Search

Person

David Martinez

David Martinez is an IT Audit Director in Focal Point’s Audit and Advisory Services practice.
Insight

Choosing the Right Privacy Governance Tool for your Organization

Ninety percent of the world’s data was generated over the last two years. By 2025, it’s estimated that over 460 exabytes of data will be created every day. While this flood of data has become indispensable for performing daily tasks in most organizations, the mismanagement or loss of it could result in operational inefficiencies, reputational damage, fines, lost revenue, and more. As the volume and use of data grows, the need for organizations to ensure they are properly governing this massive amount of data has intensified. The rise of the General Data Protection Regulation (GDPR), the California Consumer Protection Act (CCPA), and other data privacy regulations around the globe has put legal obligations on companies to protect this data and manage it securely. These new regulatory requirements have pushed many organizations to implement privacy governance tools to support their privacy programs and manage compliance. Privacy governance tools like OneTrust, Nymity, and BigID have grown in popularity over the last few years as data volume increased and new privacy laws were passed, and they are expected to become even more widely adopted in the coming months. Understanding the role of these tools, the key features of privacy governance tools, and the benefits they can bring to your organization are essential when making the decision to implement a privacy governance tool. 
Person

David Graff

David Graff is a Vice President with Focal Point’s Risk Consulting practice and brings over 20 years of experience with audit, risk management, internal control frameworks, strategic governance, and financial and operational processes within both industry and professional services roles.
Insight

4 Ways Your Current Cybersecurity Training Strategy Sabotages Success

Less than 30% of organizations have formal workforce development plans in place for their IT and security staff, according to Gartner. With training consistently ranking among the most requested benefits by employees, especially those of younger generations, the lack of commitment to workforce development is particularly surprising. This problem, of course, is not unique to cybersecurity. But because of the staggering lack of skilled, experienced cybersecurity job seekers, the failure to effectively train those already in the field has a more serious impact. A failure to train cybersecurity professionals can result in a failure to protect an organization and its critical data. Fortunately, the industry appears to be changing course. Roughly half of security organizations plan to increase their budgets for cybersecurity training in 2020. If you’re in this group (and we hope you are), there are four important pitfalls to avoid as you transition from traditional training models to a high-performing workforce development program:
News Article

Focal Point Opens New Academy Campus in Maryland

Focal Point Academy expands its Columbia, Md., campus with additional space, state-of-the-art technologies, and improved hospitality options.
Insight

The Future of Internal Audit: 10 Audit Trends to Prepare for in 2020

Today’s businesses must be constantly evolving to meet changing business models, new regulatory requirements, technology innovations, and an increase in cyberattacks. To help businesses meet these new challenges, internal audit (IA) functions must evolve as well. While internal audit is not the sole owner of risk within an organization, it provides unbiased insight into an organization’s internal controls, corporate governance, and business processes. IA educates board members and executives on the business risks and their impact, helping detect and address issues before they are identified by external audit. As data and technology permeate every aspect of the modern organization, IA departments can no longer work alone. IA teams must expand their skillsets and work alongside other departments to more effectively reduce risk, improve controls, and identify inefficiencies within the organization. While 2019 has already brought significant changes to the audit industry, 2020 provides the opportunity for even more. Here are the top 10 trends we expect to see for the internal audit world in 2020:
Insight

The Top 8 Cyber Workforce Development Trends for 2020

It’s prediction season! In 2019, we discussed cyber workforce development with hundreds of security leaders, including many CISOs from Fortune 500 companies in the technology, retail, financial services, and healthcare space, as well as top cybersecurity workforce experts in the U.S. government and military. As a result, we have the opportunity to place our fingers directly on the pulse of the top trends shaping the cybersecurity workforce. Some of these are a steady incline of 2019 trends, while others – like skills assessments and federal government hiring increases – are unique to 2020. Let’s dive in.
News Article

Renowned SOC Expert, Gary McIntyre, Joins Focal Point

Focal Point today announced the addition of Gary McIntyre as a Managing Director of Cyber Defense services. McIntyre is one of the industry's foremost experts in the development of Security Operations Centers (SOC).
Person

Melissa Lawlor

Melissa is a Director in Focal Point’s Cyber Risk Advisory Practice with expertise in information security assessments, security program strategy and design, and privacy and compliance, and more.
New Search