Accounting and Cybersecurity Risk Management

被引:22
作者
Eaton, Tim V. [1 ]
Grenier, Jonathan H. [1 ]
Layman, David [1 ]
机构
[1] Miami Univ, Oxford, OH 45056 USA
来源
CURRENT ISSUES IN AUDITING | 2019年 / 13卷 / 02期
关键词
cybersecurity; risk management; controls; assurance;
D O I
10.2308/ciia-52419
中图分类号
F8 [财政、金融];
学科分类号
0202 ;
摘要
As the number of cybersecurity incidents continue to rise and stakeholders are becoming increasingly concerned, companies are devoting considerable resources to their cybersecurity risk management efforts and related cybersecurity disclosures. This paper describes how accountants are uniquely positioned to assist companies with these efforts in advisory and assurance capacities. We present a model of effective cybersecurity risk management and discuss how accountants' core competencies can add significant value in each of the model's five stages. In addition, we use several recent high-profile cybersecurity incidents as illustrative examples in each of the five stages. We conclude by discussing implications for accountants.
引用
收藏
页码:C1 / C9
页数:9
相关论文
共 30 条
[1]  
American Institute of Certified Public Accountants (AICPA), 2017, SOC CYB BACKGR
[2]  
American Institute of Certified Public Accountants (AICPA), 2017, ILL CYB RISK MAN REP
[3]  
American Institute of Certified Public Accountants (AICPA), 2017, AICPA UN CYB RISK MA
[4]   Do firms underreport information on cyber-attacks? Evidence from capital markets [J].
Amir, Eli ;
Levi, Shai ;
Livne, Tsafrir .
REVIEW OF ACCOUNTING STUDIES, 2018, 23 (03) :1177-1206
[5]  
[Anonymous], 2013, Internal Control - Integrated Framework
[6]  
[Anonymous], 2010, ID ASS RISK MAT MISS
[7]  
[Anonymous], 2013, Business Insider
[8]  
[Anonymous], 2018, Cybersecurity Ventures
[9]  
Center for Audit Quality, 2016, 2016 MAIN STREET INV
[10]  
Center for Audit Quality, 2016, UND CYB EXT AUD RES
123