IT, Privacy and Security
November 19, 2019 Norman D. Marks, CPA, CRMA Budgeting and Auditing, Business and Legal Issues, Corporate Governance, Finance and Accounting, IT, Privacy and Security, Leadership and Management, Privacy Compliance and Management,
What we should all note from the news is that a failure to perform an appropriate investigation is a serious source of risk to any organization.
fear of retaliation, internal audit, investigations, sexual harassment in the workplace, suspected wrongdoing, whistleblower, workplace investigations
November 19, 2019 Occasional Contributors Business and Legal Issues, Corporate Administration, Finance and Accounting, Intellectual Property, IP, IT, Privacy and Security, Leadership and Management, Sales, Marketing and Operations, Web design and Management,
This information bulletin addresses the language requirements pertaining to display, in a language other than French, of trademarks on real estate in Quebec.
Charter of the French Language, intellectual property, language requirements, trademarks
November 11, 2019 Norman D. Marks, CPA, CRMA Backup and Disaster Planning, Budgeting and Auditing, Business and Legal Issues, Competition, Corporate Administration, Corporate Governance, Finance and Accounting, IT, Privacy and Security, Leadership and Management, Sales, Marketing and Operations,
There’s some good material in KPMG’s Enterprise Risk Management Benchmarking Study, subtitled Evolving to an active, integrated and agile approach amidst change and disruption.
audit committee, Enterprise Risk Management ERM, ERM program, internal audit to identify risks, risk management, risk to objectives
November 4, 2019 Norman D. Marks, CPA, CRMA Backup and Disaster Planning, Budgeting and Auditing, Business and Legal Issues, Corporate Administration, Corporate Governance, E-Commerce, Finance and Accounting, Fraud and Corruption, IT, Privacy and Security, Leadership and Management, Mobile Device Management, Network, Systems and Data Security, Privacy Compliance and Management, Sales, Marketing and Operations, Systems and Data Management,
There’s another useful article on Forbes. How to talk to the board about cybersecurity is written by an experienced CIO, John Matthews. Here are some useful excerpts with my highlights:
breach notification, breach prevention, cyber risk, cyber security, Cybersecurity, cybersecurity risks, risk management policy, risk of a breach, risk of data breaches
October 21, 2019 Norman D. Marks, CPA, CRMA Budgeting and Auditing, Business and Legal Issues, Competition, Corporate Administration, Finance and Accounting, IT, Privacy and Security, Leadership and Management, Sales, Marketing and Operations,
Whilst the majority of firms had risk appetite statements that were set by the Board and which were supported by relevant metrics, 50% of respondents noted that their risk appetite statements did not link to the firm’s strategy or to the actual underlying risk the firm faced, and did not provide a forward looking view of risk.
enterprise risk management, Institute of Risk Management, risk appetite statements, risk management programs
October 16, 2019 Ethics &Compliance Matters ™, Navex Global ® Business and Legal Issues, Corporate Governance, Defamation, Finance and Accounting, Fraud and Corruption, IT, Privacy and Security, Leadership and Management, Payroll and Personnel Management, Privacy Compliance and Management,
Now more than ever, compliance officers, executive teams and boards of directors must think more about how to support an internal reporter, even at the “mechanical” level of protecting their identity.
compliance officers, privacy, whistleblower, whistleblower protections, whistleblowing, whistleblowing policy
October 10, 2019 Occasional Contributors Business and Legal Issues, Cyberlaw, Internet Law, E-Commerce, Finance and Accounting, IT, Privacy and Security, Sales, Marketing and Operations,
CoinLaunch carried on business as a cryptoasset consultant, offering marketing and promotional services to prospective token issuers.
Canadian Securities Administrators, crypto consultant, cryptoassets, cryptocurrency
October 4, 2019 McCarthy Tétrault LLP Business and Legal Issues, Finance and Accounting, Intellectual Property, IP, IT, Privacy and Security, Leadership and Management, Sales, Marketing and Operations,
With a booking tech industry in Canada, growing technology companies need capital and, as a result, there has been growth in financing tech enterprises.
artificial intelligence, debt financing, equity capital, quantum computing, tax credits, tech industry, tech lending
October 1, 2019 Norman D. Marks, CPA, CRMA Backup and Disaster Planning, Budgeting and Auditing, Business and Legal Issues, Corporate Governance, E-Commerce, Finance and Accounting, IT, Privacy and Security, Leadership and Management, Network, Systems and Data Security, Sales, Marketing and Operations,
There’s an interesting article in the Harvard Law School Forum on Corporate Governance and Financial Regulation. What the Capital One Hack Means for Boards of Directors has some interesting insights that merit the attention of risk, cyber, audit, and governance practitioners.
corporate governance, cyber attack, cyber defence, cyber prevention, cyber risk, cybercrime, Cybersecurity, digital interconnectivity, financial regulation, risk management
September 30, 2019 Norman D. Marks, CPA, CRMA Backup and Disaster Planning, Business and Legal Issues, IT, Privacy and Security, Leadership and Management, Sales, Marketing and Operations, Software Acquisition, Implementation and Maintenance, Systems and Data Management,
Every so often, I see an interesting piece on Forbes.com. This time it is How To Talk To the Board About Cybersecurity. A CIO shares his experience working with boards and advice on that challenge for CISOs. Here are some useful comments (with my highlights):
balancing risks, cyber security, cyber security risks, cyber security threat, security breaches, technology
September 27, 2019 McCarthy Tétrault LLP Accounting Systems and Controls, Business and Legal Issues, Corporate Governance, Cyberlaw, Internet Law, E-Commerce, Finance and Accounting, Financial Compliance / Planning / Management, Fraud and Corruption, IT, Privacy and Security, Network, Systems and Data Security, Privacy Compliance and Management, Records Management and Retention,
FATF issues guidance on virtual assets
Anti-money laundering, FATF, Financial Action Task Forc, Internal Controls, virtual assests, virtual currency
September 18, 2019 Ethics &Compliance Matters ™, Navex Global ® Accounting Systems and Controls, Business and Legal Issues, Finance and Accounting, IT, Privacy and Security, Leadership and Management, Payroll and Personnel Management,
Many failures in business today could be addressed or even prevented with better policy management. Data breaches, workplace accidents, employee misconduct, third-party incidents, customer complaints, and more are often traced to policies that were absent, ineffective, or out of sight, out of mind.
corrective action, employee behaviour, policies and procedures, policy management, workplace investigations
September 16, 2019 Norman D. Marks, CPA, CRMA Backup and Disaster Planning, Business and Legal Issues, IT, Privacy and Security, Leadership and Management, Mobile Device Management, Network, Systems and Data Security, Sales, Marketing and Operations, Systems and Data Management,
It is not sufficient to say that cyber risk is high, medium, or low. The leaders of the organization need to be able to figure out what is the right level of resources to allocate to cyber defense and response; what is the right level of attention at board and executive committee level; and what should be communicated to shareholders and others.
cyber defence, cyber risk assessment, cyber risk management
September 13, 2019 McCarthy Tétrault LLP Accounting Systems and Controls, Business and Legal Issues, Finance and Accounting, Fraud and Corruption, IT, Privacy and Security, Network, Systems and Data Security, Privacy Compliance and Management, Records Management and Retention,
On July 10, 2019, final amending regulations were issued amending each of the existing regulations under the Proceeds of Crime (Money Laundering) and Terrorist Financing Act.
cross-border currency transfers, electronic funds transfers, foreign money services businesses, money laundering, prepaid cards, Proceeds of Crime (Money Laundering) and Terrorist Financing Act, virtual currency
September 9, 2019 Norman D. Marks, CPA, CRMA Accounting Systems and Controls, Backup and Disaster Planning, Budgeting and Auditing, Business and Legal Issues, Competition, Corporate Administration, Corporate Governance, Finance and Accounting, Financial Compliance / Planning / Management, Fraud and Corruption, IT, Privacy and Security, Leadership and Management, Systems and Data Management,
Internal auditors are expected, according to the IIA Standards and some governance codes, to assess the effectiveness of risk management.
achievement of objectives, internal audit to identify risks, risk management, risks to the achievement of objectives
