Internal audit leaders would do well to build strong relationships with Chief Information Security Officers (CISOs) to strengthen cybersecurity assurance.
Cybersecurity in 2022 Part 2 – Critical Partners – Internal Audit and the CISO
Part 2 of the IIA’s three-part Global Knowledge Brief series on cybersecurity examines the benefits of building a strong relationship between internal audit and the organization’s chief information security officer (CISO). This brief examines how successful partnerships between internal audit and IT helps build effective assurance and how this relates to The IIA’s GTAG, Auditing Cybersecurity Operations: Prevention and Detection, which aims to help define cybersecurity operations, identify its components, consider relevant control guidance in IT control frameworks, and understanding approaches to auditing cybersecurity operations.