• Register
Return to: Home > News > Audit chiefs see cybersecurity as biggest risk to business

Audit chiefs see cybersecurity as biggest risk to business

Cybersecurity is the biggest risk to organisations across the private and public sector, according to research conducted by Risk in Focus, a collaborative report between seven European institutes of internal auditors.

Over two-thirds (68%) of the 300 chief internal auditors questioned said cybersecurity is one of the top five risks their organisations faces.

The report looked at research from PwC which found that while 62% of organisations expect cyber risk to cause disruption in the next three years, 74% have low or no cyber risk maturity.

It noted that organisations tend to view cybersecurity through a technical lens by investing in security tools, then seek assurance that these are of a high standard, however more must be done to educate staff in this area so that data is not compromised or lost through human error.

The report suggested that companies’ boards, with the help of internal audit, should have a broad view of the organisation’s response to the rising cyber threat and the quality of its cyber governance and risk management.

The UK and Ireland’s Chartered Institute of Internal Auditors’ (IIA) CEO Ian Peters said: “Cybersecurity has been a high-priority risk for a number of years and this shows no signs of abating. However, companies are pushing to move away from legacy systems and, as approaches to managing cyber risk mature, attention is turning to third-party defensibility.

“High-profile cyberattacks such as Petya and WannaCry are becoming more and more prevalent and this means that organisations are only as strong as the weakest link in their IT supply chain.”

The IIA said a major obstacle to mitigating cyber risk is ‘the piecemeal approach that organisations have taken to their IT infrastructure planning and development over past decades’.

It continued to say that it is ‘important now that organisations turn to looking at outsourced or third party supply chains to ensure that they are not vulnerable to cyberattacks’. 

Compliance and data security and protection were second to cybersecurity, with 58% of respondents citing this as a risk their organisation faces.

Top Content

    ARGA team, assemble!

    The new top team has been named that will see in root-and-branch reform at the Financial Reporting Council (FRC) as it transforms into the Audit, Reporting and Governance Authority (ARGA). Will the new duo be as dynamic as some are hoping? Robin Amlôt reports.

    read more

    FASB: a quest for simpler standards

    FASB chair Russell Golden addressed the IMA 2019 Annual Conference and Expo at the Sheraton San Diego Hotel and Marina, California, on 18 June. IMA immediate former chair-emeritus Alex Eng acted as moderator. Joe Pickard reports.

    read more

    The future of audit, and how to get there

    Two recent reports peer into the future of the audit profession. One analyses what an audit should offer, while the other looks at how the audit process will be carried out. Robin Amlôt takes a closer look at both.

    read more

    EFAA elects new president, focuses on digital future

    EFAA’s new president, Salvador Marin, outlined his key priorities for the next two years at the organisation’s 2019 annual general meeting, while outgoing president Bodo Richardt offered advice. Robin Amlôt reports.

    read more

    CORONAVIRUS TIMELINE: REACTIONS FROM THE ACCOUNTANCY PROFESSION

    As the Coronavirus (COVID-19) continues to spread across the world, the International Accounting Bulletin and The Accountant will be collating all the latest news and updates from the profession on the pandemic’s impact.

    read more
Privacy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.