In “Corporate Legal Looks to Be Major Benefactor in Accounting Cybersecurity Standards” (New York Law Journal, 15 Mar. 2017), Austin Berglas comments on the new set of standardized corporate cyber risk management evaluation criteria and audit reports promulgated by the American Institute of Certified Public Accountants (AICPA).
The criteria, which adhere to NIST and ISO 27001, seek to standardize cybersecurity risk assessment and management, promoting the need for interdepartmental cooperation. According to Austin, “The best positioned organizations are ones that enforce frequent communication between all levels of the organization: C-suite, IT, and legal.”
Read the full article. (Subscription required)