Practitioners and researchers from The IIA and EY conducted extensive analysis to determine the root cause of how and why boards within all industries get a skewed picture of their organizations’ ability to protect themselves from cyber-related risks with the requisite resiliency. The team identified six key questions that if unanswered likely mean a disconnect exists.
The Risky Six: Key questions to expose gaps in board understanding of organizational cyber resiliency
Global Perspectives and Insights The IIA Mar 15, 2021
The IIA
The Institute of Internal Auditors
Learn more with our other resources
Getting Started With
The Global Internal Audit Standards: Domain IV
All Things Internal Audit
Identity & Access Management
Essential News for Audit Leaders Network
CAE Bulletin Issue: February 17, 2025
Tone at the Top
A New Tool to Monitor Established Risks
Global Technology Audit Guides
GTAG: Auditing Cybersecurity Operations: Prevention and Detection, 2nd Edition
All Things Internal Audit