Internal compliance and control – the key elements of self-governance – are falling woefully behind the times thanks to traditions that have not yet received a full overhaul. This is bad news for business in the private and public sectors, since the enemies they face have already stepped up to the speed of "now." According to Shrikant Deshpande, senior banking technology, risk and assurance professional and (ISC)² Certified Cloud Security Professional (CCSP®), there seems to be a gap between Internal Audit, GRC (Governance, risk management, and compliance) and Cybersecurity in terms of formalized methods of defining risks, monitoring and assurance. The Combined Assurance Model is no longer enough to keep up with change at the speed of "now."
Read more on Cloud Tweaks.