New Guide Helps CFOs Prepare for Cyber Attacks

The American National Standards Institute and the Internet Security Alliance released a new action guide on Monday to help business executives analyze, manage, and transfer financial risks related to a cyber attack. Critical vulnerabilities in the world's financial systems place the world's security at risk, leaders of the organizations said.

"The Financial Impact of Cyber Risk: 50 Questions Every CFO Should Ask" is "revolutionary in its approach and extremely practical in its application. It will assist organizations in taking the necessary multi-dimensional approach to managing their cyber infrastructure by shifting the locus of control to the Chief Financial Officer," said Larry Clinton, ISA's president.

ANSI and ISA noted the Congressional Research Service in 2004 estimated the annual economic impact of cyber attacks on businesses at more than $226 billion, and in 2008, Homeland Security Secretary Michael Chertoff named cyber risks one of the nation's top four priority security issues. "We are experiencing a financial meltdown due to a fundamental misunderstanding and mismanagement of modern financial systems, which is generating a crisis of confidence in our core institutions. Today, all our critical infrastructures are reliant on cyber systems that are also misunderstood and mismanaged. These vulnerabilities place both our financial and physical security in jeopardy unless we update the method we use to control our cyber systems," Clinton said.

The guide was developed by a task force representing more than 30 private and public organizations. Two thousand copies of it are being sent to executives at leading U.S. companies. Electronic copies are available for a free download. "By bringing together a diverse group of cyber security experts, ANSI and the ISA have identified the potential gaps in the process of analyzing cyber risk," said Fran Schrotter, senior vice president and chief operating officer at ANSI. "We have given C-Suite executives a tool that will assist them in developing and implementing a cyber risk management plan for their organization."

Download Center

HTML - No Current Item Deck
  • Get the Ultimate Guide to OSHA Recordkeeping

    OSHA’s Form 300A posting deadline is February 1! Are you prepared? To help answer your key recordkeeping questions, IndustrySafe put together this guide with critical compliance information.

  • Steps to Conduct a JSA

    We've put together a comprehensive step-by-step guide to help you perform a job safety analysis (JSA), which includes a pre-built, JSA checklist and template, steps of a JSA, list of potential job hazards, and an overview of hazard control hierarchy.

  • Levels of a Risk Matrix

    Risk matrices come in many different shapes and sizes. Understanding the components of a risk matrix will allow you and your organization to manage risk effectively.

  • Free Safety Management Software Demo

    IndustrySafe Safety Management Software helps organizations to improve safety by providing a comprehensive toolset of software modules to help businesses identify trouble spots; reduce claims, lost days, OSHA fines; and more.

  • Industry Safe
TenCate FR Technology

OH&S Digital Edition

  • OHS Magazine Digital Edition - October 2020

    October 2020

    Featuring:

    • FACILITY SECURITY
      EHS Compliance: Make it Personal
    • FOOT PROTECTION
      Choosing the Right Safety Shoe for Your Industry
    • HAND PROTECTION
      A Requirements Checklists for Work Safety Gloves
    • COVID-19 MANAGEMENT
      Contemporary Issues in HSE Management
    View This Issue