Skip to main content

Firm Management

November 2017 Firm Management Channel

Accounting Firm Cybersecurity: Training Your Staff and Protecting Your Business

By Christina Wiseman, Thomson Reuters

From the Thomson Reuters blog.

It probably won’t surprise you to hear that tax identity theft is on the rise. In response to this increase in tax-related ID theft, last year the IRS rolled out new security requirements that recommended multi-factor authentication (MFA) for tax and accounting software.

While MFA has shown to be an effective tool in combating fraud, there’s an equally important supplemental strategy that all tax and accounting firms should employ: educating their staff.

That’s because humans — no matter how well-intentioned — remain the weakest link in the data security chain, as proven when a recent cybersecurity report revealed that approximately 95% of security breaches are caused by human error. So let’s take a look at some of the changes that tax and accounting firms are making to improve awareness among employees.

Employee training: Simple, inexpensive, impactful

In 1794, Voltaire said, “Common sense is not so common.” Today, we could update that quote to read, “Network security common sense is not so common.” That’s why it’s imperative that your staff is trained before they interact with your information systems.

It’s good practice to update your training regularly to include new and evolving data security challenges. Luckily, there’s no need to design a training program from scratch. Most information security companies have great presentations written and ready to go, or white papers that identify points to cover in employee training. You can even go to the Department of Homeland Security and IRS Awareness Campaign websites and download their cybersecurity training resources.

Since every single employee in your firm is a potential source of a security breach, everyone in the firm should go through security training, from the firm owners to the frontline employees — including the IT staff. Due to the ever-evolving nature of cybersecurity threats, experts recommend at least annual training (although more often is always good).

Awareness is key

Hackers thrive on ignorance — they want everyone to assume that life is safe and no one’s out to get them. So it’s a good idea to periodically ask your employees questions including — but not limited to — the following, to help them remain aware of potential security vulnerabilities.

• Do you have company email or other company data on your mobile device or portable drive?
• If so, do you have appropriate security precautions in place, such as data encryption and multi-factor authentication?
• How many of you are aware whether all the devices in the organization have the most recent updates for operating systems and security software?
• At work, do you lock your computer when you walk away from it, or do you leave it open and accessible to others?
• Could your passwords’ security access questions be easily deduced from a look at your social media?

While this is only a start, it’s an important one. Use the tools and resources mentioned above to educate your staff and close the door to hackers. We can work together to take steps to improve security in our industry.


Christina Wiseman serves as product manager of Web Services & Mobile Technologies for Thomson Reuters Tax & Accounting.



Top Firm Management Blogs and Social Media

CPA Salary Averages from the AICPA. AICPA Insights blog.

Be an Advisor, Not a Robot. CPATrendlines.

The Right LinkedIn Strategy for Accounting Firms. The Outsourced Accountant blog.

How to Use Low-Touch Methods to Find New Clients. Firm of the Future blog.

9 Facts that Can Make or Break Your Firm’s Future. AICPA Insights blog.



Latest Firm Management News

Accounting Firm Cybersecurity: Training Your Staff & Protecting Your Business. It’s good practice to update your training regularly to include new and evolving data security challenges.

Friedman LLP  Launches #GivingTuesday Campaign. #GivingTuesday is a social media movement aimed at spurring charitable donations, and will culminate on Nov. 28 this year.

KPMG Professors-in-Residence to Research Audit Innovation. Two accounting professors are working with KPMG LLP as the first-ever professors-in-residence.

Millennials Make Up Largest Segment of Workforce. While they’re still catching up to the national average when it comes to wages, their wages are growing fast.

Account Management Customer Service: A New Light on Loyalty. The cost is 10 times more to win a new client than to keep an existing one. Once you win them, what maintains their loyalty?

AICPA Announces 2017 Leadership Academy Class. These 38 future leaders of the accounting profession participated in a rigorous four-day program in Durham, North Carolina in early October.



See inside November 2017

November 2017 Small Business Channel

Veteran Business Owners Thriving, Extremely Upbeat on Economy By Isaac M. O’Bannon, Managing Editor Optimism among veteran small business owners is outpacing the nation’s small businesses as a whole, according to this year’s Allstate/USA Today Small Business Barometer. The annual index study released new data ahead of Veterans Day showing that veteran entrepreneurs’ optimism is […]


November 2017 Payroll Channel

The IRS has announced the 2018 cost-of-living adjustments (COLAs) with respect to retirement plan limits. Many limits, which are adjusted by reference to Code Sec. 415(d), are changed for 2018 since the increase in the cost-of-living index met the ...