Vertex11

A financial firm had a significant number of audit and regulatory findings. The velocity of cloud adoption and dynamic digital markets had driven the increase in internal control deficiencies, overwhelming the firm with remediation commitments. The resources needed to address these outstanding remediation items were spreading thin because of a large number of strategic cybersecurity and company initiatives. Deadlines were routinely missed, increasing the risk profile of the firm

Today, many organizations still look at security through an antiquated lens when determining solutions for protecting valuable assets. This perspective is a big reason we constantly see breaches in the headlines. A paradigm shift needs to occur in organizations from the top down to achieve maximum protection and security for assets like data.

Vertex11 was recently invited to speak to over sixty leaders of Enterprise Risk Management (ERM) practices across the United States. At the conference we conducted a survey, which actually reinforced what we already knew. Before we dive into some of the results, it is important to mention this was a bit of an experiment on our part. An ERM survey was conducted by PricewaterhouseCoopers (PWC) in 2004, then again in 2008