Building stakeholder trust through cyber security assurance

KPMG technology risk insights

Beth A. McKenney

Beth A. McKenney

Principal, Technology Risk Management, KPMG LLP

+1 313 230 3406

Cyber risks are on the rise across industries

Cyber security is seen in the spotlight across most organizations in recent times. From a rapidly evolving technological landscape to ever-changing threats, cyber attacks are now seen as the single greatest risk to a company’s health, and major cyber security investments are being made to protect organizations and maintain stakeholder trust.

According to the 2021 KPMG CEO Outlook, cyber security rose four places since 2020, and was selected as the greatest threat to an organization's growth over the next

three years

KPMG also found that CEOs plan to spend more on digital in 2021, with


prioritizing data security measures

Managing risks by developing a cyber assurance program

A comprehensive cyber assurance program provides a systematic and comprehensive approach to monitoring the extent to which cyber risks and stakeholder security requirements are being continually managed by the organization.

Monitoring is a critical process of an internal control system and ensures that all of the products, services, assets, and systems of an organization are being protected and secured.

Our approach to activating a cyber assurance program

KPMG Technology Risk Management professionals can help organizations establish a comprehensive cyber security assurance program. We leverage our cyber security assurance and maturity framework to help organizations define a right-sized and risk-based approach to monitoring cyber security controls. Our approach includes focus on emerging domains as well as foundational domains that are critical to an organization’s cyber security program.

Specifically, we can help in the following areas:

  • Program foundations
  • Cyber risk assessment and scoping
  • Assurance plan execution
  • Reporting and insights

Learn more by reading our new article