@Risk

While concerns about global economic uncertainty continue to be top of mind for business leaders, other significant issues –such as fraud and ethics, mergers and acquisitions, large programs, new product introductions and business continuity –are emerging to further complicate business strategies and performance.

In fact, according to the new 2012 PwC State of the Internal Audit Profession study, businesses are asking internal audit to play an increased role in helping companies navigate the rapidly changing risk landscape. To illustrate my point, here are a few key findings from the report: (more…)

World leaders are meeting in Seoul this week to discuss nuclear security concerns, including the growing threat of radioactive material in the global scrap metal supply chain.

According to a recent article at Bloomberg Businessweek, industries around the world are confronting the impact of loose nuclear (i.e., radioactive) material in an international scrap-metal market worth at least $140 billion. From the article:

Radioactive items used to power medical, military and industrial hardware are melted down and used in goods, driving up company costs as they withdraw tainted products and threatening the public’s health . . . Abandoned medical scanners, food-processing devices and mining equipment containing radioactive metals such as cesium-137 and cobalt-60 are picked up by scrap collectors, sold to recyclers and melted down by foundries, the IAEA (United Nations International Atomic Energy Agency) says.

The problem made headlines earlier this year when retailer Bed Bath & Beyond had to recall a metal tissue holder from its shelves after the item was found to be slightly radioactive.  A Bed Bath & Beyond truck loaded with the tissue holders reportedly set off a surveillance monitor in California. (more…)

Even though business executives from around the world may be disgruntled with their jobs, most are planning to sit tight in their positions –at least for now.

Accenture recently conducted an online survey of 3,900 business executives from medium to large companies in 31 countries and found that:

• More than half of both the women (57 percent) and men (59 percent) surveyed are dissatisfied with their jobs. But even so . .  .
• More than two-thirds (69 percent) of all respondents said they do not plan to leave their current employers. Nearly two-thirds (64 percent) cited flexible work arrangements as the reason for staying put.
• Underscoring earlier research which indicated a growing concern for work-life balance, the majority (59 percent) of respondents reported having some type of flexible work schedule. More than four in ten (44 percent) of this group said they have used flexible work options for more than three years. (more…)

Identity fraud jumped by 13 percent in 2011, and that increase may be the result of consumers’ social media and mobile behaviors.

For the past nine years, Javelin Strategy & Research has conducted an annual analysis of identity fraud trends, and for the first time, the 2011 study examined social media and mobile phone behaviors, ultimately uncovering certain related consumer practices that appear to increase risks.

Here are some of the key findings in more detail:

• The overall number of identity fraud cases is up, but the dollar amount held steady. Javelin found that more than 11.6 million adults became a victim of identity fraud in the US last year, although the dollar amount stolen remained constant. (Javelin defines “identity fraud” as the unauthorized use of another person’s personal information to achieve illicit financial gain.)
• Social behaviors are risky. LinkedIn, Google+, Twitter and Facebook users had the highest incidence of fraud although there is no proof of direct causation.  What’s the risk? Javelin found that consumers share significant amounts of personal information frequently used to authenticate identity. For example: (more…)

News last week that a NASA computer stolen in March 2011 contained unencrypted codes used to command and control the International Space Station has put the spotlight, once again, on the issue of cyber security.

Are C-suite execs paying attention?

Unfortunately, new research suggests they’re not.

The advanced findings from the latest 2012 Carnegie Mellon CyLab Governance survey of how corporate boards and executives are managing cyber risks reveal that the issue is still not getting adequate attention at the top.

Sponsored by RSA, The Security Division of EMC, the survey results show that even though there are some improvements in key “regular” board governance practices formation of board Risk Committees and cross-organizational teams within certain organizations, significant areas of concern remain. For instance:

• Oversight is lacking. Boards and senior management are not engaging in key oversight activities, such as setting top-level policies and reviews of privacy and security budgets to help protect against breaches and mitigate financial losses.
• Most boards aren’t taking responsibility. Less than one-third of the respondents indicate their boards and senior executives are undertaking basic responsibilities for cyber governance.
• Lack of personnel is a concern. Nearly half of the respondents indicated that their companies do not have full-time personnel in key privacy and security roles.
• Insurance coverage needs updating. More than half (58 percent) of the respondents said their boards are not reviewing their companies’ insurance coverage for cyber-related risks.

What can you do to help remedy the situation at your company?  RSA suggests you: (more…)