace steps by analyzing the behaviors of transactions and devices. Based on my research I found an article released on December 2016, stating that master card…[Read more]
Shahla Raei wrote a new post, week 2 – Fraud Detection – Introducing useful website, on the site MIS5208 Spring 2017 6 months, 2 weeks ago
Based on our last week topic I found this website interesting.
The ACFE (Association of certified fraud examiners). The ACEF is the world’s largest anti-Fraud organization. And providing anti-fraud training t […]
Very interesting site for sure. Some of the items listed under the ‘initial detection of occupational fraud’ tab reminds me of a situation my wife encountered. My wife worked for a large credit union; she was the regional manager for the state of New Jersey. One of her branches had an issue which required an immediate audit of the branch. From what I remember, the initial error was not major infraction, however the management was bound by policy and procedures to conduct an internal audit of the branch. Well, during the audit, the regional manager (my wife) discovered that controls were being ignored and procedures were being bypassed. And as luck would have it, the audit uncovered a major act of fraud (attempted on the very day of the impromptu audit!). A teller falsified a ledger from the cash vault and attempted to steal $5000 in $20 bills. In all likelihood, the theft would have been discovered at a later time. However, due to violations in procedures, finding out who committed the fraud and how the theft occurred would have been more challenging then it had to be. Ultimately, surveillance cameras revealed one suspicious movement of the guilty teller which led to the stashed $5,000.
So, as indicated on the ‘detection’ tab of the website you posted, internal audits can and do lead to exposing fraud.
My name is Shahla Raei and I am currently an Internal IT Auditor Intern at Chubb. I am part time student, and will be graduating on June 2017. I am originally from Tehran, Iran. I majored in Computer Software […]
This week topic was related to web application security, I found this news related to our topic.
The websites of seven of India’s embassies were hacked some data pertaining to Indian citizens leaked online by the attackers claiming responsibility. The hackers say they wanted to call attention to the sites’ vulnerabilities.
Indian embassies…[Read more]
very comprehensive comment on this question, I just wanted to point out the maintenance. keep stand alone application, uptodate is one of the main concerns. Maintenance of web application is much easier than desktop based application, you have to update it on each single computer or platform that its installed.
Web application security is much more challenging than desktop based application. With infrastructure you can usually identify the problem.
– More risks associated with web application than desktop applications. On desktop based and standalone applications you can put more control to protect it from various vulnerabilities. In web application…[Read more]
Online Ad Industry Threatened by Security Issues
In this article mentioned nowadays Cybercriminals are looking for powerful alternatives and now targeting ad industries.
The online advertising industry is at an inflection point, also ad blockers and potential regulation are considering a risk. It’s facing a big security problem, and associated…[Read more]
Correct, I wanted to mention to this week assignment and submitting our presentation. our team come up a solution to help company identify their sensitive information. one of the document we ask them to prepare it for the future meeting was organizational chart. I think this chart is an important chart in an organization and help auditor…[Read more]
Its is really an interesting point , and privacy is an important concept, specifically in 21st century, Now a days has become the century of Big Data and Information Technology allows for the storage and processing of big data. so testing the Privacy effectiveness is always matter.
- Load More