How board members can perform oversight of cybersecurity risks
A new tool can help board members understand what questions to ask in their oversight of cybersecurity risk management.
IT Risk Management
Cybersecurity tips from the ‘Shark Tank’
Shark Tank star and cybersecurity expert Robert Herjavec said CPAs have an important role to play as trusted advisers on cybersecurity.
New model created for cybersecurity risk management
The AICPA framework enables organizations to communicate and creates a new engagement for CPAs to report.
New path for CPAs in cyber risk management
AICPA proposals would guide design and evaluation of cyber risk management.
Technology risk: It’s more than cybersecurity
This column discusses the “silent killers” of technology risk that organizations must master to protect their business.
Bolster your data defenses
These steps can help close holes in your cybersecurity setup.
5 steps CPAs can take to fight hackers
See what CPAs can do to fight cybercriminals’ threat.
How to mitigate vendor risk in a cybersecurity environment
Vendors represent one of the highest risk areas in an organization’s cybersecurity structure.
Use a layered cybersecurity approach to protect crown jewels
Layers of defense should exist in an organization’s systems, with the most sensitive information protected by the most layers.
How internal audit can help manage 10 top technology risks
Internal auditors can play a pivotal role in managing technology risks ranging from cybersecurity to social media. The risks are ranked in a new report that shows how internal audit can help manage them.
Cyber concerns show no signs of cooling off, former Homeland Security chief says
The digital sun will never set, which means that digital threats to business and government will only grow in the future, Tom Ridge said Friday.
How to manage risks connected with the “internet of things”
Although web-connected products and the “internet of things” provide opportunities for transformative growth, they also may carry substantial risks.
Unstructured data: How to implement an early warning system for hidden risks
Companies rarely use technology to effectively identify risks beyond those related to business and transaction processing in financial and operating system internal controls. This article provides techniques to expand the scope of an organization’s risk management processes—in a way that may help some identify hidden risks before they emerge as full-blown crises.
