Server Virtualization

New Audit Resources from ISACA Help Professionals Keep Pace with 2022 Audit and Compliance Trends and Updates

As the year winds down, many audit professionals are shifting their focus to 2022 priorities—including developing dynamic new strategies such as agile auditing, revisiting established technologies from a remote or hybrid working environment perspective, and closing any gaps between compliance expectations and current practices—and how they can enhance their skills to meet the needs of the evolving audit landscape. To meet these needs, ISACA has released three new audit resources—its VPN Security Audit Program, Destination: Agile Auditing white paper, and a new edition of its IT Control Objectives for Sarbanes-Oxley publication.

During the pandemic, the reliance on virtual private networks (VPNs) was heightened as many shifted to working from home—as did the need to manage its risks and implement safeguards. ISACA’s VPN Security Audit Program provides a foundation for auditors to provide assurance around the effectiveness of implemented VPN controls, including pre-audit planning, governance and oversight, implementation and configuration, operations, and maintenance and monitoring, to avoid some of the following risks:

  • The increase in number of end users combined with extended VPN use may put additional pressure on infrastructure and adversely affect performance.
  • Failure to detect unauthorized VPN activity may cause denial of service due to excessive traffic or connection attempts.
  • Lack of alignment of data classification requirements with VPN requirements and configuration may impair compliance initiatives that are reliant on data classification.

During the pandemic, organizations embraced methods to increase agility and efficiency, including by using Agile. Destination: Agile Auditing outlines how audit professionals can incorporate Agile principles into their audit methodologies. Auditors can learn the basics about Agile auditing, its benefits, how Agile complements established assurance standards, how developing competency in Agile can enhance the planning, fieldwork, and reporting phases of an audit. The white paper also includes examples of elements from the Agile tool set, including an Agile road map and Agile audit engagement workflows and illuminates key components like sprints, audit backlog and daily standups.

Internal and external auditors, IT auditors and managers, and financial and operational managers can also ensure they are keeping up with the latest guidance in complying with the Sarbanes-Oxley Act in a new edition of ISACA’s IT Control Objectives for Sarbanes-Oxley publication. This latest edition incorporates updated guidance and standards from the Public Company Accounting Oversight Board (PCAOB) and the American Institute of CPAs (AICPA) and its Auditing Standards Board, with updates including:

  • Integrating guidance for implementing internal control over financial reporting (ICFR) using COBIT® 2019, for IT and financial management within enterprises and for their internal and external auditors and consultants
  • Aligning with COBIT 2019 Focus Area: Information & Technology Risk
  • Providing the mapping of the role of COSO Internal Control – Integrated Framework, 2013 to COBIT 2019
  • Highlighting technological innovations and their impacts on auditing IT controls.

The audit landscape is constantly shifting as technologies and regulations evolve, making it essential that audit professionals prioritize continuous learning to ensure they are applying the most current and effective audit practices. ISACA is committed to equipping the global audit community with the tools they need to deliver the highest audit standards at their organizations.”

Robin Lyons, IT Audit Professional Practices Lead

About ISACA
For more than 50 years, ISACA has advanced the best talent, expertise and learning in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations, and enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters worldwide. In 2020, ISACA launched One In Tech, a philanthropic foundation that supports IT education and career pathways for under-resourced, under-represented populations.

Spotlight

Other News
Server Virtualization

From Vision to Reality: AVL Collaborates with Microsoft to Demonstrate Future-Driven Mobility at CES

PR Newswire | January 10, 2024

AVL is collaborating with major technology leader, Microsoft, to demonstrate the virtualization capabilities for vehicle software development. The software solution, called AVL DevOps Pilot, provides end-to-end orchestration of the development and operations pipeline including artifacts, simulation models, controller models, and test cases in a cloud-based platform. This paves the way for AVL's automotive development expertise using Microsoft Azure, including Microsoft Azure OpenAI Service, and GitHub Copilot. This dramatically reduces the development time for software defined vehicles as well as automates the testing and validation process and ensures end-to-end traceability of the software development assets. Jens Poggenburg, Executive Vice President AVL: "AVL combines its extensive expertise in the field of automotive development with Microsoft's innovative cloud and AI technology. Through this collaboration, we are creating a boost in digital transformation. The bundling of expertise allows us to further develop our engineering and toolchain offering at maximum speed. We are proud to combine our specific application experience with Microsoft's digitalization expertise." Don Manvel, CEO and Chairman of AVL Americas: "Breakthroughs happen when partners bring their best solutions to the table. AVL is combining its extensive expertise in mobility technologies with Microsoft's innovative cloud and AI technology to create revolutionary solutions that accelerate the development of software defined vehicles to a new level." Dominik Wee, Corporate Vice President for Manufacturing and Mobility, Microsoft: "Microsoft is pleased to collaborate with AVL, using the open and configurable SDV Toolchain architecture and comprehensive cloud computing capabilities of Microsoft Azure services to help accelerate AVL's DevOps Pilot virtual cloud solution." About AVL With more than 11,200 employees, AVL is one of the world's leading mobility technology companies for development, simulation and testing in the automotive industry, and beyond. Drawing on its pioneering spirit, the company provides concepts, solutions and methodologies for a greener, safer and better world of mobility. From ideation phase to serial production, the company covers vehicle architectures and platform solutions including the impact of new propulsion systems and energy carriers. As a global technology provider, AVL's offerings range from simulation, virtualization and test automation for product development to ADAS/AD and vehicle software. The company combines state-of-the-art and highly scalable IT, software and technology solutions with its application know-how, thereby offering customers extensive tools in areas such as Big Data, Artificial Intelligence, Cybersecurity or Embedded Systems. AVL's passion is innovation. Together with an international network of experts at more than 90 locations and with 45 Tech and Engineering Centers worldwide, AVL is supporting customers in their mobility ambitions. In 2022, the company generated a turnover of 1.86 billion Euros, of which 11 % are invested in R&D activities to ensure continuous innovation.

Read More

Virtualized Environments

Ludium Lab, Access, and XPENG present Europe's first cloud gaming platform for in-car entertainment

GlobeNewswire | January 05, 2024

ACCESS, Ludium Lab, and XPENG today announced they have collaborated to make cloud gaming for in-car displays a reality. This project combines ACCESS IVI (in-vehicle infotainment) technology with Ludium Lab's cloud gaming platform to enable XPENG customers can enjoy state-of-the-art cloud gaming. The project sees SoraStream white-labeled as XPLAY from Ludium Lab, and enabled through the Twine4Car app store platform from ACCESS provided in XPENG vehicles. XPLAY gives users access to a large catalog of PC, mobile, and console games, including major AAA games and games exclusive to Ludium Lab. “In-car entertainment is an increasingly important part of the car-buying decision, so offering an exciting portfolio of audio, games, and video entertainment through XPLAY is critical,” said Brian Gu, Vice Chairman and President of XPENG. “The collaboration with ACCESS and Ludium Labs ensures that easy and enjoyable journeys in an XPENG will be engaging for everyone thanks to the high-quality cloud gaming developed specifically for our extra-wide infotainment screens.” A stand-out feature of the gaming performance is the 60 FPS Full HD games that can be played on XPENG infotainment screens. Users do not need to download any games, and the service includes parental controls. The XPLAY service also uses a monthly subscription model. “Our Twine4Car Platform and App Store is a content aggregation platform that for the first time brings together the latest in IVI technology and premium content in a fully OEM-branded interface,” said Aono Masahiro, CEO of ACCESS Europe. “The addition of Sora Stream from Ludium Lab ensures that XPENG car users have access to a truly engaging mobility experience” “The collaboration between all three companies has been essential in enabling the launch of this disruptive and innovative in-car cloud-gaming service,” says Juan José Martín, CEO of Ludium Lab. “Our SoraStream solution offers a large video game catalog for all kinds of players, making this project an exciting opportunity for XPENG customers.” About Ludium Lab Ludium Lab is a technology company founded in Spain in 2012. Expert and leader in cloud services and solutions, the company works in more than 60 countries around the world. Its activity is currently focused on adapting its technology to cloud gaming platforms (SoraStream development), automotive (ICE), metaverse solution, SaaS and XR (Vr/Ar). The team is working to perfect its software virtualization technology and implementation in different solutions and products, with high quality and low costs. About ACCESS Since 1984, ACCESS CO., LTD. (Tokyo Stock Exchange Prime Market, Index, 4813) has been providing advanced IT solutions centred on mobile and network software technologies to telecom carriers, consumer electronics manufacturers, broadcasting and publishing companies, the automotive industry and energy infrastructure providers around the world. The company develops mobile software solutions that have been installed on over 1.5 billion devices, and network software solutions that have been used by hundreds of companies. Utilising its network virtualisation technology expertise and knowledge, the company is currently focusing on the development and commercialisation of Internet of Things (IoT) and media solutions that combine embedded and cloud technology. Headquartered in Tokyo, Japan, the company maintains subsidiaries and affiliates in Asia, Europe and the United States to support and expand its business globally. About XPENG XPENG is a global smart electric vehicle company founded in 2014 in Guangzhou, China, developing clean, intuitive, and creative mobility solutions. With industry-leading R&D facilities, XPENG is bringing vehicles with superior safety, electric efficiency, and on-road performance to markets across the globe. The company is constantly working to advance its core technology offering, including autonomous driving capabilities, SEPA 2.0, and captivating in-car infotainment systems. XPENG has headquarters in Guangzhou and Amsterdam, with additional offices in Beijing, Shanghai, and Silicon Valley. XPENG has started sales in Norway, Sweden, Denmark, and the Netherlands with its P7 sports sedan and ultra-fast charging G9 SUV in 2023.

Read More

Virtualized Environments

Vuzix Introduces Z100 Smart Glasses to Seamlessly Connect Workers with AI Optimization Tools

PR Newswire | January 10, 2024

Vuzix Corporation, a leading supplier of smart glasses and augmented reality (AR) technology and products, today announced the unveiling of Vuzix Z100 smart glasses, which will initially be offered as a developer's edition. Built using the Vuzix Ultralite OEM PlatformSM, these safety glasses-certified smart glasses are sleek and made for all day wear. Using them, workers get a human-centered connection to AI and work process applications, receiving critical updates, convenient workflow and task confirmations, and notifications in real time, all while wearing a pair of glasses that workers will enjoy having on. Vuzix Z100 smart glasses pair seamlessly via Bluetooth with Android or iOS IOT devices. They represent the first attractive, functional bridge between AI platform tools, where situational guidance can streamline workflows, and human workers can reap the benefits of a truly connected workplace. In addition to a lightweight AI interface, Vuzix Z100 glasses can augment the data feed from finger scanners, sensors, controllers, and other equipment with minimal native UI, making that data available in a new and highly accessible format. Tasks with sub-standard user feedback due to device or process limitations can now have their workflows displayed in the user's heads up display, providing human-centered outputs and real-time updates. Running up to 48 hours on a single charge, Vuzix Z100 smart glasses pack industry-defining heads-up waveguide technology into a sleek, fashionable form factor that weighs in at just 35 grams – the weight of a standard pair of glasses. Advanced monocular waveguide optics, combined with Vuzix' custom micro display engine, create a crisp, transparent, monochrome image that can deliver all the important information on a user's Android or iOS device, hands-free right before their eyes. Wearers get heads-up access to important task information, from language translation and closed captioning, to directions, to health and workout status, to messaging, workflow outputs and much more. Best of all, Vuzix Z100 smart glasses provide a sleek, attractive form factor that frontline employees will want to wear. "The Z100 takes enterprise use of AR smart glasses to the next level, providing workers with a hands-free wearable that is indistinguishable from a pair a standard glasses," said Paul Travers, President and Chief Executive Officer at Vuzix. "This rollout is in overwhelming response to interest expressed by enterprise customers in an attractive and light weight pair of smart glasses that can augment current workflows with AI optimization software. There are customers across numerous market verticals and use cases that we believe will embrace this product as fashionable and affordable productivity device that workers will enjoy wearing all day every day." About Vuzix Corporation Vuzix is a leading designer, manufacturer and marketer of Smart Glasses and Augmented Reality (AR) technologies and products for the enterprise, medical, defense and consumer markets. The Company's products include head-mounted smart personal display and wearable computing devices that offer users a portable high-quality viewing experience, provide solutions for mobility, wearable displays and augmented reality, as well OEM waveguide optical components and display engines. Vuzix holds more than 350 patents and patents pending and numerous IP licenses in the fields of optics, head-mounted displays, and augmented reality Video Eyewear field. Moviynt, an SAP Certified ERP SaaS logistics solution provider, is a Vuzix wholly owned subsidiary. The Company has won Consumer Electronics Show (or CES) awards for innovation for the years 2005 to 2024 and several wireless technology innovation awards among others. Founded in 1997, Vuzix is a public company with offices in: Rochester, NY; Munich, Germany; and Kyoto and Tokyo, Japan.

Read More

Virtualized Environments

VeriSilicon Unveils the New VC9800 IP for Next Generation Data Centers

Business Wire | January 09, 2024

VeriSilicon today unveiled its latest VC9800 series Video Processor Unit (VPU) IP with enhanced video processing performance to strengthen its presence in the data center applications. The newly launched series IP caters to the advanced requirements of next generation data centers including video transcoding servers, AI servers, virtual cloud desktops, and cloud gaming. The VC9800 series of VPU IP boasts high performance, high throughput, and server-level multi-stream encoding and decoding capabilities. It can handle up to 256 streams and support all mainstream video formats, including the new advanced format VVC. Through Rapid Look Ahead encoding, the VC9800 series IP improves video quality significantly with low memory footprint and encoding latency. With capable of supporting 8K encoding and decoding, it offers enhanced video post-processing and multi-channel encoding at various resolutions, thus achieves an efficient transcoding solution. The VC9800 series of VPU IP can seamlessly interface with Neural Network Processor (NPU) IP, enabling a complete AI-video pipeline. When combined with VeriSilicon’s Graphics Processor Unit (GPU) IP, the subsystem solution is able to deliver enhanced gaming experiences. In addition, the hardware virtualization, super resolution image enhancement, and AI-enabled encoding functions of this series IP also offer effective solutions for virtual cloud desktops. “VeriSilicon’s advanced video transcoding technology continues leading in Data Center domain. We are working closely with global leading customers to develop comprehensive video processing subsystem solutions to meet the requirements of the latest Data Centers,” said Wei-Jin Dai, Executive VP and GM of IP Division of VeriSilicon. “For AI computing, our video post-processing capabilities have been extended to smoothly interact with NPUs, ensuring OpenCV-level accuracy. We’ve also introduced super resolution technology to the video processing subsystem, elevating image quality and ultimately enhancing user experiences for cloud computing and smart display.” About VeriSilicon VeriSilicon is committed to providing customers with platform-based, all-around, one-stop custom silicon services and semiconductor IP licensing services leveraging its in-house semiconductor IP.

Read More