Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.


Status message

Start your free, no obligation 5-day trial to continue exploring with full access.

CAQ: Audit’s role in cyber-security exams

Tammy Whitehouse | September 15, 2016

Public company auditors are starting to suggest companies voluntarily submit to an independent cyber-security examination separate from the existing financial statement audit.

In a chapter of a 236-page paper by the Internet Security Alliance prepared for its recent conference, the Center for Audit Quality says the American Institute of Certified Public Accountants is developing a new process for examining and reporting on a company’s cyber-security risk management. It contemplates an independent cyber-security report being produced by either a company’s current external auditor or another audit firm.

Much the way financial statements and the related audit convey the...

Buy this article for $49, or subscribe to Compliance Week for a month at $149 and get unlimited article access for 30 days.