Building a Cybersecurity Practice 

Accountants are in a position to need to understand cybersecurity in order to safeguard the large amount of sensitive information they handle and store on a daily basis. However, leaders at many firms can barely understand the fundamental concepts of cybersecurity and how to protect their information and client information. In addition, the IT world has been involved in the design and completion of numerous opportunities to provide testing of not only your firm’s systems, but also those of your clients.

Growing cybersecurity concerns are putting organizations under pressure to demonstrate they are managing cybersecurity threats. To address this market need, the AICPA has developed a cybersecurity risk management reporting framework to assist organizations in communicating about their risk management programs. The framework is a key component of the new System and Organization Controls (SOC) for Cybersecurity engagement. Learn more about this valuable, new framework and the SOC for Cybersecurity engagement

The PCPS Cybersecurity Toolkit provides learning resources, staff training tools, and tools to use with clients to assess their needs for cybersecurity services. Together, these tools will help your firm analyze your service opportunities and assist in building a cybersecurity practice.

Understanding Cybersecurity

Exploring Cybersecurity Guide 
(for AICPA members)

This guide provides a general overview of cybersecurity. What is it? What are the threats to your firm and your clients? And what best practices should your firm implement to protect against cyber threats?

Learning Matrix
(for AICPA members)

Use this resource to learn about the numerous cybersecurity frameworks available. This document includes information on key regulations impacting cybersecurity, reference materials, industry recognized sources of security intelligence and thought leadership.

Service Opportunity Grid
(for AICPA members)
Numerous service opportunities relate to cybersecurity. Consider which of these opportunities may fit with your firm by reviewing the key considerations of each opportunity.

Cybersecurity PowerPoint
(for PCPS members)
Host an internal meeting for your staff on the basics of cybersecurity, why it’s important and how your firm is approaching the applicable issues. Modify this template for your firm’s practices and to share cybersecurity basics with your clients.

Client FAQs
(for PCPS members)
Help your clients address some of the top cybersecurity questions they may have with this co-brandable FAQ document.

Implementation Considerations
These resources can provide additional guidance on cybersecurity.

Service Implementation Checklist
(for PCPS members)
Interested in implementing a cybersecurity advisory service line? Follow this step by step guide to get your new service offering up and running.

Client assessment template
(for PCPS members)
Use this document to facilitate a discussion with your client about their needs. Review all potential opportunities using the document linked above, or see only applicable options based on your discussion with this excel document.

Client communication template
(for PCPS members)
Let your client know what new services you have to offer which may be of service to their organization using this customizable template.

SOC for Cybersecurity: Engagement Overview
(for AICPA members)
Learn about the new SOC for Cybersecurity engagement developed by the AICPA for firms to use in assisting organizations with communicating their cybersecurity positions. This document provides an overview of what you need to know.
Additional Resources
These resources can provide additional guidance on cybersecurity.


© 2017 Association of International Certified Professional Accountants. All rights reserved.