KPMG Asks If You'll Be Ready When IT Auditors Knock
How often do you review your IT systems in preparation for internal audits - quarterly? Twice a year? Once a year? If you're not doing it at least quarterly, you might find yourself and your team at risk when the internal auditors do come calling, particularly in these times of increasing regulatory requirements, a new KPMG report says.
How often do you review your IT systems in preparation for internal audits - quarterly? Twice a year? Once a year? If you're not doing it at least quarterly, you might find yourself and your team at risk when the internal auditors do come calling, particularly in these times of increasing regulatory requirements, a new KPMG report says.While the KPMG report was based on a survey of CIOs in Europe, the Middle East, and Africa, the increasingly heavy regulatory environment here in the U.S. makes the findings relevant to U.S.-based CIOs as well.
A news story on the British website Computing says that since a primary factor behind the current global economic downturn was a liquidity crisis among many banks around the world, it is likely that governments will be stepping in to increase the level and scope of regulation above even its current levels. And IT systems will be a primary focus of the new policies and requirements:
"Because there's a perception of the lack of corporate governance, there'll be more regulation by government and agencies across different industry sectors, " warns Warren Middleton, global head of IT internal audit at KPMG. However, most organisations only audit their internal IT systems annually, and with an increase in regulation likely, many may be caught out, predicts Middleton.
"In an environment where technology is a vital part of a business' make-up, and the opportunity for deliberate sabotage is high, the need for a more regular review of audit plans has never been greater," he says.
The KPMG study of almost 300 finance-industry IT organizations across the EMEA regions revealed that 78% go through a a single round of audit planning per year. If the KPMG recommendations are on target, then that policy is sure to result in a new and very unexpected type of stress tests for those once-is-enough financial companies.
And for some additional statistics, plus a slightly different perspective on the whole situation, AccountacyAge also wrote about the study with more of a focus on the security risks mentioned in the study.
The Business of Going DigitalDigital business isn't about changing code; it's about changing what legacy sales, distribution, customer service, and product groups do in the new digital age. It's about bringing big data analytics, mobile, social, marketing automation, cloud computing, and the app economy together to launch new products and services. We're seeing new titles in this digital revolution, new responsibilities, new business models, and major shifts in technology spending.