Process, Risk and Technology Solutions Blog

Blogs October 09, 2014 The Continuing Challenges with ORSA

ORSA filings continue to be a challenge. Companies that have not developed their ORSA report and ERM processes will be challenged in providing regulators with robust data and might face additional regulatory scrutiny due to the quality of their ORSA …

Blogs April 03, 2014 Cyber Security and Privacy – What You Need to Know (Part 4 of a Series)

Cybersecurity what you need to know. A Written Information Security Program addresses cyber security policy, procedures and guidelines. What is a Written Information Security Program (WISP)? Includes info on risk assessment, cybersecurity awareness t…

Blogs March 21, 2014 Cyber Security and Privacy – What You Need to Know (Part 3 of a Series)

A cybersecurity risk assessment enables a business to prioritize a responsive action to improve risk mitigation activities and ensure resource allocation. Tips to consider on cybersecurity risk impact, severity and mitigation. How to developing a cyb…

Blogs March 12, 2014 Compiling Form F: An EisnerAmper Guide

The NAIC ORSA Subgroup is heading into year three of the ORSA pilot project. The impending Form F filing has no formal guidance or templates to aid in its preparation. Based on our discussion with regulators and NAIC representatives, the Form F shoul…

Blogs March 05, 2014 Cyber Security and Privacy – What You Need to Know (Post 2 of a Series)

Cybersecurity and privacy what you need to know. This overview of cybersecurity risks and the profile of potential perpetrators will help you identify the risks specific to your business so you can create a cybersecurity risk management strategy spec…

Blogs February 20, 2014 Cybersecurity and Privacy – What You Need to Know (Post 1 of a Series)

Blogs on mitigating cybersecurity risk. Topics such as effective risk management practices and tools and written information security programs WISP. News on cybersecurity breaches, risk mitigation strategies and a cybersecurity tip sheet.

Blogs January 24, 2014 PCAOB Staff Audit Practice Alert No. 11 – Part 5

PCAOB audit alert IT considerations including system-generated data and reports. When selecting internal controls for testing, it is critical to document and test the completeness and accuracy of system-generated data or rep…

Blogs January 20, 2014 NAIC Adopted Exposure Drafts for the 2013 Annual Statement Reporting Period

NAIC Adopted Exposure Drafts for the 2013 Annual Statement Reporting Period. The BWG of the NAIC have adopted 25 items that take effect in the 2013 annual statement reporting period. Key changes that impact Health Insurers P…

Blogs January 16, 2014 PCAOB Staff Audit Practice Alert No. 11 – Part 4

PCAOB Staff Audit Practice Alert selecting controls to test and testing management review controls. Auditors may have not tested controls for all the relevant assertions of the significant accounts and disclosures. Evaluatin…