|Global Knowledge Gateway||
Risk Management & Internal Control
Does Your Cyber Security Include Governance? It Should
Effective risk management starts with a cyber security governance program, according to Steve Ursillo Jr., Partner, Risk Assurance & Advisory and National Leader, Information Assurance and Cybersecurity at Cherry Bekaert. Organizations need to build and implement effective governance program with effective policies and procedures—one that is fully understood by leadership and management, including audit committees. While organizations need to focus on preventing breaches, which remains critical, they also need to assume they will be breached and build a transparent system that is understood in advance. Leadership’s understanding of how cyber risks can ultimately translate into business risks is crucial.
Like what you see here? Subscribe to The Latest, our customizable update sent every two weeks.
Do you have a perspective you'd like to share with the global profession? Email Gateway@ifac.org to inquire about becoming a Gateway contributing author.