Tim Maloney, IT Consulting & Audit Professional

Since 2002, Tim has partnered with his clients to support their efforts across three primary areas of expertise:

IT Strategy, Governance & Risk Management

IT Strategy, Governance & Risk Management

Partnering with companies to evaluate and improve their approach to aligning IT and Business objectives to facilitate organizational objectives while identify, managing and responding to IT-specific risks.

IT Process Improvement

IT Process Improvement

Helping IT personnel to improve their IT processes in order to improve their efficiency, effectiveness, and ability to meet audit/regulatory needs while mitigating risk to an acceptable level.

IT Audit & Compliance

IT Audit & Compliance

Collaborating with IT and Internal Audit personnel to evaluate the organization's control effectiveness and compliance with external regulatory requirements such as the Sarbanes-Oxley Act, COSO 2013, and FFIEC guidance.

Helpless (via LunarBaboon.com)

We live in a time when it is easy to say that this world is “messed up,” but I think it is important that we use that as an opportunity to think about what we can do to make it a better place.  This comic from LunarBaboon really sums it up well.

protivitiNew

Positioning Independent Risk Management to Succeed (via Protiviti)

The latest edition of Protiviti’s Board Perspectives on Risk Oversight newsletter focus on how companies can position their independent risk management function to success.  Here is a quick summary of the article: In many organizations, board risk oversight is enhanced when the board and executive management are supported by an effective independent risk management function.

2015-10-19-cyber-security-flash

Large Banks Hit with New Cybersecurity Rules (a Protiviti Flash Report)

FLASH REPORT On October 19, 2016, three U.S. financial regulators proposed new requirements to protect banking customers and financial markets from cybersecurity attacks.  This Flash Report from Protiviti summarizes these new proposed enhancements and the potential impact on how large banks approach: Cyber Risk Governance Cyber Risk Management Internal Dependency Management External Dependency Management Incident