Information Technology

• Exploring the Audit Committee's Role in IT Governance(Spring 2007 Roundtable Highlights)
• ACI Keynote Address at MIS Super Strategies Conference
• Defining the Digital Future: Business and Accounting Issues
• Oversight of Information Security (Audit Committee Roundtable Highlights - Fall 2001)

Exploring the Audit Committee's Role in IT Governance(Spring 2007 Roundtable Highlights)
Based on Interactive Roundtable sessions conducted in 30 cities around the country, audit committee members, directors, and others identified significant room for improvement in IT governance(by management) and in the oversight of IT governance(by the board, including the audit committee).

Exploring the Audit Committee's Role in IT Governance(Spring 2007 Roundtable Highlights)

TOP

ACI Keynote Address at MIS Super Strategies Conference
This presentation, entitled "Audit Committee Issues and Expectations", was delivered by Mark C. Terrell, Executive Director of KPMG's Audit Committee Institute on April 15, 2004 as the Keynote Speaker to the MIS Super Strategies Conference, Chicago IL.

Exploring the key components of the Audit Committee and Internal Audit relationship, this presentation highlights the changing environment, increased expectations, as well as other issues being addressed as part of the implementation of the corporate accountability reforms.

ACI Keynote Address at MIS Super Strategies Conference

TOP

Defining the Digital Future: Business and Accounting Issues
KPMG's e-business publication identifies the major e-business accounting issues that today's companies face and provides KPMG's perspective on the implications and resolutions of those issues.

Defining the Digital Future: Business and Accounting Issues

TOP

Oversight of Information Security (Audit Committee Roundtable Highlights - Fall 2001)
The technological environment that companies now operate within is dramatically different than it was even five years ago. The very accessibility that makes corporate information so useful and valuable also makes it extremely vulnerable to loss, theft, or manipulation by hackers, competitors or disgruntled employees. This vulnerability represents a tremendous-and often unrecognized-corporate risk.
During the Fall 2001 Audit Committee Roundtables we discussed information security-issues for boards and audit committees. During these Roundtables we asked for participants' feedback on a number of information security oversight issues.

We have included below a few resources that may assist audit committee members and board members improve their oversight of corporate information security.

NACD Study - Information Security Oversight: Essential Board Practices
The National Association of Corporate Directors (NACD) 2001 study entitled Information Security Oversight: Essential Board Practices was sponsored by the Audit Committee Institute and developed with help from KPMG's Risk and Advisory Services practice. The brochure was created in collaboration with The Institute of Internal Auditors and the Critical Infrastructure Assurance Office of the U.S. Department of Commerce. Some of the issues addressed include how to integrate information security oversight into the board agenda and oversight of corporate policy. The brochure may be ordered through the NACD website.

Information Technology (IT) Governance Institute
This is the governance definition put forward by the IT Governance Institute:

IT governance, like other governance subjects, is the responsibility of executives and shareholders (represented by the board of directors). It consists of the leadership and organizational structures and processes that ensure that the organization's IT sustains and extends the organization's strategies and objectives.

Representatives of the IT Governance Institute suggest some information security practices for the board room including:

•   Know what questions to ask
•   Know what is needed
•   Raise the awareness at the top
•   Have clarity of purpose
•   Measure your performance
•   Keep on doing it

Click here for additional information on the IT Governance Institute and their Web site.

Security Transformation:Digital Defense Strategies to Protect Your Company's Reputation and Market Share
Staying competitive is tough enough for most organizations. But staying protected in today's Internet environment is even tougher. Security breaches can loom at every turn. That's why many executives are struggling with questions such as:

•   How can I turn my security investment into an asset?
•   How can I reduce my business risk?
•   Is the Internet really safe for e-commerce and e-business?
•   What are my company's biggest threats and vulnerabilities?

Security Transformation helps provide answers to these and other vexing security-related issues. Unlike many books which speak from a strictly technological standpoint, Security Transformation places security issues squarely in the context of business, underscoring its role in enhancing customer value, enabling new business opportunities, protecting one's brand and avoiding liability.

Written by KPMG's top security strategists, Security Transformation offers insights into what it takes to protect your organization against unwanted attacks to compete successfully in today's virtual marketplace. Put simply, Security Transformation makes the business case for security.

TOP