Visit cpajournal.com to read the very latest from The CPA Journal
March/April 2023 » Audit Committee Penetration Testing...
Full articles of The CPA Journal are available to NYSSCPA members and CPAJ subscribers ONLY. Please login to access this content.
Nonmembers and nonsubscribers, you can apply for NYSSCPA Membership here and get unlimited access to The CPA Journal, or you can create a non-member online account here and purchase individual articles.
Joel Lanz, CPA, CISA, CISM, CISSP, CFE
Whether responding to heightened regulatory expectations or confirming trust in their organization's ability to repel a cyberattack, performing penetration testing (i.e., “pen test”) continues to be a hot topic at audit committee meetings. Sighs of relief frequently accompany the good news of a passed pen test and sometimes create favorable bonus considerations for management. A poor pen test typically results in blame (and in some cases shame) throughout the organization, time-intensive meetings, and additional expense to resolve identified issues. Some organizations charge the audit committee with ensuring that a periodic (usually annual) penetration test occurs, results are communicated, and remedial actions are taken where necessary. For organizations not having an audit committee, the “governance role” typically is assigned to the CFO, who can provide some independent perspective on the information technology function. Unfortunately, in other organizations, the recruitment and contracting of a penetration tester are assigned to those directly responsible for the assets for which the test is to be performed.
Advertising with the NYSSCPA is your opportunity to reach the greatest number of business advisors in the most important business state in the nation.
Post a resume or job listing in our Career Center to connect with hundreds of employers or job seekers.
Join 21,000+ of your peers. Apply for membership today!
Find CPE Conferences, Seminars, and Online Courses Here.
Get insight and analysis into all areas of the profession.
Content provided by and exclusively for NYSSCPA members.
Stay up to date with important NYSSCPA news.
A daily roundup of the latest from around the accounting and financial industry.
A strong PAC means a strong profession. Donate Today.
Help develop a strong network of connections.
A resource for NYSSCPA Members.
Members, Get expert answers to technical questions.
Start your career off right with an experienced mentor.
It's never too early to start thinking about your career.