O'Reilly logo

Guide: Reporting on an Entity's Cybersecurity Risk Management Program and Controls by American Institute of Certified Public Accountants

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Appendix G

Illustrative Cybersecurity Risk Management Report

This appendix is nonauthoritative and is included for informational purposes only.

Report on XYZ Manufacturing’s Description of its Cybersecurity Risk Management Program and the Effectiveness of Controls Within the Program Throughout the Period January 1, 20X1, to December 31, 20X1

CONTENTS

Section 1—Assertion of the Management of XYZ Manufacturing

Section 2—Independent Accountant’s Report

Section 3—XYZ Manufacturing’s Description of Its Cybersecurity Risk Management Program

Section 1—Assertion of the Management of XYZ Manufacturing

Introduction

We have prepared the attached XYZ Manufacturing’s Description ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required