Read Richard Chambers' Latest Blog
New NIST Privacy Framework: A Tailor-made Resource for Internal Audit
In his blog, IIA President and CEO Richard Chambers, CIA, QIAL, CGAP, CCSA, CRMA, shares his personal reflections and insights on the internal audit profession. Here's an excerpt from his latest post:
In the 21st century, data is gold. It is what underpins some of the biggest companies in the world, including Amazon, Facebook, and Google. The need for gathering and using data has become a major economic driver, spawned a cybercriminal underworld, and pushed technological advancement to gather ever-increasing amounts of data, faster and more efficiently.
Over the past two decades, most organizations have found ways to adopt information technologies to gather and leverage customer data, but few have taken time to focus on how that data collection affects the privacy of individuals. In the past several years, there have been concerted efforts to control the rampant collection and monetization of personal data. The growing number of laws aimed at regulating the collection, management, storage, and protection of personal data, such as the European Union's General Data Protection Regulation (GDPR), reflect that backlash.
Late last month, the U.S. Department of Commerce's National Institute of Standards and Technology (NIST) released a new privacy framework. It provides strategies to improve privacy practices, build customer trust, and comply with a growing list of privacy regulations.
Read the full InternalAuditor.org blog post from IIA President and CEO Richard Chambers.