Search
 
Best Practices

A Proactive and Pragmatic Approach to Cyber Risk Management

How to use the new AICPA cybersecurity attestation reporting framework.

By Gaurav Kumar, Jeff Schaeffer | Updated on July 18, 2017
Cyberattacks are undoubtedly on the rise. Companies are no longer concerned about whether an attack will occur, but rather when and how their most valuable data will be breached. Increasing in sophistication, today’s cyberattacks can impact all areas of an organization for years after the initial attack and can cost millions—if not billions—in damages.

A number of regulations focused on improving cybersecurity programs have been introduced over the past few years, including a recent regulation finalized by the New York Department of Financial Services (NYDFS) requiring banks, insurance companies, and other NYDFS-regulated entities to establish and maintain an effective cyber risk management program. Still, the magnitude of stolen information remains staggering, and the challenges associated with protecting data continue to grow.

Not all cyberattacks are made public, but it seems as though a new breach makes headlines every day. Only recently has a comprehensive framework for reporting cyber risk management activities become available: The American Institute of Certified Public Accountants (AICPA) recently released a new attestation reporting framework intended to help organizations evaluate and report on their cyber risk management programs. Designed to expand cyber-risk reporting to a broad range of internal and external users, including the C-suite and the board, the AICPA’s new reporting framework aims to provide in-depth, easily consumable information about an organization’s cyber risk management program.

Complete your profile to continue reading and get FREE access to Treasury & Risk, part of your ALM digital membership.

Your access to unlimited Treasury & Risk content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Critical Treasury & Risk information including in-depth analysis of treasury and finance best practices, case studies with corporate innovators, informative newsletters, educational webcasts and videos, and resources from industry leaders.
  • Exclusive discounts on ALM and Treasury & Risk events.
  • Access to other award-winning ALM websites including PropertyCasualty360.com and Law.com.

Already have an account?

NOT FOR REPRINT

© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to asset-and-logo-licensing@alm.com. For more information visit Asset & Logo Licensing.

Recommended Stories

Treasury & Risk

Join Treasury & Risk

Don’t miss crucial treasury and finance news along with in-depth analysis and insights you need to make informed treasury decisions. Join Treasury & Risk now!

  • Free unlimited access to Treasury & Risk including case studies with corporate innovators, informative newsletters, educational webcasts, and resources from industry leaders.
  • Exclusive discounts on ALM and Treasury & Risk events.
  • Access to other award-winning ALM publications including PropertyCasualty360.com and Law.com.

Already have an account? Sign In Now
Join Treasury & Risk

Copyright © 2025 ALM Global, LLC. All Rights Reserved.