Information Leakage and Other Threat: What is Internal Audit's Role?

April 2015

Abstract

Effective information management and security remains one of the most important aspects of every business entity. It is interesting to notice that if you “Google” the words “Data Leakage” more than 6,7 mn results are presented, while public news publishes on a frequent basis cases of data loss or leakage which receive great public awareness. According to latest data from DataLoss Database (http://datalossdb.org/statistics), there is an increasing trend of data and information leakage incidents over time during the years, with the majority of them (57%) from outside the organization while another 36% from inside. This trend is enforced by recent cases of data leakage by a large Insurance Company in the US (Anthem) of a firm illegally bought and sold 150mn customer’s information in Shanghai as well as an unprecedented leak of documents that revealed the closely guarded investment information of more than 100,000 people around the world.

Author

Nikolaos Dounis

Cluster Internal Control & Compliance Manager, Imperial Tobacco Group, Greece

Professional experience of more than fifteen (15) years in leading edge Multinational Organizations and Industries (Tobacco, Telecoms, Banking, Manufacturing) in Internal Audit, Risk & Compliance roles. Currently working as the Cluster Internal Control & Compliance Manager of Imperial Tobacco Group, responsible for the South East Europe Cluster (Italy, Greece, Romania, Bulgaria, Cyprus, Malta, Israel, Palestine Markets). Previously worked in Internal Audit and Consulting roles in Cosmote Mobile Telecommunications and PwC respectively. Strong Academic & Theoretical background, encompassing a PhD and MsC in Internal Auditing & Management from a leading edge institution (Cass Business School - City University of London), with continuous development via publications and presentations in International Academic Conferences and Associations. International Professional Qualifications of Certified Internal Auditor (CIA), Certified in Risk Management Assurance (CRMA), Certification of Teaching in Higher Education (City University of London) and Authorized Professional Trainer conducting seminars and trainings.

India’s tryst with internet intermediary liability can be traced back almost two decades to when the Information Technology Act (IT Act), 2000 saw the light of day. With the rapid...Read more

Amit Sindhwani

Head of IPR, Usha International, India

Rajendra Kumar

Founding Partner RKR & Partners, RKR & Partners, India

India's New Regime of Personal Data Protection - Comprehensive yet Comprehensible…

India unveiled a draft of its Personal Data Protection legislation for public comments in November 2022. The proposed law christened as the Digital Personal Data Protection Bill, 2022 will be...Read more

Dev Bajpai

Wholetime Director & Chief Legal Officer, Hindustan Unilever Limited, India

Anti-Profiteering Under the Goods and Services Tax Law

This article is a detailed analysis of the “anti-profiteering” provisions under the Central Goods and Services Tax Act, 2017 of the Indian legal regime. Apart from delving into the domestic...Read more

Vanita Bhargava

Senior Partner, Khaitan & Co., India

Dev Bajpai

Wholetime Director & Chief Legal Officer, Hindustan Unilever Limited, India

The Need for Data Privacy in the Age of Technology

Privacy Breaches are not a recent occurrence. It can be said that large scale privacy breaches such as the LinkedIn Privacy breach of 2021 can be attributed to the...Read more

Ajay Bhargava

Partner, Khaitan & Co LLP, India

Dev Bajpai

Wholetime Director & Chief Legal Officer, Hindustan Unilever Limited, India

Information Leakage and Other Threat: What is Internal Audit's Role?

Abstract

Author

Company

Imperial Tobacco Group

Related Papers