
It's a worrying trend, says KPMG...
By Tim Ferguson
Published: 21 September 2007 15:45 BST
A significant proportion of corporate audit departments are failing to address IT risk sufficiently, leaving businesses vulnerable and open to security threats.
Almost a third (30 per cent) of audit staff feel their audit committee doesn't spend enough time looking at IT risk, according to research by KPMG's Audit Committee Institute (ACI).
Read all about IT…
Check out the Editor's Blog for the silicon.com chief's take on the hot tech issues of the moment.
Half said they don't have oversight responsibility for business continuity, and more than half (55 per cent) said they don't have responsibility for auditing risk around information security and privacy.
Around one in five (21 per cent) said they don't have responsibility for any IT compliance or control issues.
In general, the survey showed nine out of 10 audit committee members feel at least some improvements need to be made with their oversight of IT risk issues.
Director of KPMG's ACI in the UK, Tim Copnell, said this is a worrying trend due to businesses' reliance on IT.
He added that if audit committees aren't paying sufficient attention to the IT risk then businesses could be unwittingly exposed.
Instead of IT, the top priorities for audit committee members are more general risk management, internal controls and accounting judgements.
The ACI survey covered 1,300 audit committee members in 25 countries.
When required, deputise for Head of Risk and Compliance at appropriate meetings, particularly at Audit and Risk Committee and Corporate Risk Forum ...
To maximise the collective efforts of all people involved in change Change management encompasses planning, oversight or governance, project ...
SWIFT, SUMMIT, etc Good technical knowledge and experience in Business Continuity Planning areas Good knowledge of structured systems analysis ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you
Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy