Skip Ribbon Commands
Skip to main content
The Institute of Internal Auditors North AmericaBreadcrumb SeparatorStandards and GuidanceBreadcrumb SeparatorRecommended GuidanceBreadcrumb SeparatorPractice GuidesBreadcrumb SeparatorGTAG: Assessing Cybersecurity Risk: Roles of the Three Lines of Defense

NEW! Global Technology Audit Guide (GTAG): Assessing Cybersecurity Risk: Roles of the Three Lines of Defense

Global Technology Audit Guide (GTAG): Assessing Cybersecurity Risk: Roles of the Three Lines of DefenseIdentifying, Assessing, and Mitigating Cyber Threats

Organizations of all types are becoming more vulnerable to cyber threats due to their increasing reliance on computers, networks, programs and applications, social media, and data. In response to such emerging risks, CAEs are challenged to ensure management has implemented both preventive and detective controls. CAEs must also create a clear internal audit approach to assess cybersecurity risk and management’s response capabilities, with a focus on shortening response time.

The IIA’s newest Global Technology Audit Guide (GTAG), Assessing Cybersecurity Risk: Roles of the Three Lines of Defense, was designed to help internal auditors develop competence in providing assurance over cybersecurity risks.

Assessing Cybersecurity Risk: Roles of the Three Lines of Defense discusses the internal audit activity’s role in cybersecurity; explores emerging risks and common threats faced by all three lines of defense; and presents a straightforward approach to assessing cybersecurity risks and controls.

Downloads and Links

English French

Non-members may purchase this GTAG from the IIA Bookstore.