The IRMA Community
Newsletters
Research IRM
Click a keyword to search titles using our InfoSci-OnDemand powered search:
|
Auditor Evaluation and Reporting on Cybersecurity Risks
Abstract
Tremendous improvements in information networking capabilities have brought with them increased security risks resulting from the deterioration of the ability of a physical layer of computer security to protect an organization's information system. As a result, audit committees have had to deal with new security issues as well as the need to understand the cyber perpetrator and ensure the proper training of employees to consider cybersecurity risks. Standard setters including the Institute of Internal Auditors and the American Institute of Certified Public Accountants have issued guidance about lines of defense and reporting on an entity's cybersecurity risk management program and controls, respectively. Each of these topics is considered along with how cybersecurity guidance from COBIT, the National Institute of Standards and Technology, and the Center for Internet Security can be mapped into five cyber infrastructure domains to provide an approach to evaluate a system of cybersecurity.
Related Content
Anastasia A. Katou, Mohinder Chand Dhiman, Anastasia Vayona, Maria Gianni.
© 2024.
22 pages.
|
José Ricardo Andrade.
© 2024.
20 pages.
|
Richa Kapoor Mehra.
© 2024.
17 pages.
|
Rajwant Kaur.
© 2024.
14 pages.
|
Namrita Kalia.
© 2024.
14 pages.
|
Hasiba Salihy, Dipanker Sharma.
© 2024.
14 pages.
|
Priya Sharma, Rozy Dhanta, Atul Sharma.
© 2024.
20 pages.
|
|
|