Archive: risk management

  • Clear Filters

Defining Risk Management Framework Compliance for Contractors

As cyber threats continue to increase in scale and impact across organizations of all sizes, cybersecurity must be considered as a key component of both information security and risk management programs. The Defense Security Service (DSS) now requires all cleared contractors processing classified information to transition to the new Risk Management Framework (RMF), leaving contractors […]
March 15, 2018

What is a Cyberincident Response Plan and Do We Need One?

With today’s cybersecurity threats, companies need to not only defend their perimeter, but also mitigate the effects of inevitable breaches or other cyberincidents.  This can be done through an effective incident response (IR) plan which identifies risks, and has clear points for decision making and escalation paths.  The objectives of a good IR plan should […]
May 15, 2014
  • By:
  • Aronson

Is Your Business Susceptible to Cybercrime?

There are many forms of cybercrime that can affect a small-to-medium-sized business.  The AICPA recently released a study of the top five cybercrimes in virtual environments.  They include: Tax refund fraud Corporate account takeover Identity theft Theft of sensitive data  Theft of intellectual property While all are to be taken seriously and need to be […]
January 16, 2014
  • By:
  • Aronson

NIST Issues Draft Cybersecurity Framework

The National Institute of Standards and Technology (NIST) has developed their voluntary framework for organizations to improve their cybersecurity for the nation’s infrastructure.  The framework is the next step from the White House’s 2013 executive order on agency cybersecurity, which was discussed in a previous blog entry.  While the framework is not universal for all […]
October 18, 2013
  • By:
  • Aronson

Risk Management on a Budget (Part 2)

Internal financial management threats can be difficult to predict since it is employees who could be be presenting a risk to the company.  Job rotation, flexible work schedule, and mandatory vacations can also reduce the cost of risk for employee-based losses. Internal controls and processes can fill in gaps that could have been circumvented by […]
September 4, 2012

Risk Management on a Budget (Part 1)

Companies face two threat origins: internal and external. Internal origins can be disgruntled employees, foreign nationals, or competitor espionage. Whether you are the CFO of a company or its payroll clerk, you’re targeted by external junk mail, cold calls, anything to get a dime from the corporate veil.  What most accountants or business owners don’t typically […]
May 10, 2012

Using Personal Guaranty Companies to Limit Exposure

If you are a real estate developer with personal guarantees, there may be better ways to secure financing while protecting your personal assets.  It is common that banks require developers to personally guarantee loans in order to provide financing.  This demonstrates the commitment of the developer to the project, provides the bank with leverage in […]
January 3, 2011
  • By:
  • Aronson