Page 8 - IIA MAGAZINE_March 2017_English
P. 8
Knowledge Update
BY VISHAL THAKKAR
The Security Intelligence Center Executive
Perspectives on
Next Steps: Beyond Response to Anticipation Top Risks for 2017
In a recent poll conducted by The Institute 1) How organizations can move beyond This report contains results from the
of Internal Auditor’s Audit Executive merely being reactive and responsive to fifth annual risk survey of directors and
Center provide an insight on an emerging cyber-security incidents and instead being executives to obtain their views on likely
trend among organizations, as part of proactive and start to identify, anticipate, risks which will affect their organizations
their cyber-security strategy viz. the use and actively defend against known and in 2017. This survey provides insights
of Security Operations Centers (SOC’s). emerging threats? across various sizes of companies and
A defensive perspective to tackle cyber- across different industry groups specifying
security could be costly and ineffective. 2) Role of CAEs in encouraging and the key risks that are expected to be in
To gather another perspective at cyber- facilitating this shift from a reactive to a 2017 based on the feedback provided
security, a research was carried out to proactive stance by executives and board members that
explore how an offensive approach might participated in the survey. Some of the
appear and work against a cyber attack.This By addressing and answering these risk drivers mentioned by the participants
report provides and insight on the topic questions, organizations can take the were Brexit, turmoil in the Middle East
and provides a groundwork of terminology, important first step by advancing their and the resulting surge in immigration,
frameworks, metrics and tools and cyber-security initiatives irrespective of changes in national political leadership,
culminates with a view of the current state whether they are first establishing a SOC, depressed oil prices, monetary policies
of SOC’s and the use of intelligence tools. or advancing further and establishing a and concerns about inflation and
fully functioning Security Intelligence inflated asset prices in China, global
Apart from offering a summary of that Center (SIC). terrorism, escalating healthcare costs,
research, this report helps cyber-security rapidly developing innovations from the
professionals, Chief Audit Executives http://contentz.mkt5790.com/ digital technology revolution, expanding
(CAEs) and other stakeholders to explore lp/2842/219329/Foundation%20IA%20 regulation and oversight, a strong US
broader issues and to answer following two Cyber%20Research%20Report%20Feb%20 dollar. These and many other significant
questions: 2017.pdf risk drivers are contributing to the risk
related conversations in boardrooms and
executive suites. Key findings for the year
were as follows:
• Overall global business context is
perceived to be markedly more risky in
2017
• Concerns about economic conditions
top the list of risk issues for 2017
which was followed closely by
regulatory changes and scrutiny
• Cyber-threats, information security
and privacy also remain critical issues
for organizations to address
Accordingly, the top risks consists the
following:
• Economic conditions in domestic and
international markets
• Regulatory change and increased
regulatory scrutiny
• Cyber-threats management
• Speed of disruptive innovation
• Privacy and protection of identity
• Increased magnitude and severity of
risks expected in 2017
• CEOs and CFOs see a riskier
environment
https://www.knowledgeleader.com/Knowl-
edgeLeader/Content.nsf/Web+Content/
ecutivePerspectivesonTopRisksfor2017
8 INTERNAL AUDITOR - MIDDLE EAST MARCH 2017