October is National Cybersecurity Awareness Month

Held every October, National Cybersecurity Awareness Month (NCSAM) is a collaborative effort between government and industry to raise awareness about the importance of cybersecurity and to ensure that all Americans have the resources they need to be safer and more secure online.

AAFCPAs’ Business & IT Security practice published a comprehensive Cybersecurity Risk Mitigation Guide outlining the most prevalent risks and critical security measures to mitigate these risks, including those posed by:

  • Social Engineering Attacks
  • The Internet of Things (IoT)
  • Software and Hardware Configuration Vulnerabilities
  • Web Application Security Vulnerabilities
  • Insufficient IT General Controls (ITGCs)
  • Lack of Adequate Infrastructure/Resiliency
  • Outsourcing Services
  • Physical Security Breaches
  • Remote Workforces

Download the full Cybersecurity Risk Mitigation Guide here.>>

AAFCPAs reminds clients that the best line of defense in protecting your organization from risks is to remain vigilant and understand your vulnerabilities. AAFCPAs’ Cyber Security & Technology Assessments help identify risks from the use of technology that could potentially cause information loss or financial or reputational harm to your organization.

To schedule a cyber-security assessment, or for specific advice on how to best protect your organization against cyber-attacks, please contact James Jumes at 774.512.4062, jjumes@nullaafcpa.com; or your AAFCPAs Partner.

About the Author

James Jumes
James joined AAFCPAs in 2013 to lead the Business Consulting Services practice. He has more than 25 years of experience working with information technology systems and diverse business operational processes. James is highly experienced in IT controls and assurance, SOX 404, and Service Organization Control (SOC) reports: SOC 1 (SSAE 18), SOC 2, SOC 2+ and 3 attestation reporting.  James developed a unique methodology to delivering SOC reporting services, and he is an AICPA-approved Peer Review SOC Specialist, assisting peer review teams to review SOC 1, 2, 2+ and 3 engagements. He is a HITRUST Certified Common Security Framework (CSF) Practitioner, providing HITRUST CSF self-assessment consulting, or SOC 2 + HITRUST for assessing against the evolving compliance landscape shaped by HITECH, HIPAA, CMS and various other federal, state and business requirements.