Contact Us Follow Us :      | Find Us |
CBIZ Tofias

Subscribe to Our Blog

Client Satisfaction Survey Results


Follow Us

How Cybersecurity Staffing May be Impacted During COVID-19 Recovery
Posted by Ray Gandy on Wed, Oct 7, 2020 @ 12:51 PM

Operating budgets will be monitored with scrutiny for the near future as COVID-19 recovery remains uncertain. For many organizations, this may mean that traditional hiring practices will likely be greatly limited, and one of the functional areas that may be affected by hiring limitations is information security.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security, IT Risk, COVID19, Coronavirus, cybercriminals, remote work, cyber threat, staffing

The Implications of COVID-19 on SOC Reports
Posted by Scott Woznicki on Thu, Jul 16, 2020 @ 02:10 PM

The world as we knew it has been rocked by the global COVID-19 pandemic and the resulting economic disruption. Organizations of every size are adapting their workforce responsibilities and internal control environments to reflect changes in their operations. This includes vendors and service organizations that provide critical financial and information processing solutions.

Read More

Topics: cybersecurity, risk management, SOC Reports, SOC, cyber risks, cyber attacks, information security, COVID19, Coronavirus, remote work, Scott Woznicki

Preparing for Cybersecurity Questions from Your Auditor
Posted by Chrissy Hammond on Mon, Jun 1, 2020 @ 03:00 PM

Cybersecurity risks ran high during the COVID-19 pandemic. According to Bitdefender, a cybersecurity and anti-virus software company, there were 1,448 malicious COVID-19 related threats reported in February 2020, and 8,319 reports as of March 16, 2020. Many of these threats came through phishing email messages designed to “hack and leak” your company’s and employees’ information.

Read More

Topics: internal control, cybersecurity, phishing scams, phishing, cyber risks, cyber attacks, cyber security, IT Security, COVID19, Coronavirus, auditor

Improving Cyber Safety in Remote Work Scenarios
Posted by Ray Gandy on Mon, Apr 6, 2020 @ 03:27 PM

For any company, shifting employees to a fully or partially remote working environment is a challenge.  Amidst all the turmoil, ensuring the safety and security of employees, business operations, and data is a top priority. Here are some suggestions on how to keep information and employees safe and secure while working remotely.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security, COVID19, Coronavirus, cybercriminals

How to Have a Transition-Ready Strategy for Information Security
Posted by Ray Gandy on Tue, Oct 29, 2019 @ 06:05 PM

The frequency of cyberattacks and information security incidents in today’s market makes information technology controls vital. Many organizations may already have an information security framework that they use or a firm grasp on their activities that carry the highest cyber risk. But even if your cybersecurity “house” is in order, you may be unwittingly opening up your organization to cyber risks through your complex transactions.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security, IT Security, information security risks, data privacy, information security

4 Ways to Improve Your Cybersecurity Strategy
Posted by Ray Gandy on Thu, Jun 13, 2019 @ 05:17 PM

Cybersecurity, data security, and data privacy continue to be hot topics for all market segments. Information security incidents put a lot at stake and can cause financial harm, brand and reputational damage, increased regulatory scrutiny and personal liability for business leaders, and of course, repercussions for customers, clients and others in the value chain.

Read More

Topics: cybersecurity, cyber attacks, Ray Gandy, cyber security

‘Tis the Season for Cybersecurity Risks
Posted by Ray Gandy on Mon, Dec 11, 2017 @ 05:13 PM

With the hustle and bustle of the holiday season in full gear, consumers and retailers need to be especially careful. Holiday sales and discounted prices on goods mean more transactions. More transactions mean more opportunities for cyber criminals to access potentially sensitive information. Consumers and retailers that understand the types of holiday risks they may be facing and how stolen information is being used might be able to avoid getting wrapped up in a scam.

Read More

Topics: cybersecurity, cyber risks, cyber attacks, Ray Gandy, cyber security, data breach, IT Security, IT Risk, Holidays, Holiday cyber risks

Cybersecurity Check-In: 6 Questions Boards of Directors Should Ask About Cybersecurity
Posted by Ray Gandy on Fri, Sep 22, 2017 @ 08:21 AM

Protecting information technology systems is rapidly becoming a top concern for business owners, C suite executives and boards of directors. Whether a small, middle, or large company—the size of your organization doesn’t affect your threat risk. One report of data breach incidents found that 61 percent of data breach victims in 2016 were businesses with fewer than 1,000 employees.

Read More

Topics: cybersecurity, cyber risks, cyber attacks, Ray Gandy, cyber security, data breach, IT Security, IT Risk

Cybersecurity Risks to Benefit Plans
Posted by Kyle Konopasek on Wed, Jun 28, 2017 @ 07:39 AM

Headlines tell the story about the cybersecurity threats facing consumer or customer data, but employee data can be an information security target as well. Employee data carries a lot of the information that cyber criminals seek, including Social Security numbers, dates of birth, financial and medical information, bank account details, beneficiary information and confidential emails. Former employee data may also be vulnerable if your plan has weak employee off-boarding procedures which may inadvertently result in storing old information off-network.

Read More

Topics: employee benefit plan, cybersecurity, ebp, cyber risks, cyber attacks

AICPA Introduces the SOC Report for Cybersecurity
Posted by John Robichaud on Thu, Jun 1, 2017 @ 08:21 AM

As the world, organizations and individuals become increasingly more information technology dependent and inter-connected, with other organizations and individuals, cybersecurity poses one of the largest threats in the current operating environment. Extending beyond the information technology sphere, information security incidents and data breaches are a daily occurrence in the news and can do major damage to operations. The recent WannaCry ransomware incident hit hospitals in Great Britain, telecom providers in Spain and major companies in China, the United States and several other countries. It locked users out of critical systems, grinding business—and in the case of the hospitals, patient care—to a halt.

Read More

Topics: John Robichaud, AICPA, cybersecurity, SOC Reports, SOC

Popular Posts