How to provide cybersecurity advice

Featuring Audrey Katcher, CPA/CITP, CGMA, a partner with RubinBrown LLP

Video transcript:

CPA firms should be helping clients with cybersecurity and data security issues all through the lifecycle of that information. We should be there assessing and recommending how to secure information. We should be there helping clients understand what information needs to be secured. And we can take it all the way to an attestation that can be used by a third party. That’s what makes a CPA special is that we can do that attestation for third parties. But we need to look at ourselves and say, how can we help the client get ready for what they need to disclose in cybersecurity?

The SOC (service organization controls) for cybersecurity is a perfect example. That guidance is out. We can use some of that guidance now to use it as an advisory project with our clients to give them an understanding of how they can set up the cyber risk management program. The expectations are there to report to the public. And so they need to start getting ready and we’re the best ones to help them through that process.

SPONSORED QUIZ

How well do you know small business?

There are over 30 million small businesses in the U.S., and many of them are optimistic in their outlook. Are you familiar with the obstacles and opportunities they are facing? Test your small business acumen with this quiz sponsored by Chase Ink®.

SPONSORED REPORT

In focus: Payroll

Providing payroll services that comply with ever-changing regulations and meet evolving employee and employer demands is no easy task. Paychex's Tom Hammond discusses common payroll considerations for CPA firms.