IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Cyber security holds top spot in IT audit risk list

Privacy, data, and regulatory compliance are among other concerns facing IT audit departments


A survey commissioned by Protiviti and ISACA revealed cyber security holds the top spot on the IT audit risk list, while privacy and data, as well as regulatory compliance, also rank highly.

“War-related cyber attacks are on the rise, the surge of sophisticated ransomware attacks is ongoing and remote work continues to subject many organizations to new cyber security risks,” stated Proviti.

Even so, the survey showed that one-fifth of organizations don't anticipate cyber security risks to be addressed in their 2022 audit plans.

"Given the increasingly complex and rapidly changing technology risk landscape we're in, it's imperative for IT audit leaders to understand they are responsible for maintaining a holistic view of IT risks impacting the entire organization," commented Angelo Poulikakos, managing director and global leader of Protiviti's technology audit practice. 

"This requires tech-enablement from an audit standpoint and regular calibration of risk assessments to suit the current environment, rather than 'rinsing and repeating' the work from previous years."

The top risks highlighted in the survey emphasize the vital but sensitive role that data plays in organizations today, with respondents voicing concerns about how data is gathered, controlled, and secured.

Related Resource

Nine steps to IT audit readiness

How technology can help win back your time and reduce IT risk

Whitepaper cover with image of female employee wearing glasses reflected in a screen of data graphsFree Download

"With a global focus on data regulation, it may be easy to view data solely through a lens of compliance," said Paul Phillips, ISACA director of event content development and risk professional practice lead. 

"However, consumer concern with how their data are used and stored and other operational matters that can quickly become reputational matters must not be discounted. As IT auditors assess risk and evaluate controls associated with data, the tremendous organizational value (and responsibility) of data and the importance of trust should always be top of mind," added Phillips.

Featured Resources

The Total Economic Impact™ Of Turbonomic Application Resource Management for IBM Cloud® Paks

Business benefits and cost savings enabled by IBM Turbonomic Application Resource Management

Free Download

The Total Economic Impact™ of IBM Watson Assistant

Cost savings and business benefits enabled by Watson Assistant

Free Download

The field guide to application modernisation

Moving forward with your enterprise application portfolio

Free Download

AI for customer service

Discover the industry-leading AI platform that customers and employees want to use

Free Download

Most Popular

Why convenience is the biggest threat to your security

Why convenience is the biggest threat to your security

8 Aug 2022
UK water supplier confirms hack by Cl0p ransomware gang

UK water supplier confirms hack by Cl0p ransomware gang

16 Aug 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022