IDEAS home Printed from https://ideas.repec.org/a/iaf/journl/y2019i2p124-133.html
   My bibliography  Save this article

Internal Audit as a Preventive Component in the Bank's Cybersecurity System

Author

Listed:
  • Olena Krykliy

    (Sumy State University, Sumy, Ukraine)

  • Liudmyla Pavlenko

    (Sumy State University, Sumy, Ukraine)

Abstract

The financial services sector is the most attractive for cyber-attacks and cyber fraud because there is the possibility to receive the financial and non-financial benefits. In order to increase the efficiency of ensuring cybersecurity of the bank, it is necessary to strengthen the role of preventive tools, one of the main of which is internal audit. The purpose of the article is to develop the theoretical and methodical foundations of the internal audit system of a cybersecurity bank. In particular, the authors carry out the detalization of the components of internal audit system and the scientific substantiation of the principles of it operation, on the basis of which it would be possible to solve the problem of ensuring effective monitoring of cybersecurity. The essence of the bank's information assets as objects of internal audit of cybersecurity was clarified. To form a comprehensive understanding of the control environment, cybersecurity threats of the bank and ways to implement them in the context of various cybersecurity objects were systematized. The organizational and managerial subsystem for ensuring cybersecurity of the bank was disclosed. It was determined that the internal audit system of cybersecurity is a set of interrelated elements (goals and objectives, object, subject, mechanism) operating on the basis of general and special principles and allow an objective assessment of the level of security and preservation of the information assets and information infrastructure of a bank under constant impact external and / or internal threats, as well as compliance with national and international legislation. A list of tasks to be performed by the internal audit service to assess the effectiveness of the cybersecurity system of the bank was provided. The elemental composition of the internal audit system was highlighted and the principles that must be followed to achieve its goals and objectives were defined.

Suggested Citation

  • Olena Krykliy & Liudmyla Pavlenko, 2019. "Internal Audit as a Preventive Component in the Bank's Cybersecurity System," Oblik i finansi, Institute of Accounting and Finance, issue 2, pages 124-133, June.
    • Handle: RePEc:iaf:journl:y:2019:i:2:p:124-133
    as

    Download full text from publisher

    File URL: http://www.afj.org.ua/pdf/665-vnutrishniy-audit-yak-preventivna-skladova-v-sistemi-kiberbezpeki-banku.pdf
    Download Restriction: no
    File URL: http://www.afj.org.ua/en/article/665/
    Download Restriction: no
    ---><---

    More about this item

    Keywords

    internal audit in bank; banking cybersecurity; cyber risk in banking; emerging cybersecurity threats; audit of the banking cybersecurity;
    All these keywords.

    JEL classification:

    • G21 - Financial Economics - - Financial Institutions and Services - - - Banks; Other Depository Institutions; Micro Finance Institutions; Mortgages
    • G22 - Financial Economics - - Financial Institutions and Services - - - Insurance; Insurance Companies; Actuarial Studies
    • L86 - Industrial Organization - - Industry Studies: Services - - - Information and Internet Services; Computer Software
    • M42 - Business Administration and Business Economics; Marketing; Accounting; Personnel Economics - - Accounting - - - Auditing

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:iaf:journl:y:2019:i:2:p:124-133. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Serhiy Ostapchuk (email available below). General contact details of provider: https://edirc.repec.org/data/iafkvua.html .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.