Cybersecurity Risk Management Oversight: A Tool for Board Members

Apr 12, 2018

On April 12, 2018, the Center for Audit Quality released a tool that provides key questions board members can use as they discuss cybersecurity risks and disclosures with management and CPA firms.

The questions are grouped under four key areas:

Understanding how the financial statement auditor considers cybersecurity risk
Understanding the role of management and responsibilities of the financial statement auditor related to cybersecurity disclosures
Understanding management’s approach to cybersecurity risk management
Understanding how CPA firms can assist boards of directors in their oversight of cybersecurity risk management

The tool also compiles cybersecurity-related resources from the CAQ, the American Institute of CPAs, the National Association of Corporate Directors, and others.

Review the tool on the CAQ's website.

Centre for Financial Reporting

Centre for Financial Reporting

Deloitte User?

Centre for Financial Reporting

Cybersecurity Risk Management Oversight: A Tool for Board Members

Related Topics

Related news

SEC Proposes Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies

Will Coronavirus lead to more cyber-attacks?

To tame risk, Strengthen the Board-CISO relationship

What are the business benefits of practicing strong cybersecurity?

SEC publishes document on cybersecurity and resiliency

Cybersecurity threats call for a global response

Related Publications

Board Practices Quarterly: Cyber oversight

Webcast: Cyber risk in the wake of COVID-19: Building greater resilience

OCIE Cybersecurity and resiliency observations

Cybersecurity on the front lines: A call to action

Correction list for hyphenation