Cybersecurity Resource Center 

Malicious cyberattacks against public and private companies and various agencies of the federal government have highlighted the growing cybersecurity risk to organizations of all sizes, in all sectors.

CPAs are well-positioned to help entities manage cybersecurity risks through services such as the following:

  • Assurance services: Increasingly, businesses, organizations and governmental entities are interested in evaluating the effectiveness of their cybersecurity risk management programs. CPAs can provide assurance on those programs to help instill confidence in an entity’s efforts to address cybersecurity risks.
  • Advisory services: CPAs, especially those with a specialization in information technology, can share their expertise and best practices with clients, helping them address risks associated with cybersecurity.
  • Protecting client and customer data: CPAs in public accounting and those working in the finance function within business and industry can provide valuable insights on how to safeguard client and customer information. 
Navigate the Cybersecurity Resource Center
Learn how CPA finance executives and accounting firms can manage cybersecurity challenges, and access cybersecurity news, information, events and resources developed by the AICPA.

Featured Resources - Access the latest cybersecurity resources and learning opportunities.
Resources - These key resources can help you better understand cybersecurity issues and solutions. 
CPE and Events - Link to available cybersecurity learning opportunities.
News and Articles - Read news about cybersecurity and how it affects businesses and clients.
Other Related Resources - Find additional cybersecurity information through these related resources. 

Featured Resources

  • Cybersecurity and the External Audit - The Center for Audit Quality has several resources such as, these alerts from 2014 and this 2015 that summarize an auditor’s responsibilities with respect to cybersecurity and an audit of an entity’s financial statement. While the CAQ’s alerts are written with respect to auditing an SEC filer, the cybersecurity-related responsibilities refer to auditing a nonissuer under GAAS.

  • Webcast - Advanced Concepts in Cybersecurity – July 21, 2016, 2-4pm ET

CPE and Events


News and Articles


Copyright © 2006-2016 American Institute of CPAs.