New Guide Helps CFOs Prepare for Cyber Attacks

The American National Standards Institute and the Internet Security Alliance released a new action guide on Monday to help business executives analyze, manage, and transfer financial risks related to a cyber attack. Critical vulnerabilities in the world's financial systems place the world's security at risk, leaders of the organizations said.

"The Financial Impact of Cyber Risk: 50 Questions Every CFO Should Ask" is "revolutionary in its approach and extremely practical in its application. It will assist organizations in taking the necessary multi-dimensional approach to managing their cyber infrastructure by shifting the locus of control to the Chief Financial Officer," said Larry Clinton, ISA's president.

ANSI and ISA noted the Congressional Research Service in 2004 estimated the annual economic impact of cyber attacks on businesses at more than $226 billion, and in 2008, Homeland Security Secretary Michael Chertoff named cyber risks one of the nation's top four priority security issues. "We are experiencing a financial meltdown due to a fundamental misunderstanding and mismanagement of modern financial systems, which is generating a crisis of confidence in our core institutions. Today, all our critical infrastructures are reliant on cyber systems that are also misunderstood and mismanaged. These vulnerabilities place both our financial and physical security in jeopardy unless we update the method we use to control our cyber systems," Clinton said.

The guide was developed by a task force representing more than 30 private and public organizations. Two thousand copies of it are being sent to executives at leading U.S. companies. Electronic copies are available for a free download. "By bringing together a diverse group of cyber security experts, ANSI and the ISA have identified the potential gaps in the process of analyzing cyber risk," said Fran Schrotter, senior vice president and chief operating officer at ANSI. "We have given C-Suite executives a tool that will assist them in developing and implementing a cyber risk management plan for their organization."

Download Center

HTML - No Current Item Deck
  • Free Safety Management Software Demo

    IndustrySafe Safety Management Software helps organizations to improve safety by providing a comprehensive toolset of software modules to help businesses identify trouble spots; reduce claims, lost days, OSHA fines; and more.

  • Easy to Use Safety Incident App

    Record incidents on the go with IndustrySafe’s mobile app. Collect data for multiple types of incidents including including near misses, vehicle and environmental incidents, and employee and non-employee injuries; at job sites and remote locations—with or without web access.

  • Complete Online Safety Training Courses

    Deliver state-of-the art, online safety training courses to your organization with IndustrySafe Training Management Software. Generate reports to track training compliance and automatically notify learners of upcoming or overdue classes.

  • Conduct EHS Inspections and Audits

    Record and manage your organization’s inspection data with IndustrySafe’s Inspections module. IndustrySafe’s pre-built forms and checklists may be used as is, or can be customized to better suit the needs of your organization.

  • Track Key Safety Performance Indicators

    IndustrySafe’s Dashboard Module allows organizations to easily track safety KPIs and metrics. Gain increased visibility into your business’ operations and safety data.

  • Industry Safe
comments powered by Disqus